You may exercise, when appropriate, the data protection rights by sending a written communication to privacy@grifols.com and indicating as subject matter of the communication "ISTH Australia 2019". For these purposes, Grifols may request a copy of your ID card/passport in force or any other valid document evidencing your identity.
 
In addition, you may lodge a complaint with the Spanish Data Protection Authority (www.aepd.es) or with any other competent data protection authority.
 

Created on: [June] 2019

​Privacy Policy

  1. Who is the data controller?
 
The data controller of your personal data is Grifols International, S.A., with address for contact purposes at Avda. de la Generalitat 152, 08174 Sant Cugat del Vallés, Barcelona (Spain)  ("Grifols").
 
  1. Who is the data protection officer of Grifols and how can you contact him/her?
 
The data protection officer acts as an interlocutor between Grifols and you in order to ensure Grifols' compliance with the data protection legislation and guarantee your rights under such legislation. You may contact the data protection officer of Grifols at dpo@grifols.com.
 
  1. For which purposes does Grifols process the personal data?
 
Grifols processes the personal data of data subjects to:
 
  1. manage and control data subjects' registration and participation in the symposium, and
  2. send them by e-mail commercial information about products, services, activities and/or events related to Grifols' bioscience division.
 
  1. Which are the lawful bases to process the personal data?
The legal bases to process the personal data are:
  1. the consent expressed through the means available on the website.
  2. the legitimate interest of Grifols to share the personal data with the multichannel marketing team existing across Grifols' group companies.
Grifols considers that the legitimate interest in which the processing of the personal data is based overrides data subjects' interests and fundamental rights and freedoms, given that the personal data is processed as part of the daily activities of a multinational group of companies and for internal administrative purposes. In any case, you may exercise your right to object by addressing such request to privacy@grifols.com.
  1. How long does  Grifols retain the personal data?
If the data subject has provided its authorization to receive commercial information by e-mail regarding products, services, activities and/or events related to Grifols' bioscience division, Grifols processes the personal data until the data subject has not expressed its objection to the reception of said e-mail commercial communications. If the right to object is exercised, Grifols may keep the personal data for the purposes of identifying that the data subject does no longer want to receive said communications.
 
In any event, Grifols retains the personal data until the end of statutes of limitation of any liabilities that may arise and during the term required to comply with any applicable legal obligation.
  1. With whom does Grifols share the personal data?
In accordance with Section 4(b), Grifols may share the personal data with the multichannel marketing team existing across Grifols' group companies. If the personal data is accessed by Grifols' group companies based in countries that do not offer an adequate level of protection, Grifols will adopt, if required, appropriate safeguards on such international data transfers in accordance with applicable data protection legislation.
 
In addition, Grifols has contracted products and services from Salesforce that may entail that the personal data is processed from countries that do not offer an adequate level of protection. If so, Grifols and/or Salesforce (as the case may be) has adopted appropriate safeguards to ensure that the personal data is processed in accordance with the General Data Protection Regulation and any other applicable data protection law. Such safeguards are, among others, Privacy Shield (https://www.privacyshield.gov/participant?id=a2zt0000000KzLyAAK&status=Active), the execution of European Commission Standard Contractual Clauses and Salesforce Processor Binding Corporate Rules.
 
Moreover, Grifols may share the personal data with any other third party if required by applicable law.
 
  1. Which are your data protection rights?
 
Rights
 
Content
 
Access
 
You may request confirmation as to whether or not your personal data is being processed and, if so, you can obtain access to your personal data included in Grifols' files.
 
Rectification
 
You may request the rectification of your personal data if this is inaccurate.
 
Erasure
 
You may request that your personal data is erased.
 
Objection
 
You may request that your personal data is not processed in specific circumstances.
 
Portability
 
You may request receiving, in an electronic file, the personal data that you provided Grifols, as well as the right to transmit it to other parties.
 
Restriction of processing
 
You may request a restriction on how personal data is processed when:
 
 
  • the accuracy of your personal data is being verified after you have contested its accuracy.
  • processing of your personal data is unlawful and you oppose to its erasure.
  • Grifols does no longer need the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims.
  • you have objected to the processing for the performance of a task carried out in the public interest or necessary for the purposes of a legitimate interest, whilst it is being verified whether the legitimate grounds of Grifols override yours.
Withdraw of consent
 
You may withdraw your consent without affecting the lawfulness of processing based on consent before its withdrawal.