Data protection regulation
Data Protection Statement of the BPY Healthcare Limited
We are delighted by your interest in our company. Data protection is a matter of particular importance for the management of the BPY Healthcare Limited In principle, the website of the pjur group Luxembourg can be accessed without disclosing any personal data. However, personal data might need to be processed if a person concerned would like to make use of our company’s particular services via our website. If personal data have to be processed and there is no legal basis for such processing, we generally obtain the consent of the person concerned.
As the party responsible for processing (controller), the BPY Healthcare Limited has implemented numerous technical and organisational measures to ensure that the personal data processed via this website are protected as effectively as possible. Nevertheless, security vulnerabilities may arise in the course of Internet-based data transmissions, meaning that absolute protection cannot be guaranteed. This is why each person concerned is at liberty to use alternative routes, such as by telephone, to transmit personal data to us.
This data protection statement provides clarification about the type, scope and purpose of processing personal data (hereinafter abbreviated to “data”) within our online offer and the websites, functions and content associated therewith as well as our external online presence, such as our social media profile. (hereinafter referred to jointly as our “online offer”). With regard to the terms used, such as “processing” or “controller”, we refer to the definitions in article 4 of the General Data Protection Regulation (GDPR).
BPY Healthcare Limited
Unit 7 Downley Point
Link to imprint: https://shop.pjurlove.co.uk/imprint
Data Protection Officer contact details
If you wish to assert your rights in relation to your personal data or if you have further questions about the data you hand over to us, please contact us as follows:
BPY Healthcare Limited
Unit 7 Downley Point
Fon: +44 (0) 2392 177070
Each person concerned may contact our Data Protection Officer directly at any time with any questions or suggestions concerning data protection.
Types of data processed:
- Basic data (e.g. names, addresses).
- Contact data (e.g. email, telephone numbers).
- Content data (e.g. text input, photographs, videos).
- Usage data (e.g. websites visited, interest in content, access times).
- Meta/communication data (e.g. device information, IP addresses).
Categories of persons concerned
Visitors and users of the online offer (hereinafter, we identify the persons concerned collectively as “users”).
Purpose of processing
- To make the online offer, its functions and content available.
- To answer contact requests and communicate with users.
- Security measures.
- Reach measurement/marketing
“Personal data” are all information, which relates to an identified or identifiable natural person (hereinafter “person concerned”); a natural person, who can be identified by assignment to an identifier, such as a name, to an identification number, to locations, to an online identifier (e.g. cookie) or to one or several particular features, which are an expression of the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person, is viewed as identifiable.
“Processing” is any operation or any set of operations performed on personal data, whether or not by automated means. The term is far reaching and comprises practically any operation involving data.
“Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
Relevant legal basis
In accordance with article 13 of the GDPR, we disclose the legal basis of our data processing to you. If the legal basis is not specified in the data protection statement, the following shall apply: The legal basis for obtaining consent is article 6 (a) and article 7 of the GDPR, the legal basis for processing to perform our services and carry out contractual measures and to answer enquiries is article 6 para. 1 (b) of the GDPR, the legal basis for processing to comply with our legal obligations is article 6 para. 1 (c) of the GDPR and the legal basis for processing to safeguard our legitimate interests is article 6 para. 1 (f) of the GDPR. In the event that vital interests of the person concerned or another natural person make processing of personal data necessary, article 6 para. 1 (d) of the GDPR serves as the legal basis.
Collaboration with processors and third parties
If we disclose data to other persons and companies (processors or third parties) as part of our processing, transfer data to them or otherwise grant them access to the data, this will only take place on the basis of legal permission (e.g. if transmission of the data to third parties, such as to payment service providers, is necessary pursuant to article 6 para. 1 (b) of the GDPR to fulfil a contract), you have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).
If we commission third parties to process data on the basis of a so-called processing agreement, this will take place on the basis of article 28 of the GDPR.
Transmissions to third countries
If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or this occurs in the context of utilising third parties’ services or disclosing or transmitting data to third parties, this will only take place if it is to fulfil our (pre)-contractual obligations, on the basis of your consent, because of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we shall only process or have the data processed in a third country if the particular preconditions of article 44 et seq. of the GDPR are met. I.e. the processing takes place, for instance, on the basis of special guarantees, such as the official recognition that the data protection level corresponds to that of the EU (e.g. the “privacy shield” for the USA) or compliance with officially recognised special contractual obligations (so-called “standard contractual clauses”).
Rights of persons concerned
You have the right to demand confirmation of whether relevant data are processed and ask for information about these data and for further information and copies of the data in accordance with article 15 of the GDPR.
In accordance with article 16 of the GDPR, you have the right to request completion of any incomplete data concerning you or rectification of inaccurate data concerning you.
In accordance with article 17 of the GDPR, you have the right to request that relevant data are erased immediately or alternatively request that processing is limited in accordance with article 18 of the GDPR.
You have the right to request that you receive data, which you have made available to us, in accordance with article 20 of the GDPR and to demand their transmission to other controllers.
You also have the right according to article 77 of the GDPR to lodge a complaint with the competent supervisory authority (National Commission for Data Protection (CNPD) Luxembourg).
Right of revocation
You have the right to withdraw any granted consent with future effect in accordance with Art. 7, Para. 3 of the GDPR
Right of objection
You can object to the future processing of the affected data at any time in accordance with Art. 21 of the GDPR. This objection can be made in particular to the processing of data for direct advertising purposes.
Cookies and the right of objection regarding direct advertising
“Cookies” are small files that are saved on a user’s computer. Various different information can be saved within the cookies. A cookie primarily serves to save information relating to a user (or to the device on which the cookie is saved) during or after visiting an online site. Temporary cookies, also known as “session cookies” or “transient cookies”, are cookies that are deleted after a user leaves an online site and closes his or her browser. Information such as the contents of a shopping basket on an online shop or a user’s login status can be saved in this type of cookie. “Permanent” or “persistent” cookies are cookies that are still saved after closing the browser. For example, the login status can be saved if the user visits the site again after several days. The user’s interests can also be saved in this type of cookie, and will then be used for audience measurements or for marketing purposes. “Third-party cookies” are cookies from providers other than the one responsible for the operation of the online content (unless the only cookies are those of the responsible provider, which are referred to as “first-party cookies”).
We can use temporary and permanent cookies and we provide clarification on this as part of our data protection statement.
If users do not want cookies to be saved on their computer, they will be invited to deactivate the corresponding option in the system settings for their browser. Saved cookies can be deleted in the system settings for the browser. The deactivation of cookies can lead to functional restrictions of the online content.
Deletion of data
The data we process is deleted or has restrictions imposed on its processing in accordance with Art. 17 and 18 of the GDPR. Unless expressly stated as part of this data protection statement, the data we save is deleted as soon as it is no longer necessary for its intended purpose and provided that deletion is not prohibited as a result of legal retention provisions. If data is not deleted because it is required for other, legally permissible purposes, there will be restrictions imposed on its processing. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that needs to be stored for commercial or tax reasons.
We also process
- Contract data (e.g. object of the contract, term, customer category).
- Payment data (e.g bank details, payment history)
of our customers, interested parties and business partners for the purpose of providing contractual services, customer service and support, marketing, advertising and market research.
The hosting services we use provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services that we use for the purposes of operating this online content.
As part of these services, we or our hosting provider will process the inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors to this online content, on the basis of our legitimate interests in the efficient and secure provision of this online content in accordance with Art. 6, Para. 1, lit. f of the GDPR in conjunction with Art. 28 of the GDPR (conclusion of order-processing agreement).
Collection of access data and log files
We or our hosting provider will, on the basis of our legitimate interests within the meaning of Art. 6, Para.1, lit. f of the GDPR, collect data on access to the server where this service is located (known as server log files). The access data includes the name of the accessed website, the file, date and time of access, the amount of transmitted date, a notification regarding successful access, the browser type and version, the user’s operating system, the referrer URL (previously visited website), the IP address and the requesting provider.
Log file information is saved for security reasons (e.g. to clarify misuse or fraud) for a maximum of 7 days and is then deleted. Data that needs to be stored for a longer period for the purpose of providing evidence, it is exempted from this deletion until the issue has been fully cleared up.
Provision of contractual services
We process inventory data (e.g. names and addresses of users, together with contact details), contract data (e.g. services used, names of contact persons, payment information) for the purpose of meeting our contractual obligations and services in accordance with Art. 6, Para. 1, lit. b. of the GDPR. The information marked as mandatory in the online forms is necessary for conclusion of the contract.
As part of the use of our online services, we will save the IP address and time of each user transaction. This data is saved on the basis of our legitimate interests and those of the user with regard to protection against misuse and other unauthorised access. As a general rule, we will not pass this data on to third parties unless this is necessary for the pursuit of our claims or if there is a legal obligation to do so in accordance with Art. 6, Para. 1, lit. c of the GDPR.
We will process usage data (e.g. the visited websites of our online content, interest in our products) and content data (e.g. information entered in a contact form or user profile) for advertising purposes within a user profile in order to show the user content such as product instructions based on their previously used services.
The data is deleted on expiry of the statutory warranty and other comparable obligations, and the need for data storage is reviewed every three years; in the event of statutory archive obligations, the data will be deleted on expiry of this obligation period. Information in a customer account will be stored until it is deleted.
Users have the option of creating a user account. As part of the registration process, users will be informed of the required mandatory information. The data entered during registration will be used for the purposes of the use of the content. Users can be sent information that is relevant to the services or the registration via email, such as information on any changes to the services on offer or the technical circumstances. Once users have terminated their user account, their data relating to the user account will be deleted, provided that the storage of this data is not necessary for commercial or tax reasons in accordance with Art. 6, Para. 1, lit. c of the GDPR. Users are responsible for backing up their data prior to the end of the contract in the event of a termination. We are entitled to irretrievably delete all user data saved during the duration of the contract.
As part of the use of our registration and login functions and the use of the user account, the IP address and the time of the relevant user transaction will be saved. This data is saved on the basis of our legitimate interests and those of the user with regard to protection against misuse and other unauthorised access. As a general rule, we will not pass this data on to third parties unless this is necessary for the pursuit of our claims or if there is a legal obligation to do so in accordance with Art. 6, Para. 1, lit. c of the GDPR. The IP addresses will be anonymised or deleted after 7 days at the latest.
When a user contacts us (e.g. via a contact form, email or social media or over the telephone), we will process the user information in order to process and deal with the contact request in accordance with Art. 6, Para. 1, lit. b of the GDPR). The user information may be saved in a Customer Relationship Management system (“CRM system”) or comparable request organisation.
We will delete the requests once they are no longer necessary. We review the necessity of the requests every two years; the statutory archive obligations also apply.
Comments and posts
If users leave comments or other posts, their IP addresses will be saved for 7 days on the basis of our legitimate interests within the meaning of Art. 6, Para. 1, lit. f of the GDPR. This is for our own safety, in case a user leaves illegal content in a comment or post (libel, prohibited political propaganda etc.). In such cases, we can be sued for the comment or post and therefore have an interest in the author’s identity.
Consent to further use
The use of certain services on our website, such as the newsletter, requires prior registration and the further processing of personal data, such as the long-term storage of email addresses, user names and passwords. This type of data will only be used if you have given it to us and provided your prior consent to its use.
In conjunction with an application or enquiry, regardless of whether this is submitted on our website or in another format, BPY Healthcare Limited will receive personal data from you such as a CV. BPY Healthcare Limited may use this personal data within the company for the purpose of making a recruitment decision or replying to the enquiry. In the event of applications that do not lead to employment, the documents will be deleted at the end of the application process. The application documents will only be saved for future selection procedures if you consent to this in advance.
The following section provides information on the content of our newsletter and the registration, dispatch and statistical evaluation processes as well as your rights of objection. By subscribing to our newsletter, you are declaring that you agree to the receipt of the newsletter and the described processes.
Content of the newsletter: We will only send newsletters, emails and other electronic notifications with advertising information (hereinafter referred to collectively as “newsletters”) with the consent of the recipient or a legal permission. If the content of a newsletter is defined in concrete terms as part of registration for the newsletter, this content is important to the user’s consent. Otherwise, our newsletters contain information on us and our services.
Double opt-in and logging: Registration for our newsletter is carried out using a process known as a double opt-in process. This means that you will receive an email after registration, which will ask you to confirm your registration. This confirmation is required in order to ensure that it is not possible to register with third-party email addresses. Registrations to the newsletter are logged so that the registration process can be proven in accordance with the legal requirements. This includes saving the time of registration and confirmation, as well as the IP address. Any changes made to your data saved by the dispatch service provider will also be recorded.
Registration data: To register for the newsletter, you only need to enter your email address. We also give you the option of entering your name so that we can address you personally when we send you the newsletters.
The logging of the registration process is performed on the basis of our legitimate interests in accordance with Art. 6, Para. 1, lit. f of the GDPR. Our interests here are focussed on the application of a user-friendly and secure newsletter system that both serves our commercial interests and also meets the expectations of the users while also allowing us to provide proof of consent.
Cancellation/withdrawal of consent - you can cancel the receipt of our newsletter, i.e. withdraw your consent, at any time. You can find a link to unsubscribe from our newsletter at the end of every newsletter. We may save the unsubscribed email addresses for up to three years on the basis of our legitimate interests, before we delete them for the purpose of newsletter dispatch, so as to be able to prove the prior existence of consent. The processing of this data is restricted to processing for the purpose of defending any potential claims. An individual request for deletion can be made at any point, provided that prior existence of consent can be confirmed.
Newsletter - Shipping provider
The newsletter is sent using the shipping provider “MailChimp”, a newsletter shipping platform by the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. The shipping provider’s privacy statement can be viewed here: https://mailchimp.com/legal/privacy/. The Rocket Science Group LLC d/b/a MailChimp is certified by the privacy shield agreement and provides a guarantee to ensure that the European data protection standards are met (https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active). The shipping provider is used on the basis of our legitimate interests, in accordance with article 6, section 1, lit. f of the GDPR and an order processing contract, in accordance with article 28, section 3, paragraph 1 of the GDPR.
The shipping provider may use recipient data in a pseudonymised form, i.e. without assignment to a user, in order to optimise or improve their own services. For example, this may cover the technical optimisation of shipping, the layout of the newsletter or it may serve statistical purposes. The shipping provider does not, however, use our newsletter recipients’ data to contact recipients themselves, nor do they pass such data onto third parties.
Newsletter - Performance assessment
The newsletters contain a so-called “web-beacon”, a pixel-size file, which is retrieved from the server when you open the newsletter on our server or, if we use a shipping provider, their server. In connection with this, technical information about your browser and system, as well as your IP address and the time of the retrieval is gathered.
This information is used in order to improve technical data services or to better serve target groups through learning about their reading habits, using the location of the retrieval (which is assisted by their IP address) or the time of the retrieval. The statistical surveys obtain information on when/whether the newsletter is opened and which links are accessed. This information may, for technical reasons, be assigned to individual newsletter recipients. However, it is neither our intention nor, if employed, the intention of any shipping provider, to monitor individual users. Instead, these evaluations are designed to recognise our users’ reading habits and to customise our content to match the interests of our users.
Analysis tools and advertising
Google is certified by the privacy shield agreement and provides a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
Google will use this information on our behalf in order to evaluate the use of our online content by users by generating reports about the activities within our online content. It will also provide us with information about how the online content and related internet services are used. Pseudonymous user profiles can thereby be created using the processed data for each user.
We only use Google Analytics when IP anonymisation is activated. This means that Google restricts the user’s IP address within the member states of the European Union or in other states party to the agreement of the European Economic Area. In exceptional cases only, the full IP address will be sent to a Google server in the USA and restricted there.
The IP address provided by the user’s browser is not merged with other Google data. The user may prevent the storage of cookies by adjusting their browser settings. The user can also prevent the cookie from gathering data about their use of the online content and the processing of their data by Google by clicking on the following link to download and install this browser-Plugin: http://tools.google.com/dlpage/gaoptout?hl=de.
Further information about Google’s use of data, settings and ways to object can be found on Google’s website: https://www.google.com/intl/de/policies/privacy/partners (“Google’s use of data by using our partner’s websites or apps”), http://www.google.com/policies/technologies/ads (“Use of data for advertising purposes”), http://www.google.de/settings/ads (“Managing information, which Google uses to show you advertising”).
On the basis of our legitimate interests (i.e. in the interest of analysis, optimisation and the economic operation of our online content, within the meaning of article 6, paragraph 1, lit. f of the GDPR), we use marketing and remarketing services (a.k.a “Google-Marketing-Services) from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, („Google“).
Google is certified by the privacy shield agreement and provides a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
Google-Marketing-Services allow us to show targeted advertisements on our websites, which potentially match the interests of our users. If, for example, a user is shown advertisements for a product that he/she has purchased on another website, this is known as “remarketing”. For this reason, a code is run when using our website and other websites that actively use Google-Marketing-Services and so-called (re)marketing-tags (invisible graphics or codes, also known as “web beacons”) are embedded in the website. With their help, a single cookie, i.e. a small file, is stored on the user’s device (instead of cookies, similar technology may also be used). The cookies may be used by different domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. This file makes note of the websites visited by the user, the content he/she is interested in and what content has been accessed. It also notes technical information about the browser and operating system, referring websites, visiting times and details about the use of online content. It also collects the user’s IP address and, for IP addresses in European Union member states or in other states party to the agreement on the European Economic Area, we inform Google-Analytics that these must be restricted and only provided in full to Google servers in the USA to be restricted there in exceptional cases. Google will not merge the IP address with other user data content. Google may also connect the above-mentioned information to information from other sources. If the user then visits other websites, advertisements may be shown to match his/her interests.
The user’s data is processed in a pseudonymised format by Google-Marketing-Services. This means that Google does not, for example, store and process the users’ name or email address, instead it processes the relevant cookie data in an anonymous user profile. From Google’s perspective, advertisements are not displayed for a specifically identified person but rather for a cookie-holder, regardless of who that happens to be. This does not apply if the user has explicitly allowed Google to process data without the use of pseudonyms. The user information collected by Google-Marketing-Services is transmitted to Google and stored on its servers in the USA.
The Google-Marketing-Services we use include the advertising programme “Google AdWords”. For Google AdWords, every AdWords customer receives a different “Conversion-Cookie”. Cookies cannot be tracked by the websites of AdWords customers. The information collected through the cookies is used to generate conversion statistics for AdWords customers, who have opted-in to conversion-tracking. The AdWords customers know the total number of users who have clicked on their advertisement and were redirected to a page with a conversion tracking tag. They will not, however, receive any information which can identify the user personally.
Furthermore, we can use the “Google Tag Manager” to manage and integrate Google Analysis and Marketing services on our website.
More information about Google’s use of data for marketing purposes can be found on the overview pages at: https://www.google.com/policies/technologies/ads and Google’s privacy agreement can be found at: https://www.google.com/policies/privacy.
If you wish to object to targeted advertisements from Google-Marketing-Services, you can use the settings and opt-outs provided by Google at: http://www.google.com/ads/preferences.
Use of Google Maps
This website uses Google Maps API, a map service from Google Inc. (“Google”) to display interactive maps. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. By using Google Maps, information about your use of the website (including your IP address) is transmitted to a Google server in the USA, where it is stored.
Google may transmit the information obtained from Analytics and Maps to third parties, so long as this is legally permitted or if third parties process data on behalf of Google.
Under no circumstances will Google connect your IP address with other Google data. However, it is technically possible that Google could at least identify individual users on the basis of the data obtained. It is possible that personal data and users’ personal profiles on the Google website may be processed for other purposes, over which we have no control. This and the fact that data is transmitted to the USA is a problem with regards to data protection.
More information about the handling of user data can be found in Google’s privacy agreement at: https://www.google.de/intl/de/policies/privacy/.
Objection to data collection
You can prevent Google Analytics from collecting your data by clicking on the following link. This uses an opt-out cookie, which prevents the collection of your data during future visits to this website: Deactivate Google Analytics
This website uses plugins from the social network Facebook.com, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). You can find an overview of the Facebook plugins and examples of these at: (http://developers.facebook.com/docs/plugins/). When you retrieve a web page that uses such a plugin, your browser connects directly with Facebook’s servers. The content of the plugin is then delivered to your browser from Facebook and embedded in the web page. By embedding the plugin, Facebook retrieves information which your browser has retrieved on the corresponding page of the website, even if you do not have a Facebook account or if you are not logged into Facebook. This information (including your IP address) is transmitted directly from your browser to a Facebook server in the USA and stored there.
If you are logged into Facebook, then Facebook may connect your visit to our website directly with your Facebook account. If you do not want Facebook to connect the data collected from your visit to our website with your Facebook user account, then you must first log out of Facebook prior to visiting our site. When you interact with the plugins, such as by clicking the “like” button or by leaving a comment, the corresponding information is transmitted directly to a Facebook server in the USA and stored there. The information is then published on your Facebook and is visible to your Facebook friends. The purpose and scope of data collection, other uses and types of processing data via Facebook and your rights and choice of settings for protecting your privacy with regard to this can be viewed on the data protection advice section on Facebook (http://www.facebook.com/about/privacy/).
This website uses the Twitter button provided by twitter.com, which is operated by Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107 ("Twitter"). When you retrieve a web page that contains such a plugin, your browser connects directly with Twitter’s servers. The content of the plugin is transmitted directly from Twitter to your browser and embedded in the web page. By embedding the plugin, Twitter retrieves information which your browser has retrieved on the corresponding page of the website, even if you do not have a Twitter account or if you are not logged into Twitter. This information (including your IP address) is transmitted directly from your browser to a Twitter server in the USA and stored there.
If you are logged into Twitter, may connect your visit to our website directly with your Twitter account. If you do not want Twitter to connect the data collected from your visit to our website with your Twitter user account, then you must first log out of Twitter prior to visiting our site. When you interact with the plugins, such as by clicking the “tweet” button or by leaving a comment, the corresponding information is transmitted directly to a Twitter server in the USA and stored there. The information is then published on Twitter and is visible to your followers. The purpose and scope of data collection, other uses and types of processing data via Twitter and your rights and choice of settings for protecting your privacy with regard to this can be viewed on the data protection advice section on Twitter (http://twitter.com/privacy).
Our website also uses the so-called social plugins (“plugins”) from Instagram, which is operated by Instagram LLC., 1601 Willow Road, Menlo Park, CA 94025, USA („Instagram“). The plugins are marked with the Instagram logo in, for example, the shape of an “Instagram camera”.
When you retrieve a web page that contains such a plugin, then your browser connects directly with Instagram’s servers. The content of the plugin is transmitted directly from Instagram to your browser and embedded in the web page. By embedding the plugin, Instagram retrieves information which your browser has retrieved on the corresponding page of the website, even if you do not have an Instagram account or if you are not logged into Instagram.
This information (including your IP address) is transmitted directly from your browser to an Instagram server in the USA and stored there. If you are logged into Instagram, may connect your visit to our website directly with your Instagram account. When you interact with the plugins, such as by clicking the “Instagram” button, the corresponding information is transmitted directly to an Instagram server in the USA and stored there.
The information is then published on Instagram and is visible to your followers.
If you do not want Instagram to connect the data collected from your visit to our website with your Instagram user account, then you must first log out of Instagram prior to visiting our site.
Further information on this can be found in Instagram’s privacy statement (https://help.instagram.com/155833707900388)
Online presence on social media
We maintain an online presence on social networks and platforms in order to communicate with customers, potential customers and users who are active there and to inform them about our services. For each visit to the respective network or platform, the company’s terms and conditions and their data processing guidelines apply.
Unless otherwise specified in our privacy statement, we process user data if they communicate with us on a social network or platform, e.g. through posts on our pages or when sending messages to us.
Integration of services and third party content
As part of our online content and on the basis of our legitimate interests (i.e. in the interests of analysis, optimisation and economic operation of our online content, within the meaning of article 6, paragraph 1, lit.f of the GDPR), we include content or services from third parties, so as to embed, for example, their videos or fonts (hereinafter referred to throughout as “content”).
This always assumes that the third party content provider will obtain the user’s IP address, as it is not possible to send content to a browser without their IP address. The IP address is therefore required in order to present this content. We try to use only such content from providers, who solely need the IP address in order to deliver their content. Third parties may also use so-called pixel-tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. The pixel-tags can provide information about visitor traffic to the website’s pages. The anonymised information may also be stored in cookies on the user’s device and may contain information, such as technical information about the browser and operating system, referring websites, visiting time and other details about the use of online content. It can also connect this to information from other sources.
We embed videos from the platform “Youtube”, provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy statement: https://www.google.com/policies/privacy/, Opt-out: https://adssettings.google.com/authenticated.
We integrate the fonts (“Google Fonts”), provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy statement: https://www.google.com/policies/privacy/, Opt-out: https://adssettings.google.com/authenticated.
You can also contact us in writing at: BPY Healthcare Limited, Unit 7 Downley Point, Downley Road, Havant, Hampshire, PO92NA United Kingdom.
Your right to lodge a complaint to a data protection supervisory authority remains unaffected.
Thank you for your interest in BPY Healthcare Limited