Who has access to your personal data and to whom is your personal data transferred ?
Access to your personal data is restricted to authorized users.
Be assured that Agfa will not distribute or sell your personal data to third parties, without your permission to do so.
Because Agfa is a global company, we may transfer information to other Agfa offices or subsidiaries around the world, to the extent necessary for the purposes described. Be assured that all such entities are governed by terms equivalent to this privacy notice. The legal basis for this transfer is Art. 49 of the GDPR.
Agfa offices and subsidiaries have developed global data security practices designed to protect personal data that include the practices addressed in our Global Policy Information Security and Privacy.
To read Agfa’s Global Policy Information Security and Privacy, please click here.
International transfers of personal data to Agfa offices and subsidiaries are protected using the appropriate measures to implement appropriate guarantees for the protection of your personal data in accordance with the GDPR.
EU-U.S. Privacy Shield: Agfa HealthCare US Corp is still certified as a participant in the U.S. Department of Commerce’s EU-U.S. Privacy Shield and has certified that it adheres to the EU-U.S. Privacy Shield Principles. For more information about the EU-U.S. Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield website at https://www.privacyshield.gov. Agfa HealthCare US Corp. is subject to the investigatory and enforcement powers of the Federal Trade Commission.
Agfa no longer relies on the Privacy Shield as a transfer mechanism for data transfers given the EU-U.S. Privacy Shield is no longer valid as a result of the recent CJEU ruling in Schrems II. However, to the extent Agfa HealthCare US Corp. has ongoing obligations under our existing Privacy Shield Certification, we will continue to honor them, including honoring the direct rights of redress provided to individuals against Agfa HealthCare US Corp., including a right to invoke binding arbitration.
If you have questions or concerns regarding Agfa HealthCare US Corp.’s compliance with the principles of the EU-U.S. Privacy Shield, please send an e-mail to firstname.lastname@example.org. If you do not receive timely acknowledgement of your complaint, or if your complaint is not satisfactorily addressed, you have several options. You may submit your complaint to Privacy Trust, an independent third party dispute resolution service. Visit https://www.privacytrust.com/drs/agfauscorp to file a complaint. Alternatively, you may submit your complaint to your local Data Protection Authority. If your complaint is not resolved after following the recourse mechanisms described above, in limited situations, EU individuals may invoke binding arbitration. Please contact https://www.privacyshield.gov.
In cases of onward transfer to third parties of data of EU individuals received by Agfa HealthCare US Corp. pursuant to the EU-US Privacy Shield, Agfa HealthCare US Corp. remains liable. Agfa HealthCare US Corp. will release your personal data to law enforcement upon receipt of a valid judicial instruction or order.
To the extent required to achieve the purposes of providing information to you (for example information about our products or services in which you may have interest in your country), we may also need to share your personal data to Agfa’s authorized agents and distributors or Agfa’s subcontractors.
Agfa may cooperate with external service providers who may also be located in third countries. Third countries are countries where the applicable law does not guarantee the same level of data protection as within the EEA.
International transfer of personal data to third parties are protected using the appropriate contracts and measures.
In the event that a recipient of your personal data is located in a third country for which the EU Commission has not made an adequacy decision to the effect that an adequate level of data protection exists in this third country, Agfa will take additional measures to implement appropriate guarantees for the protection of your personal data in accordance with the GDPR.
Agfa transfers personal data to external recipients outside the European Economic Area only if the recipient has (i) entered into EU Standard Contractual Clauses with Agfa or (ii) implemented Binding Corporate Rules in its organization. You may request further information about the safeguards implemented in relation to specific transfers by contacting email@example.com.