SANOFI.com Website Privacy Policy

SANOFI may process your Personal Data for the various purposes set out below. 

Purpose 1: Communicate with you

Based on legal obligations, SANOFI may use your Personal Data to respond to your requests or inquiries or provide support for products and services. 

For this purpose, SANOFI may collect data that directly or indirectly identifies you, including: 

• Identification data (e.g. name, date of birth, postal address, e-mail address, etc) should you provide these information to us 
• Messages you may send us using this website 
• Information regarding your internet connection and the equipment you use to access our websites, and usage details, such as your Internet Protocol (IP) address
• Location data that may be provided by your machine and browser if you allow such information to be shared with SANOFI
• Data which may be collected by cookies: Data collected using cookies can be identifiable, or completely anonymized. In both cases, your consent is required and will be collected before storing cookies on your browser.

SANOFI collects your Personal Data:

• Directly from you when you provide it to us
• Automatically as you navigate through Sanofi.com 

Purpose 2: Comply with legal obligations  

In order to comply with its legal obligations, SANOFI may process your Personal Data to respond to legal requests from administrative or judicial authorities, in accordance with applicable laws and regulations.  

For this purpose, SANOFI collects data that directly or indirectly identifies you and that you provided to us to fulfill the purposes outlined in this Policy. 

SANOFI collects your Personal Data:

• Directly from you when you provide it to us 
• Automatically as you navigate through Sanofi.com 
• From third parties such as public sources

For the purposes described above, SANOFI may need to share your Personal Data with authorized third parties. SANOFI imposes to third parties adequate contractual relations to ensure the protection of your Personal Data, according to applicable data protection Law.  

The recipients may include: 

• SANOFI’s employees and its affiliates  
• Potential acquirers and other stakeholders in the event of a merger, legal restructuring operation such as, acquisition, joint venture, assignment, spin-off or divestitures  
• Our partners (e.g. service providers or vendors acting upon our instructions for website hosting, data analysis, order fulfillment, email delivery, auditing, etc.) 
• Legal and administrative authorities, as required by applicable laws   

SANOFI is a multinational organization with affiliates, partners and subcontractors located in many countries around the world. For that reason, SANOFI may need to transfer (via access, visualization, storage..) your Personal Data in other jurisdictions, including from the European Economic Area to outside the European Economic Area, in countries which may not be regarded as providing the same level of protection as the jurisdiction you are based in.

In cases where SANOFI needs to transfer Personal Data outside the European Union, it shall ensure that adequate safeguards, as required under applicable data protection legislation, will be implemented (including, notably, the European Commission’s Standard Contractual Clauses, as applicable).

In the case of intra-group transfers of Personal Data, SANOFI shall apply its “Binding Corporate Rules” validated by the EU Data Protection Authorities. 

SANOFI will retain your Personal Data only for the period necessary to fulfill the purposes outlined in this Policy. 

As an exception, SANOFI may be required to retain your Personal Data for longer periods as required or permitted by law, or as necessary to protect its rights and interests. 

SANOFI must process your Personal Data to fulfill the purposes listed above.  

The collection of some Personal Data is necessary to comply with our obligations toward you or toward administrative or judicial authorities.  

Our Websites are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13 through our Website. If you are under 13, do not use or provide any information on this Website. 

In some instances, we may collect Personal Data about children with the consent of his/her parent or guardian for the provision of our services such as patient support programs. 

But we generally do not otherwise knowingly solicit Personal Data from, or market to, children. If a parent or guardian becomes aware that his or her child has provided us with personal information, he or she should contact us as described in the “How to Contact Us” section below. We will take steps to delete such information from our database in accordance with applicable legal requirements. 

SANOFI has implemented a variety of technical and organizational procedures and measures to ensure the integrity and confidentiality of your Personal Data from unauthorized access, use and disclosure. These measures take into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons.

For instance, we store your Personal Data on servers that have various types of technical and physical access controls, which may include, for instance, if appropriate, encryption. We may also aggregate, pseudonymize or anonymize Personal Data to ensure that no personally identifiable information is communicated to third parties.

You may, where required by applicable law and subject to limitations which may apply by exceptions or legal requirements, be entitled: 

• To have access upon simple request to your Personal Data. You may receive a copy of such data; unless it is directly available to you, for instance within your personal account in the applicant management tool
• To obtain a rectification of your Personal Data should your Personal Data be inaccurate, incomplete, or obsolete
• To obtain the deletion of your Personal Data in the situations set forth by applicable data protection law (“right to be forgotten”)
• To withdraw your consent, at any time, to data processing without affecting the lawfulness of processing, where your Personal Data has been collected and processed on the basis of your consent
• To object the processing of your Personal data, where your Personal Data has been collected and processed on the basis of legitimate interests of SANOFI, in which case you will need to justify your request by explaining to us your particular situation
• To request a limitation of the data processing in the situations set forth by applicable law
• To request that some of the Personal Data you provided to us is brought to you, or to another data controller, in a commonly used, machine-readable format

While we suggest that you contact us beforehand, you are entitled to lodge a complaint with your local Data Protection Authority regarding the processing of your Personal Data.

If you would like to exercise any of these rights, please contact us as described in the “How to Contact Us” section below.

SANOFI welcomes any questions or comments you may have regarding this Policy or its implementation. Any such questions or comments should be submitted using the contact form available here. 

Sanofi US (Sanofi-Aventis U.S. LLC and Sanofi US Services Inc.) respects the interest that visitors to our websites have in understanding what information is collected electronically, how it is collected, to whom it is or may be disclosed and how it is used. Sanofi US has developed this online privacy policy to address those questions.