The purpose of this document is to describe Privacy Policy that SIRO Clinpharm UK Limited (hereinafter referred to as “SIRO”/ “we”/ “our”/ “us”) adapts to and accordingly publish on its official website.
This Policy explains how SIRO collects, uses and discloses data and also describes the choices a website visitor would have with respect to their data.
This Policy applies to all of your Personal Data, either in electronic or paper format, received by SIRO, including Personal Data of SIRO employees, staff, consumers, healthcare professionals, study subjects, medical research subjects, clinical investigators, customers, suppliers, vendors and business partners.
Privacy Policy | A policy that will be published on the official SIRO's website as Internet Privacy Policy. Hereinafter referred to as“Policy” in this Privacy Policy for SIRO's official website. |
Website | For the purposes of this Policy, the term, “Website”, shall refer to www.siroclinpharm.co.uk or any other websites that the SIRO group operates and that may link to this Policy. |
Website Visitor/External User | A website visitor or external user shall mean any individual user, a sponsor, a vendor, any SIRO employee, healthcare professionals, study subjects, clinical investigators, suppliers, vendors and business partners or any person visiting the Website. A website visitor hereinafter shall be referred to as “you”/ “your” in this Policy. |
Data Subject | A data subject is the individual the personal data relates to. |
Personal data | Any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular, by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person; |
Services | This Policy applies when you use our services. SIRO operates inter-alia a suite of medical writing services (regulatory medical writing, clinical trial transparency & disclosure, scientific publications & medical communications, health economics & real-world evidence solutions, drug safety & risk management, patient narratives, plain language summaries etc.) collectively called as SIRO medical writing services. All such products, applications, platforms, services collectively called “Services”. |
Processing | Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. |
Processor | A natural or legal person, public authority, agency, or any other body which processes personal data on behalf of the controller. |
Controller | The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law. |
Sensitive Personal Data | Sensitive Personal Data shall mean personal data about an individual's racial or ethnic origin, political opinions, religious or similar beliefs, trade union membership (or non-membership), physical or mental health or condition, criminal offences, or related proceeding. SIRO does not accept, store, process or transmit any sensitive personal data; however, if required for legitimate purpose, it is done in anonymized manner. |
SIRO processes three main types of Personal Data.
Sponsors are the “Data Controller” of sponsor data, and the Clinical Study Subjects or Trial Data and SIRO is the “Data Processor” of these data. For the “Other Data”, SIRO may be construed as the “Data Controller”.
Sponsor data or Website Visitors' data may be processed by SIRO as a result of sponsors' use of the Services when sponsors's, or their end-users, input or upload information into the Services. For example, sponsors who uses SIRO's application or Services may upload their data about themselves or their employees. Website Visitors also share their data while surfing the Website. This data might include name, email address, phone number, landline number, job title, employee details etc. SIRO also collects billing details for invoice purposes.
SIRO collects your data when a sponsor or team members of the sponsor wish to avail our Services, upload the data of participants in the clinical trials, supports us in our clinical trials, uses our Websites or requests to be contacted.
SIRO may receive your data from the sources, such as public directory, seminar attendee lists and other public sources as part of our marketing / promotional activities.
In operating this site, we may use a technology called "cookies”. A cookie is a piece of information that the computer that hosts our site gives to your computer (actually to your browser) when you access a Website. We use cookies to:
We may also use trusted third-party services that tracks this information on our behalf. In all cases in which we use cookies, we will not collect Personal Data through the use of such technology except for the collection of the data mentioned above.
All sponsor data shall be used by us in accordance with sponsors instructions, including any applicable terms in the sponsor agreements and as required by applicable law. SIRO is a Processor of sponsor data and sponsor is the Controller here.
We shall only process sponsor data on behalf of sponsors and in accordance with their instructions provided in the applicable agreement with us. The collected data is used to provide Services and provide support to sponsors and you. In each case, we collect such information only to the extend to fulfil the purposes of the Services.
Clinical trial data is processed for research and analytics purposes in accordance with sponsors instructions as a part of performance of contract with relevant sponsor. Based on the contractual arrangements, sponsor is the Data Controller since they ultimately direct us the process to conduct the study. SIRO acts as the Processor to execute their instructions. Below are some of the ways in which data is used:
Service-related messages or marketing / promotional materials are being sent to you. You may choose to restrict the collection or use of your personal information.
We provide updates on the improvements in our Services, new features and from time to time also carry out direct marketing of our products and Services. Direct marketing is carried out only if you consent to receiving such communications.
SIRO may retain your Personal Data to fulfil the purposes as outlined in this Policy, unless a longer retention period is required or permitted by law (such as tax, accounting or other legal requirements).
However, certain computer records or files containing confidential and proprietary information which have been created pursuant to automatic archiving or back-up procedures cannot reasonably be deleted. In such cases, SIRO shall not access or use any such records or files following the date on which it would have otherwise returned or deleted.
Whenever our Services are availed by you, the aim is to provide easy means to access, modify, delete, object or restrict use of your Personal Data.
10.1 Recipients of your data:
While we aim to limit sharing of your data, at times, it is necessary to share data with certain third-party service providers.
The following categories of recipient will most likely receive your data in order to provide:
10.2 Compliance with Law: If we receive a request for data, we may disclose if we reasonably believe that such disclosure is in accordance with or required by any applicable law, regulation or legal process.
10.3 Cross-Border Data Transfers: Your data may be stored and processed in multiple countries including outside of the European Union (EU) and UK region, if required.
Since SIRO is an international company, your data may be processed outside of the EU and UK region, if required. Your data shall be processed within Third Party Data Centers / Hosting services in other countries. In certain circumstances, sponsor data and clinical trial data may be hosted on vendor platforms located on the cloud in other territories. Some countries where SIRO processes data, may not have as protective laws as your own country and there are risks associated with such transfer.
SIRO offers European Union Model Clauses, also known as Standard Contractual Clauses, to meet the adequacy and security requirements for sponsors that operate in the European Union and UK region, and other international transfers of sponsor data. These clauses are contractual commitments between parties transferring Personal Data (for example, between SIRO and sponsors, suppliers or data processors outside the EU/ UK region), binding them to protect the privacy and security of your data.
SIRO implements security controls to prevent breaches and unauthorized access to your data. Reasonable and appropriate security measures are maintained by us to protect sensitive clinical data from loss, misuse, and unauthorized access, disclosure, alteration, and destruction.
Examples of security measures include physical access controls, HTTPS, restricted access to data, monitoring for threats and vulnerabilities etc.
SIRO Services are subject to internationally recognized certification and attestation standards.
Details about security measures are given below:
11.2 Protection of Personal Data
Our sites and Services use commercial efforts to maintain safeguards for protection of your Personal Data. SIRO takes all reasonable and necessary measures to protect against the unauthorized access, use, alteration or destruction of your potential personally identifiable information.
You can contact us about this policy or use of our Services, in case you have questions or complaints regarding this Policy at:
12.2 President of the European Economic Area and UK regionwhose data is maintained by us within the scope of the General Data Protection Regulation (GDPR), then you may have additional rights. If you are not satisfied with the resolution, you can also lodge a complaint with the Supervisory Authority in the country of your residence.
SIRO reserves the right to change this Policy at any time, at our sole discretion.
We encourage you to frequently check our Website for any changes to the Policy. We shall notify of any material changes in advance by email or by notice when you log into the website.
Confirmation by you and continued use of Services after any change in this Policy will constitute as an acceptance of such changes.
The Policy was last reviewed/updated on 14 October 2024.