Privacy Policy

Request Appointment >
+357.25.74.0001

1. Introduction

Medi H.A.I. Clinics in Cyprus (hereinafter referred to as the “Company”, “we”, “our”, or “us”) is committed to protecting and respecting your privacy.

 

This Privacy Policy explains how we collect, use, process, and protect your personal data when you visit our website or use our services, in accordance with:

  • The General Data Protection Regulation (EU) 2016/679 (GDPR)
  • The Data Protection Law of the Republic of Cyprus
  • Applicable international data protection standards

 

By using our Website, you acknowledge that you have read and understood this Privacy Policy.

2. Data Controller

The data controller responsible for your personal data is:

 

Medi H.A.I. Clinics in Cyprus

Address: Agias Filakseos 155, Limassol, Cyprus, 3077
Email: info@medihai.eu
Phone: +357.25.74.0001

3. Types of Personal Data We Collect

We may collect and process the following categories of personal data:

 

a) Identification Data

  • Full name
  • Date of birth
  • Gender

b) Contact Information

  • Email address
  • Phone number
  • Address

c) Medical & Health Data (Special Category Data under GDPR)

  • Medical history
  • Photos (e.g., scalp or treatment areas)
  • Treatment preferences
  • Health-related questionnaire responses

d) Technical Data

  • IP address
  • Browser type
  • Device information
  • Operating system

e) Usage Data

  • Pages visited
  • Time spent on the Website
  • Interaction behavior

4. How We Collect Data

We collect personal data through:

  • Website contact forms
  • Appointment requests
  • Online consultations
  • Email or phone communication
  • Cookies and tracking technologies

5. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent (Article 6(1)(a) GDPR)
  • Performance of a contract (Article 6(1)(b))
  • Legal obligations (Article 6(1)(c))
  • Legitimate interests (Article 6(1)(f))

 

For health-related data, we rely on:

  • Explicit consent (Article 9(2)(a))
  • Provision of healthcare services (Article 9(2)(h))

6. Purpose of Processing

We use your personal data for:

  • Responding to inquiries and appointment requests
  • Providing medical consultations and services
  • Evaluating suitability for treatments
  • Improving our Website and services
  • Compliance with legal and regulatory obligations
  • Communication and follow-ups

7. Data Sharing

We may share your personal data with:

  • Medical professionals and staff within our clinic
  • IT and hosting providers
  • Legal or regulatory authorities (when required by law)
  • Third-party service providers (e.g., CRM, analytics tools)

 

All third parties are bound by confidentiality and data protection obligations.

 

We do not sell your personal data.

8. International Data Transfers

If your data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards, including:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions by the European Commission

9. Data Retention

We retain your personal data only as long as necessary:

  • Medical data: as required by healthcare regulations
  • Contact data: until request completion or withdrawal of consent
  • Technical data: for analytics and security purposes

10. Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data (“right to be forgotten”)
  • Restrict processing
  • Data portability
  • Object to processing
  • Withdraw consent at any time

 

To exercise your rights, contact us at: info@medihai.eu

 

You also have the right to lodge a complaint with the Cyprus Data Protection Authority.

11. Data Security

We implement appropriate technical and organizational measures, including:

  • Encryption
  • Secure servers
  • Access control systems
  • Confidentiality protocols

 

However, no system can guarantee absolute security.

12. Cookies & Tracking Technologies

We use cookies and similar technologies to:

  • Improve user experience
  • Analyze Website traffic
  • Enable functionality

 

For more details, please refer to our Cookies Policy.

13. Third-Party Services

Our Website may use third-party tools such as:

  • Analytics providers
  • Hosting services
  • Communication tools

 

These providers process data in accordance with their own privacy policies.

14. Medical Confidentiality

All health-related data is treated with strict confidentiality and handled in accordance with:

  • Medical ethics standards
  • GDPR special category data requirements

15. Children’s Privacy

Our services are not intended for individuals under the age of 18.
We do not knowingly collect data from minors.

16. Changes to This Policy

We may update this Privacy Policy at any time. Changes will be posted on this page with an updated revision date.

17. Contact Information

For any questions regarding this Privacy Policy:

 

Medi H.A.I. Clinics in Cyprus

Email: info@medihai.eu
Address: Agias Filakseos 155, Limassol, Cyprus, 3077