Dental Practice
Dr. Herrmann-Flechtenmacher
Appointment

Privacy Policy (Datenschutzerklärung)

We appreciate your interest in our practice. The protection of your privacy is very important to us. Below, we provide detailed information about how we handle your data.

1. Data Controller

The party responsible for data processing is:

Dr. med. dent. Christine Herrmann-Flechtenmacher

Franz-Knauff-Straße 2-4

69115 Heidelberg

Email: info@heidelberg-zahnmedizin.de

2. Collection and Storage of Personal Data

2.1 When Visiting the Website

When you access our website, the browser on your device automatically sends information to our website's server. This information is temporarily stored in a so-called log file. The following information is collected without any action on your part and stored until it is automatically deleted:

  • IP address of the requesting device
  • Date and time of access
  • Name and URL of the retrieved file
  • Website from which access was made (referrer URL)
  • Browser used and, if applicable, the operating system of your device and the name of your internet service provider

The aforementioned data is processed by us for the following purposes: ensuring a smooth connection to the website, ensuring comfortable use of our website, evaluating system security and stability, and for other administrative purposes.

2.2 When Using Our Contact Form

For questions of any kind, we offer you the option of contacting us via a form provided on the website. A valid email address and your name are required so that we know who the inquiry is from and can respond to it. Any additional information is provided voluntarily.

2.3 Patient Data

In the course of dental treatment, we collect and process health data. This data is subject to special legal protections and is used exclusively for the purpose of your medical care. The legal basis for this is Art. 9 para. 2 lit. h GDPR in conjunction with § 22 para. 1 no. 1 lit. b BDSG.

3. Disclosure of Data

Your personal data will not be transmitted to third parties for purposes other than those listed below. We only share your personal data with third parties if:

  • You have given your explicit consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR
  • The disclosure is necessary pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR for the establishment, exercise, or defense of legal claims
  • The disclosure is necessary pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR to fulfill a legal obligation
  • It is legally permissible and necessary pursuant to Art. 6 para. 1 sentence 1 lit. b GDPR for the execution of contractual relationships with you (e.g., dental laboratory, health insurance providers)

4. Cookies

Our website uses cookies. Cookies are text files that are stored in the web browser or by the web browser on the user's computer system. When a user visits a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string that enables the browser to be uniquely identified when the website is accessed again.

We use cookies to make our website more user-friendly. Some elements of our website require that the accessing browser can be identified even after a page change. Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a notice always appears before a new cookie is created.

5. Your Rights as a Data Subject

You have the following rights:

  • Right of Access (Art. 15 GDPR): You have the right to request information about your personal data processed by us.
  • Right to Rectification (Art. 16 GDPR): You have the right to request the immediate rectification of inaccurate personal data or the completion of incomplete personal data stored by us.
  • Right to Erasure (Art. 17 GDPR): You have the right to request the erasure of your personal data stored by us, unless processing is necessary for exercising the right of freedom of expression, fulfilling a legal obligation, or establishing legal claims.
  • Right to Restriction of Processing (Art. 18 GDPR): You have the right to request the restriction of processing of your personal data.
  • Right to Data Portability (Art. 20 GDPR): You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to Object (Art. 21 GDPR): You have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data.
  • Right to Withdraw Consent (Art. 7 para. 3 GDPR): You have the right to withdraw your consent at any time.
  • Right to Lodge a Complaint (Art. 77 GDPR): You have the right to lodge a complaint with a supervisory authority.

6. Data Retention Period

Data is deleted as soon as it is no longer necessary for the purpose for which it was collected. For personal data, this is the case when the respective session has ended. Patient data is subject to statutory retention periods (generally 10 years from the completion of treatment).

7. Data Security

When visiting our website, we use the widely adopted SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser. We also employ appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

8. Updates to This Privacy Policy

This privacy policy is currently valid as of February 2026. Due to the further development of our website and offerings, or due to changed legal or regulatory requirements, it may become necessary to amend this privacy policy. The current version of the privacy policy can be accessed and printed at any time on our website under "Privacy Policy."