Our commitment

SANOFI fully understands the importance of privacy and the protection of Personal Data in the digital era and is committed to ensure an adequate level of data protection for Sanofi.com Website Users.

What will you find in this document?

This Privacy Policy (“Policy”) describes the activities carried out by SANOFI requiring the use of Personal Data of Sanofi.com Website Users. The objective of this Policy is to help you understand why SANOFI processes Sanofi.com Website Users’ Personal Data and the measures it implements to protect such Personal Data.

Personal Data means any information that relates to an individual (‘Data Subject’) which directly or indirectly identifies him/her.

This Privacy Policy does not describe the cookies used in our websites. To know more, please refer to our cookies policy available in the banner of our websites. 

SANOFI’s role

For the purposes of this Policy SANOFI means SANOFI and all its affiliates, acting as data controllers either independently or jointly. Please note that in order to exercise your rights or ask any question, you should reach the Affiliate in your country or use the form available here.

Each specific privacy notice shall set out which SANOFI entity determines for what reasons (i.e. the purposes) your Personal Data is processed as well as the resources (i.e. the means) allocated to such processing.

Validity and evolution of this policy

This Policy may be modified by SANOFI, from time to time, in particular to reflect changes in applicable legislations and / or in SANOFI’s practices. Changes will be available on this page. We invite you to check this Policy periodically.

This Policy is a Global Privacy Policy which explains SANOFI’s processing activities regarding Sanofi.com Website Users. It is subject to local adaptations and translations in order to comply with any applicable law. In the event that this Privacy Policy for Sanofi.com Website Users contradicts the Local Privacy Policy, the provisions of the Local SANOFI Website Privacy Policy shall prevail.

    SANOFI may process your Personal Data for the various purposes set out below. 

    Purpose 1: Communicate with you

    Based on legal obligations, SANOFI may use your Personal Data to respond to your requests or inquiries or provide support for products and services. 

    For this purpose, SANOFI may collect data that directly or indirectly identifies you, including: 

    • Identification data (e.g. name, date of birth, postal address, e-mail address, etc) should you provide these information to us 
    • Messages you may send us using this website 
    • Information regarding your internet connection and the equipment you use to access our websites, and usage details, such as your Internet Protocol (IP) address
    • Location data that may be provided by your machine and browser if you allow such information to be shared with SANOFI
    • Data which may be collected by cookies: Data collected using cookies can be identifiable, or completely anonymized. In both cases, your consent is required and will be collected before storing cookies on your browser.

    SANOFI collects your Personal Data:

    • Directly from you when you provide it to us
    • Automatically as you navigate through Sanofi.com 

    Purpose 2: Comply with legal obligations  

    In order to comply with its legal obligations, SANOFI may process your Personal Data to respond to legal requests from administrative or judicial authorities, in accordance with applicable laws and regulations.  

    For this purpose, SANOFI collects data that directly or indirectly identifies you and that you provided to us to fulfill the purposes outlined in this Policy. 

    SANOFI collects your Personal Data:

    • Directly from you when you provide it to us 
    • Automatically as you navigate through Sanofi.com 
    • From third parties such as public sources

    For the purposes described above, SANOFI may need to share your Personal Data with authorized third parties. SANOFI imposes to third parties adequate contractual relations to ensure the protection of your Personal Data, according to applicable data protection Law.  

    The recipients may include: 

    • SANOFI’s employees and its affiliates  
    • Potential acquirers and other stakeholders in the event of a merger, legal restructuring operation such as, acquisition, joint venture, assignment, spin-off or divestitures  
    • Our partners (e.g. service providers or vendors acting upon our instructions for website hosting, data analysis, order fulfillment, email delivery, auditing, etc.) 
    • Legal and administrative authorities, as required by applicable laws   

    SANOFI is a multinational organization with affiliates, partners and subcontractors located in many countries around the world. For that reason, SANOFI may need to transfer (via access, visualization, storage..) your Personal Data in other jurisdictions, including from the European Economic Area to outside the European Economic Area, in countries which may not be regarded as providing the same level of protection as the jurisdiction you are based in.

    In cases where SANOFI needs to transfer Personal Data outside the European Union, it shall ensure that adequate safeguards, as required under applicable data protection legislation, will be implemented (including, notably, the European Commission’s Standard Contractual Clauses, as applicable).

    In the case of intra-group transfers of Personal Data, SANOFI shall apply its “Binding Corporate Rules” validated by the EU Data Protection Authorities. 

    SANOFI will retain your Personal Data only for the period necessary to fulfill the purposes outlined in this Policy. 

    As an exception, SANOFI may be required to retain your Personal Data for longer periods as required or permitted by law, or as necessary to protect its rights and interests. 

    SANOFI must process your Personal Data to fulfill the purposes listed above.  

    The collection of some Personal Data is necessary to comply with our obligations toward you or toward administrative or judicial authorities.  

    Our Websites are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13 through our Website. If you are under 13, do not use or provide any information on this Website. 

    In some instances, we may collect Personal Data about children with the consent of his/her parent or guardian for the provision of our services such as patient support programs. 

    But we generally do not otherwise knowingly solicit Personal Data from, or market to, children. If a parent or guardian becomes aware that his or her child has provided us with personal information, he or she should contact us as described in the “How to Contact Us” section below. We will take steps to delete such information from our database in accordance with applicable legal requirements. 

    SANOFI has implemented a variety of technical and organizational procedures and measures to ensure the integrity and confidentiality of your Personal Data from unauthorized access, use and disclosure. These measures take into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons.

    For instance, we store your Personal Data on servers that have various types of technical and physical access controls, which may include, for instance, if appropriate, encryption. We may also aggregate, pseudonymize or anonymize Personal Data to ensure that no personally identifiable information is communicated to third parties.

    You may, where required by applicable law and subject to limitations which may apply by exceptions or legal requirements, be entitled: 

    • To have access upon simple request to your Personal Data. You may receive a copy of such data; unless it is directly available to you, for instance within your personal account in the applicant management tool
    • To obtain a rectification of your Personal Data should your Personal Data be inaccurate, incomplete, or obsolete
    • To obtain the deletion of your Personal Data in the situations set forth by applicable data protection law (“right to be forgotten”)
    • To withdraw your consent, at any time, to data processing without affecting the lawfulness of processing, where your Personal Data has been collected and processed on the basis of your consent
    • To object the processing of your Personal data, where your Personal Data has been collected and processed on the basis of legitimate interests of SANOFI, in which case you will need to justify your request by explaining to us your particular situation
    • To request a limitation of the data processing in the situations set forth by applicable law
    • To request that some of the Personal Data you provided to us is brought to you, or to another data controller, in a commonly used, machine-readable format

    If you would like to exercise any of these rights, please contact us as described in the “How to Contact Us” section below. 

    While we suggest that you contact us beforehand, you are entitled to lodge a complaint with your local Data Protection Authority regarding the processing of your Personal Data. 

    SANOFI welcomes any questions or comments you may have regarding this Policy or its implementation. Any such questions or comments should be submitted using the contact form available here

    US residents may also opt out or "unsubscribe" from future communications from SANOFI US via the following website: https://unsubscribe.sanofi.us. Residents of the State of California may also refer to our California Privacy Notice.