Privacy Policy

George Clinical Pty Ltd, together with its subsidiaries worldwide (George Clinical) is committed to handling Personal Information (including health and other sensitive information) in accordance with applicable privacy and data protection laws.  

We also comply with the International Conference of Harmonisation (ICH) Guidelines for Good Clinical Practice with respect to the use, protection and security of health information collected, and guidelines issued by the National Health and Medical Research Council of Australia (NHMRC) in respect of health information that may be accessed in the conduct of research.

As a global business, George Clinical uses its best endeavours to collect, use and disclose Personal Information in a manner consistent with the laws of countries in which it does business.  Where that information is transferred across international borders, whether within George Clinical or to third parties, George Clinical will apply appropriate safeguards to such transfers, as required by relevant laws. 

Personal Information means any information about an identified or identifiable person.  A reference to Personal Information includes “personal data” as defined in the EU General Data Protection Regulation ((EU) 2016/679) (GDPR). 
Sensitive or Health Information is a type of Personal Information.

When we collect information that is not Personal Information or we aggregate or anonymise Personal Information such that it can no longer be used to identify you, we may use and disclose that information for any purpose, as unidentifiable data is not covered under privacy or data protection laws.

 

What types of Personal Information do we collect and why?

We may collect Personal Information when you request information from us, when you provide us your information, when you access our website and when you enquire or apply for career opportunities.

We only collect Personal Information reasonably necessary for one or more of our functions or activities as a clinical research organisation. 

We do not sell your Personal Information.

More details about the Personal Information we collect (and why) are provided below.

Human Research Studies / Clinical Trials

We may collect Personal Information from you related to human research studies and trials undertaken or managed by George Clinical, (or a third-party operating on our behalf). 

However, information about study participants is generally provided to us in a de-identified format (that is, a format in which the identity of the person cannot be reasonably identified).  

Any Personal Information is collected for the purposes of medical research and analysis related to the research study or trial, to comply with laws and regulatory guidelines, or to substantiate the findings and publication of research results.

Working with George Clinical

We may collect Personal Information from you when you enquire or apply for career opportunities, either as an employee, intern, or as a professional working with us on a human research study or trial. 

Such Personal Information may include your professional qualifications, experience, and professional registrations. We will generally collect this information directly from you, however we may use other sources such as recruitment agencies, business partners, or institutions that you are affiliated with. We may also collect your Personal Information from third-parties (e.g. referees) as part of our assessment and recruitment process.

We may hold and use your Personal Information for administrative and management purposes, complying with our legal and regulatory obligations, the evaluation and operation of trials or studies you are working on with us.  

We may also use your Personal Information to consider you working or  collaborating with us on future studies and projects, or to recommend you to other CRO’s, research institutions, collaborators or sponsors.  

You may request that we do not contact you and delete your Personal Information if you are no longer interested in opportunities with George Clinical. 

General Activities

As part of the ordinary course of business operations, we may capture and record Personal Information from our dealings with partners, business alliances and service providers. Such information is collected for administrative, management, and audit purposes.

We may collect Personal Information (e.g. name and contact details) from those who contact us (by phone or in person) or access our websites Personal Information . Such information is collected in order to deal with you and improve our services.

Our Websites

When accessing our websites, we may make a record of part of your user service address and internet provider name and address, the date and time of your visit, the pages you accessed and any documents downloaded, any website visited prior to accessing our site and the type of browser used. We do not record your IP address.

This information (which is unlikely to contain Personal Information) is collected to monitor the activity on our websites (including the popularity of certain pages and information presented on our websites, and linkages to information), to consider improvements to the delivery, presentation and types of information on our websites (including cost/benefit analysis), and ensure the protection of our intellectual property and reputation.

Our websites do use cookies, which are small text files that are stored in your local browser cache when you visit a website. Using cookies makes it possible to recognise the visitor’s browser in order to optimise the particular website and simplify its use. Information collected via cookies is not used by us to determine the personal identity of a visitor. Most browsers are set up to accept these cookies automatically. You can deactivate the storing of cookies or adjust your browser to inform you before a cookie is stored on your computer.

 

Holding Personal Information 

We hold Personal Information in paper-based and electronic records and systems.

Personal Information collected in paper-based documents may be converted to electronic form for storage (with the original paper-based documents either archived or securely destroyed).

George Clinical uses physical and technical security measures to protect your Personal Information from misuse, interference and loss, and from unauthorised access, modification and disclosure. 

How long will we keep you information?

We will only retain your Personal Information for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your Personal Information for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.

To determine the appropriate retention period for Personal Information, we consider the amount, nature and sensitivity of the information, the potential risk of harm from unauthorised use or disclosure of your Personal Information , the purposes for which we process your Personal Information  and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.

 

How do we disclose your Personal Information ?

Our staff must comply with privacy and confidentiality terms as part of their employment with us. To be an approved third-party of George Clinical, that party must be subject to similar privacy and confidentiality laws, or have a professional and/or contractual obligation of confidence.

We may disclose your Personal Information across international borders.  As a global entity, we have employees, agents, service providers, collaborators and research partners in many countries including Canada, the United Kingdom, the European Union, Asia Pacific, China and the Americas.

George Clinical will comply with all legal obligations relating to cross border transfer of your Personal Information. 

Your Personal Information may be disclosed to third parties as part of research trials and studies.  Generally however, trial participant’s Personal Information will be de-identified (or aggregated with others) before disclosure.  Where Personal Information is shared with third parties, this will be subject to contracts we have in place with those organisations offering an equivalent level of protection. 

Legal basis for processing

We will only use your Personal Information when the law allows us to. 

Most commonly, we will use your Personal Information in the following circumstances:

  • Where you have given consent;
  • Where we need to perform the contract we have entered into with you;
  • Where we need to comply with a legal obligation; or
  • Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.

Please contact us should you require any additional information about the legal grounds we rely on for any specific processing activities that involve your Personal Information.

Data Security

We have put in place measures to protect the security of your information, and to prevent your Personal Information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access (by physical and technical safeguards) to your Personal Information to those staff, related parties, and approved third-parties (e.g. agents, service providers, collaborators and research partners) who have a business or legal need to know.

We have also put in place procedures to deal with any suspected data breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.

 Your rights

You have rights in respect of your Personal Information.  We extend the rights below globally, unless local law states otherwise.  

 

Rights

What does this mean?

The right of access

You have the right to request access to your Personal Information that we hold about you.

The right to rectification

You are entitled to request corrections to the Personal Information that we hold about you if it is inaccurate or incomplete.

The right to erasure

This is also known as “the right to be forgotten” and enables you to request the deletion or removal of your Personal Information if there is no compelling or legal reason for us to keep using it.

The right to restriction of processing

You have the right to ask us to suspend the processing of Personal Information about you, for example if you want us to establish its accuracy or the reason for processing it.

The right to object to processing

You have the right to object and ask us to stop processing your Personal Information.

The right to lodge a complaint

You have the right to lodge a complaint about the way we process your Personal Information with the relevant supervisory authority.

The right to request transfer

You have the right to request us to transfer Personal Information that we hold about you to another party, in a machine readable format.  

The right to withdraw your consent

You have the right to withdraw your consent to us processing your Personal Information.

The right to seek explanation of how we process your Personal Information

We will explain how your Personal Information is processed, however if you do not understand, you have the right to seek further explanation

The right to opt out of sale

We do not sell identifiable information about individuals involved in clinical research studies 

The right to non-discrimination

We will not discriminate against you for the exercise of your privacy rights

The right to automated decision making

You have the right to not be subject to a decision based solely on automated processing (ie processing without human intervention).

  The right to know

You have the right to request that we disclose certain information about our collection and use of your Personal Information over the past twelve months

 

Please note, these rights are not absolute and may not apply in all circumstances, but we will do our best to assist you. 

 

 Can you deal with us anonymously?

Where lawful and practical, you will be given the option to deal with us without identifying yourself or by using a pseudonym (e.g. when inquiring about the activities that George Clinical undertakes).

 

 

How can you access or seek correction of your Personal Information held by us, or exercise your other rights?

You may request access to, or seek correction of, your Personal Information that is held by George Clinical, or exercise other rights, by writing to us:

 

If you are located in the European Union you may write to the Data Protection Officer:

Address: George Clinical Netherlands BV of Jan van Galenstraat 335

1061AZ Amsterdam, Netherlands
Email[email protected]
Phone: +61 2 80524894

 If you are located elsewhere in the world you may write to the Privacy Officer:

Address: Level 5, 1 King Street, Newtown, NSW 2042 Australia;
Email:[email protected]
Phone: +61 2 80524894

 

We will generally not charge a fee for such requests, but we may charge a reasonable fee if necessary to cover the costs of your requests. We may refuse to comply with the request in some circumstances, for example if the request would compromise other’s privacy. We may require further information from you to verify your request.

We will confirm receipt of your request and provide an estimate of when we will respond. Typically, we will respond to your request within one (1) month, but sometimes we may require more time depending on the circumstances.  

 

What should you do if you have a complaint about the handling of your Personal Information?

Please set out your complaint in writing:

Please provide sufficient information, so that the Privacy Officer can consider your concerns and contact you. Typically, we will respond to your complaint within one month.

If you are located in the European Union you may write to the Data Protection Officer:

Address: George Clinical Netherlands BV of Jan van Galenstraat 335

1061AZ Amsterdam, Netherlands
Email[email protected]
Phone: +61 2 80524894

 

If you are located elsewhere in the world you may write to the Privacy Officer:

Address: Level 5, 1 King Street, Newtown, NSW 2042 Australia;
Email:[email protected]
Phone: +61 2 80524894

 

If you are not satisfied with our response, or you consider that we may have breached our legal obligations, you are entitled to make a complaint to the relevant regulator or data protection authority in the country in which you are located.   

 

 Are changes to this Privacy Policy made?

This Policy was last updated in September 2022. We may amend this Privacy Policy from time to time.  

 

Additional Information – California Residents

The following information supplements the information contained in George Clinical’s Privacy Policy and applies solely to consumers who reside in the State of California.  

The purpose of this notice is to provide you specific information required by, and ensure our compliance with, the California Consumer Privacy Act of 2018 (CCPA).  This notice does not apply to any workforce related Personal Information collected from George Clinical employees in the State of California. 

Most of the Personal Information that George Clinical captures in the course of our business operations is not subject to the CCPA.  Where we collect and maintain information in connection with clinical research trials, this information is subject to informed consent being provided by you, and is not subject to CCPA.  In addition, this information is generally de-identified and therefore not Personal Information under the CCPA. 

We may collect information which identifies or is reasonably capable of being linked, directly or indirectly, with a particular consumer.  In particular we may have collected the following information from you in the last 12 months: 

  • Identifiers including your name, email address or partial IP address
  • Your name, address and phone number
  • Internet or network activity including cookies, web logs and information about how you use our website
  • Any information you provide in a job application or expression of interest for example, professional, education or employment history 

We may use this Personal Information as set out in our Privacy Policy. We will not collect additional Personal Information or use the Personal Information we have for unrelated or different purposes without first obtaining your consent. 

We may share your Personal Information with third parties as set out in our Privacy Policy.  Where Personal Information is shared with third parties, this will be subject to contracts we have in place with those organisations offering an equivalent level of protection.  

We do not sell any Personal Information.

Over the last 12 months, we may have disclosed Personal Information for a business purpose to the following categories of third parties: 

  • Service providers, clients, business partners and agents
  • Worldwide corporate affiliates
  • Regulatory or legal authorities
  • Other third parties with your consent

You are entitled to exercise any of the rights set out above in relation to your Personal Information. We will not discriminate against you for exercising any of those rights.

 

 

Add George Clinical to your network