DATA PROTECTION DECLARATION FOR VISITORS AND USERS OF OUR WEBSITE AND OUR SUPPLIERS OF GOODS AND SERVICES
We protect your privacy and your personal data. The processing of the personal data of visitors and users of our website www.cliniclesalpes.com, our suppliers of goods and our service providers is limited to the data required to provide a functional website, to fulfil our tasks in the context of our professional activity as a hospital medical institution and our content and services, and in particular our contractual relationship with you. This declaration also applies to our patients, patients' families and referring professionals. However, when a patient is admitted to our establishment, he or she receives an additional data protection declaration relating specifically to the processing of his or her data, the data of his or her family members and referring professionals in the context of our professional activity as a hospital medical institution, which is added to the patient's file. We collect, process and use your personal data in accordance with the content of these data protection provisions and the applicable data protection regulations, in particular the Swiss Data Protection Act (DPA). These data protection provisions define the personal data that we collect, process and use about you. Please read the following carefully.
1.1 Clinique Les Alpes SA (hereinafter "we, us, our"), as operator of the www.cliniclesalpes.com website and operator of a centre for the treatment of addiction and mental health, is responsible for the personal data of visitors and users of the website, suppliers of goods and services and patients, their families and referring professionals (hereinafter "you, your") within the meaning of the DPA.
1.2 Any questions regarding data protection or the way in which we process personal data can be addressed to the following contact person: Alexandre Tavassoli email@example.com.
2.1 In principle, we only collect personal data directly from you or via the website.
3.1 Personal data within the meaning of these data protection provisions is any information relating to an identified or identifiable natural person (hereinafter referred to as the "data subject"). This includes your surname, first name, e-mail address, postal address, telephone number, credit card details, VAT account details if you are a registered trader and any other data required for the purposes set out below. If you visit our institution, we are equipped with a CCTV system which also collects personal data.
3.2 Personal data also includes information about your use of our website and your telephone calls to us. In this context, we collect personal data from you as follows: information about your visits to our website, such as the extent of data transfer, the location from which you view data on our website (approximate geolocation data), as well as other connection data and sources you visit. This is generally done through the use of log files and cookies. You will find more information on log files and cookies below. We also use a platform that tracks all telephone calls. This tool may give us the name of the caller, if they have given prior consent for their number to be associated with their name by this type of tool.
3.3 In principle, your personal data is kept for as long as is necessary to meet our contractual, fiduciary, medical and other legal obligations, which is generally 10 years. We collect your IP address when you visit our website; this is recorded for 30 days and is then immediately deleted or made anonymous by shortening. Other data collected on our website, for anonymous geolocation purposes only, such as cookies (Googles Analyitcs) are kept for a period of 14 months. When you telephone us, your number and other personal data are kept for a maximum of 90 days.
We use your personal data for the following purposes:
4.1 To provide the services you have requested;
4.2 To ensure that our website is presented to you in the most effective and interesting way possible;
4.3 To fulfil our obligations under any contract entered into between you and us and to notify you of any changes to such contract(s);
4.4 To enable you to participate in interactive offers, if you so wish;
4.5 To inform you of changes to our services;
4.6 In the event of a visit to our institution, to ensure your safety and avoid the presence of malicious persons by means of a CCTV surveillance system;
4.7 To send you our Newsletter or any other commercial communications.
5.1 When processing data, we take into account the processing principles of lawfulness, proportionality, purpose, transparency - in particular compliance with information obligations - and data security. We take appropriate measures to ensure that personal data is accurate.
5.2 Data protection requirements are taken into account when planning and designing processing activities (data protection by design and by default).
5.3 We do not make any automated individual decisions.
6.1 Each time you access our site, we collect the following information about your computer: the IP address of your computer, the city (latitude and longitude) and your browser request. In addition, the status and quantity of data transmitted are recorded as part of this request. We also collect information on the product and version of the browser used and your computer's operating system. We also record the website from which you accessed our site. The IP address of your computer is recorded for 30 days and is then immediately deleted or made anonymous by shortening. We use this data for the operation of our website, in particular to detect and correct website errors, to determine the level of use of the website and to make adjustments or improvements.
6.2 Cookies contribute in many ways to making your visit to our website easier, more pleasant and more useful. Cookies are information files that your web browser automatically saves on your computer's hard drive when you visit our website.
6.4 If you do not wish to use browser cookies, you can configure your browser so that it does not accept cookies. Please note that in this case, you will only be able to use our website to a limited extent, if at all. You can choose at any time if you do not wish to accept cookies from our service providers in the settings of our cookies banner.
7.1 In principle, we process and store all the information you send us on servers located in Switzerland. If necessary and if permitted by law, we may also transmit your personal data to recipients located outside Switzerland and the European Union, such as in the United Kingdom or the United States of America or in a country which does not guarantee adequate data protection. If personal data is transferred to a country that does not have adequate data protection, we ensure adequate protection by using sufficient safeguards, such as on the basis of EU standard contractual clauses or binding internal data protection guidelines. Questions regarding such data transfers and the safeguards applied in a specific case may be addressed at any time to the contact person mentioned in point 1.
7.2 Subject to point 7.1, we will not pass on your personal data to third parties unless you have given your consent to the data being passed on or unless we are authorised or obliged to pass on data by virtue of legal provisions and/or administrative or judicial orders. This may include providing information for the purposes of criminal prosecution, preventing threats or enforcing intellectual property rights.
7.3 Unfortunately, the transmission of information over the Internet and by electronic means is not entirely secure, which is why we cannot guarantee the security of data transmitted by these means. However, we use technical and organisational measures to protect our website and our other systems against the loss, destruction, access, modification or distribution of your data by unauthorised persons. In particular, your personal data is transmitted to us via our website in encrypted form. We use the SSL (Secure Socket Layer) encryptions system.
8.1 We use external service providers (subcontractors) for our website and our IT system. As part of the use of our website and our IT system, the processing of your personal data is therefore outsourced, but we remain responsible to the data subjects and the Federal Data Protection Commissioner (or any other supervisory authority) for the processing of outsourced personal data in accordance with data protection regulations. We also use other subcontractors in the course of our business.
8.2 We are responsible for the careful selection of the service provider(s) and the contractual guarantee that :
- The service provider processes personal data only in the manner in which we ourselves are authorised to do so and that no legal or contractual obligation of confidentiality is breached;
- The service provider does not process personal data for its own purposes;
- Data security is guaranteed as far as possible;
- The service provider only subcontracts the processing of personal data with the prior consent of the controller in accordance with Article 7 of the Data Protection Act;
- We have the corresponding control rights.
10.1 We reserve the right to amend these data protection provisions at any time with effect for the future. An updated version is available on the Website. We invite you to consult the website regularly and to inform yourself about the current privacy and data protection policy.
11.1 You have the right to request information about your personal data that we process. In particular, you may request information about the personal data as such, the purpose of the processing, the storage period or, if this is not possible, the criteria for determining this period, the origin of your data if it has not been collected from you, the possible existence of an automated individual decision and, where applicable, the recipients or categories of recipients to whom the personal data is communicated.
11.2 You also have the right to revoke any consent you may have given to the use of your personal data at any time.
11.3 You have the right to request, under certain conditions, that we return your personal data to you or transfer it to another data controller of your choice.
11.4 You have the right to request, under certain conditions, that inaccurate data be rectified and, if this is not possible, that the disputed nature of the data be added to it.
11.5 Under certain conditions, you have the right to request a ban on processing or disclosure and the deletion or destruction of your personal data if it is not possible for the data to be marked as disputed.
11.6 You may at any time assert your rights as described above with us at the contact address indicated.
11.7 If you consider that the processing of your personal data by us is in breach of the applicable data protection provisions, you may lodge a complaint with the Federal Data Protection and Information Commissioner.
Updated: 01 December 2023