Diagnostica Stago Pty Ltd, hereinafter “Stago”, “we” or “us” may, during its activities, process, collecting and using your personal data, in accordance with applicable legislation.
This policy provides you with information on how your Personal Data is processed by Stago.
This policy, accessible in particular on our website, is updated regularly in order to take into account legislative and regulatory developments, and any change in the Stago organization or in the processing it performs.
This policy is accompanied by a specific information statement for each processing operation carried out on your personal data, which will be made available to you as soon as possible and, in the event that we collect your data directly from you, at the time of this collection.
This policy applies to your personal data, which includes information that could directly or indirectly identify you. Please note that the definition of personal data can vary by region. If we collect information from you that is considered personal data in your region, we will treat it as such in accordance with the applicable laws and this policy.
Stago, when acting as a controller in a manner that attracts compliance obligations in your jurisdiction, will handle your personal data in accordance with applicable laws and this policy.
In order to protect your privacy and your personal data as effectively as possible, we have appointed a data protection officer. This person, who is the privileged point of contact for the supervisory authority, is responsible for ensuring that we process your data in accordance with applicable law.
You can contact our data protection officer at the following address: firstname.lastname@example.org
We are committed to ensuring the highest possible level of protection for the persons whose personal data we process ("data subjects").
We follow the applicable regulations for relevant data protection laws and we are committed to respecting the following principles:
These commitments are manifested as follows:
We remind you that personal data is information relating to an identified or identifiable natural person, which may include your email address, your first and last name, your IP address, etc.
We collect your personal data as part of our sales, after-sales service, distribution, and promotion purposes. In some cases, we collect your personal data directly from you. In other cases, your personal data is communicated to us by a third party (our customers, our suppliers, etc.).
The personal data that we are likely to collect and process are, for example:
The processing of personal data carried out by Stago has an explicit, legitimate and determined purpose.
Your personal data may for example be processed for the following purposes:
If we need to process your personal data for any purpose other than a purpose originally communicated to or reasonably anticipate by you, the purpose of the processing will be communicated to you on a case-by-case basis, for each such additional processing that we carry out on your personal data.
We always ensure, when we process your personal data, that the processing has a lawful purpose and is carried out in accordance with applicable law and this policy.
The following purposes and processes may apply:
Stago will keep your personal data only for the time necessary for the purposes for which they are processed, and in accordance with applicable legislation. Thus, the retention period of your personal data depends on the purpose of the processing to which they are subject, according to the correspondences below:
Authorized persons within Stago and in some cases, our trusted processors, may access your personal data. We do our best to ensure that the number of such persons is kept as small as possible and to maintain the confidentiality and security of your personal data.
We only provide our processors with the information they need in order to provide the service and ask them not to use your personal data for other purposes. We always do our best to ensure that all of our processors with whom we work maintain the integrity, availability, confidentiality and security of your data. When our relationship with a trusted processor comes to an end, we require that processor deletes your personal data as soon as possible.
We select our processors with great care, ensuring that they provide sufficient guarantees, particularly in terms of expertise, reliability and resources, to implement the technical and organizational measures to meet the requirements of the applicable legislation, in particular the security of the processing. In this regard, we require that our processors process your personal data only on our documented instructions. We also require that their staff are committed to confidentiality or are subject to an appropriate legal obligation of confidentiality.
We may ask our processors to provide a service that requires the processing of your personal data, for example in the following cases:
Your personal data may be stored in Australia, the European Union (EU), and/or the European Economic Area (EEA) by Stago and its processors.
By providing us with your personal data, you acknowledge that your personal data may be used, stored, and disclosed overseas, including in jurisdictions that may not provide equivalent levels of data protection as your home jurisdiction. To protect your personal data, we take care to work with entities, partners, and service providers who are based in countries that provide adequate levels of data protection, or we otherwise take steps to ensure that your personal data receives adequate levels of data protection in the jurisdictions in which it is processed in accordance with all applicable privacy laws.
On a case-by-case basis, we will inform you of our intention to transfer personal data to a third country, of the existence or not of an adequate decision of the Commission and, where appropriate, of the reference to the appropriate safeguards and the means of obtaining a copy or the place where they have been made available.
Depending on the processing operations to which your data is subject, you may have the following rights:
The right to obtain confirmation from us whether or not personal data concerning you is being processed (right of access). If this is the case, you can access your personal data and obtain information such as the purpose of the processing, the categories of personal data concerned, etc.;
To exercise these rights, you can contact us at the following address: email@example.com
In order for us to process your request satisfactorily, you may need to prove your identity, by whatever means we reasonably request. If in doubt on our part, we may ask you for additional information, including the secure transmission of a copy of an identity document, signed by you.
We will do our best to promptly satisfy your requests. Whatever our response, we will get it to you within one month, but our response time may be extended by an additional reasonable period of time, depending on the complexity and number of requests or if we require further information from you.
If you request to access your data, we may require the payment of reasonable fees which take into account the administrative costs incurred in providing the information, making communications, or implementing the measures requested by the data subject.
If, for any reason whatsoever, you consider that our response is not satisfactory, we inform you that you can lodge a complaint with the relevant supervisory Authority in your jurisdiction, which may include the below:
European Union: For more information about the GDPR, please contact the European Data Protection Supervisor, the European Union’s independent data protection authority or visit their website at: https://edps.europa.eu/.
Australia: For more information about protecting your privacy in Australia, please contact the Office of the Australian Information Commissioner (“OAIC”) via their website at www.oaic.gov.au.
You may request, and Stago will provide, any information about our data processing operations that we are required to provide at law. Whenever Stago carries out processing operations on your personal data, it takes all required and reasonable steps to bring to your attention:
This information will be made available to you as soon as possible and, in the case of direct collection of your data, at the time of collection.
Some of our obligations may limit your right to information: if the personal data concerning you is covered by confidentiality with regards to an obligation of professional secrecy incumbent on us, and if we have obtained it by means of an indirect collection, it is possible that we do not process your information.
Stago attaches great importance to the protection of your personal data and takes all reasonable precautions to this end. We ask our partners who process your data on our behalf to do the same.
We are constantly doing our best to protect your personal data. Upon receipt of your data, we apply strict procedures and security measures (technical and organizational) to prevent unauthorized access.
This policy was last updated in March 2021.