Galapagos (“the company,” “we” or “us”) values your privacy and we want to be transparent about the information we collect, why we collect it, and how the information is used. For the personal data collected through this website, Galapagos NV, Generaal De Wittelaan 11 A3, 2800 Mechelen will act as the controller. In this way, we control the process by which your personal data is collected and the purposes for which your personal data is used.
Furthermore, we want you to know your rights regarding your personal data. This privacy statement addresses how we handle and protect personal data collected via this website or personal data collected in the provision of any support or other services (“services”). We strongly recommend that you read this privacy statement and, if you have any questions, contact us via dpo@glpg.com.
We confirm that personal data will be dealt with in accordance with the European and relevant privacy laws and regulations, including the Regulation 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data – General Data Protection Regulation (GDPR).
Personal data includes any information relating to an identified or identifiable natural person (also known as a “data subject”). This may include, but is not limited to: your name, address, email address, phone number, identification number or location data. More information on personal data we collect can be found below in specific sections of this privacy and cookie statement.
We use your personal data solely for the purposes of processing your requests, to conduct our business, to develop analytics and aggregated data that allow us and our partners to improve our website and related services, recruitment-relating purposes or to correspond with you.
We will only process your personal data to respond to your queries and requests or if we have obtained your prior consent, if the processing is necessary to protect our legitimate interest, to perform our contractual obligations or to comply with legal or regulatory obligations.
When using our website to contact us, we may collect the following information: your name, e-mail address, company you work for and preferred language of communication, as well as other information that you choose to provide us.
The contact page provides you with our headquarter office address, telephone contact information and a contact form should you wish to contact us. By contacting us, you may provide us with personal data amongst other information in relation to your query or request. Based on the personal data you provide us, we may communicate with you in response to your inquiries, to provide the services you request. We will communicate with you by email or telephone, in accordance with your preference.
Your personal data is kept for no longer than is necessary in relation to the purposes for which it is collected. We will frequently review the information we hold and delete personal data when there is no longer a legal or business need for us to store it.
In order to protect the company against any legal claims or to respond to potential inquiries, files may be stored in back-ups of the company or in the archives in function of the applicable statutes of limitation. These archived copies will only be used if strictly required by the company for the establishment, exercise or defense of legal claims and can, in such situations, be shared with legal advisors.
When we collect and use your personal data, you can exercise the following rights:
Your personal data may be used by a parent, subsidiary, or affiliate entity within the Galapagos NV corporate family, partner entities, and the vendors and service agencies that we may engage to assist us. We will never pass your personal data to anyone else without your consent, except for (a) successors in title to our business, or (b) when required by law. We will share your personal data with providers only in the ways that are described in this Privacy Statement.
We do not sell, trade, or otherwise transfer to outside parties, personal data we collect from you without your consent, except in cases where we may share personal data for any services that may be in effect from time to time, including, without limitation, the situations described below:
As a general rule, the data that we collect from you is not transferred outside the EEA. If we, in exceptional circumstances, do transfer data outside the EEA, we will ensure it is protected employing the following safeguards:
We are committed to protecting the security and privacy of your information. We will use appropriate technical and organizational measures to restrict access to personal data to those of our employees, agents, contractors, or representatives who require access to such information to perform tasks assigned to them by us. All data gathered by our services is stored by us in a secure, password-protected database. Only we and our third party processors, if any, have access to this database.
We will protect personal data provided to us by using reasonable security safeguards against loss, theft, unauthorized access, disclosure, copying, use, or modification. Although we and our third party processors implement standard security protections, we cannot guarantee the physical or electronic security of the servers and databases on which the Services are hosted. We require our partners who receive your information to agree to security requirements consistent with this privacy statement. If you create copies of information from the Services, we cannot protect the security and privacy of the information contained in such copies.
From time to time, this privacy statement may be revised. Any changes to this privacy statement will be indicated through the mention of effective date and version number. Continued use of our website after changes made to our privacy statement indicates your consent to the use of newly submitted information.
We reserve the right to disclose personal data in the following circumstances: as required by law; if we believe that disclosure is necessary to protect ours or others’ rights, property, or safety; to comply with a judicial proceeding, court order, or legal process served on us or the services; or in connection with an actual or proposed corporate transaction or insolvency proceeding involving all or part of the business or assets to which the information pertains. By using the services, you consent to having any personal data you provide to us transferred to and processed in the United States of America. Because some jurisdictions do not permit certain limitations or disclaimers of liability, these limitations may not apply to you
For questions regarding this privacy statement, please contact: dpo@glpg.com.