PRIVACY POLICY

Thank you for visiting our website! Your privacy is important to us, so this privacy notice describes how and why we might collect, store, use, and/or share ("process") your information when you use our services, such as when you:

• Visit our website at http://www.epsilico.com
• Engage with us in other related ways, including via email, or events

SUMMARY OF KEY POINTS

When you visit, use, or navigate our Services, we may process personal information depending on how you interact with us and the Services, the choices you make, and the products and features you use. We do not process sensitive personal information and we do not receive any information from third parties.

We process your information to provide, improve, and administer our Services, communicate with you, and to comply with law. We may also process your information for other purposes with your consent. We only process your personal data in compliance with relevant data protection requirements, such as the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (Bundesdatenschutzgesetz- BDSG).

Depending on where you are located geographically, the applicable privacy law may mean you have certain rights regarding your personal information. The easiest way to exercise your rights is by visiting info@epsilico.com, or by contacting us. We will consider and act upon any request in accordance with applicable data protection laws.

‍

1. Collecting and processing your personal data

1.1. Visiting our website

Cookie dashboard


Our website uses cookies. We provide you with a function for managing your cookie settings for the website (hereinafter: “cookie dashboard”). When you visit the website again, we determine whether you have already given your consent, and activate cookies and related analytics and tracking tools according to your preferences. For this purpose, data from absolutely necessary cookies are also temporarily processed on our web server. You can find more detailed information on the content and purposes of the cookies and similar technologies used in our cookie dashboard at the bottom of this page.

For this purpose, we process the data that you provide to manage your cookie settings for this website and data that are assigned to your terminal device when you use the cookie settings management function. This includes, for example, your consent and, where applicable, your individual selection for the use of cookies on your device.


The legal basis of this processing is our legitimate interest (Art. 6(1)(f) GDPR) in managing the cookie consents you have given for this website.

‍

1.2. Contacting us

We collect personal information that you voluntarily provide to us when you express an interest in obtaining information about us or our products and Services, such as when you contact us via email.

We process communication data for this purpose.
The legal basis of this processing is our legitimate interest (Article 6(1)(f) GDPR). Our legitimate interest is processing your request.

As part of this processing, you transfer your data to the following categories of recipients: e-mail service providers.

2. WHAT LEGAL BASES DO WE RELY ON TO PROCESS YOUR INFORMATION?

The General Data Protection Regulation (GDPR) and UK GDPR require us to explain the valid legal bases we rely on in order to process your personal information. As such, we may rely on the following legal bases to process your personal information:

• Consent. We may process your information if you have given us permission (i.e., consent) to use your personal information for a specific purpose. You can withdraw your consent at any time.
• Legal Obligations. We may process your information where we believe it is necessary for compliance with our legal obligations, such as to cooperate with a law enforcement body or regulatory agency, exercise or defend our legal rights, or disclose your information as evidence in litigation in which we are involved.
• Vital Interests. We may process your information where we believe it is necessary to protect your vital interests or the vital interests of a third party, such as situations involving potential threats to the safety of any person.

3. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

We may need to share your personal information in the following situations:

• Business Transfers. We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

4. HOW LONG DO WE KEEP YOUR INFORMATION?

We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements).

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize such information, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

5. WHAT ARE YOUR PRIVACY RIGHTS?

In the EEA, UK, Switzerland, and Canada, you have certain rights under applicable data protection laws. These may include the right (i) to request access and obtain a copy of your personal information (Article 15 of GDPR), (ii) to request rectification or erasure (Article 16 and Article 17 GDPR); (iii) to restrict the processing of your personal information (Article 18 of GDPR); (iv) to data portability (Article 20 of GDPR); and (v) the right to object (Article 21 of GDPR). You can make such a request by contacting us by using the contact details provided in section 7.

We will consider and act upon any request in accordance with applicable data protection laws.

If you are located in the EEA or UK and you believe we are unlawfully processing your personal information, you also have the right to complain to your Member State data protection authority or UK data protection authority.

If you are located in Switzerland, you may contact the Federal Data Protection and Information Commissioner.

Withdrawing your consent: If we are relying on your consent to process your personal information, which may be express and/or implied consent depending on the applicable law, you have the right to withdraw your consent at any time. You can withdraw your consent at any time by contacting us by using the contact details provided below.

However, please note that this will not affect the lawfulness of the processing before its withdrawal nor, when applicable law allows, will it affect the processing of your personal information conducted in reliance on lawful processing grounds other than consent.

If you have questions or comments about your privacy rights, you may email us at info@epsilico.com.

6. DO WE MAKE UPDATES TO THIS NOTICE?

We may update this privacy notice from time to time. The updated version will be indicated by an updated "Revised" date and the updated version will be effective as soon as it is accessible. We encourage you to review this privacy notice frequently to be informed of how we are protecting your information.

7. CONTACT US

If you have questions or comments about this notice, you may contact our Data Protection Officer (DPO), Data Protection Officer, by email at info@cinference.bio, or contact us by post at:

Data Protection Officer

Cinference GmbH

Alte Schönhauser Str. 38

10119 Berlin

Germany

8. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

Based on the applicable laws of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it. To request to review, update, or delete your personal information, please contact us at: info@epsilico.com.