Personal Data Policy & Cookies

The purpose of this personal data protection policy is to inform you about the commitments made by the Mérieux Foundation to ensure that your personal data is respected.

This policy applies to all data collected on the websites managed by the Mérieux Foundation but also to the data collected as part of its activities.

This policy presents the Mérieux Foundation’s various objectives, which may apply to you depending on the context.

As a Data Controller, the Mérieux Foundation is committed to collecting, managing, protecting and preserving your data in accordance with national requirements and those of the EU Regulation No. 2016/679, the General Data Protection Regulation (GDPR).

Definitions

  • Personal Data: any information relating to an identified or identifiable natural person. A natural person is deemed to be “identifiable” if it can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more specific elements specific to its physical, physiological, genetic, psychic, economic, cultural or social identity.
  • Data Processing: operation performed on Personal Data, including the collection, management, use, transmission, communication, retention or protection.
  • Data Controller: legal entity in charge of determining the purposes of the processing and the means implemented.
  • Subcontractor: legal entity that processes Personal Data on behalf of the Data Controller.

Registration and organization of Mérieux Foundation events (courses, conferences, training, etc.)

The personal data we collect and store to help us manage your registration and ensure the event for which you have registered runs smoothly may include:

  • Identification data: your surname, first name, email address, photograph and emergency contact information.
  • Professional data: your position and employer, academic and/or professional background.
  • Data relating to your preferences or intolerances/allergies to allow us to adapt our service.
  • Your bank details

Depending on the way the event is organized, your personal data may be communicated to third parties to ensure the smooth running of the event (the establishment hosting the event, such as Les Pensières, partner university, hotel, etc.).

These third parties may be based outside the European Union. If this is the case, transfers will take place in accordance with the GDPR. For more information on this subject, please contact us at dpo@fondation-merieux.org. After the event, you may receive messages from the Mérieux Foundation, which you can unsubscribe from by following the link at the bottom of the email or by sending an email to dpo@fondation-merieux.org.

Photographs may be taken at these events. You will be asked to provide specific authorization for this as part of your registration.

Sending messages about the Foundation’s activities

You may receive emails from the Foundation if you:

  • Have attended a Foundation event or project
  • Subscribe to the newsletter via our website

The personal data processed for this purpose include your surname, first name, contact details and job title.

If you no longer wish to receive messages from us, you can unsubscribe by following the link at the bottom of the email or by sending an email to dpo@fondation-merieux.org.

Due to the use of certain tools in this context, some of your data may be transferred outside the European Union. If this is the case, transfers will take place in accordance with the GDPR.

Recruitment at the Mérieux Foundation

The personal data we collect and store to help us manage your application and associated interviews may include:

  • Identification data: your surname, first name, email address, postal address.
  • Professional data: work and/or work experience.
  • Contact information for your references: we ask that you inform the relevant people that you are sharing their contact information as part of your application.
  • We are likely to carry out research on professional social networks.

If the position is based outside the European Union, your data will be transferred to the relevant Mérieux Foundation office. If this is the case, transfers will take place in accordance with the GDPR.

We keep your personal data for two years from the date of application. You can object to us keeping your data by writing to us at dpo@fondation-merieux.org. After this period, your application will be deleted.

Relations between suppliers/subcontractors and the Mérieux Foundation

If you work with the Mérieux Foundation on a professional basis, the personal data we collect and store to help us manage the business relationship and project management may include:

  • Identification data: your surname, first name, email address
  • Bank details and CV

Participation in a project in connection with the Mérieux Foundation

  • The personal data we collect and store to help us manage the project you are involved in may include identification data: your surname, first name, email address.
  • Training reports, evaluations of participants.
  • Professional data: your position and employer, academic and/or professional background.

During and after the project, you may receive messages from the Mérieux Foundation, which you can unsubscribe from by following the link at the bottom of the email or by sending an email to dpo@fondation-merieux.org.

Depending on the project, your personal data may be communicated to third parties (funder, project partner, etc.).

These third parties may be based outside the European Union. If this is the case, transfers will take place in accordance with the GDPR. For more information on this subject, please contact us at dpo@fondation-merieux.org.

Security of personal data

The Mérieux Foundation takes the necessary precautions (including administrative, technical and organizational measures) to protect your Personal Data against loss, theft and fraudulent use, as well as against any unauthorized access, disclosure, alteration or destruction of personal data.

Although security measures are applied to the personal data we collect, we must draw your attention to the fact that the transmission of data over the internet (including by email) is never completely secure.

Rights of individuals

In accordance with national and European law, any individual is entitled to exercise the following rights with the Mérieux Foundation when the Foundation processes their personal data:

  • Access their personal data and request the rectification or deletion of their personal data or limit its processing.
  • Oppose the processing of their data and request the portability of their data.
  • If applicable, withdraw, at any time, their consent given to the Mérieux Foundation.
  • If applicable, request the portability of their personal data.

These rights may be exercised by contacting the Mérieux Foundation by email at the following address: dpo@fondation-merieux.org.

Cookies

What is a cookie?

A cookie is a small text file that is placed on your hardware (your computer for example) by a website.

Why does the Mérieux Foundation use cookies?

The Mérieux Foundation is always looking for new ways to improve its website and provide you with a better service. By using cookies, the Mérieux Foundation can make content or advertising on its Website more relevant and adapt them to your personal tastes and needs. In addition, cookies make it easier and quicker for you to interact with our Website and help you browse the different parts of it.

Information collected via cookies may also be used for statistical purposes.

What type of cookies is used by the Mérieux Foundation?

The Mérieux Foundation uses analytical cookies to collect information about how you use the Website in order to improve its content, better adapt it to your wishes, and make it easier to use.

The Mérieux Foundation uses third parties to analyze use of the Website.

Below is an overview and further information about the analytical cookies we use:

Name of the cookie Duration before expiry Description
_ga 2 years Used to distinguish users
__utma 2 years after installation or update Used to distinguish users and sessions. The cookie is created when javascript libraries are run and the __utma cookie does not yet exist. The cookie is updated every time data are sent to Google Analytics.
__utmb 30 min. after installation or update Used to determine new visits. The cookie is created when javascript libraries are run and the __utmb cookie does not yet exist. The cookie is updated every time data are sent to Google Analytics.
__utmc End of browser session Not used in ga.js. This cookie used to be used in conjunction with the __utmb cookie to determine whether the user was in a new session/visit.
__utmz 6 months after installation or update Logs the source of traffic or of a campaign to find out how the user arrived on your site. The cookie is created when javascript libraries are run and is updated every time data are sent to Google Analytics.
__utmv 2 years after installation or update Used to store variable and custom data about a visitor. This cookie is created when a developer uses the _setCustomVar method with a custom variable at the visitor level. This cookie was also used for the _setVar method, which is obsolete. The cookie is updated every time data are sent to Google Analytics.

How can I block and/or delete cookies?

If you do not want the Website to place cookies (except functional cookies) on your computer, you can block and/or delete cookies via your browser settings. Below we show how to block and/or delete cookies for the most frequently used browsers:

If you have blocked some or all of the cookies, the Website may not work properly or you may not have access to certain parts of this site.

Hypertext links

The Mérieux Foundation’ website may offer links to other websites, mainly official websites. These web pages are not part of the Mérieux Foundation’s portals and therefore do not engage the Mérieux Foundation’s responsibility for their content.

We recommended to consult the privacy policy of these sites as their conditions may differ from those of the Mérieux Foundation. The Mérieux Foundation can not be held responsible for any processing of your Personal Data by these other websites.

Contact

You can send a request for information regarding the Mérieux Foundation’s personal data protection policy by e-mail to the following address: contact@fondation-merieux.org.

Amendements

This data protection policy may be subject to updating or changes due in particular to legislative and / or regulatory developments. To this extent, we invite you to regularly check this page to keep you informed of how we protect your Personal Data.