Privacy policy

Data processing

When you visit our website, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file.

Personal data

The following data is collected without any action on your part and stored until it is automatically deleted:

·        IP address of the requesting computer,

·        Owner of the IP address range (usually your Internet access provider)

·        Date and time of access,

·        Name and URL of the retrieved file,

·        Website from which the access is made (referrer URL), if applicable with the search term used

·        Status code (e.g. error message)

·        Amount of data transferred in bytes

·        If applicable, your user name from a registration/authentication 

·        Browser type and browser version as well as other information transmitted by the browser (such as the operating system of your computer, the name of your access provider, geographical origin, location, language setting, etc.).

·        the subpages that are accessed via an accessing system on our website, and

·        other similar data and information used for security purposes in the event of attacks on our IT systems.

Purpose

The data in question is processed for the following purposes:

·        Ensuring a smooth connection to the website

·        Ensuring a comfortable use of our website

·        Evaluation of system security and stability and for other administrative purposes

·        Improvement and further development of our business and our services

Processor

Our website is hosted on servers of Shopify International Ltd, 2nd Floor 1-2 Victoria Buildings, Haddington Road, D04 XN32 Dublin 4, Ireland ("Shopify"). The cloud runs on Shopify's own servers in the EU. Our website also receives technical support from Tradeum GmbH, Bundesplatz 9, CH-6300 Zug, Switzerland ("Tradeum"). Shopify and Tradeum may have access to the website and thus to your personal data in the event of support.

Ensuring data protection

Processing by Shopify and Tradeum takes place in Switzerland and the EU. We have concluded a data processing agreement with our processors.

The transfer of European or Swiss personal data to Shopify may result in this data being transferred to its parent company in Canada or to third parties in a country that does not have equivalent data protection. We have agreed with Shopify that a transfer to Canada will be based on equivalent data protection laws or, if such laws do not exist, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures. By visiting our website, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 17 FADP and Art. 49 para. 1 lit. a GDPR.

Data protection declaration of the processors

Shopify: https://www.shopify.com/ch/legal/datenschutz

Tradeum: https://www.tradeum.ch/privacy-policy

Legal basis

There is an overriding private interest in the processing of your personal data in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. f GDPR.

Necessity

This information is necessary for the functioning of the website.

Storage period

At the end of your session, the data will be deleted, but we will retain the log in accordance with legal requirements.

Data processing

On our website, we offer you the opportunity to contact us directly by telephone and E-Mail. The reason for contacting us may be, for example, questions about offers, orders, shipping services, payments and invoices or questions on other topics or feedback. We do not record conversations.

Personal data

The following information can be entered:

·        First name and surname

·        E-Mail address

·        Address

·        Telephone number

·        Possibly your customer number

·        Information that you provide in writing or verbally

Purpose

The data in question is processed for the following purposes:

·      Contact us

·      Answering your enquiry

Processor

Telephone services from Swisscom (Switzerland) Ltd, Alte Tiefenaustrasse 6, 3050 Bern, Switzerland ("Swisscom"), and E-Mail services (Microsoft Outlook) from Microsoft Ireland Operations Ltd ("Microsoft"), South County Business Park, One Microsoft Place, D18P521, Leopardstown, Ireland.

Ensuring data protection

Processing takes place in Switzerland and the EU. We have concluded a data processing agreement with our data processors.

The transfer of European or Swiss personal data to Microsoft may result in Microsoft transferring data to its parent company in the USA or to third parties in a country that does not have an equivalent level of data protection. Microsoft Corporation (USA) is a participant in the Swiss-U.S. Data Privacy Framework. In relation to the Swiss-U.S. Data Privacy Framework Agreement, Microsoft Corporation is HR and non-HR data certified. This means that your personal data can be transferred to Microsoft (USA) in the USA without the need for additional guarantees. We have agreed with Microsoft that a transfer to the USA will be based on the Swiss - U.S. Data Privacy Framework or, should it be declared invalid or inapplicable, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures. By giving your consent to this privacy policy, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 17 para. 1 lit. a FADP.

Data protection declarations of the processors

Swisscom: https://www.swisscom.ch/de/privatkunden/rechtliches/datenschutz.html

Microsoft: https://www.microsoft.com/de-de/privacy/privacystatement

Legal basis

This data processing is carried out on the basis of contractual or pre-contractual measures in accordance with Art. 31 para. 2 lit. a FADP or Art. 6 para. 1 sentence 1 lit. b GDPR.

Necessity

This processing activity is not necessary for the functionality of the website.

Storage period

The data stored for the purpose of establishing contact will be deleted after final processing, unless we are subject to a statutory retention obligation (usually 5 or 10 years).

Data processing

You can contact us using the contact form provided on our website. This can be accessed via the following link: https://fashion4all-tm.com/pages/contact.  

Personal data

The following information must be provided:

·        First name and surname

·        E-Mail address

·        Telephone number

·        Your customer number, customer card number or order number

·        Your message/feedback

·        Type of feedback required

Purpose

The data in question is processed for the following purposes:

·        Contact us

·        Answering your enquiry

Processor

We use the following software and service providers to process your enquiry via the contact form:

We use the e-commerce system of Shopify International Ltd, 2nd Floor 1-2 Victoria Buildings, Haddington Road, D04 XN32 Dublin 4, Ireland ("Shopify") to transmit the forms to us. The cloud runs on Shopify's own servers in the EU.

Ensuring data protection

Processing takes place in Switzerland and the EU. We have concluded a data processing agreement with our processor.

The transfer of European or Swiss personal data to Shopify may result in this data being transferred to its parent company in Canada or to third parties in a country that does not have equivalent data protection. We have agreed with Shopify that a transfer to Canada will be based on equivalent data protection laws or, if such laws do not exist, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures. By submitting your enquiry, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 17 FADP and Art. 49 para. 1 lit. a GDPR.

Privacy policy of the processor

https://www.shopify.com/ch/legal/datenschutz

Legal basis

This data processing is carried out on the basis of contractual or pre-contractual measures in accordance with Art. 31 para. 2 lit. a FADP or Art. 6 para. 1 sentence 1 lit. b GDPR.

Necessity

This processing activity is not necessary for the functionality of the website.

Storage period

The data stored for the purpose of answering your enquiry and contacting you will be deleted after final processing, unless we are subject to a statutory retention obligation (usually 5 or 10 years).

Data processing

We offer the option of accessing an online customer account linked to your E-Mail for the recording and processing of orders. The customer account is used to administer your orders. In addition to managing your profile data, you can also manage past orders, inventory data and newsletter preferences.

Personal data

In particular, the following data may be processed during this process:

·        First name and surname

·        E-Mail address

·        Address

·        Possibly telephone number

·        Correspondence language

·        Company details

·        User details

If you register using Single Sign-On, the following data in particular can be processed:

·         First name and surname

·         E-Mail address

·         Profile picture and further information on the respective user profile

·         Usage behaviour

Purpose

The purpose of this processing is the fulfilment of the contract and the simplified, more efficient and customer-friendly processing of services.  

Processor

We use the e-commerce system of Shopify International Ltd, 2nd Floor 1-2 Victoria Buildings, Haddington Road, D04 XN32 Dublin 4, Ireland ("Shopify") to set up and manage a customer account. The cloud runs on Shopify's own servers in the EU.

Ensuring data protection

Processing takes place in Switzerland and the EU. We have concluded a data processing agreement with our processor.

The transfer of European or Swiss personal data to Shopify may result in this data being transferred to its parent company in Canada or to third parties in a country that does not have equivalent data protection. We have agreed with Shopify that a transfer to Canada will be based on equivalent data protection laws or, if such laws do not exist, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures. By submitting your enquiry, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 17 FADP and Art. 49 para. 1 lit. a GDPR.

Privacy policy of the processor

https://www.shopify.com/ch/legal/datenschutz

Legal basis

We process the data on the basis of your consent in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 lit. a GDPR. Furthermore, it is carried out on the basis of contractual or pre-contractual measures in accordance with Art. 31 para. 2 lit. a FADP or Art. 6 para. 1 sentence 1 lit. b GDPR.

Necessity

This processing activity is necessary for the provision of services. However, the creation of a customer account is not necessary or required for the use of our website.

Storage period

We retain the data used to process your order for at least the duration of the contract. We are legally obliged to keep business documents and accounting records for 10 years. We reserve the right to retain them for longer in order to assert our rights.

Data processing

When you visit our website, we display information and input fields and offer you the opportunity to register for a newsletter on our website (sign-up forms) if you decide to register. You can also sign up for our newsletter via the pop-up window using your E-Mail address or telephone number.

We use the newsletter to inform you by E-Mail or via other communication channels (e.g. social media) about us and our offers and promotions. Registration for the newsletter is only definitive with a double opt-in: after you have registered on our website, you will receive an E-Mail or text message in which you must click on or confirm that you wish to receive a newsletter. If you do not wish to do this, ignore the confirmation E-Mail or text message.

Personal data

We collect the following information for the registration and dispatch of the newsletter:

·        Salutation

·        First name and surname

·        E-Mail address

·        Telephone number

We then process data that can be used to determine whether a newsletter message has been opened and which links, if any, have been clicked on. Technical information is also collected, such as:

·        Time of the call

·        IP address

·        Browser type

·        Click behaviour

·        Operating system

Purpose

The personal data in question is processed for the purpose of sending the newsletter and analysing the newsletter.

Processor

To send the newsletter, we use the e-commerce system of Shopify International Ltd, 2nd Floor 1-2 Victoria Buildings, Haddington Road, D04 XN32 Dublin 4, Ireland ("Shopify"). The cloud runs on Shopify's own servers in the EU. The names and E-Mail addresses of our newsletter recipients are stored on Shopify's servers. Shopify uses this information to send and analyse the newsletter on our behalf.  

Ensuring data protection

Processing takes place in Switzerland and the EU. We have concluded a data processing agreement with our processor.

The transfer of European or Swiss personal data to Shopify may result in this data being transferred to its parent company in Canada or to third parties in a country that does not have equivalent data protection. We have agreed with Shopify that a transfer to Canada will be based on equivalent data protection laws or, if such laws do not exist, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures. By agreeing to receive the newsletter, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 17 FADP and Art. 49 para. 1 lit. a GDPR.

Privacy policy of the processor

https://www.shopify.com/ch/legal/datenschutz

Legal basis

The provision of your data is voluntary. Your personal data will be processed with your express consent in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. a GDPR, which you give by double opt-in. If you wish to unsubscribe from the newsletter at a later date, you can either click on the unsubscribe link that is sent to you at with every E-Mail newsletter or send us a text message with "STOP". You can also contact us at the above E-Mail address or by post. The legality of the data processing operations that have already taken place remains unaffected by the cancellation.

Necessity

This processing activity is not necessary for the functionality of the website.

Storage period

The data stored for the purpose of the newsletter subscription will be stored by us until you unsubscribe from the newsletter. After you unsubscribe, your data will be deleted from our servers and from Shopify's servers, unless we have the data in connection with other lawful processing activities.

Data processing

You have the opportunity to make reviews and testimonials on our website, as well as ask questions about the products we sell or about our company. This allows us to collect customer reviews and publish them on our website.

You can also send complaints (e.g. regarding customer complaints, supplier errors or internal errors) to us via the E-Mail address fashion4all-tm-service@outlook.com.

Personal data

The following personal data is processed:

·        First name and surname

·        E-Mail address

·        Telephone number

·        Data about your order

·        Your message for complaints

·        Review (rating or question)

·        Photos or videos (optional)

·        Social media profiles (optional)

Purpose

The purpose of this data processing is the management of complaints and thus serves to improve and maintain customer satisfaction.

Processor

We use the e-commerce system of Shopify International Ltd, 2nd Floor 1-2 Victoria Buildings, Haddington Road, D04 XN32 Dublin 4, Ireland ("Shopify") to collect feedback on both the services provided and our company and to continuously improve our offering. The cloud runs on Shopify's own servers in the EU.

We also use the software of Judge.me Ltd, Buckworths 2nd Floor, 1-3 Worship Street, London, England, EC2A 2AB ("Judge.me") for the submission of reviews for our products.

Ensuring data protection

Processing takes place in Switzerland, the EU and the UK. We have concluded a data processing agreement with our data processors.

The transfer of European or Swiss personal data to Shopify may result in this data being transferred to its parent company in Canada or to third parties in a country that does not have equivalent data protection. We have agreed with Shopify that a transfer to Canada will be based on equivalent data protection laws or, if such laws do not exist, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures. By submitting your request, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 17 FADP and Art. 49 para. 1 lit. a GDPR. The data protection provisions of the UK GDPR apply to the transfer of data to Judge.me.

Data protection declaration of the processors

https://www.shopify.com/ch/legal/datenschutz

https://judge.me/privacy

Legal basis

This data processing is carried out on the basis of contractual or pre-contractual measures in accordance with Art. 31 para. 2 lit. a FADP or Art. 6 para. 1 sentence 1 lit. b GDPR.

Necessity

The processing of this data is necessary for the acceptance of reviews.

Storage period

We will retain your review data at least until it is deleted by us. We are legally obliged to keep business documents and accounting records for 10 years. We reserve the right to retain them for longer in order to assert our rights.

Data processing

We process the data provided by you in order to process your order. This includes consultations, orders, returns, delivery (including by our manufacturers and partners), processing by our service team and for the purpose of debt collection or legal enforcement. We use the Shopify e-commerce system to process your data. You can place an order using your customer account or as a guest. In doing so, we may pass on your data to our processors and third parties. Your data will be shared with a processor or third party in one or more of the following categories:

·        Manufacturers and suppliers

·        Freight forwarders, distributors and logistics partners

·        Authorities and courts

·        Partners for the management and processing of order data and synchronisation with other databases

When you pay online, your data is collected by us and sent to the payment service provider(s) to process the payment order. We then only store the transaction number and not your full card details. Once payment has been made, you will receive the invoice as a pdf link.

Personal data

We process the following data to process your order:

·         E-Mail address

·         Salutation

·         First name and surname

·         Street and house number

·         Postcode

·         Location

·         Country

·         Mobile number/phone

·         Password (when creating a customer account)

·         Payment details (depending on the payment method selected)

·         Login data, i.e. E-Mail address and passwords (for registered customers)

·         Your details for personalised products (e.g. address labels)

Purpose

The purpose of processing your data is to process and deliver your order and to enforce any legal claims.

Processor

We use the Shopify e-commerce system to provide the online shop. The provider of this service is Shopify International Ltd, 2nd Floor 1-2 Victoria Buildings, Haddington Road, D04 XN32 Dublin 4, Ireland ("Shopify"). The system is supported by Tradeum GmbH, Bundesplatz 9, CH-6300 Zug, Switzerland ("Tradeum"). This company has access to the shop and therefore to your personal data for support and maintenance purposes.

Furthermore, we use the payment platforms TWINT from TWINT AG, Stauffacherstrasse 41, 8004 Zurich, Switzerland ("TWINT") and Stripe Inc, 510 Townsend Street, San Francisco, CA 94103, USA ("Stripe") and PayPal from PayPal Pte. Ltd, 12312 Port Grace Boulevard, La Vista, Nebraska 68128, USA ("PayPal") to process your online payment.

The payment data collected for this purpose will be forwarded to TWINT, Stripe and PayPal and to the credit institution commissioned with the payment.

We use Order Printer Pro from Shop Circle LTD, One Kingdom Street, Paddington Central, London, W2 6BD, United Kingdom, 411877690 ("Order Printer Pro") to generate and send the invoice.

The order data collected for this purpose is forwarded to Order Printer Pro to generate the invoice.  

Ensuring data protection

Processing by the payment platforms takes place in Switzerland and the EU or in the context of processing your order in the UK. We have concluded a data processing agreement with our data processors.

The transfer of European or Swiss personal data to PayPal and Stripe may result in the latter transferring data to its parent companies in the USA or to third parties in a country that does not have an equivalent level of data protection. Stripe Inc. is a participant in the Swiss-U.S. and E.U.-US Data Privacy Frameworks. In relation to the E.U. and Swiss-U.S. Data Privacy Framework Agreement, Stripe is HR and non-HR data certified. This means that your personal data can be transferred to Stripe (USA) in the USA without the need for additional guarantees. We have agreed with Stripe that a transfer to the USA will be based on the E.U. or Swiss - US Data Privacy Framework or, should these be declared invalid or inapplicable, on so-called standard contractual clauses as well as appropriate and proportionate technical and organisational measures. PayPal and its affiliates are not participants in the EU-U.S. and Swiss-U.S. Data Privacy Frameworks. Your data is therefore not subject to a level of data protection in relation to PayPal in the USA that is comparable to that in Switzerland or the EU. By giving your consent to this privacy policy, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 17 para. 1 lit. a FADP.  The data protection provisions of the UK GDPR apply to the transfer of data to Shop Circle LTD.

Data protection declaration of the processors

TWINT: https://www.twint.ch/datenschutz-app/
Stripe: https://stripe.com/de-ch/privacy

PayPal: https://www.paypal.com/myaccount/privacy/privacyhub

Order Printer Pro: https://shopcircle.co/pages/privacy-policy

Legal basis

This data processing is carried out on the basis of contractual or pre-contractual measures in accordance with Art. 31 para. 2 lit. a FADP or Art. 6 para. 1 sentence 1 lit. b GDPR. As soon as you have consented to this privacy policy, we will also process your personal data on the basis of your express consent in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. a GDPR.

Necessity

The processing of this data is not necessary for the functionality of the website.

Storage period

We retain the data used to process your order for at least the duration of the contract. We are legally obliged to keep business documents and accounting records for 10 years. We reserve the right to retain them for longer in order to assert our rights.

Data processing

We use Google Tag Manager ("GTM") from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google") on our website. GTM is a tag management system that integrates tags in a standardised way via a user interface. Tags are short sections of source code that can track activity and access other systems to centrally control when certain systems are triggered. The Google Marketing Platforms (Double Click and Google Analytics), Google Ads Remarketing, Scarab Research by Emarsys and Meta Pixel are integrated into GTM. This means that GTM is merely an interface between the website and the analytics software. You can prevent the setting of tags in your browser settings at any time. Further information on these systems and their data processing can be found in the following sections.

Personal data

GTM ensures the activation of other tools, which in turn collect personal data. Depending on the integrated tool, GTM collects IP addresses from website visitors and passes them on to the analysis programmes. Further information on the individual data processing operations can be found in the following sections.

Purpose

We process your personal data for marketing and analysis purposes. We evaluate your user behaviour, carry out conversion tracking, compile statistics and optimise our advertising channels and approaches.

Ensuring data protection

Your personal data will generally be processed by Google in Switzerland. The transfer of personal data to Google may result in the transfer of data to its parent company in the USA or to third parties in a country that does not have an equivalent level of data protection. We have agreed with Google that a transfer to the USA will be based on the E.U.- US or Swiss - US Data Privacy Framework or, should it be declared invalid or inapplicable, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures. By submitting your enquiry, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 17 FADP and Art. 49 para. 1 lit. a GDPR.

Privacy policy of the processor

policies.google.com/privacy?hl=en   

Legal basis

The use of GTM is based on our overriding private interest in accordance with Art. 31 para. 1 FADP and Art. 6 para. 1 sentence 1 lit. f GDPR. As soon as you have consented to this privacy policy, we process your personal data on the basis of your consent in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. a GDPR.

Necessity

This processing activity is not necessary for the functionality of the website.

Storage period

Your data is stored on the end device for up to two years, unless it is renewed.

Data processing

We use Google Analytics on our website, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). Cookies are used to create pseudonymised user profiles. The data is stored on the end device, anonymised and evaluated in the form of statistics.

Personal data

The following data is processed in connection with the Google Analytics web analysis service:    

·        Masked IP address of the requesting computer

·        Date and time of access

·        Website from which the access is made (referrer URL)

·        Browser type and browser version

·        Number of visits/users

·        Statistics of the meeting

Expansion of demographic characteristics and interests:

·        Age: 18-24, 25-34, 35-44, 45-54, 55-64, 65+

·        Gender: Male, Female

·        Categories of common interests

·        Segments with target groups ready to buy

·        Other categories that offer the most specific view of users possible

Three permanent Google Analytics cookies are used for this purpose (_gat, _gid, _ga), which are automatically deleted after a defined period of time. The recorded IP addresses are anonymised by Google Analytics (so-called IP masking). Only in exceptional cases is the full IP address transmitted to a Google server in the USA and truncated there.

Purpose

We use Google Analytics to analyse errors and to constantly improve the services on our website by means of statistical analysis.

Ensuring data protection

Your personal data will generally be processed by Google in Switzerland. The transfer of personal data to Google may result in the transfer of data to its parent company in the USA or to third parties in a country that does not have an equivalent level of data protection. We have agreed with Google that a transfer to the USA will be based on the E.U.- US or Swiss - US Data Privacy Framework or, should it be declared invalid or inapplicable, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures. By submitting your enquiry, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 17 FADP and Art. 49 para. 1 lit. a GDPR.

Privacy policy of the processor

support.google.com/analytics/answer/6004245?hl=en

Legal basis

Data processing is based on your express consent in accordance with Art. 31 para. 1 FADP and Art. 6 para. 1 sentence 1 lit. a GDPR.

Necessity

This processing activity is not necessary for the functionality of the website.

Storage period

Your data is stored on the end device for up to two years, unless it is renewed.

Data processing

We have integrated Google Ads incl. Google Remarketing from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google") on our website. These internet advertising services allow advertisers to place adverts in the search engine results of Google as well as in the Google advertising networks ("conversion tracking"). Google Ads allows an advertiser to pre-define certain keywords that are used to display an advert in Google's search engine results only when the user uses the search engine to retrieve a keyword-relevant search result. In the Google advertising network, the adverts are distributed to relevant websites using an automatic algorithm and taking into account the previously defined keywords. With Google Ads remarketing (GA audience), visitors to our website are added to lists that we can use to address you again as a potential customer. As a user on the remarketing lists, we can place targeted adverts for you.

Personal data

Conversion cookies are used to store personal data, such as the websites visited by the data subject. The following personal data is therefore processed each time our website is visited:

·        Click path

·        IP address

·        Cookie IDs

·        Unique identifier of the mobile device-    

·        Number of visits/users

·        Transactions-

·        Usage data

Purpose

The purpose of these ad services is to advertise our website by displaying interest-relevant adverts on the websites of third-party companies and in the search engine results of the Google search engine and by displaying third-party adverts on our website.

Ensuring data protection

Your personal data will generally be processed by Google in Switzerland. The transfer of personal data to Google may result in the transfer of data to its parent company in the USA or to third parties in a country that does not have an equivalent level of data protection. We have agreed with Google that a transfer to the USA will be based on the E.U.- US or Swiss - US Data Privacy Framework or, should it be declared invalid or inapplicable, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures. By submitting your enquiry, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 17 FADP and Art. 49 para. 1 lit. a GDPR.

Privacy policy of the processor

support.google.com/google-ads/answer/12929169?hl=en   

Legal basis

Data processing is based on our overriding private interest in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. f GDPR. As soon as you have consented to this privacy policy, we will also process your personal data on the basis of your express consent in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. a GDPR.

Necessity

This processing activity is not necessary for the functionality of the website.

Storage period

The retention period is generally 13 months.

Data processing

We have integrated Meta Pixel (incl. Facebook Custom Audience) and Meta Ads from Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Meta") on our website. These internet advertising services allow advertisers to place adverts on both the Facebook platforms and the Meta advertising networks ("conversion tracking"). Meta Pixel enables us to place targeted adverts on the Facebook platform and address a relevant target audience. This can include sponsored content, sponsored messaging, dynamic ads or text ads. With Facebook Custom Audience, visitors to our website are added to lists that we can use to address you again as a potential customer. As a user on the remarketing lists, we can place targeted adverts for you.

Personal data

If you contact us via our social media profile or click on a social media button, the following information will be collected from you:

·         User behaviour

·         IP address

·         Connection data

·         Device and browser information

·         Data about the content accessed when clicking on the social media button

·         User name or first and last name

·         Any images, data that you send us in the course of contacting us

By clicking on the social media button, you will be redirected to the provider's website. We have no influence on the processing of personal data on third-party websites.

Purpose

If you contact us via our social media profile, we will process the data for the purpose of responding to your enquiry. The social media buttons are used to structure our website.

Ensuring data protection

We are joint controllers with Meta in accordance with Art. 26 GDPR, but only with regard to the collection and transmission of data. Meta is solely responsible for the subsequent processing of the information by Meta. We have concluded a joint controllership agreement with Meta to determine the respective responsibilities for the fulfilment of obligations under the GDPR. Accordingly, we are responsible for providing information to users of our website, while Meta is responsible for fulfilling requests regarding the rights of data subjects in accordance with Art. 15 to 21 GDPR. However, within the framework of joint controllership, you can in principle assert your data subject rights against each of the joint controllers. You can find out more about the joint controllership agreement here: https://de-de.facebook.com/legal/controller_addendum.

The transfer of European or Swiss Personal Data to Meta may result in Meta transferring data to its parent company in the United States or to third parties in a country that does not have an equivalent level of data protection. We have agreed with Meta that a transfer to the USA will be based on the E.U.- US or Swiss - US Data Privacy Framework (hereinafter Data Privacy Framework) or, should the Data Privacy Framework be declared invalid or inapplicable, based on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures.

Privacy policy of the processor

https://www.facebook.com/privacy/policy/

Legal basis

If you contact us via one of our social media profiles, we process your data based on our overriding private interest in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. f GDPR in order to provide a means of communication.

Necessity

This processing activity is not necessary for the functionality of the website.

Storage period

The retention period for Meta Pixel is generally 90 days.

Data processing

In order to make our website more interesting for you, we integrate video components from YouTube on our website. The data from YouTube is processed by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). According to YouTube, in "extended data protection mode" your data - in particular which of our websites you have visited and device-specific information including the IP address - is only transmitted to the YouTube server in the USA when you watch the video. If you are logged in to YouTube at the same time, this information will be assigned to your YouTube member account. You can prevent this by logging out of your member account before visiting our website.

Personal data

If the data subject is logged in to YouTube at the same time, YouTube recognises which specific sub-page of our website the data subject is visiting when a sub-page containing a YouTube video is accessed. This information is collected by YouTube and Google and assigned to the respective YouTube account of the data subject.

Purpose

Our interest lies in the smooth integration of the videos and the appealing design of our website.

Ensuring data protection

Your personal data will generally be processed by Google in Switzerland. The transfer of personal data to Google may result in the transfer of data to its parent company in the USA or to third parties in a country that does not have an equivalent level of data protection. We have agreed with Google that a transfer to the USA will be based on the E.U.- US or Swiss - US Data Privacy Framework or, should it be declared invalid or inapplicable, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures. By submitting your enquiry, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 17 FADP and Art. 49 para. 1 lit. a GDPR.

Privacy policy of the processor

https://policies.google.com/privacy?hl=de

Legal basis

Data processing is carried out with your express consent in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. a GDPR, which you have given by clicking on the YouTube button.

Necessity

This processing activity is not necessary for the functionality of the website.

Storage period

The storage period is based on the information in Google's privacy policy, available at https://policies.google.com/privacy?hl=de#inforetaining.

Data processing

So that you can communicate with us, we operate a social media profile on Instagram under Instagram and a Facebook profile under Facebook. You can contact us via these profiles. We have also placed a social media button on our website so that you can easily link to our respective profile. This is not a plugin, but simply an icon with a link. Meta does not process any of your personal data on our website in this context.

Personal data

If you contact us via our social media profiles or click on a social media button, the following information will be collected from you:  

·        User behaviour

·        IP address

·        Connection data

·        Device and browser information

·        Data about the content accessed when clicking on the social media button

·        User name or first and last name

·        Any images, data that you send us in the course of contacting us

By clicking on the social media button, you will be redirected to the provider's website. We have no influence on the processing of personal data on third-party websites.

Purpose

If you contact us via our social media profile, we will process the data for the purpose of responding to your enquiry. The social media buttons are used to structure our website.

Ensuring data protection

We are joint controllers with Meta in accordance with Art. 26 GDPR, but only with regard to the collection and transmission of data. Meta is solely responsible for the subsequent processing of the information by Meta. We have concluded a joint controllership agreement with Meta to determine the respective responsibilities for the fulfilment of obligations under the GDPR. Accordingly, we are responsible for providing information to users of our website, while Meta is responsible for fulfilling requests relating to the rights of data subjects in accordance with Art. 15 to 21 GDPR. However, within the framework of joint controllership, you can in principle assert your data subject rights against each of the joint controllers. You can find out more about the joint controllership agreement here: https://de-de.facebook.com/legal/controller_addendum.

The transfer of Personal Data to Meta may result in the transfer of data to its parent company in the United States or to third parties in a country that does not have an equivalent level of data protection. We have agreed with Meta that a transfer to the USA will be based on the E.U.- US or Swiss - US Data Privacy Framework (hereinafter Data Privacy Framework) or, should the Data Privacy Framework be declared invalid or inapplicable, based on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures.

Privacy policy of the processor

Instagram: https://help.instagram.com/155833707900388 

Facebook: https://www.facebook.com/privacy/policy/

Legal basis

If you contact us via one of our social media profiles, we process your data based on our overriding private interest in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. f GDPR in order to provide a means of communication. By submitting your enquiry, you also consent to data processing in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. a GDPR and to the transfer to insecure third countries in accordance with Art. 17 FADP or Art. 49 para. 1 lit. a GDPR. Meta is solely responsible for the subsequent processing of the information by Meta.

Necessity

This processing activity is not necessary for the functionality of the website.

Storage period

Data processed in connection with your contact will be deleted after 1 year, unless we are obliged to retain the communication for 5 or 10 years. The retention period by Meta is based on their privacy policy.

Data processing

So that you can communicate with us, we operate a social media profile on Pinterest from Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland ("Pinterest"), under Pinterest . We have also placed a Pinterest social media button on our website so that you can easily link to our Pinterest profile. This is not a plugin, but only an icon with a link. Pinterest does not process any of your personal data on our website in this context.

Personal data

If you contact us via our social media profile or click on a social media button, the following information will be collected from you:

·         User behaviour

·         IP address

·         Connection data

·         Device and browser information or app information

·         Data on the content accessed

·         User name or first and last name

·         Possibly picture, data that you send us in the course of contacting us

By clicking on the button, you will be redirected to the provider's website. We have no influence on the processing of personal data on third-party websites.

Purpose

The Pinterest social media button is used to structure our website and is used to place other web content on our website. If you contact us via Pinterest, we will process the data for the purpose of responding to your enquiry.

Ensuring data protection

Pinterest shares its data with the parent company Pinterest Inc, 651 Brannan Street, San Francisco, CA 94107, USA. Pinterest Inc. and its affiliated companies. Pinterest is a participant in the EU-U.S. and Swiss-U.S. Data Privacy Frameworks. With regard to the Swiss-U.S. Data Privacy Framework Agreement, Pinterest is HR and non-HR data certified. This means that your personal data can be transferred to Pinterest (USA) in the USA without the need for additional guarantees. We have agreed with Pinterest that a transfer to the USA will be based on the E.U. or Swiss - US Data Privacy Framework or, should it be declared invalid or inapplicable, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures.  If you contact us via Pinterest or click on the Pinterest button, you therefore also consent to your data being transferred to the USA in accordance with Art. 17 FADP or Art. 49 para. 1 lit. a GDPR.

Privacy policy of the processor

https://policy.pinterest.com/de/privacy-policy

Legal basis

If you contact us via one of our social media profiles, we process your data based on our overriding private interest in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. f GDPR in order to provide a means of communication. By submitting your enquiry, you also consent to data processing in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. a GDPR and to the transfer to insecure third countries in accordance with Art. 17 FADP or Art. 49 para. 1 lit. a GDPR.

Necessity

The data mentioned is not required for the website functionality.

Storage period

The retention period is based on the information in Pinterest's privacy policy.

Data processing

Our website uses a font from Google Fonts, a font service operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google").

Personal data

Each time this website is accessed, files are loaded from a Google server to display the texts in a specific font. Your IP address may be transmitted to a Google server and stored as part of the usual weblog.

Purpose

The purpose of this data processing is the correct presentation of the text on the website.

Ensuring data protection

Your personal data will generally be processed by Google in Switzerland. The transfer of personal data to Google may result in the transfer of data to its parent company in the USA or to third parties in a country that does not have an equivalent level of data protection. We have agreed with Google that a transfer to the USA will be based on the E.U.- US or Swiss - US Data Privacy Framework or, should it be declared invalid or inapplicable, on so-called standard contractual clauses and appropriate and proportionate technical and organisational measures. By submitting your enquiry, you also consent to your personal data being transferred to insecure third countries in accordance with Art. 49 para. 1 lit. a GDPR or Art. 17 FADP.

Privacy policy of the processor

https://policies.google.com/privacy?hl=de

Legal basis

The processing takes place with your express consent in accordance with Art. 31 para. 1 FADP or Art. 6 para. 1 sentence 1 lit. a GDPR.

Necessity

This processing activity is not necessary for the functionality of the website.

Storage period

The retention period is based on the information in Google's privacy policy, available at: https://policies.google.com/privacy?hl=de#inforetaining.

Right to information

to request information about your personal data processed by us. In particular, information in accordance with Art. 25 ff. FADP or Art. 15 GDPR may contain information:

·        on the purposes of processing

·        the category of personal data

·        the categories of recipients to whom your data has been or will be disclosed

·        the planned storage period

·        the existence of a right to rectification, erasure, restriction of processing or objection

·        the existence of a right of appeal

·        the origin of your data if it was not collected by us

·        the existence of automated decision-making, including profiling and, where applicable, meaningful information about its details

Right of rectification

immediately request the correction of incorrect or incomplete personal data stored by us (Art. 32 para. 1 FADP or Art. 16 GDPR).

Right to restriction of processing

to demand the restriction of the processing of your personal data if the accuracy of the data is disputed by you, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you need it for the assertion, exercise or defence of legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR (Art. 32 FADP or Art. 18 GDPR);

Right to data disclosure and transfer

to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request the transfer to another controller (Art. 28 FADP or Art. 20 GDPR);

Right of deletion

to request the deletion of your personal data stored by us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims (Art. 32 DSG in conjunction with Art. 28 ZGB or Art. 17 DSGVO);

Revocation of consent

to revoke your consent once given to us at any time. As a result, we may no longer continue the data processing that was based on this consent in the future (Art. 30 para. 2 lit. b FADP and Art. 7 para. 3 GDPR);

Right of objection

object to the processing if your personal data are processed on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR (Art. 21 GDPR) and if there are reasons for this arising from your particular situation or if the objection is directed against direct advertising. In the latter case, you have a general right to object, which will be implemented by us without specifying a particular situation;

Complaint to the supervisory authority

to lodge a complaint with a supervisory authority (see above) (Art. 49 FADP and Art. 77 GDPR).