Your privacy protection is of the utmost importance to us. Compliance with the legal provisions of data protection is a matter of course for us. We guarantee that all data collected will be treated in accordance with the applicable data protection regulations. We also want to do more on data protection than the legal framework would require. That is why we have been ISO 27001 (and ISO 9001) certified since the beginning of 2021.
We store all personal data exclusively on servers in Switzerland. When handling your personal data, we take appropriate technical and organizational measures to protect your data from unauthorized and / or illegal access.
Every time a user accesses one of our websites, access data for this process is anonymously saved in a log file. Each data record consists of:
These log files which do not identify any user are used to optimize the service and improve our website.
We collect personal data provided by users themselves while registering, appointment booking, actively contacting us (e.g. by e-mail), submitting a review and/or feedback on our website, booking an appointment on behalf of a third party or using another service according to § 8.
We explicitly inform that independently provided data may contain particularly sensitive data. This includes information on the state of health as well as the disclosure of the doctor-patient relationship in general.
Medicosearch.ch contains a directory of health care providers in Switzerland with details of the address, registered office and specialization. The information contained therein was obtained from publicly available sources. At the express request of the health care provider, the company logo and photos are also published.
When using Medicosearch.ch, we collect personal data of the health care providers listed in the directory, in particular the reviews and feedbacks given by the users. Furthermore, we collect personal data of health care providers who are registered as such on the website.
We irrevocably delete all data, especially the doctor-patient relationship and all appointment booking data, 30 days after the appointment.
The login data of the user as well as the data contained in the directory of health care providers in Switzerland will only be deleted when the user or the health care provider exercises the right to erasure and withdrawal according to §9.
By registering and accepting this data protection regulation, a user expressly authorizes us to process the data according to § 4 for the purposes according to § 8. The legal basis for the collection and processing of the data is the explicit consent of the user according to Article 6 (1) (a) of the EU General Data Protection Regulation (GDPR). A person or a health care provider who allows a third party to make an appointment booking with our service is obliged to obtain the relevant express consent of the person concerned.
The directory of health care providers is a free service in the public interest according to Article 6 (1) (e) of the EU General Data Protection Regulation (GDPR). Every health care provider has the option of requesting that they are deleted from the directory and / or that the reviews and feedbacks concerning them are not published according to § 9.
Medicosearch online appointment service
To manage our online appointment service we intend to:
To establish a satisfaction index for the considered health care providers, we intend to:
To provide and implement MedicoVideo, in addition to the items listed in “Managing online appointment service” we intend to:
Apart from the data listed above, we do not store any other data in connection with MedicoVideo. Furthermore, it should be noted that no conversations, messages or anything similar between doctor and patient are recorded or stored.
MedicoCheckin and MedicoFolder
To manage MedicoFolder patient record, to provide and to perform MedicoCheckin, we intend to:
To manage bookings from referring doctors, we intend to:
If your personal data is processed, you are a data subject within the meaning of GDPR and you have the following rights:
Right of access: After sufficient identification, every person can request access to all personal data free of charge at email@example.com.
Right to rectification: You have the right to obtain from the responsible the rectification and / or completion of inaccurate or incomplete personal data concerning you. The responsible must make the correction without undue delay.
Right to restriction of processing: Under certain conditions you have the right to obtain restriction of processing of your personal data.
Right to erasure: You have the right to obtain the erasure of your personal data free of charge at firstname.lastname@example.org at any time and user can delete their account themselves 30 days after the last appointment in the account under user information. This especially applies if the personal data is no longer required for the purposes pursued, you have effectively withdrawn your consent or have effectively objected to the processing, or the personal data is being processed unlawfully. In individual cases, the right to erasure may be excluded, especially if processing is necessary to exercise freedom of expression or to exercise legal claims.
Right to information: If you have asserted the right to correction, deletion or restriction of processing, the responsible is obliged to inform all recipients to whom the personal data concerning you have been disclosed of this correction or deletion of the data or restriction of processing, unless this proves to be impossible or involves a disproportionate effort connected.
Right to data portability:You have the right to receive the personal data concerning you, which you have provided to the responsible, in a structured, commonly used and machine-readable format.
Right to object: Since we process your personal data on the basis of consent, you have the right to withdraw your consent at any time. The withdrawal is only valid for the future; processing activities based on your consent in the past will not become unlawful as a result of your withdrawal.
Right to lodge a complaint with a supervisory authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes applicable law.
We do not pass on any data to third parties apart from the permission given by the user with the acceptance of this document or in cases provided by law.
We reserve the right to pass on your personal data in accordance with § 4 and § 5 exclusively to third parties within and outside of Switzerland who are contractually obliged to us to comply with the same data protection regulations to which we are obliged. In particular, these third parties are obliged to use data only for the purposes according to § 8 or other legally permissible purposes, such as technical support, and not to disclose data to other third parties unless we permit this or it is required by law.
We use session cookies. Cookies are small data files like those used by most websites. Cookies do not contain any personalized information, but only code numbers that are meaningless outside our website.
In addition, we use Google Analytics to analyse the user behavior on our website. Google Analytics also uses so-called "cookies". The information generated by the cookie about your using this website is usually transferred to a Google server in the USA and stored there. In addition to the standard functions, we also use integrated services on this website, for which data is collected in Google Analytics for advertising purposes, including data collection via cookies for ad settings and anonymous identifiers. For this purpose, in addition to the data recorded by Google Analytics analysis tool, additional data is collected via Google cookies for ad settings and anonymous identifiers. We use this information to improve our website.
These tools are used to ensure the security of our website and systems. Moreover, this data is used to record the user behavior in order to improve our services and to carry out statistical evaluations. This enables us to adapt the content of our websites to the specific needs of our users. These uses are completely anonymous. We do not disclose this information to third parties unless required by the relevant authorities. We reserve the right to identify users (in particular by comparing the IP address with the information collected as part of the procedures explained under § 4 and § 5), but only in case of justified suspicion of website misuse and/or serious breach of the General Terms and Conditions.
Of course you can use our websites without cookies. You can refuse to accept cookies by changing the browser settings to disable the cookie storage option or to instruct the browser (usually under "Internet Options" or "Settings") to inform you each time a website wants to install a cookie. If you wish, you can also opt out Google Analytics by downloading and installing the browser plugin available at: "https://tools.google.com/dlpage/gaoptout?hl=en". Please note that if you deactivate cookies or Google Analytics, you may not be able to access some of the functions provided on our website.
We reserve the right to revise, amend or otherwise supplement these data protection regulations at any time. We will inform you of any changes, additions or revisions to our data protection regulations with a corresponding message the next time you log in.
Gerberngasse 27 – 31
+41 31 312 11 00
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of personal data relating to you infringes applicable data protection laws.
Federal Data Protection and Information Commissioner
CH - 3003 Bern
+41 (0)58 462 43 95