This privacy notice (this “Notice”) applies to all data subjects whose personal data is collected, in line with the requirements of the General Data
Protection Regulation as of May 25, 2018 ("GDPR").
2.1 The Data Protection Officer is responsible for ensuring that this Notice is made available to data subjects prior to the collection and/or
processing of such data subject’s personal data by Samsung Bioepis Co., Ltd. ("Samsung Bioepis" or “we”)
2.2 All Employees/Staff of Samsung Bioepis who interact with data subjects are responsible for ensuring that this Notice is drawn to the
data subject’s attention and their consent to the processing of their data is secured.
3.1 The name and the contact details of the Controller/Data Protection Officer/Data Protection Representative, and categories of
personal data processed
Samsung Bioepis is the Data Controller and a biopharmaceutical company focused on increasing patient access to high-quality medicines
through the development of biosimilars.
The contact details of our Data Protection Officer/Data Protection Representative have been changed as follows :
Contact Samsung Bioepis’ Data Protection Officer:
Data Protection Representative:
We may collect and/or process personal data, as follows:
The personal data we collect will be used for following purposes:
The legal basis for the processing of the personal data shall be where:
Samsung Bioepis may pass on your personal data to third parties. The third parties are as follows:
Samsung Bioepis will process and store the personal data for as long as required under the applicable laws or the duration written on the informed consent form when collecting your consent.
At any point while we are in possession of or processing your personal data, you, the data subject, have the following rights:
In the event that you wish to make a complaint about how your personal data is being processed by Samsung Bioepis (or third parties as described in 3.4 above), or how your complaint has been handled, you have the right to lodge a complaint directly with the lead supervisory authority and the Data Protection Officer described in Section 3.1. The lead supervisory authority is CNIL (Commission Nationale de l'Informatique et des Libertés), full contact details for which can be found at https://www.cnil.fr/en/contact-cnil. You may also complain to local supervisory authorities, contact details for which can be found at https://edpb.europa.eu/about-edpb/board/members_en.
For clarity, the provision of personal data is partly required by law (e.g. clinical trials regulations) or can also result from contractual provisions (e.g. information on the contractual partner). Sometimes it may be necessary to conclude a contract that the data subject provides us with personal data, which must subsequently be processed by us. The data subject is, for example, obliged to provide us with personal data when our company signs a contract with him or her. The non-provision of the personal data would have the consequence that the contract with the data subject could not be concluded.
This Notice is subject to change from time to time. Any changes will be effective immediately upon the posting of the revised Privacy Notice.