Understand how we use your data

Privacy Policy

Privacy Policy: Embody Chiropractie BV

Effective Date: August, 2025

🎯 Our Commitment to Your Privacy

Welcome to Embody Chiropractie. Your privacy is of the utmost importance to us. This policy outlines how we collect, use, and protect your personal data in compliance with the General Data Protection Regulation (GDPR). We are committed to ensuring your information is handled with the greatest care and transparency.

🔍 Who We Are

Company Name: Embody Chiropractie BV
Chamber of Commerce (KvK) Number: 60963689
Contact Information:
- Address: Paradijslaan 30, Alphen aan den Rijn, Netherlands
- Email: hello@embodychiro.nl
- Phone Number:
  
  +31 172 26 3073
- Website: embodychiro.nl

✅ Personal Data We Process

We process your personal data because you use our services and/or because you provide this information to us. Below is an overview of the data we process.

Category	Data We Collect
Patients	General Data: First and last name, gender, date of birth, place of birth, address details, phone number, email address, and any other data you actively provide in correspondence or by creating a profile.<br><br>Special Category Data: Health information, Citizen Service Number (BSN), and health insurance number.
Website Visitors	Technical Data: IP addresses and data collected via cookies. See the “Cookies and Similar Technologies” section for more details.

A Note on Minors (Under 16): Our services are not intended for individuals under 16 without parental or guardian consent. While we cannot always verify a user’s age, we urge parents to be involved in their children’s online activities. If you believe we have collected a minor’s data without consent, please contact us at hello@embodychiro.nl, and we will promptly delete the information.

📊 Purpose and Legal Basis for Processing

We only process your personal data when we have a legitimate reason and a legal basis to do so.

Data Category	Purpose of Processing	Legal Basis	Is Providing Data Mandatory?
Patient Medical Data (including BSN)	To provide safe, effective chiropractic care and maintain your medical file as required by law.	Compliance with a legal obligation (WGBO and Wvbz).	Yes. Without this data, we cannot legally or safely provide you with medical care.
Patient General Data	For administrative purposes, such as scheduling, invoicing, and informing you of service changes.	Performance of a contract (your treatment agreement).	Yes. We need this to manage your treatment and our services.
Newsletter Subscribers	To send our newsletter and other relevant practice information.	Consent.	No. This is entirely optional, and you can withdraw consent at any time.
Website Visitor Data	To ensure the technical functionality, security, and optimization of our website.	Legitimate Interest.	No. You can manage this data via your browser settings.

Automated Decision-Making: Embody Chiropractie BV does not use automated processing to make decisions that could have significant consequences for you. All decisions are made with human oversight.

⏳ Data Retention Periods

We do not store your personal data longer than necessary. We adhere to the following legally required retention periods:

Data Type	Retention Period	Reason
Medical Dossiers	20 years	Medical Treatment Agreement Act (WGBO)
Financial/Tax Records	7 years	Tax legislation
Website Data (e.g., IPs)	6 months	Security and analysis

🤝 Sharing Data with Third Parties

Embody Chiropractie will never sell your data. We only share your data with third parties (“data processors”) when it is essential for delivering our services or complying with a legal obligation. We have signed data processing agreements with these partners to ensure your data is protected.

Our processors include:

Services for patient record management.
Services for billing and financial administration.
QUIC.cloud: This site uses caching to ensure a fast user experience. Caching may temporarily store a copy of the webpage you view. These files are never accessed by third parties. For more details, see the QUIC.cloud Privacy Policy.

🗂️ Your Privacy Rights

You have the right to access, correct, or delete your personal data. You also have the right to withdraw your consent, object to processing, and request data portability.

How to Exercise Your Rights:

Send a Request: Please email your specific request to hello@embodychiro.nl.
Identity Verification: To protect your privacy, we ask that you include a copy of your ID. Please black out your photo, MRZ (the strip of numbers at the bottom), passport number, and BSN.
Our Response: We will respond to your request as soon as possible, and no later than one month.

Please be aware that some rights are subject to legal limitations. For example, we are legally required to retain medical records for 20 years, even if you request deletion.

🛡️ How We Secure Your Data

Embody Chiropractie takes the protection of your data seriously. We have implemented appropriate technical and organizational measures to prevent misuse, loss, unauthorized access, and unwanted disclosure. If you believe your data is not properly secured or have any indication of misuse, please contact us immediately at hello@embodychiro.nl.

🍪 Cookies and Similar Technologies

We use technical, functional, and analytical cookies that do not infringe on your privacy. A cookie is a small text file stored on your device. These are necessary for the technical operation of the website and to remember your preferences, helping us optimize your experience. You can opt out of cookies by configuring your browser settings to no longer store them.

🗣️ Complaints

If you have a complaint about how we handle your data, you have the right to file a complaint with the national supervisory authority, the Autoriteit Persoonsgegevens (Dutch DPA). You can do so via their website.