Privacy and Cookies Policy

Last updated on August 19, 2020

Thank you for visiting the Helsinn Group website (the "Website") which is operated by Helsinn Healthcare S.A. (“Helsinn”, "we", "us", and "our"). We recognise the importance of and are committed to respecting and protecting your privacy.

This Privacy and Cookies Policy is an overview of how Helsinn and its worldwide affiliates, where applicable, process information about individuals. It applies to information collection and use including while you are visiting and using the Website. Please read this Privacy and Cookies Policy carefully in order to understand our views and practices regarding your personal data and how we will treat it. The Privacy and Cookies Policy is also a part of our Terms of Use (the "Terms") for the Website.

From time to time, we evaluate our privacy policies and procedures to implement improvements and refinements. If we make material changes to this Privacy and Cookies Policy, we will notify you by means of a prominent notice on this Website.

PERSONAL DATA WE MAY COLLECT ABOUT YOU
We may collect and process your personal data through the Website when you: (i) contact us using the Contact Us form; (ii) email us using the available links; (iii) submit any personal data submitted through the About Us Section; (iv) submit a grant request. 
We collect and process personal data that you provide to us, such as when you fill out forms on the Website, only if needed and appropriate. The information may include, for example, your name and contact details (e-mail address, telephone number, mailing address etc.); business information, employment history, education history, qualifications, occupation and areas of specialization.

We also collect personal data with reports of a possible adverse event associated with any of our products (meaning and including medicinal products, medical devices and nutritional supplements) and to monitor the safety of our products. Although we generally avoid collecting special categories of personal information through our Website, in the instance of an adverse event report, we may need to collect certain personal data, such as your gender, date of birth and information about your health. Please consult our Pharmacovigilance Data Privacy Policy for additional information on how we process information provided through the “Report Adverse Events” link on our Website. 
In addition, we automatically collect basic technical information from all visitors to the Website through our automatic data collection tools, which may include cookies and other commonly used technologies (e.g. web beacons). Please see the Section on COOKIES below for further information.


HOW WE USE YOUR PERSONAL DATA 
We may need to collect personal data for the performance of any current or prospective contractual relationship with you and where necessary for us to provide you with the requested services/information for the following purposes: (i) to contact you and respond to your requests and enquiries, encompassing collecting and responding to adverse events and product complaint reports; (ii) to process your requests including when you apply for a job or provide information regarding upcoming events and press releases or for collaboration and research purposes; (iii) for business administration, including statistical analysis; (iii) to personalise your visit to the Website and to assist you while you use the Website; (iv) to improve the Website by helping us understand who uses the Website; (v) to provide important notices and updates, such as changes to our terms and policies, security alerts and administrative messages; and (vi) for fraud prevention and detection and investigations against illegal activities; and (vii) to comply with applicable laws, regulations or codes of practice or demands or requests made by regulators, governments, courts and law enforcement authorities.

We will only collect personal data about you that is necessary for one or more of our legitimate business purposes or is required by law. Please note that, if you do not provide personal data, we may not be able to provide services or information to you or enter commercial engagements with you.


SHARING YOUR PERSONAL DATA
We may at times share your personal information with others and transfer it internationally. For example, we may share your personal data with trusted third parties, including, but not limited to: companies that provide us with technical support, data analytics, and hosting of the Website; our professional advisors, auditors and business partners; companies engaged to market and distribute Helsinn products; companies that assist with our personnel recruitment; and other third parties providing data processing services in support of our business operations.

Our affiliates (located in Ireland, Peoples Republic of China, Principality of Monaco, Switzerland and United States of America) may also have access to personal data that you provide us, including through or in connection with this Website for the purposes set out in this Privacy and Cookies Policy.

Additionally, we may share your personal data as required or permitted by law to comply with a subpoena or similar legal process or government request. 
We may also transfer your personal data to a third party that acquires all or part of our assets or shares, or that succeeds us in carrying on all or a part of our business, whether by merger, acquisition, reorganisation or otherwise.

Please note that the servers used in the operation of the Website automatically identify a computer by its IP address. If we, in good faith, believe that disclosure is legally required or otherwise necessary to protect our rights and property, or the rights, property or safety of others, or determine that you have or are attempting to misuse or harm the Website, we may investigate and cooperate with appropriate law enforcement agencies to protect our rights or property.


DATA TRANSFERS
Personal data collected from you, including via this Website, may be transferred to countries located outside the European Economic Area (“EEA”) and Switzerland which do not provide a similar or as protective a level of protection to that provided by countries in the EEA and Switzerland. We will implement appropriate measures, in accordance with applicable data protection and privacy laws, to ensure that your personal data remains protected and secure when transferred outside of your home country.

For example, Helsinn has entered into EU standard contractual clauses (“Model Contracts”) for intra-group transfers of personal data.

If you are from the People’s Republic of China, when you provide your personal data by way of using the Website, you acknowledge that you knowingly transfer your own personal data across the border, where the data protection under relevant Chinese laws will not apply, but instead we will give you protection in accordance with this Privacy and Cookies Policy.


YOUR RIGHTS
Individuals in Switzerland and Europe have certain data subject rights which may be subject to limitations and/or restrictions. These rights may include the right to: (i) request access to and rectification or erasure of their personal data; (ii) obtain restriction of processing or to object to processing of their personal data; and (iii) the right to data portability. If you wish to exercise one of the above-mentioned rights, please send us your request via email to: privacy@helsinn.com. Individuals in Switzerland and Europe may also have the right to lodge a complaint about the processing of their personal data with their local data protection authority.


SECURITY
The security of your personal data is important to us. We take appropriate steps, consistent with generally accepted industry standards, including technical, administrative and physical safeguards to protect the personal data submitted to us from loss, misuse and unauthorised access, disclosure, alteration and destruction. Regardless of the security measures in place, however, no transmission over the Internet is entirely secure. Accordingly, you should always use caution when transmitting personal data over the Internet. Please note that any transmission is at your own risk.


RETENTION PERIOD 
We will keep your personal data for the period required by law and where necessary for a legal or regulatory action involving Helsinn. Otherwise, we will store your personal data for as long as required for the purposes for which they were collected and in accordance with our internal data retention and storage procedures, which may change from time to time. 


COOKIES
“Cookies” are a technology that allow websites to recognize and respond to you as an individual. They are used to help users navigate websites efficiently as well as to provide information to the owner of the website. To find out more about cookies generally, including how to manage, block and delete them, please visit www.allaboutcookies.org.

When you visit our Website, we may use a “cookie” or other similar tracking technology to improve your experience. The cookies we place may also collect information about your Internet Protocol (“IP”) address, or click stream data within our Website (i.e. the actions taken in connection with the Website). This information helps us improve the functionality of the Website.

We also use cookies provided by Google Analytics to help us measure how visitors use the Website. The information collected is used for a variety of purposes, including, site traffic reporting, unique visitor counts, and content optimization. 

If you do not want to participate in this feature, you can opt-out of this website analysis tool by clicking: https://tools.google.com/dlpage/gaoptout.

You can set your web browser to manage cookies and accept or reject them. If you elect to block cookies, please note that you may not be able to take full advantage of the features and functions of the Website.


CHILDREN
We recognize the importance of protecting the privacy of children. Our Website is neither intended for children nor is it designed to attract child users. Our Website, its content and our services are intended for users over the age of sixteen (16). We do not knowingly collect any personal data from children under age sixteen (16). When a user discloses personal data on the Website, the user is declaring to us that he or she is at least sixteen (16) years of age.


LINKS TO OTHER WEBSITES
The Website may, from time to time, contain links to websites operated by third parties that may provide useful information to you. If you follow the link to any of these websites, please note that those sites may have their own privacy policies. Helsinn is not responsible for the privacy practices or the contents of such other websites. We suggest that you exercise caution and look at the privacy statement for each website you visit.


IDENTITY AND CONTACT DETAILS OF THE DATA CONTROLLER
For the purposes of EU and Swiss data protection laws, the Data Controller (i.e. the company that is responsible for, and controls the processing of, your personal data) is Helsinn Healthcare SA, with legal address at Via Pian Scairolo, 9, 6912 Pazzallo- Lugano, Switzerland. To contact us please email: privacy@helsinn.com.

The Representative of the Data Controller established in the European Union is Helsinn Birex Pharmaceuticals LTD, with legal address in Damastown Mulhuddart - Dublin 15, Ireland 

You may contact the DPO sending an email to the following address: Helsinn-DPO@helsinn.com 

If you have questions about this Privacy and Cookies Policy, or would like more information about Helsinn’s privacy practices, please contact us at privacy@helsinn.com.