Privacy Policy
Information on the processing of personal data when visiting this website.
1. Controller
The controller for data processing on this website is:
Sanima Klinik am Mayenberg GmbH
Alte Dobler Str. 8
76332 Bad Herrenalb
Telephone: +49 7083 748-0
E-Mail: info@sanima-klinik.de
2. Data Protection Officer
Katja Liebchen
Alte Dobler Str. 8
76332 Bad Herrenalb
Telephone: +49 7083 748-100
E-Mail: datenschutz@sanima-klinik.de
3. General Information on Data Processing
We process personal data only to the extent necessary. The legal bases are in particular Art. 6 (1) GDPR and — where special categories such as health data are concerned — Art. 9 (2) GDPR.
4. No Third-Party Services on this Website
This website does not load any content from third-party providers at runtime. Fonts are served locally from our server; no external font, analytics, mapping or tracking services are integrated, nor any social media plugins or third-party consent/cookie banner services. When you simply visit the website, no data is therefore transmitted to third parties.
5. Hosting and Server Log Files
When the website is accessed, technically necessary data is recorded in server log files (IP address, date and time of the request, file accessed, volume of data transferred, browser type). The legal basis is Art. 6 (1) lit. f GDPR (secure and stable operation of the website). Log files are generally deleted after seven days.
Hosting is provided by Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, on servers located in Germany. A data processing agreement (DPA) pursuant to Art. 28 GDPR has been concluded with Hetzner.
The provision and technical operation of this website and the content management system used (Voice gCMS) are carried out by Reflagged GmbH (rfl.gd) as a data processor. A data processing agreement pursuant to Art. 28 GDPR has also been concluded for this purpose.
6. Cookies
This website only uses technically necessary cookies, for example for session management in protected areas. No cookies are used for analytics or marketing purposes; a consent banner is therefore not required. The legal basis is Art. 6 (1) lit. f GDPR and Section 25 (2) TDDDG.
7. Contact and Call-Back Service
When you contact us by telephone, e-mail or via the call-back form, we process your details in order to handle your enquiry. Via the form, we collect name, telephone number, e-mail address, a preferred call-back time and an optional message. These data are used exclusively to respond to your enquiry and are transmitted by e-mail to our admissions office. The legal basis is Art. 6 (1) lit. b and lit. f GDPR as well as your consent pursuant to Art. 6 (1) lit. a GDPR. The data are deleted once they are no longer required for the purpose for which they were collected, in compliance with statutory retention periods.
8. Link to Google Maps
We do not embed a Google Maps map on this website. The contact page contains only a link labelled “Open route in Google Maps”. Only when you actively click this link will you be redirected to Google Maps; from that point, Google's privacy policy applies. When you access our pages themselves, no data is transmitted to Google.
9. SSL/TLS Encryption
This website uses SSL/TLS encryption for security reasons. You can recognise an encrypted connection by the “https://” in your browser's address bar.
10. Patient and Health Data
The processing of patient and health data in the context of treatment is not the subject of this website privacy policy. We will inform you separately about this in the context of the treatment relationship.
11. Your Rights
Within the scope of the legal provisions, you have the right to free information about the origin, recipients and purpose of your stored personal data (Art. 15 GDPR), to rectification (Art. 16), erasure (Art. 17), restriction of processing (Art. 18), data portability (Art. 20) and to withdraw any consent given with effect for the future (Art. 7 (3) GDPR).
12. Right to Object
Where data is processed on the basis of Art. 6 (1) lit. f GDPR, you have the right to object at any time to the processing on grounds relating to your particular situation (Art. 21 GDPR).
13. Right to Lodge a Complaint with a Supervisory Authority
You have the right to lodge a complaint with a data protection supervisory authority. The responsible authority is the Landesbeauftragter für den Datenschutz und die Informationsfreiheit Baden-Württemberg, Lautenschlagerstraße 20, 70173 Stuttgart.
As of: May 2026