EIT Health’s Venture Centre of Excellence Names ProductLife Group as Privileged Partner for Regulatory & ComplianceLearn More
ProductLife Group Announces Acquisition of Zwiers Regulatory Consultancy and Coverage Expansion to the NetherlandsLearn More
The Acquisition of Pharma IT Will Enable PLG to Strengthen its Foothold in Northern Europe and Offer New Services in the Context of Life Sciences DigitilisationLearn More
The controller as defined within the General Data Protection Regulation (GDPR) and within other national privacy legislation of the member states and other privacy regulations is:
Groupe ProductLife S.A.S.
– Group Head Office –
40 boulevard Henri Sellier
Tel.: +33 4 72 91 27 50
E-Mail: [email protected]
The data protection officer of the data controller is:
When visiting our website, we log the following data transmitted by your browser:
This data will be saved to a log file.
Legal basis for the temporary processing of your data and for saving the log files is art. 6 sec. 1 lit. f GDPR.
Saving the IP address for the duration of your session is required for delivering the website to your system. Delivery of the website also constitutes our legitimate interest for the purpose of which your IP address and connected data is processed.
The data we are saving to logs is processed for evaluating our offerings, optimizing our website appearance and to defend us against cyber threats. The logged data will not be combined with other data sources and will not be used for marketing purposes.
The aforementioned purposes constitute our legitimate interests in terms of art. 6 sec. 1 lit. f GDPR.
The data is deleted when it is no longer of use for the purposes it has been collected for. With respect to data collected for delivering the website this is the case when the session expires. Data saved to log files will be deleted within thirty days.
Our website provides contact e-mail addresses that you can use to contact us electronically. Data you provide to us via e-mail will be transmitted to us and saved. There is no transfer of personal data to any third party in this context. All data you provide will be processed exclusively for dealing with your inquiry.
Please note that ordinary email communication is not encrypted and provides a lower safety standard than other means of digital communication. Please be aware of this before contacting us via email and refrain from providing us with sensitive data via email whenever possible.
Where processing of the provided data is required for taking steps to entering into a contract with you or for fulfilling a contract with you, such processing takes place on the basis of art. 6 sec. 1 lit. b GDPR. Otherwise processing is based on art. 6 sec. 1 lit. f GDPR, with our legitimate interests being to enable direct and uncomplicated communication with customers and prospects and to deal with them in a professional and service oriented manner. A transfer of your personal data or processing for other purposes does not take place.
Your data will be deleted once it is no longer required for the purposes they were collected for. This is the case, when the conversation with you is completed, i.e. when the subject matter has been resolved.
Contact via Contact Form
You may also use the contact form provided on our website. In case you choose to do this, we collect the following data from you, apart from the subject and message text of your inquiry:
You may also choose the service that most closely relates to the subject you are contacting us about, and you may upload and add a file to your message. The data collected through the contact form is added to our customer relationship management tool (“CRM”) to enable us to optimally provide you with our support.
Where processing of the provided data is required for taking steps to enter into a contract with you or for fulfilling a contract with you, such processing takes place on the basis of art. 6 sec. 1 lit. b GDPR. In other cases, processing is based on art. 6 sec. 1 lit. f GDPR, with our legitimate interests being to enable direct and uncomplicated communication with customers and prospects and to deal with them in a professional and service oriented manner.
We employ the services of Efficy SA, Rue Colonel Bourg 122, 1140 Evere, France (“Efficy”) to realize our CRM. Efficy are our data processor and do not process your data for their own purposes. The transfer of your data is based on our legitimate interest in providing an appropriately professional communication experience to our customers and other interested parties, art. 6 sec. 1 lit. f GDPR.
The other data that is processed (i.e. IP address, etc.) when sending out the message serves to prevent misuse of the contact form and to ensure the security of our systems. This is within our legitimate interests as defined in art. 6 sec. 1 lit. f GDPR.
The data is no longer processed as soon as it is no longer necessary for fulfilling the purposes of the data collection. Concerning the data that is entered into the contact form, this will be the case as soon as there is no more need to save the data for further communication with you. This occurs as soon as the conversation with you has ended. The conversation has ended when the circumstances suggest that the exchange between the parties has concluded indefinitely. Further archiving of our communication may occur for legal purposes concerning tax or trade legislation or other reasons with legal implications.
The other data that is processed (i.e. IP address, etc.) will be deleted not later than thirty days after its collection.
The user may, at any time, object to storing the data provided to us via contact form or e-mail. This may be done by addressing our data protection officer (see above for contact information) with an informal e-mail that provides the necessary information to link the objection to the related conversation. In this case, the conversation can not be continued. Any personal data that was stored during the conversation will be deleted if it is no longer needed for verification purposes provided by national or European law or for the purposes of defending against or enforcing legal claims.
For our newsletter, we process your e-mail address. You are subscribed to our newsletter automatically after you have entered into a contractual relationship with us as a representative of a business (B2B). Our contractual relationship then also serves as the verification process for your email address. You may also contact us via contact form or email in order to subscribe to our newsletter if you wish. Of course, you may also unsubscribe from the newsletter – every email you receive will contain an unsubscribe-button that informs us that you no longer wish to receive our newsletter as you click it.
The legal basis for dispatching the newsletter is within our legitimate interest in informing our customers of current developments relevant to our field as well as marketing us, our products and our services to our existing customers, art. 6 sec. 1 lit. f GDPR. In other cases, we get your consent before providing you with our newsletter, art. 6 sec. 1 lit. a GDPR.
The data collected will be held until the user objects to receiving the newsletter or revokes his consent by unsubscribing. You may cancel your subscription to our newsletter at any point in time. A link for cancelling your newsletter subscription may be found at the end of every newsletter received.
For dispatching the newsletter we employ the services of Flexmail nv, Jaarbeurslaan 29-31, 3600 Genk, Belgium (“Flexmail”). Flexmail works with us on the basis of a data processing agreement, art. 28 sec. 3 GDPR. Flexmail does not use the data of the newsletter recipients to contact them themselves or to transfer the data to any third party.
The newsletters may contain a so-called „web-beacon“. This is a file the size of a pixel that informs us via our service provider Flexmail that the newsletter has been opened. This transfer of data contains information concerning the employed browser and operating system as well as your IP address and the time of access to the newsletter. This information is used for improving our services either by technical means or by better understanding our target audience and its reading preferences also in terms of current location (determined via IP address) and/or time of access. As part of these statistical measurements, also the links that are opened are logged. These evaluations are done for the purposes of adapting our content to the preferences and interests of our customers or for sending out content adapted to specific target groups. Herein lie our legitimate interests in accordance with art. 6 sec. 1 lit. f GDPR.
On our website, we provide you with the option to register for webinars organised by us. To participate in our webinars, we collect the following personal data from you:
We will use this data to communicate with you regarding this event. The legal basis for this processing activity is art. 6 sec. 1 lit. b GDPR, the necessity for the performance of a contract at your request. For the purpose of organizing these webinars in a professional manner, we employ the services of LogMeIn, Inc., 320 Summer Street, Boston, MA 02210, USA. As the service provider resides within the USA, your data may also be transferred outside the European Union. Please be aware of this before registering for one of our webinars. Our legal basis for this transfer is found in art. 49 sec. 1 lit. b GDPR, the necessity for the performance of a contract at your request.
In case you regsiter for a webinar, your contact information will also be integrated into our CRM (for more information check the entry “Contact via Contact Form”) for further communication. You will also be added to the mailing list for our newsletter. Of course, you may object to this at any time by unsubscribing (for more information check the entry “Newsletter”).
During the application process, we only collect the data that you provide us with. In case you want to apply for a job, we direct you to our contact form (for more information see above). We advise you to send us your application via our contact form. Should you decide to send us your application via email, this happens unencrypted. We inform you that the transfer of unencrypted information is not considered safe in terms of data privacy.
After receiving your application, we use the data provided by you to determine if you are suited for the job opening and to carry out the application process. Suitable applications will be forwarded internally to the person responsible for the department in question. Then, the further procedure for the application is determined. Access to your data is granted solely to the persons within the company that need it in order to properly carry out the application process. For further information concerning our hiring process and our company identity, please go to
The data you provide us with through the application process is processed on the legal basis of art. 6 sec. 1 lit. b GDPR to take steps at your request prior to entering into a contract. This involves processing activities that are necessary for the purposes of making a decision about entering an employment relationship.
Should your data be needed for the purposes of defending our legal interests after the completion of the application process, your data will be processed under the conditions of excercising our legitimate interests under art. 6 sec. 1 lit. f GDPR. Those interests then consist of excercising or defending against legal claims. The data usually is deleted 6 months after the opening has been filled.
In case we have an ongoing interest in your profile despite not choosing you for the current opening, we will ask for your permission for further saving and processing your data to check for compliance with other job offers within our company. This processing will only take place with your consent. Should you not give your consent within the time frame we save your data anyway due to our legitimate interests as described above, your data is deleted. In other cases, your data is deleted immediately after a rejection.
In case you consent to further processing as described above, we will transfer your data into our applicants pool on the legal basis of art. 6 sec. 1 lit. a GDPR and will be considered for future openings. Your data is deleted from our data base after 2 years. You may withdraw your consent for further processing without affecting the lawfulness of processing before the withdrawal. Please send us an e-mail to if you wish to withdraw your consent.
Should your application result in an employment relationship, your data will be transferred to our human resources department for further processing.
For our website we make use of ssl encryption (secure socket layer) with the highest encryption level supported by your browser. Usually this will be 256-bit encryption. If your browser doesn’t support this, our website falls back to 128-bit technology. Most browsers show encryption status by displaying a closed lock icon next to the URL or in the status bar.
We have implemented appropriate technical and organisational measures to protect the integrity, confidentiality and availability of your personal data. The measures we have implemented are being continuously improved and updated according to the progress of technological development.
No automated Decision-Making
While using our services, you are not subject to any exclusively automatic decision-making process – including profiling – that takes legal effect or affects you significantly in any similar manner.
You have the right to obtain from us confirmation as to whether or not personal data concerning you are being processed. Upon request we gladly inform you in writing about which personal data are being processed by us, including their origin, any recipients of your personal data as well as the purpose of processing.
You have the right to obtain from us rectification of personal data concerning you to the extent we save such data and provided it is inaccurate.
You have the right, under the preconditions of art. 18 sec. 1 GDPR (for example if the accuracy of the data is disputed or the processing is unlawful), to obtain from us restriction of processing, which means that we may only process your personal data subject to such restriction under the preconditions of art. 18 sec. 2 GDPR (for example with your consent or for the exercise or defence of legal claims).
You have the right to obtain from us the erasure of your personal data under the preconditions of art. 17 sec. 1 lit. a-f GDPR (for example if the personal data is no longer needed or processing is unlawful) unless exceptions following art. 17 sec. 3 lit. a-e GDPR apply (for example if there are legal obligations to process the personal data).
You have the right to receive from us your personal data that you have provided to us in a structured, commonly used and machine-readable format and to transmit those data to another controller without hindrance from us.
You have the right to lodge a complaint with a supervisory authority, if you feel our processing of your personal data is unlawful.
You have the right to access the data collected and processed about you free of remuneration. You also have the right to demand correction of your data, restriction of processing, erasure of your data and to receive a copy of your personal data. In case you have excercised your right of erasure, restriction of processing or correction of your data, you may also demand that we subsequently inform any recipients of your data provided to us.
Furthermore, you have the right to address a supervisory authority with a complaint you may have concerning our processing activities. You may also object to the processing of your personal data.