Website Data Protection and Privacy Policy



Why this document?

As part of its day to day operation, SANOFI provides access to a variety of tools and resources which are destined to provide information to all the individuals with whom it has business interactions with (patients and their relatives, participants to clinical trials, healthcare professionals, users of products and services, workers, etc.) regarding its activities.

Such tools and resources may be provided in various formats, including, more specifically in electronic format and by means of online electronic communications, including the website available at www.sanofi.com and any other website made available by SANOFI and to which this policy applies (hereinafter together the “Website”). In order to be able to provide them, SANOFI may need to collect and process Personal Data (as defined below) of their users.

SANOFI is fully committed to the protection of Personal Data and intends to provide you with all relevant information regarding the way in which SANOFI processes your Personal Data on the Website.

You will therefore find below all relevant information regarding the processing of Personal Data conducted on this Website. Please note that the content of this Website Privacy Policy may change from time to time, for instance in case of evolution of our processes or as a result of applicable law.. Should these changes be objectively substantial and affect your rights or our obligations pertaining to the protection of Your Personal Data (and insofar as we have a means to contact you), we will notify you of the update by adequate means based on the information we may have collected. However, we advise you to visit the page of this Website Privacy Policy regularly to verify any updates.

Who is responsible for the processing of personal data on this website (the Controller)?

Sanofi-aventis Groupe is responsible for the processing of Personal Data of individuals using this website and therefore acts as the Controller:

Sanofi-aventis Groupe:
54, rue La Boétie
75008 Paris
France
Tel.: +33 (0)1 53 77 40 00

Sanofi-aventis Groupe is a public company registered with the RCS of Paris under the number 403 335 938 (SIREN).

Reminder: What is personal data and processing?

For the purposes of this Website Privacy Policy, Personal Data is any information relating to an identified or identifiable natural person, processed by SANOFI in connection with the objectives and purposes defined in this Website Privacy Policy.

To make things clear, it is any information that relates to an individual. Such Personal Data can take the form of:

  • Basic identification information such as your name or date of birth;
  • Information that can be attributed to you directly or indirectly – such as a post on a social media
  • Information which can be associated to you or your device such as, for instance, an IP address (i.e. the network address of your machine);
  • Etc.

In this respect, the notion of “processing” designates any action that is undertaken on your Personal Data such as, for instance:

  • Collection;
  • Storage;
  • Access;
  • Analysis;
  • Deletion;
  • Etc.

What personal data does this website collect?

When operating, this Website may collect the following categories of Personal Data:

  • Identification data<: any information that you specifically provide to us which allows your identification, whether directly or indirectly such as your name or contact details (address, email address, telephone number), your job type, your company
  • Messages: you may send us enquiries using this Website
  • Data relating to and data which may be collected by cookies: for more information about cookies, please see below.
  • Under certain specific situations, SANOFI may process philosophical, political and religious opinions, trade-union membership, sexual orientation, information relating to health, racial or ethnic origin: SANOFI will only process such categories of Personal Data, which qualify as “sensitive” Personal Data or “special categories” of Personal Data if duly permitted under applicable data protection laws. In particular, SANOFI will only process such information it has obtained your prior explicit and specific consent to do so.

For what purposes does this website collect personal data?

Any processing of Personal Data must be implemented for a defined purpose. In this respect, the collection and processing of Personal Data on this Website may be:

  • To allow you to navigate this Website
  • To provide you access to online services, application and platforms; manage your online accounts
  • To provide patient support, healthcare support services, patient engagement and prescription information; claims management, including insurance claims
  • To conduct research and development; carry out clinical studies, registries and trials; manage and validate the recruitment and participation of individuals to studies, trials and other operations; analyze demographic data; offer special programs, activities, trials, events or promotions via our services; carry out market or consumer studies
  • To personalize your browsing experience: when using our services ; ensure that our services are presented in the way that best suits you ; understand your professional and personal interests in our content, products and services or other content and adapt our content to your needs and preferences ; present you products and offers tailored to you
  • To improve our products and services identify usage trends and develop new products and services ; understand how you and your device interacts with our services ; track and respond to safety concerns ; determine the effectiveness of our promotional campaigns, conduct surveys;
  • To process your job applications
  • To allow us to communicate with you; respond to your requests or inquiries ; provide support for products and services ; provide you with important information, administrative information, required notices, and promotional materials ; send you news and information about our products, our services, our brands, our operations ; organize and manage professional events and congresses, including your participation to such events

On what grounds does this website process your personal data?

For the purposes of this Website, your Personal Data is only processed on the basis of:

  • Your prior CONSENT: where you have clearly expressed your approval of SANOFI’s processing of your Personal Data. In practice, this will generally mean that SANOFI will ask you to sign a document, or to fill-in an online “opt-in” form or to follow any relevant procedure to allow you to be fully informed and then either clearly accept or refuse the envisaged Personal Data processing. By navigating this Website and, if relevant, consenting to the processing of your Personal Data using cookies (as per our cookie policy below).
  • A contractual relationship between you and SANOFI: in such case, the processing of your Personal Data is generally necessary to the execution or the performance of the contract; this means that if you do not wish SANOFI to process your Personal Data in that context, SANOFI may or will be obliged to refuse to enter into such contract with you or will not be able to provide the products or services covered in this contract.
  • The “legitimate interest” of SANOFI in the sense of applicable data protection law.In such a case, SANOFI shall consider your fundamental rights and interests in determining whether the processing is legitimate and lawful.

How long is the personal data collected on this website retained?

The Personal Data collected on this Website will be retained for the following periods, depending on the categories of Personal Data processed:

  • Messages: Messages are retained only until triaged and sent to the appropriate stakeholder based on the nature of your inquiry.
  • Data relating to and data which may be collected by cookies: Please see the cookie policy below.

Who has access to personal data?

SANOFI may transfer your Personal Data both internally (i.e. to other SANOFI entities) and/or externally to third party service providers for the purposes of answering your inquiry and/or operating this website.

Where such internal or external transfer of Personal Data implies the transfer of your Personal Data to a country providing a lower level of protection to Personal Data than generally afforded in your jurisdiction, SANOFI will ensure that a sufficient level of protection is provided to your Personal Data by implementing adequate safeguards such as the European Standard Contractual Clauses, the SANOFI Binding Corporate Rules or asking for your prior explicit consent.

Your rights: Sanofi will ensure that you can exercise your rights pertaining to your personal data

You can exercise your rights as provided by applicable data protection laws.

  • To have access upon simple request to your Personal Data – in which case you may receive a copy of such data (if requested), unless such data is made directly available to you, for instance within your personal account;
  • To obtain a rectification of your Personal Data should your Personal Data be inaccurate, incomplete or obsolete;
  • To obtain the deletion of your Personal Data in the situations set forth by applicable data protection law (‘right to be forgotten’);
  • To withdraw your consent to the processing of Persona Data processing without affecting the lawfulness of processing, where your Personal Data has been collected and processed on the basis of your consent;
  • To object to the processing of your Personal Data, where your Personal Data has been collected and processed on the basis of legitimate interests of SANOFI, in which case you will need to justify your request by explaining to us your particular situation;
  • To request a limitation of the processing of Personal Data processing in the situations set forth by applicable data protection law;
  • To receive your Personal Data for transmission from SANOFI to a third-party or to have your Personal Data directly transferred by SANOFI to the third-party of your choice, where technically feasible (data portability right allowed only where the processing is based on your consent)

If you would like to exercise any of these rights, please contact us as described in the “How to Contact Us” section below and we will take necessary steps to respond as soon as possible.

You may also file a complaint before a competent data protection authority regarding the processing of your Personal Data. While we suggest that you contact us beforehand, if you wish to exercise this right, you should contact directly the competent data protection authority.

How to contact us

SANOFI welcomes any questions or comments you may have regarding this Website Privacy Policy or its implementation. All questions should be sent to our Data Protection Officer by completing this form.  

Cookie policy

What about cookies? What is a cookie?

A cookie is a small data file stored on your computer or mobile device at the request of your browser when you visit this Website. The cookie allows the website to “remember” your actions or preference for a certain period of time. Most browsers allow cookies by default. However, users can set their browsers to refuse or remove them, if they wish.There are different types of cookies:

  • Session cookies are deleted when you close your browser.
  • Permanent cookies remain on your device or computer until they expire or until you actively delete them. They enable certain information about your use to be recalled when you return to the website.

What cookies does Sanofi use on this website?

Some cookies are necessary to be able to use the website, others allow customization and optimization of the content displayed, the collection of user preferences or the monitoring of the audience of the website, website errors and the securing of its access.

On our Website, we and our service providers use permanent cookies.

SANOFI is using cookies if you have properly consented through the cookies banner. If your consent is already given, the banner will not appear again as long as the cookie expiry term has not come to an end. If you do not want our Website to install cookies on your browser, you can disable cookies on the cookie settings page or by modifying your browser settings. In this case, certain pages of the Website may not function properly.

On this Website, we use cookies to measure audience and your use of the Website and to improve it.

Performance cookies

These cookies indirectly help improving this Website by tracking your use. This set of cookies collect information and may report Website usage statistics without personally identifying individual visitors.

Cookie name Cookie description Cookie expiry date
ARRAffinity This cookie is set by websites run on the Windows Azure cloud platform. It is used for load balancing to make sure the visitor page requests are routed to the same server in any browsing session. Expires when the session expires.
ASP.NET_SessionId General purpose platform session cookie, used by sites written with Microsoft .NET based technologies. Usually used to maintain an anonymized user session by the server. It expires when the session expires. Expires when the session expires.
SC_ANALYTICS_GLOBAL_COOKIE This cookie name is associated with the Sitecore Content Management System as is used for web analytics to identify repeat visits by unique users. Sitecore web analytics system is not activated and not used on this website, but the cookie remain generated by Sitecore. Expires after 10 years
sanofi-gz-l#lang This cookie name is associated with the Sitecore Content Management System. It is used to store the context language for the website. Expires when the session expires.
sxa_site This cookie name is associated with the Sitecore Content Management System. It is used to store the identifier for a website within a multisite solution. Expires when the session expires.
cookie-notification This cookie name is used to store information about the Privacy banner appearance in the website. Expires after 1 year.
ARRAffinity This cookie is set by websites run on the Windows Azure cloud platform. It is used for load balancing to make sure the visitor page requests are routed to the same server in any browsing session. Expires when the session expires.

Essential cookies

These cookies are required for this Website to work, for example allowing users to remain logged into their account. Essential cookies cannot be disabled.

Cookie name Cookie description Cookie expiry date
__UTMZ Part of Google Analytics: monitor traffic and highlight issues that may arise by people browsing our website.; Expires after 6 months.
__UTMC Part of Google Analytics: monitor traffic and highlight issues that may arise by people browsing our website. Expires after 30 minutes..
__UTMB Part of Google Analytics: monitor traffic and highlight issues that may arise by people browsing our website.. Expires after 10 years
__UTMA Part of Google Analytics: monitor traffic and highlight issues that may arise by people browsing our website. Expires after 2 years..
_ga This cookie name is associated with Google Universal Analytics. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the sites analytics reports. Expires after 2 years..
_gid This cookie name is associated with Google Universal Analytics. It appears to store and update a unique value for each page visited. Expires after 24 hours.
_gat_000000000 This cookie name is associated with Google Universal Analytics, according to documentation it is used to throttle the request rate - limiting the collection of data on high traffic sites. Expires when the session expires.
_gat_UA-107162098-5 This cookie name is associated with Google Universal Analytics, according to documentation it is used to throttle the request rate - limiting the collection of data on high traffic sites. Expires when the session expires.
ai_session This cookie name is associated with the Microsoft Application Insights software, which collects statistical usage and telemetry information for apps built on the Azure cloud platform. This is a unique Anonymous session identifier cookie. Expires after 30 minutes. 
ai_user This cookie name is associated with the Microsoft Application Insights software, which collects statistical usage and telemetry information for apps built on the Azure cloud platform. This is a unique user identifier cookie enabling counting of the number of users accessing the application over time. Expires after 1 year.

Video cookies

These cookies are required for this Website to work, for example allowing users to remain logged into their account. Essential cookies cannot be disabled.

Cookie name Cookie description Cookie expiry date
NID Used to display YouTube videos Expires after 2 years.
PREF Used to display YouTube videos Expires after 2 years.

What if you do not want cookies to be used on your browser?

You can block the use of cookies or remove cookies that are already installed on your browser. We draw your attention to the fact that disabling cookies may prevent you from accessing certain features on our Website and other websites.

You can set your browser to accept or reject all cookies, to be notified when a cookie is issued, to check its validity, duration and content and to periodically delete cookies.

You can also type “cookies” in your browser's help section to access the setup instructions.

For information about how to manage cookies on the browser of your mobile device, you will need to consult the device manual.

For more information about cookies, including how they are installed and how you can manage and delete them, visit www.allaboutcookies.org.