These Terms set out the contractual agreements that exist between customers and Helsana when using myHelsana.
myHelsana is generally available to all persons insured with the Helsana Group (private customers) who are aged 18 years or over. Helsana also offers a restricted-function version of myHelsana that is available to all adults, whether they are insured with Helsana or not. Helsana is at liberty, however, to decide whether or not to enter into an agreement with a User. Customers do not have any legal entitlement to access myHelsana.
Users access the portal via their provider’s internet service.
To use myHelsana, the latest version of a commercially available web browser must be installed for the client portal, and Android/ iOS for the app. Otherwise, myHelsana may not function properly or at all. Helsana is unable to provide support for technical problems of any kind, such as concerning the User’s end device or internet connection.
a. Registration for all functions
Once registered, customers will receive an registration code by post. This code is used to activate myHelsana in the first instance.
Customers who have already received the code by letter, e-mail or telephone can enter it during registration by following the instructions.
Users must sign in for the first time using their username, password and mTAN (security code sent by SMS) to access their data. They can then carry out the passkey registration in the mobile app in order to be able to log in with FaceID or TouchID. If they do not carry out the passkey registration, they can continue to log in with their username, password and mTAN.
Helsana deems anyone having identified themselves legitimately on the portal via their login data, as described above, as being authorised to access myHelsana and to use any of the services provided therein. In particular, the User is also entitled to amend data, submit applications, review documents uploaded to the portal and use the scanning feature to generate invoices and documents and send these to Helsana.
If there are justifiable doubts as to the identity of a registered user, Helsana may reject change requests, access to documents or any requests that have a legal impact on the user, or may check the identity of the user again. If it becomes apparent that the identity of the individual submitting the request does not correspond to that of the user, Helsana may decline to process the request without the corresponding power of attorney.
b. Registration for restricted use
To register for restricted use of myHelsana, all the User needs is an e-mail address and a password of their own choosing. Helsana policyholders have the option of switching from an account with restricted use to the full version with all functions at any time.
myHelsana is a free service.
It is the responsibility of each User to keep login data confidential and protect it from misuse by third parties.
Users are liable for any consequences arising from the unauthorised use of their authentication details.
If a user has reason to suspect that an unauthorised third party has obtained such details, the password must be changed immediately and, if necessary, a request to disable the account submitted to Helsana.
Users are obliged to check their myHelsana inbox regularly. It is their responsibility to ensure that invoices received via myHelsana are paid in good time using an appropriate online payment system or by CH-DD basic direct debit to a postal account or LSV+ direct debit to a bank account.
Amendments to home and/or e-mail addresses, bank details and other personal data must be entered in myHelsana by the User without delay. Correspondence from Helsana sent to the home or e-mail address stored on the system will be deemed duly served.
Once a customer has downloaded a document from myHelsana onto their own end device, they are then responsible for securing the data. Helsana cannot accept any responsibility for documents once they have left its systems.
By using the scanning feature, the User agrees to refrain from violating moral standards with their usage behaviour (e.g. photo uploads), infringing intellectual property rights or other proprietary rights, transmitting content with viruses (such as “Trojan horses” or other programs that could harm the software) or manipulating the functions or content of the scan function or entered details.
Helsana reserves the right to assert indemnity claims for all losses or damage it incurs, and to initiate criminal proceedings against insured persons if necessary.
Any adult person can register for myHelsana.
If the family contact person (who may be stated in the insurance application or subsequently) registers for the full version of myHelsana, by entering into this user agreement they agree to receive all correspondence from Helsana for all persons on the joint insurance contract electronically in future, i.e. including invoices and the policy. The above does not, however, apply to documents that, for legal or technical reasons, require dispatch via the ordinary postal system. The family contact person has access to the data of insured persons associated with them under this insurance contract, including highly sensitive personal data.
Regardless of whether the family contact person is registered, any adult may register for their own access to the full-function version of myHelsana as a member of the joint insurance contract. This has no effect on the means of communication agreed between Helsana and the family contact person. This will allow the customer to access and edit their own data. The customer also has access to data they already know for all insured persons under the same insurance contract (including name, address, telephone number, insurance products, insurance card), regardless of whether or not these persons are registered for myHelsana. This does not apply to highly sensitive personal data.
Revocation is possible at any time and may be notified to Customer Service in writing. Revocation will result in contract separation into an individual contract.
myHelsana is accessed via the internet.
Even if the security precautions on the User’s end device reflect the state of the art of science and technology, a 100% guarantee of security cannot be given. Helsana therefore draws Users’ attention to the following primary risks when using the myHelsana portal:
Inadequate security precautions on the User’s end device can make it easier for a third party to gain unauthorised access to customer data. It cannot be ruled out that a third party will gain access to an end device surreptitiously while the customer is actually using it. For this reason, the Helsana Group urgently advises Users to equip their systems with a current firewall solution and to protect Wi-Fi networks with passwords. Helsana urges its customers not to access myHelsana via public Wi-Fi networks.
Information and data are exchanged between Helsana and its Users via an open network that is accessible by anyone. Although data transfers between Helsana and the User are encrypted, certain details of the connection (sender and recipient addresses) are not, and this may give rise to the inference that a business relationship exists between the User and Helsana.
Helsana has no influence over whether or how a User’s internet provider will analyse data traffic. It is possible for a third party to ascertain when and with whom the customer has been in contact.
For security reasons, a session time-out is installed that will automatically log the user out of myHelsana after a certain period of inactivity, whereupon they will need to sign in again to use the facility.
Considerable care and attention are invested in the content of the myHelsana portal. Helsana cannot, however, accept any liability for the accuracy and completeness of the data and information it provides and exchanges. Helsana makes no warranty that access to the myHelsana portal will be error-free, that defects will be corrected, or that viruses or other harmful components will not be transmitted in connection with customers’ use of the site. Helsana accepts no liability to the extent permitted by law. In particular, Helsana accepts no liability for direct or indirect loss or damage and consequential loss or damage, such as loss of profits, loss or damage as a result of data from downloads or reputational damage.
Helsana takes all reasonable technical and organizational precautions to prevent unauthorized access to user data and other unlawful data processing. The data and documents displayed on myHelsana are drawn from the relevant Helsana departments and systems, and remain visible to the User for the duration of their online session.
The owner of the data transmitted to Helsana by the User using the scan function and the data controller is the Helsana Group insurer responsible for the respective insurance coverage. The scanned documents are processed in Helsana’s core systems.
For more information on data protection, please see www.helsana.ch/data-protection.
Any requests, claims or information related to data protection law as it concerns Helsana may be sent to Helsana’s data protection advisor at the following contact address and must be accompanied by a copy of an official form of identification:
Helsana Insurance Company Ltd
Data Protection Advisor
Where Helsana falls within the scope of GDPR, ActiveAssets A2 GmbH is both its data protection advisor for the purposes of Article 37 GDPR and its representative for the purposes of Article 27 GDPR. Its contact details are as follows:
Active Assets A2 GmbH
Helsana may use myHelsana to advertise its own products or those of partners and place links to partner websites.
Helsana reserves the right to disable access to myHelsana in the interest of the User and to protect customer data if any security risk whatsoever is detected.
Helsana collects, processes and analyses tracking data in conjunction with the use of myHelsana for optimisation and statistical purposes. This tracking data cannot be traced to any individual user; it merely provides information on general user behaviour. In other words, these are anonymous evaluations to improve myHelsana. This data helps Helsana to optimise its website and make it more customer friendly. Cookies (small text files containing an ID number) allow Helsana to enhance the service it provides to its customers and recognise returning website visitors.
Where Helsana falls within the scope of GDPR it relies on its legitimate interests to operate and successfully improve myHelsana.
Most browsers have a function that allows Users to prevent cookies from being accepted automatically and to delete cookies already stored on the system. If the User does not want cookies to be stored on their device, they can change the browser settings so that cookies must either be approved before being stored or automatically refused. For ease of navigation, Helsana recommends that Users accept cookies and do not delete them. Disabling cookies can hinder the use of interactive functions on this and other websites.
Which functions are available on myHelsana depends on the User role and the insurance contracts concluded with Helsana. This can mean that not all functions will be available in some cases. In addition, Helsana reserves the right to modify, extend or discontinue the functions on myHelsana at any time.
myHelsana users who have registered for all features can access their digital insurance card using the “Display insurance card” feature. This feature is available in the app regardless of whether users are logged in or not and is activated by default. The identity check and, as a result, saving the card in offline mode is ensured via the device and not by Helsana. Users can deactivate the feature to display the card when they are not logged in at any time in the app settings. Deactivation deletes the version of the insurance card that is saved locally on the user’s device.
Either party has the right to withdraw from the user agreement at any time without citing reasons and without observing a notice period. Cancelling the contract will result in access to myHelsana being disabled immediately.
In any case, the user agreement for the full version of myHelsana is terminated automatically twelve months after the end of the contractual relationship with Helsana. In the interim, customers will receive all documents by post.
These provisions or the contractual relationship between Helsana and the users of myHelsana are subject to Swiss law. The place of jurisdiction is the registered office of Helsana Insurance Company Ltd.
We're here to help.