The Data Controller is CELforPharma B.V., with registered offices in Jan Emiel Mommaertslaan 20A, 1831 Diegem, BELGIUM (“Controller”).
2) The data we process
The following data can be processed:
Special categories of personal data required for the delivery of high-quality services to our course delegates, such as allergy/dietary requirements (Article 9 of the GDPR). Where that occurs, processing is performed on the basis of the user’s consent at the moment of submitting the registration form. In any event, the legal basis for processing of particular categories of data is subject to the GDPR.
3) Why and how we process your personal data
Upon registration to a course, the Company will process and keep your data to enable you to benefit from our services as of the moment of registration up to completion of the course, and optimise the performance of our courses and services subsequently through statistical analysis.
Furthermore, with your optional consent, your personal and professional data (e.g. first name, last name, email address, company, job title, professional interests, etc.) may be used for institutional communications (including newsletters) or promotional activities (marketing) i.e., sending advertising material and/or commercial communications pertaining to the Company’s services to the contact details indicated using traditional contact methods (i.e. paper-based mail, telephone calls with operator, etc.) or automatic means (i.e. communications via Internet, fax, e -mail, text messaging, apps for mobile devices such as smartphones and tablets, social network accounts e.g. Facebook or Twitter, etc.).
All your data are processed using automatic and electronic instruments suitable to ensure full security and confidentiality.
4) Necessary processing and optional processing
The forms to be completed on this website require you to confer personal data which are strictly necessary to handle your communications and requests. Such Data are marked with an asterisk [*]. If you do not wish to confer them, we will not be able to handle your communication/request.
Conversely, forms may also provide the possibility to confer personal data which are not strictly necessary to handle your requests: providing such data is optional - failure to do so has no consequence.
5) Browsing data
6) Links to other websites
7) How we store data and for how long
In compliance with the GDPR, the computers and programmes used by the Company are set up in such a way to reduce the use of personal and identifying data to a minimum. Such data are processed only to the extent required to achieve the purposes indicated in this Policy, and will be stored for as long as strictly necessary for achievement of the specific purposes pursued - in any event, the criterion used to determine the storage period is based on compliance with time limits permitted by law and the principles of data minimisation, storage limitation or rational management of our records.
8) How we ensure your personal data’s security and quality
The Company endeavours to ensure security of the user’s personal data and comply with provisions on security provided by law to avoid data loss, illegitimate or unlawful uses of data or unauthorised access to data. The Company uses many types of advanced security technologies and procedures intended to aid protection of the user’s personal data; for example, personal data are stored on secure servers situated on premises with protected and controlled access. The user can assist the Company to update and correct their personal data by communicating any change of address, qualifications, contact information, etc.
9) Persons who have access to the data
Only staff members of the Company are authorised to access personal data for the performance of their job duties, and processing of data is only authorised to staff in specific functions, i.e. course delivery, account management, etc.
Without your consent, we shall not disclose any Data about you to any third parties, except to business partners (e.g. CELforPharma’s faculty members) and third-party suppliers (e.g. hotels where we organise our courses) we engage to provide services that involve processing data on our behalf. The mentioned recipients shall only receive the Data necessary for their respective functions and shall process them only for those purposes and in compliance with data protection laws.
The Data shall not be shared with third parties, whether legal or natural persons, who do not perform any function of a commercial, professional or technical nature for the Controller and shall not be disseminated. The parties who receive the Data shall perform processing as Data Controller, Processor or persons authorised to process personal data, as the case may be, for the purposes indicated above and in compliance with the applicable data protection law.
10) Your Rights
You may at any time exercise the rights afforded by the GDPR, including the right to obtain confirmation of the existence of personal data which relate to you, check its content, origin, correctness, location, request a copy, request correction and in cases provided by law, restriction of processing, deletion, oppose to direct contact activities, oppose to direct marketing (also limited to particular means of communication). Likewise, you may always withdraw consent and/or make observations on specific issues regarding processing operations of your personal data which you regard as incorrect or unjustified by your relationship with the Company, or lodge a complaint with the Data Protection Authority.