Privacy Policy

With the entry into force, on May 25, 2018, of the General Data Protection Regulation (GDPR) adopted by the European Parliament, data protection regulations took a new step forward. It was also an opportunity for Unither Pharmaceuticals to reaffirm its commitments regarding the confidentiality of personal data and respect for choices concerning their use. The present Personal Data Management Policy informs you about how we collect and process your personal data. We encourage you to read it carefully.

Unither Pharmaceuticals undertakes to process your personal data in strict compliance with the purposes described to you in this policy. We will never use your data for commercial purposes against your will.

1. Data you provide to us directly.

This includes information related to:

• A general contact or business partnership request
• An open application
• An application in answer to a job offer
• A request to subscribe to our newsletter

These data are not classified as ‘sensitive’. They include:

• Contact: name, first name, company, phone number, email, type of pharmaceutical packaging.
• Applications: name, first name, title, email, address, post code, city, country, mobile phone number, education level, years of experience, encrypted CV and cover letter files.
• Newsletter: email address.

2. User access data

This refers to data for accessing website functionalities. Currently, this only concerns in-house employees who require access to functionalities for administrative purposes, job offer management, and application management. The data retained for our employees are: name, first name, email, encrypted password.

3. Data we collect during our business relationship

This data is associated with business inquiries and the management of contacts (recipients) for our newsletters: email.

• Managing applications for job offers or open applications
• Sending information about our group, its activities, products, and partnerships
• Managing our relationship with you and/or the company you represent and in order to:
  • communicate with you
  • respond to your requests and inquiries
  • send and manage quotes, contracts, invoices and, if necessary, reminders,
  • maintain statistics on products sold
  • answer any product-related questions
  • and/or maintain contact lists
  • and/or manage satisfaction surveys

Processing is lawful only if, and to the extent that, at least one of the following conditions is met:

• processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
• processing is necessary for compliance with a legal obligation to which the controller is subject;
• processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.

• Applications: 1 year
• Newsletter recipients: 3 years
• Business relationship: 3 years
• Contractual relationship: for the duration of the contract and five (5) years from the date of expiration or termination of the contract.

1. Employees:

• Application managers
• Members of the Sales Department
• External communication managers
• Members of the Information Systems Department that manages website hosting.

2. Subcontractors involved in website maintenance

Our subcontractors’ access to your data is based on contracts outlining their obligations regarding data security and confidentiality protection.

We store your personal data on servers located in the European Union. However, in rare cases, the data collected may be transferred to subsidiaries located in other countries, some of which may have less protective personal data protection legislation than that in force within the European Union. In the event of such a transfer, we ensure that the processing is carried out in accordance with this privacy policy and that it is governed by the European Commission’s standard contractual clauses, which guarantee a sufficient level of protection for privacy and fundamental rights of individuals.

As data controller, we implement appropriate technical and organizational measures in accordance with applicable legal provisions, in order to protect your personal data against alteration, accidental or unlawful loss, use, disclosure, or unauthorized access, including by:

• Informing our employees who have access to your personal data of confidentiality requirements,
• Securing access to our premises and IT platforms,
• Implementing a general IT security policy for the company
• Securing data access, sharing, and transfer
• Applying high standards for data protection when selecting our subcontractors

You have the right to access your personal data and to request that it be rectified, completed, or updated. You may also request the erasure of your data or object to its processing. You may request to exercise your right to data portability, i.e., the right to receive the personal data you have provided to us in a structured, commonly used format and the right to transmit this data to another data controller. Finally, you may issue directives concerning the retention, erasure, and communication of your personal data after your death.

To exercise any of these rights, please address your request to the Unither Pharmaceuticals Data Protection Officer in one of the following ways:

Mail: Unither Pharmaceuticals Data Protection Officer 3-5 Saint Georges Street 75009 PARIS Email: dpo@unither-pharma.com

Before responding to your request, we may verify your identity and/or ask you to provide further information in order to fulfill your request.

In case of an unsatisfactory response, you may lodge a complaint with the CNIL (French National Commission for Informatics and Liberties): https://www.cnil.fr/fr/plaintes

We remind you that, in accordance with legal obligations, a link is included at the bottom of each of our newsletters to allow you to unsubscribe.

An email from the website administration team will inform you of the full deletion of your data.

You can also send your request by email to unither@unither-pharma.com

The site administrator shall inform all affected users within 72 hours. This notification will include a description of the measures taken, or proposed, by the data controller in order to address the personal data breach, including, where appropriate, measures to mitigate its potential negative consequences. At the same time, also within 72 hours, a report will be made to the supervisory and regulatory authorities (CNIL).

What are cookies?

A cookie is a small text file that is transferred to your computer, smartphone, or tablet via your internet browser. Cookies are stored on the hard drive of your device (computer, smartphone, or tablet) when you visit our site. Cookies allow Unither Pharmaceuticals to recognize you during your subsequent visits to the site. Cookies can be temporary (session cookies) or permanent. Session cookies are active only for the duration of your visit and are deleted when you close the browser. Permanent cookies remain on your device’s hard drive when you leave the site and stay there until you manually delete them or the browser removes them after a certain period. Unither Pharmaceuticals uses cookies exclusively to monitor the performance of its website, for example, to determine the number of times a page is viewed and the number of unique users on its website. The information provided by these cookies allows us to analyze user behavior types and is used to optimize the user experience or to identify parts of the website that may require maintenance. This information is anonymous and is used solely for statistical purposes.

Unither Pharmaceuticals uses third-party solutions (including Google Analytics) to collect information about visitors to its website through these cookies. This information may be used by the providers of these services. However, the anonymity of our site visitors is respected as their IP address is anonymized.

How to manage and disable cookies

Most browsers are set to accept the cookies used on our website. However, you can adjust these settings to disable cookies. When you disable cookies, please note that some visual elements may not display correctly or you may not be able to use certain applications. As a reminder, you can delete cookies from our website or from any other website you have visited in your browser at any time.