Privacy Policy

Data Protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

This privacy policy is intended to inform users of this website in accordance with the Federal Data Protection Act and the Telemedia Act on the type, scope and purpose of the collection and use of personal data by the website operator Dres. Zimny ​​& Kollegen.

The use of our website is usually possible without providing personal data. As far as on our sides personal data (for example name, address or E-Mail addresses) are raised, this takes place, as far as possible, always on freiwilliger basis. These data will not be disclosed to third parties without your explicit consent. Below you will find information about the collection of personal data when using our website. Personal data includes all data that is personally available to you (such as name, address, e-mail addresses, user behavior, IP address).

We point out that the transmission of data on the Internet can be fundamentally subject to security gaps. This also applies to electronic communication via e-mail. Full protection against access by strangers is not possible.

Access Data

The website operator or website provider collects data about accesses to this website and saves them as "server log files". The following data is logged:

  • Visited website
  • Time at the time of access
  • Amount of data sent in bytes
  • Source / reference from which you came to the page
  • Used browser
  • Operating system used
  • Used IP address

he data collected are for statistical purposes only and to improve the website. The website operator, however, reserves the right to check the server logfiles retrospectively should concrete evidence point to unlawful use.


Google Analytics

This website uses the "Google Analytics" service provided by Google Inc. (1600 Amphitheater Parkway Mountain View, CA 94043, USA) to analyze users' website usage. The service uses "cookies" - text files stored on your device. The information collected by the cookies is usually sent to a Google server in the US and stored the

On this website accesses the IP anonymization. The IP address of the users is shortened within the member states of the EU and the European Economic Area. This reduction eliminates the personal reference of your IP address. Under the terms of the agreement, which website operators have entered into with Google Inc., they use the information collected to compile an evaluation of website activity and website activity, and provide Internet-related services.

You have the option of preventing the cookie from being stored on your device by making the appropriate settings in your browser. There is no guarantee that you will be able to access all functions of this website without restriction if your browser does not allow cookies.

For more information on how to handle user data on Google Analytics, please refer to the Google Privacy Policy:

Browser Plugin

You can prevent the storage of cookies by a corresponding setting of your browser software; however, we point out that in this case you may not be able to use all the functions of this website in full. In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google by downloading the browser plug-in available under the following link and install:

Opposition to data collection

Alternatively, you can prevent the collection of your data within this website by Google Analytics by clicking on the following link. By clicking on the link below you download an "opt-out cookie". Your browser must therefore generally allow the storage of cookies. If you delete your cookies regularly, you will need to click on the link each time you visit this website: Google Analytics deaktivieren

Using script libraries (Google Webfonts)

In order to render our content correctly and visually appealing across browsers, we use script libraries and font libraries on this website. For example, Google Webfonts ( Google web fonts are transferred to the cache of your browser to prevent multiple loading. If the browser does not support Google Web fonts or prohibits access, content will be displayed in a standard font.

The call of script libraries or font libraries automatically triggers a connection to the operator of the library. It is theoretically possible - but currently also unclear whether and if so for what purposes - that operators of such libraries collect data.

The privacy policy of the library operator Google can be found here:


Embedded YouTube videos

On some of our websites, we embed Youtube videos. The operator of these plugins is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit a page with the YouTube plug-in, it will connect to Youtube's servers. Youtube will be informed, which pages you visit. If you are logged into your Youtube account, Youtube can assign your surfing behavior to you personally. This can be prevented by logging out of your Youtube account beforehand.

If a Youtube video is started, the provider uses cookies that collect information about user behavior.

Anyone who has disabled the storage of cookies for the Google Ad program will not have to expect any such cookies even when watching YouTube videos. Youtube also stores non-personal usage information in other cookies. If you want to prevent this, you must block the storage of cookies in the browser.

For more information on data protection at "Youtube", see the provider's privacy policy at:



Google AdWords and Conversion Tracking

Our website uses Google Conversion Tracking. If you have reached our website via an advertisement sent by Google, Google Adwords will set a cookie on your computer. The conversion tracking cookie is set when a user clicks on a Google-served ad. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages on our website and the cookie has not expired, we and Google may recognize that the user clicked on the ad and was redirected to this page. Each Google AdWords customer receives a different cookie. Cookies can not be tracked through the websites of advertisers. The information gathered using the conversion cookie is used to generate conversion statistics for AdWords advertisers who have opted for conversion tracking. Customers are told the total number of users who clicked on their ad and were redirected to a conversion tracking tag page. However, they do not receive any information that personally identifies users.

If you do not want to participate in the tracking, you can refuse the required setting of a cookie - for example, via a browser setting that generally deactivates the automatic setting of cookies or set your browser to block cookies from the domain "".

Please note that you are not allowed to delete opt-out cookies as long as you do not want to record measurement data. If you have deleted all your cookies in the browser, you must set the respective opt-out cookie again.


Privacy Policy on Use and Use of Google Remarketing

The controller has integrated Google Remarketing services on this website. Google Remarketing is a feature of Google AdWords that enables a business to show advertisements to such internet users that have previously been on the company's website. The integration of Google Remarketing therefore allows a company to create user-friendly advertising and thus show the Internet user interest-related ads.

The Google Remarketing Services company is Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.

The purpose of Google Remarketing is to show interest-based advertising. Google Remarketing allows us to display ads through the Google Network or view them on other websites tailored to the individual needs and interests of Internet users.

Google Remarketing places a cookie on the information technology system of the data subject. What cookies are, has already been explained above. By setting the cookie, Google will be able to recognize the visitor of our website, if he subsequently calls websites that are also members of the Google ad network. With every visit to a website on which Google Remarketing's service has been integrated, the person's Internet browser automatically identifies with Google. As part of this technical process, Google receives knowledge about personal data, such as the IP address or the surfing behavior of the user, which Google uses among other things to display interest-relevant advertising.

The cookie stores personal information, such as the web pages visited by the data subject. Each time you visit our website, your personal information, including the IP address of the Internet connection used by the data subject, will be transferred to Google in the United States of America. This personal information is stored by Google in the United States of America. Google may transfer this personal data collected through the technical process to third parties.

The affected person can prevent the setting of cookies through our website, as shown above, at any time by means of a corresponding setting of the Internet browser used and thus permanently contradict the setting of cookies. Such a setting of the Internet browser used would also prevent Google from setting a cookie on the information technology system of the person concerned. In addition, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programs.

In addition, the data subject has the opportunity to object to Google's interest-based advertising. To do this, the person concerned must access the Google AdSettings link from each of the Internet browsers they use and make the desired settings there.

Alternatively, you can use the cross-provider deactivation page of the Network Advertising Initiative.

Additional information and Google's privacy policy can be found at


Data protection in applications and in the application process

The controller collects and processes the personal data of applicants for the purpose of processing the application process. The processing can also be done electronically. This is particularly the case if an applicant submits corresponding application documents to the controller by electronic means, for example by e-mail or via a web form available on the website. If the controller concludes a contract of employment with an applicant, the data transmitted will be stored for the purposes of the employment relationship in accordance with the law. If no employment contract is concluded with the candidate by the controller, the application documents will be automatically deleted two months after the announcement of the rejection decision, provided that deletion does not prejudice any other legitimate interests of the controller. Other legitimate interest in this sense, for example, a burden of proof in a procedure under the General Equal Treatment Act (AGG).

Important Information:

Applications are preferably accepted by e-mail. Please use the address jobs (at) Application documents that are sent to other e-mail addresses will be automatically, promptly and irrevocably deleted without any response for privacy reasons.


jameda seal and widget

On our website, seals or widgets of jameda GmbH, St. Cajetan-Straße 41, 81669 Munich are included. A widget is a small window that displays variable information. Our seal works in a similar way, d. H. it does not always look the same, but the ad changes regularly. Although the corresponding content is displayed on our website, it is currently being retrieved from the jameda servers. Only in this way can the current content always be shown, above all the current rating. For this, a data connection must be established from this website to jameda and jameda receives certain technical data (date and time of the visit, the page from which the query is made, used internet protocol address (IP address), browser type and version, device type , Operating system and similar technical information) necessary for the content to be delivered. However, these data will only be used to provide the content and will not be stored or otherwise used. With the integration we pursue the purpose and the legitimate interest to present current and correct contents on our homepage. The legal basis is Article 6 (1) (f) GDPR. A storage of the mentioned data does not take place due to this integration. Further information on data processing by jameda can be found in the privacy policy of the website


Collection of data in reviews

On our website, users are given the optional opportunity to give feedback on the treatment and the practitioners of our practice. Which personal data are transmitted to the controller when the assessment is submitted results from the input mask used for this purpose. When submitting the rating, we store the IP address of the computer system used by the data subject at the time of submission by the Internet Service Provider (ISP) and the date and time of submission. The collection of this data is necessary in order to be able to understand the (possible) misuse of the data subject's e-mail address at a later date and therefore provides the legal safeguards for the data controller. There is no transfer of the personal data collected in the course of the evaluation to third parties. It is possible at any time to inform the controller of the withdrawal of the consent to process the evaluation.


Online appointment booking by external service providers

We offer patients the opportunity to book an appointment for our consultation online via our website. For this purpose, our site uses the API the online appointment booking service "Dr. Flex". The supplier is Dr.Flex GmbH, Neumarkt 2a, 59320 Ennigerloh, Germany. The system provides you with free times in our appointment book. In order to use the Service, it is necessary that you enter certain personal information and the current privacy policy of Dr. med. Flex in the course of the appointment book. To use the functions of the appointment booking, it is necessary to save your IP address and set cookies. This information is usually transmitted to the server of Dr.Flex in Germany and stored there. The provider of this page has no influence on this data transfer. Your data entered into the form will be used exclusively for the purpose of making an appointment and for transmitting information relevant to the appointment (such as an appointment reminder) to Dr. Ing. Flex forwarded, processed there and automatically transmitted to us. A disclosure of the data by Dr. med. Flex to third parties for advertising or other commercial purposes is excluded. The service of Dr. med. Flex does not use cookies. An automatic recognition for later use is not provided. Please also note the privacy policy of Dr. med. Flex. The use of Dr.Flex is in the interests of improving the use of our online offers for the online booking of appointments. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. More information on the handling of user data can be found in the privacy policy of Dr. med. Flex:


Use of the service provider "MailChimp"

The data are stored by means of "MailChimp", a newsletter shipping platform of the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE # 5000, Atlanta, GA 30308, USA. The email addresses of our patients who give us a review on our website, as well as their other information described in these notes, are stored on the servers of MailChimp in the USA. MailChimp uses this information to evaluate the ratings on our behalf. Furthermore, MailChimp may, according to its own information, use this data to optimize or improve its own services, e.g. for technical optimization and presentation or for economic purposes, to determine from which countries the users come. However, MailChimp does not use the provided data to write to itself or to pass it on to third parties. We rely on the reliability, IT and data security of MailChimp. MailChimp is certified under the US-EU privacy shield "Privacy Shield", and is committed to complying with EU privacy regulations. Furthermore, we have concluded a data processing agreement with MailChimp. This is a contract in which MailChimp commits to protecting our users' privacy, processing it on our behalf in accordance with its privacy policy and, in particular, not disclosing it to third parties. The privacy policy of MailChimp can be found here. The privacy policy of MailChimp only on their side retrievable. In this context, we point out that on the websites of MailChimp cookies are used and thus personal data processed by MailChimp, their partners and service providers used (such as Google Analytics). We have no influence on this data collection. Further information can be found in the privacy policy of MailChimp. We also inform you about the possibility of objecting to the data collection for advertising purposes on the websites and (for the European area).

Legal basis Data protection regulation Data storage via Mailchimp

In accordance with the provisions of the General Data Protection Regulation (DSGVO), which will apply from 25 May 2018, we inform you that the consent for the collection of e-mail addresses based on Art. 6 para. 1 lit. a, 7 DSGVO and § 7 (2) no. 3, and (3) UWG. The use of the service provider MailChimp, carrying out the statistical surveys and analyzes as well as logging the registration process, are based on our legitimate interests acc. Art. 6Abs. 1 lit. f DSGVO. We are interested in using a user-friendly and secure data collection system that serves our business interests as well as the users' expectations.

We further point out that you are the future processing of your personal data in accordance with the statutory requirements. Art. 21DSGVO at any time. The objection may in particular be made against processing for direct marketing purposes.


Communicating via WhatsApp

As a service, we offer you the communication with us via the instant messaging service WhatsApp. For this purpose, according to DSGVO your special consent is necessary, which you can give by clicking on the displayed button "WHATSAPP". Purpose of the data processing in the context of the consent according to kind 6 exp. 1 a) DSGVO is exclusively the direct communication with our enterprise. We do not send any newsletters or other advertisements, neither from our company nor from third parties, neither regularly nor irregularly via this medium.

Users may contact the operator of this website using WhatsApp's WhatsApp Instant Messaging service, 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland. By using this service, the user accepts that WhatsApp, Inc. receives personally identifiable information (including, but not limited to, metadata of communication and personally identifiable information such as name, nickname, mobile phone number) that will be processed on servers located outside of the EU (eg US) , WhatsApp shares this information with other companies inside and outside the Facebook group of companies. For more information, see the WhatsApp privacy policy . The Web site operator has no exact knowledge or influence on the data processing by WhatsApp, Inc. WhatsApp is under the Privacy Shield Agreement certified, thereby providing a guarantee to comply with European data protection law. The user may revoke this consent at any time without giving reasons for doing so by contacting the website operator contact or by email or via Whatsapp message with the word" STOP "notifying his revocation against the processing of his personal data via this service.


i. Who is responsible for data protection in our practice?

In our practice is responsible for the privacy and is available for questions:

Data Protection Supervisor
Dr. Sebastian Kraska
IITR Datenschutz GmbH
E-Mail: datenschutz(at)


ii. What personal data do we collect on our website?

We collect, store, use, transmit or delete the following personal data:

  •     Visitors to our website

Personal data of you will only be collected by us if you by e-mail, contact form or online appointment.

We process the following personal data as part of our website:

  •     Personal details (for example, first and last name, e-mail address, telephone number, insurance status)
  •     Data on your online behavior and preferences (such as IP addresses, unique mobile device mapping, data about your visits to our website, devices you have visited our website with).


iii: Who may receive your personal information?

If individual functions of our website rely on contracted service providers, we will inform you in section iv. this privacy policy in detail about the respective operations. In doing so, we also name the specified criteria for the storage duration.


iv: What is the purpose of your data and what justification can we use it with?

If you only use our website to inform yourself about our practice, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data that is technically necessary for us to display our website and to ensure its stability and security (legal basis is Art. 6 (1) sentence 1 lit. DSGVO):

  •     IP address
  •     Date and time of the request
  •     Time Zone Difference to Greenwich Mean Time (GMT)
  •     Content of the requirement (concrete page)
  •     Access Status / HTTP status code
  •     each transmitted amount of data
  •     Website from which the request comes
  •     browser
  •     Operating system and its interface
  •     Language and version of the browser software
  •     Type and type of terminal.

In addition to these data, cookies are also stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive assigned to the browser you are using and by which the body that sets the cookie (here through us) receives certain information. Cookies can not run programs or transmit viruses to your computer. They serve to make the Internet offer more user-friendly and effective overall.

Use of cookies:

This website uses the following types of cookies, the scope and operation of which are explained below:

  •     Transient cookies (see 1.)
  •     Persistent cookies (see 2.)
  1. Transient cookies are automatically deleted when you close the browser. These include in particular the session cookies. These store a so-called session ID, with which various requests from your browser can be assigned to the common session. This will allow your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close the browser.
  2. Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie. You can delete the cookies in the security settings of your browser at any time.

You can configure your browser setting according to your wishes. B. decline the acceptance of third-party cookies or all cookies. Please be aware that you may not be able to use all features of this site.

If you would like to arrange an appointment for treatment by e-mail or via our contact form or send us a question, we will store the data you have provided (your e-mail address, your name and your telephone number if necessary) to give you a treatment appointment assign or answer the request. We delete the data arising in this context after the storage is no longer required, or limit the processing if there are statutory retention obligations (legal basis is Art. 6 (1) sentence 1 lit. b DSGVO).


v. What rights do you have in connection with data protection?

You have the following rights with respect to the personal data concerning you:

  •     Right to information,
  •     Right to rectification or cancellation,
  •     Right to restriction of processing,
  •     Right to object to the processing,
  •     Right to data portability.


vi. How can you complain if necessary?

You have the option to contact our Data Protection Supervisor for a data-processing complaint:

Mrs. Maja Smoltczyk
Friedrichstr. 21
10969 Berlin
Phone: +49 30 13889-0


Contradiction advertising emails

The use of published in the context of the imprint obligation contact information for sending unsolicited advertising and information materials is hereby prohibited. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.

Change of our privacy policy

We reserve the right to amend this privacy policy to always comply with the current legal requirements or to implement changes to our services in the privacy policy, e.g. when introducing new services. Your new visit will be subject to the new privacy policy.


Legal basis of processing

Art. 6 I lit. A DS-GVO serves our company as the legal basis for processing operations in which we obtain consent for a particular processing purpose. If the processing of personal data is necessary to fulfill a contract of which the data subject is a party, as is the case, for example, in processing operations necessary for the supply of goods or the provision of any other service or consideration, processing shall be based on Art. 6 I lit. b DS-GVO. The same applies to processing operations that are necessary to carry out pre-contractual measures, for example in the case of inquiries about our products or services. If our company is subject to a legal obligation which requires the processing of personal data, such as the fulfillment of tax obligations, the processing is based on Art. 6 I lit. c DS-GVO. In rare cases, the processing of personal data may be required to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor to our premises were injured and his or her name, age, health insurance or other vital information would have to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6 I lit. d DS GVOs are based. Ultimately, processing operations could be based on Art. 6 I lit. f DS GVOs are based. Processing operations that are not covered by any of the above legal bases are based on this legal basis if processing is necessary to safeguard the legitimate interests of our company or a third party, unless the interests, fundamental rights and fundamental freedoms of the person concerned prevail. Such processing operations are particularly permitted because they have been specifically mentioned by the European legislator. In that regard, it considered that a legitimate interest could be assumed if the data subject is a customer of the controller (recital 47, second sentence, DS-GVO).


Qualified interests in the processing being pursued by the controller or a third party

Is the processing of personal data based on Article 6 I lit. f DS-GVO is our legitimate interest in conducting our business for the benefit of all of our employees and our shareholders.


 Duration for which the personal data is stored

The criterion for the duration of the storage of personal data is the respective statutory retention period. After the deadline, the corresponding data will be routinely deleted, if they are no longer required to fulfill the contract or to initiate a contract.


Legal or contractual provisions for the provision of personal data; Necessity for the conclusion of the contract; Obligation of the data subject to provide the personal data; possible consequences of non-provision


We clarify that the provision of personal information is in part required by law (such as tax regulations) or may result from contractual arrangements (such as details of the contractor). Sometimes it may be necessary for a contract to be concluded that an affected person provides us with personal data that must subsequently be processed by us. For example, the data subject is required to provide us with personal information when our company concludes a contract with her. Failure to provide the personal data would mean that the contract with the person concerned could not be closed. Prior to any personal data being provided by the person concerned, the person concerned must contact one of our employees. Our employee will inform the individual on a case-by-case basis whether the provision of the personal data is required by law or contract or required for the conclusion of the contract, whether there is an obligation to provide the personal data, and what would have resulted from the failure to provide the personal data.


Source: BZÄK

Parts of this privacy policy have been created with the Datenschutzerklärungs-Generator der activeMind AG.

Parts of this Privacy Policy have been provided by the privacy statement generator of DGD Deutsche Gesellschaft für Datenschutz GmbH, which acts as Data Protection Officer tätig ist, in cooperation with the privacy advocates of the law firm WILDE BEUGER SOLMECKE | Lawyers.