Privacy Policy

The Company C.E.L.forpharma – short for the Centre for Executive Leadership for the Pharmaceutical Industry - (“Company”, or “we”) takes its users’ privacy very seriously and undertakes to comply in full with the applicable law (Regulation (EU) 2016/679 – hereinafter defined as the “GDPR”).  This document (“Privacy Policy”) provides information on how the personal data collected by the Company through this website www.celforpharma.com (“Website”) or by other means (e.g. e-mail, surveys etc.) are processed, and constitutes “an information notice to the data subjects” under the terms of art. 13 of the GDPR. Specific privacy information notices are published in the Website sections in which users’ personal data are collected; in any event these are supplemented by this Privacy Policy.

1) Data Controller and Privacy Policy Contact ​
The Data Controller is C.E.L.forpharma BVBA, with registered offices in Jan Emiel Mommaertslaan 20A, 1831 Diegem, BELGIUM (“Controller”). 
Ms. Britt De Cat ("Corporate Administration Officer"), is responsible for the company’s Privacy Policy and can be contacted at the following address: britt.decat@celforpharma.com

2) The data we process
The following data can be processed:

  1. Ordinary personal and professional data related to your function (e.g. first name, last name, email address, company, job title, professional interests, etc.) which you may provide when interacting with us by e-mail or with website functions, including requests to use services offered on the Website (e.g. registration to a course, newsletter subscription, contact request, requests for information and reports submitted also through contact forms, etc.) as well as data collected by cookies as specified in the Cookie Policy
  2. Special categories of personal data required for the delivery of high-quality services to our course delegates, such as allergy/dietary requirements (Article 9 of the GDPR). Where that occurs, processing is performed on the basis of the user’s consent at the moment of submitting the registration form. In any event, the legal basis for processing of particular categories of data is subject to the GDPR.

3) Why and how we process your personal data
Upon registration to a course, the Company will process and keep your data to enable you to benefit from our services as of the moment of registration up to completion of the course, and optimise the performance of our courses and services subsequently through statistical analysis. 

Furthermore, with your optional consent, your personal and professional data (e.g. first name, last name, email address, company, job title, professional interests, etc.) may be used for institutional communications (including newsletters) or promotional activities (marketing) i.e., sending advertising material and/or commercial communications pertaining to the Company’s services to the contact details indicated using traditional contact methods (i.e. paper-based mail, telephone calls with operator, etc.) or automatic means (i.e. communications via Internet, fax, e -mail, text messaging, apps for mobile devices such as smartphones and tablets, social network accounts e.g. Facebook or Twitter, etc.). 

All your data are processed using automatic and electronic instruments suitable to ensure full security and confidentiality.

4) Necessary processing and optional processing
The forms to be completed on this website require you to confer personal data which are strictly necessary to handle your communications and requests. Such Data are marked with an asterisk [*]. If you do not wish to confer them, we will not be able to handle your communication/request.
Conversely, forms may also provide the possibility to confer personal data which are not strictly necessary to handle your requests: providing such data is optional - failure to do so has no consequence.

5) Browsing data
If you only visit the Website (i.e., without sending communications or using any of the available services/functions), the processing of your data is limited to browsing data, i.e. data whose transmission to the Website is necessary for the functioning of the computers which operate the Website and of the Internet communication protocols. This category includes, for example, IP addresses or computer domain used to visit the Website and other parameters pertaining to the operating system used to connect to the Website. The Company collects these and other data (such as, for example, number of visits and time spent on the Website) merely for statistical purposes and in anonymous form in order to monitor the functioning of the Website and improve its performance. Such data is not collected to be associated with other information regarding, or for the identification of users; however, such information, by its very nature, may enable the Company to identify users through processing and association with data held by third parties. Browsing data are deleted following processing in anonymous form but can be stored and used by the Company to detect and identify perpetrators of any computer offences committed to the detriment of the Website or using the Website. Without prejudice to this possibility and to the provisions of the Cookie Policy, the browsing data described above are stored only temporarily, in compliance with law.

6) Links to other websites
This Privacy Policy applies to the Website as defined above, as well to e-mail and other communications with the Company. Even though the Website may contain links to other websites (known as third party websites), please be informed that the Company does not perform any access or control over cookies, web beacons or other user-tracking technologies that may be active on such third-party websites, on the contents and materials published thereon, or on their methods of processing of your personal data. For this reason, the Company expressly declines any liability for such matters. You should therefore verify the privacy policies of such third-party websites and collect information about their terms and conditions and about how they process your personal data. 

7) How we store data and for how long 
In compliance with the GDPR, the computers and programmes used by the Company are set up in such a way to reduce the use of personal and identifying data to a minimum. Such data are processed only to the extent required to achieve the purposes indicated in this Policy, and will be stored for as long as strictly necessary for achievement of the specific purposes pursued - in any event, the criterion used to determine the storage period is based on compliance with time limits permitted by law and the principles of data minimisation, storage limitation or rational management of our records.

8) How we ensure your personal data’s security and quality
The Company endeavours to ensure security of the user’s personal data and comply with provisions on security provided by law to avoid data loss, illegitimate or unlawful uses of data or unauthorised access to data. The Company uses many types of advanced security technologies and procedures intended to aid protection of the user’s personal data; for example, personal data are stored on secure servers situated on premises with protected and controlled access. The user can assist the Company to update and correct their personal data by communicating any change of address, qualifications, contact information, etc.

9) Persons who have access to the data
Only staff members of the Company are authorised to access personal data for the performance of their job duties, and processing of data is only authorised to staff in specific functions, i.e. course delivery, account management, etc.

Without your consent, we shall not disclose any Data about you to any third parties, except to business partners (e.g. C.E.L.forpharma’s faculty members) and third-party suppliers (e.g. hotels where we organize our courses) we engage to provide services that involve processing data on our behalf. The mentioned recipients shall only receive the Data necessary for their respective functions and shall process them only for those purposes and in compliance with data protection laws.

The Data shall not be shared with third parties, whether legal or natural persons, who do not perform any function of a commercial, professional or technical nature for the Controller and shall not be disseminated. The parties who receive the Data shall perform processing as Data Controller, Processor or persons authorised to process personal data, as the case may be, for the purposes indicated above and in compliance with the applicable data protection law. 

10) Your Rights
You may at any time exercise the rights afforded by the GDPR, including the right to obtain confirmation of the existence of personal data which relate to you, check its content, origin, correctness, location, request a copy, request correction and in cases provided by law, restriction of processing, deletion, oppose to direct contact activities, oppose to direct marketing (also limited to particular means of communication). Likewise, you may always withdraw consent and/or make observations on specific issues regarding processing operations of your personal data which you regard as incorrect or unjustified by your relationship with the Company, or lodge a complaint with the Data Protection Authority.
You may contact the Controller and/or Privacy Policy responsible at the addresses displayed above to make any requests regarding personal data processing by the Company, to exercise your legal rights and to obtain an updated list of the parties who have access to your data.