Patient safety is our main focus. There are adequate space and facilities, modern medical equipment and instruments in the Centre, all of which meet the high standards of the needs of the patients.
This UAB “Northway medicinos centrai” Personal Data Processing Policy provides how UAB “Northway medicinos centrai”, legal entity code 111807761, operating at S. Žukausko St. 19, LT-08234 Vilnius (hereinafter, the SPE) processes the Patient’s data, including:
The terms used in this Personal Data Processing Policy are in accordance with the terms used in the agreement that the Patient concluded with the SPE for the provision of healthcare services, as well as the definitions used in legislation, including Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
The SPE is the controller of the Patient’s personal data. The SPE is an appointed Data Protection Officer, its contacts are: phone: +370 5 264 4466, e-mail: firstname.lastname@example.org.
The SPE will process the Patient’s personal data that the Patient will provide to the SPE, including specific data relating to his or her health.
The SPE may also process the Patient’s personal data which can be obtained from other sources: in the cases provided for by law, from other health care institutions, territorial health insurance funds, state enterprise Centre of Registers; from test laboratories, maternity homes, insurance companies with which the Patient has contracted, other companies of the SPE group, such as UAB “Northway chirurgijos centras”, provided that the Patient has entered into a service agreement with this institution.
In order to execute the agreement with the Patient, as well as to provide services adequately, when the Patient is directed, in accordance with the conditions provided for in the agreement for the provision of personal health care services, to partners of the SPE – other health care institutions, the SPĮ may obtain the Patient’s personal data that is necessary for the provision of or settlement for the provided services from the said institutions.
The SPE will process the Patient’s personal data in order to:
The SPE may process the Patient’s personal data on the following grounds:
The grounds for processing are laid down in points (a), (c), (f) and (h) of Article 9(2) of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
With the consent of the Patient to use his or her data for direct marketing purposes, the SPE acquires an opportunity to get to know the Patient, tailor offers to the Patient’s needs, and provide other benefits specially geared towards the Patient, such as personalized offers in newsletters, information on the latest services provided by the SPE and other relevant notifications, as well as to offer services and/or ask an opinion on services. During marketing, the SPE processes the following personal data of the Patient: name, surname, age, gender, telephone number and e-mail address The SPE also uses data profiling and distributes the Patient’s data, such as age and gender, and provides the Patient with relevant, interesting and useful offers and other information based on such data of the Patient. The SPE performs profiling to provide the Patient only with relevant updates and notifications. The Patient will also receive general offers and information.
For example, depending on the Patient’s age, the SPE can provide the Patient with special offers related to health preventive care, etc.
The SPE will send notifications to the Patient to his or her e-mail and by telephone.
If the Patient does not want his or her data to be used for provision of personal offers, the Patient may refuse to give his or her consent to the SPE for direct marketing purposes or withdraw it at any time. In this case, the SPE will no longer be able to provide personalized offers and information useful to the Patient.
The SPE may provide the Patient’s personal data to:
Patients’ personal data will be stored:
The Patient’s data may be stored longer in specific cases provided for by law, when a dispute or complaint is under examination, as well as when it is necessary for the technical functioning characteristics and security requirements of the SPE information system (for example, backup copies, etc.). At the end of the storage period, the Patient’s personal data will be deleted within a reasonable time.
Taking into account the restrictions established by law and under the conditions established therein, the Patient has the right to:
When the Patient’s data is processed in violation of legal requirements, the Patient has the right to lodge a complaint with the State Data Protection Inspectorate (A. Juozapavičiaus St. 6, 09310 Vilnius, e-mail: email@example.com)
When the Patient’s personal data is processed with the consent of the Patient, the Patient always has the right to withdraw the given consent by filing a request to the SPE by contacts indicated by the SPE in this Personal Data Processing Policy and/or the agreement with the Patient.
If you have any questions about the Patient’s rights regarding the processing of personal data, also for the purpose of exercising the Patient’s rights, please contact the SPĮ at S. Žukausko St. 19, Vilnius, by phone: +370 5 264 4466, e-mail: firstname.lastname@example.org.