The GDPR entered into force on 25 May 2018 and replaces the Swedish Personal Data Act (PUL). For healthcare, there is specific legislation that will continue to apply even after the GDPR comes into force.
GDPR raises the level of protection in terms of processing personal data, but will not have as much impact in healthcare as in other industries, as the level of protection is already high via the above-mentioned law (PUL).
PERSONAL DATA POLICY
Fysiokliniken Sports & Healthcare VD respects your privacy and the right to have control over your personal data. Read more about how we handle personal data in our Personal Data Policy.
Personal data controller:
Company name: Fysiokliniken Sports & Healthcare CEO
Org. no: 7302100479
Address: Drottninggatan 88, 111 31 Stockholm
Telephone: 08 – 545 21 300
Information we collect about you
On our website it is possible to book care and treatment visits. The information you provide in connection with the booking is handled by us and/or an external system.
We may also collect your data, when you yourself share such information with us via our website, for registration to newsletters or the like.
If you are in contact with us because you are looking for work with us, we will handle the information you send us in your application documents.
Information about your health
When you use our care services, you will share personal data in order for us to fulfill our obligations according to law regarding record keeping. Such information is thus handled in accordance with the Patient Data Act and other applicable laws in healthcare.
Purpose and legal basis for processing your personal data
We handle contact information in order to be able to perform, follow up and quality-assure our services and to maintain ongoing contact with our customers. We handle your data with the support of laws, agreements or customer consent.
If you apply for work with us, we handle your data based on our legitimate interest in running a recruitment process.
We only handle data within the EU/EEA.
With whom we share your personal data
Your personal data may be shared with our service providers, when it is necessary for us to be able to provide and quality-assure our services to you, with the requirement that these parties agree to keep the information confidential. Personal data transferred to our service providers may only be used by them to perform their assigned tasks.
Information about your health is handled in accordance with the Patient Data Act and other applicable laws in healthcare.
Quality follow-up of care
In order to follow up and ensure the quality of our care and treatment services, we use a couple of external suppliers. Personal data processing agreements have been established with these suppliers. One of these suppliers is Reco.se. Our patients' participation in these quality follow-ups is voluntary.
If you want information about what information we have about you or access yourself; to correct, request limitation of or object to our handling of these, please contact us by e-mail.
Regarding handling of the personal data that is based on your consent, this handling can be terminated by withdrawing the consent.
You have the right to request information about your personal data that we have provided from you. The information is then provided in an electronic, commonly used format. You have the right to transfer such data to another personal data controller.
If you are not satisfied with the way in which we have handled your personal data, you have the right to report this to the Swedish Data Protection Authority or another competent supervisory authority.
How we protect your personal data
We have taken appropriate security measures to protect your information so that it is not lost, altered or exposed to unauthorized access.
How long we save your personal data