AmerisourceBergen Global Manufacturer Services GmbH (“AB Swiss Co”) is committed to protecting and respecting your privacy. This Privacy Statement (together with our Cookie Policy) will explain how AB Swiss Co uses the personal data we collect from/of individuals who are granted access (hereafter “Authorized Users”) to our web-based CERTIO® platform (“Certio”), and how AB Swiss Co uses personal data collected from vendors and other business partners. Please read the following carefully and completely before using Certio.
The terms “we”, “us”, and “our” refers to AB Swiss Co, and the terms “you” and “yours” refer to you, as an Authorized User of Certio. AB Swiss Co is the so-called controller, i.e. it determines the purposes and means of the processing of personal data. Inquiries related to data protection in reference to our activities may be sent to our global Privacy Office at the address listed at the bottom of this Privacy Statement.
Personal scope
This Privacy Statement applies to the following categories of Authorized Users:
1. Customers. This category includes users who interact with Certio in their category as purchasers of products or services from AB Swiss Co.
2. Prospective Customers. This category includes users who interact with Certio for a demonstration of its capabilities in the event they may choose to purchase products or services from AB Swiss Co.
3. Employees. This category includes users who interact with Certio in connection with their role as employees or contractors of AB Swiss Co. or its affiliates.
Certio is not made available to the public nor to children.
This Privacy Statement also applies to vendors and other business partners where expressly stated.
Collection and Use of Your Information.
The amount and type of information we collect depends on how you use Certio. AB Swiss Co may collect information about you in various ways or from various sources, including (a) information you provide directly to us, (b) information we collect about you when you log into Certio or use our services, and (c) information we received from other sources. Any or all of these types of information may include “Personal Data,” which means any information relating to an identified or identifiable natural person, where an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
With regard to vendors and other business partners, we process limited Personal Data, as data protection law applies only to individuals. However, we handle data of individuals we interact with, such as names, contact details, professional information, communication details, and information about management personnel, as part of the general information on companies we work with.
Information We Collect Directly From You
We may collect information directly from you when you: complete the Certio User Request Form, log on to Certio, utilize our “Contact Certio Support” link in the Certio site map, contact “Support” via a root menu item, choose to use our services, or participate in programs or otherwise provide information directly to us. Additionally, in our “User Request Form” which you submitted in order to access Certio, you provided us the following information: (1) date of request, (2) your Company name, (3) your full name (first and last name), (4) your address and country and state of residence, (5) your email address, (6) whether you are a new user or requesting termination as a user, (7) your role title, and (8) your functional area.
In addition to any items listed in our Cookie Policy and our Certio User Request Form, we will collect data in connection with the use of our website. This includes, for example, the following data:
1. the remote address or IP address of the end device and device ID;
2. information about your device, the operating system of your end device or language settings;
3. the client app and HTTP User Agent (i.e. Browser used to access our website)
4. the HTTP Referrer that directed you to our website;
5. information about your internet provider;
6. accessed content or protocols in which the use of our systems is recorded;
7. date and time of access to the website and your approximate location; and
8. details of the content and files accessed in the user account
This data is collected by using an automated logging process that examines and stores generic non-personal information on each Authorized User’s Client/browser the Authorized User is using. This allows us to determine the number of site visitors, browser versions, etc.
We may use the Personal Data that we collect directly from you to fulfill our obligations arising from contracts entered into between your Company (your employer or company for which you are considered part of the workforce personnel) and us and providing you and your Company with information, product, and services that the Company requested:
1. to ensure security of Certio;
2. to create and manage your user account;
3. to develop and provide data support services that we offer;
4. to send you service-related communications;
5. to trouble-shoot issues you may experience when using Certio;
6. to coordinate with our vendor(s), to further troubleshoot and resolve any issues you may experience when using Certio;
7. to coordinate with our affiliates from whom we source certain data feed elements used in Certio; and/or
8. to coordinate with our affiliates to further troubleshoot and resolve issues you may experience while using Certio.
When we are in contact with vendors and other business partners regarding a contract, we process Personal Data provided to us in connection with such a contract. This includes, in particular, the name and contact details of the contact person, the date and content of the agreement and any communications relating to such an agreement. We typically process such Personal Data for contract administration, accounting, claims management, process improvement and training purposes. We may also use such information to comply with legal requirements, legal proceedings or to protect other legitimate interests.
Information We Receive From Other Sources
We work closely with third parties (for example, our affiliates, customers, business partners, sub-contractors/vendors in technical and delivery services, and other contractors or consultants), and we may receive information about you from them. For example, our customers who have contracted for access to Certio will provide us information about you if they choose to designate you as one of their authorized representatives for accessing Certio. Please be advised that any information provided to us by a third party may also be subject to that third party’s privacy statement/policy. We may use Personal Data we receive from other sources, in combination with information we collect either directly from you or about you, for the same purposes as we use the information we collect either directly from you or about you.
Legal Basis Under EU General Data Protection Regulation for Processing Personal Data of EU Residents
Depending on the applicable law, data processing is only permitted if expressly authorised. This restriction does not apply under the Swiss Data Protection Act but it may apply under the European General Data Protection Regulation (GDPR). In such cases, we rely on the following legal bases for processing your Personal Data:
Where you have consented to data processing, your consent provides the legal basis to process your Personal Data (defined above). You have the right to withdraw consent at any time. Please note that your withdrawal of consent to collect and process your Personal Data will not affect the lawfulness of processing your Personal Data based on your consent before you withdrew your consent. We may also process your Personal Data on the basis of contractual necessity to perform a contract we have with you. We may also process your Personal Data on the basis of our legitimate interests, including in providing and improving our services. For example, AB Swiss Co has a legitimate interest in understanding your login history so we can assess your interaction with our services. We also have a legitimate interest in providing and developing interesting features to provide our Authorized Users. Where we rely on legitimate interests to process your Personal Data, you have the right to object to such processing (meaning you can ask us to stop). You can use your browser privacy settings to control certain ways in which we process your Personal Data, but doing so can impact your user experience. For example, we use cookies during the authentication process to access Certio, and if you clear or refuse use of cookies, then we cannot authenticate you as an Authorized User. If you clear cookies, then you would need to agree to the use of cookies again in order to access Certio. If you refuse the use of certain cookies, you will no longer be able to access Certio, and your company may need to replace you with another Authorized User. You can also contact us, using the details provided in this Privacy Statement, to object to other forms of processing.
Direct Marketing
We may use information we collect to directly market AB Swiss Co services and products to you in your capacity as a customer unless:
1. You have opted out of this use of your Personal Information in accordance with this Privacy Statement; or
2. AB Swiss Co has reason to know that you are in the European Union and have not opted into this use of your Personal Information.
Sharing Your Information
Sharing Information with AB Swiss Co Affiliates – AB Swiss Co may share information (including Personal Data) with AB Swiss Co affiliates for the same purposes and under the same legal justifications, as applicable, that are described for AB Swiss Co under this Privacy Statement.
Sharing Information with Service Providers – We may share information (including Personal Data) either that we collect directly from you or that we collect about you with certain third-party service providers to perform a variety of services on our behalf. These service providers include business partners, suppliers, vendors, and sub-contractors for the performance of any contract we enter into with them or you, or for assisting us in the administration and improvement of Certio. Please note that we provide our service providers with only that Personal Data which is necessary for them to perform services for us and contractually restrict with use to those purposes. There also may be instances where AB Swiss Co may share information (including Personal Data) with third parties who have not been retained by us (directly or indirectly). For example, we may make such a disclosure: as required by applicable law, court order or governmental regulation; if such disclosure is otherwise necessary in support of any criminal or other legal investigation here or abroad; in order to enforce or apply our User Terms and Conditions or other agreements; or to protect the rights, property or safety of AB Swiss Co or our customers. Information we collect (including Personal Data) also may be transferred to a third party in the event that AB Swiss Co or part of it is sold, assigned, or transferred, or is part of the process of considering such a transaction, in which case we will use reasonable endeavors to ensure the actual or proposed buyer, assignee, or transferee treats your information in accordance with this Privacy Statement.
Updating and Accessing Your Information
We encourage you to update the information that you provide to us, such as providing us with a new mailing or email address (or other changes in your information submitted on the User Access Form). This will help us to continue to provide information to you that best meets your needs. In addition, AB Swiss Co complies with laws and regulations applicable to certain rights that permit access or amendments to data in our files, including the Swiss Federal Data Protection Act. You may have rights to access, correct, delete, or transfer your information. If you are a data subject under the GDPR, or you are covered by Switzerland’s data protection laws, you may be entitled to rights such as:
1. Rights of access – the ability to request that AB Swiss Co provide copies of your personal data.
2. Right to rectification – the right to request that AB Swiss Co correct any personal data you believe is inaccurate or incomplete.
3. Right to erasure (“right to be forgotten”) – the right to request that AB Swiss Co erase your personal data, under certain conditions.
4. Right to restrict processing – the right to request that AB Swiss Co to restrict the processing of your personal data, under certain conditions.
5. Right to object to processing – the right to object to AB Swiss Co’s processing of your personal data, under certain conditions.
6. Right to data portability – the right to request that AB Swiss Co transfer the personal data that we have collected to another organization, or directly to you, under certain conditions.
If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact our please contact our Jason Brown, our Data Protection Officer, at jason.brown@alliance-healthcare.net or or through Office of Privacy, privacy@cencora.com.
Lodging a Complaint
Depending on the jurisdiction in which you live, if you believe that we are not processing your Personal Data in accordance with the requirements set forth in this Privacy Statement or applicable data protection laws, you may have a right to lodge a complaint with a supervisory authority regarding this Privacy Statement.
Data Transfer
You acknowledge that the Internet is a global environment and your use of internet data can involve the collection, processing and transmission of data on an international basis. You further acknowledge that AB Swiss Co is located solely within Switzerland and it collects and stores data in Switzerland. Further, we may share your information with third parties and AB Swiss Co affiliates, which may be located in, or use technology, equipment, products, and services located in, countries different from that in which your information is located or stored. These may be located outside the European Economic Area (EEA) and Switzerland (especially in the USA), but also in other regions and countries worldwide, e.g. India and the United Kingdom. For example, we may transmit data to authorities and other persons abroad if we are legally obliged to do so or, for example, in the context of a company sale or legal proceedings. Not all these countries currently guarantee an adequate level of data protection according to the standards of Swiss law. We therefore take contractual precautions to contractually compensate for the lower level of legal protection, especially with the standard contractual clauses issued by the European Commission and recognized by the Swiss Data Protection and Information Commissioner (FDPIC). For more information and a copy of these clauses, please visit www.edoeb.admin.ch/edoeb/en/home/data-protection/handel-und-wirtschaft/transborder-data-flows.html.
How long do we process personal data?
We store and process your personal data as long as it is necessary for the purpose of the processing (in the case of contracts, usually for the duration of the contractual relationship), as long as we have a legitimate interest in storing it (e.g. to enforce legal claims, for archiving and or to ensure IT security) and as long as the data is subject to a legal retention obligation (for example, for certain data, a ten-year retention period applies). If there are no legal or contractual obligations to the contrary, we will destroy or anonymise your data after the storage or processing period has expired within our normal processes.
Security of Your Information
We use appropriate technical, administrative and physical safeguards to protect data that pertains to you from loss, misuse or alteration. You acknowledge and agree that no organization can guarantee absolute security of Personal Data, and any transmission of Personal Data is at your own risk. Although AB Swiss Co makes a genuine effort to ensure the security of information and transactions conducted on Certio, it cannot and does not guarantee the communications and transactions conducted on Certio will be secure. You acknowledge this and that system failures may limit your ability to use Certio services. You agree to assume all risk and liability arising from your use of Certio and AB Swiss Co’s services accessed via Certio, including the risk posed by any breach in the security of communications and transactions you conduct in or via Certio.
You have previously agreed to our User Terms and Conditions which further govern the security of your log-in credentials and your responsibilities with respect to the same.
Modifications and Updates to this Privacy Statement
This Privacy Statement becomes effective as of May 1, 2025. AB Swiss co may update and modify this Privacy Statement at any time and from time-to-time, and such updates and modifications will be effective immediately upon posting the updated or modified Privacy Statement. You agree to review this Privacy Statement periodically to be aware of such updates and modifications and your continued access or use of Certio after any updates or modifications will be deemed your conclusive acceptance of the updated or modified Privacy Statement.
Cookie Policy
Our Cookie Policy which was provided to you at the same time as this Privacy Statement explains what cookies are, how we use cookies, and what types of cookies we use. Although you are not required to accept cookies or provide AB Swiss Co information when you visit Certio, if you set your browser to reject cookies (or decide not to provide AB Swiss Co with certain information) then you will not be able to access and use Certio.
ADDITIONAL INFORMATION FOR CALIFORNIA RESIDENTS ON PERSONAL DATA PROCESSING AND PRIVACY RIGHTS
Disclosure of Personal Data for Business Purposes in the Past 12 Months
The following chart describes the categories of Personal Data that we disclosed to third parties for a business purpose in the 12 months prior to the date of this Notice:
|
Categories of Individuals’ Personal Data |
Categories of Third Parties with Which We Shared Personal Data for a Business Purpose |
|
Personal identifiers: name; email address; account information; your home or billing address; telephone numbers; customer number; IP address.
|
Your Company and other authorized users from your company; and service providers that process payments, verify customer information, manage customer information and provide customer service (including through our call center and chat features), facilitate email communications, provide security services and cloud-based data storage, host our website and assist with other IT-related functions, advertise and market our products, provide analytics information, and provide legal and accounting services. |
|
Commercial and financial information: product and service preferences and/or behaviors; and future communication preferences.
|
Service providers that verify customer information, manage customer information and provide customer service (including through our call center and chat features), facilitate email communications, provide security services and cloud-based data storage, host our website and assist with other IT-related functions, provide analytics information, and provide accounting services |
|
Internet or other electronic activity information: your device and browser type; your browsing and search history on our website; and information regarding your interaction with our Websites; operating system and platform; device type and version; browser type and version; browser id; the URL entered and the referring/destination page; date/time of visit; language preferences; the time spent on our Websites; and any errors that may occur during the visit to our Websites. |
Your Company; and Service providers that provide security services and cloud-based data storage, host our website and assist with other IT-related functions, advertise and market our products, and provide analytics information. |
Business Purposes for Such Disclosures
We disclosed the aforementioned categories of personal data to the categories of third parties identified above for the following purposes: to manage customer, supplier and vendor accounts and relationships; verify customers’ identities; provide data analytics; operate our IT systems and secure our systems and facilities; prevent fraud and other illegal activities; and to obtain professional advice, such as about legal and accounting matters.
Additional Information About How We May Disclose Personal Data
We may also share your personal data as required or permitted by law to comply with a subpoena or similar legal process or government request, or when we believe in good faith that disclosure is legally required or otherwise necessary to protect our rights and property or the rights, property or safety of others, including to law enforcement agencies, and judicial and regulatory authorities. We may also share your personal data with third parties to help detect and protect against fraud or data security vulnerabilities. And we may share or transfer your personal data to a third party in the event of an actual or potential sale, merger, reorganization of our entity or other restructuring.
Rights Related to California Resident Personal Data Held by Us
If you are a California resident, you have certain rights that are described in this section of the Policy.
Your Right to Access Information We Collect and Share About You
We are committed to ensuring that you know what personal data we collect. To that end, you can ask us for the following information from us with respect to the personal data that we have collected about you in the 12 months prior to our receipt of your request:
· Specific pieces of personal data we have collected about you;
· Categories of personal data we have collected about you;
· Categories of sources from which such personal data was collected;
· Categories of personal data that the business sold or disclosed for a business purpose about you;
· Categories of third parties to whom the personal data was sold or disclosed for a business purpose; and
· The business or commercial purpose for collecting or selling your personal data.
Your Right to Request Deletion of Personal Data We Have Collected From You
Upon your request and subject to exceptions in the law, we will delete the personal data we have collected from you.
Your Right to Request to Correct Personal Data We Hold About You
You have the right to request that we correct personal data we hold that you believe is not accurate. We will take steps to determine the accuracy of the personal data that is the subject of your request to correct, and in doing so will consider the totality of the circumstances relating to the personal data you have identified as being incorrect. We may ask that you provide documentation regarding your request to correct to assist us in evaluating the request.
Your Right to Ask Us Not to Sell or Share Personal Data We Have Collected About You
With respect to those categories of personal data that we sell to third parties or share with third parties for the purpose of cross-context behavioral advertising, you have the right to opt out of such sales and sharing.
Opt-out Preference Signals
An opt-out preference signal is sent by a platform, technology, or mechanism on behalf of consumers and communicates a consumer’s choice to opt out of the sale and sharing of personal data for cross-context behavioral advertising with all businesses that recognize the signal, without having to make individualized requests. The signal can be set on certain browsers or through opt-out plug-in tools.
We recognize the Global Privacy Control signal and do so at the browser level. This means that if the signal is sent through a specific browser, we will recognize it for that browser only. If you would like more information about opt-out preference signals, including how to use them, the Global Privacy Control website has such information (https://globalprivacycontrol.org/).
California Shine the Light
California Civil Code Section 1798.83, also known as the “Shine the Light” law, permits California residents to annually request, free of charge, information about the personal data (if any) disclosed to third parties for direct marketing purposes in the preceding calendar year. To make a request, please contact us at privacy@cencora.com.
Our Commitment to Honoring Your Rights
If you exercise any of the rights explained in this Privacy Statement, we will continue to treat you fairly.
Exercising Your Rights and How We Will Respond
To exercise your access or deletion rights, or to ask a question about your data subject rights, email us at privacy@cencora.com.
We will first acknowledge receipt of your request within 10 business days of receipt of your request. We will then provide a substantive response to your request as soon as we can, generally within 45 days from when we receive your request, although we may be allowed to take longer to process your request under certain circumstances. If we expect your request is going to take us longer than normal to fulfill, we will let you know.
We usually act on requests and provide information free of charge, but we may charge a reasonable fee to cover our administrative costs of providing the information in certain situations.
In some cases, the law may allow us to refuse to act on certain requests. If this is the case, we will endeavor to provide you with an explanation as to why.
Verification of Identity – Access or Deletion Requests
We will ask you for two or three pieces of personal data and attempt to match those to information that we maintain about you.
If we are unable to verify your identity with the degree of certainty required, we will not be able to respond to the request. We will notify you to explain the basis of the denial.
Authorized Agents
You may designate an agent to submit requests on your behalf. The agent can be a natural person or an entity that is registered with the California Secretary of State.
If you would like to designate an agent to act on your behalf, you and the agent will need to comply with our verification process. Specifically, if the agent submits requests to access, know, correct, or delete your personal data, the agent will need to provide us with your signed permission indicating the agent has been authorized to submit the request on your behalf. We will also require that you verify your identity directly with us or confirm with us that you provided the agent with permission to submit the request.
Please note that this subsection does not apply when an agent is authorized to act on your behalf pursuant to a valid power of attorney under the California Probate Code. Any such requests will be processed in accordance with California law pertaining to powers of attorney.
United States State Privacy Laws
For additional information and rights applicable under US state privacy law (including rights applicable for other US states) see our State Supplement to Privacy Statement. This supplemental notice adds to (and, in some cases, alters) the Privacy Statement with respect to users where the state laws apply.
Global Privacy - Contact Information - If you have any questions about this Privacy Statement or the use of your Personal Information, you may contact Jason Brown, our Data Protection Officer, at jason.brown@alliance-healthcare.net or by sending an email to privacy@cencora.com, calling us at 1-800-829-3132, or writing to the following address:
Cencora Corporation
Corporate Headquarters
227 Washington Street
Conshohocken, PA 19428
Attention: Chief Privacy Officer
privacy@cencora.com
© Copyright AmerisourceBergen Global Manufacturer Services GmbH 2025
Policy Last Updated: May 2025
This document supplements AB Swiss Co’s Privacy Statement (“State Supplement”) and applies solely to individuals who reside in the States of California, Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Maryland, Montana, Nebraska, Nevada, New Hampshire, New Jersey, Oregon, Tennessee, Texas, Utah, and Virginia (“Applicable Individuals,” “You,” or “Your”). Please read our full privacy statement carefully and completely before using Certio®.
Information We Collect, Disclose, Sell, or Share
Where AB Swiss Co discloses Personal Data to third parties, it does so for the same business purposes described below and, where appropriate, requires that such parties maintain its confidentiality and maintain appropriate systems and processes to protect its security and protection. The following table sets forth the categories of Personal Data AB Swiss Co has collected from Applicable Individuals within the last twelve (12) months, the source of that Personal Data, and examples of how we have used and disclosed such Personal Data within the last twelve (12) months. Please see the Privacy Statement for a full list of our business purposes for using and disclosing Personal Data and a full list of the categories of parties to whom we may disclose Personal Data.
|
Category |
Sources of Personal Data |
Purpose for Collection Examples |
Categories of Recipients |
|
A. Identifiers, such as real name, postal address, email address, telephone numbers, or other similar identifiers. |
From you.
|
To fulfill our obligations arising from any contracts entered between you (or your Company) and us and provide you with the information, product or service you request; to provide you with other services that we have offered to you (or your Company); to create and manage your account; and to send you service-related communications.
|
Your Company and authorized users from your Company. |
|
B. Other protected classification characteristics under California or federal law. |
From you and your Company. |
To fulfill our obligations arising from any contracts entered between you (or your Company) and us and provide you or your Company with the information, product or service you request; to provide you (or your Company) with other services that we have offered to you. |
Your Company and our service providers, if applicable and necessary for the business purpose of supporting our relationship with you (or your Company). |
|
C. Commercial information, including records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. |
From you, your Company and from our Certio’s interaction with your browser or devices. We also collect this information from our business partners, service providers, and third parties like data analytics and information providers. |
To provide our services in a secure manner, analyze the use of our products and services, and provide customer support and related platform services |
Your Company and our affiliates and third-party vendors and other service providers that support Certio. |
|
D. Device information, such as IP address, internet provider, device cookie settings and other device details |
From you and from our Cerio’s interaction with your browser or devices. |
To administer and improve Certio, including troubleshooting, and survey purposes; to protect the security and integrity of the Certio and our business, such as by protecting against and preventing fraud and managing risk exposure, including by identifying potential unauthorized users. |
Third-party vendors and other service providers that support our Certio platform or perform analytic or cloud services for us. |
|
E. Internet or other electronic network activity information, such as your browser type; your usage history on our Web Site; and information regarding your interaction with our Web Sites, operating system type or mobile device model, IP address, mobile device identifier or other unique identifier Site, the amount of time you spend viewing or visiting Certio, the number of times you return, or other clickstream or portal usage data and device details. Internet or other similar network activity, such as IP address, internet provider, operating system and browser used, type of device (such as laptop or smart phone), device cookie settings, and other device details |
From you and from our Certio’s interaction with your browser or devices. We also collect this information from our business partners, service providers, and third parties like data analytics and information providers. |
To administer and improve Certio, including troubleshooting, data analysis, testing, research, statistical and survey purposes; to protect the security and integrity of Certio and our business, such as by protecting against and preventing fraud and managing risk exposure, including by identifying potential unauthorized users. |
Third party vendors and other service providers that support our Certio or perform analytic or cloud services for us. |
|
F. Professional or Employment-Related Information, such as business contact information, occupation or job title,email address, phone number, and professional licenses, or other industry affiliations and identity of your employer who has contracted for your Certio access. |
From you, your Company, our business partners, service providers, and third parties like data analytics and information providers |
To administer and improve Certio, including troubleshooting, data analysis, testing, research, statistical and survey purposes; to protect the security and integrity of Certio and our business, such as by protecting against and preventing fraud and managing risk exposure, including by identifying potential unauthorized users. |
Our affiliates and third-party vendors and other service providers that support our Certio or perform analytic or cloud services for us. |
AB Swiss Co does not use or disclose “sensitive” Personal Data, as defined in the California Consumer Privacy Act (“CCPA”), for any purposes other than those permitted by the CCPA.
Your Privacy Rights and Choices
You may have a number of rights related to Personal Data that we process about you. These rights depend on the jurisdiction where you reside, including California, Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Maryland, Montana, Nebraska, Nevada, New Hampshire, New Jersey, Oregon, Tennessee, Texas, Utah, and Virginia. Please note that these rights may be subject to allowable exceptions and limitations, and we reserve our right to process your request to exercise these rights (“Data Subject Request”) in accordance with applicable law.
In addition to the rights listed above, California’s “Shine the Light” law (Cal. Civ. Code § 1798.83) permits users that are residents of California to request certain information regarding our disclosures of Personal Data to third parties for such third parties’ direct marketing purposes. Please email or write to us as provided below to submit your request.
The “Oregon Consumer Privacy Act” requires disclosure of the controller and any registered business names that the controller uses in Oregon. That information can be found here.
How to Submit a Data Subject Request
To make any of the requests described above, you may contact us at 1-800-829-3132 or submit the request using the Data Subject Request form provided available on our website.
You may also designate an authorized agent to make a request on your behalf. Parents may also make verifiable requests on behalf of their minor children. For requests made through authorized agents, please be prepared to provide a letter, signed by you, granting the authorized agent authority to act on your behalf. As permitted by law, we may also request to verify your identity directly with you.
Before processing your request, including requests submitted through an authorized agent, we may ask you to verify your identity by confirming your name, email address, telephone number, and state of residence. If we believe we need further information to verify or process your request, we may request additional information from you as permitted by law. Making a verifiable request does not require you to create an account with us, but we may treat requests made through your password-protected account as sufficiently verified when the request relates to Personal Data associated with your specific account. We will use Personal Data provided in a verifiable request only to verify the requestor’s identity or authority to make the request.
Appeal of Data Subject Request
Depending on your state of residence, you may have the right to appeal a decision we make regarding your Data Subject Request. To appeal a prior decision, you must email us at privacy@cencora.com and (a) in the email subject line include your state of residence and the words “Appealing Rights Decision”, and (b) in the email body provide an explanation of the basis of your appeal.
Contact Information
If you have any questions about the Privacy Statement or this Supplement or the use of your Personal Data, please contact Jason Brown, our Data Protection Officer, at jason.brown@alliance-healthcare.net or contact us by sending an email to privacy@cencora.com, calling us at 1-800-829-3132, or writing to the following address:
Cencora, Inc.
Corporate Headquarters
1 West First Avenue
Conshohocken, PA 19428
Attention: Amy Huffman, Vice President, Global Privacy
Changes to This Supplement
AB Swiss Co reserves the right to amend the Privacy Statement or this Supplement at our discretion and at any time. When we make changes to the Privacy Statement or this Supplement, we will post the updates on Certio and update the Privacy Statement’s effective date. Your continued use of Certio following the posting of changes constitutes your acceptance of such changes.