MEDICE Health Family

Privacy policy for the PTA Family website

Last update: 22 May 2025

Guidance

MEDICE Arzneimittel Pütter GmbH & Co. KG (hereinafter referred to as "MEDICE") takes the protection of your personal data very seriously.

The following information is intended to give you an overview of how your personal data is processed on this website as part of our "PTA-Family" offering.

An overview of the individual chapters for better orientation can be found here:

Preamble – Here you will find a brief overview of the content of the website and data protection issues.
Contact – How can you contact us quickly and easily?
Data processing and storage – Which of your data is stored and processed, how, for what purpose, where, by whom and for how long?
Legal basis – On what legal basis do we process your data?
Data transfer – Under what conditions do we transfer your data to third parties?
Data security – What do we do to protect your data as best as possible?
Your rights – Here you will find an overview of all your rights as a data subject.

1. Preamble

When using this website and our "PTA Family" service, personal data may be processed. The data protection term "personal data" refers to all information relating to an identified or identifiable person. The IP address can also be considered personal data. An IP address is assigned to every device connected to the internet by the internet provider so that it can send and receive data. When you use the website, we collect information that you provide yourself. In addition, during your visit to the website, we automatically collect certain information about your use of the website.

If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain your consent.

As the controller, we have implemented numerous technical and organisational measures to ensure the most complete protection of the personal data processed.

2. Contact

The controller within the meaning of Art. 4 (7) of the EU General Data Protection Regulation (hereinafter "GDPR"), the Federal Data Protection Act (hereinafter "BDSG") and other data protection regulations is:

MEDICE Arzneimittel Pütter GmbH & Co. KG
Kuhloweg 37
58638 Iserlohn
Telephone: +49 (0)2371 937 0
Email: info[at]medice.de

Authorised representatives
Dr Katja Pütter-Ammer
Dr Richard Ammer
Dr. rer. nat. Uwe Baumann
Annick Berreur-Igersheim
Eric Neyret

Internal Data Protection Officer:
If you have any questions about our data protection measures, the processing of your data or the protection of your rights as a data subject, you can contact our data protection team as follows:

MEDICE Arzneimittel Pütter GmbH & Co. KG
Data Protection
Kuhloweg 37
58638 Iserlohn
Telephone: +49 (0)2371 937 0
Email: datenschutz[at]medice.de

If you have any confidential concerns regarding data protection, you can contact our data protection officer directly at dsb[at]medice.de.

3. Data processing and storage

The following personal data may be collected and processed when you visit this website and use our "PTA Family" service:

3.1 Technology

When you use our website for informational purposes only, we collect only those data that are technically necessary to provide the service. These are usually data that your browser transmits to our server (in so-called server log files). Our website collects a range of general data and information each time you or an automated system accesses a page. This general data and information is stored in the server's log files. The following may be collected:

browser types and versions used,
the operating system used by the accessing system,
the website from which an accessing system reaches our website (so-called referrer),
the sub-websites that are accessed via an accessing system on our website,
the date and time of access to the website,
an abbreviated Internet Protocol address (anonymised IP address) and
the Internet service provider of the accessing system.

We do not draw any conclusions about your person when using this general data and information. Rather, this information is required in order to

deliver the content of our website correctly,
optimise the content of our website and the advertising for it,
ensure the long-term functionality of our IT systems and the technology of our website, and
provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack.

We therefore evaluate this collected data and information statistically on the one hand and with the aim of increasing data protection and data security in our company on the other, in order to ultimately ensure an optimal level of protection for the personal data we process. The anonymous data in the server log files is stored separately from all personal data provided by a data subject.

The legal basis for data processing is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest follows from the purposes listed above.

3.2 Hosting by MSCN Digital GmbH

Our website is hosted by mscn-digital GmbH, Christophstraße 15-15, 50670 Cologne, Germany. When you visit the website, your personal data is processed and stored on the servers of mscn-digital GmbH in Germany for the purpose of displaying our website in accordance with Art. 6(1)(f) GDPR.

Corresponding contractual agreements pursuant to Art. 28 GDPR exist between mscn-digital and MEDICE for this purpose.

3.3 Cookies

3.3.1 General information about cookies

Cookies are small files that your browser automatically creates and that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our site.

The cookie stores information that is related to the specific device used. However, this does not mean that we immediately become aware of your identity.

The use of cookies serves to make the use of our website more pleasant for you. For example, we use so-called session cookies to recognise that you have already visited individual pages on our website. These are automatically deleted after you leave our website.

In addition, we also use temporary cookies to optimise user-friendliness, which are stored on your device for a specific period of time. If you visit our site again to use our services, it will automatically recognise that you have already been with us and what entries and settings you have made so that you do not have to enter them again.

On the other hand, we use cookies to statistically record the use of our website and to evaluate our offer for you for the purpose of optimisation. These cookies enable us to automatically recognise that you have already visited our website when you visit it again. The cookies set in this way are automatically deleted after a defined period of time . The respective storage period of the cookies can be found in the settings of the consent tool used.

3.3.2 Legal basis for the use of cookies

The data processed by the cookies, which is necessary for the proper functioning of the website, is therefore necessary to safeguard our legitimate interests and those of third parties in accordance with Art. 6 (1) lit. f) GDPR.

For all other cookies, you have given your consent in accordance with Art. 6 (1) (a) GDPR via our opt-in cookie banner.

3.3.3 Information on avoiding cookies in common browsers

You can delete cookies, allow only selected cookies or completely deactivate cookies at any time via the settings of your browser.

Further information is available on the support pages of the respective providers:

Chrome: https://support.google.com/chrome/answer/95647?tid=311178978

Safari: https://support.apple.com/de-at/guide/safari/sfri11471/mac?tid=311178978

Firefox: https://support.mozilla.org/de/kb/cookies-und-website-daten-in-firefox-loschen?tid=311178978

Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-l%C3%B6schen-63947406-40ac-c3b8-57b9-2a946a29ae09

3.3.4 Cookie consent with consent management tool

We use the self-developed, locally hosted, JavaScript-based consent management tool from the hosting service provider mscn-digital GmbH to manage user consent to cookies and other tracking technologies on our website. This tool ensures compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws by allowing users to review and adjust their cookie settings at any time.

The following data is collected and processed:

Users' consent settings for cookies and tracking technologies

Timestamps of consent actions

The data collected is processed and stored on the servers of mscn-digital GmbH in Germany. There are no plans to transfer the data to third parties or to countries outside the EU.

3.3.5 Cookies used on this website

Below you will find a list of the cookies currently used on this website. This list contains the names of the individual cookies, a brief description of their function, their validity period and information on whether or not these cookies are subject to consent in accordance with the EU Cookie Directive. The names of the individual cookies displayed in the website settings may vary, depending, among other things, on which browser you use, which websites you visited before visiting this website, or whether you were redirected to this website from another website or social media platform.

Cookie name: connect.sid
Provider: .pta-family.com
Duration: 60 min
Description: Checks whether the user is logged in
Consent requirement: no

3.4 Registration

As part of your registration on the PTA Family website, MEDICE and the service provider MSCN Digital GmbH commissioned by MEDICE collect and process your personal data for the purpose of providing our PTA Family services and, with your additional consent, for subsequent contact for marketing purposes.

The following data is collected:

Contact details (title, first name and surname, private email address/postcode, work address/telephone number/email address)
Demographic data (gender)
Qualification data (job title: PTA, PKA, pharmacist)
Customer number
Technical data (IP address, date and time of registration)

This data is only collected with your voluntary, informed consent in accordance with Art. 6 (1) (a) GDPR.

Your registration, including the provision of personal data, also enables us to offer you content or services that, due to their nature, can only be offered to registered users. This data will not be passed on to third parties. This does not apply if we are legally obliged to pass on the data or if the disclosure serves the purpose of criminal prosecution.

You are free to change the personal data provided during registration at any time, and we will provide you with information about which personal data is stored about you at any time upon request. Furthermore, we will correct or delete personal data at your request, provided that this does not conflict with any legal retention obligations. Please contact us atdatenschutz@medice.de for this purpose.

3.5 Contacting us

When you contact us (e.g. by telephone, fax or email), your personal data (such as your first and last name, email address or telephone/fax number) will be collected and processed.

The data collected will be stored and processed exclusively for the purpose of contacting you, processing your request and the associated technical administration. The legal basis for the processing of the data is our legitimate interest in responding to your request in accordance with Art. 6 (1) lit. f) GDPR. If your contact request is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 (1) lit. b) GDPR.

Once your enquiry has been processed, all data collected in the course of contacting us will be deleted. This is the case if it can be inferred from the circumstances that the matter in question has been conclusively clarified and there are no legal retention obligations that prevent deletion.

3.6 Profiling

We process your data in a partially automated manner with the aim of evaluating certain aspects of your person (profiling).

We use profiling in the following cases, for example:

We use evaluation tools to provide you with targeted information and advice on products. These enable needs-based communication and advertising, including market and opinion research.

We may use scoring to assess your creditworthiness. This takes into account experience from previous business relationships, publicly available data and information from credit agencies.

3.7 Newsletter distribution and marketing activities

As part of our marketing activities, we send out digital newsletters containing information about events, promotions, offers and advertising relating to the PTA Family.

Our marketing activities are primarily aimed at customer loyalty and retention, information sharing, market and opinion research, improving our offers, and automating communication.

Your contact details (name, email address) are used to send the newsletters. Tools and software solutions from the following service provider are used for this purpose:

Mscn digital: To send the newsletter, we use a newsletter tool developed by the hosting service provider mscn-digital GmbH, which runs on a mail server operated by us with SSL-encrypted transmission. The data is processed and stored exclusively on servers within the European Union.

The following personal data is processed in the context of sending the newsletter:

Email address
First name
Time of consent

The data is not passed on to third parties or to countries outside the EU. Users can revoke their consent at any time with effect for the future – e.g. via an unsubscribe link in the newsletter.

MEDICE only uses service providers with whom a corresponding contract agreement has been concluded in accordance with Art. 28 GDPR.

The legal basis for the processing of your data in connection with the sending of the newsletter is your voluntary consent pursuant to Art. 6(1)(a) GDPR.

This consent can be obtained directly by MEDICE or by an external HCP database service provider such as IQVIA.

You can revoke your consent at any time without giving reasons and unsubscribe from the newsletter. For this purpose, there is a corresponding link/contact in every newsletter.

The legal basis for sending newsletters as a result of the sale of goods or services is Section 7(3) UWG. You can also unsubscribe from the newsletter at any time. For this purpose, there is a corresponding link in every newsletter.

3.8 Our activities on social networks

We have our own pages on social networks so that we can communicate with you there and inform you about our services.

We are not the original provider of these pages, but merely use them within the scope of the options offered to us by the respective providers.

As a precautionary measure, we would therefore like to point out that your data may also be processed outside the European Union or the European Economic Area. This may involve data protection risks for you, as it may be more difficult to exercise your rights, e.g. to information, deletion, objection, etc., and processing on social networks is often carried out directly for advertising purposes or to analyse user behaviour by the providers, without us being able to influence this. If usage profiles are created by the provider, cookies are often used or your usage behaviour is assigned to your own member profile on social networks.

The processing of personal data described above is carried out in accordance with Art. 6 (1) (f) GDPR on the basis of our legitimate interest and the legitimate interest of the respective provider in communicating with you in a modern way and informing you about our services. If you have to give your consent to data processing as a user to the respective providers, the legal basis is Art. 6 (1) (a) GDPR.

As we do not have access to the providers' databases, we would like to point out that it is best to assert your rights (e.g. to information, correction, deletion, etc.) directly with the respective provider. Further information on the processing of your data in social networks is listed below for each of the social network providers we use:

Instagram

When you visit our Instagram page, where we present our company or individual products from our range, certain information about you is processed. The controller responsible for data processing in Germany is Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

All information on how Instagram handles your personal data can be found here: https://instagram.com/legal/privacy/

Facebook When you visit our Facebook page, where we present our company or individual products from our range, certain information about you is processed. The controller responsible for data processing in Germany is Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

All information on how Facebook handles your personal data can be found here: www.facebook.com/privacy/explanation.

3.9 Web analysis

Umami Analytics

We use the web analysis tool "Umami Analytics" from Umami Software Inc., 1362 42nd Ave, San Francisco, California, 94122, USA, on this website to optimise our content and offers.

Umami Analytics only uses a Java script to collect usage data for statistical purposes. Umami Analytics does not set any cookies, does not store any information in the user's browser and collects usage data exclusively in anonymised form.

Further information can be found in Umami Analytics' privacy policy: https://umami.is/privacy.

3.10 Cooperation with the parent company and other subsidiaries

In order to pursue the legitimate interests of MEDICE Health Family Holding GmbH pursuant to Art. 6 (1) (f) GDPR in optimising the advertising and sales market presence of our parent company and its subsidiaries, it may be necessary for us to share certain personal data within MEDICE Health Family Holding GmbH. This applies in particular to possible contact details, information about your interests and customer profile, and your use of our products and services.

The joint processing of this data takes place within the framework of joint responsibility in accordance with Art. 26 GDPR. The companies involved within MEDICE Health Family Holding GmbH have set out in an agreement how the respective tasks and responsibilities relating to the processing of personal data are distributed and who fulfils which obligations in accordance with the GDPR.

The shared data may be used to:

Optimise our marketing and sales strategies.

Conduct market research and analyses to further improve our products and services.

The companies involved within MEDICE Health Family Holding GmbH ensure that appropriate technical and organisational measures are taken to protect your personal data. The transfer and processing of your data is always carried out in accordance with the applicable data protection regulations.

Further information on data protection, your rights as a data subject and data processing by MEDICE Arzneimittel Pütter GmbH & Co. KG as the parent company of MEDICE Health Family Holding GmbH can be found at here:
Privacy Policy of the MEDICE Arzneimittel Pütter GmbH & Co. KG

If you have any questions about the joint processing of your data within MEDICE Health Family Holding GmbH or would like to assert your data protection rights, you can contact our data protection team at any time at datenschutz[at]medice.de.

3.11 Purposes of processing

Personal data is processed for the following purposes:

to ensure the long-term technical functionality and user-friendliness of the website
to protect the rights and interests of MEDICE and third parties (e.g. users)
to provide the PTA Family offers
to conduct competitions and surveys
for communication and establishing contact
To fulfil legal obligations
in rare cases, to defend against legal claims or to combat fraud
for market research and marketing purposes

3.12 Storage and deletion periods

Unless otherwise stated in this privacy policy, we only store your personal data for as long as is necessary to fulfil the aforementioned processing purposes, to fulfil our contractual or legal obligations, or to pursue and defend legal claims.

The statutory retention obligations arise in particular from commercial or tax law, as well as from regulations governing medicinal products and medical devices.

4. Legal basis

The legal basis for the processing of your personal data may be your informed, voluntary consent pursuant to Art. 6(1)(a) in conjunction with Art. 7 GDPR, the performance of a contract to which you are a party or the implementation of pre-contractual measures pursuant to Art. 6(1)(b) GDPR, the fulfilment of a legal obligation pursuant to Art. 6(1)(c) or the protection of our legitimate interests or those of a third party pursuant to Art. 6 (1) lit. f) GDPR.

5. Data transfer

We only pass on your personal data to third parties if:

you have given us your express consent to do so in accordance with Art. 6 (1) (a) GDPR,

the transfer is permissible under Art. 6 (1) lit. f) GDPR to safeguard our legitimate interests and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,

there is a legal obligation to disclose the data in accordance with Art. 6 (1) (c) GDPR, and

this is legally permissible and necessary for the performance of contractual relationships with you in accordance with Art. 6 (1) (b) GDPR.

Within the scope of the processing operations described in this privacy policy, personal data may be transferred to the United States. Companies in the United States only have an adequate level of data protection if they have certified themselves under the EU-US Data Privacy Framework and thus the adequacy decision of the EU Commission pursuant to Art. 45 GDPR applies.

We have explicitly mentioned this in the privacy policy for the service providers concerned. In order to protect your data in all other cases, we have concluded agreements on order processing based on the standard contractual clauses of the European Commission. If the standard contractual clauses are not sufficient to establish an adequate level of security, your consent pursuant to Art. 49(1)(a) GDPR may serve as the legal basis for the transfer to third countries. This does not apply to data transfers to third countries for which the European Commission has issued an adequacy decision pursuant to Art. 45 GDPR.

6. Data security

The security of your personal information is very important to us.

Every time data is collected, stored, used and transferred, there are confidentiality risks (e.g. the possibility of identifying the person concerned). These risks cannot be completely ruled out and increase the more data can be linked together. MEDICE assures you that it will do everything possible in line with the state of the art to protect the transfer of your data.

To this end, we take the following technical and organisational measures, among others:

SSL/TLS encryption: Personal data is only transmitted via connections that are encrypted using the latest technology. We implement the applicable requirements of the Federal Office for Information Security ( ) and use this technology to protect the transmission of your data.
Different passwords for all software tools
Multi-factor authentication for access to internal systems and information
Virus protection for all IT hardware used
Firewall for our internal company network
Regular training on data security and protection for all employees
Regular updates of all software components
Regular data backups to ensure availability
Regular risk analyses of the relevant IT systems

7. Your rights

When processing your personal data, it is our goal to guarantee your data protection rights at all times. You can find our contact details under point 2 "Contact".

You can exercise the following rights in relation to your personal data:

You can request information about the processing of your data.
You can request the correction of your personal data if it is incorrect or incomplete.
You may request the restriction of the processing of your personal data: (1) for the duration of the verification of the accuracy of the data, (2) if the processing is unlawful and you refuse to have it deleted, (3) if the data is no longer required by the controller for the purposes of processing, but you need it to assert, exercise or defend legal claims, (4) In the event of an objection to data processing, as long as the corresponding balancing of interests has not been clarified.
You may request that the data collected about you be transferred to you or to a body designated by you.
If there are grounds for complaint, you may lodge a complaint with the competent data protection authority.
The contact details of the data protection supervisory authorities of all federal states can be found at the following internet address:
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
You may request the deletion of the data collected about you.
You may object to the processing of your personal data at any time without giving reasons.
You may revoke your consent to data processing at any time without giving reasons.
You will not suffer any disadvantages as a result of an objection/revocation. The objection is valid with effect for the future; previous data transfers remain lawful. From now on, your data will only be processed by MEDICE to a limited extent if this is required by the relevant legal provisions under Art. 6 (1) (c) and our legitimate interest under Art. 6 (1) (f) GDPR.

If you have any further questions about the handling of your personal data or would like to exercise your other rights, please contact our data protection team at datenschutz[at]medice.de.

For confidential matters relating to data protection, you can contact our data protection officer directly at dsb[at]medice.de.

Privacy policy for the PTA Family website​