Privacy Policy

1. Overview 2. Data We Collect 3. How We Use Data 4. Legal Basis 5. Data Sharing 6. Data Retention 7. Your Rights 8. Security 9. Cookies 10. Third-Party Links 11. Policy Changes 12. Contact Us

JointSource Biotechnology Co., Ltd. ("JointSource", "we", "us", or "our") operates this website as a corporate information platform for business-to-business (B2B) purposes. We are committed to protecting the privacy and personal data of our website visitors, inquiry contacts, and business partners in accordance with applicable data protection laws including the EU General Data Protection Regulation (GDPR).

1. Overview

This Privacy Policy applies to all personal data collected through our website at jointsourcebio.com and any associated subdomains. It describes what data we collect, why we collect it, how we use it, and your rights as a data subject.

This website is a corporate B2B platform. We do not operate an e-commerce store, and we do not process consumer transactions or retail customer accounts. All services provided through this website are directed at business professionals and corporate entities.

2. Data We Collect

We collect only the minimum data necessary to respond to your inquiries and operate this website effectively.

Information you provide voluntarily:

• Name and job title
• Company name and country
• Business email address
• Phone number (optional)
• Inquiry content and product interest details

Information collected automatically:

• IP address and approximate geographic location
• Browser type, version, and operating system
• Pages visited and time spent on site
• Referring URL and search terms

We do not collect sensitive personal data (such as health data, financial data, or government identification numbers) through this website.

3. How We Use Your Data

We use the data we collect for the following purposes:

• To respond to product inquiries, quotation requests, and sample requests submitted via our contact forms
• To provide technical documentation, certificates, and product specifications upon request
• To manage and maintain our business relationship with existing and prospective customers and partners
• To improve the performance, content, and usability of our website
• To comply with applicable legal and regulatory obligations

We do not use your data for automated decision-making or profiling, and we do not send unsolicited marketing emails without your explicit consent.

4. Legal Basis for Processing

Under the GDPR, we process your personal data on the following legal bases:

• Legitimate interests — responding to business inquiries and managing B2B communications
• Contractual necessity — processing data required to fulfil a business agreement or pre-contractual steps
• Consent — where you have explicitly opted in to receive communications from us
• Legal obligation — where processing is required to comply with applicable law

5. Data Sharing & Disclosure

We do not sell, rent, or trade your personal data to third parties. We may share your data only in the following limited circumstances:

• Service providers: Trusted third-party vendors (e.g., email hosting, website analytics, CRM platforms) who process data on our behalf under strict data processing agreements
• Legal compliance: Where required by law, court order, or governmental authority
• Business transfers: In the event of a merger, acquisition, or sale of company assets, subject to equivalent data protection obligations

All third-party service providers are contractually bound to protect your data and may not use it for any purpose beyond the services they provide to us.

6. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this Policy, or as required by applicable law:

• Inquiry and contact form data: retained for up to 3 years from the date of last contact
• Active customer and partner records: retained for the duration of the business relationship plus any legally required retention period
• Website analytics data: retained in anonymised or aggregated form

Upon expiry of the applicable retention period, data is securely deleted or anonymised.

7. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Right of access — to request a copy of the personal data we hold about you
• Right to rectification — to request correction of inaccurate or incomplete data
• Right to erasure — to request deletion of your data where there is no legitimate reason for continued processing
• Right to restrict processing — to request that we limit how we use your data
• Right to data portability — to receive your data in a structured, machine-readable format
• Right to object — to object to processing based on legitimate interests
• Right to withdraw consent — where processing is based on consent, you may withdraw it at any time

To exercise any of these rights, please contact us at the details provided in Section 12. We will respond within 30 days.

8. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, alteration, or disclosure. These measures include SSL/TLS encryption, access controls, and regular security reviews of our systems and processes.

While we take reasonable precautions, no data transmission over the internet can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure, please notify us immediately.

9. Cookies & Tracking

Our website uses cookies and similar technologies to improve your browsing experience and analyse site traffic. We use the following types of cookies:

• Essential cookies: Required for the website to function correctly. Cannot be disabled.
• Analytics cookies: Help us understand how visitors interact with the site (e.g., Google Analytics). Data is anonymised where possible.
• Preference cookies: Remember your settings and browsing preferences.

You can manage cookie preferences through your browser settings at any time. Disabling certain cookies may affect the functionality of some parts of the website.

10. Third-Party Links

Our website may contain links to third-party websites, trade directories, or partner platforms. These sites operate independently and are not governed by this Privacy Policy. We have no control over their content or privacy practices and accept no responsibility for them. We encourage you to review the privacy policy of any external site you visit.

11. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or operational procedures. When we do, we will revise the "Last updated" date at the top of this page. We encourage you to review this page periodically to stay informed about how we protect your data.

Continued use of this website after any changes constitutes your acknowledgment of the updated Policy.

12. Contact Us

If you have any questions, concerns, or requests relating to this Privacy Policy or the handling of your personal data, please contact us: