Privacy & Policy

How we collect, process, and protect your personal and medical data

The protection of your personal data is of particular importance to us. We process your data exclusively on the basis of applicable legal regulations (GDPR, Austrian Data Protection Act).

Data Controller

Dr. Hamidreza Eskandari Golden Aesthetic Vienna Hameaustraße 39/3A 1190 Vienna, Austria

Email : team.eskandari@gmail.com
Telephone : +43 664 99111452

Data Collection on Our Website

When you visit our website, the following data is automatically collected and stored by our web server:

IP address of the requesting device
Date and time of access
Browser type and version
Operating system used
Pages visited on our website
Previously visited website (referrer URL)

Purpose : Technical security, website performance optimization, and service improvement.

Legal basis : Art. 6 (1) lit. f GDPR (legitimate interest in ensuring website functionality and security).

Contact & Appointments

When you contact us via email, contact form, or telephone, or when you book an appointment, we collect and process the following data:

Name
Email address
Telephone number
Message content
Medical information (if provided)

Purpose : Processing your inquiry, appointment booking, and providing medical consultation or treatment.

Legal basis : Art. 6 (1) lit. a GDPR (consent) and Art. 6 (1) lit. b GDPR (contract performance).

Processing of Medical Data

Medical data is considered sensitive personal data under Art. 9 GDPR. We only process medical data with your explicit consent or when necessary for the provision of medical treatment.

All medical data is handled with the highest level of confidentiality and in accordance with medical professional secrecy regulations.

Legal basis : Art. 9 (2) lit. a and h GDPR (explicit consent and healthcare purposes).

Cookies

Our website may use cookies to improve user experience. Cookies are small text files stored on your device. You can configure your browser to refuse cookies or to alert you when cookies are being sent.

Most browsers accept cookies automatically, but you can disable this function in your browser settings at any time.

Website Analysis

We may use anonymous website analysis tools to understand how visitors use our website. This helps us improve our service and user experience. The data collected is anonymized and cannot be traced back to individual users.

Your Rights

Under the GDPR, you have the following rights regarding your personal data:

Right of access: You can request information about the personal data we hold about you.
Right to rectification: You can request correction of inaccurate or incomplete data.
Right to erasure: You can request deletion of your data under certain conditions.
Right to restriction of processing: You can request limitation of data processing.
Right to data portability: You can request to receive your data in a structured format.
Right to withdraw consent: You can withdraw your consent at any time.
Right to object: You can object to the processing of your personal data.

To exercise these rights, please contact us using the contact details provided above.

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, destruction, or alteration. Our website uses SSL/TLS encryption for secure data transmission.

Complaint Authority

If you believe that the processing of your personal data violates data protection law, you have the right to lodge a complaint with the supervisory authority:

Austrian Data Protection Authority Barichgasse 40-42
 1030 Vienna, Austria 
https://www.dsb.gv.at

Updates to This Privacy Policy

We reserve the right to update this privacy policy to reflect changes in our data processing practices or legal requirements. The current version is always available on our website.

Last updated : March 31, 2026