Vinogradska ul. 2b,
51500, Krk
Croatia
E-mail : laboratorij.krk@gmail.com
Tel: +385 51 221 956
Privacy policy
This Notice on the processing of personal data, privacy policy of service users: (hereinafter: “Notice”) applies to the processing of personal data carried out by the Medical Biochemical Laboratory Bonifačić Krk OIB xxxxxxxxxxx (hereinafter: “MBL-Bonifačić”). The term “patient” means all persons to whom health services are provided or have been provided, as well as all other persons who have given their consent to receive information for themselves.
MBL Bonifačić is a health institution that is registered to provide health services, namely for medical biochemistry. Since the primary activity is the provision of health services, MBL Bonifačić acts as the head of personal data processing of its patients.
WHICH CATEGORIES OF PERSONAL DATA ARE COLLECTED AND PROCESSED
MBL Bonifačić collects the following categories of personal data of patients, depending on the nature of the relationship with a particular patient:
Identification data – Name, surname, OIB, passport number for foreign citizens, gender, date, place and country of birth, citizenship, data on residence / stay, etc.
Contact information – Information on residence / stay, telephone number, mobile phone number, email address, etc.
Health data – Data on services provided, data on diagnoses, data on medications taken by the patient, data on pregnancy or previous pregnancies, data on laboratory test results, height, weight, etc.
Accounting and administrative data – Bank card number, various patient typology indicators, etc.
Other Data – Voluntary personal data provided during oral and written communication.
MBL Bonifačić processes personal data that are particularly sensitive data, such as health and medical data, which you provide to us in the framework of providing health services and for the purpose of performing the requested services. MBL Bonifačić also processes your data and / or your child’s data, if the child is under 16 or 18 years of age, depending on the purpose of the processing, and you are the holder of parental responsibility.
FOR WHAT PURPOSES IS PERSONAL DATA PROCESSED?
MBL Bonifačić processes the patient’s personal data primarily for the following purposes:
– MBL Bonifačić processes personal data of the patient during telephone, internet or personal orders, provision of health and related services, as well as for bookkeeping and administrative purposes when collecting services. and for the purpose of providing health services, concluding and executing contracts, for bookkeeping and administrative purposes
Within this processing, identification data, contact data, health data and information, as well as medical data related to health services and the organization of health services, accounting and administrative data are processed.
MBL Bonifačić performs this processing because it is necessary for the execution of the contract for the provision of health services to which the patient is a party or to take action at the request of the patient before concluding the contract. MBL Bonifačić also performs this processing because such processing is necessary to comply with legal obligations, to provide health services, keep appropriate health and medical documentation and to keep appropriate bookkeeping, administrative and accounting documentation.
If you have given us your consent, MBL Bonifačić will process your contact information, such as e-mail address, for the purpose of submitting the findings.
– informing the competent authorities and keeping data in accordance with regulations in the field of health
MBL Bonifačić processes the patient’s personal data due to its obligations to inform the competent authorities (eg state and regional public health institutes) and store data in accordance with health regulations (eg keeping appropriate records of infectious diseases).
Within this processing, identification data, contact data, health data and information and medical data related to health services and organization of health services, accounting and administrative data can be processed, and data voluntarily submitted by the patient during oral and written communication can be processed.
MBL Bonifačić performs this treatment because such processing is necessary to comply with legal obligations to provide health services and to maintain appropriate health and medical documentation.
– management of health service delivery processes
MBL Bonifačić processes the patient’s personal data in order to be able to internally organize the provision of health services in accordance with applicable regulations.
Within this processing, identification data, contact data, health data and information and medical data related to health services and organization of health services, accounting and administrative data can be processed, and data voluntarily submitted by the patient during oral and written communication can be processed.
MBL Bonifačić performs this processing because such processing is necessary to comply with legal obligations to provide health services and to execute contracts for the provision of health and similar services to which the patient is a party or to take action at the request of the patient before concluding the contract.
It is possible that MBL Bonifačić will be obliged to submit personal data of patients to state institutions or supervisory bodies on the basis of laws and other regulations.
HOW LONG IS PERSONAL DATA KEEPED?
MBL Bonifačić keeps personal data for the period necessary to achieve the purposes described above, within the deadlines prescribed by law and other regulations, and in certain cases as reasonable and advisable in the context of the applicable statute of limitations.
It is possible that MBL Bonifačić will be obliged to keep some personal data for a longer period or permanently, as provided by the relevant regulations in the field of health and health insurance or other applicable regulations.
MBL Bonifačić will keep the patient’s personal data accurate and up-to-date, based on the data provided by the patient or determined by MBL Bonifačić in the provision of services.
After the time required to process the data has elapsed, we will securely delete or destroy your data.
WHO HAS ACCESS TO PERSONAL DATA?
Personal data is stored on a protected infrastructure to which access from the outside is restricted. Only persons authorized to maintain it have access to the infrastructure, while only authorized persons explicitly in charge of collecting, processing and using certain personal data within the scope of their work (hereinafter: “authorized persons”) have access to personal data, eg health and administrative staff within the provision of health services and the performance of accompanying accounting and administrative activities.
Authorized persons are obliged to maintain the confidentiality of personal data and act in accordance with applicable regulations, data protection notices, policies, procedures and other general acts and contractual obligations.
To the extent necessary and permitted by regulations, in order to achieve the purposes for which personal data were collected and / or processed, MBL Bonifačić may share them with third parties / recipients as:
– service providers (health insurance providers, cooperating laboratories and institutions for the provision of health services, doctors and authorized health professionals, marketing agencies, providers of accounting services, maintenance of information infrastructure, etc.); and
– state and public authorities, judicial authorities, legal entities with public authority or legal entities in private ownership, when MBL Bonifačić is obliged to provide personal patient data on the basis of legal obligation (eg Croatian Health Insurance Institute, state and regional public institution) health, the ministry responsible for health), or when it is necessary for MBL Bonifačić to protect its rights and interests.
MBL Bonifačić transfers personal data only to the extent necessary to fulfill the appropriate purpose of lawful processing. Where necessary, we have entered into agreements with the aforementioned third parties to ensure appropriate technical and organizational measures for the protection of your personal data.
HOW IS PERSONAL DATA PROTECTED?
In order to protect the patient’s personal data, MBL Bonifačić takes appropriate protection measures that are in accordance with the applicable regulations on the protection of privacy and personal data.
In its operations, MBL Bonifačić has implemented technical, physical and organizational measures to protect the patient’s personal data from accidental or unlawful destruction, accidental loss, damage, alteration, unauthorized disclosure or access and all other forms of illegal and / or excessive processing.
WHAT ARE THE RIGHTS OF PATIENTS AND HOW CAN THEY BE ACHIEVED?
Within the protection of personal data, respondents have the following rights:
– the right to access their personal data, ie the right to request confirmation of whether their personal data are processed and, if such data are processed, the right to request access and information on the processing and a copy of the personal data being processed;
– the right to correct inaccurate and supplement incomplete data;
– the right to delete personal data, in particular if such data are no longer necessary for the purposes for which they were collected, if they have been unlawfully processed, if there is an obligation to delete them in order to comply with legal obligations, or if you have withdrawn consent;
– the right to restrict the processing of personal data;
– the right to object to the processing of personal data;
– the right to submit a complaint to the Personal Data Protection Agency.
MBL Bonifačić will take all measures to enable the respondents to exercise the above rights, but in certain cases the exercise of these rights may be limited or excluded.
WHO TO CONTACT WITH INQUIRIES ON PERSONAL DATA PROTECTION?
You may contact the Data Protection Officer for any additional information, requests or complaints. Or to the following contact information Medical-biochemical laboratory Krk Vinogradska 2b, 51500, Krk Email: laboratorij.krk@gmail.com PHONE: +385 51 221 956 This Notice is effective as of May 22, 2022 and may be amended from time to time.