Privacy and Data Protection

We take data protection concerns very seriously and want to ensure that your and the patients privacy when using our services are protected at all times. In the following data protection privacy policy, we wish to explain transparently how data is used and processed.

A) Responsible Person

Herr Dr. Seiler
Echterdinger Str. 57
(Gebäude 9)
70794 Filderstadt
Tel.: +49 711 489 660 60
Fax: +49 711 489 660 66

Data Protection Commissioner: Dr. Michael Peetz, Tel.: +49 711 489 660 60, E-Mail:

B) Collection, processing and use of general data and information

To visit our website, it is not necessary that you provide information about yourself. Our website is for informational purposes only.

By calling up Internet pages, your browser automatically transmits a series of general information and technical data. This also happens when you visit our website. The data are transmitted from your browser to our server and stored there in so-called log files. These include the type of browser used, the operating system, the website from which it was accessed (referrer), the date and time of access, the status code, the pages accessed, the amount of data transmitted by the server, and the IP address.

From the technical information we cannot draw conclusions about your person. The data and information are only required for technical reasons and are used to correctly deliver the contents of our website, to statistical evaluations regarding the security and stability of our systems, to ensure the long-term functioning and optimization of our systems and to detect cyberattacks, and to law enforcement agencies in the case of cyberattacks, to provide the information required for law enforcement.

The lawfulness of the processing of the automatically transmitted data is based on the first sentence of Article 6 Abs. 1 lit. f of the GDPR. Our legitimate interest results from the above mentioned processing purposes. Processing of the data for purposes other than those listed does not take place.

C) Collection, processing and use of personal data in myReOss®

As part of your registration with myReOss®, we collect and process the following personal data of the medical registrant:

D) Collection, processing and use of patient data in myReOss®

As part of the ordering process on myReOss®, we collect and process by order of the treating physician the following patient data:

Patient data is handled very carefully and fully compliant with the relevant legal regulations. We are granted to handle the patient's data upon consent (Art. 6 Abs. 1 lit. a GDPR), to fulfill a contract (Art. 6 Abs. 1 lit. b GDPR) or to protect his vital interests (Art. 6 Abs. 1 lit. d GDPR).

E) Cookies

Cookies are small text files that are automatically exchanged between your browser and our server and stored on your computer. The start of programs or the execution of malicious content is not possible with cookies. Rather, cookies are used to facilitate navigation on our website and to provide certain functions.

By default, your browser is set to accept cookies. If you do not want this, you must disable the use of cookies in your browser. Since this depends on the browser used, we recommend that you use the help function of the browser you are using.

In principle, you can also view our website without activated cookies. However, it may come to restrictions of functions.

F) Deletion or blocking of the data

The data listed under B) to E) and stored log files will only be stored for as long as necessary to fulfill the purposes listed. The deletion or blocking of the data takes place according to the legal regulations. If the data is needed for evidence in the event of a cyberattack, it will be exempted from deletion until the completion of the legal process.

G) Security measures used

Numerous technical and organizational measures (TOM) have been implemented to protect your data. Despite all the security measures taken, however, data transmitted in particular via the Internet can fall into the wrong hands due to weaknesses in the browser used. For this reason, we cannot guarantee absolute security of the data.

H) Cooperation with contract processors

As part of server hosting, we work together with a German-based order processor (hosting service provider). This collaboration will provide server infrastructure and storage capacity as well as security and maintenance services. We have entered into a contract with the processor (Article 28 of the GDPR) (order processing contract).

I) Links

On our website are links to websites of other providers. By clicking on these links you leave our website. We have no influence on whether the other providers collect data from you and how comprehensively you use them. In addition, we have no control over whether these providers comply with the privacy policy. For this reason, we can not assume any responsibility for any processing of your data by these providers and also give no guarantee for the security of any data collected and processed by these providers.

J) Use of Google Webfonts

Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA web fonts are script and font libraries that we use to make the content of our website browser-independent and visually appealing. In order to avoid having to reload Google Webfonts each time you switch to or between subpages of our website, they are loaded into the cache of the browser you are using. If your browser does not support Google Webfonts, our website will be displayed in a standard font.

If script and font libraries are called, a connection to the operator of the respective library is established automatically. Theoretically, it is possible for the library operator to collect data. The privacy policy of Google as the operator of our script and font libraries can be found here:

Actually the user's rights are regulated by the official Standard Contractual Clauses (SCC):

K) Your Rights

According to the provisions of the GDPR and properly legitimated, you have the following rights with regard to your data listed under B) to E) and stored in the log files:

If you want to use one of these rights, please contact the above mentioned responsible.

L) HIPAA Compliance

If our medical products are ordered by myReOss®, produced for and delivered to a U.S.-resident patient the "Standards for Privacy of Individually Identifiable Health Information of the U.S. Department of Health and Human Services" ("HSS") – implemented in the "Health Insurance Portability and Accountability Act of 1996" ("HIPAA") – are applicable.

A major goal of the HIPAA-Privacy Rule is to assure that individuals’ health information is properly protected while allowing the flow of health information needed to provide and promote high quality health care and to protect the public's health and well being.

Processing the private data we fully comply with the HIPAA-Privacy Rules. If you have questions about, please the above mentioned responsible.

M) Change of Privacy Policy

Due to changes in the law or by enlarging the offers on our website, it may be necessary to adapt this privacy policy to the new circumstances. Therefore, we reserve the right to make such an adjustment in case of need. When you visit our website, the then current privacy policy applies.

August, 2022

Privacy settings

We use cookies on our website. Some of them are essential, while others help us to make this website more informative and user-friendly for you.

All accept Save

Privacy policy