European Privacy Policy for European Economic Area (EEA) Residents only

This Privacy Statement was last revised on June 16, 2021. We may change this Privacy Statement at any time and for any reason. The current Privacy Statement will always be posted on this webpage. Significant changes to the Privacy Statement are discussed below in the Section called “Changes to this Privacy Statement.” We encourage you to review this Privacy Statement each time you visit the Website.

At Baylis Medical Technologies Inc. (“we”, “our”, “us”, “Baylis”), we are committed to protect and respect your privacy in compliance with EU- General Data Protection Regulation (GDPR) 2016/679, dated May 25th 2018. This privacy statement explains when and why we collect personal information, how we use it, the conditions under which we may disclose it to others, and how we keep it secure. This Privacy Statement applies to the use of our products and to our sales, marketing, and customer contract fulfilment activities. It also applies to individuals seeking a job in Baylis.

Baylis is the data controller and our Data Protection Officer can be contacted by email: compliance@baylismedtech.com.

When do we collect personal data about you?

  • When you are using our products.
  • When you interact with us in person, through correspondence, by phone, by social media, or through our websites.
  • When we collect personal information from other legitimate sources, such as third-party data aggregators, Baylis marketing partners, public sources, or social networks. We only use this data if you have given your consent to these sources to share your personal data with others.
  • When there are situations of legitimate interest and this interest is not overridden by your privacy interests.

Why do we collect and use personal data?

We collect and use personal data mainly to perform direct sales, direct marketing, and customer service. We also collect data about suppliers, partners, and persons seeking a job or working in our company. We may use your information for the following purposes:

  • Send you marketing communications which you have requested. These may include information about our products and services, events, activities, and promotions of our associated partners’ products and services. This communication is subscription based and requires your consent.
  • Send you information about the products and services that you have purchased from us.
  • Perform direct sales activities in cases where legitimate and mutual interest is established.
  • Provide you content and venue details on a webinar or event you signed up for.
  • Reply to a ‘Contact me’ or other web forms you have completed on one of our Baylis websites (e.g. to download a whitepaper).
  • Follow up on incoming requests (customer support, emails, chats, or phone calls). You can opt out or unsubscribe to any email list at any time by following the instructions at the end of the newsletters or emails you receive. If you have provided more than one email address to us, you may continue to be contacted unless you request to unsubscribe each email address you have provided. Please allow five to ten business days for changes to take effect.
  • Provide access to our Contact Us forms.
  • Perform contractual obligations such as order confirmation, license details, invoice, reminders, and similar. The contract may be with Baylis directly or with a Baylis partner.
  • Notify you about any disruptions to our services (system messages).
  • Contact you to conduct surveys about your opinion on our products and services.
  • Process a job application.

Our legal basis for collecting personal data

Collecting personal data based on consents
The collection of personal data based on consent from the data subject will be done by using “Consent Forms” that will store documentation related to the consent given by the individual. Individual consents will always be stored and documented in our systems.

Collecting personal data based on contracts
We use personal information for fulfilling our obligations related to contracts and agreements with customers, partners, and suppliers.

Collecting personal data based on legitimate interest
We may use personal data if it is considered to be of legitimate interest, and if the privacy interests of the data subjects do not override this interest. Normally, to establish the legal basis for data collection, an assessment has been made during which a mutual interest between Baylis and the individual person has been identified. This legal basis is primarily related to our sales and marketing purposes. We will always inform individuals about their privacy rights and the purpose for collecting personal data. 

What type of personal data is collected?

We may collect your name, phone number, title and email address, in addition to your company’s name and contact information. We may also collect feedback, comments and questions received from you in service-related communication and activities, such as meetings, phone calls, documents, and emails. From our websites we may collect your IP-address and actions taken on the site.

If you upload photos or videos, add posts or comments, etc. on our European Union website, the information can be read by anyone with access to the site and used for purposes over which Baylis or you have no control. Therefore, Baylis is not responsible for any information you submit to the European Union website.

If you apply for a job at Baylis, we collect the data you provide during the application process.

Baylis does not collect or process any special categories of personal data, such as public unique identifiers or sensitive personal data. This includes, but is not limited to, race or ethnicity, political opinions, religious or philosophical beliefs, trade union membership, physical or mental health, sexual life, and any actual or alleged criminal offences or penalties.  

How long do we keep your personal data?

We store personal data for as long as we find it necessary to fulfill the purpose for which the personal data was collected, while also considering our need to answer your queries or resolve possible problems, to comply with legal requirements under applicable laws, to attend to any legal claims/complaints, and for safeguarding purposes.

This means that we may retain your personal data for a reasonable period of time after your last interaction with us. When the personal data that we have collected is no longer required, we will delete it in a secure manner. We may process data for statistical purposes, but in such cases, data will be anonymized.

Your rights to your personal data

You have the following rights with respect to your personal data:
  • The right to request a copy of your personal data that Baylis holds about you.
  • The right to request that Baylis correct your personal data if inaccurate or out of date.
  • The right to request that your personal data be deleted when it is no longer necessary for Baylis to retain such data.
  • The right to withdraw any consent to personal data processing at any time. For example, your consent to receive e-marketing communications:
  • If you want to withdraw your consent to e-marketing, please make use of the link to manage your subscriptions included in our communication. Please note that you may still receive system messages and administrative communications from Baylis, such as order confirmations, system messages and notifications about your account activities.
  • The right to request that Baylis provides you with your personal data and, if possible, to pass on this information directly (in a portable format) to another data controller when the processing is based on consent or contract.
  • The right to request a restriction on further data processing, in case there is a dispute in relation to the accuracy or processing of your personal data.
  • The right to object to the processing of personal data, in case data processing has been based on legitimate interest and/or direct marketing.
  • The right to lodge complaints with supervisory authorities.
Any query about your Privacy Rights should be sent to compliance@baylismedtech.com.

The use of cookies and beacons

We use cookies and web beacons (‘Website Navigational Information’) to collect information as you navigate the company’s websites. Website Navigational Information includes standard information from your web browser (such as browser type and browser language), your Internet Protocol (“IP”) address and the actions you take on the company’s websites, such as the web pages viewed and the links clicked.

This information is used to provide business and marketing information to the owners of the site. Personal data (e.g. browser type, operating system, referring page, path through site, domain of ISP, etc.) are gathered for the purposes of understanding how visitors use a website and make the website more efficient. Cookies and similar technologies help us tailor our website to your personal needs as well as to detect and prevent security threats and abuse. If used alone, cookies and web beacons do not personally identify you.

You may stop or restrict cookies and web beacons on your computer or purge cookies from your browser by adjusting your web browser preferences. Although you may still use the websites, if you “turn off,” purge, or disable cookies or web beacons, you may not be able to use all of the features, functions, or services available on the websites.

Do we share your data with anyone?
We do not share, sell, rent, or trade your information with any third parties without your consent, except for the following:

Third-party Service Providers working on our behalf:
We may pass your information on to our distributors, agents, sub-contractors and other associated organizations with the purpose of them providing services to you on our behalf.

Third-party Product Providers we work in association with:
We work closely with various third-party product providers to bring you a range of products and services designed to meet your extended needs. These include:

  • Google Analytics
  • Pardot, a B2B marketing automation by Salesforce
  • Salesforce

These providers may be acting as data processors of your information, for us to access it in accordance with this Privacy Statement. As such we advise you to read their Privacy Policy

If required by law

We will disclose your personal information if required by law or if we, as a company, reasonably believe that disclosure is necessary to protect our company’s rights and/or to comply with a judicial proceeding, court order or legal process. However, we will do what we can to ensure that your privacy rights continue to be protected.

Use of sub-contractors (processors and sub-processors)

We may use sub-contractors to process personal data on our behalf. We are responsible for ensuring that they commit themselves to adhere to this Privacy Policy and applicable data protection legislation.

If the sub-contractor processes personal data outside the EU/EEA area, such processing must be in accordance with the EU Privacy Shield Framework, EU Standard Contractual Clauses for transfer to third countries or another specifically stated lawful basis for the transfer of personal data to a third country.

If a new sub-contractor is signed or a change of sub-contractor is performed related to our online service, the customers will be notified in line with our Terms of Service.

Changes to this privacy statement

Baylis reserves the right to amend this Privacy Statement at any time. The applicable version will always be found on our websites. We encourage you to check this Privacy Statement occasionally to ensure that you are happy with any changes.

If we make changes that significantly alter our privacy practices, we will notify you by email or post a notice on our websites prior to the change taking effect.

Your right to complain with a supervisory authority

If you are unhappy with the way in which your personal data has been processed, you may, in the first instance, contact compliance@baylismedtech.com. If you remain dissatisfied, then you have the right to apply directly to your national supervisory authority for a decision. The supervisory authorities can be contacted at:
  • Germany: Each individual German state has a Data Protection Authority which is responsible for the enforcement of data protection laws and competent in respect of data controllers established in the relevant state.
  • United Kingdom: Information Commissioner’s Office (ICO), ico.org.uk

Contact information

If you have any comments, questions or concerns about any of the information in this Privacy Statement, or any other issues relating to the data processing carried out by us, or on our behalf, please direct your inquiries to our Legal Department using the Contact Us form on our Website.