Krka designated a Data Protection Officer (DPO) who is in charge of personal data protection. Among other tasks defined by the GDPR, one of the key DPO tasks is establishing and implementing specific procedures, and controlling all procedures implemented by Krka in order to exercise the rights of data subjects.
KRKA UK Ltd
1 London Road
Slough SL3 7FJ
You can submit request (for Access, Rectification, Erasure and Withdrawal of Personal Consent, Restriction of Processing and Objection to Processing) in person or as a certified document serving as proof that the right person is exercising their right. Protection of personal data against unauthorised consultation and ensuring personal data accuracy are among key objectives of the GDPR, therefore data subjects must accept Krka's requirement for identification. Otherwise anyone could request a copy or a rectification of anyone's personal data, and this could lead to unauthorised disclosure or use of incorrect personal data.
In cases where data subjects give consent following a request by electronic means, the withdrawal of such a consent shall be possible, and the identity of such data subjects shall be verified using e-mail confirmation.
We shall address each request submitted by data subjects and carry out appropriate procedures or notify data subjects that this is not possible and state the reason why.
You have the right to lodge a complaint with a supervisory authority.