Privacy Policy

For the Gedeon Richter Side by Side Application

Gedeon Richter Plc. provides this Data Protection Notice to explain in detail our practices as the responsible controller regarding the collection, processing, and use of personal data relating to the Side by Side Application (“App”) developed for the 2026 Side by Side for Health Event in Malta (“Event”).

Data Controller

Gedeon Richter Plc.
Gyömrői út 19-21
H-1103 Budapest, Hungary
Email: dataprotection@richter.hu

Data Protection Officer

Richter has appointed a Data Protection Officer who may be contacted at: dataprotection@richter.hu

Purposes of Data Processing

Verification of eligibility to participate in the Event. Only event participants are entitled to use the App.
Event interaction. During the Event, participants may be asked professional questions.
Recording feedback about the relevance and usefulness of the Event.

Legal Bases for Processing Personal Data

Processing is based on explicit consent in accordance with Article 6(1)(a) of the GDPR. You may withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing performed before the withdrawal.

Purpose	Data Processed	Legal Basis	Data Retention
Verification of eligibility	Email address	Explicit Consent – Article 6(1)(a) GDPR	30 days after the Event
Event interaction	Email address and answers	Explicit Consent – Article 6(1)(a) GDPR	30 days after the webinar
Recording feedback	Email address and answers	Explicit Consent – Article 6(1)(a) GDPR	30 days after the Event

How Long We Keep Your Data

We keep personal data only as long as necessary to fulfill the purposes for which it was collected and in accordance with EU and national laws. When the data is no longer required, it will be securely deleted.

Recipients

Personal data may be transferred to third parties involved in the development and operation of the App.

Processor	Address	Activity
Meridiano Communication S.R.L.	Via Sapri 6, 00185 Rome, Italy	Development of the App

Personal data may also be shared with external advisors such as lawyers where necessary to respond to legal claims.

Data Subject Rights

Under Regulation (EU) 2016/679 (GDPR), you may exercise the following rights by contacting: dataprotection@richter.hu

Right	GDPR Article	Status
Right of access	Article 15	Exercisable
Right to rectification	Article 16	Exercisable
Right to erasure	Article 17	Exercisable
Right to restriction	Article 18	Exercisable
Right to data portability	Article 20	Exercisable
Right to object	Article 21	Not applicable
Right to withdraw consent	Article 7	Exercisable

Supervisory Authority

If you believe your personal data is processed unlawfully, you may lodge a complaint with the Hungarian supervisory authority:

National Authority for Data Protection and Freedom of Information (NAIH)
Mailing address: 1363 Budapest, Pf. 9
Headquarters: 1055 Budapest, Falk Miksa utca 9-11
Email: ugyfelszolgalat@naih.hu
Phone: +36 (1) 391 1400
Website: www.naih.hu

Judicial Remedy

You have the right to an effective judicial remedy if you believe the processing of your personal data violates the GDPR. Proceedings may be brought before the court of the Member State where the controller or processor is established or where you reside.

For further information contact: dataprotection@richter.hu