EU Website Privacy Policy
Last updated: July 15, 2022
OUR COMMITMENT TO PRIVACY
Your privacy is important to Patient Square Capital, L.P. and its affiliates (together, “Patient Square,” “our,” “us,” “we” or “company”). To better protect your privacy, we are providing information to explain our personal data handling practices.
This EU and UK Website Privacy Policy describes how we gather and use personal data that we collect:
- relating to visitors of this website;
- in connection with our current and future investments in businesses which operate in, or have a connection to, the EU and/or UK; and
- through other data collection points where we refer to this EU and UK Website Privacy Policy.
This EU and UK Website Privacy Policy does not apply to any processing of personal data by or on behalf of Patient Square that is covered by a more specific privacy notice (including, without limitation, the Limited Partner Privacy Notice), and only applies to the extent EU and UK data protection laws (the “EU and UK Privacy Laws”), including Regulation (EU) 2016/679 (the “EU GDPR”), the UK equivalent of the EU GDPR (the “UK GDPR”) and the Data Protection Act 2018, apply to such processing. Please read this EU and UK Website Privacy Policy carefully.
For the purposes of applicable EU and UK Privacy Laws, Patient Square and its affiliated general partners and managing members will each be a controller of any personal data collected by us when you interact with us in the ways described above (e.g., when you visit our website, etc.). If you have any questions regarding our use of your personal data, or this EU and UK Website Privacy Policy, please contact [email protected].
We rely on various legal bases under the EU and UK Privacy Laws in order to process your personal data (e.g., name, email, IP address, financial data, etc.), including our legitimate interests, contractual necessity and as required by law. We use the personal data we collect to operate our business and provide you with the services and products we offer and perform essential business operations. We do not collect any special categories of personal data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
If we require your personal data due to a legal requirement or obligation or in order to perform a contract with you, we will make you aware of this at the time we collect your personal data, and the possible consequences of you failing to provide this personal data. Failure to provide this information means that we cannot provide our services or products to you. In this case, we may have to cancel a product or service you have with us but we will notify you if this is the case at the time.
Further information about the legal bases under which we process your personal data is included in the section headed “Why we use your personal data.”
You do not need to take any action as a result of this EU and UK Website Privacy Policy, but you do have certain rights as described below in the section headed “Your rights.”
HOW WE OBTAIN YOUR PERSONAL DATA
Information you provide to us
We collect your personal data when you decide to interact with us and we only collect the information necessary to carry out our business for the purposes set out below. You can provide us with personal data via online form, email, post, telephone and this website. We also collect information about you through automated technology when you access and use our website, such as cookies and similar technology – please see our Cookie Policy below for information on how we use such technologies.
Information provided by third parties or publicly available sources
We collect personal data from third parties, such as background information from a background check provider, personal data we viewed on social media (e.g., LinkedIn) or information obtained from publicly available lists of individuals subject to sanctions or trade restrictions.
If you represent or work for one of our portfolio companies, we may also collect your personal data (i.e., basic identifying and contact information, including your [name, title, work email address, work postal address, job title and/or work telephone number], as appropriate) from the entity that you work for where this is necessary to conduct business, or manage our relationship, with such third party.
We also process information in relation to companies that we are evaluating in connection with a potential investment in or purchase of such companies. In this situation, your personal data will be provided to us by third parties involved in that potential transaction (including the target of any investment).
WHY WE USE YOUR PERSONAL DATA
To the extent that you provide us with any personal data, or we otherwise collect your personal data (i.e., through or in connection with this website, our current and future portfolio companies and other data collection points) we may use such information for the following purposes:
| Purpose | Legal Basis |
|---|---|
| To conduct business with you or provide you with the services you have requested. | Contractual necessity; and/or our legitimate interest in operating our business and providing investment services. |
| To communicate with you. | Our legitimate interest in operating our business and providing investment services. |
| To keep a record of your relationship with us. | Our legitimate interest in operating our business and providing investment services; and/or legal requirement. |
| To verify your identity (including to conduct anti-money laundering checks and to enable you to access our offices). | Legal requirement; and/or our legitimate interest in operating our business and providing investment services securely. |
| To conduct due diligence activities in connection with an actual or prospective corporate transaction or investment with respect to which we are party to. | Our legitimate interest in operating our business and providing investment services; contractual necessity; and/or legal requirement. |
| To protect against, identify and prevent, fraud, money-laundering, cyber attacks, theft of our property and other unlawful activity. | Legal requirement; our legitimate interest in operating our business and providing investment services securely. |
| Litigation management and conducting internal audits and investigations. | Legal requirement; our legitimate interest in operating our business. |
| To obtain advice from our professional advisors, including financial advisers and lawyers. | Our legitimate interests in operating our business. |
| To administer and protect our business and this website. | Our legitimate interest in operating our business. |
| To make suggestions and recommendations to you, or to provide you with updates or other information, about our business and services that may be of interest to you. | Our legitimate interest in operating our business. |
Note that we may process your personal data on more than one legal basis depending on the specific purpose for which we are using your personal data.
No solely automated decision-making, including profiling, is used when processing your personal data.
DISCLOSURE AND TRANSFER OF PERSONAL DATA
Unfortunately, the transmission of information and data via the Internet is not completely secure. Although we do our best to protect your personal data, we cannot guarantee the security of any information or data transmitted to or through this website; any transmission of information or data by you to or through this website is at your sole risk.
Your personal data will be shared with and processed by our affiliates and certain service providers as necessary to fulfil the purposes set out in this policy, including legal and financial professional advisors, our auditors, consultants, administrators, placement agents, IT and data security providers and/or data hosting providers. We seek assurances that our standards for data security are met by anyone who enters into an agreement providing a service to, or for us. To the extent your personal data is transferred to countries outside of the UK or the European Economic Area, such transfers will only be made in accordance with the EU and UK Privacy Laws. For further information about the safeguards/derogations used, please contact [email protected].
We reserve the right to disclose your personal data as required by law, or when we believe that disclosure is necessary to protect our rights and/or comply with a judicial proceeding, court order, request from a regulator, national security, for the purposes of public importance or any other legal or investigatory process involving us. Should we, or any of our affiliated entities, be the subject of a takeover, divestment or acquisition, we may disclose your personal data to the new owner of the relevant business and their advisors on the basis of our legitimate interest.
SECURITY AND RETENTION OF PERSONAL DATA
We are committed to protecting the personal data you entrust to us. We adopt robust and appropriate data security technologies and policies, so the information we have about you is protected to the extent possible from unauthorized access, disclosure, improper use, and accidental loss. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality and required to keep your personal data secure.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so. We will keep your personal data only for as long as is reasonably necessary for the purposes set out in this EU and UK Website Privacy Policy, unless a longer retention period is required by law. We will not keep more information than we need for those purposes. For further information about how long we will keep your personal data, please contact [email protected].
CAPACITY
This website is only intended for individuals who are at least 18 years of age. We do not knowingly encourage or solicit visitors to this website who are under the age of 18 or knowingly collect personal data from anyone under the age of 18 without parental consent. If we learn we have collected or received personal data from an individual under the age of 18, we will delete that information.
COOKIES
Information regarding how you access this website (e.g., browser type, access times and Internet Protocol (IP) address) and your hardware and software is automatically collected through the use of cookies (a small text file placed on your hard drive) or other technologies or tools. This information is used to improve website performance and for our business purposes. Where cookies are not necessary for us to provide the products or services you have requested or for the functioning of this website, we will ask you to consent to their use. You may opt-in to accept cookies automatically by changing the settings on your browser. If you opt-out of certain cookies, you may not be able to access certain parts of this website.
On our website we use the cookies listed below:
| Cookie | Value | Domain | Type/Purpose |
| _ga* | GA1.1.1020836950.1651493308 | .patientsquarecapital.com | This cookie is a Google Analytics persistent cookie which is used to distinguish unique users |
| _gid | GA1.2.1545645047.1657561937 | .patientsquarecapital.com | This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visited in an anonymous form. |
| _gat_gtag_UA_179971678_2 | 1 | .patientsquarecapital.com | This cookie is used to throttle request rate. These are third party cookies that are placed on your device to allow us to use the Google Analytics service. These cookies are used to collect information about how visitors use our website. We use this information to compile reports and to help us improve the website |
| cookie_notice_accepted | TRUE | .patientsquarecapital.com | The functionality is: to read if cookies can be placed. The purpose is: Functional |
You may wish to visit www.aboutcookies.org, which contains comprehensive information about types of cookies, how they are used, and how you manage your cookie preferences.
You may refuse to accept cookies by altering the settings on your internet browser. For more information about how to do this, look at your browser ‘help’ section or visit www.allaboutcookies.org and www.youronlinechoices.eu. You can also opt out of using Google Analytics cookies here http://tools.google.com/dlpage/gaoptout. Please note that if you adjust your internet browser settings to refuse the setting of cookies, you may not be able to access or use fully certain parts or functionality of the website.
YOUR RIGHTS
You have the right to access the personal data we hold about you, and there are a number of ways you can control the way in which and what information we store and process about you. To exercise these rights and controls, please contact [email protected].
- Access: You have the right to ask for a copy of the personal data that we hold about you free of charge. However, we may charge a “reasonable fee,” if we think that your request is excessive, to help us cover the costs of locating the information you have requested.
- Correction: You may notify us of changes to your personal data if it is inaccurate or it needs to be updated.
- Deletion: If you think that we should not be holding or processing your personal data anymore, you may request that we delete it. Please note that this may not always be possible due to legal obligations.
- Restrictions on use: You may request that we stop processing your personal data (other than storing it), if: (i) you contest the accuracy of it (until the accuracy is verified); (ii) you believe the processing is against the law; (iii) you believe that we no longer need your data for the purposes for which it was collected, but you still need your data to establish or defend a legal claim; or (iv) you object to the processing, and we are verifying whether our legitimate grounds to process your personal data, override your own rights.
- Object: You have the right to object to processing, including: (i) for direct marketing; (ii) for research or statistical purposes; or (iii) where processing is based on legitimate interests.
- Portability: If you wish to transfer the personal data that we hold and process about you on the legal ground of contractual necessity to another organization (and certain conditions are satisfied), you may ask us to do so, and we will send it directly if we have the technical means.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
NOTIFICATION OF CHANGES
We reserve the right to amend this EU and UK Website Privacy Policy from time to time by updating this EU and UK Website Privacy Policy. If we decide to change our EU Website Privacy Policy, we will post those changes so our users are always aware of what information we collect, how we use it and under what circumstances, if any, we disclose it. If at any point we decide to collect personal data or use any collected information in a manner different from that stated at the time it was collected, we will notify applicable users. We will use information only in accordance with this EU and UK Website Privacy Policy under which the information was collected.
CONTACT US
If you have any questions or concerns about this EU and UK Website Privacy Policy, please contact [email protected].
COMPLAINTS
Should you wish to lodge a complaint with regards to how your personal data has been processed by us, please contact your local supervisory authority. In the UK, this is the Information Commissioner’s Office – https://ico.org.uk/global/contact-us. In the EU, this is the local supervisory authority in the EU Member State of your habitual residence, place of work, or place of the infringement, concern or complaint.