Conditions of Use

Klinik Buchinger Wilhelmi GmbH takes data protection very seriously. Personal data is only collected, processed and used on the pages of this Internet offer insofar as it is technically necessary and required for the implementation of individual services and offers.

1.    General information

Klinik Buchinger Wilhelmi GmbH takes data protection very seriously. Personal data is only collected, processed and used on the pages of this Internet offer insofar as it is technically necessary and required for the implementation of individual services and offers. Should the use of individual offers and services, which you find within this Internet offer, require personal data to be entered (e.g. the processing of inquiries via the contact forms), we collect and use such data only for the purpose for which you have provided us with the data. 

2.    Who is responsible for data processing and who can i contact?

The responsible body is:
Klinik Buchinger Wilhelmi GmbH
Wilhelm-Beck-Str. 27
D-88662 Überlingen, Germany

Telephone: +49 7551 807-0
Fax: +49 7551 807-889


You can reach our Data Protection Officer at:
Klinik Buchinger Wilhelmi GmbH
Wilhelm-Beck-Str. 27
D-88662 Überlingen, Germany


3.    Security

We take all the requisite technical and organisational security measures to protect your personal data from loss and misuse. These security measures are adapted accordingly to the current state of the art in each case.
Your personal data, which is transferred in the course of using our website, is transferred securely on our end by means of encryption. In this regard, we use the encryption protocol Transport Layer Security (TLS), which is more common known under its predecessor’s name of Secure Sockets Layer (SSL). Our employees are bound by data secrecy.

4.    Storage/retention

Personal data will be deleted, with immediate effect, as soon as knowledge of such data is no longer necessary for fulfilment of the purpose for which the data was stored and there is no legal or statutory obligation to retain such data.

5.    Server log data and cookies

When you visit our Internet pages, our web servers temporarily store the connection data of the requesting computer, the Internet pages you visit on our site, the date and duration of the visit, the identification data of the browser and operating system type used and the website from which you visit us (referred to as server log data). This is done as standard for the purpose of system security. No other personal data, such as your name, address, telephone number or email address, is recorded. Furthermore, the server log data is not linked to personal data.
Cookies are small files which are stored on your data carrier. They store certain settings and data for the exchange with our system via your browser. They are used to make the Internet offer more user-friendly and effective as a whole.

You can delete the cookies in the security settings of your browser at any time and configure your browser settings according to your preferences. Generally speaking, the help function in the menu bar of your web browser shows you how you can reject new cookies and delete the cookies you have already received. However, we would like to make you aware that you may not be able to use all the functions of our website if you reject cookies.

The cookies we use are session cookies and are automatically deleted from your hard drive at the end of your browser session. In addition to session cookies, we also use permanent cookies that remain on your hard drive. When you visit our website again, the website automatically recognises that you have visited our website before as well as the entries and settings you use. These cookies are stored on your hard drive and delete themselves automatically after a specified period of time. 

The cookies we use cannot be attributed to a specific person. When the cookie is activated, it is assigned an identification number. It is not possible to assign your identity to this identification number at any time and such an assignment will not be made. We do not store your name or any other data of a similar nature if this would make it possible for the cookie to be assigned to you. 

6.    Newsletter

We use what is referred to as the double opt-in procedure to send the newsletter, i.e. we will not send you a newsletter by email until we have received your prior express consent that we should activate the newsletter service. We will then send you a notification email asking you to confirm that you wish to receive our newsletter by clicking on a link contained within email. Upon completion of this separate double opt-in procedure, you have given your consent to receiving the newsletter.

We only send newsletters following proper registration, i.e. with your consent on the basis of Art. 6 sec. 1 clause 1 part a GDPR. Insofar as the content of a newsletter is specifically described in the course of registration, such content is decisive for the scope of the consent. Moreover, our newsletters contain information about our products, offers, promotions and our company.

If you later decide you no longer wish to receive newsletters from us, you can revoke your consent at any time. Sending a message in text form (e.g. email, letter) to the contact addresses stated above or to marketing(at) is sufficient in this regard. You will of course also find an unsubscribe link in every newsletter.

The newsletter is sent via "MailChimp", a newsletter distribution platform of the US provider Rocket Science Group LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. In this context, data processing is carried out on our behalf on the basis of a data processing agreement (order processing contract) which we have concluded with MailChimp. Under the terms of this agreement, MailChimp undertakes to protect the data of our users, to process such data only on our behalf and, in particular, MailChimp undertakes not to forward such data to third parties.
The email addresses of our newsletter recipients, as well as other further data of the recipients described in these notes, are stored on the servers of MailChimp in the USA. MailChimp uses this information to send and evaluate the newsletter on our behalf. Furthermore, MailChimp can use this data in accordance with their own statement to optimise or improve their own services, e.g. to technically optimise how the newsletter is sent and presented or for economic purposes, in order to determine from which countries the recipients come. However, MailChimp does not use the data of our newsletter recipients in order to write to them directly or to forward their data to third parties.

We trust in MailChimp’s reliability, IT security and data security. MailChimp is certified under the EU-US Privacy Shield Agreement and therefore undertakes to comply with EU data protection regulations.

The data protection provisions of MailChimp can be viewed here: MailChimp also uses the Google Analytics analysis tool and integrates this tool in the newsletter where necessary. Information about Google Analytics can be found below in the relevant section.

We would like to make you aware that after the newsletter has been sent, we will evaluate your user behaviour in relation to our newsletter. With regard to this evaluation, the emails that are sent contain what are referred to as either web beacons or tracking/counting pixels. These are single-pixel image files that link to our website and therefore make it possible for us to evaluate your user behaviour in relation to our newsletter. This is done by collecting technical information, e.g. about your browser, your system, your IP address and the time of retrieval. In addition, there are web beacons, which are assigned to your email address and linked to your own ID.

Web beacon tracking is not possible if, as the standard setting, you have disabled the display of images in your email programme. In such cases, the newsletter will not be displayed in full and you may not be able to use all functions. If you display the images manually, the aforementioned tracking takes place.

7.    Matomo - (formerly Piwik)

We use Matomo, an open source software for statistical evaluation of user access to our website. In this regard, data processing is carried out on the basis of our legitimate interests within the meaning of Art. 6 sec. 1 part f GDPR, namely our interest in the analysis, optimisation and economic operation of our website.

The IP address of the users is shortened by Matomo before it is stored. Matomo uses cookies, which are stored on your terminal and which make it possible for your use of our website to be analysed. In this regard, pseudonymous user profiles can be created from the processed data. The information generated by the cookie regarding your use of our website is stored on a server of our service provider and is not forwarded to third parties.

Further information about data protection at Matomo can be found under the following link:

8.    Facebook

Our website uses functions of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA. When you access our pages with Facebook plug-ins, a connection is established between your browser and Facebook's servers. In this context, data is already being transferred to Facebook. If you have a Facebook account, this data can be linked to it. If you do not wish this data to be associated with your Facebook account, please log out of Facebook before you visit our site. Interactions, particularly the use of a comment function or clicking a "Like" or "Share" button, are also shared with Facebook.

You can find out more at

9.    Instagram

Our pages contain functions of the Instagram service. These functions are provided by Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA. If you are logged into your Instagram account, you can link the contents of our pages to your Instagram profile by clicking the Instagram button. This allows Instagram to assign your visit to our pages to your user account. We would like to point out that, as the provider of these pages, we are not aware of the content of the data that is transferred nor are we aware of how Instagram uses such data.
Further information in this regard can be found in Instagram's data protection declaration:

10.    Your rights as a data subject

a)    You have the following rights in relation to the personal data concerning you under the respective statutory requirements as per Chapter III of the GDPR:
(1)    Right of information about the personal data processed (Article 15 GDPR),
(2)    Right to correct inaccurate data (Article 16 GDPR),
(3)    Right to deletion, particularly with regard to data processed illegally (Article 17 GDPR),
(4)    Right to restriction of processing, particularly the "blocking" of data for which processing is controversial (Article 18 GDPR),
(5)    Right to transferability of the data you provide (Article 20 GDPR) and the
(6)    Right of objection to processing in the case of direct mail or on the basis of your particular situation (Article 21 GDPR).
b)    You can assert all your rights against us as a data subject or contact our data protection officer.
c)    You also have a right of appeal to the competent supervisory authority regarding any data protection violations.

11.     Changes

From time to time, it may be necessary to adapt the contents of this data protection declaration. We therefore reserve the right to change this data protection declaration at any time. Insofar as your consent is required for a change, we will seek it from you. We will also publish the amended version of the data protection declaration here. If you visit our website again, you should therefore read the data protection declaration again.

Version: May 2018