Privacy Policy

1. What Data We Collect

Personal Data

While using our website, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you. Personally identifiable information may include, but is not limited to:

• Email address
• First name and last name
• Phone number

Usage Data

Usage Data is collected automatically when using the website.

Usage Data may include information such as your device's Internet Protocol address (e.g., IP address), browser type, browser version, the pages of our website that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

When you access the website by or through a mobile device, we may collect certain information automatically, including, but not limited to, the type of mobile device you use, your mobile device unique ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browser you use, unique device identifiers and other diagnostic data.

We may also collect information that your browser sends whenever you visit our website or when you access the website by or through a mobile device.

Tracking Technologies and Cookies

We use Cookies and similar tracking technologies to track the activity on our website and store certain information. Tracking technologies used are beacons, tags, and scripts to collect and track information and to improve and analyze our website. The technologies we use may include:

• Cookies or Browser Cookies. A cookie is a small file placed on your Device. You can instruct your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if you do not accept Cookies, you may not be able to use some parts of our website. Unless you have adjusted your browser setting so that it will refuse Cookies, our website may use Cookies.
• Web Beacons. Certain sections of our website and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit Innovative Molecules, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of a certain section and verifying system and server integrity).

Cookies can be “Persistent” or “Session” Cookies. Persistent Cookies remain on your personal computer or mobile device when you go offline, while Session Cookies are deleted as soon as you close your web browser.

Cookies We Use

2. How We Use Personal Data

We process personal data for the following purposes:

• Service provision and account management: to provide and maintain our services and fulfill contractual obligations.
• Communication: to contact you regarding updates, security information, or services you request; and, where legally permitted, to send you information about our products, services, and events.
• Requests management: to handle inquiries and requests you submit.
• Business operations: to conduct audits, data analysis, and improve our services, products, and marketing activities.
• Corporate transactions: in the context of mergers, acquisitions, or the sale of assets, where personal data may be transferred as part of the transaction.
• Legal compliance and consent: where required to meet legal obligations or where you have given consent.

3. How and When We Disclose Personal Data

We may share personal data with:

• Service providers that process data on our behalf (e.g., IT, analytics, communication).
• Affiliates and business partners, under confidentiality obligations.
• Transaction partners in the event of a merger, acquisition, or restructuring.
• Public or legal authorities, where required by law.
• Other parties where you have given your explicit consent.

We do not sell or otherwise commercially exploit personal data.

If data is transferred outside the European Economic Area, we ensure adequate protection through EU Standard Contractual Clauses or equivalent safeguards.

4. How We Retain Your Data

We retain personal data only for as long as necessary to fulfil the purposes described in this Privacy Policy, in accordance with our records retention policies, and as required by applicable law.

When determining retention periods, we consider:

• the duration of our relationship with you;
• legal and regulatory obligations; and
• the necessity of retention for business purposes, such as contract enforcement, dispute resolution, ongoing litigation, or regulatory investigations.

Once retention is no longer required, we securely delete or anonymize the data.

5. How We Secure Your Data

We implement appropriate technical and organizational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access.

While we strive to safeguard all personal information, no system or transmission over the internet can be guaranteed to be 100% secure. We therefore cannot ensure or warrant absolute security. We encourage you to take precautions when transmitting personal information online and to keep your access credentials confidential and stored securely.

6. Children’s Data

Our website does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from anyone under the age of 13 without verification of parental consent, we take steps to remove that information from our servers.

If we need to rely on consent as a legal basis for processing your information and your country requires consent from a parent, we may require your parent's consent before we collect and use that information.

7. Third-Party Websites and Services

Our services may contain links to websites, applications, or services operated by third parties. We do not control these third-party services and are not responsible for their content, security, or privacy practices.

This Privacy Policy does not apply to information you provide to or that is collected by third-party services. We encourage you to review the privacy policies of any such services before sharing personal data with them.

8. Your Rights

1. Access: You may request confirmation as to whether we process your personal data and obtain a copy of such data, including information about the purposes, categories, recipients, and storage period.
2. Rectification: You may request the correction of inaccurate data and the completion of incomplete data.
3. Erasure (“Right to be Forgotten”): You may request the deletion of your personal data if it is no longer needed, if you have withdrawn consent, objected to processing, or if processing is unlawful. Exceptions may apply where processing is required by law or to establish, exercise, or defend legal claims.
4. Restriction: You may request that we restrict processing in certain cases, for example if you contest the accuracy of your data or object to processing. During the restriction, your data will generally only be stored and processed with your consent or for legal purposes.
5. Objection: Where processing is based on our legitimate interests (Art. 6(1)(f) GDPR), you may object at any time on grounds relating to your particular situation. We will then stop processing unless we demonstrate compelling legitimate grounds that override your interests or for the establishment, exercise, or defense of legal claims.
6. Withdrawal of Consent: If processing is based on your consent, you may withdraw this consent at any time. This will not affect the lawfulness of processing carried out before the withdrawal.
7. Data Portability: Where applicable, you may receive your personal data in a structured, commonly used, and machine-readable format and have it transmitted to another controller.
8. Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority, particularly in your place of residence, workplace, or where an alleged infringement has occurred.

To exercise these rights, please contact us or our Data Protection Officer.

9. Contact Requests and Communications

If you contact us by e-mail, we process your inquiry, including any personal data you provide (e.g., name, contact details, and the content of your request), solely for the purpose of handling and responding to your inquiry. We will not share this data with third parties without your consent.

These data are processed on the basis of Art. 6(1)(b) GDPR if your inquiry is related to the fulfillment of a contract or is required for the performance of pre-contractual measures. In all other cases, the data are processed on the basis of our legitimate interest in the effective handling of inquiries submitted to us (Art. 6(1)(f) GDPR) or on the basis of your consent (Art. 6(1)(a) GDPR) if it has been obtained; the consent can be revoked at any time.

We will retain your data only as long as necessary to fulfill the purpose of your request, unless you ask us to delete it earlier, revoke your consent, or a legal retention obligation requires longer storage.

10. Data Protection Officer

For any questions or to exercise your rights, please contact our Data Protection Officer:

The data protection authority responsible for our company is:

11. Amendments and Modifications

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. The updated version will be published on our website with the “Effective Date” indicated at the top.

We encourage you to review this Privacy Policy periodically. Your continued use of our services after the posting of an updated version constitutes your acceptance of the changes.