Privacy Policy

At Swissmed Health, we are committed to protecting the privacy of our website visitors. This Privacy Policy outlines how we collect, use, and safeguard your personal information when you visit our website.

1. Information We Collect:

Personal Information: We may collect personal information such as your name, email address, phone number, and other contact details when you voluntarily provide them to us through forms or correspondence on our website.

Non-Personal Information: We may also collect non-personal information such as your IP address, browser type, operating system, and browsing preferences through cookies and similar technologies.

2. Use of Information:

We use the information collected to provide you with the products, services, and information requested, as well as to improve and personalize your experience on our website.

Personal information may be used to communicate with you, respond to inquiries, send newsletters or promotional materials, and for other purposes disclosed at the time of collection.

3. Data Sharing:

We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except as required by law or as necessary to provide services to you.

We may share your information with trusted third-party service providers who assist us in operating our website, conducting business, or servicing you, as long as those parties agree to keep this information confidential.

4. Data Security:

We implement a variety of security measures to maintain the safety of your personal information when you enter, submit, or access your information on our website.

However, no method of transmission over the Internet or electronic storage is completely secure, and therefore, we cannot guarantee absolute security.

5. Third-Party Links:

Our website may contain links to third-party websites, products, or services. These third-party sites have separate and independent privacy policies, and we have no responsibility or liability for the content and activities of these linked sites.

6. Children's Privacy:

Our website is not directed to children under the age of 13, and we do not knowingly collect personal information from children. If we become aware that personal information has been collected from a child without parental consent, we will take steps to remove that information from our servers.

7. Consent:

By using our website, you consent to the terms of this Privacy Policy and the collection and use of your information as described herein.

8. Changes to Privacy Policy:

We reserve the right to update or change this Privacy Policy at any time. Any changes will be effective immediately upon posting the revised Privacy Policy on this page.

If you have any questions or concerns about our Privacy Policy, please contact us at info@swissmedhealth.com.

GDPR Privacy Policy

Our GDPR Privacy Policy is regularly updated (latest version uploaded May 24 2018, 14:50 GMT) and disclosed below.

Individual data rights

Our GDPR compliance policy has been developed taking into account your right to access to, revision of, limitation of and deletion of user data. As described in Chapter III of GDPR regulations your rights are the following:

  1. Right to be informed (Articles 12-14)

  2. Right of access (Article 15)

  3. Right of rectification (Article 16)

  4. Right of erasure (Article 17)

  5. Right to restrict (Article 18)

  6. Right to data portability (Article 20)

  7. Right to object (Article 21)

  8. Rights related to automated decision making and profiling (Article 22)

Individuals can exercise their rights by contacting us and we must respond to your requests without undue delay and at latest within 1 month, with a limited right for us to extend this period for up to 3 months (Article 12(3)). If we do not intend to comply with your request we must state the reason why.

Individuals may be asked to provide information to confirm your identity in order to exercise your rights. These rights apply across the EU, regardless of where the data is processed and where the company is established.

You may learn more about GDPR through the European Commission’s page under Data Protection: https://ec.europa.eu/info/law/law-topic/data-protection_en

Privacy Policy for S.B.M.C. SWISSMED HEALTH LTD

 

S.B.M.C. SWISSMED HEALTH LTD (hereinafter referred to as "we," "us," or "our") is committed to privacy and secure processing of the personal data it maintains for its clients, associates and collaborators, in an open and transparent manner. We are also committed to the collection and processing of any personal data, in full compliance with the General Regulation on the Protection of Personal Data of the European Union (Regulation 2016/679, GDPR) (hereafter referred to as “the Regulation”) and the legislation in force in Cyprus that governs the collection and processing of Personal Data of Individuals (L. 125 (I)/2018). Personal Data means any Data relating to an identified or identifiable natural person (‘data subject’).

Thus, we have developed this Privacy Policy that governs the collection, use, disclosure, transfer and storage of personal data. Please read our privacy practices carefully to understand our policies regarding your data and how we treat them, and do not hesitate to contact us for any questions.

For additional information on how we use information collected from the CCTV system operating at our locations, you can contact us at dpo@swissmedhealth.comand ask for our CCTV Policy.

 

1. Scope of This Privacy Policy

This policy applies to the personal data collected by S.B.M.C. SWISSMED HEALTH LTD both through our website (www.swissmedhealth.com )and in the course of providing our medical services. This includes data collected via online forms, emails, phone calls, in-person visits, and any other means through which we interact with you.

 

2. What Personal Data Do We Collect?

We collect various types of personal data, including but not limited to:

A. For visitors, volunteers to any of our initiatives, members of the public, people that are next of kin to a patient:

·         Basic details such as name, address, date of birth;

·         ID number;

·         Contact information (phone number, e-mail etc.).

·         Images of the CCTV system we have installed in our premises.

 

B. For patients:

·         The personal data that the patients disclose when appointments are being arranged;

·         Sensitive data such as medical conditions, ethnicity, nationality;

·         Notes and reports about patients’ physical or mental health and any treatment, any care or support the patients’ need and receive;

·         Results of patients tests and diagnosis;

·         Relevant information from other professionals;

·         Information on medicines, side effects and allergies;

·         Patient experience feedback and treatment outcome information;

·         Images of the CCTV system installed in our premises;

·         Financial information such as payment details.

 

C. For employees or collaborators:

·         Basic details such as name, address, date of birth;

·         Contact information (phone number, e-mail etc.);

·         Curriculum vitae;

·         ID number, social insurance number, IBAN number and other financial information;

·         Images of the CCTV system we have installed in our premises.

 

D. For candidates for recruitment:

·         CV and the corresponding cover letters that candidates share with us.

 3. For What Purpose Do We Collect Your Data?

We process your personal data for the following purposes:

  • Provision of Medical Services: To diagnose, treat, and manage your health conditions.

  • CRM:To create and manage your medical file, to provide you with medical care support and with notices about the provided services, and/or changes to any services we offer to you, and be able to contact you when need to inform you about medical examinations and test results, appointments, referrals, and also execute your payments;.

·         Functionality and security: to detect, prevent, and respond to actual or potential fraud and illegal activities;

  • Compliance: To comply with legal and regulatory requirements.

 4. On What Grounds Do We Process Your Data?

We process your personal data based on:

  • Consent: Where you have given explicit consent for a specific purpose.

  • Contract: To fulfill our contractual obligations to you as a patient.

  • Legal Obligation: To comply with legal and regulatory requirements.

  • Legitimate Interests: For purposes such as improving our services and ensuring the security of our systems.

 5. How Do We Collect Your Data?

We collect data through:

  • directly from you,

  • through third parties in the standard course of the business we do in order to provide you with the service you requested,

  • through our associates and collaborators.

 6. Disclosure of your personal Data

If it is necessary to share your information with other parties, it will be subject to strict controls and data processing agreements describing to what extend and how it may be used. We may share your information with:

·         Doctors / Surgeons / Physicians;

·         Laboratories;

·         Other medical Centers;

·         Insurance companies. 

We may also disclose your Personal Data to other third parties, including official authorities, courts, or other public bodies:

In response to a subpoena or similar investigative demand, a court order or other judicial or administrative order, or a request for cooperation from a law enforcement or other government agency; to establish or exercise our legal rights; to defend against legal claims; to comply with applicable law or cooperate with law enforcement, government or regulatory agencies; or to enforce our Website terms and conditions or other agreements or policies; or as otherwise required by law (including responding to any government or regulatory request). In such cases, we may raise or waive any legal objection or right available to us, in our sole discretion.

To the extent a disclosure is necessary in connection with efforts to investigate, prevent, report or take other action regarding illegal activity, suspected fraud or other wrongdoing; to protect and defend the rights, property or safety of our company, our employees, or others and maintain and protect the security and integrity of our infrastructure.

 

7. Where Do We Store Your Data?

We store your personal data securely within the European Union (EU). If we use service providers that store data outside the EU, we will ensure appropriate safeguards are in place, such as standard contractual clauses or your explicit consent.

 

8. Who Has Access to Your Data?

Access to your personal data is limited to:

  • Authorized Personnel: Our medical and administrative staff.

  • Service Providers: Third parties who provide services on our behalf, such as IT support and payment processors, under strict confidentiality agreements.

  • Regulatory Bodies: When required by law or regulations.

 9. How Long Will We Retain Your Data?

The period for which we keep your Personal Data that is necessary for compliance and legal enforcement purposes varies and depend on the nature of our legal obligations and claims in the individual case. Please note that medical records are kept for fifteen (15) years after the patient’s last visit or fifteen (15) years after the patient’s passing.

To the extent we have collected your Personal Data for purposes of provision of services, customer management, and customization of content as described above, we keep your Personal Data for as long as you are associated with us, as needed to provide you with our respective services and in compliance with relevant laws of Cyprus.

Any personal data collected under the lawful basis of the consent, such as contact details for communication purposes will be deleted when you withdraw your consent. You may withdraw your consent at any given time that you desire.

For further Data regarding specific retention period please contact us at dpo@swissmedhealth.com.

 

10. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Access: To request a copy of your personal data.

  • Rectification: To correct any inaccuracies in your data.

  • Erasure: To request the deletion of your data ("right to be forgotten").

  • Restriction: To restrict the processing of your data under certain conditions.

  • Portability: To receive your data in a structured, commonly used format and transmit it to another controller.

  • Objection: To object to the processing of your data based on legitimate interests.

  • Withdraw Consent: To withdraw your consent at any time, where processing is based on consent.

 

11. Security Measures

We implement technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, and secure storage.

 

12. Updates to This Privacy Policy

We may update this privacy policy from time to time. We will notify you of any significant changes by posting the new policy on our website and, where appropriate, notifying you by email.

 

13. Contact Us

If you have any questions or concerns about this privacy policy or our data processing practices, please contact us at:

  • Address:         Swissmed Health

33 Spyrou Kyprianou Avenue

Swissmed Health Building

3070, Limassol, Cyprus

  • Email: info@swissmedhealth.com

  • Phone:            +35725010200

 

14. Complaints

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the relevant supervisory authority.

Data Controller:Under the Regulation, the S.B.M.C. Swissmed Health Ltd is the Data Controller for all personal data it maintains and processes.  As a Data Controller, the S.B.M.C. Swissmed Health Ltd in specific cases is allowed to collect, maintain and process the personal data of all customers and collaborators. As a Data Processor, the S.B.M.C. Swissmed Health Ltd shall process personal data as per the means and purposes defined by the Data Controller.

We are committed to ensuring the privacy and security of your personal data. Please feel free to contact us if you have any questions/complaints or need further information.

 

15. Automated Decision-Making, Including Profiling

None of our processes is based on automated decision-making, nor profiling.

 

16. Changes to Our Privacy Policy

We may modify or revise our privacy policy from time to time. Although we may attempt to notify you when major changes are made to this privacy policy, you are expected to periodically review the most up-to-date version found at our website www.swissmedhealth.comso you are aware of any changes, as they are binding on you.

 17. No Error Free Performance

We do not guarantee error-free performance under this privacy policy. We will use reasonable efforts to comply with this privacy policy and will take prompt corrective action when we learn of any failure to comply with our privacy policy. We shall not be liable for any incidental, consequential or punitive damages relating to this privacy policy.