Data Protection

Data Protection at Calea UK 

Welcome to the Calea UK Limited (“Calea UK, Calea ” or “we”) (part of the Fresenius Kabi group of companies) data protection information page. The Site is owned by Calea UK Limited but operated and developed by a third-party provider IQ Media Limited on behalf of Calea UK Limited.

Calea specialises As a global healthcare company that specialises in lifesaving medicines and technologies for infusion, transfusion, and clinical nutrition, we need to collect, use and share your personal data to carry our work. We need to ensure this data is appropriately handled and protected. 

This site explains how your data is used in our processes organisation and how we incorporate data protection in our operations.. Furthermore, you will find information on how to execute your rights.

How We Take Care of Your Data

Our Data Protection Organisation

The Fresenius Kabi Group operates a central data protection competence center. This center has set up a data protection management framework in alignment with ISO 29100 (privacy framework for the protection of personally identifiable information). The competence center aims to implement a harmonised and consistent way of processing personal data across all Fresenius Kabi entities. It sets the policies, procedures and standards for data protection and provides tools and processes for the employees as well as training and awareness material. Furthermore, this center provides expertise on all data protection topics.

Our local data privacy advisors at the various Fresenius Kabi legal entities support local management with their compliance programs. They do this by executing risk and compliance assessments for the different data processing activities. With these assessments we aim to integrate ‘Privacy by design’ into the design of our processes and IT systems.

The monitoring of our data protection compliance efforts is overseen by our data protection officer.

Our Data Privacy Policy

The Fresenius Kabi Group has adopted Binding Corporate Rules on the protection of personal data. These rules have been approved by the European Data Protection Authorities and describe the principles for protecting personal data and determine how the Fresenius Kabi Group apply them when collecting and using personal data.

The Fresenius Binding Corporate Rules, associated security policies and procedures aim to create a global adequate and uniform level of data protection across our group. They set the rules for the internal data transfers between Fresenius Kabi companies and our internal service providers worldwide.

Our Security Measures

At Calea we know information security is important to our customers, patients, and business partners. We are committed to maintaining information security through responsible management, appropriate use, and protection of our and your data in accordance with legal and regulatory requirements and our agreements. Please find more about the Information Security at Fresenius Kabi.

Transparency on Our Data Processing Activities

We collect and use your personal data in various ways and for various purposes. We collaborate with other organsations to achieve our purposes. In the sections below you can find when and how we do that. If you have any further questions, requests, enquiries, or complaints relating your personal data you can contact us.

Situations in which we collect your data

If you visit our websites – click here

Last updated November 2024, replaced the July 2020 web user policy.

If you create an account or login as a healthcare professional on our website – click here

Last updated November 2024, replaced the 2020 healthcare professional policy

If you contact us by mail, phone or via an online form – click here

Last updated November 2024, replaced the July 2020 website visitor policy

If you interact with us as a business contact – click here

Last updated November 2024, replaced the 2020 version

If you interact with us as a speaker, advisor or otherwise in your capacity as a healthcare professional – click here

Last updated November 2024, replaced the 2020 healthcare professional policy

If you report or are mentioned in an adverse event or reaction associated with the use of medicinal products and safety of medical devices (vigilance) – click here

Last updated November 2024, replaced the 2020 vigilance policy

If you submit a data subject request – click here

Last updated November 2024, replaced the September 2020 data subject request policy

If you interact with us on social media – click here

Last updated November 2024, replaced the previous version

With Whom We Share Your Data

In all the situations as mentioned above, we collaborate with other organisations to achieve our purposes. Therefore, we may send your personal data in parts or as a whole to other organisations.

Apart from the specific recipients as mentioned above for the specific situations, such recipients are:

  • Other Fresenius kabi Group companies
  • Other Fresenius Group Companies
  • Service providers which process personal data on our behalf (e.g., for hosting or maintenance services) and have to follow our instructions on such processing
  • Authorities, courts and/or parties, or their delegated bodies, in a litigation in case we are required to do so to meet any applicable laws, regulations, legal processes or enforceable governmental requests
  • Professional advisors or auditors, such as tax advisors, financial auditors, lawyers, insurers, banks and other external professional advisors in the countries in which we operate
  • Other entities in the event of a change in ownership, a merger with, acquisition by, or sale of assets.

International data transfers

We may send your personal data in parts or as a whole to the above recipients in other countries. 

For some of these countries the European Commission or respective legislator or authority in your country has determined an adequate level of data protection to be in place that matches the level of data protection in your country.

The European Commission has done this for the following countries / international organisations in which Fresenius entities are located: Argentina, Canada, Japan, South-Korea, United Kingdom, New Zealand, Switzerland or Uruguay.

For the UK these are: all countries in the European Union, and the countries, territories and sectors covered by the European Commission’s adequacy decision including Andorra, Argentina, Faroe Islands, Guernsey, Isle of Man, Israel, Jersey, New Zealand, Switzerland and Uruguay, There are partial findings of adequacy for Canada, Japan and the United States of America. 

For countries where the respective legislator or authority has not decided that an adequate level of data protection exists that matches the level of data protection in the UK , we have provided safeguards in order to secure your personal data to a degree that is equivalent to the level of data protection in the European Union and the UK. your home country as a minimum.

These safeguards are:

  • For the exchange of data within our company: our Binding Corporate Rules for Controllers
  • For the exchange of data with our service providers and other international organisations: Standard Contractual Clauses that have been issued by the European Commission or the ICO.

You can obtain a copy of these Standard Contractual Clauses and the Fresenius Kabi Group Binding Corporate Rules, online, or upon request.

Changes to our personal data processing activities

As our collection and use of your data may change over time, we may update the information on this site from time to time to correctly reflect our data processing practices. We encourage you to review it from time to time. Previous versions are available as link under the sections of the different situations in which we collect your data.

Contact, Requests, Inquiries and Complaints relating to your data

For all the situations where we collect and use your data the following information is applicable.

Controller and contact

The controller or designated responsible entity representing the Fresenius Kabi group, for processing of your personal data is:

Calea UK Limited 
Cestrian Court, 

Eastgate Way, 

Manor Park, 

Runcorn, 

Cheshire, 

WA7 1NT

Email: data.protection-uk@fresenius-kabi.com

Or you can contact us using our Data Protection Contact Form.

You also have the right to lodge a complaint with our data protection officer or the Data Protection Authority (The Information Commissioners Office) please see the relevant contact details for both below. 

Requests, Enquiries and Complaints

By using our data privacy contact details, you can request information and execute your rights.

Where applicable based on data protection legislation, you have the right to request:

  • confirmation whether or not we process your personal data
  • access to or a copy of your personal data: You an ask to access/receive information about e.g. the purpose of processing, the categories of personal data concerned, the recipients, storage periods, any existence of automated decision-making.
  • rectification of your personal data if they are incomplete or incorrect
  • deletion of your personal data, unless it must be maintained e.g. due to legal retention requirements
  • to restrict of processing of your personal data if either the accuracy of the personal data is contested, or the processing is unlawful (no longer required for the pursued purposes).
  • data portability of your data to another organisation in a commonly used and machine-readable format, if the following conditions are met:
  • Personal data have been provided by the individual
  • The processing is based on the individual’s consent or on a contract with the individual
  • The processing is carried out by automated means.
  • Object to processing on grounds specific to your situation or to direct marketing and profiling.
  • revocation or withdrawal of your previously given consent at any time. You can withdraw your consent to all processing or for individual purposes of your choice. The withdrawal of consent will not affect the lawfulness of processing based on your consent before the withdrawal.
  • to be not subject to automated decision making (incl. profiling) which could lead to legal or similar significant effects to your, unless:
  • It is necessary for entering into or performance of a contract between the you and Calea
  • It is based on your explicit consent.

If you submit a request, our data protection organisation may contact you for additional information to confirm your identity and to clarify our request. We provide information free of charge unless requests are manifestly unfounded or excessive. In that case we may charge a fee.

We aspire to answer your request within four weeks. We reserve the right to extend the period within the scope of the admissibility by law and will inform you if this is the case. Please do not inquire about your processing status.

If you want to submit a request to another Fresenius Kabi entity than listed in this form, please navigate to the website of the country the respective entity is located. Web addresses can be found here​.

For more information on how we handle your personal data, please read the information under If you submit a data subject request

Complaints

You have the right to lodge a complaint about the way we manage your personal data with our data protection officer,or with the data protection authority. You can contact those as follows:

Data Protection Officer:

Fresenius Kabi AG
Data Protection Officer
Else-Kröner-Straße 1
61352 Bad Homburg
Germany
E-mail: data.protection-uk@fresenius-kabi.com 

If you’re unhappy with the outcome of your enquiry, then you can contact the ICO: 

Data Protection Authority:

The Information Commissioner’s Office: http://ico.org.uk/global/contact-us/

Tel: 0303 123 1113

GB-HPN-24000095 February 2025