Note: This is an English translation of the original German-language document. In case of any discrepancies or inconsistencies, the German version shall prevail and be legally binding.
This privacy policy provides information about the processing of personal data in connection with our activities and operations, including our website uroviva.ch. In particular, we explain for what purposes, how, and where we process which categories of personal data. We also inform you about the rights of individuals whose data we process.
Additional or separate privacy policies or other data protection notices may apply for certain or supplementary activities and operations.
Data Subject: A natural person whose personal data we process.
Personal Data: Any information relating to an identified or identifiable natural person.
Sensitive Personal Data: This includes data relating to trade union membership, political, religious, or philosophical beliefs and activities; data concerning health, intimate life, or ethnic or racial origin; genetic data; biometric data that uniquely identifies a natural person; data concerning criminal or administrative sanctions or prosecutions; and data relating to social welfare measures.
Processing: Any handling of personal data, regardless of the methods and procedures used – such as querying, comparing, adjusting, archiving, retaining, reading, disclosing, acquiring, collecting, recording, erasing, revealing, ordering, organizing, storing, modifying, disseminating, linking, destroying, and using personal data.
We process personal data in accordance with Swiss data protection law, in particular the Federal Act on Data Protection (FADP), the Data Protection Ordinance (DPO), and the Information and Data Protection Act (IDG).
For the processing of patient data, our primary legal bases are the Health Act and the Patients Act of the Canton of Zurich. Where applicable, we also rely on the Federal Act on the Electronic Patient Dossier (EPDG).
We process only those personal data that are necessary to carry out our activities and operations in a sustainable, user-friendly, secure, and reliable manner.
The personal data processed may fall into the following categories:
We may also process personal data that:
We process personal data with the consent of the data subjects, where necessary. In many cases, however, we may process personal data without consent – for example, to fulfill legal obligations or safeguard overriding interests. Even where consent is not required, we may still choose to obtain it out of transparency or prudence.
We retain personal data only for as long as required for the specific purpose.
We anonymize or delete personal data particularly in accordance with statutory retention and limitation periods.
In accordance with § 14 para. 4 of the Information and Data Protection Act (IDG), every public entity is required to maintain a register of its information repositories. This register includes all information about the purposes for which personal data are managed and processed by Uroviva.
Only data that is appropriate and necessary for Uroviva’s operational tasks is collected and processed. Information is managed either physically or electronically. Retention periods are based on statutory requirements.
Important Notes on the Table:
→ Each listed repository contains personal data.
→ Legend – Format: E = Electronic / Ph = Physical
Repository Name | Format | Purpose / Content |
---|---|---|
Axians AG | E | Axians Cloud Workplace, central IT infrastructure (details according to contract) |
Data Dynamic AG | E | Analysis, planning, implementation and deployment of ERP projects; custom software development and support |
Patient Billing | E | Service billing |
Avenir | E | Creation of employment references |
Careum – Health & Social Education | E | Training of HF (Higher Vocational Education) students |
Dualoo AG | E | Applicant management |
Finpension Pension Fund | E | Data collection for pension funds (executives and physicians) |
Medisuisse (Connect) | E | AHV-related data collection |
GPTW Employee Survey | E | Employee satisfaction survey and analysis (anonymous) |
Polypoint | E | Working hours recording |
Provisa AG | E | Insurance and occupational pension consulting |
Spicura | E | Apprentice training |
Employee Review Meetings | E | Staff evaluation, supervisor assessments, goal setting |
Swiss Salary Ltd. | E | Payroll system and personnel file management |
Visana Services AG (sunetonline.ch) | E | Reporting of accidents and illnesses |
Vita Collective Foundation | E | Pension fund data (e.g. salaries, addresses) |
ZAG – Center for Health Education | E | Training of HF students |
External physiotherapy for inpatients | E | Appointment scheduling and billing |
narkose.ch | E | Scheduling of anesthesiologists and night doctors |
Health Insurance Companies | E | Data transmission to insurers |
MPAssist AG | E | AI-assisted medical report dictation |
Facebook, Instagram, YouTube | E | Employee videos & images, patient stories, staff stories |
Uroviva Website (Future Connection AG) | E | Website operations, employee directory incl. images, contact/feedback forms |
Inselspital Bern | E | Rotation of assistant physicians |
SIWF – Swiss Institute for Medical Education | E | Postgraduate medical education, audits |
Diagnostic Imaging | E | Imaging diagnostics |
Vitodata | E | Practice management system, planning, patient records |
Endurit GmbH | E | Recording and evaluation of critical incidents and near misses |
ELIZA AG (Tool) / Pinmonitor AG (Partner) | E | Group-wide / overarching eQMS / intranet |
ANQ & Swissnoso Measurements | E | National quality metrics (e.g. unplanned rehospitalisations, falls, decubitus, patient satisfaction); required by GDZH for service hospitals |
Complaint Management | E | Patient complaints from Mecon, website feedback/contact form, Google reviews |
Video Surveillance | E | Video recording as a protective measure (cf. privacy policy) |
Accounting | E / Ph | Accounts payable/receivable and payroll accounting |
Print Jobs | E / Ph | Print, scan, and copy tasks |
Ines GmbH | E / Ph | Clinical treatment pathway documentation, implemented modules (as of 01.2025): performance documentation, bed and surgery planning (excl. nursing documentation) |
Hospitality | E / Ph | Patient-specific meal and beverage service |
Mecon | E / Ph | Patient satisfaction measurement (only personal data if contact is requested) |
Cantonal Hospital Aarau | E / Ph | Radiation protection review & training (legal requirements) |
KG (Care Documentation) | E / Ph | Nursing documentation |
labor team Goldach | E / Ph | Laboratory sample analysis |
Pathology Lab Aarau | E / Ph | Tissue sample analysis |
VIALEX Attorneys at Law | E / Ph | Legal case processing |
InnoMedicus AG | E / Ph | Sonablate patient data upload |
Patient Admissions | E / Ph | Patient registration, personal information sheet, data protection and consent forms |
Adjumed (software provider for SGU register & PROMs) | E / Ph | Registry entry (mandatory by BAG / GDZH), quality control, treatment outcomes (PROMs) |
Access Management | Ph | Recipient data |
We may disclose personal data to third parties, have third parties process such data on our behalf, or process it jointly with third parties. These third parties are in particular specialized providers whose services we utilize.
Examples of such third parties include:
We process personal data to be able to communicate with third parties. This includes, in particular, data that an individual provides when contacting us, such as via postal mail or email.
We may store such data in an address book or similar contact management systems.
Third parties who transmit data about other individuals are responsible for ensuring that data protection obligations toward those individuals are fulfilled. This includes, among other things, ensuring the accuracy of the transmitted personal data.
We process personal data of applicants to the extent necessary to assess suitability for employment or to carry out an employment contract.
The required personal data is usually determined by the requested information in job postings or application processes. We may publish job advertisements via suitable third-party providers, for example in digital or print media or on job portals and platforms.
We also process personal data voluntarily provided or publicly disclosed by applicants – for example, through cover letters, CVs, additional application materials, or online profiles.
We use selected services from appropriate third-party providers to advertise open positions and manage applications electronically (e-recruitment).
In particular, we use:
We implement appropriate technical and organizational measures to ensure a level of data security appropriate to the respective risk. These measures are designed in particular to ensure the confidentiality, availability, traceability, and integrity of the personal data we process. However, we cannot guarantee absolute data security.
Access to our website and other online services is secured using transport encryption (SSL / TLS)—specifically via Hypertext Transfer Protocol Secure (HTTPS). Most browsers warn users when visiting websites that do not use transport encryption.
As is generally the case with all digital communication, our online communications are subject to mass surveillance without specific cause or suspicion by security authorities in Switzerland, other parts of Europe, the United States, and other countries.
We have no direct control over how intelligence services, law enforcement agencies, and other security authorities process personal data. We also cannot exclude the possibility that a specific individual may be subject to targeted surveillance.
As a general rule, we process personal data within Switzerland. However, we may also disclose or export personal data to other countries, particularly for the purpose of processing it there or having it processed.
We may transfer personal data to any country on Earth—and elsewhere in the universe—provided that the legislation in that country ensures an adequate level of data protection, as determined by the Swiss Federal Council.
We may also transfer personal data to countries that do not offer an adequate level of data protection, provided that suitable safeguards are in place—particularly based on standard data protection clauses or other appropriate guarantees.
In exceptional cases, we may transfer personal data to countries without adequate or suitable data protection, provided the specific legal requirements for such transfers are met. These may include, for example:
The explicit consent of the data subjects, or
A direct connection to the conclusion or performance of a contract
Upon request, we are happy to provide data subjects with information about any applicable safeguards or provide a copy of such guarantees.
We grant data subjects all rights to which they are entitled under applicable data protection law. In particular, data subjects have the following rights:
We may postpone, restrict, or deny the exercise of these rights to the extent legally permissible. We may also inform data subjects of any conditions that must be met in order to exercise their data protection rights. For example, we may refuse access due to confidentiality obligations, overriding interests, or the protection of other individuals.
Likewise, we may refuse the deletion of personal data, especially when legal retention obligations apply.
We may charge fees in exceptional cases for the exercise of these rights. In such cases, data subjects will be informed in advance of any applicable costs.
We are required to verify the identity of any data subject exercising their rights, using reasonable measures. Data subjects are obliged to cooperate in this process.
Data subjects have the right to enforce their data protection rights through legal channels or to file a complaint with a supervisory data protection authority.
Supervisory authorities include:
We may use cookies. Cookies—whether our own (first-party cookies) or those from third parties whose services we use (third-party cookies)—are data stored in the browser. These stored data do not necessarily have to be traditional text-based cookies.
Cookies can be stored in the browser temporarily as “session cookies” or for a defined duration as “persistent cookies.” Session cookies are automatically deleted when the browser is closed. Persistent cookies remain stored for a specific time. Cookies allow a browser to be recognized on subsequent visits, enabling us, for example, to measure the reach of our website. Persistent cookies can also be used for purposes such as online marketing.
Cookies can be partially or entirely disabled or deleted in your browser settings at any time. However, disabling cookies may result in certain website features being unavailable.
For cookies used in performance measurement or advertising, many services offer a general opt-out via:
For every access to our website and other online services, we may log at least the following data—provided they are transmitted to our digital infrastructure:
Such data, which may qualify as personal data, are logged in log files. This information is essential to ensure the continuous, user-friendly, and reliable provision of our online presence and to guarantee data security—including with the help of third parties.
We may integrate tracking pixels into our online presence. Tracking pixels, also known as web beacons, are typically small, invisible images or JavaScript-based scripts that are automatically loaded when users access our site.
Tracking pixels—also from third-party services—can collect at least the same types of information as described in the logging section above.
We maintain a presence on social media platforms and other online platforms to communicate with interested individuals and to provide information about our activities and operations. In connection with such platforms, personal data may also be processed outside of Switzerland.
The terms and conditions, terms of use, privacy policies, and other provisions of the respective platform operators also apply. These documents, in particular, inform data subjects about their rights directly vis-à-vis the respective platform—such as the right to access personal data.
We use services provided by specialized third parties in order to conduct our activities and operations in a sustainable, user-friendly, secure, and reliable manner. These services allow us, among other things, to embed functions and content into our website. Due to technical necessities, such services typically collect at least temporary IP addresses of users.
For essential purposes relating to security, statistics, and technology, third parties whose services we use may process data in an aggregated, anonymized, or pseudonymized form. This may include performance or usage data required to operate the respective services.
We specifically use:
We use services from specialized third parties to obtain the digital infrastructure necessary for our operations. This includes, for example, hosting and storage services.
We use specialized services for audio and video conferencing to communicate online. This includes hosting virtual meetings, online instruction, and webinars.
The privacy policies and terms of use of the respective services apply.
We recommend participants mute their microphones by default and blur their background or use a virtual background when appropriate for their situation.
We use third-party services to embed maps on our website.
In particular:
We use services from specialized providers to embed digital content on our website, such as images, videos, music, and podcasts.
In particular:
We may display targeted advertisements via third parties such as social media platforms and search engines.
The aim is to reach individuals who are already interested in—or may be interested in—our activities (remarketing and targeting). For this purpose, we may transmit relevant data (including personal data) to third parties that enable such advertising. We also assess whether our ads are effective (conversion tracking).
If you are logged in to a platform where we place advertisements, it may be possible for your use of our website to be linked to your user profile on that platform.
We use in particular:
To ensure that our content is displayed consistently and attractively across browsers, we may use script and font libraries for rendering fonts.
In particular:
Google Fonts
We aim to measure the success and reach of our activities and services. In this context, we may assess the effectiveness of third-party references and analyze how different parts or versions of our online offerings are used (e.g., through A/B testing).
The results of such measurements help us to:
In most cases, the IP addresses of individual users are collected as part of success and reach measurements. These IP addresses are typically shortened (IP masking) to support the principle of data minimization through pseudonymization.
Cookies may be used in the process, and user profiles may be created. These profiles may contain:
Such user profiles are generally created in pseudonymized form only and are not used to identify individual users.
However, certain third-party services—if the user is logged in—may be able to link usage of our online services to the user's account or profile with that provider.
We particularly use:
We use video surveillance systems at our locations in order to:
The video recordings are stored for a limited period and are only reviewed if there is suspicion of unlawful behavior. If the recordings are no longer needed, they are deleted—or automatically overwritten after a defined retention period.
In specific cases, recordings may be retained for a longer duration. This applies particularly if:
In such cases, the recordings may be disclosed to the relevant authorities, especially law enforcement agencies.
In order to provide our services to patients and other involved individuals (e.g. relatives, legal guardians, referring professionals), we process personal data:
In delivering our medical, nursing, and administrative services, we process in particular the following categories of personal data:
The legal basis for processing such personal data depends on the individual purpose of the data use. In particular:
We process your personal data in particular for the following purposes:
We treat our patients’ personal data confidentially and only disclose such data when:
Recipients of personal data may include:
The base structure of this privacy policy was generated using the privacy policy generator provided by Datenschutzpartner, and has been supplemented and adapted in consultation with a data protection lawyer.
We may update or amend this privacy policy at any time. Changes and additions will be communicated by publishing the most current version on our website.
Uroviva AG, 2025