1. Scope
This Privacy Notice (“Notice”) describes how omicX (“omicX”, “we”, “us” and “our”) collect, use, share,
secure, and eventually dispose of (collectively “process”) your personal data. Personal data is any information that does,
or could, identify you. Your rights over your personal data are set out in Section 11 – Your Rights.
This Notice applies to personal data collected by our websites, apps, and services (collectively “services”),
and in the course of routine offline business contact with you.
This Notice is addressed primarily to our customers,
service users (including visitors to our sites and trial users),
sales prospects and individuals whose professional data is included in our services.
2. About omicX
omicX provides solutions to promote the discovery of ideas and strategies through curated content and unique tools.
We offer a broad range of services in different life science fields such as scientific and academic research,
intelligence & services and industry codes & standards.
3. Changes to this notice
We will update this privacy policy from time to time. Any changes will be posted on this page with an updated revision date.
If we make any material changes, we will provide notice through the Service or by other means.
Version 02, updated on 29/07/2019.
4. Personal data collected
Sources of personal data
We collect personal data directly from you:
-
check
When you use our services, e.g. when you purchase or access our services,
we will collect your professional profile details and other information that you choose to upload to your account.
We will also store your log-in credentials to our services.
-
check
When you interact with us, e.g. when you fill in an online form,
we collect the information that you include in those forms or, when you seek help with technical issues,
you may share information about your devices, such as their operating system and installed programs.
-
check
Through cookies and similar technologies included on our services, e.g.
when you access our website, we collect device and usage information on your use of our services.
For more information on how we use standard technologies,
like web server logs and cookies and web beacons, please consult our Cookie Policy.
We also collect personal data about you from third parties:
-
check
The organization(s) to which you belong or person(s) who have arranged your access to our services, e.g.
your employer or the institution you’re affiliated with may provide us with contact information so that
we can set up your login.
-
check
Our partners and service providers, e.g. technology providers in connection to your use of our services.
-
check
Publicly available sources like academic publications, patent offices, and regulatory agencies, e.g.
if you are an academic author or researcher, a patent holder, or clinical trials investigator,
your professional data such as your name, work contact details, and specialization may be included in our services.
If you have questions about this use of your data, contact us at [email protected]
-
check
Other public or paid-for sources, e.g. we may acquire marketing lists from third parties
to identify prospects for our services (see Section 11 – Your Rights)
for information on managing your marketing preferences.
5. Types of personal data we collect
How you interact with us, and the different products and services we offer,
or that you are identified in connection with, determines what personal data we collect about you.
The personal data we collect may consist of the following:
-
check
Name and contact details, e.g. name, business e-mail address, postal address, telephone number.
-
check
Log-in Credentials, e.g. security and credentialing information required to access our services.
-
check
User inputted content, e.g. content you provide to us when you use our products and services
(for instance, if you contact our customer service team or any information you choose to include about yourself in our products).
-
check
Device information, e.g. information about your computer or other device, such as IP address,
location or provider.
-
check
Usage information, e.g. information about your use of our services, such as date and time of visits,
the pages viewed, time spent at one of our websites, as well as your favorites and search queries.
-
check
Purchase history, e.g. purchases you have made, when your subscriptions expire or renew.
-
check
Demographic information, e.g. your country and preferred language.
-
check
Billing information, e.g. credit card number and payment details if you make a payment through our services.
Sensitive personal data. We do not process personal data about race or ethnicity; political opinions,
or religious or philosophical beliefs; trade union membership; or genetic, biometric, health,
or sex-life information (“special categories of personal data” as defined by the European Union General Data Protection Regulation)
unless you provide or indicate such information in a user-controlled area of our services, for example a professional profile.
We may occasionally collect personal data that are subject to enhanced security requirements,
such as requiring a credit card or government-issued ID to complete a transaction you have requested.
6. Purposes of processing
This section sets out the purposes for which we use your personal data.
Your relationship with omicX will determine which purposes apply to you.
We are required by law in Europe to explain in this Notice the legal grounds on which we rely to process your personal data.
Generally, we process your personal data as follows:
-
check
Specific marketing & promotional purposes: offers from omicX or our partners.
-
check
Contractual obligations: if you have a contract with us, we process your personal data to perform that contract.
-
check
Customer and service administration: to provide, activate and manage your access to, and use of,
our services; to provide user and technical support; to enforce our terms of business; to provide technical,
product and other support and help to keep the Service working, safe and secure; to report to our content and technology providers;
to process and fulfill a request, order, download, subscription or other transaction or administrative task.
-
check
Product analysis and development: to analyze the functionalities we offer and to improve the design
and content of our services (including sharing your personal data across our services allowing us
to make all our services more intuitive and user-friendly) we may use information collected on our services,
usually in aggregated form. This helps us to better understand your use of our services and to enhance your enjoyment and experience.
We may also provide information about your use of the services to a third party who has made the services available to you
(for instance, your employer).
-
check
Security: to protect the security of our IT systems, architecture and networks as well as to prevent misuses of our services.
-
check
Our or a third party’s legitimate interests: namely customer and product administration, provision and improvement of our services,
protection of legal rights and marketing. We do not disclose your contact information to third parties for their marketing purposes.
More detailed information about these legitimate interests is set out below.
-
check
To identify usage trends and develop data analysis, including for the purposes of research,
audits, reporting and other business operations.
We may disclose aggregated or other usage information about our users,
or information that does not identify any individual, without restriction.
-
check
To personalize products: to deliver personalized functionality in our services,
for instance we may retain your browsing and usage information to make your searches within our services more relevant.
We also analyze product usage information to understand which content and tools are most useful for our users and to allow us,
or our partner companies or joint-venture partners to deliver and suggest customized services
that we believe may be of interest to you as determined by your choices in managing
your communications preferences and other settings.
-
check
To tailor advertising content. We aim to offer you advertising content that is the most relevant to you.
In this context, we use, whether separately or combined, the personal information you provide, we collect,
or we infer from your use of the Service and the Internet.
This enables us to display advertisements that best match to your particular interests.
We do not disclose your contact information to third parties for their marketing purposes.
-
check
To comply with legal or regulatory obligations: to meet a court order or a regulator requirements.
-
check
To exercise our legal rights: to defend ourselves from claims and to comply with laws and
regulations that apply to omicX or third parties with whom we work.
-
check
To participate in business restructuring or similar transactions:
to participate in, or be the subject of, any sale, merger, acquisition, restructure, joint venture,
assignment, transfer or other disposition of all or any portion of our business, assets or stock.
7. Recipients of the data
Your personal data will, depending on the purposes of processing,
be disclosed to different individuals and organizations, including:
-
check
omicX employees, contractors and partners whose roles require access to your data.
Personnel are bound to confidentiality terms which cover their obligations to protect personal data.
-
check
The account administrator or the person providing you access to our services,
in the case of corporate subscriptions.
-
check
Service providers who process personal data on our behalf (“processors”);
for example Cloud computing providers and web analytics services like Google Analytics and credit card payment processors.
Such vendors are contractually bound to protect your data to the same standard as set out in this Notice and,
in the case of credit card payment processors,
to meet the Payment Card Industry Data Security Standard (PCI DSS).
-
check
Professional advisors such as legal counsel and information security professionals
where reasonably required to protect our rights,
users, systems and our services.
-
check
Government agencies, law enforcement, courts and other public authorities where we have a duty to disclose your personal data by law.
-
check
Subscribers to our services. If your personal data is collected
from public sources for inclusion in our product databases and any personal data you choose to provide
to us for display in our services (for example, in profiles and when using online forums),
your personal data will be accessed by users of our services.
-
check
Prospective and actual buyers, sellers, advisers or partners in relation to any sale merger,
acquisition, or similar corporate event involving omicX.
-
check
Other third parties you have asked us to share information with, e.g.
if you upload information into a public platform or forum that is publicly accessible.
8. Data security
omicX maintains appropriate administrative, technical,
and physical security measures to protect your personal data from accidental loss and unauthorized access or use.
These measures include encryption, firewalls, roles-based data access, intrusion-detection software,
and physical access controls to data centers. However, we cannot guarantee that loss, misuse,
unauthorized acquisition, or alteration of your data will never occur.
9. Data storage
omicX is a global business, and your data may be transferred to countries with different privacy and data protection laws than your own,
including to countries, such as the United States.
As far as possible, we store your information on servers located within the European Economic Area (EEA).
However, some of our service providers are located outside of the EEA, and it may be necessary to transfer
your personal information for processing in these countries. Some of those countries may have a different
regulation on data protection than the European Union. In such cases, we pay special attention to make such
data transfers compliant with applicable regulation and put in place equivalent safeguards with respect to
the protection of your privacy, fundamental rights and freedoms to the ones offered by the European Union
(notably by using Standard Contractual Clauses of the European Commission).
10. Data retention
We undertake to keep your personal information for no longer than is necessary for the purposes
for which we process them, in accordance with the regulations.
In order to calculate the retention period of your personal data, we use notably the following criteria:
-
check
The duration of your contract, if you have entered into such contract with omicX,
-
check
The time required to proceed your request or your claim,
-
check
The duration for which your user account is opened, unless you have been inactive for 1 year,
-
check
Your reactivity to our marketing information,
-
check
The need to keep a record of your interactions with us, for a good management of our commercial relationship,
-
check
Our legal or regulatory obligations.
We may have to keep some of your personal data for a longer duration, in an archive file,
in order for us to be able to defend in a legal action,
until the end of the statute of limitation provided by applicable law.
For more information on how long we store your data, please contact us at [email protected]
11. Your rights
You have the following rights in respect of the processing of your personal information:
-
check
To request access to your information at any time,
-
check
To have your information corrected,
if it is inaccurate or not up to date, which will help us to comply with our obligation to have up-to-date information about you,
-
check
To have your information erased (also known as the right to be forgotten),
although such right might be limited in view of our contractual or legal obligations,
-
check
To receive a copy of your information in a structured, commonly used and machine-readable format,
and transmit it to another data controller (also known as the right to data portability),
-
check
To object to the processing of your information, on grounds relating to your particular situation,
and to restrict processing of your information, in the cases provided by the regulation,
-
check
To object to marketing information (notably when profiling is used),
you can unsubscribe by using the unsubscribe link in the email we send you,
-
check
To withdraw your consent at any time, for the purposes for which we collected your consent.
To exercise any of these rights, you may contact us, providing a proof of your identity,
by email at [email protected] or by post at:
omicX
Data Protection Representative
72 rue de la République
76140 Le Petit-Quevilly, France
You can unsubscribe from our mailings at any time by sending a request to omicX.
You can also unsubscribe at any time in the future by using the link that appears in the footer of every
email that we send to you or in your profile page.
Finally, you have the right to lodge a complaint with the Information Commissioner’s Office about
the processing of your personal data.
We encourage you to contact us before making any complaint and we will seek to resolve any issue or concern you may have.
12. Links
Our services may contain links to third party sites.
Please be aware that omicX is not responsible for the privacy practices of any third-party sites.
Therefore, we encourage you to read the privacy statement of each and every site that you use that collects personal data about you.
13. Contact us
Contact us by email on: [email protected]
Or by post to:
omicX
Data Protection Representative
72 rue de la République
76140 Le Petit-Quevilly, France
Submission of complaints to the CNIL
All complaints must be submitted to France’s regulatory authority, the Commission Nationale de L’Informatique et des Libertés (CNIL):
3 Place de Fontenoy
TSA 80715
75334 Paris 07
In the event you still have requests or complaints, please contact the Berlin Commissioner for Data Protection and Freedom.