Privacy Policy

Last updated: December 2025

Table of contents

Privacy Policy

We have written this privacy policy (version 14.12.2024) in order to explain to you, in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679 and applicable national laws, which personal data (in short, data) we as the responsible person — and the contract processors (e.g. providers) commissioned by us — will process in the future and what lawful options you have. The terms used are to be understood as gender-neutral.

In short: We will provide you with comprehensive information about the data that we process about you.

Contact person

Hans Halten, M.D.

Achenweg 12A-6370 Reith bei KitzbühelAustria

contact:email: praxis@halten.atTelephone: +43 664 44 63 826

Overview of processing

The following overview summarizes the types of data processed and the purposes of their processing and refers to the data subjects.

Types of data processed:

  • Inventory data (e.g. names, addresses)
  • contact details (e.g. e-mail, telephone numbers)
  • Content data (e.g. text entries, photographs, videos)
  • usage data (e.g. websites visited, interest in content, access times)
  • Meta/communication data (e.g. device information, IP addresses)
  • Health data (e.g. medical history, treatment data)

Categories of affected persons:

  • interested parties
  • Communication partner
  • users (e.g. website visitors, users of online services)
  • patients

Purposes of processing:

  • Provision of our online offering and user-friendliness
  • Contact requests and communication
  • Appointment management
  • Medical treatment and documentation
  • Safety measures
  • Reach measurement/marketing

Relevant legal bases

The following is an overview of the legal bases of the GDPR on the basis of which we process personal data:

  • Art. 6 para. 1 lit. a DSGVO — Consent
  • Art. 6 para. 1 lit. b DSGVO — Fulfilment of contract
  • Art. 6 para. 1 lit. c GDPR — Legal obligation
  • Art. 6 para. 1 lit. f GDPR — Legitimate interests
  • Art. 9 para. 2 lit. h GDPR — Health data for medical treatment

contacting

If you contact us via contact form, e-mail, telephone or WhatsApp, your details will be stored to process the contact request and process it.

Processed data:

  • name
  • email address
  • phone number
  • Message content
  • Date and time of contact

legal basis: Art. 6 para. 1 lit. b DSGVO (contract initiation), Art. 6 para. 1 lit. f DSGVO (legitimate interest in processing inquiries)

Storage period: Until your request has been completed in full, then deletion in accordance with legal retention periods

medical treatment

We process health data to carry out medical treatments.

Processed data:

  • anamnesis
  • treatment data
  • diagnoses
  • Therapy plans
  • Before and after photographs (with separate consent)

legal basis: Art. 9 para. 2 lit. h DSGVO in conjunction with Section 46 Physicians Act

Storage period: 10 years in accordance with medical documentation requirements

cookies

Our website uses cookies. Cookies are small text files that are stored on your device.

Types of cookies:

  • Necessary cookies: Required for the operation of the website
  • Functional cookies: enable advanced functions
  • Analytical cookies: To improve the website
  • Marketing cookies: For personalized advertising (only with consent)

legal basis:

  • Necessary cookies: Art. 6 para. 1 lit. f DSGVO
  • Other cookies: Art. 6 para. 1 lit. a GDPR (consent)

You can adjust your cookie settings at any time in the cookie settings.

web hosting

We use external hosting services to deliver our website.

Processed data:

  • IP address
  • access data (date, time, pages viewed)
  • Browser information
  • operating system

legal basis: Art. 6 para. 1 lit. f DSGVO (legitimate interest in operating the website)

Your rights

According to the GDPR, you have the following rights:

  • Right to information (Art. 15 GDPR): Right to information about your stored data
  • Right of rectification (Art. 16 GDPR): Right to correct incorrect data
  • Right of deletion (Art. 17 GDPR): Right to delete your data
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Withdrawal of consent (Article 7 (3) GDPR)

To exercise your rights, please contact: hans@halten.at

Right to lodge a complaint

You have the right to complain to the data protection authority:

Austrian Data Protection AuthorDebarichgasse 40-421030 Wien

Telephone: +43 1 52 152-0E-mail: dsb@dsb.gv.atSite: www.dsb.gv.at

data security

We use SSL or TLS encryption to securely transfer sensitive content. You can recognize this by the lock icon in the browser line and by the “https://” at the beginning of the Internet address.

Timeliness and amendment of this privacy policy

This privacy policy is currently valid and was last updated in December 2024. Due to the development of our website or due to changes in legal requirements, it may be necessary to change this privacy policy.