PSI Data Protection Policy
Last revision of 25 November 2022
PSI CRO AG as a data controller (“PSI”, “we”), is responsible for the processing of your personal information (“personal data”) on this website. This Data Protection Policy describes how we collect information about individuals who visit our website and individuals whose information we may receive directly, from business partners and organizers of professional events.
If you would like to apply for a position at PSI, please read PSI Data Protection Notice for job applicants.
If you would like to know how PSI collects and uses personal data of the investigators and other members of study teams, please read PSI Data Protection Notice for healthcare professionals.
We do not knowingly attempt to solicit or receive personal information from children.
Our global data protection program is built to achieve compliance with the applicable data protection laws, including Regulation (EC) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and the Swiss Federal Act on Data Protection.
If you are a US resident living in the State of California, please also read PSI Privacy Notice for California Residents.
CONTACTING OUR DATA PROTECTION OFFICER
PSI has appointed an internal Data Protection Officer (DPO) whom you can contact in case you have questions about our data use practices. Please send your enquiry to email@example.com or write to us at
PSI CRO AG
Data Protection Officer
FOR WHICH PURPOSES AND WHICH OF YOUR PERSONAL DATA DO WE PROCESS?
Navigation through our website does not require any form of registration. However, if you subscribe to newsletters, contact us for additional information or reach out to us with other enquiry through this website, to fulfill your enquiry, we will need to collect some of your personal data, at least your name, and e-mail address. We shall as well receive the information that you decide to share within your message to PSI. Please make sure that you do not disclose the personal information of other individuals without their awareness.
PSI may also receive your business-related personal data at the time of conferences and exhibitions organized by professional communities related to clinical trials and pharmaceutics, other professional events, and customer meetings, etc. In such cases we envisage that you may give your data to PSI directly, as well as PSI may obtain and be provided with your information. As a rule these would be business contact information. We deem you aware of such possible distribution of your personal data in the business and professional context.
You can manage your cookie preferences. For more information, please review our Cookie Notice.
WHAT ARE THE LEGAL BASES FOR PROCESSING YOUR PERSONAL DATA?
When we collect and use your personal data, we may rely on one or several of the following legal bases.
- Our responsibility to comply with legal obligations by the applicable law, or requests from public, national, and foreign government authorities, etc.
- Our legitimate interest to ensure information security and website availability, enable business communication with customers and partners, provide online service, navigation and functionality, improve our internal business processes, etc.
- Your consent when you gave us such, for example via checking a box to confirm your request for news subscription, etc.
WITH WHOM DO WE SHARE YOUR PERSONAL DATA?
The personal data that PSI obtains via this website will be available to PSI staff members responsible for its maintenance and administration, as well as PSI’s team responding to your enquiry. In addition, PSI may need to share personal data with its business partners and third-party suppliers. Under some circumstances, PSI may be required to release personal data to law enforcement agencies or judicial authorities.
PSI will not trade or sell any of your personal information. Unless permitted or required by law, we will not share or transfer your personal information to any business outside PSI without notifying you accordingly.
PSI is a global company with affiliates worldwide. Doing international business, PSI has partners and third-party suppliers located in different countries. This means that personal data collected and used by PSI may be transferred from your home country to other countries around the world.
When the recipients of your data are located abroad, information about you will need to be sent or/and accessed from abroad, including to/from countries where the personal data protection laws may be less strict as compared to your home country. However, PSI takes appropriate steps to protect your personal data.
HOW DO WE PROTECT PERSONAL DATA?
PSI makes reasonable efforts to ensure that these PSI staff and external recipients commit to protect your personal information to the same level as PSI does, regardless of their location. Such efforts include technical and organizational measures, as well as certain contractual protections to safeguard your personal information. You can ask PSI to tell you more about these safeguards, including a review of any applicable protective measures.
PSI employs reasonable organizational and technical safeguards to protect personal information in its possession from loss, misuse and unauthorized access, disclosure, alteration, and destruction.
CAN THIRD PARTIES AND LINKED THIRD PARTIES’ WEBSITES ACCESS YOUR PERSONAL DATA?
We use interfaces with social media platforms such as Facebook, LinkedIn, Twitter, and others. If you have an account with these social media sites, they may make a connection between your visit to PSI’s website and your personal data. We recommend that you review their privacy policies to know more about their data processing practices.
FOR HOW LONG DO WE KEEP PERSONAL DATA?
We shall retain personal data for no longer than is necessary to follow our standard procedures, to reach our commercial goals with the consideration of your rights and our business interests, and to fulfill our obligations by laws, contracts and any regulations that may apply to PSI’s business activities. In some cases, we may envisage removal of personal data earlier than our procedures and practices require. For example, if we receive a data erasure request from an individual whose data we process.
Main data storage location of PSI is in Switzerland. PSI engages a Swiss data storage centre that provides the infrastructure and ensures secure data retention.
YOUR RIGHTS REGARDING CONTROL OF YOUR PERSONAL DATA AND HOW YOU CAN EXERCISE YOUR RIGHTS
You have the right to request access to, rectification or erasure of your personal data, restriction of processing, as well as object to processing in some cases. You can also request a digital copy of the personal data that you provided to PSI. In case you have given to PSI your consent to data processing, you have the right to withdraw your consent and stop data processing.
If you are based in the EU, you have the right to lodge a complaint to the supervisory authority. You will find your national data protection authorities and their contact details following this link. If the national data protection authority is not on the list, please reach out to PSI DPO to ask about the appropriate point of reference in your country.
If you are a resident of the USA and State of California, please check the rights available to you in PSI Privacy Notice for California Residents.
HOW DO WE NOTIFY YOU ABOUT THE REVISIONS TO THIS POLICY?
PSI reserves the right to modify this Policy as needed to reflect changes in laws, PSI practices and procedures, or requirements imposed by data protection authorities. Please check back periodically for updates to this Policy.
Copies of this Policy may be printed from www.psi-cro.com.