Privacy

Patientin ohne Nagelpilz

Privacy

  1. Startseite
  2. Privacy

Galderma Laboratorium GmbH

Toulouser Allee 23a

40211 Düsseldorf, Germany

Phone: +49 (0) 211 – 586 01-00

Fax: +49 (0) 211 – 586 01-01

Web: www.galderma.de

Managing directors: Marion Bock, Can Ongen, Jacques Bodevin

 

In this privacy statement, we will explain which personal data we collect from your usage of our website, how and for what purpose this data is collected, processed and used, and what your rights are.

 

1. Name and address of the controller

The controller as defined by the General Data Protection Regulation (GDPR) is

 

Galderma Laboratorium GmbH

Toulouser Allee 23a

40211 Düsseldorf, Germany

Phone: +49 (0) 211-58601-00

Fax: +49 (0) 211-58601-01

Email: kundenservice@galderma.com

 

2. Contact details of the data protection officer

You can reach our data protection officer at: Datenschutzbeauftragter der Galderma Laboratorium GmbH, Georg-Glock-Str. 8, 40474 Düsseldorf, Germany, or datenschutzbeauftragter@galderma.com.

 

3. Scope of personal data processing

3.1 Processing of personal data

The use of our website is generally possible without the need to provide any personal data (for example name, address or email address). To the extent that personal data is collected on our pages, this only occurs if processing of the data is permitted by statutory regulations or the user has agreed to the processing. This data is not transmitted to third parties without your express consent.

3.2 Provision of the website and creation of log files

For technical reasons, your computer transmits information to us every time our website is accessed. As part of this, the following data is collected:

 

(1) Information about the browser type and version used

(2) The user’s operating system

(3) The user’s internet service provider

(4) The user’s IP address

(5) Date and time of access

(6) Websites from which the user accessed our website

(7) Files that the user’s system accessed on our website

(8) Content of the request (specific page)

(9) Access status/HTTP status code

(10) Data volume transmitted

 

This data is stored in the log files of our system. This data is not stored together with other personal data of the user. The only exception to this is for the purposes of tracing any unauthorised access to our website. In all other cases, we generally do not use personally identifiable data and only use it on an anonymised basis to evaluate which of our webpages are favoured, how many times they are accessed per day and similar statistics.

 

3.2.1 Purpose of data processing

Log files are stored to ensure the functionality of the website. In addition to this, the data is used for optimisation of the website and ensuring the security of our information technology systems. These purposes also comprise a legitimate interest for data processing in accordance with Art. 6 (1) lit. f of the GDPR.

 

3.2.2 Legal basis for data processing

The legal basis for the described storage of data and log files is Art. 6 (1) lit. f) of the EU General Data Protection Regulation (GDPR). This statutory regulation permits the processing of personal data within the scope of a “legitimate interest” of the controller, provided that the fundamental rights and freedoms and interests of the data subject are not overriding (Art. 6 (1) lit. f) of the GDPR). The aforementioned purposes comprise our legitimate interest.

 

3.2.3 Duration of the storage

The data is deleted when it is no longer required for the purpose it was collected for. In the case of data collection for the provision of the website, this is the case when the respective session has ended. In the case of data storage in log files this is at the latest seven days after the session. Further storage is possible. In this case, the users’ IP addresses are deleted or anonymised, so that attribution of the requesting client is no longer possible.

 

3.2.4 Objection and removal options

The collection of data for the provision of the website, and the storage of data in log files is essential for operating the website. There is no option for the user to object to this.

 

3.3 Usage of cookies

Our website uses “cookies” in several instances. They serve to make our offer more user-friendly and effective. Cookies are small text files that are stored on your computer and saved by your browser. The cookies do not contain any personal data. This data is not combined with other data sources.

 

Most of the cookies we use are "session cookies”, which are deleted at the end of your browser session. These only contain a transaction ID.

 

In addition to this, there are some “persistent” cookies, which are used to recognise you, for example, as a returning visitor, and which enable us to analyse the browsing activities of users. The following data is stored and transmitted in these cookies:

 

          (1) Frequency of site visits

          (2) Use of site features

 

The personal data collected about the user in this manner is anonymised by technical means. This means that is impossible to correlate the data with the accessing user. This data is not stored together with other personal data of the user. Upon accessing our website, an information banner informs visitors of the usage of cookies for analysis purposes and refers to this privacy statement. In connection with this, there is also information about how the storage of cookies can be prevented in the browser settings. In connection with this, there is also information about how the storage of cookies can be prevented in the browser settings.

 

3.3.1 Purpose of data processing

The purpose of using technically required cookies is to make usage of our website easier for visitors. A number of functions on our website cannot be offered without the use of cookies. In these cases, the browser needs to be recognised even when the user moves to a different page.

 

The use of analysis cookies serves the purpose of letting us improve the quality of our website and its content. The analysis cookies tell us how the website is used, allowing us to continuously optimise our offer.

 

3.3.2 Legal basis for data processing

The legal basis for the processing of personal data through usage of cookies is Art. 6 (1) lit. f of the GDPR. The aforementioned purposes comprise our legitimate interest.

 

3.3.3 Duration of the storage, objection and removal options

Session cookies are deleted once your browser session ends. They are required for transactions and only contain a transaction ID. Analysis cookies, on the other hand, remain on your computer. Cookies do not cause damage to your computer and they do not contain viruses. You have the possibility of setting up you browser in such a way that cookies are either not stored at all or that they are deleted at the end of your Internet session. However, please note that this may mean that you cannot use all the functions of our website.

 

3.4 Analysis tools

We use the following tools on our website to analyse the browsing behaviour of our users. To do this, cookies are placed on the user’s computer (see above for information about cookies).

 

3.4.1 Google Analytics

This website uses Google Analytics, a web analysis service by Google Inc. (“Google”). Google Analytics uses “cookies”, i.e., text files which are stored on your computer and which allow an analysis of your use of the website. The information generated by the cookies about your use of this website is usually transmitted to a Google server in the U.S. where the information is stored. Please note that the code "gat._anonymizeIp();" has been added for Google Analytics on this website to guarantee anonymised collection of IP addresses (IP masking). This means that Google truncates your IP address within the member states of the European Union or in other member states of the Agreement on the European Economic Area. Only in exceptional cases is a full IP address transmitted to a Google server in the United States and truncated there.

 

3.4.1.1. Purpose of data processing

On behalf of the operator of this website, Google will use this information to analyse how you use the website, to compile reports about the website activities and provide the website operator with further services linked to the use of the website and the Internet. The IP address transmitted from your browser as part of Google Analytics will not be linked to other data from Google. In addition to the purposes outlined above, the information provided by the user can be used in accordance with the applicable Google privacy policy. Google may publish aggregate statistics on the +1 activities of the users and distribute these findings to users and partners such as publishers, advertisers or affiliated websites.

 

3.4.1.2 Legal basis for data processing

The purposes described are comprise our legitimate interest for data processing in accordance with Art. 6 (1) lit. f of the GDPR. Anonymisation of the IP address sufficiently takes into account the interests of the user in the protection of their personal data.

 

3.4.1.3 Duration of the storage, objection and removal options

This applies to analysis cookies, which are persistently stored in your browser. You can prevent the storage of these cookies by activating the relevant setting in your browser software. However, please note that if you do so, you may not be able to fully use all the functions of this website. In addition, you can prevent the transmission of the data generated by the cookie and relating to your use of the website (incl. your IP address) to Google as well as the processing of these data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en

 

3.4.2 Google Tag Manager

This website uses Google Tag Manager. Google Tag Manager is a solution provided by Google Inc., which allows companies to manage website tags via an interface. Google Tag Manager is a cookie-free domain that does not collect any personal data. Google Tag Manager triggers other tags, which in turn may collect data. This fact is referred to separately. Google Tag Manager does not access this data. To the extent that deactivation has been performed on a domain or cookie level, this applies to all tracking tags that are implemented with Google Tag Manager.

 

4. Recipient of personal data

The personal data collected as part of using our website is generally not transmitted to third parties or transmitted in any other manner. An exception to this is the transmission of personal data to government institutions and authorities, as well as private holders of rights, on the basis of statutory provisions or judicial or official rulings, as well as the disclosure to government institutions and authorities in the case of offences against our legally protected interests, for the purposes of legal or criminal prosecution.

 

The technical storage and processing of the data occurs on the servers of our external service provider (data processor in accordance with Art. 28 of the GDPR) Page provided [please state]. This processor is contractually obliged to comply with the applicable statutory requirements regarding data protection and data security. They are not considered a third party in terms of data protection law.

 

5. Data security

The personal data we collect and store is treated confidentially and protected with appropriate technical and organisational measures against loss, modification and unauthorised access by third parties. Please note that data transmission via the Internet (e.g. communication by email) may be subject to security risks. It is not possible to protect such data completely against access by third parties.

 

6. Your rights

If the statutory conditions are met, you have the right to access the personal data about you or obtain information about how this data is processed (Sec. 34 of the German Data Protection Act (BDSG) or Art. 15 of the GDPR), the right to rectification, erasure or restriction of personal data about you or the processing of this data (Sec. 35 of the BDSG or Art. 16 to 18 of the GDPR) and the right to receive the personal data concerning you (Art. 20 of the GDPR).

 

If statutory conditions are met, you also have the right, in accordance with Art. 21 of the GDPR, to object to the processing of your data based on a “legitimate interest” of the controller in accordance with Art. 6 (1) lit. f) of the GDPR.

 

You can at any time revoke consent given for the processing of your personal data, either in whole or in part, with future effect.

 

To exercise these rights, please contact us via the email address datenschutzbeauftragter@galderma.com or by post at Galderma Laboratorium GmbH, Georg-Glock-Str. 8, 40474 Düsseldorf, Germany.

 

7. Right to lodge a complaint with the supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes this data protection law.

 

The state representative for data protection and freedom of information in North Rhine-Westphalia:

 

Kavalleriestrasse 2–4

40213 Düsseldorf, Germany