Privacy Policy

The controller of personal data is:

• „Ella Šatalova Family Doctor and Pediatric Practice” Ltd
• Registration No. 40103958266
• Medical institution code: 019577405
• Registered address: Mārupes iela 41-1, Riga, LV-1002
• Practice address: Mārupes iela 4-24, Riga, LV-1002
• Phone: +371 67 626 602
• E-mail: info@esatalova.lv

For any questions about the processing of personal data or to exercise your rights, please contact us using the e-mail or phone above.

We process your personal data for the following purposes and on the following legal grounds:

• Provision of healthcare services — diagnosis, treatment, prevention and patient care (GDPR Art. 6(1)(b) and (c) and Art. 9(2)(h); the Medical Treatment Law and the Patients' Rights Law).
• Compliance with legal obligations — keeping and storing medical records, accounting and reporting to state authorities (GDPR Art. 6(1)(c)).
• Communication with you — responding to requests received by phone, e-mail, the contact form or chat (GDPR Art. 6(1)(b) and (f)).
• Website operation and security — maintaining the website, visit statistics and security (GDPR Art. 6(1)(f) — our legitimate interests).

Depending on how you interact with us, we process:

• Identification data — first name, surname, personal identity number, date of birth.
• Contact details — phone number, e-mail address, postal address.
• Special-category (health) data — information about your health, diagnoses, examination and treatment data processed for healthcare purposes. We apply enhanced protection to such data.
• Technical data — IP address, device and browser information, website usage data (see the cookies section).

When you visit esatalova.lv, the following data may also be processed:

• Contact form — when you send a message you provide your name, e-mail, phone (optional), subject and message text. The message is stored and sent to info@esatalova.lv so that we can reply.
• Chat window — when you start a conversation you provide your name and, optionally, an e-mail or phone; the conversation content is stored so that we can respond.
• Visit statistics — pages visited, referrer, approximate device information, language and IP address. We use this data in aggregated form to improve the website.
• Session analysis — to improve the website, page usage (such as clicks and scrolling) may be recorded. This data is not used to identify you personally.

In acute medical situations please call rather than use the website forms — they are not monitored around the clock.

Cookies are small files that a website stores on your device. We use:

• Necessary cookies — ensure the operation and security of the website (for example, form-protection and language-selection cookies). These are always used.
• Statistics cookies — such as the visitor identifier (_rm_vid), stored for up to 1 year, which helps us understand how the website is used. These are used only with your consent.

On your first visit we ask for your choice in the cookie banner. Statistics cookies are not loaded until you have accepted them. You can change your choice at any time by clicking „Cookies” in the page footer. The website does not use third-party advertising or social-network tracking tools, and you can also delete or block cookies in your browser settings.

We share personal data only to the extent necessary to achieve the purposes or as required by law:

• State authorities — the National Health Service and the e-health system (eveseliba.gov.lv) in the cases provided for by law.
• Processors — our IT and website maintenance provider „Sitelab” Ltd (sitelab.lv) and the cloud provider Microsoft Azure, which provide data storage and e-mail delivery.
• Accounting and other service providers — to fulfil obligations laid down by law.

Processors process data only on our instructions and under a data processing agreement.

Personal data is stored and processed within the European Union/European Economic Area, including in Microsoft Azure data centres located in the EU. We do not envisage transferring your personal data to third countries outside the EU/EEA. Should such a transfer become necessary, it would take place only in accordance with the GDPR, ensuring an adequate level of protection.

We keep personal data no longer than necessary for the relevant purpose or as required by law:

• Medical records — kept for the periods laid down by law (the Medical Treatment Law and the Cabinet of Ministers regulations on the management of medical documents).
• Contact form and chat messages — kept for as long as necessary to handle your request, then deleted unless another legal basis for storage applies.
• Visit statistics — kept in aggregated form for website analysis.

Once the basis for storage no longer exists, we delete or irreversibly anonymise the data.

Under the GDPR you have the right to:

• access your personal data and obtain a copy of it;
• request the rectification of inaccurate data;
• request erasure of data, in so far as not restricted by law;
• request restriction of processing or object to processing;
• data portability, where processing is based on consent or a contract;
• withdraw previously given consent, without affecting the lawfulness of processing carried out beforehand.

To exercise your rights, contact us by e-mail at info@esatalova.lv or in writing at our address. We respond within one month. We may request additional information to verify your identity.

As a family doctor and pediatric practice, we also process the data of minor patients. We process children's personal data when providing healthcare, and it is provided or confirmed by the child's parents or legal guardians in accordance with the Patients' Rights Law. We apply enhanced protection to children's health data.

If you believe that the processing of your personal data infringes the law, please contact us first. You also have the right to lodge a complaint with the supervisory authority:

• Data State Inspectorate (Datu valsts inspekcija)
• Elijas iela 17, Riga, LV-1050
• E-mail: pasts@dvi.gov.lv
• Phone: +371 67 223 131
• Website: www.dvi.gov.lv

We may update this privacy policy from time to time, for example when laws or our services change. The current version is always available on this website, showing the date of the latest update. In the event of significant changes we will notify you on the website. If you have any questions, write to info@esatalova.lv.