top of page

Privacy Policy & Data Protection

CosmicFlow GmbH

Data protection

The responsible body within the meaning of the data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

 

Cosmic Flow GmbH
Derya Kara & Andreas Bartneck
Stockerstrasse 58
8002 Zurich

Telephone: +41763792358
Email: mail@cosmicflow.ch
Website: https://www.cosmicflow.ch/privacy-policy

 

General remark

Based on Article 13 of the Swiss Federal Constitution and the data protection regulations of the federal government (Data Protection Act, DSG), every person has the right to protection of their privacy and protection against misuse of their personal data. The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.

In cooperation with our hosting providers, we strive to protect the databases as well as possible against unauthorized access, loss, misuse or falsification.

We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.

By using this website, you agree to the collection, processing and use of data as described below. This website can generally be visited without registration. Data such as the pages called up or the name of the file called up, the date and time are stored on the server for statistical purposes, without this data being directly related to your person. Personal data, in particular name, address or e-mail address, are collected on a voluntary basis as far as possible. The data will not be passed on to third parties without your consent.

 

Processing of personal data

Personal data is all information that relates to a specific or identifiable person. A data subject is a person about whom personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used, in particular the storage, disclosure, procurement, deletion, storage, modification, destruction and use of personal data.

We process personal data in accordance with Swiss data protection law. In addition, we process personal data in accordance with the following legal bases in connection with Art. 6 Para. 1 GDPR - insofar as and insofar as the EU GDPR is applicable:

  • Consent (Art. 6 Para. 1 S. 1 lit. a. GDPR) - The person concerned has given their consent to the processing of their personal data for a specific purpose or several specific purposes.

  • Fulfillment of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b. DSGVO) - The processing is necessary for the fulfillment of a contract to which the data subject is a party, or for the implementation of pre-contractual measures which are required at the request of the data subject take place.

  • Legal obligation (Art. 6 Para. 1 S. 1 lit. c. GDPR) - The processing is necessary to fulfill a legal obligation to which the person responsible is subject.

  • Protection of vital interests (Art. 6 Para. 1 S. 1 lit. d. GDPR) - Processing is necessary to protect vital interests of the data subject or another natural person.

  • Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. GDPR) - Processing is necessary to safeguard the legitimate interests of the person responsible or a third party, unless the interests or fundamental rights and freedoms of the data subject, which protect personal Data require prevail.

  • Application procedure as a pre-contractual or contractual relationship (Art. 9 Para. 2 lit. b GDPR) - Insofar as special categories of personal data within the meaning of Art. 9 Para. 1 GDPR (e.g. health data, such as severe disability or ethnic origin) are requested from applicants so that the person responsible or the person concerned can exercise the rights arising from labor law and the law of social security and social protection and fulfill his or her obligations in this regard, their processing takes place in accordance with Art. 9 para 2 letter b. GDPR, in the case of protecting the vital interests of applicants or other persons in accordance with Art. 9 (2) lit. c. DSGVO or for the purposes of health care or occupational medicine, for the assessment of the employee's ability to work, for medical diagnostics, care or treatment in the health or social area or for the administration of systems and services in the health or social area in accordance with Art. 9 Paragraph 2 lit. h. GDPR. In the case of a notification of special categories of data based on voluntary consent, their processing takes place on the basis of Article 9 Paragraph 2 lit. GDPR.

We process personal data for the duration necessary for the respective purpose or purposes. In the case of longer-lasting storage obligations due to legal and other obligations to which we are subject, we restrict processing accordingly.

 

Relevant legal bases

In accordance with Art. 13 GDPR, we will inform you of the legal basis for our data processing. If the legal basis is not mentioned in the data protection declaration, the following applies: The legal basis for obtaining consent is Art. 6 (1) lit. a and Art Answering inquiries is Article 6(1)(b) GDPR, the legal basis for processing to fulfill our legal obligations is Article 6(1)(c) GDPR, and the legal basis for processing to safeguard our legitimate interests is Article 6(1)(c) GDPR 6 Paragraph 1 lit. f GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6 Paragraph 1 lit. d GDPR serves as the legal basis.

 

Safety measures

We take appropriate technical and organizational measures in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the type, scope, circumstances and purposes of the processing as well as the different probabilities of occurrence and the extent of the threat to the rights and freedoms of natural persons to ensure a level of protection appropriate to the risk.

The measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as access, input, disclosure, ensuring availability and their separation. Furthermore, we have set up procedures that ensure the exercise of data subject rights, the deletion of data and reactions to data threats. Furthermore, we already take the protection of personal data into account during the development or selection of hardware, software and processes in accordance with the principle of data protection, through technology design and through data protection-friendly default settings.

 

Transmission of personal data

As part of our processing of personal data, it may happen that the data is transmitted to other bodies, companies, legally independent organizational units or persons or that it is disclosed to them. The recipients of this data can include, for example, service providers commissioned with IT tasks or providers of services and content that are integrated into a website. In such a case, we observe the legal requirements and, in particular, conclude appropriate contracts or agreements with the recipients of your data that serve to protect your data.

 

Data processing in third countries

If we process data in a third country (ie outside the European Union (EU), the European Economic Area (EEA)) or the processing within the framework of the use of third-party services or the disclosure or transmission of data to other persons, bodies or companies takes place, this is only done in accordance with the legal requirements.

Subject to express consent or contractually or legally required transmission, we only process the data in third countries with a recognized level of data protection, contractual obligation through so-called standard protection clauses of the EU Commission, if there are certifications or binding internal data protection regulations (Art. 44 to 49 DSGVO, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de).

 

Privacy Policy for Cookies

This site uses cookies. Cookies are text files containing data from visited websites or domains and are stored by a browser on the user's computer. A cookie is primarily used to store information about a user during or after their visit to an online offer. The stored information can include, for example, the language settings on a website, the login status, a shopping cart or the place where a video was viewed. The term cookies also includes other technologies that fulfill the same functions as cookies (e.g. when user information is stored using pseudonymous online identifiers, also known as "user IDs").

The following cookie types and functions are distinguished:

  • Temporary cookies (also: session or session cookies): Temporary cookies are deleted at the latest after a user has left an online offer and closed his browser.

  • Permanent cookies: Permanent cookies remain stored even after the browser is closed. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. Likewise, the interests of users, which are used to measure reach or for marketing purposes, can be stored in such a cookie.

  • First-party cookies: First-party cookies are set by us.

  • Third-party cookies (also: third-party cookies): Third-party cookies are mainly used by advertisers (so-called third parties) to process user information.

  • Necessary (also: essential or absolutely necessary) cookies: On the one hand, cookies can be absolutely necessary for the operation of a website (e.g. to save logins or other user entries or for security reasons).

  • Statistics, marketing and personalization cookies: Cookies are also usually used to measure range and when the interests of a user or his behavior (e.g. viewing certain content, using functions, etc.) on individual websites in a user profile get saved. Such profiles are used to show users, for example, content that corresponds to their potential interests. This process is also known as "tracking", ie tracking the potential interests of users. If we use cookies or "tracking" technologies, we will inform you separately in our data protection declaration or when obtaining consent.

Notes on legal bases: The legal basis on which we process your personal data using cookies depends on whether we ask for your consent. If this is the case and you consent to the use of cookies, the legal basis for the processing of your data is the declared consent. Otherwise, the data processed with the help of cookies will be processed on the basis of our legitimate interests (e.g. in the commercial operation of our online offer and its improvement) or if the use of cookies is necessary to fulfill our contractual obligations.

Storage period: If we do not provide you with any explicit information on the storage period of permanent cookies (e.g. as part of a so-called cookie opt-in), please assume that the storage period can be up to two years.

General information on revocation and objection (opt-out): Depending on whether the processing is based on consent or legal permission, you have the option at any time to revoke your consent or to object to the processing of your data by cookie technologies ( collectively referred to as "opt-out"). You can initially declare your objection using the settings in your browser, e.g. by deactivating the use of cookies (which can also limit the functionality of our online offer). An objection to the use of cookies for online marketing purposes can also be declared using a variety of services, especially in the case of tracking, via the websites https://optout.aboutads.info and https://www.youronlinechoices.com/ will. In addition, you can receive further objection notices as part of the information on the service providers and cookies used.

Processing of cookie data on the basis of consent: We use a cookie consent management procedure, in the context of which the user consents to the use of cookies or the processing mentioned in the context of the cookie consent management procedure and providers can be obtained and managed and revoked by the users. The declaration of consent is stored here so that the query does not have to be repeated and to be able to prove the consent in accordance with the legal obligation. The storage can take place on the server side and/or in a cookie (so-called opt-in cookie, or with the help of comparable technologies) in order to be able to assign the consent to a user or his device. Subject to individual information about the providers of cookie management services, the following information applies: The duration of the storage of the consent can be up to two years. A pseudonymous user identifier is created and stored with the time of the consent, information on the scope of the consent (e.g. which categories of cookies and/or service providers) and the browser, system and end device used.

  • Types of data processed: usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).

  • Affected persons: users (e.g. website visitors, users of online services).

  • Legal basis: Consent (Art. 6 Para. 1 S. 1 lit. a. GDPR), legitimate interests (Art. 6 Para. 1 S. 1 lit. f. GDPR).

 

Data protection declaration for SSL/TLS encryption

This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.

 

Data protection declaration for server log files

The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and browser version

  • operating system used

  • Referrer URL

  • Host name of the accessing computer

  • Time of server request

This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to subsequently check this data if we become aware of specific indications of illegal use.

 

Third Party Services

This website may use Google Maps for embedding maps, Google Invisible reCAPTCHA for protection against bots and spam, and YouTube for embedding videos.

These services of the American Google LLC use cookies, among other things, and as a result data is transmitted to Google in the USA, whereby we assume that no personal tracking takes place in this context solely through the use of our website.

Google has undertaken to ensure adequate data protection in accordance with the American-European and the American-Swiss Privacy Shield.

Further information can be found in the  Google Privacy Policy .

 

Privacy Policy for Contact Form

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. We do not pass on this data without your consent.

 

Data protection declaration for newsletter data

If you would like to receive the newsletter offered on this website, we need an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter . Further data is not collected. We use this data exclusively for sending the requested information and do not pass it on to third parties.

You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the "unsubscribe link" in the newsletter.

 

Data protection declaration for the comment function on this website

For the comment function on this website, in addition to your comment, information about the time the comment was created, your e-mail address and, if you are not posting anonymously, the user name you have chosen will be stored.

Storage of the IP address

Our comment function saves the IP addresses of the users who write comments. Since we do not check comments on our site before they are activated, we need this data in order to be able to take action against the author in the event of legal violations such as insults or propaganda.

Subscribe to comments

As a user of the site, you can subscribe to comments after registering. You will receive a confirmation email to verify that you are the owner of the email address provided. You can unsubscribe from this function at any time via a link in the info mails.

 

Paid services

In order to provide services that are subject to a charge, we will ask for additional data, such as payment details, to process your order or to carry out your order. We store this data in our systems until the statutory retention periods have expired.

 

Use of Google Maps

This website uses the offer of Google Maps. This enables us to show you interactive maps directly on the website and enables you to conveniently use the map function. By visiting the website, Google receives the information that you have accessed the corresponding subpage of our website. This takes place regardless of whether Google provides a user account through which you are logged in or whether there is no user account. If you are logged in to Google, your data will be assigned directly to your account. If you do not wish to be associated with your profile on Google, you must log out before activating the button. Google stores your data as usage profiles and uses them for advertising, market research and/or needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right. Further information on the purpose and scope of data collection and its processing by Google, as well as further information on your rights in this regard and setting options for protecting your privacy, can be found at:  www.google.de/intl/de/policies/privacy .

 

Privacy Policy for Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited. If the person responsible for data processing on this website is located outside the European Economic Area or Switzerland, Google Analytics data processing is carried out by Google LLC. Google LLC and Google Ireland Limited are hereinafter referred to as "Google".

We can use the statistics obtained to improve our offer and make it more interesting for you as a user. This website also uses Google Analytics for a cross-device analysis of visitor flows, which is carried out using a user ID. If you have a Google user account, you can deactivate the cross-device analysis of your use in the settings there under "My data", "Personal data".

The legal basis for the use of Google Analytics is Article 6 Paragraph 1 Clause 1 Letter f GDPR. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. We would like to point out that on this website Google Analytics has been extended by the code "_anonymizeIp();" was expanded to ensure anonymous collection of IP addresses. As a result, IP addresses are further processed in abbreviated form, which means that they cannot be linked to individuals. If the data collected about you has a personal reference, this will be excluded immediately and the personal data will be deleted immediately.

Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator.

Google Analytics uses cookies. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. You can prevent the storage of cookies by setting your browser software accordingly; we would like to point out to you however that in this case you will if applicable not be able to use all functions of this website in full. You can also prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) and from processing this data by Google by downloading the browser plug-in available under the following link and install:  Disable Google Analytics .

You can also prevent the use of Google Analytics by clicking on this link:  Disable Google Analytics . This saves a so-called opt-out cookie on your data carrier, which prevents the processing of personal data by Google Analytics. Please note that if you delete all cookies on your end device, these opt-out cookies will also be deleted, ie you will have to set the opt-out cookies again if you want to continue to prevent this form of data collection. The opt-out cookies are set per browser and computer/device and must therefore be activated separately for each browser, computer or other device.

 

Data protection declaration for the use of Google Web Fonts

This website uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display text and fonts correctly. If your browser does not support web fonts, a standard font will be used by your computer.

For more information about Google Web Fonts, see  https://developers.google.com/fonts/faq  and in Google's privacy policy:  https://www.google.com/policies/privacy/

 

Privacy Policy for Facebook

This website uses features from Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. When you visit our pages with Facebook plug-ins, a connection is established between your browser and the Facebook servers. Data is already being transferred to Facebook. If you have a Facebook account, this data can be linked to it. If you do not want this data to be assigned to your Facebook account, please log out of Facebook before visiting our site. Interactions, in particular using a comment function or clicking a "Like" or "Share" button, are also passed on to Facebook. Learn more at  https://de-de.facebook.com/about/privacy .

 

Privacy Policy for Instagram

Functions of the Instagram service are integrated on our website. These functions are offered by Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA. If you are logged into your Instagram account, you can click the Instagram button to link the content of our pages to your Instagram profile. This allows Instagram to associate your visit to our site with your user account. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or how it is used by Instagram.

For more information, see Instagram's privacy policy:  http://instagram.com/about/legal/privacy/

 

External payment service providers

This website uses external payment service providers, via whose platforms the users and we can carry out payment transactions. For example about

  • PostFinance (https://www.postfinance.ch/de/detail/srechtes-barrierefreiheit.html)

  • Visa (https://www.visa.de/bedingungen/visa-privacy-center.html)

  • Mastercard (https://www.mastercard.ch/de-ch/datenschutz.html)

  • American Express (https://www.americanexpress.com/de/legal/online-datenschutzerklarung.html)

  • Paypal (https://www.paypal.com/de/webapps/mpp/ua/privacy-full)

  • Bexio AG (https://www.bexio.com/de-CH/datenschutz)

  • Payrexx AG (https://www.payrexx.ch/site/assets/files/2592/datenschutzerklaerung.pdf)

  • Apple Pay (https://support.apple.com/de-ch/ht203027)

  • Stripe (https://stripe.com/ch/privacy)

  • Klarna (https://www.klarna.com/de/datenschutz/)

  • Skrill (https://www.skrill.com/en/footer/privacy-policy/)

  • Giropay (https://www.giropay.de/rechts/datenschutzerklaerung) etc.

As part of the fulfillment of contracts, we use the payment service providers on the basis of the Swiss Data Protection Ordinance and, if necessary, Art. 6 Para. 1 lit. b. EU GDPR. In addition, we use external payment service providers on the basis of our legitimate interests in accordance with the Swiss Data Protection Ordinance and, if necessary, in accordance with Article 6 (1) (f) of the EU GDPR in order to offer our users effective and secure payment options.

The data processed by the payment service provider includes inventory data such as name and address, bank details such as account numbers or credit card numbers, passwords, TANs and checksums, as well as contract, total and recipient-related information. The information is required to carry out the transactions. However, the data entered will only be processed and stored by the payment service providers. We as the operator do not receive any information about the (bank) account or credit card, only information to confirm (accept) or reject the payment. Under certain circumstances, the payment service provider may transmit the data to credit agencies. The purpose of this transmission is to check identity and creditworthiness. We refer to the terms and conditions and data protection notices of the payment service providers.

The terms and conditions and data protection notices of the respective payment service provider, which can be accessed within the respective website or transaction applications, apply to the payment transactions. We also refer to this for the purpose of further information and the assertion of revocation, information and other data subject rights.

 

Use of Fonts.com

This website uses Fonts.com, a font visualization service provided by Monotype Imaging Holdings Inc. that allows this Website to incorporate content of this kind on its pages. Personal Data collected: Usage Data and various types of Data as described in the privacy policy of the service. Place of processing: United States of America (USA);  Data protection

 

audio and video conferencing

We use audio and video conferencing services to communicate with our users and others. In particular, we can use it to conduct audio and video conferences, virtual meetings and training courses such as webinars.

We only use services that guarantee adequate data protection. In addition to this data protection declaration, any conditions of the services used, such as terms of use or data protection declarations, also apply.

In particular, we use Zoom, a service provided by the American company Zoom Video Communications Inc. Zoom also grants the rights under the European General Data Protection Regulation (GDPR) to users in Switzerland. Further information on the type, scope and purpose of data processing can be found in the  Privacy Policy  as well as on the  «Legal provisions and data protection» page  each from Zoom.

 

Order processing in the online shop with a customer account

We process the data of our customers in accordance with the data protection regulations of the federal government (Data Protection Act, DSG) and the EU-DSGVO, as part of the ordering process in our online shop, to enable them to select and order the selected products and services, as well as their payment and delivery , or to enable execution.

The processed data includes master data (inventory data), communication data, contract data, payment data and the persons affected by the processing include our customers, prospects and other business partners. The processing takes place for the purpose of providing contractual services in the context of operating an online shop, billing, delivery and customer services. We use session cookies, e.g. to save the contents of the shopping cart, and permanent cookies, e.g. to save the login status.

The processing takes place on the basis of Art. 6 Para. 1 lit. b (implementation of order processes) and c (legally required archiving) DSGVO. The information marked as required is required for the establishment and fulfillment of the contract. We disclose the data to third parties only within the scope of delivery, payment or within the scope of legal permissions and obligations. The data will only be processed in third countries if this is necessary to fulfill the contract (e.g. at the customer's request for delivery or payment).

Users can optionally create a user account, in particular by being able to view their orders. As part of the registration, the required mandatory information is communicated to the users. The user accounts are not public and cannot be indexed by search engines such as Google. If users have terminated their user account, their data will be deleted with regard to the user account, subject to their retention being necessary for commercial or tax reasons in accordance with Article 6 (1) (c) GDPR. Information in the customer account remains until it is deleted with subsequent archiving in the event of a legal obligation. It is the user's responsibility to back up their data before the end of the contract in the event of termination.

As part of the registration and renewed registrations as well as the use of our online services, we store the IP address and the time of the respective user action. The storage takes place on the basis of our legitimate interests, as well as the user's protection against misuse and other unauthorized use. In principle, this data will not be passed on to third parties unless it is necessary to pursue our claims or there is a legal obligation to do so in accordance with Article 6 (1) (c) GDPR.

Deletion takes place after statutory warranty and comparable obligations have expired; the necessity of storing the data is checked at irregular intervals. In the case of legal archiving obligations, the deletion takes place after their expiry.

 

agency services

We process the data of our customers in accordance with the data protection regulations of the federal government (Data Protection Act, DSG) and the EU-DSGVO as part of our contractual services.

We process inventory data (e.g. customer master data such as names or addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, etc.), contract data (e.g. subject of the contract, term), payment data (e.g. bank details, payment history), usage - and metadata (e.g. as part of the evaluation and success measurement of marketing measures). Those affected include our customers, interested parties and their customers, users, website visitors or employees as well as third parties. The purpose of the processing is to provide contractual services, billing and our customer service. The legal bases for the processing result from Article 6 Paragraph 1 Letter b GDPR (contractual services), Article 6 Paragraph 1 Letter f GDPR (analysis, statistics, optimisation, security measures). We process data that is required to justify and fulfill the contractual services and point out the necessity of their disclosure. Disclosure to external parties only takes place if it is required as part of an order. When processing the data provided to us as part of an order, we act in accordance with the instructions of the client and the legal requirements for order processing in accordance with Article 28 GDPR and do not process the data for any purposes other than those specified in the order.

We delete the data after the statutory warranty and comparable obligations have expired. The necessity of storing the data is checked at irregular intervals. In the case of legal archiving obligations, the deletion takes place after their expiry. In the case of data disclosed to us by the client as part of an order, we delete the data in accordance with the specifications of the order, generally after the end of the order.

 

Contractual Services

We process the data of our contractual and business partners, e.g. customers and interested parties (collectively referred to as "contractual partners") within the framework of contractual and comparable legal relationships and related measures and within the framework of communication with the contractual partners (or pre-contractual), e.g respond.

We process this data to fulfill our contractual obligations, to safeguard our rights and for the purposes of the administrative tasks associated with this information and the corporate organization. We only pass on the data of the contractual partners to third parties within the framework of the applicable law to the extent that this is necessary for the aforementioned purposes or to fulfill legal obligations or with the consent of the persons concerned (e.g. to telecommunications, transport and other auxiliary services involved as well as subcontractors, banks, tax and legal advisors, payment service providers or tax authorities). The contractual partners will be informed about other forms of processing, e.g. for marketing purposes, within the scope of this data protection declaration.

We inform the contractual partners which data is required for the aforementioned purposes before or during data collection, e.g. in online forms, by means of special markings (e.g. colours) or symbols (e.g. asterisks or similar), or personally.

We delete the data after statutory warranty and comparable obligations have expired, i.e. generally after 4 years, unless the data is stored in a customer account, e.g. for as long as it has to be kept for legal archiving reasons (e.g. for tax purposes usually 10 years). We delete data disclosed to us by the contractual partner as part of an order in accordance with the specifications of the order, generally after the end of the order.

Insofar as we use third-party providers or platforms to provide our services, the terms and conditions and data protection notices of the respective third-party providers or platforms apply in the relationship between the users and the providers.

Customer account: Contractual partners can create an account within our online offer (e.g. customer or user account, "customer account" for short). If it is necessary to register a customer account, contractual partners will be informed of this as well as of the information required for registration. Customer accounts are not public and cannot be indexed by search engines. As part of the registration and subsequent registrations and uses of the customer account, we store the IP addresses of the customers together with the access times in order to be able to prove the registration and to prevent any misuse of the customer account.

If customers have terminated their customer account, the data relating to the customer account will be deleted, subject to their retention being required for legal reasons. It is the customer's responsibility to back up their data upon termination of the customer account.

 

Analyzes and market research: For business reasons and in order to be able to identify market trends, the wishes of contractual partners and users, we analyze the data we have on business transactions, contracts, inquiries, etc., whereby the group of persons concerned includes contractual partners, interested parties, customers, visitors and users of our online offer can fall.

The analyzes are carried out for the purpose of business evaluations, marketing and market research (e.g. to determine customer groups with different characteristics). In doing so, we can, if available, take into account the profiles of registered users together with their information, e.g. on services used. The analyzes serve us alone and are not disclosed externally, unless they are anonymous analyzes with summarized, i.e. anonymous values. Furthermore, we take the privacy of the users into account and process the data for analysis purposes as pseudonymously as possible and, if feasible, anonymously (e.g. as summarized data).

 

Shop and e-commerce: We process the data of our customers in order to enable them to select, purchase or order the selected products, goods and associated services, as well as their payment and delivery or execution. If necessary for the execution of an order, we use service providers, in particular postal, forwarding and shipping companies, to carry out the delivery or execution for our customers. We use the services of banks and payment service providers to process payment transactions. The required information is marked as such in the context of the ordering or comparable acquisition process and includes the information required for delivery or provision and billing as well as contact information in order to be able to hold any consultation.

 

Agency services: We process our customers' data as part of our contractual services, including, for example, conceptual and strategic advice, campaign planning, software and design development/consulting or maintenance, implementation of campaigns and processes, handling, server administration, data analysis/consulting services and training services can belong.

 

Administration, financial accounting, office organization, contact management

We process data in accordance with the data protection regulations of the federal government (Data Protection Act, DSG) and the EU-DSGVO in the context of administrative tasks and organization of our operations, financial accounting and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process within the scope of providing our contractual services. The basis of processing is Art. 6 Para. 1 lit. c. GDPR, Art. 6 Para. 1 lit. f. GDPR. Customers, interested parties, business partners and website visitors are affected by the processing. The purpose and our interest in processing lies in administration, financial accounting, office organization, archiving of data, i.e. tasks that serve to maintain our business activities, perform our tasks and provide our services. The deletion of the data with regard to contractual services and contractual communication corresponds to the information given in these processing activities.

We disclose or transmit data to the financial administration, consultants such as tax consultants or auditors as well as other fee offices and payment service providers.

Furthermore, on the basis of our business interests, we store information on suppliers, organizers and other business partners, e.g. for the purpose of later contact. We store this mostly company-related data permanently.

 

Provision of our services according to statutes

We process the data of our members, supporters, interested parties, customers or other persons in accordance with the data protection regulations of the federal government (Data Protection Act, DSG) and the EU GDPR in accordance with Article 6 Paragraph 1 Letter b. DSGVO, insofar as we offer them contractual services or act within the framework of an existing business relationship, e.g. towards members, or are recipients of services and benefits ourselves. In addition, we process the data of affected persons in accordance with Article 6 Paragraph 1 lit. f GDPR on the basis of our legitimate interests, e.g. when it comes to administrative tasks or public relations work.

The data processed here, the type, scope and purpose and the necessity of their processing are determined by the underlying contractual relationship. This basically includes inventory and master data of the persons (e.g. name, address, etc.), as well as the contact data (e.g. e-mail address, telephone, etc.), the contract data (e.g. services used, content communicated and information, names of contact persons) and if we offer paid services or products, payment data (e.g. bank details, payment history, etc.).

We delete data that is no longer required to provide the statutory purposes. This is determined according to the respective tasks and contractual relationships. In the case of business processing, we keep the data for as long as they can be relevant for business transactions and with regard to any warranty or liability obligations. The necessity of storing the data is checked at irregular intervals. Otherwise, the statutory retention requirements apply.

 

Note on data transfer to the USA

Our website includes tools from companies based in the USA. When these tools are active, your personal data may be transferred to the US servers of the respective companies. We would like to point out that the USA is not a safe third country within the meaning of EU data protection law. US companies are obliged to release personal data to security authorities without you as the person concerned being able to take legal action against this. It can therefore not be ruled out that US authorities (e.g. secret services) will process, evaluate and permanently store your data on US servers for monitoring purposes. We have no influence on these processing activities.

 

copyrights

The copyright and all other rights to content, images, photos or other files on the website belong exclusively to the operator of this website or the specifically named rights holders. For the reproduction of all files, the written consent of the copyright holder must be obtained in advance.

Anyone who commits a copyright infringement without the consent of the respective rights holder may be liable to prosecution and may be liable for damages.

 

General Disclaimer

All information on this website has been carefully checked. We make every effort to ensure that the information we offer is up-to-date, correct in terms of content and complete. Nevertheless, the occurrence of errors cannot be completely ruled out, which means that we cannot guarantee the completeness, correctness and topicality of information, including that of a journalistic and editorial nature. Liability claims for damage of a material or immaterial nature caused by the use of the information provided are excluded unless there is evidence of intentional or grossly negligent fault.

The publisher can change or delete texts at its own discretion and without notice and is not obliged to update the content of this website. Use of or access to this website is at the visitor's own risk. The publisher, its clients or partners are not responsible for any damage, such as direct, indirect, accidental, damage to be specified in advance or consequential damage, which is alleged to have arisen from visiting this website and therefore assume no liability for this.

The publisher also assumes no responsibility and liability for the content and availability of third-party websites that can be accessed via external links on this website. The operators of the linked pages are solely responsible for their content. The publisher expressly distances himself from all third-party content that may be relevant under criminal or liability law or that violate common decency.

 

changes

We can adjust this data protection declaration at any time without prior notice. The current version published on our website applies. Insofar as the data protection declaration is part of an agreement with you, in the event of an update we will inform you of the change by e-mail or by other suitable means.

 

Questions to the data protection officer

If you have any questions about data protection, please send us an e-mail or contact the person responsible for data protection in our organization listed at the beginning of the data protection declaration.

 


Source:  Swiss Attorney

Contact
bottom of page