top of page

Privacy Policy

Introduction

We take the privacy of users of our website and mobile app (the "Website" or "Mobile App") very seriously and are committed to protecting the information that users provide to us in connection with the use of our Website and/or Mobile App (collectively, "Digital Assets"). We are also committed to protecting and using your information in accordance with applicable law.

This Privacy Policy explains our practices regarding the collection, use, and disclosure of your information through the use of our digital assets (the "Services") when you access the Services through your devices.

Please read the Privacy Policy carefully and ensure that you fully understand our practices regarding your information before using our Services. If you have read this policy, fully understood it, and do not agree with our practices, you must stop using our digital assets and services. By using our Services, you agree to the terms of this Privacy Policy. Your continued use of the Services constitutes your acceptance of this Privacy Policy and any changes to it.

In this Privacy Policy, you will learn:

  • How We Collect Information

  • What information we collect

  • Why we collect this information

  • Who we share the data with

  • Where the data is stored

  • How long the data is retained

  • How we protect the data

  • How we deal with minors

  • Updates or changes to the Privacy Policy

What information do we collect?

Below is an overview of the information we may collect:

 

  • De-identified and non-identifiable information that you provide during the registration process or that is collected through the use of our Services ("Non-Personal Information"). Non-personal data does not allow conclusions to be drawn about who collected it. Non-personal information we collect consists primarily of technical and aggregated usage information.

  • Individually identifiable information, i.e. any information from which you can be identified or could reasonably be identified ("Personal Data"). The personal information we collect through our Services may include information requested from time to time, such as names, email addresses, addresses, phone numbers, IP addresses, and more. If we combine personal information with non-personal information, we will treat it as personal information for as long as it is combined.

 

How do we collect data?

Below are the main methods we use to collect data:

 

  • We collect information when you use our services. So, when you visit our digital assets and use services, we may collect, collect, and store usage, sessions, and related information.

  • We collect information that you provide to us, for example, when you contact us directly through a communication channel (e.g., an email with a comment or feedback).

  • We may collect information from third-party sources as described below.

  • We collect data that you provide to us when you sign up for our services through a third party such as Facebook or Google.

 

Why do we collect this data?

We may use your information for the following purposes:

 

  • to provide and operate our Services;

  • to develop, customize, and improve our Services;

  • to respond to your feedback, requests and requests and to offer assistance;

  • to analyze requirements and usage patterns;

  • for other internal, statistical and research purposes;

  • to improve our data security and fraud prevention capabilities;

  • to investigate violations and enforce our terms and policies, and to comply with applicable law, regulations, and/or governmental orders;

  • To provide you with updates, news, promotional materials, and other information related to our Services. In the case of promotional emails, you can decide for yourself whether you want to continue to receive them. If not, just click on the unsubscribe link in those emails.

 

Who do we share this data with?

We may share your information with our service providers to operate our services (e.g., storing data through third-party hosting services, providing technical support, etc.).

 

We may also disclose your information in the following circumstances: (i) to investigate, detect, prevent, or take action regarding unlawful activity or other wrongdoing; (ii) to establish or exercise our rights of defense; (iii) to protect our rights, property, or personal safety, and the safety of our users or the public; (iv) in the event of a change of control of us or any of our affiliates (by way of a merger, acquisition or purchase of (substantially) all of the assets, including, but not limited to; (v) to collect, maintain and/or manage your information through authorized third parties (e.g., cloud service providers) as reasonably necessary for business purposes; (vi) to work with third parties to improve your user experience. For the avoidance of doubt, we would like to point out that we may, at our sole discretion, transfer or otherwise use non-personal information to third parties.

Please note that our Services enable social interactions (e.g., posting content, information, and comments publicly and chatting with other users). Please note that any content or data you provide in these areas may be read, collected, and used by others. We don't recommend posting or sharing information with others that you don't want to make public. If you upload content to our Digital Assets or otherwise make it available as part of your use of a Service, you do so at your own risk. We cannot control the actions of other users or members of the public with access to your data or content. You acknowledge and hereby acknowledge that copies of your data may remain available on cached and archived pages even after they have been deleted or after a copy/storage of your content has been made by third parties.

 

Cookies and similar technologies

When you visit or access our Services, we authorize third parties to use web beacons, cookies, pixel tags, scripts, and other technologies and analytics services ("Tracking Technologies"). These tracking technologies may allow third parties to collect your information automatically to improve the navigation experience on our digital assets, optimize their performance, and provide a tailored user experience, as well as for security and fraud prevention purposes.

 

To learn more, please read our Cookie Policy.

We will not share your email address or other personal information with advertising companies or ad networks without your consent.

Where do we store the data?

Non-personal data

 

Please note that our companies, as well as our trusted partners and service providers, are based around the world. For the purposes explained in this Privacy Policy, we store and process any non-personal information we collect in different jurisdictions.

Personal data

Personal data may be maintained, processed and stored in the United States, Ireland, South Korea, Taiwan, Israel and, to the extent required for the proper provision of our Services and/or by law (as further explained below), in other jurisdictions.

 

How long will the data be retained?

Please note that we retain the information we collect for as long as necessary to provide our services, comply with our legal and contractual obligations to you, resolve disputes, and enforce our agreements.

We may correct, amend, or delete inaccurate or incomplete information at any time at our sole discretion.

 

How do we protect the data?

The hosting service for our digital assets provides us with the online platform through which we can offer our services to you. Your data may be stored through our hosting provider's data storage, databases and general applications. It stores your data on secure servers behind a firewall, and it provides secure HTTPS access to most areas of its services.

 

Category: User accepts payments/eCom

All payment options offered by us and our hosting provider for our digital assets comply with the PCI-DSS (Credit Card Industry Data Security Standard) and the PCI Security Standards Council. This is the collaboration of brands such as Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information (including physical, electronic, and procedural measures) by our store and service providers.

Notwithstanding the actions and efforts taken by us and our hosting provider, we cannot and do not guarantee the absolute protection and security of the information you upload, post, or otherwise disclose to us or others.

For this reason, we ask that you set strong passwords and, if possible, do not provide us or others with confidential information that you believe could cause you material or lasting harm if disclosed. In addition, since email and instant messaging are not considered secure forms of communication, we ask that you do not share confidential information through any of these communication channels.

 

How do we deal with minors?

 

Children can use our services. However, if they want access to certain features, they may have to provide certain information. The collection of some information (including information collected through cookies, web beacons, and other similar technologies) may be automated. If we knowingly collect, use, or disclose information collected from a child, we will notify and obtain parental consent in accordance with applicable law. We do not make a child's participation in an online activity conditional on the child providing more contact information than is reasonably necessary to participate in that activity. We will only use the information we collect in connection with the services the child has requested.

 

We may also use a parent's contact information to communicate about the child's activities on the Services. Parents can access information we have collected from their child, prohibit us from collecting any more information about your child, and request that any information we collect be deleted from our records.

 

Please contact us to view, update or delete your child's data. To protect your child, we may ask you to provide proof of your identity. We may deny you access to the data if we believe that your identity is questionable. Please note that certain data cannot be deleted due to other legal obligations.

We will only use your personal data for the purposes set out in the Privacy Policy and only if we are satisfied that:

 

  • the use of your personal data is necessary to perform or enter into a contract (e.g. to provide you with the services themselves or customer or technical support);

  • the use of your personal data is necessary to comply with relevant legal or regulatory obligations, or

  • the use of your personal data is necessary to support our legitimate business interests (provided that this is done at all times in a manner that is proportionate and respects your privacy rights).

As an EU resident, you can:

 

  • request confirmation as to whether or not personal data concerning you is being processed and request access to your stored personal data and certain additional information;

  • Request receipt of personal data that you have provided to us in a structured, commonly used and machine-readable format;

  • Request correction of your personal data held by us;

  • request erasure of your personal data;

  • object to our processing of your personal data;

  • request the restriction of the processing of your personal data, or

  • lodge a complaint with a supervisory authority.

Please note, however, that these rights are not fully valid and may be subject to our own legitimate interests and regulatory requirements. If you have any general questions about the personal information we collect and how we use it, please contact us as indicated below.

In the course of providing the Services, we may transfer data across borders to affiliates or other third parties and from your country/jurisdiction to other countries/jurisdictions worldwide. By using the Services, you consent to the transfer of your data outside the EEA.

 

If you are a resident of the EEA, your personal data will only be transferred to locations outside the EEA if we are satisfied that there is an adequate or comparable level of protection for personal data. We will take appropriate steps to ensure that we have appropriate contractual arrangements in place with our third parties to ensure that appropriate safeguards are in place so as to minimise the risk of unlawful use, alteration, deletion, loss or theft of your personal data and that such third parties act at all times in accordance with applicable laws.

California Consumer Privacy Rights

 

If you are using the Services as a California resident, you may be subject to legal obligations under the California Consumer Privacy Act (California Consumer Privacy Act; "CCPA") to request access to and deletion of your information.

 

To exercise your right to access and delete your data, please read below how to contact us.

We do not sell users' personal information for the purposes and purposes of the CCPA.

Users of the Services who are California residents and under the age of 18 may request and obtain removal of their posted content by emailing us at the address provided in the "Contact Us" section below. These requests must all be labeled "California Removal Request." All requests must include a description of the content that you wish to be deleted and sufficient information to help us locate the material. We do not accept communications that are not marked or properly conveyed, and we may not be able to respond if you do not provide sufficient information. Please note that your request does not ensure that the material will be deleted in whole or in full. For example, material you post may be republished or reposted by other users or third parties.

Conducting the video consultation via Zoom

To conduct video consultations, we use the video service "Zoom", a service of Zoom Video Communications, Inc., 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA. The processing of personal data is carried out exclusively for the purpose of conducting the medical/nursing/psychotherapeutic consultation on the basis of Art. 6 (1) (b) GDPR (performance of a contract) and – to the extent that special categories of personal data (in particular personal data (in particular personal data – in particular: health data) – on the basis of Art. 9 (2) (h) GDPR in conjunction with Section 22 (1) No. 1 (b) BDSG.

Participation in the video consultation is voluntary. Instead, you can also make an appointment in our practice.

We have concluded a contract processing agreement with Zoom in accordance with Art. 28 GDPR. Zoom generally processes the data on servers within the EU, but in certain cases may transfer data to third countries (esp. USA). Zoom is certified under the Data Privacy Framework, which ensures an adequate level of data protection.

Processed data in the context of the video consultation can be:

  • Last name, first name

  • Contact Details

  • Health data (e.g. medical history, diagnoses, therapy suggestions)

  • Technical connection data (e.g. IP address, device information)

There will be no recording of the video consultation. The data will only be processed for the duration of the consultation hours and will not be permanently stored by Zoom afterwards.

For more information on data processing by Zoom, please visit: https://explore.zoom.us/de/privacy/

Payment processing via Stripe (for credit card payments)

For the processing of payments by credit card, we use the payment service provider Stripe, a service of Stripe Payments Europe, Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland.

The data is processed for payment processing in accordance with Art. 6 (1) (b) GDPR (performance of a contract). Stripe may process personal data such as name, email address, billing address, credit card details and transaction data. Stripe acts as an independent controller.

Stripe may transfer data to third countries (esp. USA). Stripe is certified according to the EU-U.S. Data Privacy Framework, which guarantees an adequate level of data protection.

For more information, please refer to Stripe's privacy policy at:
https://stripe.com/de/privacy

Updates or changes to the Privacy Policy

We may, at our sole discretion, revise this Privacy Policy from time to time, and the version published on the Website will always be up to date (see "Status"). We encourage you to check this Privacy Policy periodically for any changes. In the event of material changes, we will post a notice on our website. Your continued use of the Services after you have been notified of changes to our website will be deemed to be your acknowledgment and agreement to the changes to the Privacy Policy and your agreement to be bound by the terms and conditions of such changes.

 

Contact Now

If you have general questions about the Services or the information we collect about you and how we use them, please contact us at:

 

Name: Dr. med. Jacqueline Metzner, Rolf Metzner

Address: Krummebergstr. 13

Email address: info@dr-metzner.eu

Version of 16.06.2025

bottom of page