Privacy Notice according to GDPR

We value our ability to provide you with information through our interactions with you, whether they are face to face interactions, via telephone, through our websites or one of the other ways you can choose to interact with us.

This Privacy Notice explains how HEUMANN collects, uses, and shares personal information that you provide to us, or that we may otherwise obtain or generate, which relates to you. Please take a moment to review this Privacy Notice and, if you have any questions, feel free to get in touch via one of the methods set out below.

Please note that the English version of this website is intended for English speaking visitors outside of Germany and the German version is intended for visitors from Germany. The German language version has additional features and offers services that are not available to the English version of the website. Those additional features and services and their implications on the data we process are described in the German Privacy Notice only.

This Privacy Notice defines the following:

I.          Name and address of the responsible party

II.         Name and address of the Data Protection Officer

III.        General information on data processing

IV.        Logfiles

V.         Cookie Policy

VI.        Contact form and email contact

VII.       Data Subject Rights

All personal data is being processed according to German and European laws.

I. Name and address of the responsible party

Heumann Pharma GmbH & Co. Generica KG

Südwestpark 50
90449 Nuremberg

Germany

Phone: +49 0911 4302-0

E-Mail: info@heumann.de

Website: www.heumann.de

II. Name and address of the Data Protection Officer

The responsible party’s Data Protection Officer is:

TÜV Rheinland i-sec GmbH
E-Mail: datenschutz@heumann.de
or:

Heumann Pharma GmbH & Co. Generica KG
c/o Data Protection Officer 
Südwestpark 50
90449 Nuremberg
Germany
Website: www.heumann.de

III. General information on data processing

We only collect, process and use personal data about the use of our webpages (usage data) insofar as is necessary to enable the user to use or website or our services. Legal retention requirements remain unaffected.

IV. Logfiles

1. Description and scope of data processing

Every time the pages of HEUMANN are accessed usage data are transmitted by the respective browser and saved in server log files. The data records saved in the process contain the following data:

1.      product and version information for the browser

2.      name of retrieved page

3.      IP address

4.      referrer URL (URL from which you arrived at the webpages)

5.      date and time of retrieval

6.      transferred data volume

These data are not merged with other data sources and cannot be attributed to individual persons.

These data are not merged with other data sources. Collection of these data takes place on the basis of Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in technically error-free display and optimization of the website. The server log files must be obtained for this purpose.

2. Legal basis for data processing

Collection of these data takes place on the basis of Art. 6(1)(f) of the GDPR.

3. Purpose of data processing

The temporary collection of the IP address by the system is necessary to display the website technically error-free. Therefore, the website saves the IP address for the duration of the session. Collection of these data takes place on the basis of Art. 6(1)(f) of the GDPR.

V. Cookie Policy

a) Description and scope of the data processing

The webpages use so-called cookies in part. Cookies do not harm your computer and do not contain any viruses. Cookies serve to make our offering more user-friendly, effective and secure. Cookies are small text files that are placed on your computer and saved by your browser.

Most of the cookies we use are ‘session cookies’. These cookies are automatically deleted after your visit. Other cookies remain stored on your device until you delete them. These cookies allow us to recognize your browser the next time you visit. You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, refuse cookies in specific cases or in general, or activate automatic deletion of cookies when you close the browser. If you disable cookies, you may not be able to use all the features of our website.

Google Analytics

This website uses features of the Google Analytics web analysis service. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Analytics uses so-called cookies. These are text files saved on your computer to enable analysis of your use of the website. The information on your use of this website generated by the cookie is usually transferred to and saved on a Google server in the US.

Saving of Google Analytics cookies and use of this analysis tool take place on the basis of Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize the website.

IP anonymization

We use Google Analytics solely with activated IP anonymization. This means that users’ IP addresses are truncated by Google within the Member States of the European Union or other contracting parties to the European Economic Area prior to being transmitted to the US. Through this, your IP address is truncated by Google within the Member States of the European Union or other contracting parties to the European Economic Area prior to being transmitted to the US. Only in exceptional cases is the complete IP address transmitted to a Google server in the US and truncated there. Google uses this information on behalf of the operator of this website to evaluate your use of the website in order to compile reports about the website activities and to provide additional services related to use of the website and the internet to the website operator. The IP address transmitted by your browser within the scope of Google Analytics is not merged with other data by Google.

Browser Plugin

You can prevent the storage of cookies by making the appropriate setting in your browser; however, in this case, you may not be able to use the full functionality of this website. You can also prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) for Google as well as the processing of these data by Google by downloading and installing the browser plugin available under the following link:

tools.google.com/dlpage/gaoptout

Objection to data collection

You can prevent the collection of your data by Google Analytics by clicking on the following link which causes an opt-out cookie that prevents the collection of your data upon future visits to this website to be set:

Deactivate Google Analytics

More information on the handling of user data by Google Analytics can be found here: support.google.com/analytics/answer/6004245

Contract data processing

We have concluded a contract for data processing with Google and fully comply with the strict requirements of the German data protection authorities in the use of Google Analytics.

b) Legal basis for the data processing

Cookies necessary for carrying out the electronic communication process or for preparing certain functions desired by you (e.g. log-in-Information) are saved on the basis of Art. 6(1)(f) of the GDPR. Saving of Google Analytics cookies and use of this analysis tool take place on the basis of Art. 6(1)(f) of the GDPR.

c) Purpose of data processing

The website operator has a legitimate interest in saving cookies for technically error-free and optimized provision of services. The website operator also has a legitimate interest in analyzing user behavior to optimize the website.

VI. Contact form and email contact

1. Description and scope of data processing

You can use a contact form to contact us electronically. If you do so, your information from this contact form including the contact data provided by you there is saved by us. This data includes:

1.      Gender

2.      Title

3.      First name

4.      Last name

5.      Email- Address

6.      Message

Additionally, we save this information when sending the message:

1.      IP-Address

2.      Date and time

Before processing your data, we have referred to our privacy policy and obtained your consent.

Alternatively, you can contact us via the provided email addresses. In this case the personal data that is transferred along with the email is obtained and saved by us.

We do not pass on these data to third parties. All data is solely used to process the conversation.

2. Legal basis for data processing

Processing of the data entered in the contact form hence takes place solely on the basis of your consent (Art. 6(1)(a) of the GDPR).

Processing of the data sent along with an email takes place on the basis of your consent (Art. 6(1)(f) of the GDPR).

3. Purpose of data processing

The purpose is to process your inquiry and to contact you for follow up questions. We may also use it, to prevent abusive behavior of the contact form.

4. Duration

We save your data for as long as it is required to fulfill the purpose or for as long as we are legally obliged to do so.

5. Withdrawal of consent

You can withdraw this consent at any time. To do so just send a formless message to datenschutz@heumann.de. The lawfulness of the data processing operations carried out up to the time of withdrawal remains unaffected by the withdrawal. The data entered in the contact form by you remain with us until you request us to delete them, you withdraw your consent to storage or the purpose for saving the data becomes invalid (e.g. after your enquiry has been processed). Mandatory legal provisions – in particular pertaining to retention periods – remain unaffected.

VII.  Data Subject Rights:

The right to be informed

You have the right to be informed what data is processed, why, and who else the data may be passed to.

The right of access

You have the right to see what data is held about you.

The right to rectification

You can ask for your data to be corrected or amended if what is held is incorrect in some way.

The right to restrict processing

You can ask for a temporary halt to processing of personal data, such as in the case where a dispute or legal case has to be concluded, or the data is being corrected.

The right to erasure

You can ask for your personal data to be deleted under certain circumstances. This would apply if the personal data is no longer required for the purposes it was collected for, or your consent for the processing of that data has been withdrawn, or the personal data has been unlawfully processed.

The right to data portability

You have the right to ask for any data supplied directly to HEUMANN by you, to be provided in a structured, commonly used, and machine-readable format.

The right to object

You have the right to object to further processing of your data which is inconsistent with the primary purpose for which it was collected, including profiling, automation, and direct marketing.

The right to object

You have the right to object to further processing of your data. By objecting your consent, the data processed before your objection is not affected.

Rights in relation to automated decision making and profiling

You have the right not to be subject to a decision based solely on automated processing, except if the decision is required for the conclusion of a contract.

Changes to the privacy policy

We reserve the right to change our security and data protection measures insofar as is necessary due to technical developments. In these cases, we will also adapt our privacy policy accordingly. Hence, please always observe the latest version of our privacy policy.