This policy applies to all data collected on the websites managed by the Mérieux Foundation but also to the data collected as part of its activities.
As a Data Controller, the Mérieux Foundation is committed to collecting, managing, protecting and preserving your data in accordance with national requirements and those of the EU Regulation No. 2016/679, the General Data Protection Regulation (GDPR).
Personal Data: any information relating to an identified or identifiable natural person. A natural person is deemed to be “identifiable” if it can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more specific elements specific to its physical, physiological, genetic, psychic, economic, cultural or social identity.
Data Processing: operation performed on Personal Data, including the collection, management, use, transmission, communication, retention or protection.
Data Controller: legal entity in charge of determining the purposes of the processing and the means implemented.
Subcontractor: legal entity that processes Personal Data on behalf of the Data Controller.
The Personal Data we collect may include your first and last name, e-mail address and, in certain circumstances, other particular categories of Personal Data with your explicit prior consent, or in a contractual framework or even if we are required to do so under a legal obligation incumbent on us.
The Mérieux Foundation ensures that the Personal Data in its possession is:
The Data Processing implemented by the Mérieux Foundation has explicit, legitimate and determined aims.
These purposes are mainly the following:
The Mérieux Foundation only communicates your Personal Data to the internal departments and Subcontractors who need it for the execution of the tasks entrusted to them and which they must carry out on behalf of the Mérieux Foundation.
All persons having access to your Personal Data are identified and held by an obligation of confidentiality.
We will retain your Personal Data in our systems for the longest of any of the following: (i) the period of time required for the activity or operations; (ii) any retention period imposed by law; (iii) the end of the limitation period applicable following a dispute or an investigation that may arise in the context of the activity or services concerned, unless prior request for deletion sent to dataprivacy@fondation-merieux.org.
At the end of this period, your Personal Data will be destroyed, in accordance with the applicable regulations.
The Mérieux Foundation may outsource some of its Data Processing and, in this context, transfer Personal Data outside the European Union. In these situations, the Mérieux Foundation undertakes to conclude contractual clauses with the Subcontractors guaranteeing an adequate level of protection.
In addition, the Mérieux Foundation may also be required to provide your Personal Data in the event that such disclosure is required by law, an administrative authority or for the purposes of legal proceedings.
The Mérieux Foundation takes all necessary precautions (including administrative, technical and organizational measures) to protect your Personal Data against loss, theft and fraudulent subtraction, as well as against any unauthorized access, disclosure, alteration or destruction of Personal Data.
Although all security measures deemed reasonably necessary are applied once your Personal Data has been collected, we draw your attention to the fact that the transmission of data over the Internet (including via e-mail) is never fully secure.
In accordance with national and European law, any natural person is entitled to exercise the following rights with the Mérieux Foundation when the latter carries out a Processing of its Personal Data:
These rights can exercised to the Mérieux Foundation by mail to the following address:
17 rue Bourgelat
69002 Lyon, France
accompanied by a copy of a signed identity document, or by e-mail to the following address: dataprivacy@fondation-merieux.org.
A cookie is a small text file that is placed on your hardware (your computer for example) by a website.
The Mérieux Foundation is always looking for new ways to improve its website and provide you with a better service. By using cookies, the Mérieux Foundation can make content or advertising on its Website more relevant and adapt them to your personal tastes and needs. In addition, cookies make it easier and quicker for you to interact with our Website and help you browse the different parts of it.
The Mérieux Foundation uses analytical cookies to collect information about how you use the Website in order to improve its content, better adapt it to your wishes, and make it easier to use.
The Mérieux Foundation uses third parties to analyze use of the Website.
Below is an overview and further information about the analytical cookies we use:
Cookie | Expiry | Description |
---|---|---|
_ga | 2 years | Used to distinguish users |
__utma | 2 years after installation or update | Used to distinguish users and sessions. The cookie is created when javascript libraries are run and the __utma cookie does not yet exist. The cookie is updated every time data are sent to Google Analytics. |
__utmb | 30 min. after installation or update | Used to determine new visits. The cookie is created when javascript libraries are run and the __utmb cookie does not yet exist. The cookie is updated every time data are sent to Google Analytics. |
__utmc | End of browser session | Not used in ga.js. This cookie used to be used in conjunction with the __utmb cookie to determine whether the user was in a new session/visit. |
__utmz | 6 months after installation or update | Logs the source of traffic or of a campaign to find out how the user arrived on your site. The cookie is created when javascript libraries are run and is updated every time data are sent to Google Analytics. |
__utmv | 2 years after installation or update | Used to store variable and custom data about a visitor. This cookie is created when a developer uses the _setCustomVar method with a custom variable at the visitor level. This cookie was also used for the _setVar method, which is obsolete. The cookie is updated every time data are sent to Google Analytics. |
If you do not want the Website to place cookies (except functional cookies) on your computer, you can block and/or delete cookies via your browser settings. Below we show how to block and/or delete cookies for the most frequently used browsers:
If you have blocked some or all of the cookies, the Website may not work properly or you may not have access to certain parts of this site.
The Mérieux Foundation’ website may offer links to other websites, mainly official websites. These web pages are not part of the Mérieux Foundation’s portals and therefore do not engage the Mérieux Foundation’s responsibility for their content.
We recommended to consult the privacy policy of these sites as their conditions may differ from those of the Mérieux Foundation. The Mérieux Foundation can not be held responsible for any processing of your Personal Data by these other websites.
You can send a request for information regarding the Mérieux Foundation’s personal data protection policy by e-mail to the following address: dataprivacy@fondation-merieux.org.
This data protection policy may be subject to updating or changes due in particular to legislative and / or regulatory developments. To this extent, we invite you to regularly check this page to keep you informed of how we protect your Personal Data.