Privacy Policy

The use of my website is possible without providing personal data. My practice’s processing system is password-protected, and my email communication is encrypted. However, I would like to point out that data transmission over the internet (e.g., when communicating via email) may have security vulnerabilities. Complete protection of data from third-party access is not possible.

The controller in the sense of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

Dr. med. Beate Blumrich
Lutherstraße 2
61231 Bad Nauheim
bb@praxis-blumrich.de

Data Collection:
The collection, processing, storage, etc. of patient data is legally permitted. Upon initial contact, I collect the following data into my electronic practice management system (PMS):
Name, date of birth, address, private health insurance provider, telephone number(s), and your email address, if available.
In therapeutic contact, I collect findings and diagnoses from you, prescribe therapies, and complete forms for you (prescriptions, certificates of incapacity for work, request forms for laboratory tests, etc.). All of this must be verifiably patient-related and stored in my PMS. Subsequent editing and modification of your data is not permitted by the PMS.
Written External findings are scanned in a patient-related, electronically unalterable manner (document scanner).

Every patient receives upon initial contact in my Doctor’s office declarations of consent, with which you can give us written permission to pass on data to the private clearing house.
Please note that under certain circumstances there may also be a legal obligation to disclose the data.

What happens to your data:
I need your data in order to be able to treat you transparently and verifiably in my private medical Doctor’s office. All v prescriptions are patient-related and require name, address and date of birth. If I do not have this data, I cannot, for example, issue you with prescriptions. Data collection is therefore necessary for necessary for your treatment.
The following data is stored in my PMS password-protected:
Acute and chronic diagnoses, findings, medical histories, treatment suggestions, billing codes.
All electronically generated forms as well as all prescriptions must be verifiably and permanently stored .

Only I, as the Doctor’s office owner and operator of my Doctor’s office as a solo practice, have access to this data. There is no obligation for solo practices to appoint a data protection officer.
Your data (findings, doctor’s letters etc.) are stored in accordance with the respective statutory retention periods (e.g. doctor’s letters for 10 years). Ggf. a longer storage period may also be required.

Server Log Files:
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

Browser type and browser version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of the server request

This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of concrete indications of unlawful use.

Cookies:
The internet pages sometimes use so-called cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective, and secure. Cookies are small text files that are stored on your computer and saved by your browser. Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain stored on your device until you delete them. These cookies enable us to recognize your browser on your next visit. You can configure your browser to inform you about the setting of cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for certain cases or generally, and to activate the automatic deletion of cookies when closing the browser. Deactivating cookies may limit the functionality of this website.

Who will your data be transmitted to:
As a rule, your data will only remain in my Doctor’s office. Other doctors, insurance companies, private clearing houses and other institutions only receive the data necessary for the respective case with separate consent from you.
Only the data relevant for billing will be transmitted to the clearing house . Here is the link to the privacy policy of my private billing office: https://www.arcogmbh.de/datenschutzerklaerung.html
Laboratories receive the data required to fulfill the examination order. Here are the links to the privacy policies of the laboratories to which I send my examination orders: https://www.synlab.de/de/datenschutz/ and http://www.biovis-diagnostik.eu/de/datenschutzerklaerung/
For certain infectious diseases, reporting to the health department is legally required.
To protect the legitimate interests of the medical practice, it may be necessary to seek anwaltlicher or judicial assistance .

Your rights to information, rectification, erasure, and restriction:
The processing of your health data (special category of personal data) is based on a legal basis or your consent.
You can exercise the following rights at any time using the contact details provided above:

• Information about your data stored by me and its processing,
  

• Rectification of inaccurate personal data,
  

• Erasure of your data stored by us,
  

• Restriction of data processing, provided that we are not yet permitted to erase your data due to legal obligations,
  

• Objection to the processing of your data by us, and
  

• Data portability, provided you have consented to the data processing or have concluded a contract with us.
  

If you have given us consent, you can revoke or restrict it at any time with effect for the future, provided that deletion does not conflict with legally prescribed retention periods.

You can lodge a complaint with the supervisory authority responsible for you at any time. Your competent supervisory authority depends on the federal state of your residence, your work, or the alleged infringement. A list of supervisory authorities (for the non-public sector) with addresses can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

SSL Encryption:
To protect the security of your data during transmission, we use encryption methods corresponding to the current state of technology (e.g., SSL) via HTTPS.

Objection to Advertising Emails:
The use of contact data published within the scope of the imprint obligation for sending unsolicited advertising and information material is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, for example, via spam emails.

Changes to Our Privacy Policy:
We reserve the right to adapt this privacy policy so that it always complies with current legal requirements or to implement changes to our services in the privacy policy, e.g., when introducing new services. The new privacy policy will then apply to your renewed visit.

Questions about Data Protection:
If you have any questions about data protection, please contact me directly using one of the contact options provided:

Dr. med. Beate Blumrich
Lutherstraße 2
61231 Bad Nauheim
bb@praxis-blumrich.de
06032-7861693

This privacy policy was created with the privacy policy generator of activeMind AG.