Book appointment

Data protection

Information on the Processing of Your Personal Data in Accordance with Article 13 GDPR

1. General Information

We are pleased that you are visiting our website. Protecting your personal data is very important to us. We strictly comply with the legal provisions of the EU General Data Protection Regulation (GDPR), the Austrian Data Protection Act, and other applicable legal regulations regarding the protection, lawful processing, and confidentiality of personal data. Below, we inform you about how we process your data when you visit and use our website.

2. Controller under the GDPR / Contact Details

feminin
Frau* Mutter* Kind – Ärzte- und Gesundheitszentrum

Nusswaldgasse5
1190 Vienna
Austria

T: +43 1 394 01 08
E: ordination@feminin.at
www.feminin.at

3. Purpose of Data Processing and Legal Basis

General website visits:

When you visit our website, we collect and store access data in log files to ensure the ongoing functionality and accessibility of the website. We process the following information:

  • IP address
  • Date and time of access
  • Referrer URL (websites that directed you to ours)
  • Operating system
  • Name of your Internet Service Provider
  • Browser product and version information
  • Transferred data volume, loading time

The legal basis for this processing is our legitimate interest according to Article 6(1)(f) GDPR. This interest lies in maintaining the functionality, security, and accessibility of the website, and, if necessary, in establishing, exercising, or defending legal claims.

You have the right to object to this processing (Art. 21(1) GDPR). In that case, we will only process your data if compelling legitimate grounds override your interests.

No direct conclusions can be drawn about your identity from the data. Data is automatically deleted once it is no longer needed for the purposes described.

We do not use cookies or similar technologies on our website. Your personal data is therefore not processed for analysis or tracking purposes, nor shared with third parties.

Appointment Scheduling:

You can book appointments online. We process your data for scheduling purposes (e.g. booking, cancellations, follow-ups, rescheduling). We process the following data:

  • Name
  • Date of birth
  • Gender
  • Phone number
  • Treating physician
  • Appointment type (initial consultation, check-up, discussion of findings, etc.)
  • Notes (if applicable)
  • Date and time of the appointment

For security, we use your phone number to send a confirmation code via SMS. Your appointment is only finalized once the code has been entered.
The legal basis is the performance of your treatment contract with us (Art. 9(2)(h) GDPR). You are required to provide this data; otherwise, we may not be able to treat you.

Data sharing: We use mobi.MED Software GmbH for online booking and have a data processing agreement in place.
Storage period: Data is stored in accordance with legal retention obligations (§51(3) Austrian Medical Act) for 10 years after the end of the calendar year of your last consultation.

Appointment Reminders

Via Email:
We send appointment reminders by email to help ensure that appointments are not missed. We process the following data: date, time, doctor, appointment type, and scheduled procedures.

To ensure data protection, we use a double opt-in process. Your registration becomes valid only after you confirm the link sent to your email.

Via SMS:
We also send SMS reminders to your mobile device with similar information.

The legal basis is your explicit consent (Art. 9(2)(a) GDPR), which can be revoked at any time without providing reasons. Revocation can be submitted via email to ordination@feminin.at or by post. Withdrawal does not affect the lawfulness of data processed before the withdrawal. If you do not give or withdraw consent, this feature will not be available to you.

Data sharing: We work with mobi.MED Software GmbH under a data processing agreement.

Storage period: Your data is stored as long as your consent remains valid.

4. Automated Decision-Making and Profiling

We do not use profiling or automated decision-making.

5. Data Disclosure and Recipients

We only share data collected via our website if necessary for the stated purposes (e.g. external service providers for website operation, email providers). We may also be legally obligated to disclose data to authorities (e.g. law enforcement).

We ensure minimal data sharing and comply with data protection obligations (e.g. Art. 28 GDPR contracts, confidentiality agreements, adequate protection levels).

6. Data Retention Period

Data is only stored as long as necessary for the purposes stated or to meet legal obligations. Log files are stored for up to 6 months. Data may also be stored under our legitimate interest for defined periods, without infringing your rights. Once no longer necessary, data is deleted.

7. Data Subject Rights / Your Rights

You have the following rights regarding your personal data. You can assert these rights free of charge and without formality (by email, phone, or post), subject to proof of identity if required:

Right of access – Information on the data we process, for what purposes, and for how long.

Right to erasure – Deletion of your data if no longer needed, unlawfully processed, or consent withdrawn.

Right to rectification – Correction of incorrect or incomplete data.

Right to restrict processing – You can limit data use without requesting full deletion.

Right to data portability – Receive your data in a standard format, or request direct transfer to another provider.

Right to withdraw consent – Withdraw any granted consent at any time for future effect.

Right to object – Object to processing based on legitimate interests. We will stop processing unless we have overriding grounds or need the data to defend legal claims.

8. Right to Lodge a Complaint

If you believe your data protection rights have been violated, you can file a complaint with the data protection authority. In Austria, this is the:

Austrian Data Protection Authority
Barichgasse 40–42
1030 Vienna

9. Data Security

We take all necessary technical and organizational security measures to protect your personal data against loss and misuse. Your data is stored in a secure environment using up-to-date technology.

Access to our website is secured via HTTPS, ensuring encrypted communication between your device and our servers.

10. Miscellaneous

We reserve the right to update or amend this privacy policy. For questions or feedback, please contact us using the contact details above.

Effective Date of this Privacy Policy: 05/2024