MorphoSys AG Privacy Principles
MorphoSys AG ("MorphoSys" or "we") takes the protection of your personal data very seriously. This Privacy Statement discloses the items of information that are collected, processed and utilized when using our website and for what purpose.
1 Protection of Personal Data
MorphoSys complies with the legal provisions for the protection of personal data. Personal data are data that serve to identify a person, such as their name, date of birth, email address, postal address and telephone number (Article 4 No. 1 GDPR). Personal data are always processed pursuant to the current German and European statutory regulations.
2 Company Responsible for Data Processing
The company responsible for data processing pursuant to Article 4 (7) of the EU General Data Protection Regulation (GDPR) is
Phone: +49 89 899 27-0
Fax: +49 89 899 27-222
3 How to Contact the Data Protection Officer
Our Data Protection Officer may be contacted at the email address firstname.lastname@example.org or addressed to "Data Protection Officer" at our postal address.
4 Your Rights
You have the following rights with respect to the personal data concerning you:
4.1 General Rights
You have a right to information, correction, deletion, limitation of data processing, objection to data processing and data portability. If the processing we perform is based on your consent, you have the right to revoke this consent with effect in the future.
4.2 Right to Process Data for Legitimate Interests
Under Article 21 (1) of the GDPR, you have the right to object to the processing of your personal data at any time for reasons arising out of your particular situation, occurring as a result of Article 6 (1e) of the GDPR (Data Processing in the Public Interest) or Articles 6 (1f) GDPR (Data Processing for the Protection of a Legitimate Interest). This also applies to profiling supported by this provision. If you object, we will no longer process your personal information unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purpose of enforcing, pursuing or defending legal claims.
4.3 Rights in Relation to Direct Marketing
If we process your personal data for direct marketing, you have the right to object at any time under Article 21 (2) GDPR to the processing of personal data concerning you for the purpose of such marketing. This also applies to profiling insofar as it is connected with such direct marketing.
If you object to processing for the purpose of direct marketing, we will no longer process your personal data for these purposes.
4.4 Right to File a Complaint With at a Supervisory Authority
You also have the right to complain to the competent data protection supervisory authority about our processing of your personal data.
5 Collection of Personal Data
In principle, you can visit our website without revealing your identity and use the information and Internet services provided without your personal registration.
We collect only the personal data that your browser transmits to our server. If you wish to view our website, we collect the following information that is technically necessary for us to display our website and to ensure its stability and safety. The legal basis for collecting this data is Article 6 (1f) GDPR:
IP address; date and time of the request; content request (concrete page); access status/HTTP status code; amount of data transferred; site requesting; browser; operating system and its interface; language and version of the browser software.
However, for certain services, such as ordering documents or subscribing to press releases, we ask for your name, address and/or other personal information as appropriate. If we use your personal information for a purpose that requires your consent, we will always request your consent. If you do not agree with this use, we ask that you understand that you may not be able to use the respective service. The legal basis for data processing is always Article 6 (1a) GDPR.
6 Contact via Email or Contact Form
When you contact us through email or a contact form, the information you provide (your email address and, where necessary, your name and telephone number) will be stored by us to answer your questions. Insofar as we use our contact form to request entries that are not required for contacting us, we always mark these as optional. This information serves to substantiate and improve the handling of your request. A statement of this information is expressly provided on a voluntary basis and with your consent under Article 6 (1a) GDPR. If this concerns information on channels of communication (such as your email address and telephone number), you also agree that we may contact you via this communication channel to answer your request. You may naturally revoke this consent for the future at any time.
We delete the data that arises in this context after its storage is no longer required and limit the processing if this data when statutory retention requirements exist.
7 Use of Personal Data
We use the personal data provided by you only to provide you with the information and services you require and for other purposes for which you have given your consent or which legally require such use (for example, due to a court or administrative order).
8 Job Applications
You can apply to our company for employment electronically, especially via email or web forms. Naturally, we will only use your information to process your application and will not pass it on to third parties. Please note that unencrypted emails are not transmitted with access protection.
You can also apply to our company via our online application portal. Your online application will be forwarded via an encrypted connection directly to the HR department and treated with absolute confidentiality. Naturally, we will only use your information to process your application and will not pass it on to third parties. If you have applied for a specific position that has already been filled or we are considering you for a different position or believe you are more suitable for a different position, we would like to be able to forward your application within our company. Please let us know if you do not agree to the forwarding of your application.
Your personal data will be deleted immediately after completing the application process or after a maximum period of 6 months unless you have explicitly given us your consent to store your data for a longer period or have concluded a contract with us. The legal basis is Article 6 (1 a, b and f) GDPR and Section 26 of the Federal Data Protection Act (Bundesdatenschutzgesetzes – BDSG).
9 Job Newsletter
With your consent under Article 6 (1a) GDPR, you may subscribe to our Job Newsletter, which will inform you of our current vacancies.
The only information required to receive the Job Newsletter is your email address. After your confirmation, we will save your email address for the purpose of sending you the Job Newsletter. The legal basis is Article 6 (1a) GDPR.
You may revoke your consent for delivery of the Job Newsletter at any time and unsubscribe from the newsletter. You may register your cancellation by clicking on the link provided in each Job Newsletter email.
10 Non-Disclosure and Dissemination of Personal Data
MorphoSys will not disclose your information to third parties without your consent, except as required by a court or administrative order. Personal data may also be disclosed to MorphoSys external service providers who act on behalf of MorphoSys in order to process the personal data in accordance with their intended purpose, such as providing services, evaluating the usability of our website, processing data or providing technical support. These service providers are contractually obliged vis-à-vis MorphoSys under Article 28 GDPR to use personal data for the agreed purpose only and not to pass on your personal data to other parties without permission and to transfer your personal data with our permission or if required by law and only to the extent permitted by law.
11 Storage of Personal Data
MorphoSys complies with the principles of data avoidance and data minimization. We store personal data only for the period necessary the respective purposes and in accordance with statutory regulations.
12 Security of Personal Data
MorphoSys uses a variety of security technologies and standardized protection mechanisms to ensure the security and confidentiality of the personal information it gathers. For example, we store personal data on computer servers that are located in controlled facilities in Germany and allow only limited access. MorphoSys takes all commercially reasonable measures to protect your personal information from loss, misuse, unauthorized access, disclosure, alteration and destruction but cannot guarantee this due to the remaining general security risks of the Internet.
If you wish to send us personal data electronically by entering it on our website, your data will be transmitted, stored and secured in encrypted form via the Internet to our web server using a state-of-the-art secure connection (SSL).
If you would like to correspond with us by email, you are aware that emails are only conditionally secure and that the confidentiality can only be ensured by using the appropriate encryption programs. Please note that the transmission of data via email is generally not encrypted. By sending emails to us, you confirm that you are aware of these risks.
Data security for the transmission of data on the Internet cannot be fully guaranteed given the current state of technology. Other users may be technically able to intervene illegally in network security and to control the message traffic. Please consider this when contacting us.
Cookies are stored on your computer when you use our website. Cookies are small text files stored on your hard drive and assigned to the browser you are using through which specific information is provided to the body that sets the cookie. Cookies cannot run programs or transmit viruses to your computer. They serve to make Internet offers generally more user-friendly and more effective.
This website uses the following types of cookies, the scope and operation of which are explained below:
13.1 Temporary Cookies
Temporary cookies are automatically deleted when you close the browser. These specifically include session cookies, which store a so-called session ID with which various requests from your browser can be assigned to the common session. This process enables your computer to be recognized when you return to our website. Session cookies are deleted when you log out or close the browser.
13.2 Permanent Cookies
Permanent cookies are automatically deleted after a specified period that may differ depending on the cookie. You can delete the cookies in the security settings of your browser at any time.
13.3 Flash Cookies
Flash cookies used are not detected by your browser but by your Flash plug-in. Furthermore, we use HTML5 storage objects, which are stored on your device. These objects store the required data regardless of your browser and do not have an automatic expiration date. If you do not want Flash cookies to be processed, you must install a corresponding add-on such as "Better Privacy" for Mozilla Firefox (https://addons.mozilla.org/en/firefox/addon/betterprivacy/) or the Adobe Flash killer cookie for Google Chrome. You can prevent the use of HTML5 storage objects by using the private mode in your browser. In addition, we recommend that you delete your cookies and browser history manually on a regular basis.
13.4 Prevention of Cookies
You can configure your browser settings as you wish and, for example, decline the acceptance of third-party cookies or all cookies. Please be aware that in doing so you may not be able to use all functions of this website.