To make an EU General Data Protection Regulation Request, please fill out this form.
I. Purpose
This website (excluding linked websites) is controlled by Charles River Laboratories International, Inc. and its subsidiaries and affiliates (collectively, “Charles River Laboratories,” “we,” “our,” or “us”).
We understand that various laws and regulations around the world govern personal data protection, and we respect the fact that protecting your privacy is important to you. For those reasons, we created this Website Privacy Policy. Please review this policy to learn about how and why we collect, use, share, and protect information.
This Website Privacy Policy applies only to personal data collected online from our websites.
Your use of our website or related services is subject to the then-current version of this Website Privacy Policy, so we urge you to read this document in full from time to time, and contact us using the contact information below if you have any questions.
Charles River Laboratories provides a variety of pre-clinical and clinical laboratory services for the pharmaceutical, medical device and biotechnology industries. Our corporate headquarters are located in Wilmington, Massachusetts, USA.
We collect your personal data (such as your professional information, contact information, payment information, sales information, and tradeshow related information) when you choose to submit it to us on our website, and we use it for those purposes which you approved. We may combine this data with other information to produce anonymous, aggregated statistical information to help us improve our products and services.
We automatically collect certain types of information whenever you interact with us on our websites and in some e-mails that we send to you. Automatic technologies we use include, for example, web server logs, Internet Protocol (IP) addresses, cookies, web beacons and third-party tools.
Web Server Logs: A web server log is a log file of activities performed that is created and maintained by a server.
IP Address: An IP address is a number assigned to your computer whenever you access the Internet that allows computers and servers to recognize and communicate with each other.
Cookies: A cookie is a piece of information that is placed on your computer when you access certain websites. The cookie uniquely identifies your browser to the server. Cookies allow us to store information on the server to help customize your web experience and to conduct website analysis and performance reviews. We use session and persistent cookies. Session cookies exist only during one session and disappear when you close your browser or turn off your computer. Persistent cookies remain on your computer or device after you close your browser or turn off your computer.
Web Beacons: On certain web pages or e-mails, we may utilize a common Internet technology called a "web beacon" (also known as an "action tag" or "clear GIF technology"). Web beacons help us analyze the effectiveness of websites by measuring, for example, the number of visitors to a site or how many visitors clicked on key elements of a site.
Third-Party Tools: Third party tools (such as Google Analytics) use cookies to collect information about the use of websites, pages visited, frequency of visits, and how individuals found the site.
We may use any personal data you choose to give us to comply with your requests, to communicate with you, and generally to improve our products, services, and website.
If you choose to buy our products or use our services, we may use the personal data you submit to fulfil your requests. We may use personal data for customer relationship or account management, to help with product distribution, sales, customer service, and for customer transaction management.
You may also choose to receive information for marketing purposes or events. In such cases, we will use personal data for direct marketing communications, marketing or sales analytics, lead generation, business development, event management, market research and development, education and training (including technical training), and continuing education or accreditation.
We will use personal data submitted to us, in conjunction with such automatically collected information (as described under “Automatically Collected Information” below), to improve our website operation by monitoring user patterns and preferences.
We also use depersonalized, aggregated information collected from our websites to help us understand trends and customer needs, and we may use that analysis of aggregated data internally or share it with our affiliates.
We use automatically collected information as described below.
Web Server Logs: We collect data in our web server logs for monitoring system performance and making sizing decisions, for information security purposes, and for troubleshooting purposes. The data may consist of IP addresses, URLs requested, and other typical web server log elements.
IP Addresses: We collect IP addresses to determine which country your access is coming from to display content appropriate for your locale, to conduct system administration, and to report aggregated information to affiliates, business partners, service providers, and/or vendors who conduct website analysis and performance reviews.
Cookies: We make use of both session and persistent cookies for numerous purposes including: enabling basic functions and access to secured sections of the website, remembering your preferences (such as a preferred language), recording statistical traffic between our various web properties, and for personalization and marketing purposes. Some portions of our websites may not work properly if you refuse cookies.
Web Beacons: We use web beacons to help analyze the effectiveness of websites by measuring, for example, the number of visitors to a site or how many visitors clicked on key elements of a site.
Third-Party Tools: We use third-party tools such as Google Analytics to collect information about the use of our website. The third-party tools gather statistical information about traffic between our various web properties and gather information for personalization and marketing purposes.
Cookies that are created may be kept up to 20 years from the time of creation. Market investigations, market research data, and surveys are kept for 10 years. Sales analysis data is kept for 7 years.
We use multiple databases to record and retrieve information sent to us through web forms (such as contact information, products and services requested, and billing/payment information). This information is kept for as long as needed to fulfill specific business purposes or purposes for which it was collected.
For all other data, a fixed retention period is not possible to determine. Instead we review data for retention based on the following: the purpose of the information; if the information could be reasonably gathered from another source; levels of risk, cost, and liability involved with keeping the information; if the information is still relevant for the original purpose; and the accuracy of the information.
In some cases, laws or regulations that apply to our business may require us to keep information longer than needed for a specific business purpose.
We take commercially reasonable steps to safeguard any information you provide to us from unauthorized access, loss, misuse, or alteration. To this effect, our server log files are stored in a secure location and can only be accessed by our authorized employees. Although we take commercially reasonable steps, no system can ever by completely secure or error-free. In addition, it is your responsibility to safeguard any user names, passwords, or information associated with your account.
On 25 May 2018, a European privacy law, the General Data Protection Regulation (GDPR), took effect. Under the GDPR, EU residents have important data privacy rights subject to various conditions and exceptions. In summary, these rights generally include:
The right to fair processing of information and transparency over how we use your personal data
The right to access to your personal data and to certain other supplementary information already addressed within this Website Privacy Policy
The right to require us to correct any mistakes in your information which we hold
The right to erasure of personal data concerning you in certain situations
The right to receive the personal data concerning you which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to a third party in certain situations
The right to object at any time to processing of your personal data for the purposes of direct marketing
The right to object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you
The right to object in certain other situations to our continued processing of your personal data
The right to otherwise restrict our processing of your personal data in certain circumstances
The right to lodge a complaint with a supervisory authority
If you are an EU resident and would like to exercise your rights provided under the GDPR, please refer to the contact information below and fill out this form.
Please understand that if you decide not to submit any personal data and/or object to the automatic collection of any person data (e.g., cookies), our website may not work correctly and/or we may be unable to provide you services or products.
If you opt-in for particular services or communications, such as an e-newsletter, you will be able to unsubscribe at any time by following the instructions included in each communication. If you decide to unsubscribe from a service or communication, we will work to remove your information promptly, although we may require additional information before we can process your request.
We share personal data about you with various outside companies, service providers, and/or vendors who help us further our business. The use of the data will include, but is not limited to, providing customer service; sending marketing communications about our products, services, and offers; and performing technological maintenance. Any organization that receives your information is also required to keep the information confidential.
We may disclose the data for the following purposes:
In connection with the sale, assignment or other transfer of the business of the site to which the data relates;
To assist us with services and information about our site;
To respond to requests of government or law enforcement agencies or where required or permitted by applicable laws, court orders, or government regulations; or
When needed for corporate audits or to investigate or respond to a complaint or security threat.
No Third-Party Direct Marketing Use: We will not sell or otherwise transfer personal data, you provide to us on our websites, to any third parties for their own direct marketing use unless we provide clear notice to you and obtain your explicit consent for your data to be shared in this manner.
Your personal data may be stored and processed in any country where we have facilities or service providers. By using our services or by providing consent to us, you agree to the transfer of information to countries outside of your country of residence, which may provide for different data protection rules than in your country. Please note that all Charles River Laboratories entities operate under Standard Contractual Clauses from our Group Data Processing Agreement and applicable measures of the GDPR provide protections and safeguards for cross-border transfers. We take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy.
Note to Users of Business or Professional Websites: We may use information you submit on our websites, including those websites intended specifically for our business and professional users, to fulfill your requests and to develop our business relationship with you and the entities you represent, if you have a business or professional relationship with us. We may also share such information with third parties acting on our behalf.
Our websites may contain links to third party websites that may offer useful information to our visitors. This Website Privacy Policy does not apply to third party sites, and we recommend communicating with such parties directly for information on their privacy policies.
Our websites are not intended or designed to attract children under the age of 18. If you are under the age of 18, you must not provide your personal data. We do not collect personal data from any person whom we actually know is a person under the age of 18.
If one of our websites has particular provisions relating to privacy that differ from those stated here, those provisions will be disclosed to you on the page on which your personal data is collected.
This policy may be amended from time to time. If we decide to change our Website Privacy Policy, we will post those changes on our website to help ensure that visitors to our websites are always aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it. We will use information in accordance with the privacy policy under which the information is collected.
If you have any questions about this Website Privacy Policy, you may contact us at:
Chief Information Security Officer
Charles River Laboratories
251 Ballardvale Street
Wilmington, MA 01887
Telephone: 781-222-6000
Fax: 978-988-5665
websiteprivacypolicy@crl.com
Corporate Legal Department
Charles River Laboratories
251 Ballardvale Street
Wilmington, MA 01887
Telephone: 781-222-6000
Fax: 978-988-5665
GDPR@crl.com
Data Protection Officer
Considerati DPO Services BV
Postbus 76949
1070 KE Amsterdam
Netherlands
Telephone number: +44 1875 618488
DPO@crl.com