Privacy policy & Cookies
How we handle your personal data
For us, it is important that you feel confident that we process your personal data in a secure manner. We only process personal data if we have a legal basis for it. We use your personal data to provide you with safe and secure care. We also use the personal data for our business and quality monitoring.
Aeos Lund Sweden AB (hereinafter referred to as Aeos), organization number 559388–7606, is the data controller for the processing of personal data within the framework of our business, which includes Advanced Elective Orthopaedic Services Lund Sweden.
There are mainly two pieces of legislation that govern the handling of personal data within our business – the EU Data Protection Regulation (eng. GDPR = General Data Protection Regulation, May 25, 2018), in Sweden also supplemented by a set of national rules known as SFS 2018: 218, and the Patient Data Act (2008: 355). Necessary technical and organizational security measures protect your personal data with us, and you always have the right to know what personal data we have stored about you. On this page you can read more about our privacy policy.
What is personal data?
Personal data is any information that in one way or another can be linked to a physical, living person, whether that connection is direct or indirect. It can be a name, an email address, a phone number, a mailing address, and a date of birth. Images and film sequences are also a form of personal data, if you can be clearly distinguished in the picture. Location data and IP addresses included in so called cookies are other examples of personal data.
What personal data is processed and why?
We collect the necessary personal data to conduct our business and to provide our patients with safe and secure care in accordance with legislation and regulatory requirements.
Examples of personal data we are required by law (Patient Data Act 2008:355) to keep records are social security number, name, address, telephone, information about when and what you have been treated for and which medications you have been prescribed. Some of the personal data is reported to national quality registers (where they are completely de-identified to third parties).
How is personal data collected and who may access it?
We start processing your personal data in connection with you seeking care with us. The first personal data can thus come directly from yourself or indirectly through a referral. With your consent, it may also mean that we obtain information from Region Skåne, another region or individual healthcare providers, and, where applicable, from the Population Register (Folkbokföringsregistret) and the Swedish Social Insurance Agency (Försäkringskassan).
The information will be transferred to the IT suppliers who provide our technical platforms. In these cases, we have made demands on the supplier to ensure that they handle the data in a secure manner.
Your personal data is used by the employees of the Aeos who have been granted permission to access personal data in order to carry out their work. Strict confidentiality prevails for information about patients’ health and other personal information (Patient Safety Act (2010:659)). We therefore do not disclose personal data to anyone except in cases where we have obtained explicit consent from you or are obliged to do so for legal compliance.
Where and for how long is personal data stored?
Your personal data is stored within the EU/EEA.
Your personal data is not stored longer than is necessary for each purpose. However, laws and regulations may stipulate different times for how long a personal data may be stored; For example, for patient records, these must by law be stored for at least ten years.
What rights do I have as a patient?
Transparency
You can access your personal data held by us. You have the right to access your patient record by, for example, requesting a copy. You also have the right to know who has read your journal, and in which registers your personal data is included.
Change data
You have the right to have incorrect personal data corrected or to have incomplete personal data completed.
Delete data
In some cases, you have the right to have personal data deleted. It is also called the “right to be forgotten” (Art. 17 GDPR). In those cases, Aeos shall delete the data without undue delay.
Data Protection Officer (Dataskyddsombud)
Our Data Protection Officer is tasked with ensuring that Aeos processes personal data in accordance with applicable laws, rules and practices. Here you can turn for general questions about your personal data and to exercise your rights regarding these.
Complaints
If you are not satisfied with how your personal data has been processed or feel that your data has been incorrectly handled, you can contact our data protection officer via gdpr@aeos.se or write to us at the postal address;
Aeos Lund Sweden AB
Sankt Laurentiigatan 10
SE-222 21 Lund
Sweden
You can submit complaints regarding how we process your personal data directly with the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten).
If you would like your medical records to be deleted entirely, it is instead to the Health and Social Care Inspectorate (Inspektionen för vård och omsorg) you should turn.
Cookies
Cookies are files saved on your phone, tablet or computer when you visit a website. They store information about how you use the website, such as the pages you visit. Cookies are not viruses or computer programs. They are very small so do not take up much space.
How we collect information
We use Google Analytics to help analyse how users use the site. The tools use cookies to collect standard Internet log information and visitor behaviour information in an anonymous form. The information generated by the cookie about your use of the website (including location and IP address) is transmitted to Google. This information is then used to evaluate visitors’ use of the website and to compile statistical reports on website activity.
The personal information we gather through forms is stored in our encrypted Microsoft CRM- and marketing system. We don’t collect any sensitive personal data.
How we use cookies
We use cookies to make our website work and to optimize the user experience on the website. For example, by keeping it secure, remember which pop-ups you’ve seen and to measure how you use our website such as which links you click on (analytics cookies).
Third party information sharing
Aeos only uses website visitor information as defined in this policy, this means we will never sell, trade or otherwise share your personally identifiable or anonymized information. This does not include trusted third parties that support us in operating our website or servicing our visitors as long as these partners comply with our privacy guidelines. We may be required to release information when this is mandatory to comply with the law or to protect your or our rights, property or safety.
Consent and changes
By using this website you consent to our website’s privacy policy. Any updates to the privacy policy will be reflected on this page. This page has been last updated in Maj 2023.
Thank you for visiting us! We are committed to protecting your personal information and your right to privacy. If you have any questions or concerns about our privacy policy with regards to your personal information, please contact us at gdpr@aeos.se.