PRIVACY POLICY

1.- IDENTIFICATION

  • Holder: SEMESUR SAU
  • Fiscal Identification Number: A-11749538
  • Email: dataprotection@semesur.com
  • Data Protection Officer (DPO): The user can contact the DPO by writing to the address indicated for the attention of the “Data Protection Officer”.

2.- INFORMATION AND CONSENT

The user is informed by reading the present Privacy Policy regarding the form in which SEMESUR collects, processes and protects the personal data facilitated by means of forms available at the following link https://semesur.com/es/index (hereinafter “website”), as well as those of the user´s navigation and those other data that he/she may provide us in the future or that have been communicated to us in the context of medical assistance.
In accordance with the provisions of applicable legislation in the field of protection of personal data, by accepting this Privacy Policy, the user provides his informed, express, free and unambiguous consent so that the personal data provided through the "website" are processed by SEMESUR, being this the Responsible for the Processing, unless, the data arrive through another responsible for the provision of a service.
The user must carefully read the Privacy Policy, which has been drafted clearly and simply for ease of understanding and decide freely and voluntarily if he wishes to provide his personal data to SEMESUR.

3.- OBLIGATION OF THE DATA PROVISION

The data requested in the forms provided in the website are of personal and compulsory character (unless otherwise specified in the required field) in order to meet the established objectives.
Therefore, if they are not provided or are not correctly provided, the users´ requests cannot be addressed.

4.- THE PURPOSE FOR WHICH THE COMPANY PROCESSES THE USER´S PERSONAL DATA AND FOR HOW LONG

The collected personal data will be processed by SEMESUR according to the following objectives:
  • Manage your contact requests, information and consultations with SEMESUR though the channels provided for this purpose on the company website.
  • Provision of the medical services requested for the person in question, including the possible contract conditions in his insurance policy and the necessary steps for the payment.
  • Reception and management of curriculums with purposes associated with the personnel selection.
  • Maintenance, support and update of the website, as well as the contents or restricted areas of users.
  • To solve the possible technical or any other incidents that may occur in relation to the website.
  • Making anonymous statistical reports regarding the access habits and activity developed by users on the website.

5.- WHAT USER´S DATA WILL SEMESUR PROCESS?

SEMESUR will process the requested data and, in any case, those indicated as mandatory for the provision of the requested service.
In the case that the User provides data on behalf of third parties, he/she declares to have their consent and undertakes to transfer the information contained in the Privacy Policy to the interested party, data subject, exempting SEMESUR from any responsibility in this regard. However, SEMESUR may carry out the necessary verifications to verify this fact, adopting the appropriate due diligence requirements, in accordance with current regulations on data protection, including the express request of consent to the interested party.
In the case of medical assistance, the patient can express his right to refuse to provide any information of personal character in which case the doctor in question may consider that in these circumstances he / she cannot provide the assistance and may terminate the service, without any type of negative consequences for the person in question.

6.- WHAT IS THE LEGITIMATION OF THE DATA PROCESSING?

Criteria for making data processing legitimate:
  • The legitimation for contracting any service offered through the website shall be the implementation of such contract.
  • For the selection of personnel, it shall be the candidate´s given consent.
  • For the request for information and contact, it shall be the consent given by the interested party.
  • For the management of consultations, medical assistance, telemedicine, house call visits, specialist´s assistance in hospitals and emergencies, it shall be the fulfillment of the insurance contract according to the conditions of the user´s policy as well as, whenever possible, the consent of the patient.
  • For patient transfer services, hospital information on patient conditions, medical escorts, provision of medical equipment, etc., it shall be the execution of the interested party's contract with his insurance company according to the conditions of his policy.
The user can revoke his consent to any of the treatments, although this will not affect the lawfulness of the treatments carried out previously.

7.- WITH WHOM WILL THE USER'S DATA BE SHARED?

The user's data may be communicated to:
  • The user´s insurance company according to the information that is included in the medical report.
  • Public Administrations, in relation to the competencies attributed to them.
Additionally, the data may be accessible by SEMESUR providers, such access being necessary for the adequate fulfillment of the legal obligations and / or the provision of services related to the aforementioned purposes. These providers will not process the user´s data for their own purposes unless previously informed by SEMESUR.
The recipients indicated in this section may be located within or outside the European Economic Area, in the latter case being duly legitimated international data transfers.

8.- HOW LONG WILL WE KEEP THE USER'S DATA?

The data will be processed during the time needed for the accomplishment of the purposes for which they were collected, unless the user requests his withdrawal from SEMESUR, opposes or revokes his consent.
The medical data will be kept for a minimum of 5 years after its termination, in accordance with the applicable regulations concerning medical records.
In the case of personnel selection, the user´s curricular data will be kept for a period of 6 years.

9.- RESPONSIBILITY OF THE USER

The user:
  • Guarantees that he is older than 16 years and that the data provided to SEMESUR are real, accurate, complete and up-to-date. For this purpose, the user is responsible for the truthfulness of all the data communicated and will keep the information provided in a timely manner, in a way that responds to their actual situation.
  • Guarantees that he has informed third parties whose data he is providing, if applying, of the aspects contained in this document. It also guarantees that he has obtained their authorization to provide their data to SEMESUR for the purposes indicated.
  • Will be responsible for false or inaccurate information provided on the website and for damages, direct or indirect, that this may cause to SEMESUR or to third parties.

10.- THE EXERCISE OF RIGHTS

The user can send a letter to the address indicated in the heading of this Policy or by means of an email to the email dataprotection@semesur.com with the reference "Data Protection", attaching a photocopy of his identity document, in any time and free of charge, to:
  • Revoke the granted consents.
  • Obtain confirmation about whether personal data concerning the user is being processed at SEMESUR or not.
  • Access your personal data.
  • Rectify inaccurate or incomplete data.
  • Request the erasure of your data when, among other reasons, the data is no longer necessary for the purposes that were collected.
  • Obtain from SEMESUR the limitation of data processing when any of the conditions provided in the data protection regulations are accomplished.
  • Request the data portability, in the cases provided for in the legal regulations.
  • File a claim regarding the protection of your personal data with the Spanish Data Protection Agency, at the address Calle de Jorge Juan, 6, 28001 Madrid.

11.- SECURITY MEASURES

SEMESUR will process the user´s data at all times in an absolutely confidential manner and maintain the secret thereof, in accordance with the provisions of the applicable regulations, adopting the necessary technical-organizational measures to ensure the security of your data and avoid their alteration, loss, process or unauthorized access, taking into account the state of the technology, the nature of the stored data and the risks of their exposal.

12.- APPLICABLE LEGISLATION

All actions regarding the User´s personal data are subject to the General Data Protection Regulation (REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 related to the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (General Data Protection Regulation), GDPR (Organic Law 3/2018, of December 5, Protection of Personal Data and the Guarantee of Digital Rights) and other applicable legislation. These obligations are established without prejudice to the legal obligations derived from Law 41/2002, of November 14, for the regulation of the autonomy of the patient and rights and obligations with regard to the information and clinical documentation.
English