INTRODUCTION
This page explains how personal data is processed for users who visit the www.dompe.com website ("Website") and use its contact forms to communicate with Dompé. Provided under Article 13 of EU Regulation 2016/679 ("GDPR"), this notice does not apply to processing by other websites accessed through external links.
CONTACT DETAILS OF THE DATA CONTROLLER AND THE DATA PROTECTION OFFICER (DPO)
Dompé farmaceutici S.p.A. (hereinafter referred to as "Dompé"), with its registered office located at Via San Martino 12, 20122 Milan, serves as the Data Controller. For any inquiries, Dompé may be contacted at privacy@dompe.com.
The Data Protection Officer can be reached at dpo@dompe.com.
CATEGORIES OF DATA PROCESSED
The Website collects the following personal data:
- Browsing data—Automatically gathered via internet protocols, including IP addresses, domain names, requested resource URIs, request times, methods, response status codes, file sizes, and operating system details.
- Cookies—Used during browsing as described in our cookie policy.
- User-provided data—Submitted through contact forms.
PURPOSE OF THE PROCESSING
Personal data collected via the Website is processed for the following purposes:
- To maintain the proper operation of the Site by collecting browsing data related to Internet communication protocols.
- To respond to requests received through the Website from data subjects. With the exception of specifically designated forms (such as pharmacovigilance communications), the processing of sensitive and judicial data is excluded, and such data—if provided by the user—will be deleted. Specific information notices will be made available or displayed on relevant pages of the Website that are designed for particular services.
- To establish or defend the rights of the owner, including determining liability in cases of hypothetical computer crimes against the Website.
- To comply with legal obligations, including those related to Pharmacovigilance reports.
NATURE OF THE PROVISION
The provision of browsing data is essential for the Website’s functionality; without it, access to the Website would not be possible.
With regard to data voluntarily provided by the data subject, submission is optional. However, choosing not to provide such information will preclude a response to any inquiry, though it will not affect the overall operation of the Website.
PERSONS AUTHORISED TO PROCESS
The data collected via the Website may be processed by personnel appointed by Dompé who have received appropriate operational instructions, as well as by consulting firms and/or service providers specifically designated as data processors in accordance with Article 28 of the GDPR, including companies within the Dompé Group.
Personal data provided by users through requests for informational materials (such as brochures or other documentation) are utilized solely to fulfill the requested service or performance and are disclosed to third parties only when necessary for specific activities (e.g., companies handling packaging, labeling, or shipping).
COMMUNICATION OF DATA
The Data Controller may disclose personal data to independent third parties, such as Public Authorities, for judicial or investigative purposes (either independently during preliminary investigations or under the Public Prosecutor's direction). Otherwise, data will not be shared or disclosed to third parties.
DISSEMINATION AND TRANSFER OF DATA ABROAD
Data collected via the Website may be transferred outside the European Union to countries such as the United States or Albania, where Dompé Group companies are located. Such transfers are conducted pursuant to intercompany agreements and are subject to appropriate safeguards, including the adoption of Standard Contractual Clauses.
Furthermore, data may be shared with third parties external to the Dompé Group, such as web service providers (e.g., Google). In these instances, data transfers will also be protected by adequate safeguards, including Standard Contractual Clauses, when the destination country does not benefit from an adequacy decision under Article 45 of the GDPR.
RIGHTS OF THE DATA SUBJECTS
Under Articles 15 and following of the GDPR, users have the right to access their personal data at any time to verify its content, origin, and accuracy, as well as to request additions, updates, modifications, deletions, or blocking in cases of legal non-compliance. Data subjects may also request restriction of processing, data portability, erasure, anonymization, or blocking of data processed unlawfully, and may object to data processing on legitimate grounds. To exercise these rights, users can contact the Data Controller by writing to privacy@dompe.com.
Additionally, data subjects are entitled to file a complaint with the Supervisory Authority if regulations regarding personal data protection are violated.
