Responsible body within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:
Based on Article 13 of the Swiss Federal Constitution and the data protection regulations of the federal government (Data Protection Act, DSG), every person has the right to protection of their privacy and protection against misuse of their personal data. The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.
In cooperation with our hosting providers, we try to protect the databases as well as possible against unauthorized access, loss, misuse or falsification.
We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.
By using this website, you agree to the collection, processing and use of data as described below. This website can generally be visited without registration. Data such as the pages called up or the name of the file called up, the date and time are stored on the server for statistical purposes, without this data being directly related to your person. Personal data, in particular name, address or e-mail address, are collected on a voluntary basis as far as possible. The data will not be passed on to third parties without your consent.
Processing of personal data
Personal data is all information that relates to a specific or identifiable person. A data subject is a person about whom personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used, in particular the storage, disclosure, procurement, deletion, storage, modification, destruction and use of personal data.
We process personal data in accordance with Swiss data protection law. In addition, we process personal data in accordance with the following legal bases in connection with Art. 6 Para
- lit. a) Processing of personal data with the consent of the person concerned.
- lit. b) Processing of personal data to fulfill a contract with the person concerned and to carry out appropriate pre-contractual measures.
- lit. c) Processing of personal data to fulfill a legal obligation to which we are subject under any applicable EU law or under any applicable law of a country in which the GDPR is fully or partially applicable.
- lit. d) Processing of personal data to protect the vital interests of the data subject or another natural person.
- lit. f) Processing of personal data in order to protect our legitimate interests or those of third parties, provided that the fundamental freedoms and fundamental rights and interests of the person concerned do not prevail. Legitimate interests are in particular our business interest in being able to provide our website, information security, the enforcement of our own legal claims and compliance with Swiss law.
We process personal data for the duration necessary for the respective purpose or purposes. In the case of longer-lasting storage obligations due to legal and other obligations to which we are subject, we restrict processing accordingly.
This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from 'https://' to 'https://' and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.
Data protection declaration for server log files
The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- Browser type and browser version
- Operating system used
- Referrer URL
- Hostname of the accessing computer
- Time of server request
This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to subsequently check this data if we become aware of specific indications of illegal use.
Use of Google Maps
This website uses Google Maps API to visually display geographic information. When using Google Maps, Google also collects, processes and uses data about the use of the map functions by visitors. For more information about data processing by Google, please refer to the Google data protection notice. There you can also change your personal data protection settings in the data protection center.
You can find detailed instructions on how to manage your own data in connection with Google products here .
External payment service providers
This website uses external payment service providers, via whose platforms the users and we can carry out payment transactions. For example via
- PostFinance (https://www.postfinance.ch/de/detail/srechtes-barrierefreiheit.html)
- Visa (https://www.visa.de/bedingungen/visa-privacy-center.html)
- Mastercard (https://www.mastercard.ch/de-ch/datenschutz.html)
- American Express (https://www.americanexpress.com/en/content/privacy-policy-statement.html)
- Paypal (https://www.paypal.com/de/webapps/mpp/ua/privacy-full)
- Bexio AG (https://www.bexio.com/de-CH/datenschutz)
- Payrexx AG (https://www.payrexx.ch/site/assets/files/2592/datenschutzerklaerung.pdf)
- Apple Pay (https://support.apple.com/en-ch/ht203027)
- Stripe (https://stripe.com/ch/privacy)
- Klarna (https://www.klarna.com/de/datenschutz/)
- Skrill (https://www.skrill.com/en/footer/privacy-policy/)
- Giropay (https://www.giropay.de/rechts/datenschutz-agb/) etc.
As part of the fulfillment of contracts, we use the payment service providers on the basis of the Swiss Data Protection Ordinance and, if necessary, Art. 6 Para. 1 lit. b. EU GDPR. In addition, we use external payment service providers on the basis of our legitimate interests in accordance with the Swiss Data Protection Ordinance and, if necessary, in accordance with Article 6 Paragraph 1 lit. f. EU GDPR in order to offer our users effective and secure payment options.
The data processed by the payment service provider includes inventory data, such as name and address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums, as well as contract, total and recipient-related information. The information is required to carry out the transactions. However, the data entered will only be processed and stored by the payment service providers. We as the operator do not receive any information about the (bank) account or credit card, only information to confirm (accept) or reject the payment. Under certain circumstances, the payment service provider may transmit the data to credit agencies. The purpose of this transmission is to check identity and creditworthiness. For this we refer to the terms and conditions and data protection notices of the payment service providers.
The terms and conditions and data protection notices of the respective payment service provider, which can be accessed within the respective website or transaction applications, apply to the payment transactions. We also refer to this for the purpose of further information and the assertion of revocation, information and other data subject rights.
This website uses plugins from the Google-operated YouTube site. The site operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers will be established. The YouTube server is informed which of our pages you have visited.
If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.
Questions for the data protection officer
If you have any questions about data protection, please send us an email or contact the person responsible for data protection in our organization listed at the beginning of the data protection declaration.
Berne, December 9th, 2019
Translated from German version using Google Translate