Aliri Bioanalysis is a GxP-compliant bioanalytical Contract Research Organization (CRO) dedicated to accelerating pharmaceutical development while maintaining the highest standards of data privacy and integrity.

In our capacity as a service provider (Data Processor), and occasionally as a Data Controller, we are committed to processing all personal data in strict adherence to the General Data Protection Regulation (GDPR) and applicable global GxP (Good Practice quality guidelines and regulations, such as GLP and GCP) standards.

Contact Details:
ALIRI USA INC.
Official Contact: Kevin Jones, President
4720 Forge Road, Suite 108
Colorado Springs, CO 80907

ALIRI FRANCE SAS
Official Contact: Kevin Jones, President
152 rue du Dr Yersin, 59120
Loos, France

Global Data Protection Officer (DPO):
Chera Mock (Contact Email: [email protected])

Our Core Principles for Data Processing:

  • Lawful Basis & Transparency: We process personal data (primarily related to clinical trial participants, study personnel, and client representatives) only when we have a clear, lawful basis to do so—typically performance of a contract, compliance with legal obligations (e.g., GxP record-keeping), or explicit consent where appropriate. We are fully transparent about how this data is used and protected.
  • International Data Transfers: Data is transferred to countries outside the EU/EEA through safeguards of Standard Contractual Clauses between Aliri Bioanalysis (ALIRI USA INC. and ALRI FRANCE SAS).
  • Purpose Limitation: Data is collected solely for specified, explicit, and legitimate purposes related to bioanalytical services, scientific research, regulatory submission requirements, and contract fulfillment. It will not be further processed in a manner incompatible with those purposes.
  • Data Minimization: We only collect and retain the minimum amount of personal data necessary to achieve the stated GxP-regulated research objectives and meet regulatory archiving requirements.
  • Accuracy and Integrity (GxP Alignment): We take all reasonable steps to ensure data is accurate and, where necessary, kept up to date. Our robust GxP Quality Management System ensures the integrity and traceability of all data we manage.
  • Security and Confidentiality: We implement stringent technical and organizational security measures, including validated systems and restricted access controls, to protect personal data from unauthorized access, accidental loss, alteration, or disclosure, in alignment with GxP data integrity principles.
  • Website Cookies: Strictly Necessary Cookies (Essential)
    These cookies are fundamental to the operation of our website and cannot be deactivated. They are typically activated only in response to specific actions you take, such as establishing privacy settings, accessing secure accounts, or completing online forms. While you can configure your browser to alert you or block these cookies, doing so will cause certain features of the site to malfunction. Importantly, these cookies do not collect or store any information that identifies you personally.
  • Website Cookies: Performance Cookies (Analytics): To continuously improve our website’s functionality and user experience, we use these cookies to monitor traffic sources and count visitor numbers. They provide insights into which pages are most frequently visited and how users navigate through our site. All data collected is aggregated and entirely anonymous. If you choose to disable these cookies, we will be unable to track your visit or include your activity in our performance metrics.
  • Data Breach Procedures: We securely manage data breaches (notifying authorities within 72 hours if there’s a risk to individuals’ rights and freedoms) and conducting data protection impact assessments (DPIAs) for high-risk processing.
  • Governing Law and Choice of Forum and Jurisdiction: We are governed by the law of France CNIL (Commission nationale de l’informatique) having France as our EU Member State.
  • Data Subject Rights: We respect the rights of data subjects to access, rectify, erase, or restrict the processing of their personal data, facilitating requests in accordance with GDPR requirements and within the constraints of GxP regulations and study integrity protocols. Data Subject Requests (DSR) can be sent to [email protected].
  • Accountability and Governance: We maintain comprehensive records of our processing activities and have designated data protection personnel to ensure continuous compliance and oversight of our data handling practices.

For detailed information regarding specific data processing activities or to exercise your rights under the GDPR, please contact our Global Data Protection Officer (DPO): [email protected]