top of page

Privacy Policy

1. INTRODUCTION

GQT Med Global ("we," "us," or "our") is committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, submit enquiries, request quotations, or engage with our services.

This policy complies with the General Data Protection Regulation (GDPR) (EU) 2016/679 and applicable data protection laws in the European Union, Middle East and North Africa (MENA), and Central and Eastern Europe (CEE).

Data Controller:GQT Med Global

Email: dpo@gqt-sourcing.com

2. INFORMATION WE COLLECT

2.1 Personal Data You Provide

We collect personal data that you voluntarily provide when you:

  • Submit contact forms or request for quotation (RFQ) forms

  • Register for newsletters or updates

  • Communicate with us via email, phone, or other channels

  • Enter into contracts or business agreements with us

 

Types of personal data collected:

  • Contact information (name, email address, phone number, company name, job title)

  • Technical information (product specifications, volume requirements, delivery details)

  • Business information (company registration details, VAT/tax identification numbers)

  • Communication records (emails, meeting notes, technical discussions)

 

2.2 Information Automatically Collected

When you visit our website, we may automatically collect:

  • Technical data (IP address, browser type, operating system, device information)

  • Usage data (pages visited, time spent, click patterns, referral sources)

  • Cookies and similar tracking technologies (see Cookie Policy below)

3. HOW WE USE YOUR INFORMATION

3.1 Purposes of Processing

We process your personal data for the following purposes:

 

Handling Enquiries and RFQs:
To respond to your requests for quotations, provide technical information, and facilitate business communications.

 

Contract Performance:
To execute contracts, process orders, arrange logistics, provide documentation, and deliver pharmaceutical raw materials and services.

 

Compliance and Legal Obligations:
To comply with regulatory requirements, trade compliance, export controls, anti-money laundering (AML) regulations, and other legal obligations.

 

Security and Fraud Prevention:
To protect our systems, prevent fraud, ensure data security, and maintain business continuity.

 

Business Operations:
To manage supplier relationships, quality assurance, customer relationship management (CRM), and internal record-keeping.

 

Marketing and Communications:
To send newsletters, product updates, industry insights, and promotional materials (with your consent where required).

 

3.2 Legal Bases for Processing

We process your personal data based on:

  • Consent: When you provide explicit consent (e.g., newsletter subscriptions, marketing communications)

  • Contract: When processing is necessary to perform a contract with you or take pre-contractual steps

  • Legitimate Interests: When processing is necessary for our legitimate business interests (e.g., customer relationship management, fraud prevention, business development)

  • Legal Obligation: When processing is required to comply with applicable laws and regulations

4. DATA SHARING AND TRANSFERS

4.1 Third-Party Recipients

We may share your personal data with:

  • Suppliers and manufacturers: To fulfill RFQs and execute contracts

  • Logistics partners: To arrange shipping, customs clearance, and delivery

  • Analytical laboratories: To coordinate testing and quality assurance

  • Professional advisors: Legal, accounting, and regulatory consultants

  • IT service providers: Cloud hosting, CRM systems, email services, and cybersecurity

  • Regulatory authorities: When required by law or regulatory compliance

 

4.2 International Transfers

We may transfer personal data outside the European Economic Area (EEA) to suppliers, partners, and service providers in countries including India, China, Turkey, Israel, and the United States.

 

Safeguards for international transfers:

  • Standard Contractual Clauses (SCCs): We use EU-approved Standard Contractual Clauses to ensure adequate protection

  • Adequacy Decisions: Transfers to countries with adequacy decisions from the European Commission

  • Binding Corporate Rules: Where applicable, we rely on binding corporate rules of multinational partners

 

We ensure that all international data transfers comply with GDPR Article 44-50 and provide appropriate safeguards.

5. DATA RETENTION

We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce agreements.

 

Retention periods:

  • RFQ and enquiry data: Retained for up to 3 years from last contact

  • Contract and transaction data: Retained for 7 years to comply with tax, accounting, and regulatory requirements

  • Marketing communications: Retained until you withdraw consent or unsubscribe

  • Website analytics: Retained for up to 26 months

 

After the retention period expires, personal data will be securely deleted or anonymized.

6. YOUR RIGHTS UNDER GDPR

You have the following rights regarding your personal data:

 

Right to Access:
You may request a copy of the personal data we hold about you.

 

Right to Rectification:
You may request correction of inaccurate or incomplete personal data.

 

Right to Erasure ("Right to be Forgotten"):
You may request deletion of your personal data under certain circumstances.

 

Right to Restriction of Processing:
You may request that we limit the processing of your personal data in specific situations.

 

Right to Data Portability:
You may request to receive your personal data in a structured, commonly used, and machine-readable format.

 

Right to Object:
You may object to processing based on legitimate interests or for direct marketing purposes.

 

Right to Withdraw Consent:
Where processing is based on consent, you may withdraw consent at any time.

 

Right to Lodge a Complaint:
You have the right to lodge a complaint with your local data protection authority.

 

To exercise your rights, contact our Data Protection Officer (DPO):
Email: dpo@gqt-sourcing.com
Subject: Data Subject Rights Request

 

We will respond to your request within one month in accordance with GDPR Article 12.

7. DATA SECURITY

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction.

 

Security measures include:

  • Encryption of data in transit (SSL/TLS) and at rest

  • Access controls and authentication mechanisms

  • Regular security audits and vulnerability assessments

  • Employee training on data protection and confidentiality

  • Incident response and breach notification procedures

 

Despite our efforts, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to protecting your personal data to the best of our ability.

8. COOKIE POLICY

8.1 What Are Cookies?

Cookies are small text files placed on your device when you visit our website. They help us improve website functionality, analyze usage, and provide a better user experience.

 

8.2 Types of Cookies We Use

Strictly Necessary Cookies:
Essential for website operation, enabling core functionality such as security, network management, and accessibility. These cookies cannot be disabled.

 

Functional Cookies:
Enable enhanced functionality and personalization, such as remembering your preferences, language settings, and region.

 

Analytics Cookies:
Help us understand how visitors interact with our website by collecting and reporting information anonymously. We use analytics to improve website performance and user experience.

 

Marketing Cookies:
Track visitors across websites to display relevant advertisements and measure campaign effectiveness. These cookies are set by third-party advertising partners.

 

8.3 Cookie Consent

When you first visit our website, you will see a cookie consent banner allowing you to accept or reject non-essential cookies. You can manage your cookie preferences at any time through the cookie settings link in the footer.

 

Granular Cookie Choices:

  • Accept all cookies

  • Reject non-essential cookies

  • Customize cookie preferences by category

 

Revoking Consent:
You may revoke your cookie consent at any time by adjusting your cookie settings or clearing cookies from your browser.

 

8.4 Third-Party Cookies

We may use third-party services that set cookies, including:

  • Google Analytics (website analytics)

  • LinkedIn Insight Tag (marketing and analytics)

  • Other marketing and advertising platforms

 

These third parties have their own privacy policies governing their use of cookies.

 

8.5 Managing Cookies

You can control and delete cookies through your browser settings. Please note that disabling cookies may affect website functionality.

 

Browser cookie settings:

9. ACCESSIBILITY STATEMENT

9.1 Our Commitment

GQT Med Global is committed to ensuring digital accessibility for all users, including those with disabilities. We strive to meet Web Content Accessibility Guidelines (WCAG) 2.1 Level AA standards.

 

9.2 Accessibility Features

Our website includes:

  • Semantic HTML structure for screen reader compatibility

  • Keyboard navigation support

  • Alternative text for images

  • Sufficient color contrast ratios

  • Resizable text without loss of functionality

  • Clear and consistent navigation

 

9.3 Ongoing Improvements

We continuously work to improve the accessibility of our website. If you encounter accessibility barriers or have suggestions for improvement, please contact us:

 

Accessibility Contact:
Email: accessibility@gqt-sourcing.com
Subject: Website Accessibility

 

We will make reasonable efforts to address your concerns and provide alternative access to information where possible.

 

9.4 Third-Party Content

Some content on our website may be provided by third parties and may not fully meet accessibility standards. We are working with our partners to improve accessibility across all content.

10. CHILDREN'S PRIVACY

Our website and services are intended for business-to-business (B2B) use and are not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected personal data from a child, we will take steps to delete such information.

11. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. The "Last Updated" date at the top of this policy indicates when it was last revised.

 

We encourage you to review this Privacy Policy periodically. Continued use of our website and services after changes constitutes acceptance of the updated policy.

12. CONTACT US

If you have questions, concerns, or requests regarding this Privacy Policy or our data protection practices, please contact:

 

Data Protection Officer (DPO):
GQT Med Global
Email: dpo@gqt-sourcing.com

bottom of page