Effective Date: July 2, 2025
Contact Email: support@medtouristgr.com
Data Controller: MedTourist GR is the Data Controller for the personal data you provide.
Categories of Data & Purposes: Identification (Contract Art. 6(1)(b)), Contact (Contract Art. 6(1)(b)), Health Data (Explicit Consent Art. 9(2)(a)), Technical (Legitimate Interest Art. 6(1)(f)), Marketing Preferences (Consent Art. 6(1)(a)).
User Rights: You may access, rectify, erase, restrict, object, or port your data. Withdraw consent at any time by contacting support@medtouristgr.com. Users also have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA).
Data Retention: We retain data for the shorter of (a) 7 years after last interaction or (b) as required by Greek medical record regulations.
International Transfers: All data is stored on EU servers. If data is transferred outside the EEA, we rely on EU Standard Contractual Clauses.
Security Measures: Encryption in transit and at rest; role-based access; annual penetration testing.
Cookies: We use functional and analytics cookies. See separate Cookie Notice for details.
Governing Law: This Privacy Policy is governed by the laws of the State of Georgia, United States.
Contact: Questions about privacy? Email support@medtouristgr.com.
By accessing or using the services of MedTourist GR, you acknowledge that you have read, understood, and agree to be bound by this document as well as our Terms of Service, Privacy Policy, Medical Disclaimer, and Liability Waiver. If you do not agree, you must not use our services.
