Your Data and Privacy

The GDPR is the new law for protecting privacy and personal data. Under this law, an organization that works with personal data has certain obligations, and the person whose data it is has certain rights. In addition to this general law, specific rules apply to privacy in healthcare. These rules are mentioned, among others, in the Medical Treatment Agreement Act (WGBO). This privacy policy is intended to inform you about your rights and our obligations under the GDPR and the WGBO.

Practice

In our practice, various personal data about you may be processed. This is necessary to treat you properly and is required for the financial settlement of the treatment. Additionally, processing may be necessary, for example, to combat serious danger to your health or to comply with a legal obligation.

The Obligations of the Practice

De Fysiotherapeut Pijnacker Zuid is, according to the GDPR, responsible for the processing of personal data that takes place in the practice. The practice fulfills the resulting obligations as follows:
• Your data is collected for specific purposes:
– for healthcare provision;
– for efficient management and policy;
– for supporting scientific research, education, and information.
• In principle, no processing takes place for other purposes.
• You are informed of the fact that your personal data is being processed. This can be done by your healthcare provider, but also through a brochure or via our website.
• All employees have committed to De Fysiotherapeut Pijnacker Zuid to handle your personal data confidentially.
• Your personal data is well-secured against unauthorized access.
• Your personal data is not stored longer than necessary for good healthcare provision.

For medical data, this retention period is in principle 15 years (from the last treatment), unless longer storage is necessary, for example for the health of yourself or your children. This is at the discretion of the practitioner.

Your Rights as a Data Subject

You have the following rights:
• The right to know if and which of your personal data is being processed.
• The right to inspect and receive a copy of that data (as long as the privacy of another person is not violated).
• The right to correction, addition, or deletion of data if necessary.
• The right to request (partial) destruction of your medical data. This can only be accommodated if the retention of the data is not of considerable importance to another person and the data does not have to be kept on the basis of a legal regulation.
• The right to add your own statement (of a medical nature) to your file.
• The right to object to the processing of your data in certain cases.

If you want to exercise your rights, you can make this known verbally to De Fysiotherapeut Pijnacker Zuid. Your interests can also be represented by a representative (such as a written authorized person, or your curator or mentor).

Provision of your Personal Data to Third Parties

The employees of De Fysiotherapeut Pijnacker Zuid have the obligation to handle your personal data confidentially. This means, for example, that the healthcare provider needs your explicit permission to provide your personal data. However, there are some exceptions to this rule. Based on a legal requirement, the healthcare provider’s duty of confidentiality can be broken, but also when there is fear of serious danger to your health or that of a third party. Moreover, recorded data can, if necessary, be exchanged verbally, in writing, or digitally with other healthcare providers.

Exchange of Data

De Fysiotherapeut Pijnacker Zuid exchanges, after you have given specific consent, information about your treatment with the general practitioner or the specialist who referred you to the physiotherapist.

Question or Complaint

Do you have a question or a complaint? For example, about with whom we share data or our handling of your medical data? Then we would like to discuss this with you.