General commitment
Facilitating the daily lives of our customers by actively participating in the technological and digital innovation of companies is our objective. PHARMASYS is particularly sensitive and takes specific care in the protection of personal data, both of its employees and its customers, and strives to maintain a solid framework for the protection of personal data, in line with legal requirements and risks, in particular in terms of health data.
The personal data to which PHARMASYS has access, as part of its operation and activities as a digital service company, are processed by PHARMASYS exclusively for the legal purposes defined, on the legal basis of current regulations, contracts, contracts, consent or legitimate interests;
Personal data is processed by PHARMASYS in accordance with the principles of “Privacy by default” and “Privacy by design”;
Personal data is kept by PHARMASYS exclusively for their legal duration.
Confidentiality of data
Personal data is only communicated to its collaborators, partners working alongside it and official public authorities at their request and is not communicated to other third parties;
Personal data is not transferred by PHARMASYS to countries located outside the European Union;
Data hosting is carried out in France. All primary and backup sites are located in France. The hosting of health data on behalf of client companies is carried out by Health Data Hosters (HDS) in accordance with article 1111-8 of the Public Health Code.
Data security
Physical, logical and organizational security measures in accordance with the best state of the art and intended to combat any attacks on the security, integrity and availability of personal data are put in place.
100% encrypted data flows and data storages;
Security measures audited periodically by PHARMASYS;
PHARMASYS subcontractors acting on behalf of its customers chosen in particular in consideration of their commitments relating to the protection of personal data and audited periodically.
PHARMASYS formalizes in documentation, provided and regularly updated, its commitments in terms of security, continuity and business recovery and a Data Protection Officer (DPO or DPO) ensures compliance with all of these commitments relating to the protection of personal data.
Additionally, please click here to find out more about our Personal data protection policy and our Cookies policy relating to this website.