Sign In

Continue with Facebook
Continue with Google

Asklepieia Health Cluster S.A.

Privacy Policy
Effective Date: 19 November 2025 |Last Updated: 17 March 2026

Disclaimer: This Website collects some Personal Data from its Users. If you want to learn exactly how your data is saved and used you are advised to read the full contents of our policy page.

Owner and Data Controller
Asklepieia Health Cluster S.A.
2 Viantos Str., 10442
Athens, Greece

Reg. No.: 152787201000

Owner contact email: [email protected]

INTRODUCTION

General

This policy applies to all personal data processed by Asklepieia Health Cluster S.A. (โ€œCompanyโ€, โ€œAsklepieiaโ€, โ€œweโ€, โ€œusโ€, โ€œourโ€).

The respect for your privacy and the management, protection and security of your personal data is a priority for us. Hence, we take all technical and organizational measures for the protection of your personal data pursuant to the applicable national and European legislation and in particular to the General Data Protection Regulation (EU 2016/679), the national laws and the Decisions, Directives and Opinions of the competent supervisory Authority.

CONTENT:

This Data Protection Policy includes:

  1. Information about the Data Controller and the Data Protection Officer (DPO), and our contact details for any issue regarding your personal data;
  2. General principles of personal data processing;
  3. The type of personal data that we collect from you and methods of collection;
  4. The purpose of collecting and processing of your personal data and the legal basis for the processing;
  5. Transfer of personal data to third parties;
  6. Security measures that we undertake for the protection of your data;
  7. Instances where we may run a Data Protection Impact Assessment (DPIA);
  8. Retention duration of your personal data;
  9. Your rights and how to access them, as well any options you may have regarding the collection and processing of your data;
  1. DATA CONTROLLER AND DATA PROTECTION OFFICER

Who is the Data Controller?

Data Controller of your personal data is the Company under the name โ€œAsklepieia Health Cluster SAโ€ and the distinctive title โ€œAsklepieia Health Clusterโ€, with General Commercial Registry (GEMI) number 152787201000, having its headquarters in Athens (2 Viantos Str., 10442, Athens, Greece), VAT no EL801253906,  tel. +30 2111826515 and email: [email protected] .

Who is the Data Protection Officer?

For any request relating to your personal data you can contact our Data Protection Officer (DPO) by calling +302111826515 or by e-mail, at [email protected] .

Questions and Comments

You may communicate with us using the contact details above and submit any comment, queries, observations or any complaints regarding this Policy and generally the collection and processing of your personal data. You have the right to submit any claim regarding issues of protection of your personal data that may arise from its processing by the Company, before the Hellenic Data Protection Authority, which is the supervisory authority in our country. Please find details in link www.dpa.gr. However, it is our obligation and duty to handle any troubles regarding your personal data, hence we are happy to answer any questions.

If you are resident or established in another EU/EEA Member State, you may also lodge a complaint with the data protection supervisory authority of that Member State. If you are resident or established outside the EU/EEA, you may lodge a complaint with the competent data protection authority of your jurisdiction, where one exists under applicable law.

  • GENERAL PRINCIPLES OF PERSONAL DATA PROCESSING

The Company collects and processes your personal data in accordance with the following principles:

  1. Lawfulness, Fairness and Transparency: the Company collects and processes your data lawfully, fairly and transparently,
  2. Purpose Limitation: the Company processes your personal data only for specified, explicit and legitimate purposes,
  3. Data Minimization: the Company takes all appropriate technical and organizational measures in order for the data processing to be adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed,  
  4. Accuracy: the Company takes all reasonable steps to ensure that personal data are accurate and, where necessary, kept up to date,
  5. Storage Limitation: the Company does not keep personal data for longer than is necessary for the purposes for which the personal data are processed; nevertheless, the Company may store personal data for longer periods if necessary: (a) for compliance with a legal obligation, (b) for the fulfillment of a duty in public interest, (c) for public interest purposes, (d) for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes subject to implementation of the appropriate technical and organizational measures, (e) for the establishment, exercise or support of legal claims. 
  6. Integrity and Confidentiality: the Company ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures.
  • TYPE AND MEANS OF COLLECTING AND PROCESSING PERSONAL DATA

Personal Data that we Collect and Process

The Company collects and processes your personal data only insofar as it is absolutely necessary and appropriate in relation to the purposes for which they are processed. Specifically, the personal data we collect and process are summarized as follows:

Note on Legal Entities: Where a Healthcare Professional is a legal entity (e.g. a clinic, polyclinic or hospital registered as a company), the Regulation (EU) 2016/679 (GDPR) does not apply to the data of that legal entity itself. However, personal data of natural persons who are contact points or representatives of such legal entities (e.g. name and email address of a clinic administrator or medical director) remain personal data and are processed in accordance with this Privacy Policy. All Healthcare Professionals who are natural persons (including physicians and paramedical professionals such as psychologists, dieticians, physiotherapists and other licensed practitioners) are data subjects under the GDPR and their data is processed in full compliance with applicable data protection law.

  1. Identity data (full name, fatherโ€™s name, date of birth, gender, postal address, email address, passport or other official identity document number),
  2. Health data,
  3. Private insurance data (insurance name, policy number, country of residence, assistance ref. number etc.),
  4. Payment data (e.g. card details or PayPal account, credit balances, amounts you have spent on the use of the Service, amounts credited to you and amounts covered by your Insurance Company, bank accounts of Healthcare Professionals who are required to provide for their payment, or their PayPal account),
  5. Geolocation data (you can optionally tell us your geolocation data if you set your browser to be tracked by the signal),
  6. Website browsing data (e.g. your IP address),
  7. Sound data from recorded calls – after we have expressly informed you of such recording (e.g. full name, telephone number, date of birth, postal address, insurance data etc.),
  8. Data in relation to requests you have submitted in relation to the exercise of your rights or complaints,
  9. Data of potential Company employees which are contained in attached CVs or relevant submission forms,
  10. Data of our employees (name, surname, fatherโ€™s name, motherโ€™s name, gender, date of birth, postal address, telephone number, email, nationality, family status, number of children, national identity or passport numbers, tax identification number, IBAN, education, professional certifications, date of hiring etc),
  11. Data of Healthcare Professionals who provide medical services (including name, surname, gender, date of birth, title, telephone number, address, tax identification number, membership to medical associations, professional accreditations, professional insurance coverage data etc),  Data of Hospitality Partners and Wellness Partners who provide services through the platform (including business name, contact person name, telephone number, address, tax identification number, operational licences, professional insurance coverage data, payment details), Data of Ambassadors participating in the Brand Certification and Referral Attribution Programme (including name, contact details, website or social media URLs, tax identification number, payment details, referral and attribution activity data),


Data of Ambassadors (Affiliators) participating in the Referral Attribution Programme, including: referral tracking identifiers, programme activity and payment records. This data is processed on the basis of contractual necessity (Art. 6(1)(b) GDPR) and legitimate interest in programme administration (Art. 6(1)(f) GDPR).

  1. Your reviews on Healthcare Professionals, time and place of provision of medical services.
  2. Data of Ambassadors (Affiliators) who register on the Platform, including: name, surname, contact email, telephone number, platform username, applicable Ambassador tier as defined in the Affiliate Agreement, VAT registration number (where required under the Affiliate Agreement), and promotional channel links (e.g. social media profiles, blog or website URLs, content creator channels).
  3. Data of Wellness Partners who register on the Platform, including: business name, registered address, contact person name and email, telephone number, type of wellness service (e.g. day spa, medical spa, yoga studio, nutrition practice), applicable professional licences or certifications (where the service is subject to professional regulation), and listing/profile content submitted by the Wellness Partner.


We do not knowingly collect any information from any person under the age of 18 without the consent of parents, guardians. Our services are aimed exclusively at people who are at least 18 years of age or older. If you are under 18, do not use or provide any information to us, do not register as a Member or in our newsletters list of recipients, do not use the Platform and Service, even the upload, and do not give any information about your identity to us, including your name, address, or contact information (phone, email, etc.). If we find that we have collected or received personal data from a child under the age of 18 without the consent of the guardian, we will delete it immediately unless consent has been given by a parent or guardian. If you think we may have information from or for a child under 18, please contact us.

How We Collect Personal Data

The collection of personal data is made by physical and electronic means, as the case may be, such as:

  1. When you submit a request form pursuant to the Terms of Use of the Company,
  2. When you use the Platform to send health data to Healthcare Professionals of the Companyโ€™s network,
  3. when you fill out various forms, interact with the chat or during our electronic communication
  4. while using our call center or website for scheduling an appointment for a medical service,
  5. when you declare to us your wish to use your insurance coverage,
  6. when you apply for employment to the Company,
  7. when you are hired as an employee in the Company,
  8. when you become a member of our network as a Healthcare Professional, Wellness Partner, Hospitality Partner, or insurance company,
  9. when you register on the Platform as an Ambassador,
  10. when you use the Platform as an Ambassador (Affiliator) to refer Users or publish promotional content about listed Healthcare Professionals, Wellness Partners, or Hospitality Partners on the Platform. Ambassadors do not list their own services or packages on the Platform; the Ambassador role is exclusively promotional.
  11. when you register on the Platform as a Wellness Partner, or when you use the Platform to manage your wellness service listing and receive bookings from Users.
  12. when you submit a request for receiving our newsletters.
  13. from publicly available sources, such as professional registries, regulatory authority databases, Google Business Profiles and other public directories of healthcare professionals, for the purpose of creating Directory Profile Healthcare Professional listings on our Platform (see section โ€œDirectory Profile Healthcare Professional Listingsโ€ below).
  • PURPOSE AND LEGAL BASIS FOR PROCESSING

Legal Basis

The Company may process personal data relating you if one of the following applies:

  1. You have given your consent for one or more specific purposes;
  2. Provision of data is necessary for the performance of an agreement with you and/or for any pre-contractual obligations thereof;
  3. Processing is necessary for compliance with a legal obligation to which the Company is subject;
  4. Processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in the Company;
  5. Processing is necessary for the purposes of the legitimate interests pursued by the Company or by a third party.

We will never process your health data if none of the above legal bases applies and we have not received your prior express consent, after we have informed you of the purpose of processing. In any case, the Company will gladly help to clarify the specific legal basis that applies to the processing, and in particular whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.

Purposes for Processing Personal Data:

The personal data (other than health data) collected by the Company are used for the following purposes:

  1. To enable Healthcare Professionals to register as a member in the Companyโ€™s professional network. Legal basis for processing is (a) the medical service providerโ€™s consent regarding the information provided to us (b) fulfillment of our contractual obligations with the Healthcare Professionals.
  2. To receive and manage a request for the provision of a medical service. Legal basis for processing is (a) your consent for submitting a request form and (b) the fulfillment of our contractual obligations with regards to the provision of our services.
  3. To present in the Platform Healthcare Professionals and their services. For Verified Healthcare Professionals: legal basis is (a) the Healthcare Professionalโ€™s consent and (b) the fulfillment of our contractual obligations. For Directory Profile listings created from publicly available sources: legal basis is legitimate interests (Article 6(1)(f) GDPR). Please see the dedicated section โ€œDirectory Profile Healthcare Professional Listingsโ€ below for full details.
  4. To process any insurance cover/ claim for patients. Legal basis for processing is (a) your consent with regard to the provision of insurance policy data and your geolocation, (b) the fulfillment of a legitimate interest with regard to your identification for the safety of transactions. In the event that you make use of a public insurance cover, certain personal data may be processed with legal basis the necessity of processing for the provision of health or social care.
  5. To send advertising and marketing material. Legal basis for processing is your express consent.
  6. For our communication and the management of your requests, whether those are related to personal data protection issues, or to the quality of our services. Legal basis for processing is the Companyโ€™s legal interest and compliance with its legal obligations, pursuant to the existing legislation.  
  7. For the Company to be able to hire employees or collaborate with independent contractors. Legal basis for processing is (a) the necessity of processing in the context of our contractual or pre-contractual obligations, (b) necessity of processing for the fulfillment of rights and obligations in the field of labor law, social security law or for the fulfillment of an obligation in the public interest. 
  8. For the Companyโ€™s compliance with its legal obligations, such as compliance with tax and social security legislation. Legal basis for processing is Companyโ€™s compliance with its legal obligations. 
  9. For handling, concluding and processing your payments, including the security of our financial transaction. Legal basis for processing is (a) fulfillment of our contractual obligations, (b) necessity to protect the safety of transactions.
  10. For business analysis and improvements, such as the availability of our Services and their optimization, to optimize your experience and service by us within the Platform, to manage Loyalty programs, as well to adjust your experience in the Platform and Service. Legal basis is (a) compliance with legal obligation to secure information and confidentiality, (b) the legitimate interest for security of networks, avoidance of any fraud and unauthorized access to data, for our business continuity, upgrading our systems and our partnersโ€™ system, for our business development, optimization of our technical systems and commercial processes.
  11. For tracking engagement with Healthcare Professional profiles, including recording when a user reveals contact information (e.g. phone number display events). This data is used to measure platform engagement and may be shared with the relevant Healthcare Professional. Legal basis for processing is our legitimate interest (Article 6(1)(f) GDPR) in understanding platform usage and providing value to Healthcare Professionals.
  12. For statistical analysis, after your data have been pseudonymized. Legal basis for processing is the necessity to export statistical data.
  13. To enable Ambassadors (Affiliators) to register on the Platform, manage their promotional profiles, and receive communications related to the Ambassador programme, including tier management, commission statements, and promotional materials. The legal basis for processing Ambassador data is (a) the performance of the applicable Affiliate Agreement (Article 6(1)(b) GDPR), (b) the Companyโ€™s legitimate interest in operating its referral and attribution network (Article 6(1)(f) GDPR), and (c) consent (Article 6(1)(a) GDPR) where applicable. Ambassadors who are natural persons engaged in commercial communication activities may also be contacted by electronic means on an opt-out basis in accordance with Article 11 of Law 3471/2006.
  14. To enable Wellness Partners to register on the Platform, manage their listings, and receive bookings from Users; and to present Wellness Partner profiles to Users searching for wellness, wellbeing, and complementary health services. The legal basis is the performance of the agreement with the Wellness Partner (Article 6(1)(b) GDPR) and, for Wellness Partners whose services fall within a regulated healthcare profession, the processing of professional qualification data is permitted under Article 9(2)(b) GDPR (obligations and rights in employment, social security and social protection) as applied to the professional licensing verification obligation.
  15. To operate the Asklepieia Evaluated Member Badge referral attribution programme. When a visitor accesses the Asklepieia Platform via a Partnerโ€™s Asklepieia Evaluated Member Badge (a CTA hyperlink redirecting to the Asklepieia Platform), the Company processes only pseudonymised session and conversion data for the sole purpose of attributing cross-category bookings to the originating Partner and calculating Cross-Partner Referral Commissions under the Brand Certification and Referral Attribution Programme section of the Terms of Use. No personal data of the visitor or patient is collected or processed for this attribution purpose. The legal basis is Asklepieiaโ€™s legitimate interest in operating a fair and transparent partner commission programme (Article 6(1)(f) GDPR). The pseudonymised attribution data is retained for 26 months in accordance with the analytics retention schedule under this Privacy Policy.

Health data collected by the Company for the purposes of (ii), (iv) and (v) above shall only be processed with your express consent. Additionally, they may be processed if (a) your vital interests are concerned and you are physically or legally incapable of giving consent, (b) a substantial public interest specified by law is at stake, (c) it is necessary to defend a legal claim, (d) it is necessary for reasons of public health, specified in the law, (e ) it is necessary for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes.

  • DIRECTORY PROFILE HEALTHCARE PROFESSIONAL LISTINGS

Asklepieia creates Directory Profile listings for Healthcare Professionals using information from publicly available sources. A Directory Profile is a listing created from publicly available professional directory data that has not yet been claimed or verified by the Healthcare Professional. The categories of personal data processed include: full name, medical specialty and credentials, business address and contact details, and professional registration number where publicly available.

Legal basis: legitimate interests (Article 6(1)(f) GDPR). Asklepieia has assessed that its legitimate interest in providing a comprehensive directory of healthcare professionals to assist patients in finding appropriate care overrides the interests of the healthcare professionals concerned, given that: (a) the data relates to professional and not private activities; (b) the data is already publicly available; (c) healthcare professionals have a clear mechanism to request removal or correction; and (d) the directory provides significant patient-facing information utility.

Notification: Healthcare professionals whose data appears in a Directory Profile listing will be notified of this processing by email within one (1) month of the profile being created, in accordance with Article 14 GDPR.

Retention: Directory Profile data is retained until the healthcare professional requests removal, or for a maximum period of two (2) years from creation, subject to periodic review to verify continued availability of the source data, whichever occurs first.

Rights: Healthcare professionals may at any time request access, rectification, erasure or object to this processing by contacting our DPO at [email protected]. Requests for removal of a Directory Profile listing will be honoured unless Asklepieia has a compelling legitimate ground that overrides the individualโ€™s interests, which will be assessed on a case-by-case basis.

  • TRANSFER OF PERSONAL DATA

The Company may transfer personal data to:

  1. Third parties to which the Company has assigned the processing of personal data on the Companyโ€™s behalf.

Specifically, the Company may transfer your personal data to (a) medical and Healthcare Professionals belonging to its network and which are contractually bound with the Company for the provision of their services, (b) collaborating diagnostic centers and hospital facilities, (c) collaborating third parties who, acting as processors on behalf of the Company, host and manage the data you provide to the Platform, (d) third-party email marketing companies acting in the name and on behalf of us to send you the newsletter, (e) data analysis companies, (f) research companies, (g) financial organizations for the recovery of health insurance fees, (h) providers of technology services.

In any case, the third parties to which personal data may be transferred are all contractually bound with the Company to ensure the obligation of confidentiality and all obligations foreseen by the existing legislation, especially that processing takes place in conformity with the existing legislation. The third parties commit that they will process your personal data only for the specific and contractually determined purposes and will not transfer them or make them known to third parties, unless they are obliged to do so by law.       

  1. To your Stated insurance provider, in case you make use of it. 
  2. To private insurance companies/ employers. The Company may transfer your health data to collaborating private insurance companies within the EU for invoking your insurance coverage but only if your prior express consent has been given.
  3. To judicial authorities and prosecutors, as well as to other public authorities (e.g. internal revenue) in the course of the exercise of their duties and with due legal process. Further, on the ground of public interest in the field of public health, we may transfer your personal data pursuant to the applicable legislation to public authorities (e.g. National Public Health Organization).    
  4. The Company endeavours to keep your personal data within the European Economic Area (EEA). Where personal data is transferred outside the EEA, the Company relies on one of the following safeguards: (a) an adequacy decision issued by the European Commission; (b) Standard Contractual Clauses (SCCs) under Commission Implementing Decision (EU) 2021/914; or (c) another safeguard or derogation under Article 46 or Article 49 GDPR. A copy of the applicable transfer mechanism may be obtained from [email protected].

We reserve the right to disclose your personal data to a third party that we choose to transfer all or part of our business. In addition, in the event of a merge or acquisition or other change in our business, the new owners, etc. have the right to use your personal data in the same way according to this Privacy Policy.

Applicable Local Privacy Laws. This Policy is designed to comply with the GDPR and applicable Greek data protection law. Where you are a resident or the processing concerns individuals in a jurisdiction outside the EU/EEA, additional or different data protection rules may apply alongside this Policy: Where applicable local law (including but not limited to data protection legislation in the country where the Partner or User is established) imposes additional obligations or grants additional rights beyond those provided by the GDPR, the Company will comply with those requirements to the extent required by law. If you are unsure which rules apply to your situation, please contact our DPO at [email protected].

Data Processing Agreements (B2B). Where Asklepieia processes personal data on behalf of a partner organisation acting as data controller (e.g. an insurance company, employer, or healthcare network), or where a partner organisation processes personal data on behalf of Asklepieia, the parties shall execute a separate Data Processing Agreement (DPA) in accordance with Article 28 GDPR (or equivalent provision under applicable law). Such DPA shall form part of the commercial agreement between the parties and shall supersede any conflicting data processing terms in this Privacy Policy with respect to that specific B2B relationship. Partners who require a DPA should contact [email protected].

  • SECURITY MEASURES

We take appropriate technical and organizational measures to protect your personal data from unauthorized disclosure, use, conversion or destruction. Where appropriate, we use encryption and other technologies that can help to secure any information you provide us. We also ask our service providers to comply with strict privacy and data protection requirements. Although no method of data transfer via the internet or electronic storage method is absolutely safe, we take all necessary measures for the digital security of data (antivirus, firewall etc).

More specifically, the data you submit to the Company is managed by specially authorized personnel of the Company under our control, acting solely upon our mandate, and by contractually bound third-party service providers (Data Processors).

In order to conduct the processing, the Company selects individuals or third-party collaborators who confirm they possess corresponding professional qualifications and provide sufficient guarantees regarding technical knowledge and personal integrity to safeguard confidentiality in accordance with applicable data protection laws (GDPR).

The Company, through its respective contractual commitments, takes all commercially reasonable security measures to protect the privacy, confidentiality, and integrity of personal data. However, the User acknowledges that no system can be 100% secure.

To the fullest extent permitted by applicable law, the Company shall not be liable for: (i) unauthorized access, hacking, or data breaches resulting from the negligence or security failures of third-party service providers (including but not limited to cloud hosting providers, payment processors, or telecommunication providers), provided that the Company has exercised due diligence in selecting such partners; (ii) reasons resulting from technical, hardware, or software failures of the internet or public networks not directly controlled by the Company; or (iii) events of force majeure, chance events, or malicious acts by third parties that could not have been prevented by reasonable security measures.

  1. PERSONAL DATA RETENTION

The personal data collected by the Company are retained for a predetermined and limited period of time depending on the purpose of processing, after the passage of which the data are erased and/ or destroyed safely, unless existing laws permit or provide for a different retention period.

The retention period of your data is defined on the basis of certain more specific criteria. Indicatively:

  1. It is mandatory to retain your personal data for the entire duration imposed by the purpose of their processing and/or the existing legal framework. With the passing of this duration, the data are retained pursuant to the applicable laws and for as long as it is necessary for the protection of the Companyโ€™s rights before a Court or other competent authority. We retain applications with attached CVs that you send us for 2 years in order to assess them for certain positions and after the expiration of this period we destroy or erase them safely. 

For clarity, the following indicative retention periods apply: booking and transaction data โ€” 5 years (Greek tax law); health data submitted via request forms โ€” duration of the contractual relationship plus 5 years (statute of limitations); payment and billing data โ€” 10 years (Greek Commercial Code); marketing consent records โ€” until withdrawal of consent plus 6 months for audit purposes; website analytics data โ€” 26 months; employee data โ€” duration of employment plus 5 years.

  1. When processing is required as an obligation pursuant to provisions of the existing legal framework, your personal data shall be retained for as long as the relevant provisions require.

For marketing activities purposes and in any other case where processing is based on your consent, your personal data shall be retained until the revocation of your consent, without the legality of the processing which has been based on your consent for the duration prior to your revocation being affected. For the consent revocation process, you must submit a request to the data protection officer (DPO). Alternatively, you may also use the unsubscribe options on our electronic communications.   We reserve the right in certain circumstances to anonymize your data for research or statistical purposes, so that it cannot be associated with an identifiable person, therefore we reserve the right to use this information for an indefinite period of time. In any case, your data is stored with safety.

  1. YOUR RIGHTS AND YOUR OPTIONS

You may exercise certain rights regarding your data processed by the Company. In particular, you have the right to do the following:

  1. Withdraw your consent at any time. You have the right to withdraw consent where you have previously given your consent to the processing of your personal data.
  2. Object to processing of your data. You have the right to object to the processing of your data if the processing is carried out on a legal basis other than consent.
  3. Access your data. You have the right to learn if data is being processed by the Company, obtain disclosure regarding certain aspects of the processing and obtain a copy of the data undergoing processing.
  4. Verify and seek rectification. You have the right to verify the accuracy of your data and ask for it to be updated or corrected.
  5. Restrict the processing of your data. You have the right, under certain circumstances, to restrict the processing of your data. In this case, the Company will not process your data for any purpose other than storing it.
  6. Have your personal data deleted or otherwise removed. You have the right, under certain circumstances, to obtain the erasure of your data from the Company.
  7. Receive your data and have it transferred to another controller. You have the right to receive your data in a structured, commonly used and machine readable format and, if technically feasible, to have it transmitted to another controller without any hindrance. This provision is applicable provided that the data is processed by automated means and that the processing is based on your consent, on a contract which you are part of or on pre-contractual obligations thereof.
  8. Lodge a complaint. You have the right to bring a claim before your competent data protection authority.

Rights of Healthcare Professionals in Directory Profile Listings: Healthcare Professionals whose information appears in a Directory Profile listing on the Platform are data subjects under the GDPR and have the full rights described above. In particular, you have the right to object (Article 21 GDPR) to processing based on our legitimate interests, and the right to request erasure. To request removal of a Directory Profile listing or to exercise any other right, please contact our DPO at [email protected] or use the โ€œClaim/Remove Profileโ€ function on the listing page.

We offer you easy ways to exercise these rights, such as โ€œunsubscribeโ€ links, or by calling from Monday to Sunday 9:00 to 17:00, or by sending email at [email protected]

Some mobile applications we offer might also send you push messages, for instance about new products or services. You can disable these messages through the settings in your phone or the application.

For the exercise of your rights with respect to the device data we collect, you can access the settings.

Any requests to exercise your rights shall be provided free of charge and will be addressed by the Company as early as possible and always within one month. However, where requests from you are manifestly unfounded or excessive, in particular because of their repetitive character, the Company may either: (a) charge a reasonable fee taking into account the administrative costs of providing the information or communication or taking the action requested or (b) refuse to act on the request. The burden of demonstrating the manifestly unfounded or excessive character of the request rests with the Company.

Automated Decision-Making and Profiling

The Company uses automated processing in the following areas: (a) algorithmic ranking of Healthcare Professionals in search results, based on multiple quality and relevance factors; (b) fraud prevention measures operated by our payment processor during financial transactions; (c) spam and bot detection via reCAPTCHA during form submissions. These automated processes do not produce legal effects or similarly significant effects on you as a data subject. You have the right to request human review of any decision that significantly affects you, to express your point of view, and to contest such decisions, by contacting our DPO.

Disclaimer for Third Party Websites

In case that in our website there are links which redirect you to third party websites, we inform you that the Company does not control nor is liable for the content of those websites, nor for the way they process your personal data.

Cookies and Similar Technologies

Our website uses cookies and similar technologies as described in our Cookie Policy available at asklepieiahealth.com/cookie-policy/. The Cookie Policy forms part of this Privacy Policy and explains what cookies we use, why, and your choices. For full details on cookie categories, third-party services, and how to manage your preferences, please refer to the Cookie Policy. You may also contact our Data Protection Officer at [email protected] for any questions about cookies and tracking.

Amendments and Updates

The Company reserves the right to make changes to this Policy at any time in the context of its regulatory compliance and optimization of our Services. It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom.

Should the changes affect processing activities performed on the basis of the Userโ€™s consent, the Company shall collect new consent from the User, where required.

Asklepieia 2025 ยฉ All Rights Reserved.
en_US
el en_US