Privacy policy

This Privacy Policy has been updated: 01.09.2019.

This Privacy Policy explains how we handle personal data collected from Users on or through the Services.

Please read this policy carefully to understand our practices regarding the collection of personal information about you and how we will treat it. If you do not agree with our Privacy policy, please do not access or use our Services.

Application

This Privacy Policy sets forth our policy with respect to information that can be associated with or which relates to a person and/or could be used to identify a person ("Personal Data") that is collected from Users on or through the Services. We take the privacy of your Personal Data seriously. Because of that, we have created this Privacy Policy. Please read this Privacy Policy as it includes important information regarding your Personal Data and other information.

"Non-Personal Data" as used in this Privacy Policy is therefore any information that does not relate to a person and/or cannot be used to identify a person. When you interact with the Services, we may collect Non-Personal Data. The limitations and requirements in this Privacy Policy on our collection, use, disclosure, transfer and storage/retention of Personal Data do not apply to Non-Personal Data.

This Privacy Policy sets forth our policy with respect to information that can be associated with or which relates to a person and/or could be used to identify a person ("Personal Data") that is collected from Users on or through the Services.

This Privacy Policy applies when you access or use our Services, including our websites and apps, our branded communications and plugins, but excluding services that state that they are offered under a different privacy policy.

As a Visitor or Member of our Services, the collection, use and sharing of your personal data is subject to this Privacy Policy, Cookie Policy and Condtions of use, and other documents referenced in this Privacy Policy and updates.

This Privacy policy also  applies to the personal information we collect or receive in electronic messages or when you contact us directly via email or our online Support Desk. This Privacy policy does not apply to information collected by third parties, including through any third-party application or content (including advertising) that may link to or be accessible from our Services.

Legal basis for the procession of personal data

The main reason we process personal data is to provide the Services to our clients and to fulfill our contractual obligations towards our members and visitors, e.g. the users of our Services.

The processing of data is required for us to be able to offer you a personal account to access our services, and herewithin to offer you personalised information, networking and meeting services.

The legal basis for the processing of personal data is Article 6 (1) b) of the EU General Data Protection Regulation (GDPR).

Responsible body

pharmABC UG (haftungsbeschränkt) is the body responsible for the controlling and the processing of personal data.

We, pharmABC UG, assume the role of controller as per the EU General Data Protection Regulation (GDPR). In other words, we are the legal entity that shall determine the purposes and means of the processing of personal data. Our contact details are as follows: pharmABC UG (haftungsbeschränkt), Eckerkoppel 6, D-22159 Hamburg, Germany.

Data collection

The collection of data, including personal information, includes:

information from users when they directly provide it to us, for example when registering to our services, or when filling forms to receive information about our products or services

information from users ("Members") when they use our Services

 

 

via online forms, electronic messages

 

 

We may use information that we collect or that is provided to us, including Personal Information, for any of the following purposes:

  •  

The

Information you provide to us

This refers to data we obtain from you on or throught our Services, including:

  • Login details (e.g. username and password)
  • Personal information, e.g. first name, family name, title, gender, date of birth, postal address and other contact information
  • Profile information, e.g. current position, employer information including place of work and postal address of organisation, education & training, contact options, photos and documents
  • Networking and meeting information, e.g. topic selections, pitches, event participation
  • Messages, meeting invitations, network invitations and other information you exchange with other users
  • Administrative information and billing details

There are both mandatory entry fields (which as marked as such) and optional information you can provide.

1. Login, personal and profile information

When you register to our services, its applications and related websites, we have to record and process certain data as your login data and personal data. The legal basis for this processing of personal data is Article 6 (1) b) of the EU General Data Protection Regulation (GDPR).

You have to fill in certain mandatory fields when you register. This information is essential for a functioning professional network, e.g.

  • Login details: username or E-mail address and password to login
  • Personal information: title, first name, family name
  • Profile information: current position and employer information

Your login data is not visible to third parties. We will not ever pass this information on to third parties under any circumstances.

As well as the mandatory information we require, you can also enter additional information to complete your personal infornation, profile infornation, networking and meeting information, and to activate the different service features within EuroBIO. These information are shared with the other users (members, visitors) of EuroBIO, its applications and related website.

You can retract most optional information at any time for the future by deleting the respective data in your profile.

    1. E-mail address(es)

We use the electronic mail address(es) that you have provided to us to send you regular updates about our activities, upcoming events and newsletters and/or status e-mails electronically.

You can unsubscribe to newsletters at any time, either in your notification settings in EuroBIO or by clicking on the link provided at the end of e-mail newsletters.

Information we automatically obtain through your use of our services

Data about you is automatically collated by means of tracking while you visit or make use of our Services. In the so-called "back end", at our web server level, we collect the data of users, which we use first and foremost for the provision and preservation of the security of our services. In the "front end", on your end device, we use cookies and similar tracking technologies to collect data about users to enable the provision of our service and the analysis of user behaviour and for statistical purposes. Tracking involves the processing of login data (e.g. date and time of the visit, referrer, IP address, cookie ID, location data, product and version information about the browser or app used, device ID or data) and interaction data (e.g. pages viewed or searches carried out).

Information from third parties

From third party sources, such as public databases, joint marketing partners, and social media platforms. For example, if a Website Visitor elects to connect his social media account to his account for our Websites, certain Personal Information from the social media account will be shared with us, which may include Personal Information that is part of the Visitor’s profile or his friends’ profiles.

How we store your personal data

We may store Personal Data itself or such information may be stored by third parties to whom we have transferred it in accordance with this Privacy Policy. We take what we believe to be reasonable steps to protect the Personal Data collected via the Services from loss, misuse, unauthorised use, access, inadvertent disclosure, alteration and destruction. However, no network, server, database or Internet or e-mail transmission is ever fully secure or error free. Therefore, you should take special care in deciding what information you send to us electronically. Please keep this in mind when disclosing any Personal Data.

How we disclose and transfer your personal data
We are not in the business of selling your Personal Data. We consider this information to be a vital part of our relationship with you. Therefore, we will not sell your Personal Data to third parties, including third party advertisers. There are certain circumstances in which we may disclose, transfer or share your Personal Data with certain third parties without further notice to you, as set forth in this Privacy Policy.

Internal Business Purposes

 

We may use your Personal Data for internal business purposes, including without limitation, to help us improve the content and functionality of the Services, to better understand our Users, to improve the Services, to protect against, identify or address wrongdoing, to enforce our Terms of Service, to manage your account and provide you with customer service, and to generally manage the Services and our business.


Business Transfers

As we develop our business, we might sell or buy businesses or assets. In the event of a corporate sale, merger, reorganisation, dissolution or similar event, Personal Data may be part of the transferred assets. We may also disclose your Personal Data in the course of due diligence for such an event. You acknowledge and agree that any successor to or acquirer of our Services will continue to have the right to use your Personal Data and other information in accordance with the terms of this Privacy Policy.



Parent Companies, Subsidiaries and Affiliates.
 

We may also share your Personal Data with our parent companies, subsidiaries and/or affiliates for purposes consistent with this Privacy Policy. Our parent companies, subsidiaries and affiliates will be bound to maintain that Personal Data in accordance with this Privacy Policy.
Agents, Consultants and Service Providers.
We may share your Personal Data with our contractors and service providers who process Personal Data on behalf of us to perform wcertain business-related functions. These companies include our marketing agencies, online advertising providers, data enhancement and data services providers, database service providers, backup and disaster recovery service providers, email service providers, payment processing partners, customer support, tech support, hosting companies and others. When we engage another company to perform such functions, we may provide them with information, including Personal Data, in connection with their performance of such functions.
 

Organisers



In addition, when you register for an event, sign up for communications, or otherwise input your Personal Data to communicate with an Organiser or participate in an Organiser event, that Organiser will receive that information. For instance, if you input your name and email address into a web form for an Organiser offer, activity or event, the Organiser will receive that information. The Organiser may then send you marketing or other communications, which may be subject to its own, separate privacy policy. Likewise, if you provide your mobile phone number, you may receive information messages related to the service, event, activity or information in which you’ve expressed interest.

 

Legal Requirements

We may disclose your Personal Data if required to do so by law in order to (for example) respond to a subpoena or request from law enforcement, a court or a government agency (including in response to public authorities to meet national security or law enforcement requirements), or in the good faith belief that such action is necessary to (a) comply with a legal obligation, (b) protect or defend our rights, interests or property or that of third parties, (c) prevent or investigate possible wrongdoing in connection with the Services, (d) act in urgent circumstances to protect the personal safety of Users of the Services or the public, or (e) protect against legal liability.

Your rights

You have legal rights available to you with regard to data access, rectification, erasure, restriction of processing and objection to processing, as well as the right to data portability, amongst others. In addition, you can withdraw any consent you may have given to data processing at any time, and have the right to lodge a complaint with a supervisory authority.

If you are a registered User, you can exercise these rights by logging in and visiting the My Account page. Both registered and unregistered Users may also exercise these right by contacting us directly by email or at the address specified below.

We will consider and respond to all requests in accordance with applicable law.

For any question about your rights, please contact us via the dedicated online form.

Right to object

You have the right to object at any time to the processing of personal data concerning you, pursuant to Article 6 (1) f) of the EU GDPR. This shall also apply to any profiling carried out on the basis of these provisions. Please use our contact form to submit any objection.

Right of access

You have the right to demand confirmation as to whether we process your personal data. If this is the case you are entitled to receive information about this personal data.

You also have a right to access the following information:

  • The reasons for the data processing
  • The categories of personal data that are processed
  • If possible the planned period of time that the personal data will be saved for, or if this isn't possible then the criteria used to determination this time period
  • The existence of a right to rectification or erasure of your personal data and/or the right to restriction of processing by the controller, or a right to object to this processing
  • The existence of a right to lodge a complaint with a supervisory authority
  • All available information about the origin of the personal data if the data was not obtained from the person in question
  • The existence of automated decision-making including profiling pursuant to Article 22 (1) and (4) of the EU GDPR and – at least in some cases – insightful information about the logic involved plus the scope and aims of the repercussions of this kind of processing for the person affected

If personal data is passed on to a third country or an international organisation, you have the right as the person affected to be informed about the respective guarantees (pursuant to Article 46 of the EU GDPR) regarding this sharing of data.

Right to rectification

You have the right to demand that we correct any incorrect personal data concerning you with immediate effect. Taking the purposes of processing into account, you have the right to demand the completion of any incomplete personal data – including by means of a supplementary explanation.

Right to erasure

You are entitled to demand that we delete your personal data without delay if one of the following applies: The personal data is no longer required for the purposes for which it was collected or processed in some other way. You withdraw your consent that the processing was based on pursuant to Article 6 (1) a) or Article 9 (2) a) of the EU GDPR , and there are now no valid legal grounds for processing. You submit an objection to the processing of your data pursuant to Article 21 (1) of the EU GDPR and there are no overriding justifiable grounds for the processing, or you submit an objection to the processing of your data pursuant to Article 21 (2) of the EU GDPR. The personal data was processed unlawfully. The deletion of the personal data is required to fulfil a legal obligation in accord-ance with EU law or the law of individual member states. The personal data was recorded in relation to the offer of information society services directly to a child, pursuant to Article 8 (1) of the EU GDPR. Once you have made your request we are obliged to delete the data with immediate effect. The lawfulness of the data processing for the period between the consent and the withdrawal of this consent shall remain unaffected.

Right to restriction of processing

You are entitled to demand a restriction to the processing of your personal data in cases where you dispute the correctness of the personal data, for a period of time that allows the controller to review the correctness of that personal data. If the processing is unlawful and you reject the erasure of the personal data in favour of demanding a restriction to the use of the personal data we will fulfill this request. Processing will also be restricted if we no longer require your personal data for the purposes of processing but do require it for the establishment, exercise or defence of legal claims. Or if you have objected to processing pursuant to Article 21 (1) of the EU GDPR, for as long as is not yet ascertained whether the justifiable grounds of the controller outweigh your grounds. You will be informed in advance by us should the restriction be revoked.

Right to data portability

You have the right to receive personal data concerning you that you have made available to us in a structured, conventional and machine-readable format, and you also have the right to transfer this data to another controller without being impeded by us to whom the personal data has been made available. The condition is that a) processing is based on consent pursuant to Article 6 (1) a) of the EU GDPR or Article 9 (2) a) of the EU GDPR or on a contract pursuant to Article 6 (1) b) of the EU GDPR, and b) the processing is conducted with the help of automated processes. When exercising your right to data portability you have the right to demand that the personal data is transferred directly from us to another controlling body, provided this is technically viable.

Right to withdraw consent

If processing is subject to your consent you have the right to withdraw this consent at any time. This shall not affect the lawfulness of any processing that took place with your consent up until its withdrawal.

Right to lodge a complaint

You have the right to lodge a complaint with the supervisory authority responsible for our company.