Privacy statement
With this privacy statement we want to inform you as a patient about the way in which we as a healthcare provider handle your personal and medical data. The reasons for recording, processing and exchanging your data with other parties (care providers and your health insurer) are explained in more detail below. We also inform you about your other statutory privacy rights.
​
What data do we process?
In the context of our services, we process the following personal data from you:
Name, address, place of residence, citizen service number (BSN), telephone number and, if you have one, your email address.
The data regarding your health and the operations/delivery of podiatric intervention(s) performed by us. We record this data in a medical file. We include other medical information (for example, information from your general practitioner), insofar as this is necessary for proper assistance to you.
When engaging other processors (for example for messaging for healthcare providers), we ensure that your privacy rights are guaranteed in a processor agreement.
​
What do we use your data for?
As healthcare providers, we are obliged to register the BSN. We also have to use that number when we exchange data about a patient. This is stated in the Use of Citizen Service Number in Healthcare Act.
After you have given permission, your data is exchanged with other healthcare providers (such as your general practitioner), via a secure connection.
We use your data in an anonymous form to support scientific research, education and information.
In connection with the payment of your bill by the health insurer, after you have given permission for this, we provide your details of the treatment performed or delivery of podiatric intervention(s) via a secure connection to your health insurer.
In order to provide adequate care, we require that we have your medical data. In connection with the treatment agreement (Medical Treatment Agreement Act) that we enter into with you, we note the data regarding your health and the care we provide/delivery of podiatric intervention(s).
For an audit. Once every five years, an external quality check is performed in our podiatry practice by external independent auditors. The auditors have signed a nondisclosure agreement. The auditors will only have access to your file if you have given permission to do so. Without this permission, the auditors may only view an anonymized file. This is a file from which all your details regarding your identity have been removed.
Intervision, supervision or consultation. In the context of intervision, supervision or consultation, our podiatry practice only uses data from which your identity can not be deduced.
What is the retention period of your medical data?
We are legally obliged to keep your medical data for 15 years.
Other Privacy Rights
You have the right to inspect, adjust data and remove data from your (patient) file.
You have the right to limit and revoke a permission given to us.
The right to data portability: you have the right to easily take data with you and pass it on to another organization.
The right to submit complaints to the Dutch Data Protection Authority. How do we protect your personal data?
Profysic takes the protection of your data seriously and takes appropriate measures to prevent misuse, loss, unauthorized access, unwanted disclosure and unauthorized modification. If you have the impression that your data is not properly secured or there are indications of abuse, please contact us via our email address info@profysic.nl .
We have taken the following measures to protect your personal data
Security software, such as a virus scanner and firewall.
TLS (formerly SSL) We send your data via a secure internet connection. You can see this by the address bar 'https' and the padlock in the address bar.