Personal data protection notice

Quick guide to contents:

1. What is the purpose of this notice?
2. What types of personal data may be collected?
3. How do we collect personal data?
4. How will personal data be used?
5. Will personal data be disclosed and/or transferred outside singapore?
6. How will personal data be stored?
7. How long will personal data be retained?
8. Who will personal data be shared with?
9. How can i exercise my rights?
10. How to contact us?
11. Accuracy of data
12. Revision of notice

1. What is the purpose of this notice?

This Personal Data Protection Notice (“Notice”) describes the practices and responsibilities of SANOFI-AVENTIS SINGAPORE PTE LTD and its respective related corporations, affiliates, and associated companies as may be applicable (“Sanofi”, “we”, “us”, “our” or "Company”) (whether or not controlled by us) on when, how and why we collect, use, store, disclose, transfer and otherwise handle (collectively "Process") your Personal Data (as defined in Section 2 below) through this Site and its related services ("Site") in accordance with the Personal Data Protection Act 2012 in Singapore and all laws and regulations applicable to the protection of your Personal Data ("Applicable Laws") and this Notice.

By accessing and/or registering for access to this Site, providing your Personal Data to us and/or allowing our collection of your Personal Data on this Site, you confirm
that you have read, understood and agreed to the terms and conditions as provided herein and you consent to the Processing of your Personal Data which has been or will be received or collected by Sanofi in the manner and for the purposes described in this Notice.

2. What types of personal data may be collected?

Personal data means any information relating to an individual, which enables the identification of such individual, whether directly or indirectly, as defined by Applicable Laws (“Personal Data”). Depending on your interaction with us, we may Process the following categories of Personal Data:
 

• Identity data: name, gender, date of birth, citizenship, country of residence, place of practice, marital status, language skills, identification card/passport details, qualifications (which includes your profession), full registration number with the Singapore Medical Council, date of registration, specialty and/or sub-specialty, place of employment;
   
• Contact details: home address, home phone number and mobile number, email address, work address, work number;
   
• Messages: any information or data you may send us in your requests, enquiries and/or correspondences with Sanofi by using this Site, by email, phone, fax, post, or through your face to face interaction with Sanofi’s personnel or subcontractor or agent or by any other means;
   
• Connection data: any information regarding your connection and access to this Site (e.g. type of machine and browser used, timestamp of your connection, Internet protocol (IP) address, pages visited, browsing history, etc.). Generally we do not link your IP address to anything that will enable us to identify you.
   
• Location data: information that may be provided by your machine and browser about your location if you allow such information to be shared with Sanofi;
   
• Data from publicly available sources: including but not limited to, public hospital data, medical association websites and from Sanofi’s data suppliers which provide global reference databases of healthcare and related professionals;
   
• Information from surveys or polls: information that may be provided by you through your participation in trainings, events, seminars, webinars, conferences via the Site, or surveys or polls via the Site, in connection with services made available on the Site;
   
• Data relating to and data which may be collected by cookies: Sanofi may use cookies on this Site to store some information on your computer to improve the quality of your visit to this Site. In some cases, this information will help us to tailor the content to your interests, or help us to avoid asking for the same information on repeat visits to this Site. No personally identifiable information is available in this process.
   
• Miscellaneous data: in some cases, the Personal Data that we process may also include sensitive Personal Data, such as diversity related information (including data about racial and ethnic origin, political opinions, religious beliefs and other beliefs of a similar nature, trade union membership and data about sexual life and sexual orientation), or health data (such as sickness records, disability records, fitness for work records and information on pensions and/or health insurance where it contains data relating to sickness) and data about alleged or proven criminal offences in each case where permitted by law.

To the extent that you disclose to Sanofi any personal information and/or Personal Data of another individual, we shall assume, without independent verification, that you have obtained such individual's consent for the disclosure of such information and/or Personal Data as well as the Processing of the same in accordance with the terms of this notification.

Where indicated, it is obligatory to provide your Personal Data to us to enable us to process your data in relation to specific Purposes (defined hereunder). Should you decline to provide such obligatory Personal Data, we may not be able to engage with you, including to communicate with you or provide you with the information you require. If you delete or choose not to allow the use of cookies, some areas of our Site may not function properly or be accessible. Refusal to provide the obligatory Personal Data may also adversely affect your ability to enjoy and/or participate fully in, amongst others, any events or activities hosted on the Site, whether by Sanofi or otherwise.

3. How do we collect personal data?

Sanofi Processes Personal Data either through its employees, service providers or authorized third parties acting on our behalf for the Purposes (defined below). In addition to the Personal Data
 

• Data that you communicate to us and/or our authorized agents, through various media and communication channels, whether face-to-face, by phone, in writing, through general business contact with you, through registrations, applications, surveys, and direct and indirect interactions with Sanofi. For example, data you provide to purchase or acquire our products or services, when you meet or communicate with us, when you post a message on a Sanofi bulletin board or comments thread, to register for scientific events, to participate in a patient support programme, to report an adverse event, to submit an online application, to submit your resume to us for employment purposes, to create an account on Sanofi websites, or to contact us or send us a request for information;
   
• Data that we collect following your interactions with the Sanofi websites, platforms, facsimiles, electronic or mobile applications and services through certain technologies, such as cookies;
   
• Data from Publicly available sources that we collect in accordance with Applicable Laws, e.g. data that is published by you, social media profiles, directories, signages;
   
• Data that we obtain legally from third parties who are authorized to Process your Personal Data as authorized by you or in accordance with Applicable Laws, for example, when we may need to confirm contact or financial information or to verify the registration of healthcare professionals, or data provided by one of your healthcare professionals regarding an adverse experience in relation to one of our products; and
   
• Other sources including but not limited to third party administrator, educational records, background checks, or professional and personal reference.
   
• Cookies: The Sites may use a tracking technology called a “cookie”. A “cookie” is a small text file that a website can place on your computer’s hard drive in order, for example, to collect information about your activities on the Site, to track your preferences and selections, or to show you advertisements based on your interests, such as banner ads relating to Sanofi’s products and services. Cookies may be placed on your computer by Sanofi or by another company or advertiser that Sanofi engages to provide services or advertising (a “third party cookie”).
  
  It is possible that these cookies could be used in combination with other information to identify you. Information stored in first party cookies associated with a Sanofi website will be transmitted back to us. Information stored in third party cookies may be transmitted to the party placing the cookie, so that they can deliver to you messages and advertisements based on your interests as you browse the Internet.
  
  You may be able to opt out of third parties using cookies to deliver interest-based advertising to you by visiting www.aboutads.info/choices/ or https://www.networkadvertising.org/choices/. With most internet browsers, you can also erase cookies from your computer’s hard drive, block all cookies, block specific kinds of cookies, or even receive a warning before a cookie is placed on your system. Refer to your browser instructions or help button to learn more about cookies. You should be aware, however, that cookies might be necessary to provide you with certain features (e.g. customized delivery of information) available on the Site.
   
• Web logs: The Site may also automatically collect and store web log information relating to your computer and your visit, such as the name of the domain and host from which you access the Internet, the Internet address of the website from which you link to the Site, the date and time you access the Site, the duration of time you spend on the Site, the pages you visit on the Site, your computer's operating system and browser software, and your Internet protocol (IP) address. An IP address is a number assigned to your computer by your Internet Service Provider so you can access the Internet. This number may change each time you connect to the internet (“dynamic IP address”) or it may remain constant (“static IP address”). If you have an IP address, it is possible that this address could be used in combination with other information to identify you.
   
• Pixel tags: The Site may also track your usage of the site through the use of pixel tags (also called clear gifs or web beacons). A pixel tag is a tiny graphic on a web page that is used to track pages viewed. Pixel tags tell the web site server information such as the IP address and browser type related to the visitor’s computer. Pixel tags may be placed in online advertisements that bring people to the Site and on different pages of the Site. Web beacons provide us with information on how many times a page is opened and which information is consulted.
   
• Links to Third-Party Website The Site may contain links to third parties' websites. Please note that we are not responsible for the collection, use, record, hold, storage, maintenance, sharing, or disclosure of data and information by such third parties. If you provide information directly to such sites, the privacy policy and terms of service on those sites are applicable and we are not responsible for the information processing practices or privacy policies of such sites.

4. How will personal data be used?

Sanofi and any third party who may be acting on our behalf may Process your Personal Data, for the following purposes (“Purposes”):

• To allow you to navigate this Site and personalize your browsing experience when using the Site. Sanofi may use cookies on this Site to store some information on your computer to improve the quality of your visit to our Site. In some cases, this information will help us to tailor the content to your preference, or help us to avoid asking for the same information on repeat visits to this Site. No personally identifiable information is available in this process.
   
• To compile statistical data on the use of our Site to track the total number of visitors to this Site, the number of visitors to each page of this Site, how visitors navigate through this Site and the domain names of visitors’ internet service providers for the purposes of evaluating and improving the Site.
   
• To verify that you are a registered healthcare professional and to provide you access to the content, to manage your online accounts, to send you related communications, to respond to your queries and information with your consent, and for the purposes of statistical analysis.
   
• To comply with legal or regulatory obligations that apply to Sanofi, monitor safety, manage adverse events, carry out prevention and investigatory activities, carry out administrative formalities, registration, declarations or audits.
   
• To respond to legal or regulatory requests from administrative or judicial authorities imposed on Sanofi, in accordance with applicable laws, regulation, guidelines and/or any other documents issued relevant regulatory authorities.
   
• To fulfil legitimate purposes relating to Sanofi's affairs, which may include the conduct of litigation, investigations or dispute resolutions.
   
• To protect our rights and interests, such as to protect the health, safety, and security of Sanofi personnel and premises, carry out internal audits, asset management, system and other business controls, manage business administration (finance and accounting, fraud monitoring and prevention), maintain the security of our services and operations, protect our rights, privacy, safety or property, to allow us to pursue available remedies or limit the damages that we may incur as necessary, to protect ourselves against possible fraudulent actions.
   
• To improve and develop the Site by identifying usage trends, developing content for the Site, understanding how you and your device interacts with the Site, tracking and responding to safety concerns, determining the effectiveness of the Site.
   
• To fulfil such other purposes as Sanofi deems necessary or appropriate in relation to your usage of the Site from time to time.

5. Will personal data be disclosed and/or transferred outside singapore?

In general, we will not disclose your Personal Data to third parties (other than those set out under Section 8) unless you have notified us in writing that you consent to such disclosure.

Please note that it may be necessary for Sanofi to disclose your Personal Data:

• to transfer your Personal Data to our authorized employees, agents and third parties as set out under Section 8 (which may be within or outside Singapore) for the Purposes. In particular, Sanofi may transfer your Personal Data to our oversea affiliate(s) where our information technology storage facilities and servers may be located;
   
• where required by any regulatory authority of competent jurisdiction, such as Inland Revenue and other statutory bodies;
   
• to discharge any legal obligation imposed on us by law;
   
• pursuant to an order of a court of competent jurisdiction;
   
• to organisations including their professional service providers and relevant regulatory authorities whether within or outside Singapore, in connection with the acquisition, disposition and/or intended acquisition or disposition of Sanofi's assets and/or of Sanofi itself whether directly or indirectly;
   
• to our partners and service providers;
   
• if we deem that such disclosure is necessary to prevent or mitigate a serious and imminent threat to your life or health or the life or health of another person; and
   
• where we believe disclosure is necessary or appropriate to prevent physical harm or financial loss, or in connection with an investigation of suspected or actual fraudulent or illegal activity.

Access to your Personal Data may be granted to other entities within the Sanofi group and may be transferred out of Singapore for purposes of data storage and managing information more securely and efficiently at group level.

Sanofi also reserves the right to transfer relevant Personal Data in the event Sanofi sells or transfers all or a portion of its business or assets. The Company will use all reasonable efforts to direct the transferee to process personal information you have provided to us in a manner that is as consistent as possible with this Notice and Sanofi’s privacy policies.

At all times, rest assured that we will only disclose the minimum amount of information which it deems necessary and will take all reasonable steps to ensure that your Personal Data will be treated by Sanofi and our authorized employees, agents and third parties as confidential information. Sanofi will not sell, rent or trade your Personal Data.

Safeguards for international transfers of Personal Data
In cases where Sanofi needs to transfer Personal Data outside Singapore for the Purposes described above, it shall ensure that adequate safeguards, as required under applicable data protection legislation, will be implemented. In this respect and in particular, for intra-group transfers of Personal Data implemented for clinical studies and pharmacovigilance purposes, Sanofi has implemented and shall apply its “Binding Corporate Rules” validated by the EU Data Protection Authorities.

By accessing the Site, providing your Personal Data to us and/or allowing our collection of your Personal Data, you consent to the transfer of your Personal Data as described herein in Paragraph 5 of this Notice.

6. How will personal data be stored?

Sanofi stores your Personal Data in the form of hard/soft copy. The soft copy data is stored on, amongst others, secure operating environments, databases, servers and tools (within Singapore or outside Singapore), which are only accessible to authorized Sanofi employees, agents and third parties. Sanofi undertakes to observe generally accepted industry standards and practices in the storage of your personal information.

We may also aggregate, pseudonymize or anonymize Personal Data to ensure that no personally identifiable information is communicated to third parties. However, please be aware that there is always some risk involved when submitting data over the Internet and that Sanofi cannot guarantee that the Site is 100% safe from illegal tampering or “hacking.” Any data transmitted over the Internet may be at risk.

7. How long will personal data be retained?

We may retain your Personal Data for as long as it is necessary to fulfil the purpose for which it was collected, or as required or permitted by Applicable Laws. We will cease to retain your Personal Data, or remove the means by which the data can be associated with you, as soon as it is reasonable to assume that such retention no longer serves the purpose for which the Personal Data was collected, and is no longer necessary for legal or business purposes.

8. Who will personal data be shared with?

For the Purposes described above, we may disclose your Personal Data to the parties (within or outside Singapore) as listed below, including but not limited to: -

• Sanofi associated or affiliated companies for legitimate business purposes;
   
• Our selected partners such as sponsors of events and conferences, and professional or accreditation bodies or organizations, associations for accreditation in your favour pursuant to your attendance at any events organized or sponsored by Sanofi;
   
• Suppliers, distributors, service providers, agents or contractors engaged by Sanofi or acting on Sanofi's behalf, who provide website hosting, payment processing, order fulfilment, information technology, system administration and related infrastructure provision, printing, billing, customer service, healthcare professional validation, email delivery, data analysis, auditing, market research, digital monitoring, marketing, advertising, brand, communication and other services;
   
• External advisors (e.g. lawyers, accountants, company secretary, auditors, insurers and brokers on a need to know basis for the purposes of providing their services or advice to us, etc.);
   
• Relevant government regulators, statutory boards or authorities or law enforcement agencies or industry regulators or any person to whom we are compelled or required to do so under law, to comply with any laws, rules, guidelines and regulations or schemes imposed by any governmental authority;
   
• Potential acquirers and other stakeholders in the event of potential, proposed or actual business transfer, whether in whole or in part, sale of business, disposal, acquisition, merger, spin-off, joint venture, assignment, reorganisation of Sanofi's business, assets or stock or similar transaction; and
   
• Any other party to whom you authorise us in writing to disclose your Personal Data to.

Sanofi may disclose aggregate, pseudonymized or anonymized data derived from Personal Data (but without identifiers that will disclose your identity) to third parties. Sanofi shall endeavor to cause such third parties to comply with Applicable Laws in the course of its engagement with Sanofi and require such third parties to use and protect your Personal Data consistent with this Notice. We will ensure that reasonable steps are taken by the above categories of parties to protect and/or maintain confidentiality of your information that we may disclose to them.

9. How can i exercise my rights?

You can exercise your rights as provided by Applicable Laws. To that end, Sanofi informs you that you are entitled:

• to apply for a copy of your Personal Data that Sanofi holds;
• to correct your Personal Data should your Personal Data be inaccurate, incomplete, misleading or not up to date;
• to limit or withdraw your consent, in full or in part, to the Processing of your Personal Data that Sanofi holds;
• to lodge an inquiry or complaint with our Data Protection Officer.

Note that, in limiting the Processing of your Personal Data, the same consequences as described above in the event of refusal to provide Personal Data could apply.

If you would like to exercise any of these rights, please contact us as described in the “How to Contact Us” section below and we will take necessary steps to respond as soon as possible. We may impose a fee for processing the aforesaid requests. You may also withdraw consent from receiving marketing messages about goods and services, including promotional information about Sanofi products from us by clicking on the “Unsubscribe” link provided to you in our email or text to you, however, unsubscribing will apply to direct marketing communications only as we may still need to communicate with you for other reasons, for example about your order of a product or service.

In respect of your right to access and/or correct your Personal Data, Sanofi has the right to refuse your requests to access and/or make any correction to your Personal Data for the reasons permitted under law.

10. How to contact us?

You may contact our Data Protection Officer if you have any enquiries or feedback on our Personal Data protection policies and procedures, or if you wish to make any request, in the following manner:
Tel: +6037651 0800,
Email: SG_Privacy.Officer@sanofi.com,
Address: 38 Beach Road, #18-11 South Beach Tower, Singapore 18976

11. Accuracy of data

We generally rely on Personal Data provided by you (or your authorised representative). In order to ensure that your Personal Data is current, complete and accurate, please update us if there are changes to your Personal Data by informing our Data Protection Officer in writing at the contact details provided.

12. Revision of notice

This Notice was last updated on 21^st April 2022. We may revise or amend this Notice from time to time without any prior notice. The revised Notice will be available on this Site. You may determine if any such revision has taken place by referring to the date on which this Notice was last updated. We invite you to check this Notice periodically. By continuing to communicate with Sanofi, by continuing to use the Site and/or providing your Personal Data to us or allowing our collection of your Personal Data, following the revisions to this Notice, this shall signify your acceptance of such revisions.

Personal data protection notice

Quick guide to contents:

1. What is the purpose of this notice?
2. What types of personal data may be collected?
3. How do we collect personal data?
4. How will personal data be used?
5. Will personal data be transferred outside singapore?
6. How will personal data be stored?
7. How long will personal data be retained?
8. Who will personal data be shared with?
9. How can i exercise my rights?
10. How to contact us?
11. Accuracy of data
12. Revision to this notice

1. What is the purpose of this notice?

This Personal Data Protection Notice (“Notice”) describes the practices and responsibilities of SANOFI-AVENTIS SINGAPORE PTE LTD and its affiliates (“Sanofi”, “we”, “us”, or “our”) on the collection, use, disclosure, processing and transfer of your personal data for the purposes described in this Notice, in accordance with the Personal Data Protection Act 2012 of Singapore and all laws and regulations applicable to the protection of your personal data ("Applicable Laws"), this Notice and Sanofi's Privacy Policy.

By accepting this notice, providing your personal data to us and/or allowing our collection of your personal data, you confirm that you have read, understood and agreed to the terms and conditions as provided herein and You consent to the collection, use, disclosure, processing and/or transfer of your personal data Which have been or will be received or collected by sanofi in the manner and for the purposes described in this notice.

Unless otherwise defined, the definitions in the Terms of use will apply to this Notice.

2. What types of personal data will be collected?

Personal data means any information relating to an individual, which enables the identification of such individual, whether directly or indirectly, as defined by Applicable Laws. Depending on your interaction with us, we may collect the following categories of personal data, including but not limited to:
 

• Identity data, which includes name, username or similar identifier, social media usernames, title, date of birth, age, gender, race and ethnicity, photographs, and audio and visual recordings.
• Contact data, which includes address, email, and telephone and mobile phone numbers.
• Professional data, which includes job title, place of work, employment history, education, work address, areas of practice and specialties.
• Financial data, which includes bank account and payment card details.
• Transaction data, which includes details about payments to and from you, and other details of products and services you have purchased from us, including customer account numbers.
• Technical data, which includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our websites.
• Profile data, which includes your username and password, purchases or orders made by you, and your interests, preferences, feedback and survey responses.
• Usage data, which includes information about how you use our websites, products and services.
• Marketing and communications data, which includes your preferences for receiving marketing from us and our third parties and your communication preferences.

Where indicated, it is obligatory to provide your personal data to us to enable us to process your data in relation to specific Purposes. Should you decline to provide such obligatory personal data, we may not be able to engage with you, including to communicate with you or provide you with the information you require.

3. How do we collect personal data?

Sanofi collects and processes personal data either through its employees or authorized third parties acting on our behalf. Apart from personal data you have directly submitted to us or allowed us to collect as set out in this Site, Sanofi may collect and process your personal data from different sources:

• data that you communicate to us and/or our authorized agents, through various media and communication channels, whether face-to-face, by phone, in writing, through general business contact with you, through registrations, applications, surveys, and direct and indirect interactions with Sanofi. For example, data you provide to purchase or acquire our products or services, when you meet or communicate with us, when you post a message on a Sanofi bulletin board or comments thread, to register for scientific events, to participate in a patient support program, to report an adverse event, to submit an online application, to create an account on our websites, or to contact us or send us a request for information.
• data that we collect following your interactions with our websites, platforms, applications and services through certain technologies, such as cookies;
• data from publicly available sources that we collect in accordance with Applicable Laws, e.g. data that is published by you, social media profiles, directories, signages;
• data that we obtain legally from third parties who are authorized to collect, use, transfer, disclose or process your personal data as authorized by you or in accordance with applicable laws, for example, when we may need to confirm contact or financial information or to verify the registration of healthcare professionals.

Sanofi will not collect, use, disclose, process or transfer your personal data unless you voluntarily choose to provide us with it, or you consent to its collection by us, or unless such collection, use, disclosure, processing or transfer is permitted or required by applicable laws and regulations.

4. How will personal data be used?

Sanofi and its affiliates (and any third party who may be acting on our behalf) may collect, use, transfer, disclose, and/or process your personal data, for the following purposes (“Purposes”):

• to allow us to communicate with you, including respond to your requests and inquiries; to provide support for products and services; to provide you with important information, administrative information, required notices, and promotional materials; to send you news and information about our products, services, or brands and operations, educational materials on healthcare for and relevant to patients and physicians; to send you information or invitations to events, seminars, conferences, initiatives and promotions and talks which may be of interest to you; and to organise and manage professional events and congresses, including your participation in such events; to send you reminders on purchases and placements of orders for products; to request and/or remind you on scheduling of appointments;
• to carry out our business operations, including to carry out marketing and sales; to register you as a customer; to provide you with access to Sanofi’s products and services; to process and deliver your order, including to manage payments, fees and charges, and collect and recover money owed to us; to assess and respond to your comments, requests or inquiries, applications, complaints, and feedback; to keep track of our interactions and meetings, such as when you contact us for information and support; to set up, develop, use and manage validation, analytics, CRM, data repository, data input, profiling, activity management, digital marketing, data processing and reporting tools, and other processing systems;
• to provide patient support, healthcare support services, patient engagement and prescription information, including to provide, manage and administer patient support and homecare programs; and to manage claims, including insurance claims;
• to organize and manage professional events and congresses, including your participation to such events;
• to provide you access to online services, application and platforms, including to administer our websites and keep them safe and secure; and to manage your online accounts;
• to allow us to identify or authenticate you, including to provide or verify your credentials including via passwords, password hints, security information and questions, government-issued identification, healthcare professional number;
• to personalize your experience when using our services, including to ensure that our services are presented in the way that best suits you, understand your professional and personal interests in our content, products and services or other content and adapt our content to your needs and preferences, present you products and offers tailored to you;
• to comply with legal or regulatory obligations, including to monitor safety; to manage and report adverse events; to carry out prevention and investigatory activities; to document and publically disclose certain transfers of value made to healthcare professionals, healthcare organisations and patient organisations; and to carry out administrative formalities, registrations, declarations and audits;
• to respond to legal requests, including from administrative and judicial authorities, in accordance with applicable laws; to comply with a subpoena, required registration, or legal process;
• to protect our rights and interests, protect the health, safety, and security of Sanofi personnel, premises and property, including to carry out internal audits, asset management, system and other business controls, manage business administration (finance and accounting, fraud monitoring and prevention), maintain the security of our services and operations, allow us to pursue available remedies or limit the damages that we may incur as necessary, protect ourselves against possible fraudulent actions;
• to improve and develop our products and services, carry out market or consumer studies, identify and analyze business and usage trend, to carry out profiling, develop content for our services, understand how you and your device interacts with our websites or digital tools, track and respond to safety concerns, determine the effectiveness of products and services;
• to conduct research and development, including to carry out clinical studies, registries and trials; to manage and validate the recruitment and participation of individuals in studies, trials and other operations; to analyse demographic data; to offer special programs, activities, trials, events and promotions via our services; and to carry out market and consumer studies;
• to compile statistical data on the use of our products and services, including to track the total number of visitors to each page of our websites, how visitors navigate through our websites and the domain names of visitor’s internet service providers for the purposes of evaluating and improving our websites.

5. Will personal data be transferred outside singapore?

Sanofi may transfer your personal data to our affiliates and authorized employees, agents and third parties (which may be within or outside Singapore) for the Purposes. In particular, Sanofi may transfer your personal data to our oversea affiliate(s) where our information technology storage facilities and servers may be located. At all times, your personal data will be treated by Sanofi and our authorized employees, agents and third parties as confidential information.

Safeguards for international transfers of personal data: In cases where Sanofi needs to transfer personal data for the Purposes described above, it shall ensure that adequate safeguards, as required under applicable data protection legislation, will be implemented. In this respect and in particular, for intra-group transfers of personal data implemented for clinical studies and pharmacovigilance purposes, Sanofi has implemented and shall apply its “Binding Corporate Rules” validated by the EU Data Protection Authorities.

By accepting this Notice, providing your personal data to us and/or allowing our collection of your personal data, you consent to the transfer of your personal data out of Singapore as described herein.

6. How will personal data be stored?

Sanofi stores your personal data in secure operating environments, databases, and tools (within Singapore or in server located outside Singapore), which are only accessible to authorized Sanofi employees, agents and third parties. Sanofi undertakes to observe generally accepted industry standards and practices in the storage of your personal information.

We may also aggregate, pseudonymize or anonymize personal data to ensure that no personally identifiable information is communicated to third parties. However, please be aware that there is always some risk involved when submitting data over the Internet and that Sanofi cannot guarantee that its websites are 100% safe from illegal tampering or “hacking.” Any data transmitted over the Internet may be at risk.

7. How long will personal data be retained?

We may retain your personal data for as long as it is necessary to fulfil the purpose for which it was collected, or as required or permitted by applicable laws. We will cease to retain your personal data, or remove the means by which the data can be associated with you, as soon as it is reasonable to assume that such retention no longer serves the purpose for which the personal data was collected, and is no longer necessary for legal or business purposes.

8. Who will personal data be shared with

For the Purposes described above, we may disclose your personal data to the parties (within or outside Singapore) as listed below, including but not limited to: -

• Sanofi associated or affiliated companies for legitimate business purposes;
• our selected partners (such as sponsors of events and conferences, and professional or accreditation bodies or organizations, associations for accreditation in your favour pursuant to your attendance at any events organized or sponsored by Sanofi;
• suppliers, distributors, service providers, agents or contractors engaged by Sanofi or acting on Sanofi's behalf, who provide website hosting, payment processing, order fulfilment, information technology, system administration and related infrastructure provision, printing, billing, customer service, healthcare professional validation, email delivery, data analysis, auditing, market research, digital monitoring, marketing, advertising, brand, communication and other services.
• external advisors (e.g. lawyers, accountants, company secretary, auditors, insurers and brokers on a need to know basis for the purposes of providing their services or advice to us, etc.);
• relevant government regulators, statutory boards or authorities or law enforcement agencies or industry regulators or any person to whom we are compelled or required to do so under law, to comply with any laws, rules, guidelines and regulations or schemes imposed by any governmental authority;
• potential acquirers and other stakeholders in the event of potential, proposed or actual business transfer, whether in whole or in part, sale of business, disposal, acquisition, merger, spin-off, joint venture, assignment, reorganisation of Sanofi's business, assets or stock or similar transaction;
• any other party to whom you authorise us to disclose your personal data to.

Sanofi may disclose aggregate or anonymized data derived from personal data (but without identifiers that will disclose your identity) to third parties. Sanofi shall endeavor to cause such third parties to comply with Applicable Laws in the course of its engagement with Sanofi and require such third parties to use and protect your personal data consistent with this Notice. We will ensure that reasonable steps are taken by the above categories of parties to protect and/or maintain confidentiality of your information that we may disclose to them.

9. How can i exercise my rights?

You can exercise your rights as provided by Applicable Laws. To that end, Sanofi informs you that you are entitled:
 

• to apply for a copy of your personal data that Sanofi holds;
• to correct your personal data should your personal data be inaccurate, incomplete, misleading or not up-to-date;
• to limit or withdraw your consent to the processing of your personal data that Sanofi holds;
• to lodge an inquiry or complaint with our Data Protection Officer.

If you would like to exercise any of these rights, please contact us as described in the “How to Contact Us” section below and we will take necessary steps to respond as soon as possible. We may impose a fee for processing the aforesaid requests. You may also withdraw consent from receiving marketing messages about goods and services, including promotional information about Sanofi products from us by clicking on the “Unsubscribe” link provided to you in our email or text to you, however, unsubscribing will apply to direct marketing communications only as we may still need to email you for other reasons, for example about your order of a product or service.

In respect of your right to access and/or correct your personal data, Sanofi has the right to refuse your requests to access and/or make any correction to your personal data for the reasons permitted under law, such as where the expense of providing access to you is disproportionate to the risks to your or another person’s privacy.

10. How to contact us?

You may contact our Data Protection Officer if you have any enquiries or feedback on our personal data protection policies and procedures, or if you wish to make any request, in the following manner: Tel: +6037651 0800, Email: SG_Privacy.Officer@sanofi.com, Address: 38 Beach Road, #18-11 South Beach Tower, Singapore 189767

11. Accuracy of data

We generally rely on personal data provided by you (or your authorised representative). In order to ensure that your personal data is current, complete and accurate, please update us if there are changes to your personal data by informing our Data Protection Officer in writing or via email at the contact details provided.

12. Revision of notice

We may revise this Notice from time to time without any prior notice. The revised Notice will be available on this website. You may determine if any such revision has taken place by referring to the date on which this Notice was last updated. We invite you to check this Notice periodically. By continuing to communicate with Sanofi, by continuing to use the Site and/or providing your personal data to us or allowing our collection of your personal data, following the revisions to this Notice, this shall signify your acceptance of such revisions.