Nordstrandklinikken AS is very concerned about information security. Our privacy policy describes how we collect and process personal data.
Personal data is information and data that can be linked to you as an individual. This could be your name, telephone number, email address or your health information.
The use of personal data is regulated by several laws, including the Personal Data Act, the General Data Protection Regulation, the Patient Records Act, the Health Register Act, the Health Personnel Act, the Accounting Act, the Patient and User Rights Act and the Marketing Act.
Nordstrandklinikken AS is the data controller for your personal data. All employees at Nordstrandklinikken have a duty of confidentiality.
Data processor means an external company that processes your personal data on behalf of Nordstrandklinikken AS (for example, a digital journal system). The data processor has signed a data processing agreement with Nordstrandklinikken AS and can only process personal data on behalf of Nordstrandklinikken AS. Nordstrandklinikken AS ensures that all data processors have a duty of confidentiality.
Your first contact with Nordstrandklinikken is usually by phone, email or by submitting a contact form. We store the information you provide to us.
When you submit the contact form to us, your personal data is processed by Nordstrandkliniken's healthcare professionals.
We use a form solution on our website. This is used by anyone who wishes to contact the clinic by means other than telephone, email or attendance.
All information submitted via this form has been entered by the user of their own free will and is intended for us at the clinic. We would never recommend entering health details or other sensitive personal information in such forms (either on this website or others), but in the event that the user does so, we consider that consent has been given for us to carry out the necessary processing of this information. When submitting, the user will have to read through a request to omit such information and check a box that they understand the relevant content.
The submitted data will be forwarded to our email inbox where staff will read it and initiate further necessary contact. After this, the submitted information will either become part of the patient record or be deleted if it is not needed. We do not use it for anything other than what it is intended for at the time of submission.
If you have any questions about privacy or personal data, please send your inquiry to us by e-mail at post@nordstrandklinikken.no.
During a physical consultation, we collect data about your health condition so that we can provide proper health care. When you attend the clinic, you will be asked to complete a health information form in which you answer questions about your health that are relevant to your treatment. After the consultation, the form will be scanned into your medical records and shredded.
Many people who live far away would like to have a video consultation. For video consultations, we use an encrypted and approved solution for use in the healthcare system where you log in with your BankId. This consultation is recorded in the same way as a physical consultation.
Before any surgery, an encrypted contract will be sent out via a secure solution with Bank Id. Upon return to us, this will be scanned into your medical record.
In the event of an operation, an anesthesia record will be created, which will be logged on the day of the operation and scanned into your digital journal. Information about your relatives who pick you up will not be stored, but will be shredded on an ongoing basis as this is not critical information.
The results of any X-ray examinations, blood tests and tissue samples are scanned into your medical records and shredded.
The data processor stores relevant data on Nordstrandklinikken's behalf.
Nordstrandklinikken will, only by agreement with the patient, send referrals for X-rays, blood tests, tissue samples, sick leave, etc. in cases where this is relevant.
Nordstrandklinikken AS does not use any data for marketing or newsletters.
If required by law or if there is a suspicion that a breach of the law has been committed in connection with the use of our services, the information we have stored about you may be disclosed to public authorities.
You have the right to access your own personal data. If you wish to know what personal data about you is stored in our systems, please contact the clinic.
It is important that the information we hold about you is correct and up to date. If you discover an error, we encourage you to contact us so that the information can be corrected. When it comes to information in patient records, the right to have information corrected is limited by rules in the Health Personnel Act.
You can also contact us if you want your data to be deleted. When it comes to information in patient records, the right to have information deleted is very limited due to rules in the Health Personnel Act.
In principle, we will not store personal data for longer than is necessary to fulfill the purpose of the processing and the statutory obligations we have. When it comes to personal data stored in patient records, other rules apply.
Nordstrandklinikken AS has its own Facebook page and Instagram account. For privacy reasons, we do not communicate with patients via these channels. Patients are asked to contact us via email, contact form or telephone.
Nordstrandklinikken AS does not use newsletters and we will not use your contact information for anything other than communicating with you.
Some patients wish to give permission for images to be used for consultation purposes, for example. Those who wish to do so must sign a written declaration stating that this information will only be used for the purposes the patient wishes.
No images will be used without the patient's permission and you can request that we delete this data at any time. We do not publish any images without written consent. Images are stored encrypted on hard disks.
You have the right to data portability. This means that you have the right to receive your personal data in a machine-readable format. As we process health data, we are subject to several pieces of legislation and this will be a somewhat more complicated and complex issue.
Nordstrandklinikken.no, like most other websites, uses cookies. These are small text files that are placed on your computer when you download a website. We use these for various purposes, such as statistics, technical monitoring and underlying technical functionality.
The storage of information collected by cookies and the processing of this information is not permitted unless the user has both been informed of and consented to the processing. The user must be informed of and approve what data is being processed, what the purpose of the processing is and who is processing the data.
This does not entail any security risk for you, but you can refuse consent to the storage of cookies at any time.
Among other things, we use cookies to
A cookie does not contain any personal information and cannot be used to identify individual users.
Examples of data that is stored can be:
We use Google Analytics and the various products it offers for analytics and marketing (Google Ads).
The Google services' cookies register the user's IP address and this provides an insight into the user's online movements. Collected data is processed at an aggregated level, i.e. all data is combined into a group and not processed individually.
The information collected by Google is stored on Google servers in the United States. Information received is subject to Google's privacy policy.