Privacy Policy

For Midas Pharma GmbH (hereinafter "Midas", "we" or "us"), the protection of your personal data is a kex concern. This applies in particular in connection with reports of adverse effects in Medicines. The following Privacy Policy provides you with all relevant information on questions regarding which of your personal data ("Your Data") is processed by Midas when adverse effects are reported by you via our contact form ("Contact us") on this website.

1. Purpose of Data Processing

By reporting adverse effects, you can help to provide more information about the safety of this medicine. We collect your data only to the extent necessary to enable us to comply with our legal obligations regarding the recording of reported adverse effects. Your Data will be stored by us in a database. Your Data will be pseudonymized before being transferred to the competent authorities.

2. Legal basis

If you have reported adverse effects, Your Data will be processed on the basis of the provisions of Art. 6 (1) c) in conjunction with Art. 9 (2) i) of Regulation (EU) 2016/679 (“General Data Protection Regulation” or “GDPR”).

3. Protocol Data

3.1 Log files

If you use our website to report adverse effects, certain data, including data sent by the browser (e.g. IP address, cookies, previous website, time and date, displayed contents), are (temporarily) stored in so-called log files.

As far as these data are personal data, Midas will only use them without your explicit consent as far as this use is necessary to enable you to use our website or, to review and assert our rights or rights of third parties in case of a violation of legal regulations or the terms of use for this website.

3.2 Cookies

We use cookies (small text files that are stored on your end device) which are technically necessary for the operation of this website (“Necessary Cookies”),

Necessary Cookies are required for the website to function properly. Such cookies make a website usable by providing basic functions such as page navigation and access to protected areas of the website or language settings. Due to their importance for the functioning of the website, you cannot refuse the use of these types of Cookies.

Necessary Cookies we use to provide this website include:

  • Iwcc (data protection cookie that stores the selection of cookies; duration: 1 year)

4. Integration of External Services

We integrate external services or content on our website. When you use such a service or when third-party content is displayed to you, communication data is exchanged between you and the respective provider for technical reasons.

In addition, the provider of the respective content or services may process Your Data for own purposes. We have configured services or content from providers known to process data for their own purposes to the best of our knowledge in such a way that either communication for purposes other than displaying the content or services on our website does not take place, or communication only takes place when you actively decide to use the respective services. However, as we have no control over the data collected by third parties and how it is processed by them, we cannot provide any reliable information on the purpose and scope of the processing of Your Data.

We use the following external services:

Readspeaker

Readspeaker is a read-aloud function for Internet content that has been implemented to provide a barrier-free access possible to our website.

Readspeaker works as follows:

The content to be read aloud is either sent by the client web browser (POST) or loaded from Readspeaker's servers (GET). This depends on the chosen implementation.  The data is sent over an encrypted channel using HTTPS (TLS >=1.2).

The content is processed internally on site to convert it into speech. Once this is done, a redirect is sent back to the user, redirecting the web browser to our servers that generated the audio file.

This does not require any text content to be stored permanently, the data is only stored temporarily during the creation of the audio file and use of the same audio file by the user.

Readspeaker uses two cookies:

  • A session cookie that determines if the script is loaded when the page is loaded. This cookie is called "_rspkrLoadCore”. The cookie is set after Readspeaker has been activated. This cookie is used to tell Readspeaker that a user has activated Readspeaker on a page. The session cookie is deleted after the session expires.
  • A Cookie called "ReadSpeakerSettings". This cookie has a default lifetime of 360000000 ms (i.e. approx. 4 days), which can be changed with the configuration "general.cookieLifetime". This cookie is used to store the settings of individual users so that they do not have to reapply their preferred webReader settings on every page they navigate to.

All external services listed under Section 4 are used the interest of an optimized presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

5. Deletion of Data

We retain Your Data for as long as required by law in the context of and in connection with reports of adverse effects. If you exercise your right to object to data processing, we will delete the data collected in a timely manner, as far as this is permissible taking into account the existing retention and storage obligations in connection with reported adverse effects.

6. Transmission of Data to Third Parties

To the extent required by law, Your Data that you have provided to us in connection with your report of adverse effects will be transferred to the competent authorities in pseudonymized form. If these the competent authorities are not located in EU member states, the transfer of the respective data is performed in accordance with Art. 49 para 1 lit. d GDPR.

7. Right of Information and Revocation

7.1   Right to Information

You have the right to request information about Your Data stored by us. If you have provided Your Data on the basis of a contract or consent, you have the right to receive this data in a machine-readable format. If Your Data is transferred to a country outside the EU that does not provide adequate protection, you can request a copy of the contract that ensures adequate protection of Your Data.

You can revoke any consent regarding contact data reported by you at any time with effect for the future without any disadvantage to you.

7.2  Right of Objection

You may request the correction or restriction of the processing of Your Data. We will comply with such requests for correction or restriction of processing of Your Data, unless such restriction or correction is not permitted by law.

7.3  Contact

If you have any questions about our use of Your Data, about this Privacy Policy or if would like to exercise your rights, you can contact us at any time, or you can contact our company data protection officer directly:

Midas Pharma GmbH
- Data Protection Officer -
Rheinstrasse 49
D-55218 Ingelheim on the Rhine

E-mail: dataprotection[at]midas-pharma.com

Competent Supervisory Authority

The supervisory authority responsible for Midas with regard to data protection ("supervisory authority"):

The State Commissioner for Data Protection and Freedom of Information of Rhineland-Palatinate.
Hintere Bleiche 34
55116 Mainz

E-mail: postoffice[at]datenschutz.rlp.de

If you have concerns about the way your personal data is processed by Midas, you have the right to contact the supervisory authority at any time.

 

Back to Overview