PRIVACY AND DATA PROTECTION
IN 2019 GRIFOLS APPROVED ITS global PRIVACY AND DATA PROTECTION POLICY

While offering endless opportunities, technological advances pose a challenge for the privacy and protection of personal data. The company processes the personal data of numerous stakeholders as an essential part of its scientific research, talent management and interactions with donors and patients, among others. Transparency with regard to processing of personal data is fundamental to strengthen trusting relationships with all our stakeholders. For Grifols, guaranteeing the privacy and protection of our stakeholders’ personal data, as well as preventing data breaches and IT system failures, are of utmost importance.

Grifols complies with applicable data protection laws and only works with suppliers that offer sufficient guarantees of data protection integrity. Personal data and medical information collected at plasma donation centers and during clinical trials are protected to maintain their confidentiality. The company has rigorous procedures, tools, the latest technology and insurance policies in place to protect the organization’s assets and users in a cyber-environment.

Since 2019, Grifols has a global privacy and data protection policy, which is mandatory for all employees. This policy establishes a framework for processing of personal data in the diverse regions where Grifols operates and outlines the relevant principles and their implementation in regards to personal data protection and security.