Privacy Policy

This privacy policy applies to the website www.arztpraxis-niederlenz.ch and the processing of personal data by the Allgemeinmedizinische Praxis Andre Brzenska.

It complies with the requirements of the Swiss Data Protection Act (nDSG), which has been in force since 1 September 2023, as well as the Federal Act on Data Protection (DSG).

Personal data refers to all information relating to an identified or identifiable natural person. This includes name, email address, telephone number, date of birth and other details.

We collect and process personal data that you voluntarily provide to us, in particular:

• Name - Full name
• Email address - For communication
• Telephone number - For follow-up questions
• Date of birth - If relevant to the inquiry
• Message / Inquiry - The content of your inquiry

This data is only collected when you voluntarily provide it, e.g. via our contact form, by email or by telephone.

Automatically collected data: When visiting our website, technical data is automatically collected, such as:

• IP address (truncated, not stored in full)
• Browser type and version
• Pages visited and time spent
• Date and time of visit

This data is used exclusively for statistical analysis and is not linked to other personal data.

Your personal data is processed for the following purposes:

• Responding to inquiries - Responding to your inquiry via the contact form, email or telephone
• Appointment management - Organising and managing medical appointments
• Billing - For medical services rendered
• Legal obligations - Fulfilling statutory retention requirements in the healthcare sector

What are cookies?
Cookies are small files stored on your device that contain certain information.

Our cookie policy:
We only use technically necessary cookies:

• Session cookies - For the correct functioning of the website
• Consent cookie - To store your cookie consent preference

No analytics or tracking:
We do not use Google Analytics, Google Fonts or any other external tracking systems. Your privacy is important to us.

You can reject cookies in your browser settings at any time. However, this may lead to restrictions when using the website.

Hosting provider: Vercel Inc. (San Francisco, USA)

This website is hosted on Vercel Inc. servers. The following data may be transmitted to Vercel:

• Visitor's IP address
• Request data (HTTP headers)
• Time and date of access

Data protection with Vercel:
Vercel is certified under the Swiss-US Data Privacy Framework (Swiss-US DPF) and thus meets the requirements of the Swiss Data Protection Act. Data transfers to the USA are made under appropriate data protection safeguards.

No external CDNs or third-party services:
We do not use:

• Google Fonts or external font providers
• Google Analytics or similar tracking tools
• Social media pixels (Facebook, Instagram, LinkedIn)
• Email marketing tracking

All fonts and resources are hosted locally.

When you fill in our contact form, the following data is collected:

• Name
• Email address
• Telephone number
• Date of birth (if required)
• Message / Inquiry

Processing:
This data is used to process your inquiry and to contact you. It is not used for any other purposes unless you have expressly consented.

Legal basis:
Processing is based on:

• Art. 31 para. 1 nDSG - Consent (you agree to the processing)
• Art. 31 para. 2 lit. a nDSG - Performance of a contract (responding to your inquiry)

Principle: Your data is not shared with third parties unless this is required by law or you have expressly consented.

Exceptions:

• Hosting provider (Vercel) - Data is transmitted to Vercel for website delivery
• Authorities - Where there is a legal obligation (e.g. court proceedings, official inquiries)
• Medical care - To other medical professionals (e.g. specialists), where necessary and with your consent

We take technical and organisational measures to protect your personal data:

• SSL/TLS encryption - The website uses HTTPS for secure data transmission
• Access control - Only authorised personnel have access to personal data
• Firewalls and monitoring - Protection against unauthorised access
• Regular security updates - All systems are kept up to date

Despite these measures, we cannot guarantee absolute security. Please do not share sensitive information through insecure channels.

General principle: Personal data is only stored for as long as it is necessary for the original purpose.

Retention periods:

• Contact form inquiries - 12 months after the inquiry (or until the matter is resolved)
• Patient data - 10 years after the last contact (statutory requirement in Swiss healthcare)
• Technical logs - 30 days

After these periods, data is deleted or anonymised, provided there is no longer a statutory retention obligation.

Under the nDSG, you have the following rights:

How to exercise your rights:
To exercise any of these rights, contact us at:

andrebrzenska@hin.ch or 062 891 75 81

If you are not satisfied with how we process your data, you can contact the competent Swiss data protection authority:

Federal Data Protection and Information Commissioner (FDPIC)

Feldeggweg 1
3003 Bern
Switzerland

Website: www.edoeb.admin.ch

We may update this privacy policy at any time. The most current version is always available on this website.

For material changes that affect your rights, we will inform you in advance.

Privacy policy last updated: April 2026