Fresenius Group Overview

Personal Data Request

  • Privacy Notice Data Subject Request

    If you contact us with a request regarding your rights as a data subject under the General-Data-Protection-Regulation, Fresenius SE & Co. KGaA (“we” or “Frese-nius”) will process certain personal data.

    By “personal data” we mean any information related to you.

    By “processing” we mean any operation which is performed on personal data, such as collection, recording, organisation, structuring, storage, adaptation or al-teration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or de-struction.

    We take the protection of your personal data very seriously. All processing of per-sonal data by us is governed by the General Data Protection Regulation of the Eu-ropean Union (“GDPR”). This Data Protection Information informs you about how we process your personal data.

    Controller and contact

    Controller

    The controller and responsible entity for processing of personal data is:

    Fresenius SE & Co. KGaA,
    Else-Kroener-Straße 1,
    61352 Bad Homburg,
    Germany
    E-mail: pr-fre@fresenius.com

    Data protection officer

    We have designated a data protection officer. You can contact the data protection officer for all requests and questions concerning your personal data via:

    Fresenius SE & Co. KGaA
    Data Protection Officer
    Else-Kröner-Straße 1
    61352 Bad Homburg
    Germany
    E-mail: dataprotectionofficer@fresenius.com

    Processing of personal data

    How we collect your data

    We process personal data you provide to us when you fill in the mandatory fields in the contact formula for data subject requests or you send to us directly via email. Furthermore we process personal data you provide to us when you fill in optional fields which are optional details. We may also process personal data you provide to us in cases of requests, e.g. we need to verify your identity.

    Purposes of Processing

    We process the personal data you provided to us (the exact data depends on what information you include in your request, typically, it will be your name, contact in-formation, information on in what kind of a relationship you are with Fresenius and the request itself) for the purpose of handling and responding to your request.

    Legal Basis for Processing

    We process your personal data on one of the following legal bases:

    The processing of your personal data is necessary for us in order to comply with a legal obligation we are subject to . We are legally obliged to respond to your request and to process your personal data accordingly.

    Possible recipients or categories of recipients of your personal data

    We may transmit your personal data in parts or as a whole to other entities. This largely depends on the scope of your request, in particular, which entities you in-teracted with. E.g., if you are a customer of a particular Fresenius entity, we will forward the request to such entity, in order to collect the necessary information to respond to it.

    Recipients are

    • Other group companies if such a transfer of personal data is required for the specific purpose (you can find a list of the Fresenius group companies here: www.fresenius.com/worldwide);
    • Service providers who process personal data on our behalf but have to follow our instructions on such processing; these service providers will not be allowed to use your personal data for other than our pur-poses;
    • Authorities, who we are obliged to provide your personal data to, e.g., data protection authorities; and
    • Auditors or similar external consultants like lawyers or tax advisers.
    International data transfers

    In order to fulfill the above-mentioned purpose, we may transfer your personal data to recipients outside Germany.

    Your personal data may be transmitted internationally to countries in which the Fresenius Group operates, depending on the scope of your request. You can find these countries on our homepage under www.fresenius.com/worldwide".
    If your personal data is transferred to recipients within the European Economic Area, data protection complies with European requirements.

    We may transfer your personal data in parts or as a whole to recipients in third countries, which are not Member States of the European Union, or international organisations which process your personal data for the purpose listed above.

    The European Commission has determined an adequate level of data protection to be in place that matches the level of data protection within the European Union for the following countries / international organisations in which Fresenius entities are established: Argentina, Canada, New Zealand, Switzerland or Uruguay.

    With regards to such international data transfers to third countries, for which the European Commission has not decided that an adequate level of data protection exists, we have provided appropriate safeguards in order to secure your personal data to a degree that equals the level of data protection in the European Union.

    These safeguards are:

    • Standard Contractual Clauses that have been issued by the European Commission.
    • Commiseration in the EU-US-Privacy Shield (you can find more infor-mation on the framework here)

    You can obtain a copy of these Standard Contractual Clauses here or by requesting a copy from us.

    Retention period

    We store your personal data until we have responded to your request. Afterwards, the respective personal data shall be blocked (i.e. we block your data for all other purposes) until the end of the respective statute of limitation for corresponding legal claims. After the end of this status of limitation (after 4 years), your data will be erased entirely.

    If longer retention periods apply beyond the time periods listed above (e.g., because we are obliged to store the data for tax audit purposes) we aim also includes that the data will be blocked and will be archived until the end of the respective retention period and then erased. Your data will be blocked for processing for any purposes other than archiving and will be kept until the end of the respective retention period.

    Your rights and your personal data

    You have the following rights with respect to your personal data:

    Right of access

    You have the right to request from us information on which personal data about you we process at any time.

    Right to rectification of incorrect data

    If data about you is inaccurate, you have the right to obtain from us rectification of such data without undue delay.

    Right to erasure

    Under specific requirements you have the right to request from us the erasure of your personal data. In particular you may ask us to erase personal data, if (i) it is no longer necessary in relation to the purposes for which it was collected or other-wise processed; (ii) the personal data has been unlawfully processed, (iii) you object to the processing pursuant to Art. 21(1) GDPR and there are no overriding legitimate grounds for the processing, (iv) the personal data has to be erased for compliance with a legal obligation in Union or Member State law to which we are subject or (v) you withdraw your consent on which the processing is based and there is no other legal ground for the processing.

    Right to restriction of processing

    You have the right to obtain from us restriction of processing, where one of the fol-lowing applies: (i) The accuracy of the personal data is contested by you, processing will be restricted for a period enabling us to verify the accuracy of the personal data, (ii) the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead, (iii) we no longer need the personal data for the purposes of the processing, but are required by you to keep them for the establishment, exercise or defence of legal claims or (iv) you have objected to processing pursuant to Art. 21(1) GDPR and the verification whether our legitimate interests override yours is pending .

    Right to data portability

    You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format .

    Right to object

    Pursuant to Art 21 GDPR, you have the right to object, on grounds relating to your particular situation, at any time to processing of personal data con-cerning you which is based on point e) or f) of Art 6 para. 1 GDPR. We will no longer process your personal data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the purpose of establishing, exer-cising or defending legal claims.

    In all of the above cases, please use the contact form or send your request to the postal or email address stated above.

    Right to lodge a complaint

    You also have the right to lodge a complaint with a supervisory authority. The responsible supervisory authority for Fresenius is:

    Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
    Gustav-Stresemann-Ring 1
    65189 Wiesbaden

    Requirements to provide personal data

    If you fail to provide your personal data, we might not be able to respond to or properly process your request.

    Further information for specific situations and contact

    This data protection information informs you exclusively about the processing of personal data when making a data subject request. Please be aware that we also might process your personal data in different contexts, e.g., when you visit our website or when you receive benefits as a healthcare professional. Please see the respective specific information on the processing of your personal data in these sit-uations. You can find our general privacy policy for the website here [insert hyper-link].

    If you have any questions on data protection at Fresenius, please contact us at dataprotection@fresenius.com.

     

We welcome you to exercise your right of access according to the General Data Protection Regulation (GDPR) and we appreciate your interest in Fresenius. The GDPR represents a uniform pan-European standard for data protection and strengthens your rights as a data subject.

On this website we explain how you realize your right of access to your personal data, processed from us. To ensure your rights according to the GDPR, we implemented a process at Fresenius, which enables fast and complete response to your request.

Please fill out the contact form below and send it to us. (Naturally, you may also contact our data privacy organization via datenschutzbeauftragter@fresenius.com.) The data provided in the contact form will only be used for the purpose of responding to your request.

We may request additional information in order to confirm your identity if appropriate in the individual case. When handling your request, it might be necessary that we get in touch with you to cause rapid clarification of your question.

We provide information free of charge unless requests are manifestly unfounded or excessive. We may charge a reasonable fee in that case.

We aspire to answer your request in four weeks. We reserve the right to extend the period within the scope of the admissibility of the GDPR. Over this you will be informed separately. If you have further interests in data privacy at Fresenius, please contact datenschutzbeauftragter@fresenius.com.

Contact Form
Please enter a first name.
Please enter a last name.
Please enter a valid e-mail address.
Please choose an option.
Please choose an option.
Please enter a message.

All fields marked with * are required.