1. General Information
Italy Medical Tourism S.r.l. (hereinafter, "we", "our" or "the company") is
committed to protecting the privacy and security of our patients' personal and medical data. This Privacy Policy
describes how we collect, use and protect your
personal information in compliance with the General Data Protection Regulation (GDPR) and
Italian healthcare privacy laws.
🏥 Healthcare Excellence Commitment: At Italy Medical Tourism we not only protect your
privacy but also ensure your medical treatments are personalized and secure. Your health information
helps us provide the best possible care and treatment outcomes.
2. Data Controller
Company Name: Italy Medical Tourism S.r.l.
VAT Number: IT12345678901
Address: Via della Salute 123, Milan, Italy
Phone: +39 (02) 8765-4321
Email: privacy@italymedicaltourism.com
Website: www.italymedicaltourism.com
Registration: CCIAA Milano REA MI-1234567
3. Personal Data We Collect
To provide comprehensive healthcare services and medical treatments, we collect:
3.1 Identification Data
- Full name and surnames
- Identity document (passport, national ID)
- Date of birth and age
- Nationality and country of residence
- Emergency contact information
3.2 Contact Data
- Personal email address
- Mobile and landline phone numbers
- Complete postal address
- Social networks (if provided voluntarily)
3.3 Medical Data
- Medical history and current conditions
- Allergies and medication information
- Previous treatments and surgeries
- Diagnostic test results
- Prescription information
- Insurance details
3.4 Treatment Data
- Preferred treatments and procedures
- Expected outcomes and goals
- Recovery requirements
- Accommodation preferences
3.5 Payment Data
- Credit/debit card information
- Bank transfer details
- Payment history
- Insurance claim information
3.6 Web Browsing Data
- IP address and location data
- Browser type and version
- Pages visited and time spent
- Device information
4. Purposes of Data Processing
We use your personal and medical data to:
- Provide medical consultations and treatments
- Ensure appropriate healthcare services for your needs
- Coordinate with healthcare providers and clinics
- Process insurance claims and payments
- Communicate about treatment plans and follow-up care
- Improve our medical services based on patient feedback
- Comply with legal and regulatory healthcare requirements
- Send relevant healthcare information (with consent)
5. Legal Basis for Processing
- Healthcare Treatment: To provide medical care and treatment
- Legal Obligation: Healthcare regulations and patient safety requirements
- Contract Performance: To fulfill treatment agreements
- Vital Interests: Emergency medical situations
- Legitimate Interest: Service improvement and fraud prevention
- Consent: Marketing communications and non-essential data sharing
6. Sharing Information with Third Parties
6.1 Healthcare Providers
- Certified clinics and hospitals
- Licensed medical professionals
- Dental specialists and surgeons
- Rehabilitation centers and therapists
6.2 Medical Partners
- Laboratory and diagnostic services
- Medical equipment suppliers
- Pharmaceutical providers
- Emergency medical services
6.3 Support Services
- Luxury accommodation partners
- Private transportation services
- Medical tourism coordinators
- Translation and interpretation services
6.4 Regulatory Authorities
We share information when required by law with:
- Italian Ministry of Health
- Healthcare regulatory bodies
- Medical insurance companies
- Law enforcement agencies
7. International Data Transfer
Your medical data may be transferred to countries outside the EU for treatment coordination.
We ensure all transfers comply with GDPR requirements through appropriate safeguards including:
- Standard contractual clauses
- Adequacy decisions
- Binding corporate rules
- Patient consent for specific transfers
8. Data Subject Rights
🏥 Your Healthcare Privacy Rights: As a patient using our medical services,
you have comprehensive rights under GDPR and healthcare privacy laws to access, rectify, erase,
restrict processing, object to processing, and request data portability of your personal and medical information.
How to Exercise Your Rights
- Email: privacy@italymedicaltourism.com
- Phone: +39 (02) 8765-4321
- Mail: Via della Salute 123, Milan, Italy
- Patient Portal: Access your data through our secure patient portal
Response guaranteed within 30 days according to GDPR.
9. Data Retention
- Medical Records: 20 years for legal and healthcare requirements
- Treatment Data: 10 years for follow-up and research purposes
- Payment Data: 10 years for financial compliance
- Marketing Data: Until consent withdrawal
- Web Analytics: 2 years for service improvement
10. Information Security
Comprehensive security measures implemented:
- HIPAA and GDPR compliant encryption for all medical data
- Secure payment processing with PCI DSS compliance
- Regular security audits and penetration testing
- Employee training on healthcare data protection
- Access controls and multi-factor authentication
- Regular backups with encryption
- Incident response and breach notification procedures
11. Cookies and Tracking Technologies
We use cookies to:
- Remember your language preferences
- Analyze website usage for service improvement
- Personalize healthcare recommendations
- Remember your consultation preferences
- Ensure secure login to patient portal
You can manage cookies in your browser. Rejecting them may limit functionality.
12. Minors' Data
Our medical treatments are designed for adults 18+. For patients under 18, we require parental consent
and follow strict pediatric healthcare privacy guidelines. We do not knowingly collect data from minors
without appropriate authorization.
13. Medical Tourism Transparency
We are committed to transparency in our medical services. Your treatment plans and healthcare experiences
are designed to be clear and comprehensive.
- All treatment costs include medical service fees
- Healthcare provider credentials are verified and disclosed
- Treatment outcomes and risks are clearly explained
- Patient satisfaction surveys are conducted regularly
- Quality assurance programs ensure consistent care standards
14. Changes to This Policy
We may update this Privacy Policy to reflect changes in healthcare regulations or medical standards.
Significant changes will be communicated via email or website notification. Continued use of our services
constitutes acceptance of updated policies.
15. Supervisory Authority
For privacy concerns, you can contact the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali):
- Address: Piazza di Monte Citorio, 121, 00186 Rome, Italy
- Phone: +39 06 69677 1
- Website: www.garanteprivacy.it
For healthcare-specific concerns, contact the Italian Ministry of Health:
- Address: Viale Giorgio Ribotta, 5, 00144 Rome, Italy
- Phone: +39 06 59941
- Website: www.salute.gov.it
16. Consent
By using our medical and healthcare services, you consent to this Privacy Policy.
You can withdraw consent at any time by contacting us. However, withdrawal may affect
our ability to provide certain healthcare services.
← Back to Medical Tourism