Privacy Policy
Introduction
This Privacy Notice applies to all personal information gathered for and on behalf of Discovery Life Sciences and AllCells (collectively, “we”, “us”, or “DLS”) through the various DLS sites that link or refer to this Privacy Notice (such as any website operated by or on behalf of DLS, mobile applications, or social media pages) together with any and all offline sources including sales and marketing activities (collectively, the “Sources”). By using the Sources, you consent to the data collection and use practices described in this Privacy Notice. IF YOU DO NOT AGREE WITH ANY PART OF THIS PRIVACY NOTICE, THEN PLEASE DO NOT USE ANY OF THE SOURCES.
The Sources may provide links to or the ability to connect with non-DLS websites, social networks or applications (“Third-Party Sites”). Clicking on those links or enabling those connections may allow the third party to collect or share information about you. Those Third-Party Sites are beyond DLS control, and DLS does not accept responsibility for those Third-Party Sites and/or their privacy notices. We encourage you to check the privacy policies and terms of use of any Third-Party Sites before providing your personal information to them.
If you are an individual located in the EU, EEA, Switzerland, or the UK, please click here to review Privacy Notice provisions specific to those geographies and supplemental to those detailed below.
If you are an individual located in California USA, please click here to review Privacy Notice and Policy provisions specific to that geography and supplemental to those detailed below.
Information We Collect
Through your interaction with and use of the Sources, DLS may collect personally identifiable and other information. Depending on the information and/or services you request, you may be asked to provide your name, job title, physical address, telephone number, e-mail address, company affiliation and other information. If you send us correspondence, such as emails, we may keep a record of that correspondence. We also periodically ask users and our customers for feedback that we use to improve our products and services. If you respond to these requests, we will retain that correspondence and feedback.
From time to time DLS may purchase marketing data from third parties and add it to our existing databases to better target our marketing and commercial relationships. To enrich the profiles of individual customer, institutional, and other contacts, we may link this information to the personal information you have provided to us.
DLS may also collect other information through your interaction with and use of the Sources, which does not reveal your specific identity or does not directly relate to an individual. This other information may include, but is not limited to, browser and device information, internet protocol (IP) address, data collected through automated electronic interactions, application usage data, demographic information, geographic or geo-location information, statistical and aggregated information, and other usage information about the use of the Sources, including a history of the pages you view. Statistical or aggregated information does not directly identify a specific person, but it may be derived from personal information. We use this information to help us design our Sources to better suit our users’ needs. We may also use your IP address to help diagnose problems with our systems and to administer our website, analyze trends, track visitor movements, and gather broad demographic information that assists us in identifying visitor preferences. DLS has a legitimate interest in understanding how its website visitors use the website to assist DLS with providing more relevant products and services, with communicating value to our customers and others with whom we do business, and with providing appropriate staffing. In some instances, we may combine personal information with other information, such as combining a precise geographical location with your name. If we combine personal information with other information, we will treat the combined information as personal information.
How We Collect Information
DLS collects information in a variety of ways that fit broadly into the following general categories:
- Direct Interactions: From your use of and interaction with us through the Sources and other activities such as sales inquiries and transactions.
- Publicly Available Data/Data from Third Parties: Other data you may have made publicly available, such as social media posts, or data provided by third-party sources, such as marketing opt-in lists or data aggregators. We reserve the right to combine information from third parties to the information you provided, for instance to research prospective customers and institutional providers.
- Automated Interactions: From the use of technologies such as cookies and other tracking technologies to collect usage data. “Usage data” is information about your activity while accessing the Sources, such as browser type, operating system and webpages visited, that does not alone identify you and so is not considered personal information about you.
Cookies: “Cookies” (which may be html files, javascript files or other technology) are text files that help store user preferences and activity. “Web beacons” (also known as image tags, gifs or web bugs) are small pieces of code used to collect advertising data, such as counting page views, promotion views or advertising responses. The Sources and/or third parties may use “cookies,” “web beacons” and other similar tracking technologies (collectively, “Tracking Technologies”) to collect information from you automatically as you use the Sources, browse DLS websites and the web so that we can recognize revisits to our Sources and provide a more personalized experience. Cookies are sent to your browser from our Sources and stored on your computer or device. DLS uses Cookies to track certain information about your usage and devices, such as host domain, IP address, pages accessed, clickstreams, time spent on our Sources and general browser statistics. DLS uses this information to, among other things, identify broad demographic trends that may be used to provide information tailored to your interests. If we link the usage data we store in Cookies to personal information you submit while using our Sources, we will treat such linked information as personal information that is subject to the obligations and protections set forth in this Privacy Notice.
Other Tracking Technologies: We use Tracking Technologies to help tailor our content, understand website and internet usage, improve or customize the content, offerings or advertisements through the Sources, personalize your experience with respect to the Sources (for example, to recognize you by name when you return to a DLS website), save your password in password-protected areas, help us offer you products or services that may be of interest to you, deliver relevant advertising, maintain and administer the Sources and for other purposes described in the “How We Use and Share your Information” section below.
These Tracking Technologies collect “click stream” data and information regarding your use of the Sources, such as your visits, use of our features and preferences, and may also collect your IP address or some other identifier unique to the device you use to access the Sources (“Identifier”). Your Identifier may be automatically assigned to the device you use to access the Sources. By using the Sources, whether as a registered user or otherwise, you acknowledge, understand and hereby agree that you are giving us your consent to track your activities and your use of the Sources through these Tracking Technologies.
DLS’s use of Automated Interactions may change over time as technology evolves. The descriptions above are designed to provide you with some detail about DLS’s current approach to information collected from Automated Interactions.
How We Use and Share Your Information
Operations
We use personal information and other information collected to:
- allow you to participate in the public areas and/or other features of the DLS websites
- respond to your questions or other requests
- contact you regarding your use of the Sources, for informational purposes related to the Sources or, in our discretion, regarding changes to this Privacy Notice or related policies
- improve the Sources and for internal business purposes
- tailor your experience of the Sources and/or otherwise customize what you see when you use the Sources
- where applicable to conduct ongoing compliance screening against publicly available watch and sanctions lists
- otherwise to maintain, operate and administer the Sources and for other purposes disclosed at the time you provide the information
- to perform marketing studies or internal business research or for other commercial purposes, such to contact you as a representative of your employer about other products or services available from DLS.
The legal bases for the processing of your personal information will depend on the reason you provided your personal information via the Sources: (i) the performance of a contract with you or your employer or in order to take steps at your request prior to entering into such contract, (ii) use of your Personal information is necessary for us to comply with a legal or regulatory obligation, (iii) our legitimate interests (or those of a third party), which will be assessed in connection with the specific use of Personal information, or (iv) your consent, which will be requested when required and given via the other Sources.
Disclosure to Third Parties
We do not sell your personal information. In addition to aggregate information (discussed previously), we may share some kinds of personal information with third parties, as described below.
- Third parties and agents who perform services for DLS: We contract with other companies and individuals to help us provide services including the Sources. In order to perform the services, these other companies may have limited access to some of the personal information we maintain about our users. Other companies may collect information on our behalf through their web sites.
- Business transfers: Your information will be shared amongst the various DLS companies. If we transfer a business unit or an asset (such as an DLS website) to another company, we may transfer the personal information we have collected to the relevant third party.
- Legal requirements: We may be obligated to cooperate with various law enforcement inquiries. DLS reserves the right to share or transfer your information to comply with a legal requirement, disclose any activities or information about you to law enforcement or other government officials as we, at our sole discretion, determine necessary or appropriate, in connection with an investigation of fraud, for the administration of justice, intellectual property infringements, or other activity that is illegal or may expose us or you to legal liability.
Protection of Information
To help protect the privacy of the data and personal information you transmit through use of the Sources, DLS maintains commercially reasonable physical, technical and administrative safeguards that are designed to protect your personal information from loss, misuse and unauthorized access, disclosure, alteration, and destruction.
Informational/Promotional Email Opt-out
From time to time we send email messages with information/promotions, announcements, enhancements, maintenance information and general updates. You can change your preferences for receiving group marketing emails, updates, and other information from us at any time. If you no longer wish to receive these promotional communications, you may opt-out of receiving them by following the instructions included in each communication or you may contact us at Unsubscribe@dls.com.
Retention and Deletion
DLS will retain your personal information for the duration of your business relationship with DLS and for a period thereafter as needed to maintain the history of that relationship; as needed to provide you products or services; as long as it is necessary and relevant for our operations; as needed for the purposes outlined in this Privacy Notice or at the time of collection; as necessary to comply with our legal obligations (e.g., to honor opt-outs), resolve disputes and enforce our agreements; or to the extent permitted by law. To determine the appropriate retention period for personal information, DLS considers the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your personal information and whether we can achieve those purposes through other means, and the applicable legal requirements. At the end of the retention period, DLS will delete your personal information in a manner designed to ensure that it cannot be reconstructed or read.
Sensitive Information
We ask that you not send us, and you not share, any sensitive personal information (e.g., racial or ethnic origin, political opinions, financial background, religious or similar beliefs, sexual life, trade union membership or affiliations, individual medical records and history, physical, mental or physiological health condition or genetic or biometric information, ideological views or activities, information on social security measures, or administrative or criminal proceedings and sanctions which are treated outside pending proceedings).
Changes to This Privacy Notice
We may update this Privacy Notice occasionally, and we reserve the right to amend this Privacy notice at any time, for any reason, without notice to you, other than the posting of the amended privacy notice at this Site. We may email periodic reminders of our notices and terms and conditions, but you should check our sources frequently to see the current Privacy Notice that is in effect and any changes that may have been made to it. Your continued use of the Sources after the posting of any amended Privacy Notice shall constitute your agreement to be bound by any such changes. Any changes to this Privacy Notice are effective immediately after being posted by us.
Children’s Policy
We are committed to protecting the privacy of children. The Sources are not intended for use by children, and we do not knowingly collect or maintain personally identifiable information from any person we actually know is under the age of majority under the applicable laws protecting children’s privacy. If you are under the age of majority, you may not use this website or the other Sources. If you believe we may have collected information from or about a child under age 13 in Europe or under age 18 in the US, please contact our Global Privacy Officer at privacy@dls.com.
Questions & Concerns
If you have any questions or concerns about this Privacy Notice or DLS’s collection and use of your personal information, you can contact our Privacy Officer at Privacy@dls.com
or
ATTN: Discovery Life Sciences Privacy Officer
800 Hudson Way, Suite 1700
Huntsville, Alabama 35806
USA
You are also able to contact DLS with respect to personal data protection matters via its third party reporting mechanism: DLS Compliance Reporting Portal
Website Privacy Notice – Supplemental Provisions Specific to Individuals Located in Europe
Your Rights as a Data Subject
If you are a resident of the EU/EEA or another country that specifically provides these specific rights for data subjects (such as Switzerland and the United Kingdom), you can ask us to confirm whether your personal information is processed by us and for access to your personal information it processes. You may also request us to: correct, amend, block or delete your personal information; verify their content, origin and/or accuracy; ask for a restriction on processing; or object to their processing, in all cases except where the rights of other persons would be violated, where any other legal exemptions to subject access requests may apply, where your request is not legitimate or applicable, or where it is required to conduct company business to the extent allowed by applicable data protection laws. To protect your privacy and the security of your information, we will take reasonable steps to verify your identity before updating or removing your information.
Under the EU General Data Protection Regulation and the UK’s Data Protection Act 2018, you can also ask us to provide you your personal information for transmission to, or to directly transmit to, another data controller. If the sole legal basis for the processing of your personal information is your consent, you have the right to withdraw consent at any time, but such withdrawal will not affect the lawfulness of the processing based on your consent prior to the withdrawal. Should you withdraw consent to future processing of your personal information, we may not be able to contact or interact with you as originally planned when you first provided your consent.
Should you have questions about the information about you that the Company holds and all communications, queries and subject access requests that are related to data protection issues, please contact DLS’s Privacy Officer using the contact information provided in the Privacy Notice.
Cross Border Transfers
DLS is a multi-national company that maintains datacenters around the world and using cloud services, including the United States (DLS’s global headquarters). Please note that your personal information will be transferred to, accessed from and stored in the United States and other jurisdictions that may not be deemed to provide the same level of data protection as your home country for the purposes and with the third parties as set out in this Privacy Notice. By using the Sources, you consent to the transfer of information to countries outside of your country of residence, which may have different data protection rules than those of your country.
DLS stores your personal information in one or more databases on servers or cloud-based storage hosted by DLS or third parties in the United States, but these third parties do not use or have access to your personal information for any purpose other than cloud storage and retrieval or to provide support services to DLS in connection with its information technology systems.
To support the processing of your personal information and the sharing of the same with third parties as described elsewhere in this Privacy Notice, your personal information will be processed by other DLS companies located in the United States and also possibly in the UK and Ukraine. Neither the United States nor the Ukraine have received a finding of “adequacy” from the European Union under the GDPR. DLS has implemented data transfer agreements amongst its affiliates to secure the transfer of your personal information to these jurisdictions outside of your country/jurisdiction of residence. In addition, as a multi-national group of companies, DLS has implemented a global program of privacy standards and expectations to appropriately protect your personal information.
How Your Dispute or Complaint May Be Resolved
Any questions, concerns or complaints regarding the use of your personal information should be directed to DLS Privacy Officer using the contact information presented below. If you are located in the EU or the United Kingdom, have a complaint about the collection or use of your personal information and would like to seek an independent recourse mechanism, you may contact your local Data Protection Authority (DPA). A listing of each EU country’s DPA may be found here: https://edpb.europa.eu/about-edpb/board/members_en
Identification of Data Controller
In addition to Discovery Life Sciences, LLC, the Company legal entity that is the data controller of your personal information is the Company entity located in your jurisdiction and with which you interacted to provide your personal information and/or another DLS legal entity with which you interacted to provide your personal information (if you did not interact with a local legal entity). A listing of DLS legal entities/data controllers is here:
Country Where Company Legal Entity is Located | Company Legal Entity/Data Controller | Discovery Life Sciences Global Privacy Officer | External Data Protection Officer |
---|---|---|---|
Germany | Discovery Life Sciences Biomarker Services GmbH Germaniastraße 7 34119 Kassel |
Lisa M. Montague Hieb,Juris Doctor, CIPP/E, CIPM
Privacy@dls.com |
Dr. Barbara Tomasi MyData-TRUST DPO.DLS@mydata-trust.info +49 32 212296564 |
Bulgaria | Discovery Life Sciences (Bulgaria) EOOD Sopharma Business Towers Building: B,fl 18 5 Lachezar Stanchev Str. 1756 Sofia, Bulgaria |
Lisa M. Montague Hieb, Juris Doctor, CIPP/E, CIPMPrivacy@dls.com +1 256 583 4449 |
Dr. Barbara Tomasi MyData-TRUST DPO.DLS@mydata-trust.info +49 32 212296564 |
Romania | Discovery Life Sciences (Romania) SRL 51 Calea Mosilor, Floor 7, District 3, Room 1 Bucharest, Romania 30144 |
Lisa M. Montague Hieb, Juris Doctor, CIPP/E, CIPMPrivacy@dls.com +1 256 583 4449 |
Dr. Barbara Tomasi MyData-TRUST DPO.DLS@mydata-trust.info +49 32 212296564 |
Poland | Discovery Life Sciences (Poland) Z o.o 12 Bobrzyńskiego Street Krakόw, Poland |
Lisa M. Montague Hieb, Juris Doctor, CIPP/E, CIPMPrivacy@dls.com +1 256 583 4449 |
Dr. Barbara Tomasi MyData-TRUST DPO.DLS@mydata-trust.info +49 32 212296564 |
Ukraine | East West Biopharma LLC AllBio LLC Peremohy Avenue, 118, 03115, Kyiv, Ukraine |
Lisa M. Montague Hieb, Juris Doctor, CIPP/E, CIPMPrivacy@dls.com +1 256 583 4449 |
None |
Switzerland | Discovery Life Sciences (Switzerland) GmbH Untermueli 7, 6302 Zug – 4th Floor |
Lisa M. Montague Hieb, Juris Doctor, CIPP/E, CIPMPrivacy@dls.com +1 256 583 4449 |
None |
United Kingdom | Discovery Life Sciences (UK) Limited c/o Rouse Partners LLP 55 Station Road, Beaconsfield Bucks HP9 1QL |
Lisa M. Montague Hieb, Juris Doctor, CIPP/E, CIPMPrivacy@dls.com +1 256 583 4449 |
None |
If you are located in the EU, EEA, or Switzerland, the DLS legal entities located in the United States and the UK and Ukraine that process your personal data have appointed the following company to act as their GDPR representative:
Discovery Life Sciences (Bulgaria) EOOD
Attention: Global Privacy Officer
Sopharma Business Towers, Building 1-B
Floor 18
1756 Sofia, Izgrev, z.k. Iztok
Bulgaria
Privacy@dls.com
If you are located in the UK, the DLS legal entities located in the United States and the EU, EEA, Switzerland and Ukraine that process your personal data have appointed the following company to act as their UK representative:
Discovery Life Sciences (UK) Limited
Attention: Global Privacy Officer
c/o Rouse Partners LLP
55 Station Road
Beaconsfield, Buckinghamshire
HP9 1QL
UK
Privacy@dls.com
In addition (and as further described in the Section Cross Border Transfers above), if your personal data is provided to the Company’s global headquarters in the United States, a US legal entity is also a data controller of your personal information:
Discovery Life Sciences, LLC
800 Hudson Way, Suite 1700
Huntsville, Alabama 35806 USA
Attention: Global Privacy Officer
Email: Privacy@dls.com
The European and the US legal entities will, in that case, act as joint controllers. If you wish to have information on the essence of the arrangement between the joint controllers regarding the processing of your personal information, you can contact the data protection officer using the contact details mentioned above.
Privacy Notice and Policy for California Users (Business Contacts)
Introduction
The California Consumer Privacy Act, as amended by the California Privacy Rights Act, and its implementing regulations (collectively, the “CPRA”), gives California residents certain rights and requires businesses to make certain disclosures regarding the Processing of Personal Information. This California Privacy Notice and Policy for California Users (Business Contacts) provides supplemental disclosures to those provided in the Website Privacy Notice and applies only to California-resident individuals with whom DLS interacts in a business-related capacity. This Privacy Notice and Policy does not apply to individuals who are residents of other U.S. states or other countries and/or who do not interact with DLS in a business-related capacity.
Information We Collect
In connection with your use of the Sources, we may collect the categories of personal information listed below about you and other users. In the preceding twelve (12) months, DLS has disclosed personal information about the users of its Sources to the general categories of third parties identified in the chart below.
DLS does not sell your personal information/sensitive personal information and also will not share it with third parties for cross-context behavioral advertising.
Category of Personal Information | Relevant Examples | Does DLS Collect? | Has DLS Collected in the Preceding 12 Months? | Has DLS Disclosed for a Business Purpose in the Preceding 12 Months? |
---|---|---|---|---|
A. Identifiers | Name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver’s license number, passport number, or other similar identifiers. | YES | YES | YES (affiliates, website and technology service providers, other service providers, government authorities) |
B. California Customer Records personal information | Name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories. | YES | YES | YES (affiliates, website and technology service providers, other service providers, government authorities) |
C. Protected classification characteristics under California or federal law | Such as citizenship (based on your physical location) and gender/gender identity | YES | YES | YES (affiliates, website and technology service providers, other service providers, customers/vendors (if your employer), government authorities) |
D. Commercial information | Records of products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. | YES | YES | YES (affiliates, website and technology service providers, other service providers, customers/vendors (if your employer), government authorities) |
E. Biometric information | Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data. | NO | NO | NO |
F. Internet or other similar network activity | Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement. | YES | YES | YES (affiliates, website and technology service providers) |
G. Geolocation data | Physical location or movements, such as device location and use of facility access badges. | YES | YES | YES (affiliates, website and technology service providers) |
H. Sensory data | Audio, electronic, visual, thermal, olfactory, or similar information, such as call and video recordings. | YES | YES | YES (affiliates, website and technology service providers) |
I. Professional or employment-related information | Current or past job history, such as your employer(s). | YES | YES | YES (affiliates, website and technology service providers, other service providers, customers/vendors (if your employer), government authorities) |
J. Non-public education information | Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. | NO | NO | NO |
K. Inferences drawn from other personal information | Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. | NO | NO | NO |
L. Sensitive Personal Information | 1. Social Security, driver’s license, state identification card, or passport number; | NO | NO | NO |
2. account log-in, financial account, debit card, or credit card number in combination with any required security or access code, password or credentials allowing access to an account; | NO | NO | NO | |
3. precise geolocation; | YES | YES | YES (affiliates, website and technology service providers) | |
4. racial or ethnic origin, religious or philosophical beliefs, or union membership; | NO | NO | NO | |
5. contents of mail, email, and text messages of which DLS is not the intended recipient of the communication; | NO | NO | NO | |
6. genetic data; | NO | NO | NO | |
7. biometric information for the purpose of uniquely identifying you; | NO | NO | NO | |
8. health information; | NO (and we ask that you do not provide such information to DLS while accessing the Sources) | NO | NO | |
9. sex life or sexual orientation. | NO | NO | NO |
You are the primary source of the personal information that is collected by DLS when you are accessing the Sources. We may also collect your business contact personal information from joint marketing partners, public databases, providers of demographic data, publications, professional organizations, social media platforms, and Service Providers and Third Parties when they disclose information to DLS.
¹Personal information does not include:
- Publicly available information from government records.
- De-identified or aggregated consumer information.
- Information excluded from the scope of the California Consumer Privacy Act of 2018 (CCPA), like:
- health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA) or clinical trial data;
- personal information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FRCA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver’s Privacy Protection Act of 1994.
How We Use Your Personal Information
DLS and our service providers, collect, process, and disclose your personal information (excluding sensitive personal information) to:
- Provide you with a service or take an action that you request;
- Identify and engage scientific and other experts;
- Identify speakers and invitees to conferences and other scientific and educational programs we host or sponsor;
- Determine your potential involvement in future activities with DLS and contact you in relation to these activities;
- Communicate with you when you participate in, or request to be considered to participate in DLS events, research, or other programming;
- Respond to your requests for information about our products and services;
- Communicate other information that we think may be of interest to you through our websites and via email, postal mail, and other channels, including promotional communications, about our products and services;
- Conduct auditing related to our current interactions with you, including counting ad impressions and unique visitors to our website;
- Tailor our messaging and communications to you, including messaging and communications for promotional purposes;
- Personalize your website experience;
- Provide this Privacy Notice and Policy and other informational forms to you in an accessible format as needed;
- Better understand the market for our existing products and services, and potential new products and services, and adjust our research, development, and marketing strategies accordingly;
- Detect security incidents and other fraudulent activity;
- Monitor and improve our website functionality and security;
- Conduct business and marketing research;
- Meet our contractual obligations to you, if you provide us with products or services;
- Analyze the quality of products and services provided, including by analyzing call recordings;
- Monitor and secure our facilities, equipment, and other property;
- Process and manage contracts and other written agreements we may enter with you and the companies for which you work;
- Comply with laws and regulations, including, without limitation, applicable tax, health and safety, anti-discrimination, immigration, labor and employment, and social welfare laws;
- Monitor, investigate, and enforce compliance with and potential breaches of DLS policies and procedures and legal and regulatory requirements;
- Comply with civil, criminal, judicial, or regulatory inquiries, investigations, subpoenas, or summons; and
- Exercise or defend the legal rights of DLS and its employees, affiliates, customers, contractors, and agents
DLS and our Service Providers, will only use sensitive personal information for the purposes described below that are also authorized by the CPRA and its implementing regulations:
- Performing the services or providing the products reasonably expected by an average business contact who requests those products or services;
- Ensuring security and integrity to the extent the use of your personal information is reasonably necessary and proportionate for these purposes;
- Preventing, detecting, and investigating security incidents that compromise the availability, authenticity, integrity, or confidentiality of stored or transmitted personal information;
- Resisting malicious, deceptive, fraudulent, or illegal actions directed at DLS and prosecuting those responsible for those actions;
- Ensuring the physical safety of natural persons;
- Short-term, transient use, including, but not limited to, nonpersonalized advertising shown as part of your current interaction with us; provided that we will not disclose your personal information to a Third Party and/or build a profile about you or otherwise alter your experience outside the current interaction with DLS;
- Performing services on our behalf, including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing financing, providing analytic services, providing storage, or providing similar services on our behalf; and
- Collecting or processing sensitive personal information where such collection or processing is not for the purpose of inferring characteristics about you.
Retention and Deletion
Except as otherwise permitted or required by applicable law or regulation, we will only retain your personal information for as long as reasonably necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements, including to provide products/services to you. Under some circumstances we may anonymize your personal information so that it can no longer be associated with you. We reserve the right to use such anonymous data for any legitimate business purpose without further notice to you or your consent. Once you are no longer an employee of DLS we will retain and securely destroy your personal information in accordance with our data retention processes and applicable laws and regulations.
Your Rights Under the CPRA
You have the following rights under the CPRA:
- To request deletion of the personal information you provided to DLS (but note that DLS may not be required to comply with a request for deletion, and we will provide you with the reasons if any request to delete is denied)
- To request that DLS correct inaccurate personal information about you
- To request what personal information DLS has collected, used and disclosed about you
- To request to know what personal information is sold to or shared with third parties for cross-context behavioral advertising purposes and also to opt out from such sales or sharing
- To opt-out of the sale and sharing of your personal information and to limit the use of your sensitive personal information. NOTE THAT WE WILL NOT SELL OR SHARE ANY OF THE CATEGORIES OF PERSONAL INFORMATION WE COLLECT ABOUT BUSINESS CONTACTS, AND WE HAVE NOT SOLD OR SHARED ANY PERSONAL INFORMATION IN THE PAST 12 MONTHS.
Should you want to exercise any of these rights, please send an email to Privacy@dls.com or call DLS’s Privacy Office at (800) 461-9330. You may authorize an agent to make a data subject rights request on your behalf, and your authorized agent may also do so via these submission methods. We may ask you to provide information that will enable us to verify your identity in order to comply with your data subject request. In particular, if you authorize an agent to make a request on your behalf, we may require the agent to provide proof of signed permission from you to submit the request, or we may require you to verify your own identity to us or confirm with us that you provided the agent with permission to submit the request. In some instances, we may decline to honor your request if an exception applies under the CPRA. We will respond to your request consistent with applicable law.
DLS does not provide financial incentives to California business contacts who allow us to retain, Sell, or Share their personal information. We will separately describe such programs if and when we offer them to you.
Changes to This Privacy Notice and Policy
We reserve the right to update this Privacy Notice and Policy at any time. Any updated Privacy Notice and Policy will be made available, at a minimum, on the Sources.
Questions & Concerns
DLS has appointed a Privacy Officer to oversee compliance with this Privacy Notice and Policy. If you have any questions or concerns about this Privacy Notice and Policy or DLS’s collection and use of your personal information, you can contact our Privacy Officer at Privacy@dls.com
or
ATTN: Discovery Life Sciences Privacy Officer
800 Hudson Way, Suite 1700
Huntsville, Alabama 35806
USA
Discovery Life Sciences Privacy Notice – Updated July 2023