General Data Protection Regulation & Getinge’s Commitment
Policies & Procedures
Getinge has and continues to develop data protection policies and procedures addressing the requirements and standards of the GDPR including:
Our main policy and manual for data protection has been overhauled to meet GDPR requirements. We have and continue to develop accountability and governance measures (including privacy by design) to raise awareness of and promote compliance with our data protection obligations and responsibilities.
We have and continue to update our retention policies and schedules in consideration of ‘data minimization’ and ‘storage limitation’ principles.
We have and continue to develop safeguards and security measures for identifying, assessing, investigating and reporting personal data breaches.
International Data Transfers
To the extent that Getinge transfers personal information outside the EU/EEA, we have and continue to develop our policies and procedures for securing and maintaining the integrity of the data. When such data transfers involve external recipients, we request recipients verify that they have appropriate safeguards to protect the personal information and to comply with data subject rights and requests.
Data Subject Request
We provide a user friendly interface for requesting personal data correction, restricted processing, erasure as well as submitting data processing objections. Access the request form here.
Data Privacy Notice
Statement disclosing how Getinge uses, gathers and processes personal data from 3rd parties.
Legal Basis for Processing Personal Data
We assess and have a system for recording the legal basis for processing activities involving personal data.
Where applicable, we issue privacy notices informing individuals of the details surrounding the data processing activity and their rights and freedoms pursuant to GDPR.
Data Protection Impact Assessments
We have a system for facilitating data protection impact assessments.
Data Processor Agreements
Where applicable, we enter into data processing agreements.
Data Subject Request
To request personal data access, correction, restricted processing or erasure or to submit data processing objections for legitimate purposes, please complete the form linked below.