Phone: + 49 (0) 621 8359 687 50
Compliance with data protection requirements in accordance with the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG) as well as the respective applicable laws and the protection of your personal data when using our Website are very important to us. A Website on the Internet is a telemedia service. According to Sec. 13 (1) of the Telemedia Act (TMG), the service provider is required to inform users at the beginning of any usage process in an understandable manner about type, scope and purpose of collection and use of their personal data as well as about the processing of their data. We therefore will also inform you in the following about how VAXIMM handles your personal data when using the company’s Website (section II)
- Drug development
The VAXIMM Website has been designed to provide a general overview of VAXIMM and its development programs to a wide variety of visitor groups. vaximm.com is a Website of VAXIMM, providing information about the company, development partnerships and cooperations, news and events as well as various links to websites of individual publications, to which you may be redirected according to your information needs. The information contained on the pages does not include any medical advice. VAXIMM’s drug candidates have not yet been approved for marketing by any regulatory authority to date. The product candidates specified on this Website are currently either undergoing clinical trials or preclinical research and development.
The documents on this Website are up to date at the time of posting. VAXIMM explicitly disclaims any obligation to keep the respective posted information up to date. The information contained on this Website does not include any guarantees or assurances, either explicit or implied. While VAXIMM aims to ensure the accuracy of the information on this Website, such information may contain technical inaccuracies, typos or other errors. Should you wish to use any information on this Website, you should therefore verify its accuracy through independent sources. VAXIMM does not warrant accuracy, completeness, reliability and usefulness of the information provided on this Website, except in case of intentional errors. Furthermore, we are not liable for technical faults and do not guarantee that our Website is free of computer viruses.
We are liable for the content of this Website pursuant to legal requirements. VAXIMM explicitly retains the right to modify, add, delete, or otherwise post parts of the pages or the entire content temporarily or permanently without separate announcement.
VAXIMM does not wish to receive any confidential or copyrighted information through this Website We therefore ask you to note that VAXIMM assumes that any information transmitted via this Website is not confidential.
- Copyright and trademark law
VAXIMM’s corporate policy includes exploiting intellectual property rights to the fullest extent permitted by law. All product names, whether or not printed in capitals or using the trademark symbol, are trademarks of VAXIMM, unless explicitly stated otherwise. Unless explicitly permitted (e.g. offered “downloads”), the entire content of this Website, including all images and text elements, is copyrighted and must not be reproduced, circulated, downloaded, modified, reused, forwarded or used in any other way without the explicit prior written consent of VAXIMM.
- Referrals and links
This Website may include links to third-party websites. The content of such websites is not part of VAXIMM’s Website and is not reviewed by the company. VAXIMM does not assume any liability either for the availability or content of such websites. We do not make any recommendations, guarantees or warranties for information, products or services offered on linked websites.
- Legal validity
- Responsibility/Data Protection Officer
Controller as defined in the General Data Protection Regulation and other national data protection laws of the Member States as well as other data protection regulations is;
Phone: + 49 (0) 621 8359 687 50
Company Data Protection Officer is:
Ms. Claudia Przybilla
Phone: + 49 (0) 621 8359 687 50
- Collection, use, storage and erasure of personal data
We process our users’ personal data only if this is necessary to provide a functional Website as well as to offer our content and services. We also process personal data that you provide as part of an (online) application or send us in connection with your subscription to the free newsletter provided by VAXIMM.
Personal data usually will be processed only upon the user’s consent (legal basis: point (a) of Article 6(1) GDPR). Exceptions apply in cases, where obtaining prior consent is not possible for practical reasons and where processing such data is permitted by law. If processing is necessary to safeguard our legitimate interest or that of a third party, and if your interests, fundamental rights and freedoms do not outweigh such interest, point (g) of Article 6(1) GDPR serves as the legal basis for processing.
We need your e-mail address for your subscription for our newsletter. Your e-mail will be used for the purpose of sending the newsletter only. Any data entered by you in the contact form will be used exclusively for our correspondence with you. Such data will not be disclosed to third parties – neither for commercial nor for non-commercial purposes. Your e-mail address will be stored for as long as the subscription to the newsletter is active.
Your personal data will be erased or blocked, once the purpose of their storage ceases to apply. Data may also be stored if this has been provided for by European or national law in EU regulations, laws or other provisions governing the controller. Data will also be blocked or erased upon expiry of a storage period prescribed by the aforementioned provisions, unless such data must be retained for conclusion or performance of a contract.
Cookies are information packages transmitted from web servers to web browsers and stored by the web servers. The information is returned to the server whenever the browser requests a page from the server. This enables a web server to identify web browsers and to track their path. There are two main types of cookies: Session cookies und persistent cookies. Session cookies are deleted from your computer when you close your browser, while persistent cookies are stored on your computer until they are deleted or reach their expiration date. Persistent cookies may be used to collect identifying information about the user, such as web surfing behavior or the user’s preferences for a particular website.
By using our Website, you consent to the use and storage of cookies on your terminal device. You may also view our Website without cookies. Most browser accept cookies automatically. You can prevent cookies from being stored on your terminal device by selecting “do not accept cookies” in your browser settings. You can delete cookies stored on your storage device at any time. For detailed instructions on how to do this, refer to the manual of your browser or terminal device.
- Social plug-ins/web analysis
a) Web analysis by Matomo (formerly PIWIK)
Our website uses the open-source software tool Matomo (formerly PIWIK) to analyze our users’ surfing behavior. The software places a cookie on the users’ computer (see above for cookies). If individual pages of our Website are accessed, the following data are stored:
- Two bytes of the IP address of the user’s accessing system,
- The accessed website,
- The previous website visited by the user before accessing the Website (referrer),
- The sub-pages accessed from the accessed Website,
- The time spent on the Website,
- The frequency of visits to the Website.
The software runs exclusively on the servers of our Website. The users’ personal data are stored there only. The data are not disclosed to any third party. The software is configured such that IP addresses are not stored in full, but 2 bytes of the IP address are masked (e.g. 192.168.xxx.xxx). It is therefore no longer possible to attribute the shortened IP address to the accessing computer.
Legal basis for processing the personal data of users is point (f) of Article 6(1) GDPR. Processing the personal data of users enables us to analyze our users’ surfing behavior. Analyzing the gathered data enables us to compile information about the use of the individual components of our Website. This helps us with constantly improving our Website and its user-friendliness. These purposes also constitute our legitimate interest in processing the data pursuant to point (f) of Article 6(1) GDPR. The users’ interest in protecting their personal data is adequately taken into account when rendering the IP address anonymous.
The data are erased once they are no longer needed for our recording purposes. With us, this is the case after three months.
For more information about the privacy settings of the Matomo software, please consult https://matomo.org/docs/privacy/.
b) Use of Twitter and LinkedIn plug-ins
c) Use of WordPress plug-ins and plug-ins from other providers
Additional plug-ins from the following providers are incorporated into our Website:
When you visit our Website, these plug-ins establish a direct connection between your browser and the respective server. Please note that we as provider of the pages do not have any knowledge of the content of the data transmitted or of its use.
- Your rights as data subject
The respective applicable laws provide for various rights regarding your personal data. If you would like to exercise such rights, please direct your queries by post or e-mail to the following address, clearly identifying yourself:
a) Right to confirmation and access to information
You have the right to ask us to confirm at any time whether your personal data is being processed. If this is the case, you have the right to access such personal data and the following information:
- The purposes of processing,
- The categories of processed personal data,
- The recipients or categories of recipients, whom such personal data has been or will be disclosed, in particular in case of recipients in third countries or international organizations,
- If possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining such duration,
- The existence of a right to rectification or erasure of personal data that concerns you or to restriction of processing by the controller or the right to object to such processing,
- The existence of a right to lodge a complaint with a supervisory authority,
- If the personal data is not collected from you, all information available about the origin of such data,
- The existence of automated decision-making, including profiling referred to in Article 22(1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for you.
b) Right to rectification
You have the right to obtain without undue delay the rectification of inaccurate personal data concerning you. Taking into account the purposes of the processing, you have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
c) Right to erasure (“right to be forgotten”)
You have the right to demand from us the erasure of personal data concerning you without undue delay and we have the obligation to erase personal data without undue delay where one of the following grounds applies:
- The personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed,
- You withdraw consent on which the processing is based according to point (a) of Article 6(1) GDPR, or point (a) of Article 9(2) GDPR, and there is no other legal ground for the processing,
- You objects to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21(2) GDPR,
- The personal data has been unlawfully processed,
- The personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject,
- The personal data have been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.
Where we have made the personal data public and are obliged pursuant to Article 17(1) GDPR to erase the personal data, we, taking account of available technology and the cost of implementation, will take reasonable steps, including technical measures, to inform controllers which are processing the personal data that your have requested the erasure by such controllers of any links to, or copy or replication of, those personal data.
d) Right to restriction of processing
- You have the right to obtain from the controller restriction of processing where one of the following applies:
- The accuracy of the personal data is contested by you, for a period enabling the controller to verify the accuracy of the personal data,
- The processing is unlawful and you oppose the erasure of the personal data and requests the restriction of their use instead,
- We no longer need the personal data for the purposes of the processing, but you require them for the establishment, exercise or defense of legal claims, or
- You have objected to processing pursuant to Article 21(1) GDPR pending the verification whether the legitimate grounds of the controller override those of you.
e) Right to data portability
You have the right to receive the personal data concerning you, which your have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from us, where:
- The processing is based on consent pursuant to point (a) of Article 6(1) GDPR or point (a) of Article 9(2) GDPR or on a contract pursuant to point (b) of Article 6(1) GDPR; and
- The processing is carried out by automated means.
In exercising your right to data portability pursuant to Article 20(1) GDPR, you have the right to have the personal data transmitted directly from us to another controller, where technically feasible.
f) Right to object
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning your, which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions. We no longer process the personal data unless we demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.
Where personal data are processed for direct marketing purposes, you shall have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.
Where you object to processing for direct marketing purposes, the personal data will no longer be processed for such purposes.
At the latest at the time of the first communication with you, the right referred to in paragraphs 1 and 2 GDPR will be explicitly brought to your attention and will be presented clearly and separately from any other information.
In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, you may exercise your right to object by automated means using technical specifications.
Where personal data are processed for scientific or historical research purposes or statistical purposes pursuant to Article 89(1) GDPR, you, on grounds relating to your particular situation, have the right to object to processing of personal data concerning you, unless the processing is necessary for the performance of a task carried out for reasons of public interest.
g) Automated individual decision-making, including profiling
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. We do not apply automated decision-making based on the collected personal data.
h) Right to revoke consent under data protection law
You have the right to revoke your consent to the processing of your personal data at any time.
i) Right to lodge a complaint with a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to your is illegal.