Privacy Policy
At Biocon Ltd. we are committed to protecting your personal information.
This Privacy Notice is prepared based on the DPDPA (Digital Personal Data Protection Act, 2013 INDIA), GDPR (General Data Protection Regulation) guidelines and ISO 27001-2013 requirements.
This Notice outlines the types of personal information Biocon may collect; the means by which Biocon may collect, use, or share your personal information; steps Biocon takes to protect your personal information; and choices you are provided with respect to the use of your personal information.
This Notice only applies to Biocon websites that link to this Notice. We do not include or offer third party products or services on our website. All the links is to our products and services, to our subsidiaries, and companies and organizations we are affiliated to.
For purposes of this Privacy Notice, ‘Personal Data’ is any information by which you can be individually identified, both directly and indirectly, including, but not limited to, your name, address, e-mail address, and telephone number.
Please be aware that certain features of this site may not be available to you if you elect not to provide certain Personal Data. Any Personal Data you provide to us on our websites will be used in accordance with this Privacy Notice.
Minors
This website is not designed or intended for use by children under the age of 18. We do not knowingly collect any Personal Data on this website from anyone under the age of 18 without the prior, verifiable consent of a parent or guardian. Such parent or guardian may have the right, upon request, to view the information provided by the child and require that it be deleted. Moreover, all minors should seek their parent’s or guardian’s permission prior to using or disclosing any Personal Data on this website or online resource.
Identity and Contact Details of the Data Controller
The data controller is Biocon Ltd, 20th KM, Hosur Road, Electronic City, Bangalore, India – 560 100. You may contact the data controller by mail or email at dpo@biocon.com.
The personal information we collect from you when you visit our website
On this website, we may request Personal Data about you. Examples of Personal Data that we may collect that directly identifies you includes your name, contact information, email address, and other information in combination with these identifiers. We may also collect certain Personal Data that does not directly identify you by name, but could be used to identify that a specific computer or device has accessed our website, activity data.
Personal information we collect when you report a possible side effect associated with one of our products may include information such as your gender, date of birth and information about your health.
How do we use personal information?
We use personal information for the purposes described below, or as otherwise described at the time of collection:
Responding to Requests or Inquiries
We may use the information that you provide to us to take the steps necessary to respond to your request. For example, you may submit a medical information request, inquire about a product, create an account or register in our platforms or subscribe to one of our mailing lists. Depending on your request, we may collect your contact information (such as your name, mailing address, telephone number, job title), your interests and preferences (such as products or areas of interest), and any other information you provide to us.
We collect and process your Personal Data for these purposes based on our legitimate interest to respond to your request. If you have submitted sensitive Personal Data as part of your inquiry, we will also base such processing on your explicit consent.
Provide our Services
It is in our legitimate business interests to use personal information to operate, maintain, and provide you with our Services, including registering you for an account on our Services and subsequently providing you with access to scientific and pharmaceutical information on our Services. If we have entered into a contract with you, we will use your personal information as required for us to perform our contractual obligations under the relevant contract.
Communicate with you about our Services
It is in our legitimate business interests to use personal information to respond to your requests, provide support, and communicate with you about our Services, including by sending announcements, updates, security alerts and support and administrative messages.
Personalizing Your Experience
We may collect certain information about you, your preferences, and how you have interacted with us in the past in order to understand your interest in our products and services so that we can best serve you. This may include information about your contact and product preferences, languages, marketing preferences, and demographic data.
In cases where we collect this information automatically, we collect and process this information for our legitimate business interests. In other cases, we will collect and process this information pursuant to your consent.
Website Analytics and Tracking
Where permitted by law, we may combine Personal Data you provide with other information you’ve provided to Biocon through our websites. Where permitted by law, we may also combine Personal Data collected through our websites and online resources with Biocon’s offline records. More information about this can be found in the section below on ‘cookie’.
In cases where we collect this information automatically, we collect and process this information for our legitimate business interests. In other cases, we will collect and process this information pursuant to your consent.
Tracking and Monitoring Adverse Events and Pharmacovigilance
Some specified parts of our websites may collect Personal Data related to adverse events or other activities related to pharmacovigilance. This information is very important for public health and will be used for the detection, assessment, understanding, and prevention of adverse events or other medicine-related problems.
To Run and Maintain our website
We use this information to secure our websites, network systems, and other assets. This may include information concerning your IP address, geographic location, resources you have accessed, and similar information.
We collect this information automatically for our legitimate business interests to run, maintain, and secure our websites.
Compliance and protection
We may use personal information to comply with legal obligations, and to defend us against legal claims or disputes, including to: (a) protect our, your or others’ rights, privacy, safety or property (including by making and defending legal claims); (b) audit our internal processes for compliance with legal and contractual requirements and internal policies; (c) enforce the terms and conditions that govern the Services; (d) prevent, identify, investigate and deter fraudulent, harmful, unauthorized, unethical or illegal activity, including cyberattacks and identity theft; and (e) comply with applicable laws, lawful requests and legal process or requests from government authorities. In these circumstances, we will process your personal information to either to comply with a legal obligation or when it is in our legitimate business interests.
Cookies and Other Web Trackers
Our websites and online resources also collect other basic information about you which may not directly identify you, but which may correspond with you or a particular device. We use some of this information to allow our websites to run, as well as to learn more about how our websites and online resources are used and to otherwise improve and administer the site. We also use this information to enable us to deliver information tailored to your interests and preferences, based on your use of the site. In most cases, this information is collected automatically, for our legitimate business interests.
You can choose to accept or decline cookies.
If you choose to decline cookies, not all elements of this website may function as intended, effecting your website experience.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since browser is a little different, look at your browser’s ‘Help Menu’ to learn the correct way to modify your cookies.
Use of Data for Marketing
We do not sell or transfer your Personal Data to any non-affiliated entity for their own direct marketing use unless we provide clear notice to you and obtain your explicit consent.
We may send you direct marketing communications about goods, services, and products that we think may be of interest to you as permitted by law, including by email. Where required by law, we will only send you marketing information if you consent to us doing so at the time you provide us your personal information. Otherwise, we will only send you marketing information if it is in our legitimate business interests to send such information.
We engage our advertising partners, including third party advertising companies and social media companies, to display ads around the web. These companies may use cookies and similar technologies to collect information (including the automatically collected data described above) about your interactions over time across our Services, our communications, and other online services, and use that information to serve online ads that they think will interest you. Where required by law we will undertake such advertising activities based on your consent. Otherwise we will do so only if it is in our legitimate business interests to undertake such activities
Information Sharing / Recipients of Personal Data
Recipients of Your Personal Data
We may share your Personal Data with Biocon’s affiliates around the world. Our affiliates will use your Personal Data for the same purposes as we do.
We may also share your Personal Data with third parties, such as our service providers, regulators, governments and law enforcement authorities, professional advisors and auditors for the following purposes:
- To help fulfill Biocon’s business transactions;
- To conduct technical maintenance of our websites and other web platforms;
- To facilitate a merger, consolidation, transfer of control or other corporate reorganization, or pursuant to a financial arrangement undertaken by Biocon;
- To respond to appropriate requests of legitimate government authorities, or where required by applicable laws, court orders, or government regulations; and
- Where needed for corporate audits or to investigate or respond to a complaint or security threat
International Transfers of Your Personal Data
Any Personal Data you provide to us through your use of this website may be transferred to or stored in a geographic region that imposes different privacy obligations than your country of origin. This means that your Personal Data may be sent to a country with less restrictive data protection laws than your own. Any such transfer will be conducted in compliance with applicable law.
If your Personal Data is covered by the GDPR: For transfers of Personal Data to a third country outside the European Union (EU), European Economic Area (EEA) or in absence of an adequacy decision, within the Biocon Group, business partners and service providers, we have entered into agreements that include contractual protections for the transfer of your personal information (such as Standard Contractual Clauses approved by the European Commission and the international data transfer agreement approved by the UK government).
Retention / Storage Period of Your Personal Data
Where required under applicable laws, we retain personal information only for as long as is necessary to fulfil the purposes for which it was collected and processed, in accordance with our retention policies, and in accordance with applicable laws and regulatory obligations, or until you withdraw your consent (where applicable).
To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of personal information, the purposes for which we use personal information and whether we can achieve those purposes through other means, any permissions you give us with regards to your personal information, and the applicable legal and regulatory requirements.
Information About Your Rights Regarding Your Personal Data
Data privacy laws provide you with several rights over your personal information.
You may:
- Ask Biocon for access to your personal information we hold;
- Request corrections and/or deletions of your personal information;
- Request to restrict the processing of your personal information, or object to that processing;
- Withdraw your consent (where Biocon is processing your personal information based on your consent)
- Request for the receipt or the transfer to another organization, in a machine-readable form, of the personal information that you have provided to Biocon; and
- Complain to your local data protection authority of violation of your privacy rights, or your suffering as a result of unlawful processing of your personal information.
- If you would like to exercise your rights, please let us know by getting in touch with us as set out in the ‘Contact Us’ section above.
Please note that erasure or restriction of processing is only possible if and to the extent that the processing of Personal Data is based on your consent or our legitimate interests. If data processing is based on consent, note that you have the right to withdraw your consent at any time, but that the withdrawal of your consent does not affect the lawfulness of processing based on consent before its withdrawal. In the event of an erasure request, we may retain a copy of your Personal Data for our record-keeping purposes and to avoid entering your personal data in our systems after your request.
Data Security
Biocon and its service providers and collaboration partners take reasonable steps to protect Personal Data we access or receive through this website from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. Nevertheless, Biocon makes no guarantee as to the security of your Personal Data and disclaims, to the fullest extent permitted by law, all liability and damages caused by loss, misuse, and unauthorized access, disclosure, alteration, or destruction. We recommend that you take any available precautions to protect Personal Data you submit on this website.
Notification of Breach
According to this policy, breach notification will be sent if there is a breach within a period of 72 hours. Not only the customers, but the data processors will also have to notify the controllers, the moment they get to know there is a breach.
Updates to This Privacy Notice
From time to time, we may revise this Privacy Notice. Any such changes to this Privacy Notice will be reflected on this page. Biocon recommends that you review this Privacy Notice regularly for any changes. The date on which this notice was last revised is located at the top of this notice
Contact Us
Corporate Communications
20th KM, Hosur Road,
Electronic City,
Bangalore, India – 560 100
Email: corporate.communications@biocon.com