Privacy

Dr. Zirak's privacy policy was updated on May 25, 2018
Your privacy is important to Dr. Zirak. We have developed this privacy policy to explain how we collect, use, transfer, and store your personal information. Please take a moment to familiarize yourself with our practices.

Our privacy protection principle
Because your privacy is important to Dr. Zirak, we handle your data in accordance with the following principles:

We always use your personal data fairly, reliably, and transparently for specific, explicit, and legitimate purposes.
You have the right to be clearly informed about how we use your personal data. We will always be transparent about the data we collect and how we use it. We will take all reasonable steps to protect your personal information from misuse and keep it secure. We are committed to complying with all European and national privacy regulations and will cooperate with your national supervisory authority regarding privacy protection if necessary.

Collection and use of personal information
Personal data may be used to identify or contact a single individual directly or indirectly.

You may be asked to provide your personal data when you contact Dr. Zirak via our website or through the integration of your practitioner’s services. Dr. Zirak ensures that only data that is relevant and necessary for achieving the stated purposes is collected, processed, and stored.

There is no legal requirement for you to provide the personal data we request, but failure to do so may prevent us from providing the requested service, answering your questions, or tailoring our services to your needs.

How we use your personal data
The personal data we collect is intended to: match your appointment requests with Dr. Zirak's availability, inform you about appointment status and follow-up services, collect feedback, transmit your personal data to the practitioner to process your appointment, and provide support for both appointment scheduling and associated calendar management.

For each of the purposes listed above, data collection and processing are carried out in accordance with applicable legislation and personal data protection regulations, including the European Union (EU) Regulation 2016/679 of April 27, 2016.

Legitimate interest is the legal basis on which Dr. Zirak collects and processes data to provide users with the best possible service quality, as well as optimal follow-up for their appointments and communications (verifying your contact details, confirmations, reminders, and feedback). The same principle applies when Dr. Zirak collects and processes data to improve the operation of the Site and to carry out optional satisfaction surveys to enhance services.

Who handles your data?
Your data is processed only by Dr. Zirak in the strict context of his medical duties. If you request an appointment via our website, only Dr. Zirak is responsible for processing your personal and appointment data and is responsible for enforcing your right to privacy and safeguarding your data.

Privacy protection questions and rights
You have the right to:

access the data we hold about you (Article 15 GDPR),
request the portability of your personal data, meaning the right to receive the personal data you provided to us in a structured, commonly used, and machine-readable format or to have it sent directly to another controller, when the data is subject to automated processing based on consent or contract (Article 20 GDPR),
ask us to correct (Article 16 GDPR), update, lock, or completely erase your personal data (Article 17 GDPR) found in our records if it is inaccurate, incomplete, ambiguous, outdated, or if its collection, use, disclosure, or storage is prohibited,...
report any misuse of your personal data,
obtain restriction of processing under certain circumstances, such as when you contest the accuracy of the data, for a period allowing us to verify the data’s accuracy (Article 18 GDPR),
withdraw your consent to the processing of your data at any time without affecting the lawfulness of processing based on consent before its withdrawal and unless processing is based on a different legal ground than consent (13-2c GDPR),
file a complaint with the competent data protection authority in your country and/or in Belgium (The Data Protection Authority – DPA),
object to processing unless we can demonstrate that it is based on legitimate grounds (Article 21 GDPR)