Florastrasse 17

8008 Zürich


044 552 91 91



Data privacy policy

Welcome to the website of our medical practice.
The following privacy policy applies to the use of our website and the services offered on it.
This privacy policy informs you about the collection of personal data during your visit to this website.
By using this website, you consent to the processing of your personal data in accordance with this Privacy Policy.

The collection and processing of your personal data is done in compliance with applicable data protection laws and requirements.
In all other respects, the medical practice disclaims any liability for the use of this website.

In principle, our medical practice offers its services only in Switzerland and is directed only to persons residing in Switzerland.

Collection of general data and information

Each time the website is called up, a series of general data and information is collected.
This general data and information is stored in the log files of the server.
The following data may be collected: (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system accesses our website (so-called referrer), (4) the sub-websites that are accessed via an accessing system on our website, (5) the date and time of access to the website, (6) an Internet protocol address (IP address), (7) the Internet service provider of the accessing system, and (8) other similar data and information that serve to avert danger in the event of attacks on our IT infrastructure.

This data and information is needed to (1) display the content of our website correctly, (2) optimize the content of our website, (3) ensure the long-term functionality of our IT infrastructure and the technology of our website, and (4) provide the necessary information to law enforcement authorities in the event of a cyber attack.

Furthermore, our medical practice can evaluate this data and information on the one hand statistically and on the other hand with the aim of increasing the data protection and data security of its IT infrastructure.
The collected data and information will only be processed for the purposes just mentioned and will be deleted afterwards.

Links of other websites

This website may contain links to websites of other providers.
Our medical practice has no influence on these websites, their content, offers or availability or the data protection declarations and provisions applicable there.
It therefore disclaims any liability.

Cookies and other services

Our medical practice may use cookies on its website.
Cookies contain a so-called cookie ID, a unique identifier of the cookie, which assigns web pages and servers to a specific Internet browser.
A specific internet browser can be recognized and identified via this unique cookie ID.

Such information about the use of this website (including your IP address) may, for example, in the case of Google Analytics, be transmitted to servers abroad and stored there.
By using our website, you consent to the transfer of this data.

Our medical practice may use further service offers from third-party providers in order to integrate their content and services, such as videos or articles, into the website.
A corresponding integration always requires that these third-party providers can collect and process the IP address and other information of visitors to this website.
By using our website, you agree to this.

Social networks

Buttons (“social media plugins”) may be placed on this website that establish contact with the servers of social networks (Facebook, Twitter, Instagram, etc.).
By clicking on one of these buttons, you give your consent for necessary data such as IP address, website visit, etc. to be transmitted to the respective operator of the social network.

Communication options

The website of our medical practice contains certain information that enables a quick electronic contact as well as direct communication, which also includes a general e-mail address.
If you contact us via the communication options offered on our website, your contact details and content will only be used to process and respond to your request.

Please note: It cannot be guaranteed that your data will be transmitted confidentially.
Therefore, no confidential data (medical concerns, etc.) should be transmitted when making this contact.

Terms and legal basis


Personal data is any information relating to an identified or identifiable natural person.
A data subject is a person about whom we process personal data.

Processing includes any handling of personal data, regardless of the means and procedures used, such as querying, matching, adapting, archiving, storing, reading out, disclosing, procuring, recording, collecting, deleting, disclosing, arranging, organizing, storing, modifying, disseminating, linking, destroying and using personal data.

The European Economic Area (EEA) comprises the member states of the European Union (EU) plus the Principality of Liechtenstein, Iceland and Norway. The General Data Protection Regulation (GDPR) refers to the processing of personal data as processing of personal data.

Legal basis

We process personal data in accordance with Swiss data protection law such as, in particular, the Swiss Federal Act on Data Protection (Data Protection Act, DPA) and the Ordinance on Data Protection (Data Protection Ordinance, DPA).

We process – if and to the extent that the General Data Protection Regulation (GDPR) is applicable – personal data in accordance with at least one of the following legal bases:

  • Art. 6 para.
    1 lit.
    b DSGVO
    for the necessary processing of personal data for the fulfillment of a contract with the data subject as well as for the implementation of pre-contractual measures.
  • Art. 6 para.
    1 lit.
    f DSGVO for the necessary processing of personal data to protect the legitimate interests of us or of third parties, unless the fundamental freedoms and rights and interests of the data subject prevail.
    Legitimate interests are, in particular, our interest in being able to carry out our activities and operations permanently, in a user-friendly, secure and reliable manner, as well as to communicate about them, to ensure information security, to protect against misuse, to enforce our own legal claims and to comply with Swiss law.
  • Art. 6 para.
    1 lit.
    c DSGVO for the necessary processing of personal data to comply with a legal obligation to which we are subject under any applicable law of Member States in the European Economic Area (EEA).
  • Art. 6 para.
    1 lit.
    e DSGVO for the necessary processing of personal data for the performance of a task that is in the public interest.
  • Art. 6 para.
    1 lit.
    a DSGVO for the processing of personal data with the consent of the data subject.
  • Art. 6 para.
    1 lit.
    d DSGVO for the necessary processing of personal data to protect vital interests of the data subject or another natural person.


We process personal data about applicants to the extent that it is required for assessing their suitability for an employment relationship or for the subsequent execution of an employment contract.
The required personal data results in particular from the information requested, for example in the context of a job advertisement.
We also process personal data that applicants voluntarily provide or publish, in particular as part of cover letters, resumes and other application documents as well as online profiles.

We process – insofar as and to the extent that the General Data Protection Regulation (GDPR) is applicable – personal data about applicants in particular in accordance with Art. 9 para.
2 lit.

Data security

We take suitable technical and organizational measures to ensure data security appropriate to the respective risk.
However, we cannot guarantee absolute data security.

Access to our website is via transport encryption (SSL / TLS, in particular with the Hypertext Transfer Protocol Secure, abbreviated HTTPS).
Most browsers mark transport encryption with a padlock in the address bar.

Our digital communications – like all digital communications in principle – are subject to mass surveillance without cause or suspicion and other monitoring by security authorities in Switzerland, the rest of Europe, the United States of America (USA) and other countries.
We cannot directly influence the corresponding processing of personal data by secret services, police agencies and other security authorities.

Website use


We may use cookies.
Cookies – our own cookies (first-party cookies) as well as cookies from third parties whose services we use (third-party cookies) – are data that are stored in the browser.
Such stored data need not be limited to traditional cookies in text form.

Cookies can be stored in the browser temporarily as “session cookies” or for a certain period of time as so-called permanent cookies.
“Session cookies” are automatically deleted when the browser is closed.
Permanent cookies have a specific storage period.
In particular, cookies enable us to recognize a browser the next time it visits our website and thus, for example, to measure the reach of our website.
However, permanent cookies can also be used for online marketing, for example.

Cookies can be completely or partially deactivated and deleted in the browser settings at any time.
Without cookies, our website may no longer be fully available.
We actively request – at least if and to the extent necessary – the express consent to the use of cookies.

For cookies used for performance and reach measurement or for advertising, a general objection (“opt-out”) is possible for numerous services via AdChoices (Digital Advertising Alliance of Canada), the Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance) or Your Online Choices (European Interactive Digital Advertising Alliance, EDAA).

Server log files

We may collect the following information for each access to our website, provided that this information is transmitted by your browser to our server infrastructure or can be determined by our web server: Date and time including time zone, Internet Protocol (IP) address, access status (HTTP status code), operating system including user interface and version, browser including language and version, individual sub-page of our website accessed including amount of data transferred, website last accessed in the same browser window (referer or referrer).

We store such information, which may also constitute personal data, in server log files.
The information is necessary to provide our website permanently, user-friendly and reliably, as well as to ensure data security and thus in particular the protection of personal data – also by third parties or with the help of third parties.

Tracking pixel

We may use tracking pixels on our website.
Tracking pixels are also known as web beacons.
Tracking pixels – also from third parties whose services we use – are small, usually invisible images that are automatically retrieved when you visit our website.
With pixel counters, the same information can be collected as in server log files.

Third party services

We use services of specialized third parties to perform our activities and operations in a durable, user-friendly, secure and reliable manner.
With such services, we can, among other things, embed functions and content in our website.
In the case of such embedding, the services used record the Internet Protocol (IP) addresses of the users at least temporarily for technically compelling reasons.

For necessary security-related, statistical and technical purposes, third parties whose services we use may process data in connection with our activities and operations in aggregated, anonymized or pseudonymized form.
This is, for example, performance or usage data in order to be able to offer the respective service.

We use in particular:

Digital infrastructure

We use services from specialized third parties to make use of required digital infrastructure in connection with our activities and operations.
These include, for example, hosting and storage services from selected providers.

We use in particular:

  • Hostpoint:
    Hosting; Provider: Hostpoint AG (Switzerland); Data protection information: Privacy policy.


We use third party services to embed selected fonts as well as icons, logos and symbols into our website.

We use in particular:

Extensions for the website

We use extensions for our website in order to be able to use additional functions.

We use in particular:

Success and reach measurement

We try to determine how our online offering is used.
In this context, we can, for example, measure the success and reach of our activities and operations as well as the effect of third-party links to our website.
But we can also, for example, try out and compare how different parts or versions of our online offering are used (“A/B test” method).
Based on the results of the performance and reach measurement, we can in particular correct errors, strengthen popular content or make improvements to our online offering.

In most cases, the Internet Protocol (IP) addresses of individual users are stored for performance and reach measurement.
In this case, IP addresses are generally shortened (“IP masking”) in order to follow the principle of data economy through the corresponding pseudonymization.

Cookies may be used for performance and reach measurement and user profiles may be created.
Any user profiles created include, for example, the individual pages visited or content viewed on our website, information on the size of the screen or browser window and the – at least approximate – location. In principle, any user profiles are created exclusively in pseudonymous form and are not used to identify individual users.
Individual services of third parties with which users are registered may be able to assign the use of our online service to the user account or user profile of the respective service.

We use in particular:

  • Google Analytics:
    Performance and reach measurement; provider: Google; Google Analytics-specific data: Measurement also across different browsers and devices (cross-device tracking) as well as with pseudonymized Internet Protocol (IP) addresses, which are only transmitted in full to Google in the USA as an exception, “Privacy Policy”, “Browser Add-on to deactivate Google Analytics”.

  • Google Tag Manager:
    Integration and management of other services for performance and reach measurement as well as other services from Google and third parties; provider: Google; Google Tag Manager-specific information: “Data collected with Google Tag Manager”; further information on data protection can be found with the individual integrated and managed services.

Your rights

Based on the Data Protection Act, you have various rights such as the right to information.
To assert your rights, please contact the medical practice.
We will be happy to provide you with further information in this regard.


Our medical practice may adapt this privacy policy at any time without prior notice.
The current version published on our website applies.

Zurich, 30.8.2023
Ophthalmology practice
Simone Hohermuth, MD
Jenny Rüegg-Giersch, M.D.
Florastrasse 17
CH-8008 Zurich
044 552 9191

Patient information on the handling of personal data

In the following, we inform you about the purpose for which the above-mentioned medical practice (hereinafter referred to as medical practice) collects, stores or forwards your personal data.
In addition, we inform you about your rights, which you can exercise within the framework of data protection.

Responsibilities The responsible body for processing your personal data and in particular your health data is the medical practice.
If you have any questions about data protection or if you wish to exercise your rights under data protection, please contact the practice staff or your doctor directly.

Collection and purpose of data processing The processing (collection, storage, use and retention) of your data is based on the treatment contract and legal requirements for the fulfillment of the treatment purpose and the associated obligations.
The collection of data takes place on the one hand through the treating physician in the context of your treatment.
On the other hand, we also receive data from other physicians and health care professionals with whom you have been or are currently receiving treatment, if you have given your consent for this.
In your medical history, only data related to your medical treatment will be processed.
The medical history includes the personal information provided on the patient form, such as personal details, contact details and insurance details, as well as, among other things, the educational interview conducted as part of the treatment, collected health data such as medical histories, diagnoses, therapy proposals and findings.

Duration of storage Your medical history will be kept for 20 years after your last treatment.
After that, with your express consent, it will be further stored or securely deleted or destroyed.

Disclosure of data We will only pass on your personal data, and in particular your medical data, to external third parties if this is permitted or required by law, or if you have consented to the data being passed on as part of your treatment.

  • Data is transferred to your health insurance company or to the accident or disability insurance company for the purpose of billing for the services provided to you.
    The type of data transmitted is based on the legal requirements.
  • Disclosure to cantonal and national authorities (e.g. cantonal medical service, health departments, etc.) is based on legal reporting requirements.
  • Optional: The transfer of the necessary patient and billing data to the collection agency takes place for the purpose of collection (collection of due monetary claims).

In individual cases, depending on your treatment and your corresponding consent, data is transferred to other authorized recipients (e.g. laboratories, other physicians).

Revocation of your consent If you have given your express consent for data processing, you may revoke any consent already given, in whole or in part, at any time. The revocation or the request to change consent must be made in writing. As soon as we have received your written revocation and the processing cannot be based on any other legal basis than the consent, the processing will be stopped. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Information, inspection and release You have the right to obtain information about your personal data at any time.
You can view your medical history or request a copy.
There may be a charge for providing a copy.
You will be informed in advance of any costs, which depend on the time and effort required to make the copy.

Right to data transmission You have the right to have data that we process automatically or digitally handed over to you or to a third party in a common, machine-readable format.
This also applies in particular to the transfer of medical data to a health professional of your choice.
If you request the direct transfer of the data to another responsible party, this will only be done insofar as it is technically feasible.

Correction of your data If you find or consider that your data is incorrect or incomplete, you have the possibility to request a rectification.
If neither the correctness nor the incompleteness of your data can be ascertained, you have the option of affixing a denial notice.

The above patient information is based on the template of the FMH dated 8/2023

Ophthalmology Practice – Simone E. Hohermuth- Dr. med. Jenny Rüegg-Giersch- Florastrasse 17- 8008 Zürich – Status 08/2023