Privacy Policy
Introduction
Thank you for being interested in/using our Company's services and products.
When you visit our website, interact with us and use our services and products, we collect and process your personal data.
This policy aims to inform you, in particular, about: (1) the categories of personal data we collect, (2) the purposes for which we process them and the related processing grounds, (3) the storage period of this data, (4) recipients of personal data, (5) your rights and (6) our cookie policy.
The content of this Information Policy is purely informative and does not affect the rights that the legislation offers you. We will do our best to facilitate your exercise of them.
Please, before carrying out the investigations, inform yourself if the investigations you are about to carry out meet the accreditation conditions according to the standards desired by you, any subsequent complaints cannot be taken into account.
Apart from the purpose for which they were taken, your data may also be processed due to the need to comply with a legal obligation to which we are subject, for example in the case of reports with the competent authorities in the field of health, when carrying out possible controls carried out by the legal authorities , in the case of accounting requirements, etc. The retrieved data is to be stored for the period imposed by the specific laws in the field of health. Creativ Dent and the companies in the group do not process data excessively, do not outsource access to them to unauthorized third parties, do not run direct marketing campaigns. In accordance with specific regulations in the field of health, the medical history cannot be deleted.
The processing of personal data by Creativ Dent is intended to be done only for the purpose for which your data was collected, without being processed for a secondary purpose that is incompatible with the main purpose for which your personal data is initially collected. If this does happen, we understand to notify you directly, and if this is not possible, the announcement will be made through the company's website.
The data collected are adequate, relevant and limited to what is strictly necessary for the performance of the medical act/the provision of the medical service by Creativ Dent and/or the companies in the group or the partner ones. In the event that a customer voluntarily provides more information (such as copies of identity cards), it is deleted immediately and the collected information will be used only for the purpose of performing the medical act/providing the medical service. The data is not used for other purposes, not even in commercial communications.
We try to limit our processing of your personal data to a size, scope and frequency that is necessary for the purposes of the processing and to fulfill the purpose for which it was provided. If you apply for a position that is being recruited and your CV does not fit the profile/position being recruited, it will be destroyed without being kept in the database for a possible new position. In the event that you wish to keep your CV and be contacted for another future position, please state this clearly and explicitly.
Operator identity
Your personal data is processed by: CREATIV DENT SRL
Contacts
Postal address: Strada Mitropolit Gavriil Bănulescu-Bodoni 6, MD-2012, Chisinau, Moldova
E-mail address : office@creativdent.md
For an easier way to get in touch, you can use the contact form.
The categories of personal data we process and their source
For the purposes and grounds set out below, we collect and process the following categories of personal data from you, to the extent that you provide us with these types of personal data:
Type of data collected | Examples of processed data |
|---|---|
Medical data(sensitive personal data) | previous illnesses, analyzes and drugs administered in the past, treatment administered; the doctor accessed, medical recommendations, data about your family's medical history, biometric data |
Identification data | name, surname, home address, date of birth |
Contacts | mailing address, email address, telephone number |
Financial data | the bank account, the name of the bank, the number of the bank account or bank card/IBAN code, the name and surname of the holder of the bank account or bank card, the date from which the bank card is valid; bank card expiry date |
Purchase data | the purchase history, the services and products purchased from us, the way of interaction with you |
Technical data | IP address, operating system, browser, geolocation, pages on our site you visit, time spent on those pages and other statistics |
User data | username, password, date and time of authentication, online activity |
Opinions and views | opinions and views transmitted or posted about us on social networks (social media) or that you make known on other public channels |
As shown in the list above, you may provide us with information about other people, for example the medical history of your relatives. When it relates to identified persons or whom we can identify, we will treat this information as personal data of those persons and give them the necessary protection. However, we will respect our professional (including medical) confidentiality obligation to you and will not inform these people of this processing in order to comply with our professional (including medical) confidentiality obligation to you.
We also note that you are under no obligation to provide us with your personal data personal. However, if you do not provide us with the necessary data, it will not be possible for us to provide you with the services you request.
Ways we collect personal data from you
In principle, we collect personal data directly from you, by completing online forms or by communicating with us by post, telephone, e-mail or in person.
We also collect personal data through automated means following use by of our website, including through analytics services, especially if you have a user account and use it.
In addition, we may collect personal data from third party sources (such as analytics service providers) including but not limited to public sources (such as trade register, court portal), as appropriate.
Purpose of processing and legal basis
We process your personal data only to the extent that it is necessary according to the purposes shown in the table below.
Processing means any operation or set of operations performed on personal data or sets of personal data, with or without the use of automated means, such as collection, recording, organization, structuring, storage, adaptation or modification , extracting, consulting, using, disclosing by transmission, disseminating or otherwise making available, aligning or combining, restricting, erasing or destroying.
The goal | Data category | Legal basis |
|---|---|---|
For purposes related to the establishment of a medical diagnosis, the provision of medical assistance or medical treatment | special categories of data: genetic data, biometric data for the unique identification of a natural person, health data | necessary for the execution of our obligations from the contract concluded with you and pursuant to art. 9 para. (2) lit. h) of the GDPR – respectively for the establishment of a medical diagnosis, the provision of medical assistance or a medical treatment. |
In medical emergencies or other situations where you are unable (physically or legally) to consent to processing | special data: genetic data, biometric data for the unique identification of a natural person, health data | necessary to protect your (or another natural person's) vital interests. |
Presentation of our services and products (eg direct marketing) | identification data; contact; data purchase data | necessary in the pre-contractual phase, in case you ask us for a presentation of our services and products; necessary for our legitimate interests to promote our services and products. |
Presentation of an offer (ie price) | identification data; contact; data purchase data | required in the pre-contractual phase if you ask us for an offer (eg price). |
For the purpose of providing/delivering our services/products and generally for the purpose of performing the contract | the data included in the invoices (eg customer name, identification/contact data, services provided, bank account, signature) | necessary for the performance of our obligations under the contract concluded with you;necessary in order to fulfill a legal obligation incumbent on the operator (eg regarding the content of an invoice);necessary for our legitimate interests to pursue and obtain performance of consideration for our services/products. |
For the purpose of accessing financial-banking services (payment with OP / card / in installments) | name, identification/contact data, services provided, bank account, signature | necessary for the performance of our obligations under the contract concluded with you; necessary for our legitimate interests to pursue and obtain performance of consideration for our services/products. |
For the purpose of managing and maintaining our relationship with you (eg through a CRM) | identification data; contact; data purchase data | necessary for the performance of our obligations under the contract concluded with you;necessary for the execution of a legal obligation (eg reporting);necessary for our legitimate interests to manage and maintain our relationship with you. |
For the purpose of administering and protecting our website | technical data given by the user | necessary for the fulfillment of an obligation; necessary for our legitimate interests to administer the site and prevent/fix security breaches. |
For the purpose of analyzing visitor access data to improve our website and visitor experience | technical data given by the user | necessary for our legitimate interests to improve the site and visitor experience. |
For the purpose of fulfilling our legal obligations | necessary to fulfill our legal obligations regarding archiving, health, security, record keeping and other obligations that the legislation imposes on us. | |
Personal data storage period
As a general rule, we will store your data for a period between 6 months and 100 years in the case of medical records.
Personal data are processed as long as they are necessary to fulfill the purposes mentioned above, after which they can be anonymized for research or statistical purposes.
Below, we will present, by way of example, the method by which we determine, for certain specific cases, the duration of storage of your personal data.
Personal data processed for the purpose of presenting our services and products will be retained until you express your will to no longer receive presentations of our services and products, if they are not needed for another purpose.
Personal data processed for the purpose of presenting a price offer will be retained for a reasonable period in order to be able to conclude a contract.
Personal data processed for the purpose of providing/delivering our services/products and, in general, for the purpose of executing the contract, will be retained during the execution of the contract and thereafter for a reasonable period of time and, in any case, for the periods provided by law.
Personal data processed for the purpose of managing and maintaining our relationship with you will be retained for an indefinite period, until the exercise of your right to be forgotten, to the extent that their processing is no longer justified under the law, a contract or our legitimate interest.
Personal data processed for the purpose of administering and protecting our site will be retained for a reasonable period of time.
Personal data processed for the purpose of analyzing visitor access data to improve our website and visitor experience will be retained for a reasonable period of time.
Recipients of personal data
-
Collaborators who offer services and products related or additional to our services and products (eg dental practices, medical practices, accounting firms);
-
Collaborating doctors and other medical service providers (each of them being obliged by law or by the contract concluded with us to keep your data confidential);
-
Consultants with whom we have concluded a contract (eg lawyers, accountants, they being obliged by law or by the contract concluded with us to keep your data confidential);
-
Public authorities from any field, from the Republic of Moldova or abroad (especially public authorities in the field of health) - at their request or at our initiative, in accordance with the applicable legislation;
-
Web hosting service providers who host our website;
-
IT service providers who maintain and develop our website;
-
Analytics service providers (eg Google Analytics);
-
Marketing service providers on our behalf.
Transfer of your personal data
do not transfer and do not intend to transfer your personal data or part of it to other companies, organizations or individuals in third countries or to international organizations.
Security of your personal data
In order to protect the people whose data we process from unauthorized access and unauthorized modification, disclosure or destruction of the data we process, we have implemented the following technical and organizational measures to ensure the security of personal data:
Adoption and revision of dedicated policies and practices regarding the processing of personal data of data subjects;
Data limitation, in the sense of minimizing and processing the necessary, appropriate and relevant data for the purposes of the processing;
Ensuring the accuracy of your data, by completing, updating them, when necessary;
Restricting access to data, in the sense of: (i) restricting the area of people who have access to your personal data (such as our employees or collaborators) and (ii) including contractual mechanisms to ensure their liability in case does not comply with a series of confidentiality and personal data protection obligations;
Constant training of staff in the field of personal data processing;
Implementation of specific technical measures, such as double authentication;
Making periodic back-ups, which we keep secure for optimal periods;
Implementation of attack detection/prevention systems;
Anonymization/pseudonymization of data, when this is possible and appropriate, no longer allowing the identification of the persons to whom it refers.
In the unlikely event of a security breach encountered despite our reasonable security measures, we will follow legal procedures to limit the effects and inform data subjects and the relevant supervisory authority, as appropriate.
Your rights
You have the following rights in relation to your personal data, guaranteed by law:
The right of access to data, i.e. the right to obtain from the operator a confirmation that personal data concerning you is being processed or not and, if so, access to said data.
The right to data rectification, i.e. the right to obtain from the operator, without undue delay, the rectification of inaccurate personal data. Taking into account the purposes for which the data were processed, the data subject has the right to obtain the completion of personal data that are incomplete, including by providing an additional statement.
The right to data deletion (the right to be forgotten), i.e. the right to obtain from the operator the deletion of personal data concerning you, without undue delay, and the operator has the obligation to delete personal data without undue delay, in certain cases (such as: the personal data are no longer necessary for the purposes for which they are collected or processed, the data subjects have withdrawn their consent for the processing and there is no other legal basis for the processing, the data subjects oppose the data processing with personal character concerning them and there are no overriding legitimate interests or the data subject objects to the processing of the data for direct marketing purposes, the processing of the data is illegal).
The right to restriction of processing, i.e. the right to obtain from the operator the restriction of processing in certain cases (such as: the data subject contests the accuracy of the data, the processing is illegal, and the data subject opposes the deletion of personal data, requesting instead the restriction of their use etc.).
The right to data portability, i.e. the right to receive the personal data concerning you that you have provided to the operator in a structured, commonly used and machine-readable format, as well as the right to transmit this data to another operator, both in certain cases.
The right to opposition, i.e. the right to object, for reasons related to your particular situation, to processing based on: (a) the performance of a task that serves a public interest, (b) the performance of a task resulting from the exercise of public authority or (c) for the purposes of the legitimate interests pursued by the operator.
The right not to be the subject of an automated individual decision-making process, i.e. the right not to be the subject of a decision based solely on automated processing, including profiling, which produces legal effects concerning the data subject or similarly affects him to an extent significant, subject to certain conditions.
The right to be notified of a security breach. If the breach of the security of personal data is likely to generate a high risk for the rights and freedoms of natural persons, the operator shall inform the data subject without undue delay about this breach, under certain conditions.
The right to withdraw your consent to processing, if the basis of the processing is your previously given consent.
Also, any person who considers that their rights under the GDPR have been violated as a result of the processing of their personal data without complying with the GDPR has: (i) either the right to submit a complaint to a supervisory authority, (ii) either to appeal to the court.
To exercise one or more of these rights or to ask any question about any of these rights or any provision of this Privacy Policy Information or about any other aspects of the processing of your data by us, please use the contact details whenever you want .
We will try to respond as quickly and completely as possible to all your questions and concerns and facilitate the exercise of your rights, in accordance with the legal provisions.
Changes to this Information Policy
This Information Policy may be updated/amended at different time intervals, and such changes will be brought to your attention accordingly.
OUR WEBSITE USES COOKIES
What is a cookie?
Cookies designate the files stored on your computer, phone or tablet by the web browser (eg Internet Explorer, Mozilla Firefox, Google Chrome, etc.) at the request of a website (eg www.google.ro, etc.). These files contain numbers and figures and are used to store certain information about your activity on a certain website.
What risks does a cookie entail?
A cookie is not a computer program and cannot be used to spread viruses. Therefore, a cookie is not dangerous. However, cookies can still be used for negative purposes. Because they store information about users' preferences and browsing history, cookies can be used as a form of Spyware. Many anti-spyware products are aware of this fact and constantly mark cookies for deletion during anti-virus/anti-spyware deletion/scanning procedures.
Because, through them, information is constantly transmitted in both directions between the browser and the website, if an attacker or unauthorized person intervenes during the data transmission, the information contained in the cookie can be intercepted. Although very rare, this can happen if the browser connects to the server using an unencrypted network (eg an unsecured WiFi network).
How can a cookie be controlled?
These cookies are stored for a period determined by the website at whose request they are saved and can be deleted either by you or by the website that requested their saving (only if this website is revisited) and, in any case, they are automatically deleted when their validity period expires.
You can control and/or delete cookies as you wish. You can delete all cookies that are already on your computer and set most browsers to prevent their placement. If you do this, you may have to manually adjust some settings each time you visit a site, and some services may not work. All modern browsers offer the possibility to change cookie settings. These settings are usually found in your browser's "options" or "preferences" menu.
What types of cookies are there?
Cookies are of two main types: session and persistent.
Session cookies are temporarily stored by your web browser so that it remembers them until you close the web browser window.
Persistent cookies are stored for a longer period by your web browser, even after you close the web browser window. This type of cookies can also be saved by websites other than the one you are visiting (cookies placed by third parties) and can be used anonymously to remember your interests, so that advertising is delivered as more relevant.
For more information on this subject, we invite you to research the dedicated page on the website of the European Commission ( http://ec.europa.eu/ipg/basics/legal/cookies/index_en.htm ).
What kind of cookies does our website use?
Our site uses cookies (both session and persistent) in particular for the following purposes:
A visit to this website may place cookies for the purposes of:
Identification of authenticated users. Thus, every time you log in, a session or persistent cookie, as the case may be, with a unique code is saved on your web browser. If during the validity period of the persistent cookie for authentication, you access our website from the same computer, phone or tablet and the same web browser, you will not need to login again. If according to your web browser settings we cannot save at least session cookies, you will not be able to log in;
Site performance cookies. This type of cookie remembers the user's preferences on this site, so that there is no need to set them each time the site is visited;
Visitor analysis cookies. This cookie tells us if you have visited this site before. It allows tracking of unique users who visit us and how often they do so. As long as you are not registered on this site, this cookie cannot be used to identify individuals, they are only used for statistical purposes. If you are registered on the site, we may also know the details you have provided to us, such as your email address and username - subject to confidentiality and the provisions of the Information Policy, as well as the provisions of the legislation in force regarding the protection of personal data;
Cookies for advertising. These cookies allow us to find out whether or not you have viewed an online ad, what its type is and how long it has been since you saw the ad message. We also use these cookies to target online advertising. We may also use third-party cookies to better target advertising. These cookies are anonymous, they store information about the content viewed, not about the users.
How can you benefit from safe and responsible browsing based on cookies?
The vast majority of the most visited and large websites use cookies, so they are almost unavoidable. Disabling cookies will not allow the user access to the most widespread and used sites, including Youtube, Gmail, Yahoo and others.
Below, we present some tips that can help you navigate with the help of cookies in a safe manner:
Customize your browser settings regarding cookies;
If you share computer access, you may consider setting your browser to delete individual browsing data each time you close your browser;
Install and constantly update your antispyware applications;
Make sure that you always have your browser updated, so that the weak points of old versions of browsers are not allowed to be exploited;
Make sure you connect to secure networks.
How can you accept or refuse cookies on this site?
You can easily accept or refuse cookies on this site by choosing one of the following links: Accept cookies / Refuse cookies.
[Please note that such a section/option is only required if you use cookies that require informed consent. For example, the following types of cookies do not require consent:
(i) authentication,
(ii) security (eg used to detect authentication abuses),
(iii) for multimedia content (eg used to store technical data regarding the playback of a video or audio content),
(iv) to customize the user interface (eg used to choose the language or other preferences of the interface),
(v) third-party cookies for member authentication via social networks].