Last Updated: 01/18/2019

Protecting your privacy is important to us. With this in mind, we are providing this Privacy Policy to explain our practices regarding the collection, use and disclosure of information that we receive through our website www.astellasgenetherapies.com (the “Site(s)”).

This Privacy Policy applies to information we collect:

  • On this Website.
  • In e-mail and other electronic messages between you and this Website.
  • Through mobile and desktop applications you download from this Website, which provide dedicated non-browser-based interaction between you and this Website.

This Privacy Policy does not apply to:

  • Any third-party websites, services or applications, even if they are accessible through our Site(s).

Also, please note that unless we define a term in this Privacy Policy, all capitalized terms used in this Privacy Policy have the same meanings as in our Terms and Conditions. So, please make sure that you have read and understand our Terms and Conditions.

Revisions to this Privacy Policy

Any information that is collected via our Site(s) is covered by the Privacy Policy in effect at the time such information is collected. We may revise this Privacy Policy from time to time. If we make any material changes to this Privacy Policy, we’ll notify you of those changes by posting them on the Site(s) or by sending you an email or other notification, and we’ll update the “Last Updated Date” above to indicate when those changes will become effective.

Collection and Use of Information

Information Collected or Received from You

Generally, you can visit our Site(s) without telling us who you are and without giving us any personal or personally identifiable information (“PII”) that can be used to identify you. However, if you use certain features of the Site(s), such as if you subscribe to receive press releases, or if you directly contact us by electronic communication, we will collect your PII, such as your name and email address. We may also collect other information voluntarily given to us by you.

Personal information or personally identifiable information is information by which you may be personally identified, such as name, postal address, email address, telephone number, IP address, unique device IDs, or any other information the website collects that is defined as personal or personally identifiable information under an applicable law.

Please do not provide us with any sensitive information (including individually identifiable health information) about you or anyone via the Site(s) or by any other electronic communication. Any such information is provided at your own risk.

Our primary goals in collecting information are to improve our Site(s) and Content, to administer your use of the Site(s) and to enable you to enjoy and easily navigate our Site(s). We may use your information to respond to your inquiries, to communicate information to you and send you materials that may be of interest to you.

By accessing or using the Site(s) and clicking “agree,” “accept,” or something equivalent, you consent to this Privacy Policy.

Information Collected Using Cookies and other Web Technologies.

Like many website owners and operators, we may use automated data collection tools such as Cookies and Web Beacons to collect certain information.

“Cookies”

are small text files that are placed on your hard drive by a Web server when you access certain websites. We may use both session Cookies and persistent Cookies to identify that you’ve logged into the Site(s) and to tell us how and when you interact with our Site(s). We may also use Cookies to monitor aggregate usage and web traffic routing on our Site(s) and to customize and improve our Site(s). Unlike persistent Cookies, session Cookies are deleted when you log off from the Site(s) and close your browser. Although most browsers automatically accept Cookies, you can change your browser options to stop automatically accepting Cookies or to prompt you before accepting Cookies. Please note, however, that if you don’t accept Cookies, you may not be able to access all portions or features of the Site(s). Some third-party services providers that we may engage may also place their own Cookies on your hard drive. Note that this Privacy Policy covers only our use of Cookies and does not include use of Cookies by such third parties.

“Web Beacons”

(also known as Web bugs, pixel tags or clear GIFs) are tiny graphics with a unique identifier that may be included on our Site(s) for several purposes, including to deliver or communicate with Cookies, to track and measure the performance of our Site(s) and to monitor how many visitors view our Services. Unlike Cookies, which are stored on the user’s hard drive, Web Beacons are typically embedded invisibly on web pages (or in an e-mail).

Information Related to Use of the Site(s).

Our servers may automatically record certain information about how a person (“User”) uses our Site(s) (we refer to this information as “Log Data”). Log Data may include information such as a User’s Internet Protocol (IP) address, browser type, operating system, the web page that a User was visiting before accessing our Site(s), the pages or features of our Site(s) to which a User browsed and the time spent on those pages or features, search terms, the links on our Site(s) that a User clicked on and other statistics. We may use Log Data to administer the Site(s) and to analyze (and may engage third parties to analyze) Log Data to improve, customize and enhance our Site(s).

Location Information.

We may collect and store information about your location, such as by converting your IP address into a rough geo-location. We may use location information to improve our Site(s) for you.

Information that We Share with Third Parties

We will not share any PII that we have collected from or regarding you except as described below:

Information Shared with Our Services Providers.

We may engage third-party services providers to work with us to administer and provide our services. These third-party services providers have access to your PII only for the purpose of performing services on our behalf, for instance, in order to deliver information to you as requested. Information you provide us may also be accessible to our affiliates and collaborators.

Information Shared with Third Parties.

We may share aggregated information and non-identifying information with third parties for industry research and analysis, demographic profiling and other similar purposes.

Information Disclosed in Connection with Business Transactions.

Information that we collect from our users, including PII, is considered to be a business asset. Thus, if we are acquired by a third party as a result of a transaction such as a merger, acquisition or asset sale or if our assets are acquired by a third party in the event we go out of business or enter bankruptcy, some or all of our assets, including your PII, may be disclosed or transferred to a third party acquirer in connection with the transaction.

Information Disclosed for Our Protection and the Protection of Others.

We cooperate with government and law enforcement officials or private parties to enforce and comply with the law. We may disclose any information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate: (i) to respond to claims, legal process (including subpoenas); (ii) to protect our property, rights and safety and the property, rights and safety of a third party or the public in general; and (iii) to stop any activity that we consider illegal, unethical or legally actionable activity.

Your Choices

We offer you choices regarding the collection, use and sharing of your PII and we’ll respect the choices you make. Please note that if you decide not to provide us with the PII that we request, you may not be able to access all of the features of the Site(s).

Opt-Out.

If you provide us with your email address, we may periodically send you promotional information about the company. When you receive such promotional communications from us, you will have the opportunity to “opt-out” by following the unsubscribe instructions provided in the e-mail you receive. If we need to send you certain communications regarding the Site(s), you will not be able to opt out of those communications.

Modifying Your Information.

You may send us an e-mail via our contact link to request access to, correct or delete any PII that you have provided to us. We cannot delete your PII except by also deleting your user account. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.

We’ll take steps to modify, correct or delete your information as soon we can, but some information may remain in archived/backup copies for our records or as otherwise required by law.

If you want us to delete your PII and your Account, please contact us at [email protected] with your request.

Responding to Do Not Track Signals

Our Site(s) do not have the capability to respond to “Do Not Track” signals received from various web browsers.

The Security of Your Information

We take reasonable administrative, physical and electronic measures designed to protect the information that we collect from or about you (including your PII) from unauthorized access, use or disclosure. Please be aware, however, that no method of transmitting information over the Internet or storing information is completely secure. Accordingly, we cannot guarantee the absolute security of any information.

Links to Other Sites

Our Site(s) may contain links to websites and services that are owned or operated by third parties (each, a “Third-party Service”). Any information that you provide on or to a Third-party Service or that is collected by a Third-party Service is provided directly to the owner or operator of the Third-party Service and is subject to the owner’s or operator’s privacy policy. We’re not responsible for the content, privacy or security practices and policies of any Third-party Service. To protect your information, we recommend that you carefully review the privacy policies of all Third-party Services that you access.

International Transfer

Your PII may be transferred to, and maintained on, computers located outside of your state, province, country or other governmental jurisdiction where the privacy laws may not be as protective as those in your jurisdiction. If you’re located outside the United States and choose to provide your PII to us, we may transfer your PII to the United States and process it there.

Our Policy Toward Children

Our Site(s) are not intended for children under 18 years of age. We do not knowingly collect or use any PII directly from children (we define “children” as minors under the age of 18). No one under age 18 may provide any PII (as defined below) to or on the Site(s). We do not knowingly collect PII from children under 18. If you are under 18, do not use or provide any information on the Site(s) or on or through any of its features/register on the Site(s), use any of the interactive or public comment features of the Site(s) or provide any information about yourself to us, including your name, address, telephone number, e-mail address or any screen name or user name you may use. If we learn we have collected or received PII from a child under 18 without verification of parental consent, we will delete that information. If you are a parent or guardian and become aware that your child has provided us with information or if you believe we might have any information from or about a child under 18, please contact us via our contact us link at: [email protected]

European Union Residents

If you reside in a country in the European Economic Area or in Switzerland, then information we collect from you may be subject to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (the “GDPR”)) and the following additional information is provided for your benefit.

The controller of the personal data collected through the Site(s) is:

Audentes Therapeutics, Inc.

600 California Street, 17th Floor
San Francisco, CA 94108
(415) 818-1001

If you use the Site(s), you acknowledge that your personal data is being processed pursuant to the following lawful bases (as further detailed below): your consent, Audentes Therapeutics, Inc. legitimate interests and compliance with applicable law. You further acknowledge and consent to your information that is gathered through the Services being transferred to, used in, and stored in the United States.

You hereby consent to the processing of your personal data as described in this Privacy Policy, including the transfer, use, and storage of your personal data in the United States. The data protection and other laws of the United States and other countries might not be as comprehensive as those in your country. You may withdraw your consent at any time by following the instructions in the Accessing/Updating/Deleting Your Personal Information section below, but this will not affect the lawfulness of processing based on consent before its withdrawal. You have the right to file a complaint relating to the processing of personal data with a supervisory authority.

Accessing/Updating/Deleting Your Personal Information

If you would like to delete, update, or access the PII we have collected from you, and/or deactivate or delete the information provided to us, you may do so by sending an email to: [email protected]. Additionally, if your PII is subject to the GDPR, you may have certain additional rights, including the right of restriction of processing of personal data, and the right to object to the processing of personal data. Please send e-mail to: [email protected] for more information.

Your California Privacy Rights

California residents may request and obtain from us, once a year, free of charge, a list of third parties, if any, to which we disclosed their PII for direct marketing purposes during the preceding calendar year and the categories of PII shared with those third parties.

A California resident who has provided PII to a business with whom he/she has established a business relationship for personal, family, or household purposes (“California Customer”) is entitled to request information about whether the business has disclosed PII to any third parties for the third parties’ direct marketing purposes. In general, if the business has made such a disclosure of PII, upon receipt of a request by a California Customer, the business is required to provide a list of all third parties to whom PII was disclosed in the preceding calendar year, as well as a list of the categories of PII that were disclosed.

However, under the law, a business is not required to provide the above-described lists if the business adopts and discloses to the public (in its privacy policy) a policy of not disclosing a customer’s PII to third parties for their direct marketing purposes unless the customer first affirmatively agrees to the disclosure, as long as the business maintains and discloses this policy. Rather, the business may comply with the law by notifying the customer of his or her right to prevent disclosure of PII to third parties for direct marketing purposes and providing a cost free means to exercise that right. To prevent disclosure of your PII for use in direct marketing by a third party for its own purposes, do not opt in to or authorize such use when you provide PII through the Site(s). Please note that whenever you allow your PII to be shared with a third party to communicate with you (including Audentes Therapeutics, Inc.), your information will be subject to that third party’s privacy policy. If you later decide that you do not want that third party to use your information, you will need to contact the third party directly. You should always review the privacy policy of any party that collects your information to determine how that entity will handle your information.

If you are a California resident and wish to obtain that information, please submit your request by sending us an email at [email protected] with “California Privacy Rights” in the subject line or by writing to us at:

Audentes Therapeutics, Inc.

600 California Street, 17th Floor
San Francisco, CA 94108

Please note that we are only required to respond to one request per customer each year, and we are not required to respond to requests made by means other than through this e-mail address.

Data Security

We have implemented measures designed to secure your PII from accidental loss and from unauthorized access, use, alteration and disclosure.

Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your PII, we cannot guarantee the security of your PII transmitted to our Site(s). Any transmission of PII is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Site(s).

Questions?

Please contact us if you have any questions about our Privacy Policy:

Audentes Therapeutics, Inc.

600 California Street, 17th Floor
San Francisco, CA 94108
(415) 818-1001
Email: [email protected]