Privacy Policy

Data Protection

Not a lot will be done with your personal data while you are visiting this website. In summary, the following will happen:

  • To enable you to look at this website, your public IP address will be utilised by the web server only during the time you are visiting this website.
  • The application running this website will save only very specific access data on these internet pages, namely, failed login attempts, attempted access to non-existent content (“404 detection”), as well as IP addresses blocked following failed login attempts.
    This means that none of your personal data will be saved during a “normal” visit to this website.

Our website will not track your browsing behaviour, and will not conduct any other analyses allowing any kind of conclusions regarding your person.

 

Data are Processed in the EU

Our web server is located in Germany.

 

Legal Basis for Processing User Data

The legal basis for the processing of user data is Article 6 paragraph 1 of the German data protection regulation (Art. 6 Abs. 1 lit. f DSGVO), which is based on a balance of interests.

Our interest is the safe and functional operation of this website.

Information regarding your personal rights can be found in the data protection information, below. If you are an ordinary visitor of this website, we will not save any personal data that can be allocated to you and therefore could allow disclosure of personal information.

Nevertheless, you can of course request information, and we will then find out whether we have any personal data that can be allocated to you.

 

Which Data Will Be Processed

IP Addresses

This website saves the complete IP addresses of visitors to ensure safe operation and to access these data in case of a cyber-attack.

In case of failed login attempts, the IP address will be saved. This is done to prevent and analyse hacking attempts. The IP address is also needed to assist registered users – for example to analyse technical errors during registration. We will determine how long these data are saved on a case-by-case basis after assessing for proportionality.

If a visitor or user enters a wrong password several times, or tries to register with a “typical” administrator user name, access will be immediately blocked based on the IP-address. If an analysis implies that a visitor of this website is illegitimately attempting to access our platform (these webpages), the IP-address will be saved for a longer period of time with the purpose of blocking this IP-address. We will determine how long the IP-address is saved on a case-by-case basis after assessing for proportionality.

The legal basis for processing these data with regard to mere visitors of this website is Article 6 paragraph 1 of the German data protection regulation (Art. 6 Abs. 1 lit. f DSGVO). In this case, our interest is to ensure integrity, confidentiality, and availability of data processed through these web pages.

Cookies

This website does not use cookies. Cookies are small pieces of data stored as files on the user’s computer by the web browser.

Web Analytics

These web pages do not perform web analytics. We only determine the frequency of page views and perform other small statistical evaluations without allocation of data to any person or ID.

E-Mail

If you send us an e-mail, these data will be saved. At the end of every year, we will assess whether it will be necessary to continue saving these data or whether we have obligations to save the e-mails. Depending on the results of these assessments, the e-mails will be saved or deleted.

If you contact us via our contact form, we will save your data as well as the corresponding IP-address. At the end of every year, we will assess whether it will be necessary or whether we have obligations to save these data. Depending on the results of these assessments, the data will be saved or deleted.

Support

We are using a ticket-management system for support requests. This way, we can reply to support requests better, faster, and in a more organised manner.

The legal basis for data processing of registered members of these web pages is Article 6 paragraph 1 of the German data protection regulation (Art. 6 Abs. 1 lit. b) DSGVO). The legal basis for data processing of non-registered visitors is Art. 6 Abs. 1 lit. f) DSGVO. Our interest in this regard is replying to requests of users and visitors of this website.

Procedures within the ticket management system are deleted by us when it is not necessary to save them anymore. There are no rigid timelines because we regularly check older procedures and decide whether closed tickets can be deleted or not. The ticket-management system also serves as a basis for quality assurance, bug fixing, as well as the fulfilment of legal requirements. Therefore, these data will be saved as business correspondence for at least 10 years.

CRM

The three letters CRM stand for “Customer Relationship Management”.

We are not using a single system but a combination of several technologies for CRM.

We want to use these tools with caution because we do not want to do what is technically possible but rather utilise elements of CRM to a limited extent and in a well-balanced way to accomplish our services. We do not perform any profiling or intensive tracking.

 

Responsible Person within the terms of DSGVO:

Dr. Andreas Kluge, General Manager
ABX-CRO advanced pharmaceutical services Forschungsgesellschaft mbH
Schössergasse 19
01067 Dresden, Deutschland

HRB 21253, Amtsgericht Dresden

 

Receiving / Forwarding Data

Data we received from you will generally not forwarded to third parties. Specifically, data will not be forwarded to third parties for commercial purposes.

However, we utilise service providers for the operation of these web pages, or for e.g., e-mail services, where necessary. In these cases, it may be possible that personal data become known to a service provider. We select our service providers very carefully – especially with regard to data security and data protection – and we take all measures required by data protection laws for data processing.

 

Data Processing Outside the European Union

We generally do not process any data outside the European Union.

 

Data Protection Officer

Tel.: +49 351 79 593 513
E-Mail: Datenschutz[at]abx-cro.com

 

Your Personal Rights

You have the right to request information about your personal data. You can contact us anytime in this regard (Datenschutz@abx-cro.com).

If the request for information is not written, and/or cannot be verified in any other way, you will have to be aware that we may ask some additional questions. We have to make sure that you are the person you are claiming to be.

You also have the right to view or delete or to limit the processing of your data, as far as legally possible.

Finally, you also have the right of objection to processing of your data within the legal framework. Specifically, if you want to apply the right of objection to processing of your data based on our assessment of interests, you will have to be aware that we will carefully look into the matter. We have considered our assessment of interests very carefully, and will also request information with regard to the “special situation” as detailed in Article 21, Paragraph 1 of the DSGVO.

Of course, you also have a right to data transferability. This, too, is only possible within the scope of the applicable laws.

 

Deletion of Data

We generally delete personal data when data storage is no longer required. Further storage of data may be required when data are necessary to fulfil contractual services, or to assess warranty claims for approval or rejection. In case of legal data storage obligations, the deletion of data can only be performed after the end of the legally required storage period.

If a user-account is not active anymore, an assessment will be performed after max 12 months to evaluate whether the account can be deleted. The user account will not be deleted if the underlying contractual relationship has not completely expired.

 

Right of Appeal before a Supervisory Authority

You have the right to complain against the processing of personal data by us at a supervisory authority for data protection.

 

Updates to this Data Protection Notification

We update this data protection notification with every change to this website and with every occasion necessitating updates. You will always find an up-to-date version of this data protection notification on this website.

 

Status of 12-Mar-2021