Privacy Policy — Heart Center Bonn

Section 01

Data Controller

Institution

Heart Center Bonn, University Hospital Bonn
An institution under public law

Address

Venusberg Campus 1, 53127 Bonn, Germany

Responsible Representative

PD Dr. med. Miriam Silaschi
miriam.silaschi@ukbonn.de

Data Protection Officer

Achim Flender
datenschutz@ukbonn.de

Section 02

Collection, Processing & Use of Personal Data

The app estimates the size of aortic valve prostheses based on CT annulus circumferences, creates case reports, and collects user feedback on usability to further improve the device selector using a data learning module.

Section 03

Categories of Personal Data

Usage data (e.g., app version, function calls, device type, operating system)
Inputs in the app: numerical inputs of CT-related data (e.g., CT annulus circumferences; no identifiable patient data)
IP addresses (as required) and statistical data for app improvement

Section 04

Legal Bases

Processing is based on Art. 6(1)(a) GDPR (consent) and Art. 6(1)(f) GDPR (balancing of legitimate interests), or other applicable bases as relevant.

Section 05

Special Categories of Data

The app is designed to avoid entering identifiable patient data or pseudonymized data. If such data is entered, additional protections under the GDPR apply.

Section 06

Data Sharing

Transfers to third parties occur only where legally permissible or necessary to provide the app's functions (e.g., hosting by service providers).

Service Provider

Andersenlab (App Development)
Contractual agreements include adequate data protection and security measures.

Section 07

Storage Duration

Personal data will be stored as long as necessary to achieve the stated purposes or as required by statutory retention periods. The retention period is 10 years. After the purpose is fulfilled, data will be anonymized or deleted.

Section 08

Your Rights

As a data subject, you have the right to:

Access your personal data
Correction of inaccurate data
Deletion of your data
Restriction of processing
Data portability
Object to processing for direct marketing or based on legitimate interests
Withdraw consent at any time — withdrawal does not affect the lawfulness of processing carried out before withdrawal

To exercise your rights, contact Data Protection Officer Achim Flender or PD Dr. med. Miriam Silaschi (see contact details above).

Section 09

Security Measures

Technical and organizational measures (TOM) to protect stored data comply with the state of the art. These include access controls, encryption in transit (TLS), and regularly tested security processes.

Section 10

Cookies & Tracking

The app may use cookies or similar tracking technologies for functionality, analytics, and improving the user experience. You can disable them in your device's system settings.

Section 11

Data Transmission Security

Data is transmitted using TLS encryption. Data is stored in the AWS Cloud located in Frankfurt, Germany. IP addresses are not stored together with usage data unless required.

Section 12

Changes to This Policy

We reserve the right to update this privacy policy. Changes will be announced in the app or via other suitable channels and take effect upon publication.

Section 13

Complaints

Complaints can be submitted to the competent supervisory authority.

Section 14

Contact

For inquiries about these Terms of Use or this Privacy Policy, please contact the person listed in the impressum.

Email

miriam.silaschi@ukbonn.de

Data Protection

datenschutz@ukbonn.de