(Last updated: 24 June 2020)
This Website may contain links to third party websites. These linked websites are not under our control and are regulated by their own privacy policies. We are not responsible for the privacy practices of any such linked websites.
|Gedeon Richter Plc. (seat: 1103 Budapest, Gyömrői út 19-21.; Company Registration Number: Cg. 01-10-040944; hereinafter “ Richter ”) and Recordati Industria Chimica e Farmaceutica S.p.A. (seat: Via M. CIVITALI, 1 – 20148 Milano, Italy; company registration number: 00748210150; hereinafter “ Recordati ” – Richter and Recordati are each a “Company” and together are “ Companies ”, “ we ”, “ our ” or “ us ”) are the joint operators of the schizoprenia.life website (hereinafter “ Website ”) and we are committed to protecting the privacy of individuals.
|THE ESSENCE OF THE JOINT CONTROLLER ARRANGEMENT BETWEEN THE COMPANIES
The we have entered into a Joint Controller Agreement relative to the operation of this Website. We have agreed that the Companies are jointly responsible for the compliance with the transparency and information requirements regarding the processing of the Website visitor’s personal data, including the DocCheck authentication information and any information provided during newsletter mailing list sign-up.
We have agreed that each of us who holds the exclusive license to the respective market and sale products in a country under the exclusive licence agreement between us is responsible for fulfilling data subject requests originating from that country.
Either of us may receive a complaint from a data subject which relates to the other Company’s personal data processing, and the party receiving the said request must without undue delay forward such request to the other Company. If the data subject request is (1) made directly to Richter or Recordati or (2) addressed to both Companies or (iii) the country of origin of the request cannot be determined without doubt or (iv) originates from a country outside the EU, then the Company who received the data subject request must respond to that request.
We have agreed that they are each responsible for having in place procedures to ensure a compliant legal basis for processing personal data, to handle security breaches, to conduct data protection impact assessments, to manage data subject access requests and to implement appropriate technical and organizational security measures to protect the personal data against accidental or unlawful destruction, loss or alteration and against unauthorized disclosure, abuse or other processing in violation of the provisions laid down in the applicable data protection laws.
Each of us is entitled to use data processors as part of the joint processing. We process your personal data within the EU and applying the appropriate safeguards, may transfer it to any third countries outside the EU/EEA.
|WHAT IS THE PURPOSE OF PROCESSING THE DATA?
We will use your data for the purposes of
Newsletter subscription: in order to send you newsletters we need your title, first name, last name, e-mail address, specialty and country of residence.
|WHAT PERSONAL DATA WE PROCESS ABOUT YOU?
For the purposes outlined above we process the data categories indicated below:
The provision of your personal data as a healthcare professional, based on your consent is voluntary.
|THE LEGAL BASIS FOR PROCESSING YOUR PERSONAL DATA
To process your personal data, we may rely on the legal bases below:
|OUR LEGITIMATE INTEREST
We have conducted the balancing test to conclude our prevailing legitimate interests. We considered the extent to which your interests, rights and freedoms may be impacted by our data processing activities, as well as the organizational structure and operation of the Companies and the privacy guarantees provided by us. On this basis, we have concluded that our relevant data processing activates (as outlined below) do not disproportionately restrict your interests, personal rights and freedoms.
For more information regarding our legitimate interests, please find our contact information at the contact page .
|HOW LONG DO WE KEEP YOUR PERSONAL DATA?
Taking into consideration that your personal data shall be processed for the purpose of accessing the Website and, afterwards, it shall be available in anonymous form for the purposes above indicated only, we will retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data, whether we can achieve those purposes through other means and the applicable legal requirements. To this extent, please consider that we will anonymise your personal data so that it can no longer be associated with you, in which case we may use such information without further notice to you.
We will process and store personal data in relation with your visit of our Website for 6 months after your visit.
|WHO MAY ACCESS TO YOUR DATA?
We will not disclose any of your personal data to third parties, any external bodies or organizations, except as set out below, or unless you consent to data transfer or the data transfer is required or permitted by law.
We may engage third party vendors as data processors to provide services to us and share your personal data with such third parties as well as with legal and other advisors, consultants that assist us. Nonetheless, in such a case, we will always ensure confidentiality of your personal data, for example by concluding a confidentiality and non-disclosure agreement. We may transfer your personal data outside the EU/EEA. In this case we rely on appropriate safeguards, such as EU standard contractual clauses or the EU-U.S. Privacy Shield framework.
At the time of this Privacy the Companies have engaged the below data processors relative to the operation of this Website and the provision of its services:
You are entitled to exercise your rights indicated below:
or you may contact the competent data protection regulatory authority located in the European Union’s relevant Member State where your habitual residence, place of work or place of the alleged infringement is.
|DATA PROTECTION OFFICERS
Richter have appointed a data protection officer, whom you may contact at: [email protected]
Recordati have appointed a data protection officer, whom you may contact at: [email protected]