Bristol-Myers Squibb

Bristol-Myers Squibb (BMS) is a US-based healthcare company that manufactures and markets pharmaceuticals, biologics, and consumer healthcare products. The company is committed to adhering to the highest ethical standards in all its operations. BMS is a signatory to the Pharmaceutical Industry Code of Ethics, which is based on the FTC Fair Information Practices Principles, as well as other ethical standards.

In terms of conforming to the FTC Fair Information Practices Principles, BMS has taken steps to ensure that the privacy and security of personal data is protected. BMS has implemented systems and procedures to ensure that user data is collected fairly, is stored securely, and is used responsibly. BMS also provides users with access to the personal data that is collected and stored, and users have the right to review, update, or delete their data at any time. BMS also honors user requests to opt out of data collection and use.

In terms of the Basic Concepts of Ethics, BMS is committed to conducting its operations in an ethical manner. It is committed to maintaining the highest standards of integrity and transparency in all of its dealings. BMS also has a Code of Conduct that is designed to ensure that it operates in accordance with the highest ethical standards. This Code of Conduct is designed to ensure that BMS is honest and fair in its dealings with its partners, customers, and other stakeholders.

Bristol-Myers Squibb is conforming to the Laudon & Laudon Chapter 4: Ethical and Social Issues in Information Systems, Table 4.4 (or 4.3) Federal Trade Commission (FTC) Fair Information Practices Principles, and Section 4.2 Basic Concepts of Ethics. The company has implemented several practices to ensure the security and privacy of its customers’ data and information. These include:

1. Notice: Bristol-Myers Squibb provides clear and conspicuous notice of its privacy practices to its customers, providing customers with information about what types of personal information is collected, used, disclosed, and how it is used.

2. Choice/Consent: Bristol-Myers Squibb allows customers to choose whether and how their personal information is used for marketing purposes, such as emails and newsletters.

3. Access: Bristol-Myers Squibb has implemented a data subject access request process, allowing customers to access their personal data, and correcting it if necessary.

4. Security: Bristol-Myers Squibb has implemented several measures to protect the security and privacy of its customers’ data, including encryption and the use of firewalls and other security measures.

5. Enforcement: Bristol-Myers Squibb has implemented a number of measures to ensure that its customers’ privacy practices are enforced, including policies and procedures, audits, and employee training.

Overall, Bristol-Myers Squibb is conforming to the FTC Fair Information Practices Principles and is taking steps to ensure that its customers’ data and information are secure and private.

Bristol-Myers Squibb would have to make sure that its data processing activities comply with the General Data Protection Regulation (GDPR) of the European Union. This includes providing individuals with the right to access, correct, delete, and transfer their personal data, as well as to opt out of data processing activities. Bristol-Myers Squibb would also need to make sure that their data processing activities comply with other aspects of the GDPR, such as the need to obtain explicit consent from individuals before collecting and processing their personal data, and the obligation to inform individuals of their rights in relation to their data. In addition, Bristol-Myers Squibb would have to ensure that they have appropriate data security measures in place to protect the personal data they process.

Finally, Bristol-Myers Squibb would have to comply with the right to be forgotten, which gives individuals the right to have their personal data erased in certain circumstances.

References

“2022 State Privacy Law Tracker.” Husch Blackwell, https://www.huschblackwell.com/2022-state-privacy-law-tracker.

Laudon, Kenneth C., and Jane Price Laudon. “Management Information Systems Managing the Digital Firm.” Amazon, Pearson, 2022, https://www.amazon.com/Management-Information-Systems-Managing-Digital/dp/0134639715.

Hartzog, Woodrow, and Neil M. Richards. “Legislating Data Loyalty.” SSRN, 21 June 2022, https://papers.ssrn.com/sol3/papers.cfm?abstract_id=4131523.

Hallinan D; “Data Sharing under the General Data Protection Regulation: Time to Harmonize Law and Research Ethics?” Hypertension (Dallas, Tex. : 1979), U.S. National Library of Medicine, https://pubmed.ncbi.nlm.nih.gov/33583200/.