Privacy Policy
of Experts Medical
We value and respect your privacy
Your data is collected only for its intended purpose and with your full consent. You have the right to delete your data from all of our properties whenever you wish.
The purpose of this document is to familiarize you with the new Privacy Policy of Experts Medical, a Ukrainian service company registered under FLP "Chabdaieva Mariia Mykolaevna" with registration number 3287504303.
Website = Experts-Medical. Website address https://experts-medical.com/ and all associated social media accounts.
We = Experts Medical as a business organisation.
You = As an individual or legal entity.
Personal data: any information relating to an identified or identifiable natural person (‘data subject’), e.g., name, address, e-mail, order data, vehicle data.
When you visit our website or want to learn about any of our services or how to do business with us, you may need to share your information with us, including personal information. This information can be anything depending on the degree or type of service required. The privacy notice applies regardless of the domains, platforms and devices used (e.g. desktop, mobile, etc.).
We want to let you know how we handle your personal data and your rights under the European General Data Protection Regulation (GDPR). Our privacy notice includes terms defined by the GDPR, such as processing, restricting processing, profiling, pseudonymization, controller, processor, recipient, third party, consent, supervisory authority, and international organization. You can find the definitions for these terms in Article 4 of the GDPR.
1. Who is responsible for data processing and whom can I contact?
The entity responsible for the processing of personal data is:
PE Chabdaieva Mariia the rightowner of a trademark “Experts Medical”
Ukraine, Kharkiv, Haharina avenue 176/5, 61124
+380500658570, email: [email protected]
- You can contact our data protection officer, Mariia Chabdaieva at tel:
+380500658570, email: [email protected]
Ukraine, Vinnitsa, K. Vasilenko 6, 21037
We collect the following information:
Depending on the nature of the services required, we may collect various types of data from you, which include, but are not limited to:
Personal data
When you use our website just to look around and don’t sign up or send us information, we only collect the basic data your browser provides. This data helps us make sure our website works properly and securely. It includes your IP address, the date and time you visited, the time zone difference from GMT, the page you looked at, the status of your request (like if it was successful), the amount of data transferred, the page you came from, your operating system, browser type and version, language, and confirmation that the page loaded correctly.
If you contact us through a form, email, or chat, we also collect personal details like your name, address, email, phone number, type of therapy, treatment date, and any other information you share in your message.
Medical Information
If you contacted us about your treatment, plastic surgery, examination or other health issues , we may collect this information, which may include your data about the past and present physical and mental health.
Administrative Documents
When we arrange travel, we may collect information about your past or current visas, copies of passports, birth and/or marriage certificates, identification codes, parental permission to take the child abroad, and any other documents necessary to prepare your travel documents, hotel reservations, and flight tickets.
Technical information
We use cookies on our website. Cookies are small text files with letters and numbers that get saved on your computer when you visit certain websites.
Some cookies are needed for our website to work properly, while others help us understand how you use our site so we can make it better.
By default, we only use essential cookies. These cookies are important for the basic functions of our website. Without them, the website might not display correctly or some parts might not work. You can block these necessary cookies by changing your browser settings.
When you visit a website, your browser may accept ask to collect cookies. You have a right to accept or to deny the collection of your date via cookies on experts-medical.com The following data is collected by cookies: your technical data, such as geographic location, IP address, Internet service provider, operating system type, browser, date and time you visit this site, the number of times you visit us, referral addresses or search engines that you used to find us may be stored in our server's statistical and log files.
Marketing information:
These technologies are used by advertisers to serve ads that are relevant to your interests:
Facebook Pixel
Google Ads
Google analytics
Google Ads remarketing
Youtube Video
These technologies enable us to analyse user behaviour and to collect your reviews in order to improve the performance:
Hotjar
Trustpilot for
Google maps
2. We collect your information in the following way:
Your data is usually provided directly to us, in some cases, it may be sent to us indirectly:
Via email address
Via WhatsApp, Viber or Telegram
Through a phone call
Through the forms provided to you on experts-medical.com
Through our agents, in person
Through physicians or hospital
One of your family members or an authorized person
Through your beneficiaries (insurance companies, etc.)
We store your information in the following way:
Your electronic data may be stored on computers owned by us, at the CRM system and in our chat for communication. We use maximum measures to protect these computers from intruders and data theft.
Your electronic data may only be transferred to a doctor or medical institution abroad with the purpose to arrange your treatment of a remote medical consultation.
What we DO NOT do with your data:
We use your data only for the purposes previously agreed with you and only for the purpose of performing the service previously agreed with you.
We DO NOT sell, trade or transfer your information to any irrelevant third party. No advertisers will have access to your data through us. We do not distribute your information to any other party for political, educational, research or marketing purposes.
What we DO with your data:
The data may be used to arrange medical treatment, examination or plastic surgery for you or your loved ones, to assess the physical or mental state if you contact us for medical purposes.
If you have provided us with your financial information, such as your bank account and credit card account, then this information will only be used if we need to send you invoices or charge you for any provided service.
If your data is of a technical nature (mentioned above), it will only be used by our webmasters and analysts to improve our website and the services we offer. The technical information does not necessarily fall under personally identifiable information or sensitive personal information.
3. Who can access my data?
Within our organization, different departments need your data to provide medical treatment and arrange plastic surgery.
Additionally, companies we work with (under GDPR Article 28) might access your data for things like IT services, telecommunications, sales, and marketing. If we use these companies, we ensure they follow legal, technical, and organizational measures to protect your data.
We only share your data with third parties when legally required or necessary for your treatment arrangement. For example, we might share data for contractual reasons or legitimate business interests under GDPR Article 6. We will also share your data if you give us permission. If you are just browsing our website, we do not share your data with third parties.
4. How long do we keep your data?
We retain your data for as long as we are handling your case or providing services to you. For example, we will retain your medical information for as long as we arrange your treatment. Your personal data will be stored for 3 years in case you would required to renew our services unless you request to delete it earlier.
Once the service is completed, you have the right to ask us to return (if any) or delete your data (in the case of electronic copies). See below for instructions on how to request deletion or return of your data.
If we don't accept your job application, we will delete your data after 6 months. If you allow us to keep your data longer, we will add it to our applicant pool. In this pool, your data will be deleted if you withdraw your permission or after 5 years, whichever comes first. If you are hired, your data will be saved in our employee management system.
5. How to contact us or request to delete your data:
If you have any questions or doubts, you can contact us in the following ways:
By postal mail Experts Medical, St. K. Vasylenko 6, sq. 47, Vinnytsia, Ukraine
By e-mail [email protected]
Please include "Personal Data and Privacy" in the subject line of your email.
6. Is my data sent to another country or organization?
Your data will be processed within the European Union and in Turkey. If a country, like Turkey, does not have a GDPR adequacy decision, we use EU standard contractual clauses or get your consent for the data transfer.
7. What are my data rights?
According to Article 15 GDPR, you have the right to know if we are processing your personal data. If we are, you can access this data and get more information as described in Article 15, paragraph 1 GDPR. However, this right has some limits, found in Article 15, paragraph 4 GDPR.
You can ask us to correct any incorrect personal data or complete any missing information under Article 16 GDPR.
You can ask us to delete your personal data without undue delay under Article 17 GDPR, but there are exceptions. For example, if we need your data to fulfill a contract, comply with legal obligations, or defend legal claims, we may not be able to delete it. The details are in Article 17 GDPR.
Under Article 18 GDPR, you can ask us to limit how we process your data if certain conditions are met. We can still store your data but will only process it under strict rules. The conditions are detailed in Article 18 GDPR.
According to Article 20 GDPR, you have the right to data portability. This means you can request your personal data in a structured, commonly used, and machine-readable format. You can also ask us to transfer this data directly to another party if it’s technically possible. The details are in Article 20, paragraphs 3 and 4 GDPR.
You can withdraw your consent to the processing of your personal data at any time. This will only affect future processing and not the processing based on your consent before the withdrawal.
You can withdraw your consent to the processing of your personal data at any time. Please note that the withdrawal only takes effect for the future and does not affect the legality of the processing carried out based on the consent up to the withdrawal.
8. Why do we process your data and on what legal basis?
We process your personal data according to the European Data Protection Regulation (GDPR) for the following purposes and legal reasons:
Consent (Art. 6 para 1 lit. a GDPR)
If you give us permission to use your data for certain purposes, like contacting you through forms, email, or WhatsApp, sending newsletters, or advertising, we will use your data legally. You can withdraw your consent at any time, but this will only affect future processing. To withdraw, use the contact details above.
Consent (Art. 6 para 1 lit. a and Art. 9 para 1 GDPR)
When you check the consent box on our contact form, you allow us to collect and use your personal and health data to provide information about medical services and costs. This may include sharing your data with hospitals and clinics both inside and outside the EU/EEA.
Contractual Obligations (Art. 6 para 1 lit. b GDPR)
If you contact us (via form, email, phone, or WhatsApp), we process your data to handle your request and to enter or perform a contract with you. This also applies if you contact us as a healthcare provider about your practice or clinic.
Legitimate Interests (Art. 6 para 1 lit. f GDPR)
We process your data to protect our legitimate interests or those of third parties. This includes ensuring IT security, conducting advertising or market research (unless you object), and asserting legal claims or defending against disputes.
9. Information about your right to object according to Art. 21 GDPR
You have the right to object to the processing of your personal data at any time if it is based on Article 6(1)(e) GDPR (public interest) or Article 6(1)(f) GDPR (legitimate interests), including profiling as defined in Article 4(4) GDPR.
If you object, we will stop processing your data unless we can show strong reasons that override your interests, rights, and freedoms, or if we need to process it for legal reasons.
You can also object to the use of your data for direct marketing at any time. This includes any profiling related to marketing. If you object, we will stop using your data for this purpose.
You don't need a specific format to object, and it won't cost you anything except basic transmission fees. If possible, send your objection to the address or email mentioned above.
We will provide any information or actions you request free of charge, according to Article 12(5) GDPR.
If you believe we are violating GDPR by processing your data, you have the right to complain to a data protection authority without affecting your other legal rights.
10. Do we use automated decision-making or profiling?
When you visit our website or contact us via form or email, we do not use fully automated decision-making as per Article 22 GDPR. If we ever do, we will inform you separately as required by law. We do not use automated processes to evaluate personal aspects (profiling).
11. Do I have to provide my data?
You need to provide the personal data required for technical or IT security reasons to use our website. Without this data, you won't be able to use our website.
When you contact us via form or email, you only need to give the personal data needed to process your request. If you don't provide this data, we won't be able to process your request.
12. Sending Cost Estimates
We want to explain how we send cost estimates via email, WhatsApp, Viber, or Telegram, and how we use your data for statistical purposes and your right to object.
When you click the "Inquiry" button, you can get details about medical treatments from our partner clinics. You'll need to enter your first name, last name, email address, phone number, type of treatment, and treatment date, and agree to the consent declaration. This lets us process your health-related data.
After you submit the consent form or inquiry form, we will email you options for an initial consultation with our health consultants. During our free consultations or via email, we will answer your questions about treatment methods, doctors, clinic locations, and prices. We will help you find the right healthcare provider.
We perform statistical surveys and analyses and log the registration process based on our legitimate interests under Art. 6 para. 1 lit. f GDPR. Our goal is to make a user-friendly website that meets both our business needs and user expectations.
Unsubscribing: You can unsubscribe from our emails at any time by clicking the unsubscribe link at the bottom of each promotional email. If you only signed up for emails and then unsubscribe, your personal data will be deleted.
13. Arranging Appointments with Partner Clinics
At your request, we will arrange your initial appointment at the clinic of your choice. When you book an appointment, your basic information (address and contact details) and health-related data needed for the consultation, like desired treatment methods and appointment date, will be sent to the doctor.
14. Processing of Personal Data with External Online Services
14.1 Google Analytics
We use Google Analytics, a web analytics service from Google Ireland Limited (registration number: 368047), Gordon House, Barrow Street, Dublin 4, Ireland (parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA), referred to as "Google."
Google Analytics uses cookies to collect information about how you use our website. This information is usually sent to a Google server in the USA and stored there. There are privacy risks with processing your data in the USA. By accepting cookies, you agree to this data processing, even though US authorities might access it (Art. 49 para. 1 lit. a GDPR).
Google uses the data to help us understand how visitors use our website, create reports on website activities, and provide other related services. This data helps create anonymous usage profiles.
During your visit, we collect the following information:
- Pages you viewed,
- Contact goals achieved (like form submissions or newsletter sign-ups),
- Your website usage (like clicks and time spent on pages),
- Your approximate location (country),
- Your IP address (shortened so it can't be easily traced),
- Technical details (like browser type, internet provider, device, and screen resolution),
- How you found us (like through which website or ad).
Google Analytics stores cookies in your browser for two years since your last visit. These cookies include a randomly generated user ID to recognize you on future visits. The collected data is stored with this user ID, creating anonymous profiles, which are automatically deleted after 14 months. Non-personal data is stored indefinitely. Your IP address is anonymized within the EU or EEA before being sent to Google. Only in rare cases is the full IP address sent to the USA and then shortened there.
You can prevent cookies from being stored by rejecting them in our cookie banner or by setting your browser to block them. You can also stop Google from collecting and processing your data by downloading and installing a browser plugin from this link: Google Opt-Out Plugin.
We use Google Analytics Remarketing to show ads to users who have visited our website or shown interest in our products or services. This helps us show relevant ads and avoid annoying you. You can permanently object to cross-device remarketing/targeting by deactivating personalized advertising in your Google account; follow this link: https://www.google.com/settings/ads/onweb/.
Further information on data processing by Google, setting and objection options can be found on the Google website at https://policies.google.com/technologies/partner-sites.
14.2 Google Ads
We use the Google Ads service of Google Ireland Limited (registration number: 368047), Gordon House, Barrow Street, Dublin 4, Ireland (parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) hereinafter "Google".
Data Processing with Google Ads
We use Google Ads, an online advertising service, to display ads in Google search results and across the Google advertising network. Google Ads lets us set specific keywords that show our ads when users search for those terms. Our ads are also displayed on relevant websites based on these keywords.
Data Processing in the USA
The processing of data through this service can occur in the USA. This comes with privacy risks. By accepting cookies via our cookie banner, you agree to this data processing in the USA (Art. 49 (1) lit. a GDPR).
Purpose of Google Ads
Our main goal with Google Ads is to promote our website by showing ads on third-party websites and in Google search results. We may also show third-party ads on our website.
Conversion Cookies
If you visit our website through a Google ad, Google stores a conversion cookie on your computer. This cookie expires after 30 days and doesn't identify you personally. It helps track whether you visited certain pages on our site, made a purchase, or took other actions.
Using Conversion Data
Google uses the data from these cookies to create statistics about visits to our site. We use these statistics to see how many users came to us through ads, measure our ads' success, and improve future ads. Neither we nor other Google Ads advertisers receive any personal identification information from these cookies.
Managing Cookies
You can block cookies by changing your browser settings, which will also prevent Google from setting conversion cookies. You can delete any existing cookies through your browser at any time. To opt out of interest-based ads from Google, visit Google Ads Settings on any browser you use.
If you wish to object to interest-based advertising by Google, you can use the opt-out options provided by Google: http://www.google.com/ads/preferences.
Further information and Google's applicable privacy policy can be found at https://policies.google.com/technologies/partner-sites.
14.3 Fullstory and Hojar
We use Fullstory and Hojar, a web analytics software on our website. The service provider is the American company Fullstory Inc, 1745 Peachtree St NE, Atlanta, GA, USA.
With your consent under Art. 6 para. 1 lit a GDPR, we analyze how you use our website. FullStory and Hojar collect information about visitors' behavior to help us improve the user experience on our site. They track things like clicks, mouse movements, typing (except sensitive info), scrolling, browser used, device type, IP address, pages visited, and session duration.
You can withdraw your consent for data processing at any time with effect for the future by using the following opt-out link: https://www.fullstory.com/optout
https://www.hotjar.com/policies/do-not-track/
14.4 Integration of YouTube videos
We have integrated YouTube videos into our online offer, which are stored on http://www.YouTube.com of Google Ireland Limited (registration number: 368047), Gordon House, Barrow Street, Dublin 4, Ireland (parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) and can be played directly from our website. The legal basis for the use of YouTube is your consent in accordance with Art. 6 (1) p. 1 lit. a) and Art. 49 (1) p. 1 lit. a GDPR.
Our website's videos are designed to transmit data to YouTube only when you play them. Once you start a video, we have no control over the data transfer to Google.
When you visit our site, YouTube collects information such as the specific page you accessed, your location (GPS data), IP address, and device details, including nearby WiFi access points, radio towers, Bluetooth devices, and sensor data from your device (refer to YouTube's privacy policy). This occurs regardless of whether you are logged into Google or YouTube. If you are logged in, your data might be linked to your account. To avoid this, please log out of YouTube before playing any videos. YouTube stores this information in user profiles to provide and enhance its services, measure performance, develop new features, and deliver personalized content and advertisements. You have the right to object to the creation of these user profiles, and you must contact YouTube to exercise this right.
Data processing for YouTube services may occur in the USA, where data collected by cookies on our site is typically transferred to and stored on a Google server. There are privacy risks associated with processing your data in the USA. By accepting cookies through our cookie banner, you consent to this data processing in the USA, even though US authorities may access your data (Art. 49 para. 1 lit. a GDPR).
For more information on how YouTube collects and processes data, and to understand your rights and privacy settings, please review YouTube's privacy information.
YouTube's privacy information can be found at https://policies.google.com/privacy and opting out of personalized advertising is possible at https://adssettings.google.com/authenticated.
14.5 Trustpilot
We use the Trustpilot customer rating platform for our website. The service provider is the Danish company Trustpilot A/S, Pilestraede 58,5, 1112 Copenhagen, Denmark. You can find out more about the data processed through the use of Trustpilot in the privacy information on https://legal.trustpilot.com/for-businesses/business-privacy-policy
14.6 Facebook Pixel
Based on your consent (via our cookie banner), we use the so-called "Facebook Pixel" of the social network "Facebook", which is operated by Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (parent company: Meta Platforms Inc., 1 Hacker Way, Menlo Park, CA 94025, USA).
We use the Facebook pixel to help Facebook identify visitors to our website as a target group for our ads ("Facebook ads"). This means we can show our Facebook ads to people who have shown interest in our website or who have certain characteristics (like interests based on visited websites) that we share with Facebook ("Custom Audiences"). This helps ensure our ads are relevant and not annoying. The Facebook pixel also helps us track the effectiveness of our ads by seeing if users visit our site after clicking on a Facebook ad ("conversion").
The Facebook pixel is a piece of JavaScript code on our website that sets cookies on your device. If you log in to Facebook or visit Facebook while logged in, Facebook will note your visit to our site in your profile. The data collected is anonymous to us, so we can't identify individual users. However, Facebook stores and processes this data, linking it to user profiles for market research and advertising purposes.
Facebook may transfer this data to the USA and other countries. Please note that data protection in these countries may not meet EU standards. There may be risks of government access to your data without adequate safeguards. If you don't want Facebook to link your visit to our site with your Facebook account, please log out of Facebook.
We and Facebook share responsibility for data processing under Art 26 GDPR. Facebook is primarily responsible for the data processed through its plugins and ensures compliance with GDPR obligations, including informing you about data use (Art. 12 GDPR), ensuring your rights (Art. 15 GDPR), and reporting data breaches (Arts. 33, 34 GDPR).
You can find Facebook's privacy notice at https://www.facebook.com/about/privacy/.
You can object to the data collection by the Facebook pixel and use of your data to display Facebook ads. To adjust which types of ads are displayed to you within Facebook, you can visit the page set up by Facebook and follow the instructions there regarding the settings for usage-based advertising: https://www.facebook.com/settings?tab=ads.
15. Our social media pages
You can connect with us on various social networks and platforms, where we share information and communicate with you about our services.
Data Processing Notice
Please be aware that your data may be processed outside the European Union/European Economic Area, primarily for market research and advertising purposes. Based on your behavior and interests, profiles can be created to show you relevant ads both on and off these platforms. Cookies may be stored on your device to track this information, especially if you are logged into these platforms.
Links to Our Social Profiles
We provide links to our company profiles on social networks from our website. When you click on these links, your data is transmitted to the social networks' servers. If you are logged into your social network account, your visit to our profile will be recorded and stored in your user account.
Data Processing by Social Networks
We do not control how social networks process your data. However, we receive statistics about visits and interactions (such as likes and comments) on our profiles. For detailed information on how social networks handle data, please refer to their respective privacy notices linked below.
Your Rights
If we receive your personal data through our social media profiles (e.g., during communication), you have the rights outlined in this privacy notice. Please contact us with any data processing requests using the information provided above.
Legal Basis for Data Processing
The processing of your personal data is based on your consent (Art. 6 para 1 lit. a GDPR). It is also based on Art. 6 para 1 lit. b GDPR if we receive and process your data as part of a contract-related inquiry. The legal basis for linking and managing our company profiles on social networks, including receiving usage statistics, is Art. 6 para 1 lit. f GDPR, reflecting our legitimate interest in corporate communication on these networks.
Last update 18.06.2024