As the operator of these pages, we take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this privacy notice.

When you use this website, various personal data is collected. Personal data is data that can be used to personally identify you. This privacy notice explains what data we collect and for what purpose. It also explains how and for what purpose this happens.

We would like to point out that data transmission over the Internet (e.g., when communicating by email) may have security vulnerabilities. Complete protection of data against access by third parties is not possible.

The data processing on this website is carried out by the website owner:

Osteopathic Medicine Medical Center OCP Quirino

Antonio Quirino
Grütstrasse 55
8802 Kilchberg
ocp-quirino.ch
info@zuerichosteopathie.ch
Tel. +41 (0)78 644 36 31

Your data is collected when you provide it to us. This can be, for example, data that you enter in our contact form or provide to us in person in our practice

Other data is automatically collected by our IT systems when you visit the website. These are primarily technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter our website.

The website uses so-called cookies in part. Cookies do not harm your computer and do not contain viruses. They serve to make our offer more user-friendly, effective, and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit ends. Other cookies remain stored on your device until you delete them. These cookies allow us to recognize your browser on your next visit.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases, or in general, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.

Cookies that are required to carry out the electronic communication process or to provide certain functions you desire are stored based on legal basis. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. Insofar as other cookies (e.g., cookies for analyzing your browsing behavior) are stored, they are treated separately in this privacy policy.

This site uses the Google Maps map service via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

To use the features of Google Maps, it is necessary to store your IP address. This information is usually transmitted to a Google server in the USA and stored there. As the provider of this site, we have no influence on this data transmission.

The use of Google Maps is for the purpose of easy location finding of the places specified by us on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

For more information on how user data is handled, please refer to Google’s privacy policy: https://www.google.com/policies/privacy/.

When you submit inquiries to us via the contact form, the information provided in the inquiry form, including the contact details you provided, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not pass on this data without your consent.

The processing of the data entered into the contact form is based exclusively on your consent, which is granted by using the contact form for the provided data. You can revoke this consent at any time. An informal notification by email to us is sufficient for this purpose. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.

The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after your inquiry has been processed). Mandatory legal provisions – especially retention periods – remain unaffected.

For security reasons and to protect the transmission of confidential content, such as inquiries you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

“Personal data” refers to information that can be associated with a specific person. We process various categories of such personal data. The most important categories are provided below for your reference. However, in individual cases, we may also process additional personal data.

• Master Data

Master data includes fundamental information about you, such as salutation, name, contact details, or date of birth. We collect master data especially when you register for one of our services (e.g., contact inquiry, medical examination, or treatment). As part of master data, we may also process health-related data and information about third parties (e.g., family members).

• Contractual data

Contractual data refers to personal data that arises in connection with the conclusion or execution of a contract, such as the type and duration of a treatment contract or the date of purchase between you and us. This category may also include health-related data and information about third parties, for example, information about cases of illness in the family. We primarily enter into contracts with patients, business partners, job applicants, but also with other contracting parties.

• Health Data
  Due to our medical services, we regularly process health data. This category includes all information that allows conclusions to be drawn about the physical or mental health status. We place particular emphasis on the protection of this data. Information on how we handle particularly sensitive data such as health data is provided.

Certain types of personal data are considered “particularly sensitive” under data protection law, such as health data. Depending on the situation, additional categories of personal data may also include such particularly sensitive personal data (e.g., information about religious affiliation in master data, which may be relevant in the context of treatment).

We typically process particularly sensitive personal data only when it is necessary to provide a service, you have voluntarily provided us with this data, or you have consented to the processing. We may also process particularly sensitive personal data if it is necessary to protect legal rights or comply with domestic or foreign legal regulations, if the relevant data has been made public by the affected person, or if applicable law otherwise allows its processing.

• You report health complaints to us.
• You use one of our services and provide information about your medical history, intolerances, allergies, etc.
• You are medically accompanied by us due to your concerns, and we document your course of treatment and make related observations for the traceability of complaints, treatment, and effects.
• Personal data of children also deserve special protection. We generally seek the consent of parents or legal representatives when processing personal data of legally incapacitated children based on consent. If consent has been given for a child by their parents or legal representatives, the child, upon reaching legal capacity, is free to revoke this consent for the future. In the case of specific cases involving legally capable children, we usually let them decide on matters regarding the handling of their data; the law provides for this.
• You apply for an open position and provide information about your health, membership in a union, or about criminal records and legal measures.

• Communication

We want to stay in touch with you and address your individual concerns to the best of our ability. Therefore, we process personal data for communication purposes, such as responding to inquiries, contacting you for questions, scheduling appointments, or clarifying follow-up questions after a completed treatment. For this, we generally use your contact and basic information.

• Billing of Provided Services

To invoice the services provided to you, we collect your basic information as well as details about the reason, type, and duration of your treatment in the Medionline.ch portal of the Ärztekasse Zürich.

• Transmission to Treating Physicians, Medical Institutes, and Similar Facilities Based on an Explicit Patient Request

Upon explicit request from a patient, we can create a medical report on a specific topic and provide it to a defined physician, medical institute, or similar facility (e.g., the health insurance company). This is done on behalf of and in coordination with the patient. For the transmission of this particularly sensitive information, we either use predefined portals or our ocp.quirino@hin.ch, which is reserved for communication with medical professionals.

• Compliance with Legal Requirements

We aim to establish conditions for compliance with legal requirements. Therefore, we also process personal data to fulfill legal obligations and prevent and detect violations. This includes tasks such as receiving and processing complaints and other reports, complying with orders from a court or authorities, as well as measures to uncover and investigate abuses.

• To comply with legal requirements, the following measures are particularly important:
• Administration and Storage of Patient Records
• Personal Disclosure of Risks and Side Effects of Remedies and Medical Interventions
• Making Statutory Reports to Authorities (e.g., for specific diseases)
• Implementation of Health and Safety Concepts
• Investigations into Business Partners
• Receipt and Processing of Complaints and Other Reports
• Conducting Internal Investigations
• Ensuring Compliance and Risk Management
• Disclosure of Information and Documents to Authorities, if legally entitled or obliged
• Participation in External Investigations, e.g., by law enforcement or supervisory authorities
• Ensuring legally required Data Security

• Security and Prvention
  We want to ensure your and our safety and prevent any abuses. For security purposes, we process personal data to ensure IT security, prevent theft, fraud, and misuse, as well as for evidentiary purposes. This may affect all categories of personal data mentioned. We may collect, analyze, and store this data for the stated purposes.

• The purpose of security and prevention includes, for example::
  • Preventing, Defending Against, and Investigating Cyber Attacks and Malware Attacks
  • Analyzing and Testing our Networks and IT Infrastructures, as well as System and Error Checks
  • Monitoring Access to Electronic Systems (e.g., logins for user accounts)
  • Physical Access Controls (e.g., access to practice facilities)
  • Documentation and Creating Backups for Security Purposes

We want to be able to enforce our claims and defend ourselves against claims from others. Therefore, we process personal data to safeguard our legal interests. This may include enforcing claims in court, out of court, or before authorities both domestically and internationally, as well as defending ourselves against claims. Depending on the situation, this may involve processing various types of personal data, such as contact information and details about processes that may have given rise to or could give rise to a dispute.

In particular, legal protection includes:

• Investigating and enforcing our claims, which may also include claims from affiliated companies and our contractual and business partners.
• Defending against claims made against us, our employees, affiliated companies, and our contractual and business partners.
• Assessing the prospects of legal proceedings and other legal, economic, and related matters.
• Participating in proceedings before courts and authorities, both domestically and internationally. For example, we may secure evidence, assess the prospects of legal proceedings, or submit documents to an authority. Authorities may also request us to disclose documents containing personal data.

We implement appropriate technical and organizational security measures to safeguard the security of your personal data, protect them against unauthorized or unlawful processing, and mitigate the risk of loss, accidental alteration, unintended disclosure, or unauthorized access.

However, like all companies, we cannot entirely rule out data security breaches; certain residual risks are unavoidable.

Technical security measures include, for example, the use of encrypted email communication, access restrictions to documents and IT systems, encryption and pseudonymization of data, logging, and the storage of backups. Organizational security measures encompass instructions to our employees, confidentiality agreements, and controls. We also require our processors to implement appropriate technical and organizational security measures.

We process and store your personal data:

• as long as they are subject to a legal retention obligation. Certain data may be subject to a retention period of twenty years. For other data, shorter retention periods apply, such as for records of specific activities on the internet (log data).
• as long as it is necessary for the purpose of processing or for related purposes, typically for the duration of the contractual relationship in the case of contracts.
• as long as we have a legitimate interest in storage. This may be the case, in particular, when we need personal data to enforce or defend claims, for archiving purposes, and to ensure IT security.

As a rule, we request your consent at the beginning of the therapeutic process when collecting personal data. After the mentioned periods have expired, we generally delete your personal data.

• the right to request information from us about whether and what data we process about you;
• the right to have incorrect personal data corrected;
• the right to request the deletion of your personal data;
• the right to request from us the release of certain personal data in a common electronic format or their transfer to another responsible party;
• the right to revoke consent with effect for the future, to the extent that processing is based on consent;
• the right to request further information that may be helpful for the exercise of these rights upon request.

If you have any questions regarding this privacy notice or the processing of your personal data, you can contact us using the contact information provided on our website. You can also reach out to us in the following ways:

Osteopathic Medicine Medical Center OCP Quirino

Antonio Quirino
Grütstrasse 55
8802 Kilchberg
ocp-quirino.ch
info@zuerichosteopathie.ch
Phone +41 (0)78 644 36 31

This privacy policy may be adjusted over time, especially if we modify our data processing practices or if new regulations become applicable. We will actively inform individuals whose contact information is registered with us about significant changes, if this can be done without disproportionate effort. In general, the privacy policy in effect at the beginning of the respective data processing activity applies to that specific processing.

Current Version 1.0. Zürich 23.08.2023