Book Consultation
St. George Hospital

Impressum

Legal notice in accordance with Section 5 TMG (German Telemedia Act)

1. Data Controller

The data controller responsible for processing your personal data on this website is:

Klinik St. Georg GmbH
Rosenheimer Str. 6-8
83043 Bad Aibling, Germany
Phone: +49 (0)8061 398-0
Email: info@clinicum-stgeorg.de

2. Types of Data Collected

When you visit our website, we may collect the following categories of personal data:

  • Automatically collected data: IP address, browser type and version, operating system, referral URL, pages visited, date and time of access, and time zone setting. This data is collected through server log files.
  • Contact form data: Name, email address, phone number, and any information you voluntarily provide in the message field when submitting a contact or consultation request form.
  • Cookies and local storage: Small text files or browser storage entries that record your preferences, such as cookie consent status.

3. Purpose of Data Processing

We process your personal data for the following purposes:

  • Website operation: Ensuring the stable and secure functioning of our website, including load balancing, error detection, and security monitoring
  • Communication: Responding to your inquiries submitted through contact forms or email
  • Appointment scheduling: Processing consultation requests and coordinating with our medical team
  • Website improvement: Analyzing usage patterns to improve the structure, content, and performance of our website
  • Legal compliance: Fulfilling legal obligations, including tax, commercial, and medical documentation requirements

4. Legal Basis for Processing

We process your personal data on the following legal bases under the GDPR:

  • Article 6(1)(a) — Consent: Where you have given explicit consent, such as accepting cookies or submitting a contact form
  • Article 6(1)(b) — Contract performance: Where processing is necessary for the performance of a contract or to take pre-contractual steps at your request, such as scheduling a medical consultation
  • Article 6(1)(c) — Legal obligation: Where processing is necessary to comply with a legal obligation to which we are subject
  • Article 6(1)(f) — Legitimate interests: Where processing is necessary for our legitimate interests, such as ensuring website security and improving our services, provided these interests are not overridden by your rights and freedoms

5. Contact Form Data

When you submit a contact or consultation request form on our website, the data you provide (name, email address, phone number, message content) is transmitted to our administrative team via email and stored in our patient inquiry system. This data is used solely for the purpose of responding to your inquiry and, where applicable, scheduling a medical consultation.

We retain contact form data for the duration necessary to process your request. If your inquiry leads to a patient relationship, the data becomes part of the medical record and is subject to statutory medical record retention periods (typically 10 years under German law). If no patient relationship is established, contact form data is deleted after 12 months.

6. External Resources

Google Fonts

This website uses web fonts provided by Google LLC (“Google Fonts”) for the uniform display of typography. When you access a page on our website, your browser loads the required fonts from Google’s servers. In doing so, your browser establishes a connection to Google’s servers, which may result in the transmission of your IP address to Google.

Google Fonts is used on the basis of Article 6(1)(f) GDPR (legitimate interest in a uniform and professional presentation of our website). For more information on how Google handles your data, please refer to the Google Privacy Policy.

7. Cookies and Local Storage

  • Cookie consent preference: We store your cookie consent decision in your browser’s local storage to avoid displaying the consent banner on subsequent visits. This is technically necessary and does not require consent.
    We do not use third-party tracking cookies, advertising cookies, or analytics platforms that create user profiles. No data is shared with advertising networks.

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law:

  • Server log files: Deleted after 30 days
  • Contact form submissions (no patient relationship): Deleted after 12 months
  • Patient-related records: Retained in accordance with German medical record retention requirements (minimum 10 years)
  • Tax and commercial records: Retained for 6 to 10 years in accordance with German commercial and tax law (HGB, AO)

9. Your Rights

Under the GDPR, you have the following rights regarding your personal data:
  • Right of access (Article 15): You may request confirmation of whether we process your personal data and, if so, request a copy of that data
  • Right to rectification (Article 16): You may request the correction of inaccurate personal data or the completion of incomplete data
  • Right to erasure (Article 17): You may request the deletion of your personal data where there is no compelling reason for its continued processing
  • Right to restriction (Article 18): You may request the restriction of processing under certain circumstances
  • Right to data portability (Article 20): You may request to receive your personal data in a structured, commonly used, and machine-readable format
  • Right to object (Article 21): You may object to the processing of your personal data based on legitimate interests at any time
  • Right to withdraw consent (Article 7): Where processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of processing carried out before withdrawal
  • Right to lodge a complaint: You have the right to lodge a complaint with a supervisory authority. The competent supervisory authority is the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 18, 91522 Ansbach, Germany

10. Data Protection Contact

For all questions regarding the processing of your personal data or to exercise your rights, please contact:

Klinik St. Georg GmbH
Data Protection
Rosenheimer Str. 6-8
83043 Bad Aibling, Germany
Email: info@clinicum-stgeorg.de
Phone: +49 (0)8061 398-0

11. Changes to This Policy

We reserve the right to update this privacy policy to reflect changes in our data processing practices or legal requirements. The current version is always available on this page. We encourage you to review this policy periodically.

Last updated: March 2026