AstraZeneca [We, Us, Our] take the privacy and security of your Personal Data very seriously. This Privacy Notice outlines what Personal Data We may collect about you and how We may use it.
We may change this Privacy Notice from time to time. Therefore, We may ask you to check this Privacy Notice occasionally to ensure that you are aware of the most recent version. We will notify you of any changes where We are required to do so.
What information do we collect and how do we use it?
- Email address
- Country of residence
- Occupation (for example, if you are a Healthcare Professional seeking information about Our products)
This information is used by Us to administer the website, register you for any services you have signed up to and respond to any queries or requests for information you may have.
Occasionally We may obtain Sensitive Personal Data about you, for example, if you voluntarily provide information about your physical or mental health, as part of a request for information. By providing us with your Sensitive Personal Data, you consent to Us processing this data for the purposes set out in this Privacy Notice or any collection notice provided to you.
We use aggregate information, which does not identify individuals, to monitor customer traffic patterns to the website and particular pages, as well as site usage, in order to help us improve the design and layout of the content.
Who will have access to your personal data?
Your Personal Data may be made available within the AstraZeneca group of companies. We sometimes employ other companies and individuals to perform functions on our behalf, for example providing technical support for the systems where your Personal Data is held. They may need access to your Personal Data in order to perform their functions but will not use your Personal Data for any other purpose.
We may also disclose Personal Data in order to comply with our legal or regulatory obligations, in response to a non-mandatory request for information made by a governmental or state body, or as part of an investigation of unlawful activity.
Your Personal Data may be transferred outside your country of origin, including to countries or jurisdictions which do not provide the same level of data protection as your home country. Regardless of which country your Personal Data is held in it will be protected in line with our privacy and security policies, as outlined below.
How we protect your information
We have in place appropriate privacy and security policies which are intended to ensure, as far as reasonably possible, the security and integrity of all Our information, including your Personal Data.
Access and correction
If We process Personal Data about you, then you may have a right under data privacy law to request access to your Personal Data (for which We may charge a small fee) and to correct any inaccuracies.
If you would like to access, correct or delete the Personal Data we hold about you, please contact email@example.com quoting the url of this website.
If you have any general queries relating to data privacy in AstraZeneca, please contact firstname.lastname@example.org quoting the website your query relates to and your country.
Opting out of further communications from us
If you have elected to receive information about Our products or services, or those of other AstraZeneca companies and wish to opt-out of receiving such information, then you can do so by sending an email to email@example.com. You should clearly state on all communications: your name, username (if any), registration details (if any) and the name of this website.
You should note that if Our business (or any part of it) is sold or transferred at any time, the information We hold may form part of the assets transferred, although it will still only be used in accordance with this Privacy Notice.
Binding corporate rules
We have ensured compliance with some of Our legal obligations in relation to Personal Data by creating a set of ‘Binding Corporate Rules’ (BCRs). The BCRs set out AstraZeneca’s data privacy commitments in respect of Personal Data that is transferred internationally from our affiliates in the European Economic Area (the EEA), and countries with similar restrictions on the use of Personal Data.
Our BCRs have been approved by a number of national privacy regulators and, in countries where they apply, require Us to:
- Use Personal Data for specified purposes only;
- Take steps to ensure that the Personal Data We hold is kept accurate and up-to-date;
- Take appropriate measures against the risks of unlawful use and accidental loss or destruction of, or damage to, Personal Data.
You can find out more about these commitments here. The BCRs and any rights arising under them do not apply to Personal Data originating in the U.S.A.
Last updated May 2017