We take the protection of your personal data very seriously and handle your personal data confidentially and in accordance with statutory data protection regulations.
1. Data processing
We process your personal data in the following contexts:
1.1. Server log files (access data)
The provider of the pages automatically processes information provided automatically by your browser, known as server log files. These include:
• Browser type and browser version
• operating system
• Referrer URL (origin address)
• Host name of the accessing computer
• Date and time of the server request
• IP address
This data will not be merged with other data sources.
The data processing is based on Art. 6 para. 1 letter f GDPR, which permits the processing of data on the basis of legitimate interest. In this case, there is a justified interest in a secure and trouble-free operation of the web server. In order to ensure this, the administration must be able to recognise and trace attacks and malfunctions of the system via the server log files. In order to recognize attack patterns, accesses to the server must be stored. As soon as this data is no longer needed, it is deleted. For technical reasons, the data is disclosed to the hosting service provider, who is, however, bound by instructions and contract to us.
You will find more details on the cookies used in the respective sections of this declaration. You can revoke or grant your consent to the non-mandatory data processing at any time by calling up the "Privacy settings" in the footer of our website. In addition, the following necessary cookies are used:
• Consent to the storage of non-essential cookies: whether or not you have consented to the use of further cookies is stored in a cookie with a duration of 100 minutes.
• Session cookie: This allows your requests to be assigned to the same session. It is deleted when the session is ended.
The cookies are technically necessary to be able to display the page. They are processed on the basis of Art. 6 para. 1 letter f DSGVO. We have a legitimate interest in the technically error-free and optimized provision of our services.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of these Internet pages may be limited.
1.1.3 Contact form
If you send us enquiries using the contact form, your details from the enquiry processing form and in the event of follow-up questions will be processed and stored by us. Mandatory fields are marked accordingly. Filling in mandatory fields is necessary so that we can answer and process your enquiries. All other information is voluntary.
The processing of the data entered in the contact form takes place exclusively on the basis of your consent (Art. 6 Para. 1 Letter a GDPR). You can revoke this consent at any time. A revocation is only valid for the future.
We will not pass on your data to third parties without your consent or another legal basis.
The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to its storage or until the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions, in particular retention periods, remain unaffected.
DocCheck is an identification service that provides access to information for medical professionals on our non-public pages. It is operated by DocCheck Medical Services GmbH, Vogelsanger Straße 66, 50823 Cologne, Germany.
Registration and use takes place by entering a DocCheck user name and password. The registration procedure is carried out exclusively on DocCheck's servers, so that we do not receive any personal data in this context. Your data will only be transmitted to us with your express consent or for the purpose of legal prosecution, insofar as this is permissible under data protection law.
1.1.5 Google Analytics
This website use Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). Information is collected about your use of the website, including browser type and version, operating system used, referrer URL (previously visited page), IP address and date/time of request.
Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookies about your use of these web pages is usually transmitted to a Google server in the USA and stored there. Because IP anonymization is activated on these websites, your IP address will be truncated by Google within member states of the European Union or the EEA (European Economic Area) and only transmitted anonymously. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. This transmission takes place on the basis of your consent.
On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator.
The legal basis for the use of Google Analytics is your consent pursuant to Art. 6 (1) a DSGVO. The data sent by us and linked to cookies, user IDs (e.g. user ID) or advertising IDs are automatically deleted after 14 months. The deletion of data whose retention period has been reached takes place automatically once a month.
You can also prevent the collection of data generated by the cookies and related to your use of the websites (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link. The link is: https://tools.google.com/dlpage/gaoptout
For more information, please contact Google at https://policies.google.com/?gl=de.
This website uses Google Maps for displaying interactive maps. Google Maps is a map service provided by Google Ireland Limited. The use of Google Maps results in information regarding the use of the website, including your IP address, being transmitted to Google in the US.
When you go to a page on our website that contains Google Maps, your browser establishes a direct connection with Google’s servers. Google transmits the content of the map directly to your browser, which integrates it into the website. For this reason, we do not have any influence on the scope of the data that Google collects in this manner. According to the information available to us, this includes the following data at a minimum:
• Date and time of the visit to our website
• Web address or URL of our website
• IP address
• The (start) address entered in the course of route planning
1.1.7 YouTube plugin
We use plugins of the YouTube site operated by Google in our website. The operator is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit one of our pages equipped with a YouTube plug-in, a connection is established to YouTube's servers. YouTube has privacy-friendly preferences so it only stores your information when you actually start a video, according to YouTube.
The legal basis is Art. 6 Para. 1 Letter f GDPR. Our legitimate interest lies in improving the quality of our website.
The connection to the YouTube server in the USA is necessary in order to be able to display the respective video on our website via your Internet browser. In the course of this YouTube will at least record and process your IP address, the date and time as well as the website you visited. In addition, a connection to the advertising network "DoubleClick" is established by Google.
If you are logged in to YouTube at the same time, YouTube assigns the connection information to your YouTube account. If you wish to prevent this, you must either log out of YouTube before visiting our website or make the appropriate settings in your YouTube user account.
YouTube permanently stores cookies on your terminal device via your Internet browser for the purpose of functionality and analysis of user behaviour. If you do not agree with this processing, you have the option of preventing the cookies from being saved by making a setting in your Internet browser.
Google provides further information on the collection and use of data as well as your rights and protection options in this regard in the data protection information at https://policies.google.com/privacy.
We use plugins on our website to display videos from the Vimeo platform. It is operated by Vimeo, LLC with headquarters in 555 West 18th Street, New York, New York 10011, USA.
The legal basis is Art. 6 para. 1 letter f GDPR. Our legitimate interest lies in improving the quality of our Internet presence.
When you open a web page provided with such a plugin, a connection to the Vimeo servers will be established and the plugin will be displayed. By this means, the Vimeo server will be informed which of our web pages you have visited. If you are logged into Vimeo as a member, Vimeo will assign this information to your personal user account. This information is also assigned to your user account when using the plugin, e.g. clicking the start button of a video. You can prevent this assignment by logging out of your Vimeo user account before using our website and deleting the corresponding cookies from Vimeo. If you do not agree with the data processing, you have the possibility to prevent the storage of cookies by a setting in your Internet browser.
Further information on data processing and information on data protection by Vimeo can be found at https://vimeo.com/privacy.
1.1.9 Share functions for social networks
On our website you can share individual pages via the "Share" links on the social networks Facebook, Twitter and WhatsApp. Only when you click on one of these links a connection will be established to the selected network and data about you will be transmitted there. The networks will use your personal information to perform the sharing function.
The data processing by us is based on your consent (Art. 6 para. 1 letter a DSGVO).
Further information is available here:
• Facebook (Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA, operated within the EU by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland): Privacy information can be found at https://www.facebook.com/policy.php.
• Twitter (Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA): Privacy information can be found at https://twitter.com/privacy.
• WhatsApp (WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland): Privacy information can be found at https://www.whatsapp.com/legal/#privacy-policy.
Because of the marketing tools used, your browser automatically connects directly to Google's server. We have no control over the extent and further use of the data collected by Google through the use of this tool and inform you therefore according to our state of knowledge: By the integration of Doubleclick Google receives the information that you called the appropriate part of our Internet appearance or clicked an announcement of us. If you are registered with a Google service, Google can assign the visit to your Google account. Even if you are not registered with Google or have not logged in, it is possible that the provider may find out your IP address and store it.
In addition, the Doubleclick Floodlight cookies enable us to understand whether you are performing any actions on our website after you have accessed or clicked on one of our display/video ads on Google or another platform via Doubleclick. Doubleclick uses this cookie to learn how you interacted with our sites and to send you targeted advertisements later.
You can prevent participation in this tracking process in a number of ways:
a) by setting your browser software accordingly, in particular by suppressing third party cookies, you will not receive advertisements from third parties
b) by disabling conversion tracking cookies by setting your browser to block cookies from the domain www.googleadservices.com, https://adssettings.google.com, which will be deleted when you delete your cookies
c) by deactivating the interest-based advertisements of the providers that are part of the self-regulatory campaign "About Ads" via the link http://www.aboutads.info/choices, this setting being deleted if you delete your cookies
d) by permanent deactivation in your browsers Firefox, Internet Explorer or Google Chrome under the link http://www.google.com/settings/ads/plugin
e) by means of the corresponding cookie setting. We would like to point out that in this case you may not be able to use all functions of this offer to their full extent. The legal basis for data processing is your consent (Art. 6 para. 1 letter a DSGVO.
1.1.11 MyFonts Counter
The service MyFonts-Counter does not process any personal data, but anonymously measures the use of web fonts on our website. Further information can be found at: https://www.monotype.com/legal/privacy-policy/web-font-tracking-privacy-policy/
1.1.12 Google reCaptcha
We use the "reCAPTCHA" service from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. This is to check whether the data entry on our websites (e.g. in a contact form) is made by a human or automated or machine by a program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the visitor enters the page. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent by the visitor on the website and mouse movements made by the visitor). The data collected during the analysis is forwarded to Google.
The data processing is based on Art. 6 para. 1 letter f DSGVO. As a website operator, we have a legitimate interest in protecting our web offers from abusive automated spying and from SPAM.
1.2 Further data processing
1.2.1 Business partners and contact persons
We process data about business partners (customers, suppliers, service providers, etc.) or about their contact persons. This includes names, contact details and job-related data (such as employer details and professional position).
The personal data originates either directly from the data subjects themselves or from their employer.
We need this data to protect our legitimate interests (Art. 6(1)(f) DSGVO), to communicate with our business partners and to fulfill, prepare and terminate contracts with business partners. In addition, this data is also used to provide information about our products and services and to carry out marketing activities. You may object to the use of personal data for direct marketing purposes at any time.
There are no plans to pass on the data to third parties. This data will be stored as long as it is required for the above-mentioned purposes and, if necessary, as long as legal retention periods require it. Insofar as it is necessary to fulfill these purposes, we may forward your data to external service providers. These are contractually and legally bound to confidentiality.
You can voluntarily submit your application online via our website. We process your applicant data only for the purpose and within the framework of the application procedure and in accordance with the legal requirements.
The processing of the applicant data is carried out to fulfil our (pre-)contractual obligations within the scope of the application procedure (Art. 6 Para. 1 Letter b GDPR and § 26 BDSG, German Data Protection Act).
If you voluntarily provide us with special categories of personal data within the scope of the application procedure (within the meaning of Art. 9 Para. 1 GDPR, e.g. health data, severely disabled status or ethnic origin), we process these on the basis of the legal basis of Art. 9 Para. 2 Letter a GDPR. If we ask you for special categories of personal data during the application process, they will be processed in accordance with Art. 9 Para. 2 Letter b GDPR.
The application procedure requires that you as an applicant provide us with your applicant data. Mandatory information is marked in our online form and can be found in the job description.
You can send us your application using the online form on our website. The data will be transmitted to us encrypted according to the state of the art. You can also send us your applications by e-mail. Because e-mails are not sent encrypted by default, you are responsible for a secure transmission yourself in this case. You can also send us your application by post.
Applicant data will be deleted after a period of six months, subject to justified revocation by the applicants, so that we can answer any follow-up questions regarding the application and meet our obligations to provide evidence under the AGG (German General Equal Treatment Act).
We process your data only for the purpose of and in the context of events and in accordance with legal requirements.
In order to attend an Aristo Pharma event, you must register. Registration is necessary because an event usually has a limited quota of places at the venue. In addition, further event information will be provided to you in advance and confirmations of attendance will be issued afterwards. Unfortunately, participation in an event is not possible without registration submitted in advance.
For medical training courses, the following applies: The processing of data is carried out for the implementation of the use and due to legal requirements (Art. 6 para. 1 lit. b, c DSGVO). Upon request and to the extent necessary, we may forward your data to the Berlin Medical Association.
Service providers with whom we cooperate for the organization process your data and make hotel bookings, for example; however, they are bound to secrecy.
For everyone's protection and care, the 2G-Plus rule applies to Aristo Pharma presence events (as of January 2022): you are required to identify yourself as vaccinated or recovered for events and must also provide a negative rapid test (max. 24 hours old) if you have not yet received a booster vaccination. Your proof will be reviewed prior to the start of the event - it will only be documented that you meet the 2G-Plus rule.
Your data will remain with us until the purpose for storing the data no longer applies. Mandatory legal requirements - in particular retention periods - remain unaffected.
2. Your rights
You as a data subject have the following rights, providing that the legal prerequisites are fulfilled:
• Right of access to personal data, Art. 15 GDPR
• Right to rectification of personal data, Art. 16 GDPR
• Right to erasure of personal data, Art. 17 GDPR
• Right to restriction of processing, Art. 18 GDPR
• Right to data portability, Art. 20 GDPR
• Right to object, Art. 21 GDPR
Insofar as the processing of data is based on your consent, you have the right to retract your consent at any time with effect for the future.
You have the right to submit a complaint to the data protection authorities regarding the processing of your data.
Responsible party and data protection officer
The responsible party for data processing is, unless otherwise stated above:
Aristo Pharma GmbH
Wallenroder Straße 8 - 10
Phone: +49 (0) 30 - 710 94 - 4200
Fax: +49 (0) 30 - 710 94 - 4250
You can contact the data protection officers via fox-on Datenschutz GmbH, Pollerhofstr. 33a, 51789 Lindlar, firstname.lastname@example.org.