Business partners

We collect personal data which are collected directly from you, or that we receive from the company you represent, or third parties as identified in the tables below.

We only process your personal data to the extent permitted in accordance with applicable data protection legislation. This means inter alia that we need to have a legal basis for the purposes for processing your personal data.

Below, we explain more about the categories of personal data we process, for what purposes we process them and for how long we store your personal data.

What do we do and why

We will process your personal data to contact and communicate with you for the purposes of creating, maintaining and developing our business relationship with you or the company you represent.

This includes that we may contact you or the company you represent to plan engagements with sales representatives or professional affairs liaisons and communication via e-mail about our business, services and our current activities. We will also process your personal data to validate your professional credentials, as part of initiating and managing our business relationship with you.

When you contact us, we will use your personal data to respond to your queries and provide you with information you have requested.

• Name (including prefix or title)
• Preferred language
• Address
• Telephone number
• E- mail address
• Profiles on social media, e.g., LinkedIn, Facebook, Twitter and Instagram
• Professional information and experience (including your qualifications, areas of expertise, place of practice)
• Information about your publications, expertise, track record and recognition (which we also collect from publicly available sources and through third parties)

Our legal basis for processing

Legitimate interest, where our legitimate interest is to maintain and develop our business relationship with you or the company you represent and to provide any requested information to you.

How we share and transfer your personal data

We will share your personal data with the following recipients;

• Suppliers of IT-services
• Our Mölnlycke affiliates

We will transfer your personal data to our Mölnlycke affiliates which are established in countries outside the EU/EEA, for the purpose of sharing information about you within our company group. Such countries outside EU/EEA include: USA, China, Chile, Thailand, Singapore, Brazil, Canada, Japan, Australia, India, South Africa, New Zealand, Malaysia and South Korea.

You will find more information regarding how we transfer personal data to countries outside the EU/EEA in the 'Third country transfers' section below. You are also welcome to contact us through our data protection officer by e-mail privacy@molnlycke.com or by using the contact us button below.

How long we keep your personal data

We process and keep your personal data as long as we have a business relationship with you or the company you represent, however for a maximum of three (3) years from the time we last were in contact because of our business relation.

What we do and why

We process your personal data for the initiation and performance of contracts, in particular to execute and enforce the contractual terms and conditions that govern our business relationship with you, such as organizing medical events, scientific publications, and advisory meetings, paying for defined or agreed upon services, reimbursing your expenses, and interactions with you relating to such contracts. Such contract may be initiated with you or the organisation you are working for.

The personal data that we process

• Your contact information (e.g., name, title, address, telephone number, email address, place of work, etc.) and payment data (e.g., bank account, payments)
• Professional information and experience (such as your qualifications, education, areas of expertise, place of practice and CV/resume)
• Information about the performance of the contract (such as presentations and notes from meetings) and our experience from previous meetings and collaborations

Our legal basis for processing

Performance of a contract; when it is necessary to process your personal data as part of performing a contract between you and Mölnlycke, e.g., to pay you for services you provide.

Legitimate interest; wherein our legitimate interest is to fulfil and perform Mölnlycke’s contract with the company you represent.

How we share and transfer your personal data

We will share your personal data with the following recipients;

• Suppliers of IT-services
• Our Mölnlycke affiliates

We will transfer your personal data to our Mölnlycke affiliates which are established in countries outside the EU/EEA, for the purpose of sharing information about you within our company group. Such countries outside EU/EEA include: USA, China, Chile, Thailand, Singapore, Brazil, Canada, Japan, Australia, India, South Africa, New Zealand, Malaysia and South Korea.

You will find more information regarding how we transfer personal data to countries outside the EU/EEA in the 'Third country transfers' section below. You are also welcomed to contact us through our data protection officer by e-mail privacy@molnlycke.com or by using the contact us button below.

How long we keep your personal data

We will keep your personal data as long as we have a contractual relationship with you/the company you represent and for a period of three (3) years after such contract has ended.

What we do and why

We contact and engage with you to inform you about our products and services, in particular when our sales representatives visit you or meet you at events (online or offline).

If you consent through our opt-in procedure, we will contact you per email via our newsletter.

We strive to present you with information that may be of interest and that is relevant to you. For this purpose, we use profiling procedures to optimise and personalise the information we make available to you. We also create profiles and specific segments which includes bringing together personal data from various Mölnlycke affiliates. On the basis of this segmentation, we can manage the type, content and frequency of specific communication measures for specific target groups. For profiling purposes, we use personal data that we receive from you as part of our relationship.

The personal data that we process

• The profile we create about you, reflecting your preferences, characteristics, abilities and attitudes
• Profiling information, which may in particular be based on usage data that we create with your consent by measuring and evaluating your interaction with electronic advertising, in particular by measuring and evaluating the opening and click rate in email newsletters

Our legal basis for processing

Legitimate interest; wherein our legitimate interest is to select and provide relevant information to you according to your interests and behaviour, as well as to improve our processes and our business operations by managing, analysing and monitoring Mölnlycke services, products and activities provided to you.

You will only receive marketing messages if you have agreed to this through our opt-in procedure, and you may opt-out from receiving such messages by the featured opt-out procedure or by contacting us at privacy@molnlycke.com.

How we share and transfer your personal data

We will share your personal data to the following recipients;

• Our IT-service providers
• Other Mölnlycke affiliates

Mölnlycke will transfer your personal data to countries outside the EU/EEA within the scope of this processing activity. We will transfer the personal data to the following recipients;

• Our Mölnlycke affiliates established in USA, China, Chile, Thailand, Singapore, Brazil, Canada, Japan, Australia, India, South Africa, New Zealand, Malaysia and South Korea, for the purpose of sharing information about you within our company group
• Providers of analytic tools (Google Analytics, Meta pixel, etc.), located in the United States

How long we keep your personal data

We will process and keep your personal data for a maximum period of two (2) years from the time since we last had an interaction with each other. The collected data will be transformed into aggregated data (thus anonymised) after such 2-year period at the latest. Such aggregated, anonymous data cannot directly identify you as a person and may be processed by us for an indefinite period of time. For the sake of clarity, this aggregated data is not personal data.

You may at any time opt-out from receiving further emails from us concerning Mölnlycke’s products or services by objecting to receiving further messages, which you can do by contacting us through privacy@molnlycke.com or the contact details you find here.

In addition to the processing purposes listed above, we may be required to process personal data for additional purposes. We may also be required to keep certain personal data for longer periods of time e.g., to be able to establish, exercise, and/or defend against legal claims. We will generally process such personal data for ten (10) years from creation or for the time necessary to fulfil the purpose in the relevant case. This processing of your personal data is based on our legitimate interest of establishing and/or defending legal claims. Additionally, we may be required to process personal data to comply with legal obligations e.g., relating to bookkeeping or tax legislation, or if we are ordered to process personal data (including disclosing it) by a competent court or government authority.

We have taken measures to ensure that your personal data is handled in a safe way. For example, access to systems where personal data is stored is limited to our employees and service providers who require it in the course of their duties. Such parties are informed of the importance of maintaining security and confidentiality in relation to the personal data we process. We maintain appropriate safeguards and security standards to protect your personal data against unauthorised access, disclosure or misuse. We also monitor our systems to discover vulnerabilities.

We strive to always process your personal data within the EU or EEA. However, if a third country transfer is described in the tables under section 3 above, we will transfer your personal data, to our Mölnlycke affiliates or to service providers who, either themselves or by their sub-contractors, are located or have business activities in a country outside the EU or EEA. In such cases, we are responsible for ensuring that the transfer is made in accordance with applicable data protection legislation before it occurs, e.g., by ensuring that the country in which the recipient is located ensures an adequate level of data protection according to the European Commission, or by ensuring appropriate safeguards based on the use of standard contractual clauses that the European Commission has adopted and other appropriate measures to safeguard your rights and freedoms.

You may access a list of the countries that the European Commission has decided provide an adequate level of data protection here.

You may access the European Commission’s standard contractual clauses here.