Welcome to our website.
In any event, we will treat your personal data in accordance with applicable rules of medical ethics and our obligations under medical confidentiality.
1. GENERAL PRINCIPLES
1.1. The privacy practices of Hôpital de La Tour, described in this Privacy Statement, comply with the Federal Act on Data Protection of September 25, 2020 (FADP) and the EU General Data Protection Regulation (GDPR) No. 2016/679.
1.2. Hôpital de La Tour operates and makes its sites available on the following domain names: www.la-tour.ch, www.la-tour.ch/campagne-mfm, www.la-tour.ch/campagne-maternite, www.la-tour.ch/en, www.la-tour.ch/international, www.la-tour.ch/medical-fields, www.la-tour.ch/check-up, www.la-tour.ch/rehabilitation-clinic, www.la-tour.ch/virtual_tour.
1.3. Our websites offer users information relating to the services offered by our establishment and contain means of contacting us (contact forms).
2. THE PERSONAL DATA WE COLLECT
2.1. We may collect personal data about you when you fill in a contact form on our sites or subscribe to our newsletter. In these cases, we collect the personal data you provide, including medical data.
3. LOCATION AND ACCESS TO YOUR PERSONNAL DATA
3.1. Your personal data collected through our sites are hosted on servers leased from OFAC (the professional cooperative of Swiss pharmacists) located in the canton of Geneva, with a backup copy in a secure center in German-speaking Switzerland. This personal data is hosted separately from the other data collected and the other data hosted by OFAC (logical separation).
3.2. Access to personal data collected via forms on our sites is limited to the personnel in charge of your file and to any qualified person within Hôpital de La Tour on the basis of the access management rules applicable within the institution.
4. HOW WE USE YOUR PERSONAL DATA
A. The services we provide
4.1. We essentially use the personal data collected via the forms on our sites to respond to your requests for care and to organize your stay at the Hospital in the best possible conditions. For example, your data is used to make an appointment with one of our practitioners. By sending us your information via our contact forms, you consent to your health data being used by our medical and administrative teams to respond to your request.
4.2. We also use your personal data to authorize your access to our sites and to make the site's functionalities available to you. In this respect, we may use identification tools such as cookies so that our sites remember you and make it easier for you to use them.
B. Marketing information for you
4.3. With your consent, we may use your personal data to send you marketing information (typically newsletters), in electronic or paper format, related to the information made available on our sites, which we believe may be of interest to you.
4.4. You may request to no longer receive such information by sending us an email to firstname.lastname@example.org or a letter to the following address: Service de la communication, Hôpital de La Tour, Avenue Jean-Daniel Maillard 3, 1217 Meyrin. Upon receipt of your request, we will promptly confirm by email that your request is being processed. Please note that it may take up to ten days for your request to be fully processed. It is therefore possible that you may receive marketing information during this period.
C. Use for internal purposes
4.5. We use your personal data and information obtained through cookies and similar technologies to improve our sites.
4.6. We also compile anonymized statistical information about the use of our sites. For example, we may use your personal data to generate statistics about the users of our sites based on demographic criteria. This helps us to improve the services we offer.
4.7. We may also use your personal data (including your communications) if we believe it is necessary for security reasons or to investigate possible breaches of personal data. For example, we may use your personal data to conduct investigations, respond to complaints and resolve problems and other criticisms relating to our sites.
D. Non-disclosure of your personal data
5. ACCES TO YOUR PERSONAL DATA BY THIRD PARTIES
A. Publication of statistics
5.1. As indicated above, we may compile statistics on the use of our sites based in particular on your personal data. We may share such statistics with third parties in aggregate form in such a way that they do not include your personal data and you cannot be identified.
B. Contractual partners and affiliates
5.2. We may give some of our contractual partners and affiliated companies access to personal data that you have made available to us through our sites. These contractual partners and affiliated companies help us to operate our sites and to provide the services provided therein. These contractual partners and affiliates are required to sign contracts in which they undertake to protect personal data by means of appropriate security measures.
C. Change of control or sale
D. Legally founded disclosures
5.4. We may need to disclose your personal data if we are legally required to do so or if we believe in good faith that such disclosure is necessary to (i) investigate, prevent, or take action regarding suspected or established illegal activities or to assist public authorities; (ii) enforce any agreements we have with you; (iii) investigate or defend against claims or allegations of third parties; (iv) protect the security or integrity of our sites; or (v) exercise or protect the rights and safety of our users, employees, or others.
6. INFORMATION RELATING TO COOKIES
6.1. Cookies are text files that identify you as a user and store your personal preferences (e.g. language choices) and technical information (including clickstream and clickstream data).
6.3. In order to operate the Site or the Services, we may collaborate with other companies that place cookies or Web beacons on the Site. These companies help us to manage the Site. The use of these technologies by these third parties is then subject to their own personal data processing conditions and is not covered by the Policy.
6.4. You can disable them through your browser's security settings or by using our cookie use banner on your first visit to the site.
6.5. We use different types of cookies for different purposes, for more information please refer to the table below:
Strictly necessary cookies
Strictly necessary cookies are essential to provide you with the services available on our websites and services. As these cookies are strictly necessary to provide you with the website and services, they cannot be disabled in our systems. You can set your browser to block or notify you of these cookies, but some parts of the website or services will not function.
These cookies enable us to improve functionality and personalization. They may be installed by us or by third-party suppliers whose services we have added to our pages. If you do not allow these cookies, some or all of these services may not function properly.
Ex. Youtube, Google maps, Google Tag Manager.
These cookies enable us to count visits and traffic sources in order to measure and improve the performance and functionality of our sites. They help us to know which pages are the most and least popular and to see how visitors move around the site. If you do not allow these cookies, we will not know when you have visited our sites in order to monitor performance.
Ex. Hotjar, Google analytics, Facebook SDK.
These cookies may be installed on our sites by our advertising partners. They may be used by these companies to profile your interests and show you relevant advertising on other sites. They do not store any directly personal information, but are based on the unique identification of your browser and Internet device. If you do not authorize these cookies, advertising will be less targeted.
Ex. Facebook Pixel, Google Ads, Linkedin, Xandr, Double Click.
7. MANAGING YOUR PERSONAL DATA
A. Preliminary observations
7.1. We manage your personal data in accordance with the provisions of this Section. Please note, however, that we must also comply with certain legal requirements, in particular those arising from medical law, in relation to the medical data you may make available to us, it being understood that these requirements may diverge from the provisions of this Section.
7.2. For security reasons and to prevent fraud, any request from you in connection with this Section must be accompanied by appropriate proof of identity.
B. Protection of your personal data
7.3. We do our utmost to prevent leakage or unauthorized disclosure of your personal data. In particular, we implement and maintain measures (including administrative, physical and technical safeguards) to manage the leakage or unauthorized disclosure of your personal data.
7.4. In the event of a data leak, or if we suspect such a leak, (i) we will use our best efforts to notify you promptly, to the extent technically feasible, and (ii) we will cooperate with you to investigate and resolve the incident, including providing reasonable assistance in the event that you need to notify a third party. Upon your reasonable request, we will promptly provide you with access to records relating to the data leak; provided, however, that such records remain confidential information belonging to us and that we are under no obligation to provide you with information belonging to or compromising the security of other users.
7.5. In the event of a data leak, or if we suspect such a leak, we will also inform the relevant authorities, in accordance with applicable regulations.
C. Access to and correction of your personal data
7.6. When we process your personal data, we do our utmost to ensure that it is kept honest and up to date, and that it is processed for the purpose for which it was collected.
D. Retention of your personal data
7.8. We store your personal data in order to provide you with our care services and to enable you to use our websites and the functionalities they contain (such as our newsletter). This does not affect our obligation to retain your personal data.
E. Correction and deletion of your personal data
7.9. You may request the rectification and deletion of your personal data at any time, subject to our retention obligations.
7.10. Following a deletion request, you have 30 days to request a copy of your personal data. We will then make them available to you for transfer or download in a commonly accepted format. We are free not to accept any specific format that you may request, or to accept it only if you pay the costs involved.
7.11. At the end of this 30-day period, we are under no further obligation to retain or disclose your personal data to you. We will therefore delete any copies of your personal data held on our systems, under our control or in our possession.
7.12. We may retain de-identified (anonymous) information once we have deleted your personal data.
8. DATA SECURITY
8.1. We consider data security to be a major concern, which is why we have put in place appropriate security measures (technical and organizational) in compliance with legal requirements and best practice, taking into account the risks involved, to protect your data in particular against accidental or intentional manipulation, loss, destruction, communication or unauthorized access. We also implement similar requirements to ensure data security when providing our services.
10. QUESTIONS OR COMPLAINTS
10.1. If you wish to exercise any of your rights or obtain further information about our personal data protection strategy, please contact us by writing to the following address: Hôpital de La Tour, Avenue Jean-Daniel Maillard 3, 1217 Meyrin or email@example.com. We may ask you to provide proof of your identity (e.g. a copy of your ID card).
10.2. If our response is unsatisfactory, you may refer the matter to the Federal Data Protection and Information Commissioner (FDPIC).