Patient rights

We kindly invite you to carefully and completely read the privacy notice regarding the confidentiality of the data!
The official website www.rident.hr / www.dsd.hr is managed by the Polyclinic RIDENT, a limited company for medical treatments in the field of dental medicine and dental laboratory, (hereinafter: Polyclinic RIDENT Ltd.), situated in Rijeka, Franje Čandeka 39, and the Poreč branch in: Istarska 1a, 52 440 Poreč, registered at the Commercial Court in Rijeka MSB: 040188653, Statistic number: 1766333, VAT: 57260863791.

By visiting our websites, the server of Polyclinic RIDENT Ltd. records and collects only your IP address through which we have access to the site you visited. No other personal data will be recorded on our web server if you do not voluntarily enter it in any of our forms. Before collecting and processing any of your data, Polyclinic RIDENT Ltd. is obliged to inform you about the category of data collected, the manner and purpose of collection and processing, and your rights regarding the data collection.

If you voluntarily submit your personal data, by filling in any form or by sending an online inquiry, we will not use, process or transmit it out of the limits that are permitted by the regulations governing the protection of data or which you have specified in your consent statement. Furthermore, your data will be transmitted or disclosed to third parties only if required by the law.

Any changes regarding the Privacy Policy on this site will be performed so you can be informed at any time about which information we collect, store and how and for what purpose we handle them.

The Polyclinic RIDENT Ltd. respects and protects the privacy of its patients, strictly preserves the confidentiality of their personal and medical records and has taken all appropriate organizational and technical measures to protect the personal data and privacy of its employees, patients and business partners.

Protecting your privacy when processing your personal data is very important therefore we process all personal information collected during your visit to our site or the Polyclinic itself in accordance with the data protection and privacy policy.

Access to the personal information databases is solely authorized by the Polyclinic RIDENT Ltd. as well as certain business partners based on contractual and legal obligations. Apart from that, all personal information we store is a professional dental secret in accordance with the Dental Medicine Act and the Code of Dental Ethics and Deontology, therefore Polyclinic RIDENT Ltd. has ensured that your personal information is kept as a professional dental secret by all persons employed at the Polyclinic RIDENT Ltd.. Polyclinics employees, as well as our business partners, are educated in terms of data protection with the aim of protecting privacy as much as possible.

The Polyclinic RIDENT Ltd. uses technical and organizational security precautions to protect all data stored in its databases from inadvertent or deliberate manipulation, loss or destruction and access to unauthorized persons, and will constantly comply with the regulations governing security and data protection.

All information security measures at Polyclinic RIDENT Ltd. have been applied according to the ISO 27001 standard.

We respect your privacy and therefore:

• We will never abuse your personal information in any way
• Your contact and personal information will never be given to any third party
• Your contact and personal information may be disclosed to the third party only with your privilege
• You can unsubscribe from the newsletter mailing list at any time.

1. Which data is collected by Polyclinic RIDENT Ltd.?

Polyclinic RIDENT Ltd. can collect the data regarding your location using your Internet Protocol Address (IP) since the websites listed above and managed by the Polyclinic RIDENT Ltd. are collecting your IP address and then analyzing it through the Google Analytics platform solely for the purpose of enhancing our services ensuring thus the better quality of the dental care we provide, acting in accordance with our legitimate obligations and interests in providing and constantly improving the dental care.

In this case, it is possible that certain data will be stored through and by the Google Analytics platform. If you are interested to learn more about the Google Analytics, you can find out more by clicking on the link below:
https://policies.google.com/privacy?hl=hr

Naše usluge dostupne su Vam i putem online obrazaca na našim web stranicama koji Vam omogućuju izravan kontakt s Poliklinikom RIDENT d.o.o., u svrhu postavljanja upita ili ugovaranja termina za posjet našoj Poliklinici te je moguće da od Vas zatražimo određene osobne podatke isključivo kako bi s Poliklinika RIDENT d.o.o. putem svojih djelatnika mogla čim prije postupiti po Vašem zahtjevu odnosno odgovoriti na Vaš upit.
Our services are also available through online forms on our web pages allowing you to contact the Polyclinic RIDENT Ltd. in order to ask questions or to arrange a visit to our Polyclinic. Consequently we may ask you certain personal information only to enable our employees to respond as soon as possible to your request or respond to your inquiry.

Because of the mentioned above, your personal information such as: email address, name, last name, cell phone number, etc. are required in order to respond to your request or query, so it is mandatory to confirm the form in order to certify that you are familiar with the privacy policy.

In addition, Polyclinic RIDENT Ltd. uses the Internet Chat as a tool for Internet Live Communication with our Polyclinic, collecting the following personal information:

• online chat: IP address
• off-line chat: IP address, name and last name, e-mail address in form of a message (ticket).

By using the Chat, Polyclinic RIDENT Ltd. does not perform any special processing or storage of the information provided. The Chat is used solely for ease the communication with you, however, if you use our chat services in order to make inquiries such as booking an appointment or asking other questions, you will be asked your contact information in order to identify you and act upon your request or question.

By accessing the Polyclinic RIDENT Ltd. website, you agree to the terms and conditions when browsing the sites, using the forms and chats available to you.

2. Why does Polyclinic RIDENT Ltd. collect and process your data?

Your information is collected by the Polyclinic RIDENT Ltd. for the purpose of:

• better and faster delivery of dental services;
• for advertising and sending of informative-promotional materials of the Polyclinic RIDENT Ltd.;
• to improve our business and to develop the dental services we provide to you;
• in order to communicate with you in a more faster and easier way
• for other purposes with your express consent.

Your personal data will not be kept longer than it is necessary for the purpose for which it was collected. This means that data will be destroyed or deleted from our systems when we no longer need it.

_
We will not disclose your personal data and we will take particular care of who and how we pass on your information to. For this purpose, the Polyclinic RIDENT Ltd. has taken all organizational and technical measures of data protection in line with the development of the technology.

_
Disclosing and sharing your personal data is only possible with our trusted and secure business partners with whom we have entered into Personal Data Protection Agreements, exclusively for the purpose of providing services on our behalf. The above-mentioned business partners will be using your data only for purposes provided on our behalf.

_
In addition to this, the data may be disclosed to other recipients as competent bodies only if:

• we were ordered by the law, the decision of the administrative or judicial body
• to comply with the law or to respond to mandatory legal proceedings, and
• to comply with the rules governing our services

The security and confidentiality of your personal data is our primary concern.

About the transfer of your personal data to other recipients beyond the legitimate interests of Polyclinic RIDENT Ltd. which are not necessary for a high level of service, we will promptly notify you and request your consent.

We are warning you that due to the rapid development of technology, every Internet system user must be aware that no system is absolutely safe and how objectively it is not possible to anticipate in advance any risks that may arise using the Internet. In any case, the Polyclinic RIDENT Ltd. puts the security and confidentiality of your personal data in the first place, therefore we will be persistent in our efforts to make the personal data protection system as secure as possible.

3. Social platforms/networks?

Our Services use social plug-ins (“Plugins”). When using the Services that contain the Add-ons, the data can be directly transferred from your device to the social network operator.

The Polyclinic RIDENT Ltd. does not affect the data collected by the Plugin. If you are signed in to the social network, your use of the Service may refer to your social networking account. If you interact with the plugins, clicking “I like”, “Track” or “Share”, or enter a comment, the data can automatically appear on your social network profile. Even if you are not signed in to the social network, it’s possible that the apps will transfer your IP address to the social network operators. Keep this in mind when using our Services.

Information on Social Network Operators regarding the Plugins that are used in our Services (“Operators”), please see the following:

The Plugins Operators used in our Sevices

If you are a member of one or more of the following social networks and you don’t want the Plugin Operator to connect the data concerning your use of our Services with your member data already stored by the Plugin Operator, please log out of the social network before using our Services.
Facebook

Data controller: Facebook Ireland Limited, Hanover Reach, 5–7 Hanover Quay, 2 Dublin, Ireland (“Facebook”). For further information you may visit Facebook’s privacy policy website at
https://www.facebook.com/about/privacy/

Google+

Data controller: Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). For further information you may visit Google’s privacy policy website at https://www.google.com/privacy.

https://www.google.com/privacy

At all times you have the following rights:

The right of access by the data subject

The data subject shall have the right to obtain from the Polyclinic RIDENT Ltd. confirmation as to whether or not personal data concerning him or her are being processed, purposes of the processing, the categories of personal data concerned, the recipients, period of storage and the right to request rectification, erasure, restriction of data processing or objection to data processing.

Right to rectification

The data subject shall have the right to obtain the rectification of inaccurate personal data concerning him or her. The data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement.

Right to erasure

The data subject shall have the right to obtain from the Polyclinic RIDENT Ltd. the erasure of personal data concerning him or her under certain conditions, unless their storage is not prescribed by law.

Right to the restriction of processing

The data subject shall have the right to obtain from the Polyclinic RIDENT Ltd. the restriction of processing concerning him or her under certain conditions.

Right to object

The data subject shall always have the right to object to the processing of personal data concerning him or her.

Right to data portability

The data subject shall have the right to have the personal data transmitted to another data protection officer; where technically feasible, this will be performed automatically.

Right to lodge a complaint with a supervising authority.

*All the above-named rights you may realize by writing to the address of Poliklinike RIDENT d.o.o. or via the personal data protection officer whose contact details are found on the information sheet and published on our web site.

Contact information of the Personal Data Protection Officer of the Polyclinic RIDENT Ltd.:

Name and surname: Danijela Stojanović
Adress and place of work: Franje Čandeka 39, 51 000 Rijeka
E-mail adress: danijela.stojanovic@rident.hr
Tel. number: +385 (0)51 648 900
Fax number: +385 (0)51 648 928

The data we are obliged to provide in accordance with the regulations governing the protection of personal data

Identity and contact details of the controller:

Polyclinic RIDENT, a limited company for medical treatments in the field of dental medicine and dental laboratory, Franje Čandeka 39, 51000 Rijeka, Poreč branch office of the polyclinic, Istarska 1a, 52440 Poreč, OIB: 57260863791 (hereinafter: Polyclinic RIDENT Ltd.).

Processor:

SECURITAS HRVATSKA Ltd., Zagrebačka cesta 145a, 10000 Zagreb, OIB: 33679708526.

Categories of personal data collected and processed by the Polyclinic RIDENT Ltd.:

Polyclinic RIDENT Ltd. has a video surveillance system hence it collects and processes personal data by using a video surveillance system which records data concerning features and movements of persons meaning it creates a video recording which is or is intended to be part of the storage system.

Contact details of the Data Protection Officer of the Polyclinic RIDENT Ltd.:

Name and surname: Danijela Stojanović, mag.iur., Address and place of work: Franje Čandeka 39, 51 000 Rijeka

E-mail address: danijela.stojanovic@rident.hr, Phone: +385 (0) 51 648 900, Fax: +385 (0) 51 648 928.

Purpose of the processing for which the personal data are intended:

Polyclinic RIDENT Ltd. uses a video surveillance system to prevent incidents concerning security and protection of employees, patients, other visitors and assets of the Polyclinic RIDENT Ltd., i.e. to prevent illegal actions towards mentioned persons and assets of the Polyclinic RIDENT Ltd.

The extent of collection and further processing of personal data by using a video surveillance system is limited to the fulfilment of purpose which is necessary and justified for the protection and security of the employees, patients, visitors as well as the assets of the Polyclinic.

Personal Data Processing Method:

The personal data collected through video surveillance is stored on electronic media with the application of all prescribed and appropriate legal, organisational and technical measures thus providing the appropriate security and privacy, including protection from unauthorised and illegal processing and accidental loss, deletion or damage.

The video recorder and the data base content can be accessed only by authorised personnel of the Polyclinic RIDENT Ltd. and persons authorised by them, through a user name and password, and also by the person authorised by the Processor, with the intent to secure privacy of the data and to prevent further unauthorized access and processing.

The video surveillance system has enabled an automated record that documents video surveillance data access (system logs). Such tracking includes the time and the place of access and also the marking of the persons accessing the data.

The legal basis for processing personal data collected through video surveillance:

Polyclinic RIDENT Ltd. collects and processes your personal information according to the REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) and the Law on the implementation of the general data protection regulation.

The period for which the personal data collected by video surveillance will be stored:

Data collected by video surveillance (video recordings) is stored for a period of 15 days and is by expiry appropriately deleted or permanently destroyed. In case of justified need, data collected by video surveillance can be stored longer than the specified period by fulfilling certain conditions prescribed by the Law on the implementation of the general data protection regulation.