1. Data controller and contact information
The data controller for your personal data is:
Scandion Oncology A/S
Company registration no.: 38613391
Fruebjergvej 3, 2100 Copenhagen Ø
2. Categories of data subjects, types of personal data and legal bases for processing
We process personal data on various people that are in contact with Scandion Oncology. Below, you can see how we process your personal data as a Website Visitor or as a Healthcare Professional.
3. Disclosure to other data controllers and transfer to data processors
We may provide access to your personal data for third parties who, on the basis of a contractual relationship with us provide relevant services, e.g., IT-providers, customer service centres, invoicing providers, email providers, marketing providers and affiliated companies. Such service providers will only process personal data in accordance with our instructions pursuant to the data processor agreements entered into.
In connection with Scandion Oncology’s development, the company structure may change, e.g., through a full or partial sale of Scandion Oncology. In case of a partial hand over of assets containing personal data, the legal basis for the related disclosure of personal data is, as a general rule, Article 6(1)(f) of the GDPR, as Scandion Oncology has a legitimate interest in handing over part of its assets as well as making commercial changes.
Aside from above, it is a general rule that your personal data is not disclosed to a third party without your permission. Your consent may be provided to share personal data with third parties such as social media providers as part of the cookie pop-up banner. However, under certain circumstances and in accordance with applicable law, we may need to disclose your personal data to e.g., public authorities, courts, auditors, or lawyers.
Your personal data is not transferred to data controllers or data processors located outside the EU/EEA.
4. Deletion of personal data
Personal information is deleted or made anonymous on an ongoing basis when the purpose of collection is completed.
If you are a Website visitor, etc. we will delete the personal data no longer than 12 months after use. If you are a HCP or other stakeholder, we will delete the personal data no longer than 12 months after use. We may, however, store the personal data for a longer period of time due to legal obligations or for the purpose of establishing, exercising or defending legal claims. The personal data may always be stored for a longer period in anonymized form.
5. Protection of personal data
We protect the confidentiality, integrity, and accessibility of your personal data. Hence, we have implemented security measures to ensure that our internal procedures meet the established security standards and applicable legal requirements.
We have internal rules on information security that contains instructions and measures to protect your personal data from being destroyed, lost or altered, against unauthorised disclosure, and unauthorised access to and knowledge of them.
According to the Danish Data Protection Act (databeskyttelsesloven), personal information is kept secure and confidential. We store your personal information on computers with limited access, which are located in controlled facilities, and our security is checked regularly to determine whether our user information is handled properly – always with due deference to your rights as a user. However, we cannot guarantee 100% data transmissions over the Internet. This means that there may be a risk of others gaining unauthorized access to information when data is transmitted and stored electronically. Thus, you provide personal information at your own risk.
The rapid development of the Internet may necessitate changes to the way in which we process private information. We therefore reserve the right to update and amend these guidelines for the processing of personal data. If we do, we will, of course, change the “last updated” date at the bottom of this page. In the event of substantial changes, we will notify our users via a highly visible notice on our website.
6. Your rights
The Data Protection Act confers the right to know what personal data can be attributed to you. If it turns out that the information or data processed about you is incorrect or misleading, you have the right to demand it be corrected, deleted or blocked with certain statutory exceptions, including e.g., the Danish Bookkeeping Act (bogføringsloven). You may object to information about you being used for data processing at any time. You may also revoke your consent at any time. We will then delete your personal data, unless we can continue the processing on another basis. Our newsletter can be unsubscribed by clicking the link at the bottom of the newsletter. You have the right to complain about the way information and data about you is processed, cf. section 8 below. You have the right to request us to restrict the processing of your personal data. Under certain circumstances you may also request to receive a copy of your personal data as well as the transmission of your personal data which you have provided us with to another data controller (data portability).
7. Questions or complaints
If you want access to the information which we have about you, please contact email@example.com. If incorrect data has been recorded or you have any other objections, please use the same contact details. You have the right to know what information is stored about you, and you may object to registration as per the rules stipulated in the Data Protection Act and above section 6.
If your complaint is not resolved by us and you wish to proceed with the case, you can send your compliant to the Danish Data Protection Agency, Datatilsynet, Carl Jacobsens Vej 35, 2500 Valby, Telephone +45 33 19 32 00, e-mail firstname.lastname@example.org.
Approved: Carit Jacques Andersen, 10 March 2021
Changes: Updated including adding Healthcare Professionals and Other Stakeholders to the policy
1. Owner and contact information of website
Scandion Oncology A/S
CVR no.: 38613391
Address: Fruebjergvej 3, 2100 Copenhagen Ø
2. Cookies declaration