Johnson & Johnson Gateway, LLC, a member of the Johnson & Johnson Family of Companies, is strongly committed to protecting the privacy of those who entrust us with their personal information. Our employees, and all those who do business with us, trust and expect that we will protect their personal information in accordance with the promises we make. In furtherance of our commitment, Johnson & Johnson Gateway, LLC has certified to the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework with respect to personal data processed as part of our human resources activities. Accordingly, Johnson & Johnson Gateway, LLC adheres to the Safe Harbor privacy principles and frequently asked questions, as separately agreed to by the U.S. Department of Commerce and the European Commission, and the Federal Data Protection and Information Commissioner of Switzerland.
The following terms are used throughout this document and are defined here for clarification.
"Agent" means a third party that processes personal data solely on behalf of and under the instructions of Johnson & Johnson Gateway, LLC.
"Personal data" means any information or set of information that identifies or can reasonably be used to identify an individual. Personal data do not include information that is encoded or anonymized, or publicly available information that has not been combined with non-public personal information.
"Sensitive personal data" means personal information that reveals race, ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, or that concerns health or sex life. Information will be treated as sensitive personal data where it is received from a third party that treats and identifies it as sensitive.
The following privacy principles apply to the collection, use and disclosure of personal data by Johnson & Johnson Gateway, LLC in conducting human resources activities.
Johnson & Johnson Gateway, LLC will inform individuals about the purposes for which we collect and use personal data about them, how to contact us, the types of non-agent third parties with whom we may share personal data, and any ways that individuals may limit the use and sharing of such data. This notice will be provided when individuals are first asked to provide personal data or as soon thereafter as is practicable.
Johnson & Johnson Gateway, LLC will offer an individual the opportunity to choose (opt out) whether personal data are (a) shared with a non-agent third party or (b) used for a purpose other than that for which the data were originally collected or subsequently authorized by the individual.
For sensitive personal data, Johnson & Johnson Gateway, LLC will give an individual an affirmative or explicit (opt in) choice if the information is to be disclosed to a third party or used for a purpose other than those for which it was originally collected or subsequently authorized by the individual.
Johnson & Johnson Gateway, LLC will provide individuals with reasonable access to personal data about them and they may request the correction or amendment of personal data that they demonstrate to be incorrect or incomplete.
Johnson & Johnson Gateway, LLC will only transfer personal data to an agent where the agent has provided assurances that the agent provides at least the same level of privacy protection as is required by these privacy principles. Where we have knowledge that an agent is using or sharing personal data in a way that is contrary to these principles, Johnson & Johnson Gateway, LLC will take reasonable steps to prevent or stop such processing.
Johnson & Johnson Gateway, LLC will only transfer personal data to a non-agent third party where consistent with the notice provided to the individuals who are the subject of the data and any consent that those individuals have given.
Johnson & Johnson Gateway, LLC will only use and share personal data about individuals in a way that is consistent with the purposes for which the data were collected or subsequently authorized by those individuals. To the extent necessary for those purposes, Johnson & Johnson Gateway, LLC will take reasonable steps to ensure that the data are accurate, complete, and current.
Johnson & Johnson Gateway, LLC will take reasonable precautions to protect personal data from loss, misuse and unauthorized access, disclosure, alteration and destruction.
Johnson & Johnson Gateway, LLC has put in place mechanisms to verify our ongoing adherence to these privacy principles. We encourage individuals covered by this Policy to raise any concerns that they have about the way that we process their personal data by contacting us at the address below, and we will do our best to resolve them. We have also agreed to participate in the dispute resolution program provided by the European Data Protection Authorities Panel and to cooperate and comply with the Federal Data Protection and Information Commissioner of Switzerland.
Adherence by Johnson & Johnson Gateway, LLC to these privacy principles may be limited to the extent required to meet a legal, governmental, national security or public interest obligation.
Please contact us with any questions about the way in which we use personal data. Employees and former employees of Johnson & Johnson Gateway, LLC should contact us at:
Johnson & Johnson Gateway, LLC
Internet Compliance Services
Mary Garzillo, Privacy Manager
908-442-2031 or RA-HCSUS-PRIVACY@ITS.JNJ.COM
This Policy may be amended from time to time, consistent with the requirements of the Safe Harbor. When we do, we will also revise the "last updated" date at the bottom of this Policy. For material changes to this Policy, we will notify individuals by placing a notice on the following Web site: www.jnjgatewayifu.com/privacy.jsp?cntry=US&lng=ENG .
Last Updated: January 30, 2012