Make an appointment

nLPD · GDPR

Privacy Policy

Preamble

Dr. Ahmad Haydar and KANAMED Sàrl place the utmost importance on protecting the personal data of patients and visitors to the haydar.ch website.

This privacy policy describes how personal data is collected, processed, used, and protected. It complies with the new Federal Data Protection Act (nLPD), which has been in effect since September 1, 2023, as well as with the provisions of the General Data Protection Regulation (GDPR) for patients residing in the European Union.

Data Controller

The data controller for data collected via the haydar.ch website and in connection with medical activities is:

Dr. Ahmad Haydar
KANAMED Sàrl
Chemin des Grangettes 7
1224 Chêne-Bougeries (Geneva), Switzerland

Email: gyneco@haydar.ch
Phone: +41 (0)22 346 59 09

What data is collected?

1. Data entered via the contact form:

  • Type of request
  • First and last name
  • Date of birth (optional)
  • Phone number
  • Email address
  • Message content

2. Data collected automatically when you visit the site:

  • IP address (anonymized)
  • Browser type and operating system
  • Pages viewed and time spent on each page
  • Date and time of access
  • Referrer

3. Medical information (only during the medical consultation, not via the website):

  • Medical and obstetric history
  • Test results and imaging
  • Clinical follow-up data

Medical data is strictly separated from website data and stored in a secure medical record, which is subject to medical confidentiality (Article 321 of the Swiss Criminal Code).

For what purposes?

The data collected through the contact form is used to:

  • Processing your request
  • Contact you by phone or email
  • Schedule a medical appointment if necessary

The data collected automatically when you visit the site is used to:

  • Measuring website traffic
  • Improving the quality of content and the user experience
  • Detect potential attacks or fraudulent activity

Medical data is used exclusively for:

  • Ensure you have medical coverage
  • Ensuring continuity of care
  • To comply with legal requirements for maintaining medical records (retention period: 20 years after the last medical procedure, in accordance with Swiss law)

On what legal basis?

The processing of data is based on:

  • Your explicit consent when submitting the contact form
  • The performance of a healthcare contract (doctor-patient relationship)
  • A legal obligation (maintenance of medical records, medical confidentiality, record retention)
  • The firm’s legitimate interests (traffic measurement, website security)

Who receives your data?

Under no circumstances will your data be sold, rented, or transferred to third parties for commercial purposes.

Your data may be shared with:

  • The practice staff (medical assistants, midwives), strictly within the scope of your care and in accordance with professional confidentiality
  • The healthcare professionals involved in your care (anesthesiologists, neonatologists, laboratory services, hospital departments), with your consent
  • Your health insurance, regarding the billing of services
  • The competent authorities, in the event of a legal obligation (court order, mandatory reporting, etc.)

The website’s technical service providers (web host, maintenance provider) have access to the data necessary to perform their duties, subject to a contractual confidentiality agreement.

How long is your data retained?

  • Contact form data: 3 years after the last contact, unless the data is converted into a medical record
  • Website browsing data: up to 13 months
  • Medical records (patient files): 20 years after the last medical procedure, in accordance with Swiss legal requirements

What are your rights?

In accordance with the nLPD and the GDPR, you have the following rights regarding your personal data:

  • Right of access to your data
  • Right to rectification in the event of inaccurate data
  • Right to erasure (subject to legal requirements for the retention of medical records)
  • Right to restriction of processing
  • Right to data portability
  • Right to object to processing, within the limits provided by law
  • Right to withdraw your consent at any time

To exercise these rights, please contact the data controller by email at gyneco@haydar.ch or by mail at the firm’s address. You will receive a response within 30 days.

If you believe your rights have not been respected, you may file a complaint with the Federal Data Protection and Information Commissioner (FDPIC):
Feldeggweg 1, 3003 Bern —https://www.edoeb.admin.ch

Cookies and trackers

The haydar.ch website uses cookies to ensure it functions properly and to track visitor traffic.

Categories of cookies used:

  • Technical cookies necessary for the website to function (session, security). No consent required.
  • Audience measurement cookies (Google Analytics or equivalent), anonymized. Consent required.

On your first visit, a cookie management banner allows you to accept, reject, or customize non-essential cookies. You can change your settings at any time by clicking the “Cookie Management” link at the bottom of the page.

How is your data secured?

The haydar.ch website is protected by an SSL certificate (HTTPS). Data entered in the contact form is transmitted in encrypted form.

Medical data is stored in a secure electronic health record system that complies with Swiss cantonal and federal requirements regarding the protection of health data.

Access to the data is restricted to authorized personnel and requires individual authentication. Anyone accessing the data is bound by professional confidentiality.

Changes to this policy

The firm reserves the right to modify this privacy policy at any time, particularly to reflect changes in legislation or technology. The applicable version is the one published on the website on the date of your visit. Any substantial changes will be clearly noted on the website.