demo demo

EN

CN
EN

Privacy

1.  Personal Data

Personal data refers to information that can be used alone or in combination with other information to identify an individual. Such data may be submitted to us by you when you use our website, products, or services, or obtained by us through recording how you interact with our website, products, or services, such as through technologies like cookies. The data we collect depends on the website you visit or the products and services you use and may include personal data such as your name, address, email address, phone number, etc. The purpose of collecting personal data is to communicate with you in order to provide relevant services or send important notifications.

2.  Privacy Policy

Bennu Biotherapeutics (Shanghai) Co., Ltd. and its global affiliates (hereinafter referred to as "Bennubio", "we", or "our") are deeply aware of the importance of personal data to our customers and users. Therefore, Bennu Biotherapeutics (Shanghai) Co., Ltd. attaches great importance to the protection of personal data of customers and users and has taken a series of measures to ensure that relevant business operations comply with applicable personal data protection requirements (such as GDPR).

2.1 In order to effectively implement the requirements of personal data protection, Bennu Biotherapeutics (Shanghai) Co., Ltd. has appointed a Data Protection Officer (DPO).

2.2 Bennu Biotherapeutics (Shanghai) Co., Ltd. adopts industry-recognized methods and practices for personal data protection. In business scenarios where GDPR applies, Bennu Biotherapeutics (Shanghai) Co., Ltd. uses Data Protection Impact Assessment (DPIA) methods to assess and reduce the personal data security risks in products and services.

2.2.1 Bennu Biotherapeutics (Shanghai) Co., Ltd. requires a comprehensive assessment of the personal data involved in products and services, and projects involving personal data must undergo DPIA;

2.2.2 Projects involving personal data must establish data lists and data flow diagrams;

2.2.3 Projects involving personal data must identify potential risks in the data processing process (including collection, use, storage, sharing, deletion, etc.) and take corresponding measures according to the risk level (including management, physical, and technical measures);

2.2.4 After completing the DPIA, the corresponding report must be generated and approved by the DPO.

2.3. Bennu Biotherapeutics (Shanghai) Co., Ltd. has implemented technical measures including intrusion detection, access control, encryption, data leakage prevention, anti-spam, endpoint security protection, vulnerability scanning, etc., and conducts penetration testing to verify the effectiveness of personal data protection measures.

2.4. Bennu Biotherapeutics (Shanghai) Co., Ltd. has established an emergency response mechanism for personal data breaches. Once a personal data breach occurs, Bennu Biotherapeutics (Shanghai) Co., Ltd. will immediately initiate an emergency response process, strive to minimize the potential losses caused by personal data breaches, and ensure that affected individuals are appropriately notified.

2.5. Bennu Biotherapeutics (Shanghai) Co., Ltd. has established a continuous employee privacy policy training mechanism to ensure that every employee involved in GDPR can accurately understand the legal principles of data protection based on their specific job responsibilities and strictly comply with the applicable regulations and procedures of the company.

2.6. To ensure compliance, Bennu Biotherapeutics (Shanghai) Co., Ltd. has implemented necessary personal data protection technology audits and process audits.

Personal data protection is not only a legal requirement but also a corporate social responsibility. Bennu Biotherapeutics (Shanghai) Co., Ltd. will continuously optimize products and services to ensure security and privacy, and reduce the personal data protection risks for customers and users.

3.  Policy Updates

Bennu Biotherapeutics (Shanghai) Co., Ltd. reserves the right to update or modify this policy from time to time. If this policy changes, we will publish the latest version of the policy here. If we make significant changes to the privacy policy, we may also send change notifications to you through different channels, such as posting notices on our website or sending separate notices to you.