Who Is Smile Clinic Slovakia?
Smile Clinic is a group of dental clinics registered in the south-west of beautiful Slovakia. This website was first created 10 years ago to communicate our fantastic dental implant and smile reconstruction services to our English-speaking patients living in Bratislava, Vienna and beyond.
As a fully registered and internationally accredited medical clinic, we take our patient data very seriously and have from the very start ensured that our data-protection meets HIPAA, GDPA and other very strict guidelines.
But just in case you don’t trust us yet, put on your slippers by the fire, put the kettle on for a cuppa, and read on…
Types of data we collect
We don’t collect them for our own use, however, some of the services we use to make our website better may use them without our knowledge, such as WordPress and Google Analytics for example. This data is completely anonymous, and we just use to it see how many visitors and from what regions come to our website.
We have a free wifi service in our clinics, but do not collect any personal information through it at all.
By making an enquiry to Smile Clinic Slovakia, patients are added to our mailing list which we use from time to time to send out news and treatment case studies to help them with their decision whether or not to have their dental treatment done abroad with us. You’re free to opt-in / opt-out at any time through the GDPR compliant settings we have built together with our email provider, MailChimp. (there’s a little link at the bottom of every email we send to you).
As part of our of medical follow-up service, we collect patients email addresses and telephone numbers to follow up with the patient regarding their treatment to ensure that the long-term result is the best that it can be. As with the pre-treatment email communication, you’re free to opt-in / opt-out at any time through the GDPR compliant settings we have built together with our email provider, MailChimp. (there’s a little link at the bottom of every email we send to you).
Your Personal and Medical Information
You can contact our admin team anytime to request a copy, or removal of your personal data by writing to email@example.com. The head admin team member on duty acts as the “data protection officer” for all data collected by our clinics.
Your data, including your x-rays are stored on our own servers in-house with full disk encryption and 24hr monitoring.
Our Promises to You and Our Legal Obligations
This part describes how we may use and disclose your protected health information to carry out treatment, payment or health care operations and for other purposes that are permitted or required by EU and Slovak local law. It also describes your rights to access and control your protected health information. Protected health information is information about you, including demographic information, that may identify you and that relates to your past, present or future physical or mental health or condition and related health care services.
Here in Slovakia, we are required by law to:
• Maintain the privacy of your protected health information;
• Give you this Notice of our legal duties and privacy practices with respect to that information; and
• Abide by the terms of our Notice that is currently in effect.
How We May Use or Disclose Your Health Information
The following examples describe different ways we may use or disclose your health information. These examples are not meant to be exhaustive. We are permitted by law to use and disclose your health information for the following purposes:
A. Common Uses and Disclosures
1. Treatment. We may use your health information to provide you with dental treatment or services, such as dental implants or examining your teeth or performing cosmetic dental procedures. We may disclose health information about you to dental specialists, physicians, or other healthcare professionals involved in your care.
2. Payment. We may use and disclose your health information to obtain payment.
3. Health Care Operations. We may use and disclose health information about you in connection with health care operations necessary to run our practice, including review of our treatment and services, training, evaluating the performance of our staff and health care professionals, quality assurance, financial or billing audits, legal matters, and business planning and development.
4. Appointment Reminders. We may use or disclose your health information when contacting you to remind you of a dental appointment. We may contact you by using a postcard, letter, phone call, voice message, text or email.
5. Treatment Alternatives and Health-Related Benefits and Services. We may use and disclose your health information to tell you about treatment options or alternatives or health-related benefits and services that may be of interest to you.
6. Disclosure to Family Members and Friends. We may disclose your health information to a family member or friend who is involved with your care or payment for your care if you do not object or, if you are not present, we believe it is in your best interest to do so.
7. Disclosure to our Practice Management Software. We disclose your protected health information to our practice management software providers. All of our business associates are obligated, under contract with us, to protect the privacy of your information and are not allowed to use or disclose any information other than as specified in our contract.
B. Less Common Uses and Disclosures
1. Disclosures Required by Law. We may use or disclose patient health information to the extent we are required by law to do so. For example, we are required to disclose patient health information to the Slovak Department of Health so that it can investigate complaints or determine our compliance with local and EU laws.
2. Public Health Activities. We may disclose patient health information for public health activities and purposes, which include: preventing or controlling disease, injury or disability; reporting births or deaths; reporting child abuse or neglect; reporting adverse reactions to medications or foods; reporting product defects; enabling product recalls; and notifying a person who may have been exposed to a disease or may be at risk for contracting or spreading a disease or condition.
3. Victims of Abuse, Neglect or Domestic Violence. We may disclose health information to the appropriate government authority about a patient whom we believe is a victim of abuse, neglect or domestic violence.
4. Health Oversight Activities. We may disclose patient health information to a health oversight agency for activities necessary for the government to provide appropriate oversight of the health care system, certain government benefit programs, and compliance with certain civil rights laws.
5. Lawsuits and Legal Actions. We may disclose patient health information in response to (i) a court or administrative order or (ii) a subpoena, discovery request, or other lawful process that is not ordered by a court if efforts have been made to notify the patient or to obtain an order protecting the information requested.
6. Law Enforcement Purposes. We may disclose your health information to a law enforcement official for a law enforcement purposes, such as to identify or locate a suspect, material witness or missing person or to alert law enforcement of a crime.
7. Coroners, Medical Examiners and Funeral Directors. We may disclose your health information to a coroner, medical examiner or funeral director to allow them to carry out their duties.
8. Research Purposes. We may use or disclose your information for research purposes pursuant to patient authorization waiver approval by an Institutional Review Board or Privacy Board.
9. Serious Threat to Health or Safety. We may use or disclose your health information if we believe it is necessary to do so to prevent or lessen a serious threat to anyone’s health or safety, including our patients & staff.
10. Specialized Government Functions. We may disclose your health information to the military (domestic or foreign) about its members or veterans, for national security and protective services for the President or other heads of state, to the government for security clearance reviews, and to a jail or prison about its inmates.
11. Workers’ Compensation. We may disclose your health information to comply with workers’ compensation laws or similar programs that provide benefits for work-related injuries or illness.
Your Written Authorization for Any Other Use or Disclosure of Your Health Information
The most common use of your data other than the standard health record uses above, involves using photographs, written texts, x-rays, your first name and city data only. We use this in medical case studies in dental presentations or on our own website for potential patients to look at. This, of course, is only done with your written permission, and can be removed at any time should you wish to do so – just let us know.
Your Rights with Respect to Your Health Information
You have the following rights with respect to certain health information that we have about you in our records. To exercise any of these rights, simply write us an email to firstname.lastname@example.org.
A. Right to Access and Review
You may request to access and review a copy of your health information. We may deny your request under certain circumstances. You will receive written notice of a denial and can appeal it. We will provide a copy of your health information in a format you request if it is readily producible. If not readily producible, we will provide it in a hard copy format or other format that is mutually agreeable. If your health information is included in an Electronic Health Record, you have the right to obtain a copy of it in an electronic format and to direct us to send it to the person or entity you designate in an electronic format. We may charge a reasonable fee to cover our cost to provide you with copies of your health information.
B. Right to Amend
If you believe that your health information is incorrect or incomplete, you may request that we amend it. We may deny your request under certain circumstances. You will receive written notice of a denial and can file a statement of disagreement that will be included with your health information that you believe is incorrect or incomplete.
C. Right to Restrict Use and Disclosure
You may request that we restrict uses of your health information to carry out treatment, payment, or health care operations or to your family member or friend involved in your care or the payment for your care. We may not (and are not required to) agree to your requested restrictions, with one exception: If you pay out of your pocket in full for a service you receive from us and you request that we not submit the claim for this service to your health insurer or health plan for reimbursement, we must honor that request.
D. Right to Confidential Communications, Alternative Means and Locations
You may request to receive communications of health information by alternative means or at an alternative location. We will accommodate a request if it is reasonable and you indicate that communication by regular means could endanger you. When you submit a written request to the Privacy Official listed on the first page of this Notice, you need to provide an alternative method of contact or alternative address and indicate how payment for services will be handled.
E. Right to an Accounting of Disclosures
You have a right to receive an accounting of disclosures of your health information for the six (6) years prior to the date that the accounting is requested except for disclosures to carry out treatment, payment, health care operations. The first accounting we provide in any 12-month period will be without charge to you. We may charge a reasonable fee to cover the cost for each subsequent request for an accounting within the same 12-month period. We will notify you in advance of this fee and you may choose to modify or withdraw your request at that time.
F. Right to a Paper Copy of this Notice
You have the right to a paper copy of this Notice. You may ask us to give you a paper copy of the Notice at any time (even if you have agreed to receive the Notice electronically). To obtain a paper copy, please write to email@example.com
G. Right to Receive Notification of a Security Breach
We are required by law to notify you if the privacy or security of your health information has been breached. The notification will occur by email within sixty (60) days of the event. A breach occurs when there has been an unauthorized use or disclosure that compromises the privacy or security of your health information.
The breach notification will contain the following information: (1) a brief description of what happened, including the date of the breach and the date of the discovery of the breach; (2) the steps you should take to protect yourself from potential harm resulting from the breach; and (3) a brief description of what we are doing to investigate the breach, mitigate losses, and to protect against further breaches.
Our Right to Change Our Privacy Practices and This Notice
We reserve the right to change the terms of this Notice at any time. Any change will apply to the health information we have about you or create or receive in the future. We will promptly revise the Notice when there is a material change to the uses or disclosures, individual’s rights, our legal duties, or other privacy practices discussed in this Notice. We will post the revised Notice on our website and will provide a copy of it to you on request.
How to Make Privacy Complaints
If you have any complaints about your privacy rights or how your health information has been used or disclosed, you may file a complaint with us by contacting firstname.lastname@example.org or you may also file a written complaint with the Slovak Department of Health if you’re not satisfied with our response.