Privacy policy

Contents

1. Objectives and office responsible

2. Basic information on data processing

3. Processing of personal data

4. Collection of access data

5. Cookies & reach measurement

6. Google Analytics

7. Google (re)marketing services

8. Newsletter

9. Integration of third party services and contents

10. User rights and deletion

11. Changes to the data protection declaration

 

1. Objectives and office responsible

This data protection declaration clarifies the type, scope and purpose of processing (for example collecting, processing and using as well as obtaining consents) of personal data within our online offering and the associated websites, functions and content (together referred to below as “online offering” or “website”). The data protection declaration applies irrespective of the domains, systems, platforms and devices used (e.g. desktop or mobile) on which the online offering is displayed.

The provider of the online offering and the office responsible for data protection is Marinomed Biotech AG, owner: Dr. Andreas Grassauer, Veterinärplatz 1, 1210 Vienna, Austria (referred to below as “provider”, “we” or “us”). Please address any questions regarding data protection to office@marinomed.com.

The term “user” encompasses all customers of and visitors to our online offering. The terms such as “user” employed should be understood as gender-neutral.

2. Basic information on data processing

We exclusively process users’ personal data in compliance with the relevant data protection provisions in line with the need to save and avoid data. This means that users’ data will only be processed if there is legal permission to do so, especially if the data are required for us to perform our contractual services and our online service, or are legally prescribed, or if consent has been provided.

We take up-to-date organizational, contractual and technical security measures to ensure compliance with the provisions of data protection legislation and to ensure that the data we process are protected against accidental or deliberate manipulation, loss, destruction or against access by unauthorized persons.

If within the scope of this data protection declaration content, tools or other resources of other providers (together referred to below as “third party providers”) are deployed and their registered office is located abroad, it can be assumed that a data transfer will take place to the countries in which the third party providers are located. The transmission of data to third party nations will take place on the basis of legal permission, users’ consent or specific contractual clauses ensuring that the legally required level of data security is met.

3. Processing of personal data

Alongside the use expressly stipulated in this data protection declaration, the personal data will be processed for the following purposes on the basis of statutory permissions or users’ consent:

– the provision, running, maintenance, optimization and backing up of our services and user services;

– ensuring effective customer service and technical support.

We only transmit users’ data to third parties if this is necessary for billing purposes (e.g. to a payment services provider) or for other purposes if these are required for us to meet our contractual obligations to the users (e.g. communicating addresses to suppliers).

When users contact us (via a contact form or e-mail), users’ data will be stored for the purpose of processing the inquiry and in case follow-up queries arise.

Personal data will be deleted if they have fulfilled their usage purpose and there are no retention obligations that would prevent their deletion.

4. Collection of access data

We collect data on every instance of access to the server on which this service is located in the form of server log files. The access data include the name of the website accessed, the file, the date and time of the access, the data volume transmitted, the notification of successful access, browser type including version, the user’s operating system, the referrer URL (i.e. the site visited beforehand), the IP address and the provider making the request.

In accordance with the statutory provisions, we use the log data without assigning them to individual users or compiling any other profile solely for statistical evaluations for operational purposes and to secure and optimize our online offering. However, we reserve the right to subsequently review log data if – on the basis of concrete indications – there is a justified suspicion of unlawful usage.

5. Cookies & reach measurement

Cookies are files containing information transferred from our web server or web servers of third parties to the users’ web browsers, where they are stored for access at a later point in time. Users are informed within the scope of this data protection declaration about the use of cookies as part of pseudonymized reach measurement.

This online offering can also be viewed if cookies are turned off. If users do not wish cookies to be stored on their computers, they are asked to disable the corresponding option in their browser’s system settings. Stored cookies can be deleted in the browser’s system settings. Disabling cookies may result in certain functions of this online offering being restricted.

Users can manage many online corporate advertising cookies via the following US http://www.aboutads.info/choices or EU site http://www.youronlinechoices.com/uk/your-ad-choices/ websites.

6. Google Analytics

We use Google Analytics, a web analysis service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google uses cookies. The information generated by the cookies on usage of the online offering by users is generally transmitted to a Google server in the US, where it is stored.

Google will use this information on our behalf to evaluate usage of our online offering by users, to compile reports on activities within this online offering and to perform other services for us associated with use of this online offering and the internet. Pseudonymized usage profiles of users can be generated from the data processed.

We only use Google Analytics with activated IP anonymization. This means that a user’s IP address is truncated by Google within member states of the European Union or in other states which are signatories to the EEA (European Economic Area) Agreement. The full IP address will only be transmitted to a Google server in the US and truncated in the US in exceptional cases.

Google does not combine the IP address transmitted by the user’s browser with other data. Users can prevent cookies being stored by making a corresponding setting in their browser software; on top of this, users can prevent the data generated by the cookie relating to their use of the online offering from being sent to Google and prevent the processing of these data by Google by downloading and installing the browser plugin available via the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

You can also prevent tracking by Google Analytics by clicking on the following link and following the instructions provided to set an opt-out cookie which will stop your data from being tracked on your subsequent visits to this website.

https://tools.google.com/dlpage/gaoptout?hl=de

For more information on conditions of use and data protection, please visit http://www.google.com/analytics/terms/de.html or https://www.google.de/intl/de/policies/.

7. Google (re)marketing services

We use Google’s marketing and remarketing services (short form: Google marketing services). The Google marketing services enable us to display targeted advertisements for and on our website in order to only show users adverts that may potentially be aligned with their interests. If, for example, users are shown adverts for products in which they have demonstrated an interest on other websites, this is referred to as “remarketing”. For this purpose, when our website and other websites on which Google marketing services are running are opened, a Google code will immediately be executed by Google and (re)marketing tags – invisible graphics or code, also known as web beacons – will be integrated into the website. These tags are used to store an individual cookie – i.e. a small file – on the user’s device. Comparable technologies may also be used instead of cookies. The cookies may be set by various domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. This file records which websites users visit, what content interests them and which offerings they have clicked on, as well as technical information on the browser and operating system, linked websites, time spent and other information on use of the online offering. The users’ IP address is also recorded, but within the scope of Google Analytics we also indicate that within member states of the European Union or in other states which are signatories to the EEA (European Economic Area) Agreement, the IP address will be truncated. Only in exceptional cases will the full IP address be transmitted to a Google server in the US and truncated there. The IP address will not be combined with the user’s data within other Google offerings. The information detailed above can also be combined with such information from other sources. If users subsequently visit other websites, they may be shown adverts tailored to them in line with their interests.

Users’ data are processed in pseudonymized form within the scope of Google marketing services. This means, for example, that Google does not save and process the users’ name or e-mail address, but instead processes the relevant data based on cookies within pseudonymized user profiles. From Google’s perspective, as a result the adverts are not managed and displayed for a specifically identified person, but instead for the cookie owner, irrespective of who this cookie owner is. This does not apply if a user has expressly authorized Google to process his or her data without pseudonymization. The information collected about users by DoubleClick is transmitted to Google and stored on Google’s servers in the US.

The Google AdWords online advertising program is one of the Google marketing services we use. Every Google AdWords customer is given a different conversion cookie. This means that cookies cannot be tracked via the websites of AdWords customers. The information obtained via the cookie is used to prepare conversion statistics for AdWords customers who have opted for conversion tracking. The AdWords customers find out the total number of users who have clicked on their advert and were directed to a site featuring a conversion tracking tag. However, they are not given any information that could be used to personally identify users.

We incorporate third party adverts based on Google’s DoubleClick marketing service. DoubleClick uses cookies which enable Google and its partner websites to place adverts based on users’ visits to this website and/or other websites on the internet.

We also incorporate third party adverts based on Google’s AdSense marketing service. AdSense uses cookies which enable Google and its partner websites to place adverts based on users’ visits to this website and/or other websites on the internet.

Another Google marketing service we use is Google Tag Manager, which enables other Google analysis and marketing services to be integrated into our website such as AdWords, DoubleClick or Google Analytics.

For further information on data usage for marketing purposes, please see our overview page: https://www.google.com/policies/technologies/ads; Google’s data protection declaration can be viewed at https://www.google.com/policies/privacy

If you wish to object to tracking by Google marketing services, you can make use of the setting and opt-out options provided by Google: http://www.google.com/ads/preferences.

8. Newsletter

We send newsletters, e-mails and other electronic notifications with advertising information (referred to below as “newsletters”) only with the recipients’ consent (Art 6 (1a) EU General Data Protection Regulation/GDPR) or on the basis of legitimate interests (Art 6 (1f) GDPR). You may object to data processing for advertising purposes based on legitimate interests at any time; to do so please contact office@marinomed.com or click on the link at the end of every newsletter.

Registration details: All you need to do to sign up for the newsletter is to provide your e-mail address.

Statistical collection and analyses: The newsletters include a web beacon, i.e. a pixel-sized file that is accessed by the dispatching service provider’s server when the newsletter is opened. As part of this retrieval process, to begin with technical information such as details of your browser and your system as well as your IP address and the time of access is collected, This information is used solely for the purpose of technically improving the service based on the technical data or the target groups and their reading behavior as determined by the places in which they open the newsletter (which can be determined using the IP address) or the access times. The statistical surveys also include identifying whether the newsletters are opened, when they are opened and the links on which users click. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our aim – nor that of the dispatching service provider – to monitor individual users. Instead, we use the analyses to identify our users’ reading habits and to adapt our content to them or to send different content in line with our users’ interests.

9. Integration of third party services and content

Content or services of third parties such as city maps or fonts of other websites may be integrated into our online offering. The integration of third party content always requires the third parties to detect a user’s IP address as they could not send the content to the users’ browser without this address. The IP address is therefore necessary for this content to be displayed. Furthermore, the providers of third party content may set their own cookies and process users’ data for their own purposes. Users’ usage profiles can be generated from the data processed. We will use this content in a way that saves and avoids data as far as possible and select third party providers which are reliable in respect of data security.

The following description offers an overview of third party providers and their content, including links to their data protection declarations which contain further information on data processing as well as opt-out options, some of which have already been mentioned in this document.

10. User rights and deletion of data

Users have the right, upon request, to obtain – free of charge – information on the personal data that we have stored on them.

In addition, users have the right to have inaccurate data corrected, consents revoked, their personal data blocked and deleted and the right – if they suspect that data has been processed illegally – to submit a complaint to the competent regulatory authority.

The data stored with us will be deleted as soon as they are no longer required for the purpose for which they were obtained and provided that there are no statutory retention obligations which would prohibit deletion.

11. Changes to the data protection declaration

We reserve the right to change the data protection declaration in order to adapt it to changes in legal circumstances or in the event of changes to the service or to the data processing. However, this only applies to declarations on data processing. If user consent is required or components of the data protection declaration include provisions of the contractual agreement with the users, the changes will only be made subject to the users’ approval.

Users are asked to inform themselves about the content of the data protection declaration at regular intervals.

As at May 23, 2018 23:02