Your personal data will be processed by the Center’s clinical and administrative staff complying with specific instructions on the aim and methods of data processing, and bound by professional secrecy and confidentiality. For training purposes, clinical treatments may be performed in the presence of observers for training purposes. In this event, all necessary precautions will be taken to limit any potential inconvenience, and your will to not give your consent will be respected.
Beside the parties listed in item 1, your personal data may also be shared with third parties, who, as independent data controllers or appointed data processors, provide ancillary services to activities of the Center, such as:
- external consultants,
- volunteer associations for patient care activities,
- maintenance firms, and
- other subjects providing services instrumental to the Center’s operations.
Your personal data could be shared with Independent Data Controllers, in fulfillment of the governing law or to enforce ones’ rights through legal action (e.g., NHS, institutions, municipalities, diseases registries, or insurance companies).
The updated list of hospitals part of the UPMC Group that may receive the data, and of Data Controllers and Independent Data Controllers having access to data is available from the Data processing reference person at the Office of the Director of Health Care Activities or from the Data Protection Officer, at the addresses below.