INFORMATION ON PERSONAL DATA PROTECTION

Pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, below we provide basic information on the processing of your data collected through this website (hereafter the “Website”).

This Privacy Policy contains all the information on how Laboratorios Farmacéuticos Rovi, S.A., hereafter the Company, processes personal data collected via any of the Company’s websites relating to scientific and professional meetings and events (hereafter called the “Website”) and concerning any interaction users have with the Company.

For the purposes of this Privacy Policy, the following will be understood:

Event(s): events, training, competitions and any other activities the Company organises whose registration and/or attendance occurs via this Website.

User(s): any person who accesses, browses or uses any of the functions available on the Website.

Attendee(s): any person who attends or participates in Events after registering via this Website.

1. Who is responsible for processing the data?

Below you will find the registry and contact details of the company responsible for processing your personal data, and the details of its Data Protection Officer (hereafter “DPO”).

• Name: Laboratorios Farmacéuticos Rovi, S.A.
• Address: Calle de Julián Camarillo, 35 – 28037 Madrid, Spain
• Telephone: +34 91 375 62 30
• Email: protecciondedatos@rovi.es  

2. Who is the Data Protection Officer (DPO) and how can they help you?

The DPO is a legal appointment whose main role is informing and advising the entity on its obligations concerning personal data protection and supervising its compliance. The DPO also serves as the entity’s point of contact for any issue regarding personal data processing. You can therefore contact them if you wish.

DPO contact email: dporovi@rovi.es

3. Which personal data are processed?

The Company processes data provided by users and attendees (hereafter referred to indistinctly as “User” or “Users”) via the various forms and channels on the Website, as well as the data obtained while you browse, or attend or participate in Events. We will only process the personal data provided for the purposes mentioned in this Privacy Policy.

Unless expressly stated otherwise, filling in all the personal data requested in the Website’s data-collection forms is obligatory as the data are essential; if you do not provide us with these data, we will not be able to respond to your query, manage your registration or ensure the correct functioning of the Website. Therefore, Users must fill in all the fields marked as “obligatory” in the forms on the various websites, otherwise it might prove impossible to provide the requested service or the Website will not function correctly.

Any Users providing third-party data guarantee that they have informed the owners of the data and that the owners have given their permission for the data to be provided to the Company, in accordance with data protection regulations. In this respect, Users will release the Company from any liability arising from non-compliance with this guarantee.

Users confirm and guarantee the veracity and accuracy of the data provided and that these data match their current status. In this respect, Users undertake to notify the Company of any change that occurs to the data provided, in accordance with the procedure established in section 8 of this Privacy Policy.

4. What is the purpose of the personal data processing? What is the lawful basis for processing your personal data?

The Company will process Users’ data for the following purposes:

• Allowing access to the Website and its contents and, if applicable, managing registration for Events.
• Managing the attendance of Users at Events, including issuing the certificate of attendance, if applicable.
• Managing the streaming of meetings. If an external provider streams the video on the Website of the Event in question, your data will be processed with the purpose of making that streaming possible.
• Managing your participation in the Event, including the possibility of televoting and/or questions and/or queries.
• Sending surveys to assess the quality of the Event.
• Managing the sending of electronic notifications about the Event.
• Managing the transport, accommodation and allowances of attending health professionals at hotels where they will stay as a consequence of their attendance at the corresponding Event, as well as any dietary preferences. Supplying the data for this purpose is obligatory, otherwise neither the service, nor the transport, accommodation or allowances can be provided.
• Improving the content of the Event by analysing the voluntary information that you provide us.
• Managing and optimising the Website, as well as maintaining its security and integrity to ensure it functions correctly and that the network and information are secure.

The lawful basis for the processing of your data is the Company’s legitimate interest for all the abovementioned purposes.

• If the Event is a competition: Managing your participation and publishing your details on the Website, on social media or on any platform the Company uses for the purpose of publicising the competition or its winners, in accordance with the provisions in the competition rules.

The lawful basis for the processing of the data is the explicit consent given by the participants in the competition organised by the Company by means of their express acceptance of the competition rules. Users can withdraw their consent at any time.

• Proving your status as a health professional.

The lawful basis for processing your data is to comply with a legal obligation.

5. How long are your data processed for?

The personal data collected with the aim of responding to your request or for a specific process will be kept for the time required to deal with it.

Personal data collected as a result of registering on the Website will be processed until the User is no longer registered, either at the User’s request or because the Event ends, provided that processing the data is not required to comply with any purpose for which they were collected.

Finally, the personal data collected via the Website as part of an Event held by the Company will be kept for the time required to manage your registration, attendance and participation in that Company Event.

Your personal data will be erased once all the actions required to manage and discharge obligations between the parties have been completed and the periods have ended. Notwithstanding the above, the data will be blocked while it is stored for as long as any liability may arise from the obligations the Company incurs. 

6. Who will be notified of your personal data?

The Company may notify public authorities, regulators, government bodies or courts of your personal data when this is required by law, local regulations or to comply with regulatory obligations.

Besides the abovementioned notification of data, the Company works with certain external service providers that have access to your personal data and that process the abovementioned data for and on behalf of the Company as a result of the provision of services.

The Company follows strict criteria in the selection of service providers to comply with their data protection obligations and it signs a data processing agreement with them.

7. Are there any international data transfers?

The Company may have third-party workers or service providers located outside the European Union or the European Economic Area (EEA). In these cases, the Company puts in place appropriate legal safeguards to ensure these transfers follow current data protection regulations. You can obtain a copy of the measures the Company requires by contacting the Data Protection Officer. Similarly, the Company may transfer the above-referenced personal data to other companies in the ROVI group for internal administrative or financial management purposes. All the companies in the ROVI Group are in the European Union, except those in the United Kingdom and Switzerland, which have an adequacy decision from the European Commission.

8. What are your rights when you provide us with your personal data?

Users can exercise their right of access to their personal data, and they can request rectification of inaccurate data or their erasure, if applicable. They can also request the limitation, portability and opposition to the processing of their data.

Users also have the right to withdraw their consent at any time without this retroactively affecting the processing of their personal data up to that time.

Users can exercise their abovementioned rights in the terms provided for in current legislation by contacting the Company, the supervisory authority of the Member State where the Event is held or via the email address protecciondedatos@rovi.es.

Below we have identified the supervisory authority in each of the countries where an Event may be held.

• UK: Information Commissioner’s Office.
• Spain: Agencia Española de Protección de Datos.
• Germany: Der Bundesbeauftragte für den Datenschutz und die Informationsfreiheit.
• Italy: Garante per la protezione dei dati personali.
• Portugal: Comissão Nacional de Poteção de Dados Pessoais Informatizados.
• France: Commission Nationale de l'Informatique et des Libertés.
• Austria: Österreichische Datenschutzbehörde.

When appropriate, especially if no satisfactory response is received, you may make a complaint to the Company, whose contact details were provided above.

9. Contact details of the Company’s DPO.

If you have any queries or questions about the Company’s processing of your personal data, you can contact the Company’s Data Protection Officer (DPO) at the following email address: dporovi@rovi.es.