Personal Data Protection Policy

The Virbac Group and its component companies (subsidiaries/affiliates) (hereinafter “Virbac”, “we”, “our”, “us”) attach great importance to respecting the confidentiality of your personal data (hereinafter Personal Data) and to the protection of the privacy of its customers, partners, and users of its website.

In the context of its activities, Virbac S.A., a French société anonyme (limited company) registered with the Grasse Trade and Companies Register under number 417 350 311, whose registered office is located at 1ère avenue 2065m LID 06510 Carros France, when acting as data controller, may collect, process, and use your personal data and is committed to respecting and complying with the applicable legislation on personal data protection, in particular, the European General Data Protection Regulation No. 2016/679 of 27 April 2016 (known as "GDPR"), as well as all national legal rules adopted in application thereof.

For the purposes of this Policy, VIRBAC refers to Virbac SA and all its subsidiaries acting as data controllers, independently or jointly. Please note that to exercise your rights or ask questions, you must contact the Virbac group subsidiary located in your country or use the form available here.
The purpose of this Personal Data Protection Policy and any other document mentioned in this Policy, across our websites or mobile applications, is to inform you about:

the personal information we collect (and its nature),
the purposes for which we collect it, and the retention period
how we collect and process it,
the people with whom we share it as part of our services, and our business relationships,
the rights you have in this regard.

1. What Personal Data do we collect?

We collect personal data directly from you when you interact with us through this site (browsing or completing a form). Sometimes this data may be transmitted to us by an authorized third party (when you interact with our partners, for example).

Personal data is any information relating to an identified or identifiable natural person (the "data subject"), such as an email address, your first and last name, or your IP address, among other examples.

Virbac ensures that it collects and processes only the Personal Data that is strictly necessary for the purposes for which it is intended.

This means we may collect:

identification and contact data, such as your first and last name, address, telephone number, account management identifier;
browsing data: IP address, information on how you access our site (pages visited, duration of visit, etc.), Cookies;
professional data, such as your job title, company name, SIRET number;
commercial information, notably the information provided in the context of the contractual or customer relationship between you or your organization and Virbac, or otherwise information that you or your organization voluntarily submit to us;
data relating to interactions with our customer service: exchange history
payment and billing data
sensitive data (if applicable), when you contact our pharmacovigilance department;
Application data, such as your CVs, diplomas, professional experience, and skills, for example when you apply for a job at Virbac or one of its subsidiaries;

Information about other people: If you provide us with information about people other than yourself, such as your employees, counterparts, advisors, or suppliers, you must ensure that they are aware of how their information will be used and that they have given you the necessary authorization to share it with us and to allow us, and our external service providers, to use it.

Furthermore, in order to provide you with the adequate service, for example during seminars, we may hold information that indirectly identifies sensitive data, such as your health status. In this case, we will only collect this data with your prior consent. For example, you may inform us of any allergies.

2. For what purposes do we process your Personal Data and for how long do we keep it?

Virbac collects and processes your Personal Data for explicit, legitimate, and determined purposes stated below.

Virbac retains your Personal Data for the time necessary for the purposes for which they are processed, and in compliance with applicable legislation. Consequently, the retention period depends on the purpose of each processing and local legislation.

2.1. Navigation and security on our website

Processing	Personal data processed	Legal basis	Purposes	Retention period
Audience measurement and website consultation statistics	Browsing data	Consent (when you connect to the site)	Measure the audience and establish statistics on visitors consulting the website	Consent is renewed every 6 months. Data collected during browsing, after consent, is kept for 24 months
Website security	Connection data	Legitimate interest	Ensure the IT security of the website	12 months after collection
Management of your registration for a Virbac account as a professional	Identification and connection data	Legitimate interest	Ensure the IT security of the website	12 months after collection or at any time by accessing your account settings

2.2 Marketing and Communication

Processing	Processed personal data	Legal basis	Purposes	Retention period
Sending marketing communication (newsletter, new product information, etc.)	Professional and identification data	Consent	Share the latest news from Virbac and animal health with you	Until your unsubscription or 3 years after our last contact
Contests	Identification data and centers of interest	Legitimate interest	Event organization to Share the latest news from Virbac and animal health with you	Until your unsubscription or 3 years after our last contact
Contact form	Professional and identification data	Legitimate interest	Manage requests from website users, data subjects, and customers via the contact forms on the website	Time necessary to process the request, then according to legal and regulatory retention periods depending on the type of request

2.3. Business Relationship

Processing	Personal Data Processed	Legal Basis	Purposes	Retention Period
Management of contracts with commercial partners	Professional identification data and bank details	Contract	Manage customer data during the contractual relationship	Duration of the commercial relationship, plus legal limitation periods

2.4. Recruitment

Processing	Personal Data Processed	Legal Basis	Purposes	Retention Period
Candidate Management	Identification data	Legitimate interest	Manage applications for job offers within Virbac	6 months or 2 years with candidate consent

2.5. Pharmacovigilance

Processing	Personal Data Processed	Legal Basis	Purposes	Retention Period
Management of adverse events reports or relevant information on pharmacovigilance due to a Virbac product	Identification data, sensitive data	Legal obligation	Manage alerts due to adverse effects or other problem related to a Virbac medicinal product	10 years from the year of withdrawal of the product in the last country where the product was marketed

3. With whom do we share your Personal Data?

To achieve the purposes described above and only to the extent necessary to pursue these purposes, the personal data we collect may be transferred to all or some of the following recipients:

authorized Virbac employees who are bound by a confidentiality obligation;
our commercial and contractual partners, including our subcontractors (upon instruction) such as for statistical survey, analysis and commercial prospecting purposes, hosting of our website(s), maintenance of our devices/software or for the use of collaborative applications and tools made available to our employees, or in the context of merger and/or acquisition and/or asset transfer operations.
Judicial, financial, or other governmental bodies and independent supervisory authorities, in accordance with applicable laws, particularly within the framework of our legal obligations related to the prevention of or protection against crimes (including corruption and similar), anti-money laundering, sanctions screening, and those related to whistleblowing mechanisms.
Certain regulated professions, such as lawyers, bailiffs, notaries, or audit firms.

In addition to this list of recipients, and provided that you have expressed your consent, we remind you that we are part of the Virbac Group, and, to offer you relevant offers, we may share your data with the company Virbac SA, and its other subsidiaries, the list of which is available on the website. https://corporate.virbac.com.

4. Are your Personal Data transferred outside the European Union?

We ensure that your personal data is processed and stored within the European Union and under the regime of European law.

However, depending on the processing, your data may also be transferred to a country outside the EEA, to our trusted providers and/or subsidiaries. In this case, personal data processing may take place outside the European Union, provided that it is accompanied by guarantees compliant with the applicable legislation, particularly the signing of a contract following the model proposed by the European Commission and protecting your data (also called standard contractual clauses, SCCs), or storage in a country recognized by the supervisory authority for the guarantees it presents (adequacy decision). When the country to which the data is transferred does not have protection measures comparable to those of the EU, we use "appropriate or adapted safeguards," making it possible to compensate for the insufficient data protection.

5. How do we ensure the security of the data we process?

Virbac attaches great importance to your Personal Data and takes all reasonable precautions to protect and secure it in order to ensure its confidentiality and integrity, and that it is not modified, destroyed or disclosed to unauthorized third parties.

We take physical, electronic, and organizational protection measures to prevent any infringement of your personal data, and these measures are regularly evaluated to verify that our organization is up to date with protection standards. We implement appropriate internal procedures to raise awareness among our employees and ensure compliance with these measures within our organization, and we ensure compliance by our partners. We require our partners and subcontractors, who manage your data on our behalf, to do the same and guarantee the same level of protection as Virbac.

Since data transmission via the Internet is not a completely secure operation, we cannot guarantee the security of the data you transmit on our site.

We also recommend that you be careful. For example, do not share your identifiers and passwords, or the equipment on which they are pre-registered.

6. Do we collect Personal Data from minors?

Our website and applications are intended for adults.

We do not intentionally collect information from minors unless parental or guardian authorization is obtain before providing personal data.

If we find that personal data of minors has been collected without prior parental consent, we will immediately proceed to their destruction.

7. Links to third-party websites

Our website as well as our newsletters, email updates and other communications may occasionally contain links to third-party websites. The personal data you provide via these websites is not subject to this Personal Data Protection Policy, and we are not responsible for the processing of your data by these websites.

We will inform you when you leave the Virbac website before being redirected to another, as the data protection policy of this new website is specific to it.

8. What are your rights regarding your Personal Data?

Regarding your personal data, you have the right to access, rectify, erase, object to, limit processing , data portability of your personal data, as well as the right to give instructions regarding the fate of your personal data after your death.

You can also withdraw your consent at any time, in cases where it has been provided.

Depending on the processing concerned, you have the rights detailed below. Some of these rights will only apply in certain circumstances.

Right of access: you can request confirmation as to whether or not your personal data is being processed and access it.
Right to rectification: you can request the rectification of your personal data if it is inaccurate or incomplete.
Right to erasure (or Right to be forgotten): you can request the erasure of your personal data, provided that the reason justifying such a right applies.
Right to restriction of processing: You can exercise this right if the reason justifying such a right applies.
Right to data portability: you can receive your personal data in a structured, commonly used, and machine-readable format, and the right to transmit those data to another controller without us hindering it.
Right to object, meaning you can, for example, prohibit us from using your personal data for direct marketing purposes
Right to define instructions for the processing of your personal data after your death

9. How to exercise your rights ?

You can exercise any of these rights, subject to providing your identity:

by contacting the data protection correspondent in your country of residence (see contact details of the entities concerned)
by contacting the Data Protection Officer at the following address: privacy@virbac.com

If, for any reason, you believe that the response we have provided is not satisfactory, you have the option to lodge a complaint. This must be done with a supervisory authority responsible for data protection, in the Member State of the European Union where you habitually reside, where we are established, or where an alleged violation of data protection legislation has occurred.

In France, you can lodge a complaint with the CNIL (Commission Nationale de l’Informatique et des Libertés - 3 place de Fontenoy, TSA 80715 - 75334 Paris cedex 07, France).

10. Modification of this Data Privacy Policy

Virbac is likely to modify this personal data protection policy depending on the legal and regulatory context or the evolution of our activity.

We invite you to consult it regularly on our website. In the event of a substantial modification, we will ensure that you are informed by any means.

This policy was updated on: 02/11/2026

To access the previous version here.