top of page

Privacy Policy

1. Introduction

 

VEJIN UG (limited liability, in formation) (“VEJIN”, “we”, “us”, “our”) respects your privacy and is committed to protecting your personal data.


This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website www.vejin.de, book an appointment, or use our services.

We process your data in accordance with the EU General Data Protection Regulation (GDPR) and applicable German data protection laws.

2. Data Controller

 

The data controller responsible for processing your personal data is:

VEJIN UG (limited liability, in formation)
Oberbilker Allee 26a
40215 Düsseldorf, Germany
Email: info@vejin.de

3. Data We Collect

 

We may collect and process the following categories of personal data:

  • Contact information: name, phone number, email address, postal address.

  • Booking data: appointment dates, selected services, payment method.

  • Health-related information: only when necessary for medical treatments and provided voluntarily during consultation or booking.

  • Technical data: IP address, browser type, device information, cookies, and website usage statistics (via Wix Analytics).

We collect this data directly from you when you contact us, book an appointment, or use our website.

4. Purpose and Legal Basis for Processing

 

Your personal data is processed for the following purposes:

PurposeLegal Basis (Art. 6 GDPR)

Booking and managing appointmentsPerformance of a contract (Art. 6(1)(b))

Providing medical and cosmetic servicesPerformance of a contract; medical consent

Communication via email or contact formLegitimate interest / contract initiation

Processing payments via Wix or PayPalPerformance of a contract

Legal record-keeping (tax, invoices)Legal obligation (Art. 6(1)(c))

Website analytics and optimizationLegitimate interest (Art. 6(1)(f))

Health-related data (special category under Art. 9 GDPR) is only processed based on your explicit consent and only to the extent necessary for medical treatment.

5. Data Sharing and Third Parties

 

Your data is only shared when necessary for the performance of our services or due to legal obligations. We share data with:

  • Wix.com Ltd. (website hosting, booking system)

  • PayPal (Europe) S.à r.l. et Cie, S.C.A. (payment processing)

  • Healthcare professionals within VEJIN (for treatment purposes)

  • Authorities or accountants, where legally required

All service providers are bound by GDPR-compliant data processing agreements.

6. Cookies and Tracking

 

Our website uses cookies and similar technologies to ensure proper functionality and to analyze website traffic.
You can control or disable cookies through your browser settings.
Further details are provided in our Cookie Policy available on the website.

7. Data Retention

 

We retain your personal data only as long as necessary for the purposes stated above or as required by law.
Medical and invoicing records are retained in accordance with German legal retention periods (typically 10 years for medical data and 6–10 years for business records).

8. Your Rights (under GDPR)

 

You have the following rights regarding your personal data:

  • Right of access – to know what data we process about you.

  • Right to rectification – to correct inaccurate data.

  • Right to erasure (“right to be forgotten”) – to request deletion of your data.

  • Right to restriction of processing – to limit how your data is used.

  • Right to data portability – to obtain a copy in a structured format.

  • Right to object – to object to processing based on legitimate interests.

  • Right to withdraw consent – at any time for data processed based on consent.

To exercise these rights, contact us at: info@vejin.de

You also have the right to lodge a complaint with the supervisory authority:
Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (LDI NRW), Kavalleriestraße 2–4, 40213 Düsseldorf, Germany.

9. Data Security

 

We implement technical and organizational measures to protect your personal data from unauthorized access, loss, or misuse.
All online data transfers are encrypted using SSL/TLS technology.

10. International Data Transfers

 

As our website is hosted on Wix.com Ltd. (Israel), data may be transferred outside the EU.
Wix ensures GDPR compliance through approved safeguards under Art. 46 GDPR (adequacy decision for Israel).

11. Updates to This Policy

 

We may update this Privacy Policy from time to time to reflect legal, technical, or business developments.
The latest version is always available on our website under “Privacy Policy.”

Last updated: October 2025

bottom of page