Categories and Purposes of Personal Data Processed
Siemens Healthineers USA processes the categories of personal data and for the purposes described in the Privacy Policy from which this Data Privacy Framework Privacy Notice is linked. In general, this includes processing personal data as a data controller to provide online services, to communicate with individuals for marketing or other consent-based purposes, to manage our business relationships with customers, clients, business partners, employees and suppliers, and to comply with applicable laws. Siemens Healthineers USA also processes personal data with and for institutions associated with clinical research studies and other similar arrangements in compliance with applicable laws, and as a processor when providing contracted services in accordance with documented instructions from our customers.
Recipients and Transfers of Personal Data
Siemens Healthineers USA uses third party service providers to host or support our websites, applications, internal operations, or to provide other necessary services and maintains contracts with these third parties regarding their access, use, disclosure and required protections of personal data in compliance with our Data Privacy Framework obligations, and we remain liable if they fail to meet those obligations to the extent Siemens Healthineers USA is responsible for the event giving rise to the damage.
Siemens Healthineers USA may share your personal data with the following categories of recipients, if and to the extent necessary:
- Siemens Healthineers companies to support us in fulfilling our contractual or legal obligations or internal functions such as customer services;
- other recipients such as business partners or service providers as part of their provision of services to Siemens Healthineers USA (e.g., hosting or IT maintenance and support services); and
- third parties in connection with complying with legal obligations or establishing, exercising, or defending rights or claims, or in relation to corporate transactions (e.g., for court and arbitration proceedings, to law enforcement authorities and regulators, attorneys and consultants), as well as responding to lawful requests by public authorities, including to meet national security or law enforcement requirements.
Your Rights
Under the Data Privacy Framework, you have the right to request access, correction, amendment, or deletion of your personal data processed by Siemens Healthineers USA as a data controller. You may notify us regarding any such request via the Siemens Healthineers “Let Us Know” Data Privacy online portal available here.
DPF-related Inquiries and Complaints
In compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, Siemens Healthineers USA commits to resolve DPF Principles-related complaints about our collection and use of your personal information. EU, UK, and Swiss individuals with inquiries or complaints regarding our handling of your personal data received by Siemens Healthineers USA in reliance on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, should first contact us via the Siemens Healthineers “Let Us Know” Data Privacy online portal available here.
EU, UK and Swiss residents may also contact the Siemens Healthineers global Data Privacy Organization based in Germany at dataprivacy.func@siemens-healthineers.com regarding a DPF-related complaint or issue.
Siemens Healthineers USA will use best efforts to address and settle any requests or complaints brought to its attention. However, if the above process is not successful in resolving your DPF-related complaint, Siemens Healthineers USA has further committed to cooperate and comply with the advice of the panel established by the EU data protection authorities (DPAs), the UK Information Commissioner’s Office (ICO) and the Gibraltar Regulatory Authority (GRA), and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received by Siemens Healthineers USA in reliance on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF. As such, you may also contact the relevant EU, UK or Swiss supervisory authority with requests or complaints not resolved directly with Siemens Healthineers.
If your DPF-related complaint cannot be resolved through any of the above mechanisms, under certain conditions you may have the right to invoke binding arbitration for residual claims not resolved by the other DPF redress mechanisms. For additional information, see: https://www.dataprivacyframework.gov/framework-article/ANNEX-I-introduction.
U.S. Federal Trade Commission Enforcement
The United States Federal Trade Commission has jurisdiction over Siemens Healthineers USA’s compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF.