010-4557755
At Podotherapie Rotterdam, we take your privacy seriously. This privacy policy explains which personal data we collect, why we collect it, and how we protect it — in full compliance with the General Data Protection Regulation (GDPR).
Podotherapie Rotterdam, located in Rotterdam, is committed to protecting the privacy of its patients and website visitors. We process personal data with care and in accordance with the General Data Protection Regulation (GDPR/AVG) and the Dutch WGBO (Medical Treatment Contracts Act).
This privacy policy applies to all personal data that we collect through our practice, our website podotherapierotterdam.nl, and any other contact between you and our practice. We encourage you to read this policy carefully.
When you visit our practice or use our services, we may collect the following personal data: your name, address, and contact details (phone number, email address); your date of birth and BSN (citizen service number) as required by law; medical data relevant to your treatment, such as complaint history, examination results, and treatment plans; health insurance details, including your insurer and policy number; and any other information you voluntarily provide to us.
When you visit our website, we may collect technical data such as your IP address, browser type, and pages visited. More information about this can be found in our cookie policy.
We use your personal data exclusively for the following purposes: providing podiatric care and treatment; maintaining your medical records as required by law; billing and financial administration, including communication with your health insurer or billing partner (Infomedics); complying with legal obligations, such as the WGBO and tax regulations; and communicating with you about appointments, treatment progress, or practice-related matters.
We will never use your personal data for commercial purposes or share it with third parties for marketing without your explicit consent.
We process your personal data on the basis of one or more of the following legal grounds as defined in Article 6 of the GDPR: your explicit consent; the performance of a treatment agreement between you and our practice; compliance with a legal obligation (such as the WGBO, tax legislation, or the Healthcare Quality, Complaints and Disputes Act); and the protection of vital interests in urgent medical situations.
For the processing of special categories of personal data, such as medical information, we rely on Article 9(2)(h) of the GDPR, which permits processing for the purposes of preventive or occupational medicine, medical diagnosis, and the provision of health care.
We retain your medical records for a minimum of 20 years after the end of your treatment, as required by the Dutch WGBO (Article 7:454 of the Dutch Civil Code). This retention period ensures continuity of care and meets legal requirements.
Financial and administrative records are retained for 7 years in accordance with Dutch tax legislation. Other personal data, such as contact form submissions, are deleted once they are no longer necessary for the purpose for which they were collected.
Under the GDPR, you have the following rights regarding your personal data: the right of access — you may request a copy of the personal data we hold about you; the right to rectification — you may request correction of inaccurate or incomplete data; the right to erasure — you may request deletion of your data, subject to legal retention obligations; the right to data portability — you may request that your data be transferred to another healthcare provider; and the right to object — you may object to the processing of your data in certain circumstances.
To exercise any of these rights, please contact us using the details provided below. We will respond to your request within 30 days. We may ask you to verify your identity before processing your request. If you believe that we have not handled your data correctly, you have the right to file a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).
We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or theft. These measures include the use of encrypted connections (SSL/TLS) on our website; secure, access-controlled electronic patient record systems; strict access controls so that only authorised staff can view your data; and regular review and updating of our security procedures.
Despite our best efforts, no method of transmission over the internet or method of electronic storage is completely secure. If you have reason to believe that your data has been compromised, please contact us immediately.
If you have any questions about this privacy policy or wish to exercise your rights, please contact us at: Podotherapie Rotterdam, email: info@podotherapierotterdam.nl, website: podotherapierotterdam.nl. You can also reach us by phone during our opening hours.
This privacy policy may be updated from time to time. We recommend checking this page periodically. The most recent version always applies. Last updated: March 2026.