Menu

Privacy Policy

1. Who is responsible for your personal data?

In this Privacy Policy we describe how we collect and process your personal data when:

  • you visit our website;

  • you make use of our services;

  • you apply for a job with us;

  • we receive personal data from you for other purposes in the context of our business activities.

Contact details
EuroEyes Switzerland AG
Neuwiesenstrasse 15, CH-8400 Winterthur
privacy@euroeyes.ch

2. What personal data do we process?

2.1 When you visit our website

When you visit our website, the server automatically logs general technical information about your visit. This includes, for example, the IP address and the operating system of your device, the date and time of use, the website from which you visit us, and the type of browser you use to access our website.

If you contact us via the website (e.g. via the booking tool, WhatsApp, e-mail or another contact channel provided on the website) or download content from our website, we process your contact details and other relevant personal data that you provide to us on this occasion, as well as technical data that may be generated when using the respective contact channel.

We use cookies and other tracking technologies to ensure the functionality of our website and make it more user-friendly, to analyse the use of our website and collect information to improve our services, and for marketing purposes. For more information, please see our Cookie Policy.

2.2 When you make use of our services

If you use our services (i.e. book an appointment, come for an eligibility check, treatment or follow-up, etc.), we process the following personal data:

  • identification data (e.g. name, ID, etc.);

  • contact details (e.g. e-mail, address, phone number, etc.);

  • health data (e.g. visual acuity, astigmatism, general health status, medication taken, etc.);

  • communication content;

  • payment data;

  • other relevant personal data you provide to us;

  • technical data, insofar as the process runs via our website (including integrated services) (see above, “When you visit our website”).

Health data are particularly sensitive personal data under data protection law and are subject to a higher standard of protection. For this reason, in addition to the general information about our data processing, you will also find specific information in this Privacy Policy on how we handle your health data and how we protect them.

2.3 When you apply for a job with us

If you apply for a job with us, we collect and process the personal data required to review your application and carry out the recruitment process. This includes in particular:

  • identification data (name, first name, etc.);

  • contact details (e.g. e-mail, address, phone number, etc.);

  • communication content;

  • details of your career and qualifications;

  • the content of your application documents;

  • other data necessary to assess your application.

Most of this personal data is provided directly by you as part of your application. We may also process information from other sources, in particular from references (if you have consented to the collection of references), as well as from publicly available sources (e.g. professional social networks, internet).

2.4 When we receive personal data from you for other purposes in the context of our business activities

In the course of our business activities we also process personal data of other persons, e.g. our contacts at business partners, suppliers and service providers, or of people interested in our services. The personal data processed in such cases typically include identification data, contact details and communication content, as well as other personal data necessary in this context.

We receive this data either directly from you or from other sources, such as other people in your company, business partners and other contacts, or from publicly accessible sources (e.g. social networks).

3. For what purposes do we process your personal data?

We process your personal data:

  • to prepare, conclude, fulfil and enforce contracts in the context of our business activities. This includes in particular the contracts for our services: in this context we also process your health data, e.g. to prepare, follow up and perform treatments.

  • on the basis of and within the scope of your consent, if relevant. You may withdraw a consent once given at any time.

  • to comply with legal obligations (e.g. retention obligation for patient records).

  • within the scope of our interests, to communicate with you and third parties (also outside the preparation or conclusion of a contract), to provide the website and optimise your user experience, to maintain and, if necessary, expand our business relationship with you, to improve, expand and market our services, to ensure IT security and data protection, and to assert, defend or ward off legal claims.

If you use our services, we may create analyses and statistics based on your data to improve, expand and market our services. Where possible, your personal data will be anonymised before analysis.

We may contact you to ask for a review of our services or to request feedback on a review submitted. Submitting a review or feedback is entirely voluntary.

Based on your consent or our legitimate interest in informing persons interested in our services about new developments, we may send you marketing information (e.g. via a newsletter). These marketing e-mails may contain visible or invisible images. If you download these images from the server, we can see whether and when you have opened the e-mail. This helps us better understand how you use our services and adapt them for you. You can deactivate this function in your e-mail program. You can also opt out of receiving our marketing e-mails at any time.

4. In which cases do we disclose your personal data to third parties?

To perform contracts, to safeguard our interests or to fulfil legal obligations, it may be necessary to disclose your personal data to third parties. This includes in particular:

  • our IT service providers, manufacturers of measuring and treatment devices with cloud functions, as well as third-party providers in the areas of payment transactions, billing, debt collection, consulting, sales and marketing;

  • third parties to whom we transfer or merge our company or parts of it;

  • cases where disclosure is necessary to (i) comply with a legal obligation, (ii) ensure IT security and data protection, or (iii) assert, defend or ward off legal claims.

We also transfer personal data abroad, in particular we use IT service providers with data locations in the EU or EEA. Transfers of personal data outside Switzerland, the EU and the EEA are limited as far as possible, but cannot be completely avoided. Where the relevant countries do not have a data protection level recognised by Switzerland, we use standard contractual clauses to ensure adequate protection, supplemented where necessary and possible by additional security measures.

We do not sell or rent personal data to third parties.

5. Data security

We protect your personal data with appropriate technical and organisational security measures against accidental, unlawful or unauthorised manipulation, deletion, alteration, access, disclosure, use or loss.

In particular:

  • we operate a state-of-the-art IT infrastructure;

  • we store health data redundantly in our patient database in Frankfurt (DE) and Paris (FR);

  • our employees only have access to your personal data to the extent necessary or useful for the performance of their tasks.

6. How long do we retain your personal data?

We only store your personal data for as long and to the extent necessary for the purposes described or for legal reasons.

Data relating to analyses and treatments (patient records) are retained for legal reasons for 20 years.

7. What rights do you have in relation to your personal data?

Under the conditions of applicable data protection law and to the extent provided therein, you have the following rights with regard to your personal data:

  • right of access to the personal data we process about you;

  • right to rectification of incorrect personal data;

  • right to erasure of your personal data (“right to be forgotten”);

  • right to restriction of the processing of your personal data;

  • right to data portability (transfer of your personal data to you or a third party);

  • right to object to the processing of your personal data.

Please note that there are exceptions to these rights. In particular, we may be obliged or entitled to continue processing your personal data in order to fulfil a contract, protect our own legitimate interests (such as asserting, defending or exercising legal claims), or comply with legal obligations. In such cases we may or must therefore refuse certain requests or only comply with them to a limited extent.

8. Right to lodge a complaint

If you are not satisfied with the way we process your personal data, you have the right to lodge a complaint with the competent supervisory authority (Federal Data Protection and Information Commissioner FDPIC).

Please contact us first before submitting a complaint, so that we can try to resolve your concern directly. The easiest way is to e-mail us at privacy@euroeyes.ch.

Our website may contain links to third-party websites that are not operated or controlled by us. We are not responsible for whether and how these third parties comply with data protection regulations.

10. Amendments to this Privacy Policy

We may amend this Privacy Policy at any time. New versions take effect for you as soon as we have communicated them by publishing them on our website.