Through the arrival of General Data Protection Regulation we are obliged to better set up a number of things within Salú Vida. We are aware of data within our organization and we must deal with it and ensure that they are not accessible to third parties.
We obtained your data by:
- A consultation you have requested from us
- A treatment you have requested and received from us and has been registered
- An application you made to us to receive a thesis or published article
- Has made it known via the contact form or Email through our website that you wish to receive information about an evening information or participate in an evening information
For all the above-mentioned items, that we have received and stored at least your email address.
A dossier has been created for clients who have also received treatment from us that have been stored in our administration.
Due to the new privacy law (GDPR) General Data Protection Regulation. Requires that with all the clients we as a company are in contact with and data of this in our administration, we inform these clients of this and ask for explicit permission to record this information again.
The GDPR has drawn up a number of rules that you need to know as a person and should also be pointed out.
If after reading these rules, you have questions or want to have access to the information we have stored or would you like to delete them. Then we will be happy to receive a request from you and we will of course accept it.
Below are the rules we are alertto:
- Permission is required
Companies may not process personal information about persons, except if they have a voluntary, specific information-based and unambiguous expression of consent, in the form of a statement or by means of an ‘active act’.
- Right to access
Persons are entitled to access their personal data and the right to know how the data collected over them are used by the company. The company must provide a copy of the personal data in electronic format free of charge if the person so requests.
- The right to be removed
If a person is no longer a customer or no longer authorizes to use his personal data, his data must be deleted.
- The right to transfer data
Persons have the right to transfer their data to another service provider. This should be done in a commonly used and format readable for a computer.
- The right to be informed
This covers all types of data collection by companies, the person must be informed before the data is collected. Customers should expressly consent to the collection of their data. This consent must be given voluntarily; it should not be tacitly assumed.
- The right to correct information
As a result, a person is assured that he can have his data adjusted if they are outdated, incomplete or incorrect.
- The right to restrict data editing
Individuals may require that their data be not edited. Their file is then maintained, but should not be used.
- The right to objection
The right to prevent the data from being edited for direct marketing. No exceptions are possible with this rule; any operation must be discontinued as soon as the request has been received. The person must be informed at the beginning of the communication of this right.
- The right to be informed
If the security of the personal data is potentially compromised by a data breach, the person has the right to be notified within 72 hours of the leak.