Privacy Policy
Welcome to the MediMark Europe website. We appreciate your interest in our company. Protection of the personal data you entrust to us is a priority and we want you to feel safe and secure when you visit our website or use our online offers.
In order to fulfill our information obligation towards our clients as per Art. 12, 13 of the General Data Protection Regulation (GDPR), we subsequently present you our information on data protection:
Who is responsible for data processing?
The responsible entity as per data privacy law isMediMark Europe11 rue Emile Zola.38100 Grenoble. Franceinfo@medimark-europe.com
Which data do we process? And for which purposes?If we have received data from you, we basically process them only for the purposes for which we have collected them.As a rule, these purposes are:Communication / assistance / Documentation of necessary records in order to make a contract proposal.Internal statistics.
The data are in general:Your master data (e.g. last name, first name, title, address form)Contact data (e.g. email address, phone number, mobile phone number)Product list with classificationDistributor listNotified Body
And other personal data you may provide to us in the course of our mutual (pre)contractual relation.Please note that we cannot enumerate all potential data. We do, however, collect only data which you actively provide to us, or which are publicly available.Data processing for other purposes is considered only if the required legal specifications according to Art. 6 Section 4 of the GDPR apply. In such a case, we will naturally fulfill possible information obligations according to Art. 13 Section 3 of the GDPR and Art. 14 Section 4 of the GDPR.
Which legal provisions is this based on?Data processing for the performance of a contract (Art. 6 Section 1 lit. b of the GDPR)Data processing based on the consideration of interests (Art. 6 Section 1 lit. f of the GDPR)Data protection for compliance with a legal obligation (Art. 6 Section 1 lit. c of the GDPR)If personal data is processed based on your consent, you have the right to withdraw your consent at any time, with effect for the future. You can send your withdrawal to the attention of our data protection officer mentioned further below.We base our legitimate interest on the communication with contract relevant contact persons, retention of records beyond possible retention times, in order to provide you a consistent documentation, on claims management, and on the possibility of direct advertising according to §7 Section 3 of the UWG as per Recital 47 of the GDPR; we have a legitimate interest in informing our clients about our products and services via communication channels. As the affected person, you have the right to object to the processing of your personal data for these purposes, taking into account the provisions of Art. 21 of the GDPR.
How long are the data stored?We process the data for as long as necessary for the respective purpose.If legal retention obligations apply – e.g. in commercial law or fiscal law – personal data are stored for the duration of the obligation. Once the retention period has elapsed, we will verify whether the necessity for processing persists. If it no longer applies, the data will be deleted.
To which recipients do we disclose data?In principle, we disclose your personal data to third parties (referred to as recipients) only if it is required for the performance of the mutual contract with you, if disclosure is permitted based on a consideration of interests as per Art. 6 Section 1 lit. f of the GDPR, if we are obliged to disclose them, or if you have given your consent.Such recipients are for example Internal Auditor, external certification bodies, French Competent Authority and IT service providers or software system companies for IT applications (e.g. external IT administrators) for MediMark Europe.
Within the scope of the requirements of the fiscal and commercial law, we may also disclose data to tax authorities.
Information on provision of personal dataIn order to process your inquiries, we are dependent on your information. When processing your inquiries, the processing of the personal data of the data subjects relates to a corresponding contractual relationship or to legal regulations.You do not necessarily have to provide us with data that is not required by a legal regulation and you can object to the processing. When collecting the data, we will draw your attention to which data is required.
Where do we process data?Your personal data is processed by us in data centers in the European Union and the General Data Protection Regulation therefore applies to processing. Since this is a European legal requirement, no data will be passed on to authorities outside the European Union.Manufacturers of the products may, however, be located outside the European Union. The data transfer is subject to Art. 49 Section 1 of the GDPR as an individual case.
Cookies used on our WebsiteWhen you enter our website, you may be asked by a banner for your consent to data processing through cookies. The consent refers to the listed cookies and represents a consent according to Art. 6 (1) lit. a GDPR.If you consent, this cookie is stored for 3 months.
Your rights as “data subject”You have the right to obtain information on the personal data processed by us, as per Art. 15 GDPR. If a request for information is not submitted in writing, please understand that we may request documentation proving your identity.Furthermore, you have the right of rectification, erasure or restriction of processing, whenever legally permitted according to Art. 16, 17 and 18 of the GDPR.Furthermore, you have the right of objection to processing within the scope of the legal provisions. The same applies to the right of data portability. In particular, you have the right of objection according to Art. 21 Section 1 and 2 of the GDPR against processing of your data in connection with Art. 6 Section 1 lit. f of the GDPR. You can file the objection informally to info@mdss.com.
Right of appealYou have the right to complain about the processing of your personal data by our company to a supervisory authority in charge of data protection..