Data Policy
Data Controller in accordance with data protection laws, especially the EU General Data Protection Regulation (GDPR), is:
Greera
Rebecca Schäpper
Email: greeracrochet@gmail.com
General Notice
Based on Article 13 of the Swiss Federal Constitution and the data protection provisions of the Federal Act on Data Protection (FADP), every individual is entitled to the protection of their privacy and to protection against the misuse of their personal data. The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this Privacy Policy.
In collaboration with our hosting providers, we make every effort to protect the databases from unauthorized access, loss, misuse, or forgery to the greatest extent possible.
We would like to point out that data transmission over the internet (e.g., communication by email) can have security vulnerabilities. A complete protection of data against access by third parties is not possible.
By using this website, you consent to the collection, processing, and use of data as described below. This website can be visited without registration. In this case, data such as pages visited or the name of the accessed file, date and time are stored on the server for statistical purposes, without directly relating these data to your person. Personal data, especially name, address, or email address, is collected on a voluntary basis as far as possible. No data will be disclosed to third parties without your consent.
Processing of Personal Data
Personal data refers to all information relating to a specific or identifiable person. An affected person is a person whose personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used, especially the storage, disclosure, acquisition, deletion, storage, modification, destruction, and use of personal data.
We process personal data in accordance with Swiss data protection law. Furthermore, we process personal data – to the extent and insofar as the GDPR is applicable – based on the following legal principles related to Article 6(1) GDPR:
Consent (Article 6(1)(a) GDPR) - The data subject has given consent to the processing of personal data for one or more specific purposes.
Performance of a contract and pre-contractual inquiries (Article 6(1)(b) GDPR) - Processing is necessary for the performance of a contract to which the data subject is party or to take steps at the request of the data subject prior to entering into a contract.
Legal obligation (Article 6(1)(c) GDPR) - Processing is necessary for compliance with a legal obligation to which the controller is subject.
Protection of vital interests (Article 6(1)(d) GDPR) - Processing is necessary to protect the vital interests of the data subject or of another natural person.
Legitimate interests (Article 6(1)(f) GDPR) - Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.
Application process as part of pre-contractual or contractual relationship (Article 9(2)(b) GDPR) - Insofar as special categories of personal data within the meaning of Article 9(1) GDPR (e.g., health data, such as disability status or ethnic origin) are requested from applicants as part of the application process, their processing is carried out in accordance with Article 9(2)(b) GDPR, for the purpose of exercising the rights and fulfilling the obligations of the controller or of the data subject in the field of employment and social security and social protection law. In the case of special categories of personal data based on voluntary consent, processing is carried out on the basis of Article 9(2)(a) GDPR.
We process personal data for the duration required for the respective purpose or purposes. For longer retention obligations due to legal and other obligations to which we are subject, we restrict processing accordingly.
Relevant Legal Bases
In accordance with Article 13 GDPR, we inform you of the legal bases of our data processing. If the legal basis is not stated in the privacy statement, the following applies: The legal basis for obtaining consent is Article 6(1)(a) and Article 7 GDPR, the legal basis for processing for the performance of our services and the performance of contractual measures and responding to inquiries is Article 6(1)(b) GDPR, the legal basis for processing for compliance with our legal obligations is Article 6(1)(c) GDPR, and the legal basis for processing for the protection of our legitimate interests is Article 6(1)(f) GDPR. In the event that the vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(d) GDPR serves as the legal basis.
Security Measures
We take appropriate technical and organizational measures in accordance with legal requirements, taking into account the state of the art, implementation costs, the nature, scope, circumstances, and purposes of processing as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, to ensure a level of protection appropriate to the risk.
These measures include, in particular, ensuring the confidentiality, integrity, and availability of data by controlling physical and electronic access to the data as well as access, input, disclosure, availability, and segregation of data concerning them. Furthermore, we have established procedures to ensure the perception of data subjects' rights, the deletion of data, and responses to data vulnerabilities. We also take into account the protection of personal data when developing or selecting hardware, software, and procedures, in accordance with the principle of data protection by design and by default.
Transmission of Personal Data
As part of our data processing of personal data, the data may be transmitted to other entities, companies, legally independent organizational units, or individuals or disclosed to them. The recipients of this data may include service providers or providers of services and content entrusted with IT tasks, which are integrated into a website. In such cases, we comply with legal requirements and in particular conclude appropriate contracts or agreements that serve the protection of your data with the recipients of your data.
Data Processing in Third Countries
If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)) or if this occurs in the context of using third-party services or disclosing/transferring data to other persons, entities, or companies, this will only be done in compliance with legal requirements.
Subject to explicit consent or contractual or legal transfer requirements, we will only process data in third countries with a recognized level of data protection, contractual obligation through so-called standard protection clauses of the EU Commission, certification, or binding internal data protection regulations (Article 44 to 49 GDPR, Information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_en).
Cookie Privacy Policy
This website uses cookies. Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user's computer. Cookies primarily serve to store information about a user during or after their visit within an online offering. Stored information may include language settings on a website, login status, a shopping cart, or the location at which a video was viewed. The term "cookies" also includes other technologies that fulfill the same functions as cookies (e.g., when user information is stored using pseudonymous online identifiers, also known as "user IDs").
The following types of cookies and functions are distinguished:
Temporary cookies (also: session cookies): Temporary cookies are deleted at the latest after a user leaves an online offering and closes their browser.
Permanent cookies: Permanent cookies remain stored even after the browser is closed. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. Likewise, the interests of users, which are used for range measurement or marketing purposes, can be stored in such a cookie.
First-party cookies: First-party cookies are set by us.
Third-party cookies: Third-party cookies are primarily used by advertisers (so-called third parties) to process user information.
Necessary cookies: Cookies may be absolutely necessary for the operation of a website (e.g., to store logins or other user input or for security reasons).
Statistics, marketing, and personalization cookies: Cookies are also generally used in the context of range measurement and when users' interests or behavior (e.g., viewing certain content, using functions, etc.) are stored on individual websites in a user profile. Such profiles are used to display content to users that corresponds to their potential interests. This process is also referred to as "tracking," i.e., tracking the potential interests of users. If we use cookies or "tracking" technologies, we will inform you separately in our Privacy Policy or as part of obtaining consent.
Legal basis for processing: The legal basis on which we process your personal data using cookies depends on whether we ask you for consent. If this applies and you consent to the use of cookies, the legal basis for processing your data is your declared consent. Otherwise, the data processed with the help of cookies will be processed on the basis of our legitimate interests (e.g., in the business operation of our online offering and its improvement) or, if the use of cookies is necessary to fulfill our contractual obligations.
Storage duration: Unless we provide you with explicit information about the storage duration of permanent cookies (e.g., as part of a so-called cookie opt-in), please assume that the storage duration can be up to two years.
General notes on withdrawal and objection (opt-out): Depending on whether processing is based on consent or legal permission, you have the option at any time to withdraw consent or to object to the processing of your data by cookie technologies (summarized as "opt-out"). You can initially declare your objection by means of the settings of your browser, e.g., by deactivating the use of cookies (which may also restrict the functionality of our online offering). An objection to the use of cookies for online marketing purposes can also be raised by a variety of services, especially in the case of tracking, via the websites https://optout.aboutads.info and https://www.youronlinechoices.com/. In addition, you can receive further objections within the scope of the information on the service providers and cookies used.
Processing of cookie data based on consent: We use a procedure for managing consent for cookies, within the framework of which the consents of users to the use of cookies, or the processing and providers mentioned in the context of the consent management procedure, can be obtained and managed and revoked by users. This involves the storage of the consent declaration so that it does not have to be repeated and to be able to prove the consent in accordance with legal obligations. The storage can take place server-side and/or in a cookie (so-called opt-in cookie, or using comparable technologies) to assign the consent to a user, or their device. Subject to individual information about the providers of cookie management services, the following applies: The duration of storage of consent can be up to two years. A pseudonymous user identifier is created and stored with the time of consent, information about the scope of the consent (e.g., which categories of cookies and/or service providers), as well as the browser, system, and end device used.
Processed data types: Usage data (e.g., visited websites, interest in content, access times), meta/communication data (e.g., device information, IP addresses).
Data subjects: Users (e.g., website visitors, users of online services).
Legal basis: Consent (Article 6(1)(a) GDPR), Legitimate Interests (Article 6(1)(f) GDPR).
Third-Party Services
This website may use Google Maps to embed maps, Google Invisible reCAPTCHA to protect against bots and spam, and YouTube to embed videos.
These services from the American Google LLC may use cookies and, as a result, data is transmitted to Google in the USA. We assume that no personal tracking solely through the use of our website takes place in this context.
Google has committed to ensuring adequate data protection in accordance with the US-European and US-Swiss Privacy Shield.
For more information, please see Google's Privacy Policy.
Paid Services
To provide paid services, we may request additional data, such as payment information, in order to process your order or request. We store this data in our systems until the legal retention periods have expired.
Changes
We reserve the right to adjust this Privacy Policy at any time without prior notice. The current version published on our website applies. If the Privacy Policy is part of an agreement with you, we will inform you of the changes by email or other appropriate means.
Questions Regarding Your Data
If you have any questions about data protection, please email us or contact the responsible person for data protection listed at the beginning of the Privacy Policy.
Source: SwissAnwalt