PRI­VA­CY POLICY

1 Intro­duc­tion

Thank you for your inte­rest in Zuer­cher Tech­nik AG (her­ein­af­ter “we”, “us”, “our”) and for visi­ting our web­site.
The fol­lo­wing infor­ma­ti­on pro­vi­des you with an over­view of the pro­ces­sing of your per­so­nal data on our web­site https://zuercher.com/ (her­ein­af­ter “web­site”).
This data pro­tec­tion poli­cy is based on the requi­re­ments of the EU Gene­ral Data Pro­tec­tion Regu­la­ti­on (“GDPR”), the Swiss Data Pro­tec­tion Act (“DPA”) and the revi­sed Swiss Data Pro­tec­tion Act (“revD­PA”). Howe­ver, the ext­ent to which the­se laws are appli­ca­ble depends on the indi­vi­du­al case. The con­trol­ler respon­si­ble for processing/handling shall gene­ral­ly be gui­ded by the most strin­gent stan­dard in each case.

2 Respon­si­bi­li­ty

Respon­si­ble for the data pro­ces­sing is:

Zuer­cher Tech­nik AG
Neu­matt­stras­se 6
CH-4450 Siss­ach / Switz­er­land
Tel.: +41 (0) 61 975 10 10
E‑mail: info@zuercher.com

3 Data pro­tec­tion officer

If you have any ques­ti­ons regar­ding data pro­tec­tion, plea­se cont­act the per­son responsible.

4 Defi­ni­ti­ons

For the sake of sim­pli­ci­ty, this data pri­va­cy poli­cy is based on the terms used in the GDPR. In this sec­tion, we will explain in more detail some important terms in this regard and, if appli­ca­ble, show equi­va­lent terms from the revDPA:

• Per­so­nal data: Per­so­nal data is any infor­ma­ti­on rela­ting to an iden­ti­fied or iden­ti­fia­ble natu­ral per­son. An iden­ti­fia­ble natu­ral per­son is one who can be iden­ti­fied, direct­ly or indi­rect­ly, in par­ti­cu­lar by refe­rence to an iden­ti­fier such as a name, an iden­ti­fi­ca­ti­on num­ber, loca­ti­on data, an online iden­ti­fier or to one or more fac­tors spe­ci­fic to the phy­si­cal, phy­sio­lo­gi­cal, gene­tic, men­tal, eco­no­mic, cul­tu­ral or social iden­ti­ty of that natu­ral person.

• Data sub­ject: The data sub­ject is any iden­ti­fied or iden­ti­fia­ble natu­ral per­son who­se per­so­nal data is pro­ces­sed by the con­trol­ler respon­si­ble for the processing.

• Pro­ces­sing: Pro­ces­sing is any ope­ra­ti­on or set of ope­ra­ti­ons which is per­for­med on per­so­nal data, such as coll­ec­tion, recor­ding, orga­ni­sa­ti­on, struc­tu­ring, sto­rage, adapt­a­ti­on or altera­ti­on, retrie­val, con­sul­ta­ti­on, use, dis­clo­sure by trans­mis­si­on, dis­se­mi­na­ti­on or other­wi­se making available, ali­gnment or com­bi­na­ti­on, rest­ric­tion, era­su­re or destruction.

• Reci­pi­ent: A reci­pi­ent is a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or ano­ther body, to which per­so­nal data is dis­c­lo­sed, regard­less of whe­ther a third par­ty or not. Howe­ver, public aut­ho­ri­ties which may recei­ve per­so­nal data in the frame­work of a par­ti­cu­lar inquiry in accordance with Uni­on or Mem­ber Sta­te law shall not be regard­ed as recipients.

• Third par­ty: A third par­ty is a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or body other than the data sub­ject, con­trol­ler, pro­ces­sor and per­sons who, under the direct aut­ho­ri­ty of the con­trol­ler or pro­ces­sor, are aut­ho­ri­sed to pro­cess per­so­nal data.

• Con­sent: Con­sent is any free­ly given, spe­ci­fic, infor­med and unam­bi­guous indi­ca­ti­on of the data subject’s wis­hes by which he or she, by a state­ment or by a clear affir­ma­ti­ve action, signi­fies agree­ment to the pro­ces­sing of per­so­nal data rela­ting to him or her.

5 Ori­gin of the per­so­nal data

We can recei­ve per­so­nal data in the fol­lo­wing ways:

5.1 Infor­ma­ti­on pro­vi­ded by you

You have the oppor­tu­ni­ty to pro­vi­de infor­ma­ti­on about yours­elf on our web­site (e.g. cont­act details).

5.2 Auto­ma­ti­cal­ly coll­ec­ted and gene­ra­ted data

Data is auto­ma­ti­cal­ly coll­ec­ted and gene­ra­ted through the use of our website.

 

If we have a pre­sence in social and pro­fes­sio­nal net­works, we may recei­ve data from you via the­se net­works (e.g. if you cont­act us via a social or pro­fes­sio­nal net­work or react to con­tent that we share there).

6 Scope, pur­po­se, legal basis, sto­rage dura­ti­on and, whe­re appli­ca­ble, reci­pi­ents and third-coun­try trans­fer of the pro­ces­sing of the per­so­nal data

6.1 Gene­ral information

The fol­lo­wing sec­tion pro­vi­des an over­view of the per­so­nal data that we pro­cess. We explain to what ext­ent, for what pur­po­ses and on which legal basis we pro­cess per­so­nal data.
We will not pass on your per­so­nal data to third par­ties wit­hout your appr­oval unless this is per­mit­ted by law (e.g. becau­se it is neces­sa­ry to per­form the con­tract).
In par­ti­cu­lar, the pro­ces­sing of your per­so­nal data may be based on the fol­lo­wing legal basis:
• Art. 6 Para. 1, Sec­tion 1 (a) GDPR is the legal basis for any pro­ces­sing for which we have recei­ved spe­ci­fic con­sent.
• If it is neces­sa­ry to pro­cess per­so­nal data for the per­for­mance of a con­tract to which you are par­ty, the pro­ces­sing is pur­su­ant to Art. 6 Para. 1 Sec­tion 1 (b) GDPR. The same appli­es to any pro­ces­sing requi­red pri­or to ente­ring into a con­tract.
• If the pro­ces­sing of neces­sa­ry data is neces­sa­ry for a legal obli­ga­ti­on to which we are sub­ject, the pro­ces­sing is pur­su­ant to Art. 6 Para. 1 Sec­tion 1 © GDPR.
• The pro­ces­sing may also be pur­su­ant to Art. 6 Para. 1 Sec­tion 1 (f) GDPR. This legal basis appli­es if the pro­ces­sing is neces­sa­ry to pro­tect a legi­ti­ma­te inte­rest of ours, pro­vi­ded that the inte­rests, fun­da­men­tal rights and free­doms of the data sub­ject are not overridden.

6.2 Dele­ti­on of data

Inso­far as no spe­ci­fic sto­rage peri­od is spe­ci­fied within this data pro­tec­tion noti­ce, the data pro­ces­sed by us will be dele­ted in accordance with the legal requi­re­ments as soon as the con­sent for pro­ces­sing is revo­ked or other aut­ho­ri­sa­ti­ons cea­se to app­ly (e.g. if the pur­po­se for which this data is pro­ces­sed no lon­ger exists or it is not requi­red for the pur­po­se). If data is not dele­ted becau­se it is requi­red for other and legal­ly per­mis­si­ble pur­po­ses, the pro­ces­sing of this data will be limi­t­ed to the­se pur­po­ses i.e. the data will be blo­cked and not pro­ces­sed for other pur­po­ses. This appli­es, for exam­p­le, to data that must be stored for com­mer­cial or tax law reasons, or the sto­rage is neces­sa­ry for asser­ting, exer­cis­ing or defen­ding legal claims or pro­tec­ting the rights of ano­ther natu­ral per­son or legal entity.

6.3 Secu­ri­ty measures

We take appro­pria­te tech­ni­cal and orga­ni­sa­tio­nal mea­su­res to ensu­re a level of pro­tec­tion appro­pria­te to the risk in accordance with the legal requi­re­ments, taking into account the sta­te of the art, the imple­men­ta­ti­on cos­ts and the natu­re, scope, cir­cum­s­tances and pur­po­ses of the pro­ces­sing, as well as the dif­fe­rent pro­ba­bi­li­ties of occur­rence and the ext­ent of the thre­at to the rights and free­doms of natu­ral per­sons.
The mea­su­res include, in par­ti­cu­lar, ensu­ring the con­fi­den­tia­li­ty, inte­gri­ty and avai­la­bi­li­ty of data by con­trol­ling phy­si­cal and elec­tro­nic access to the data, as well as access, input, han­do­ver, avai­la­bi­li­ty of and segre­ga­ti­on of the data. Fur­ther­mo­re, we have estab­lished pro­ce­du­res that ensu­re the exer­cise of data sub­jects’ rights, the dele­ti­on of data, and respon­ses if data is com­pro­mi­sed. We also take the pro­tec­tion of per­so­nal data into account when deve­lo­ping and sel­ec­ting hard­ware, soft­ware and pro­ces­ses in accordance with the prin­ci­ple of data pro­tec­tion, through tech­no­lo­gy design and default data pri­va­cy settings.

6.4 Trans­fer of per­so­nal data

In the cour­se of our pro­ces­sing of per­so­nal data, the data may be trans­fer­red to or dis­c­lo­sed to other bodies, com­pa­nies, legal­ly inde­pen­dent orga­ni­sa­tio­nal units or per­sons. The reci­pi­ents of this data may include, for exam­p­le, ser­vice pro­vi­ders com­mis­sio­ned with IT tasks or pro­vi­ders of ser­vices and con­tent that are inte­gra­ted into a web­site. In such cases, we com­ply with the legal requi­re­ments and, in par­ti­cu­lar, con­clude appro­pria­te con­tracts or agree­ments that ser­ve to pro­tect your data with the reci­pi­ents of your data.

6.5 Web­site in general

6.5.1 Pro­vi­si­on of the web­site, ser­ver log files

6.5.1.1 Scope of the processing

In order to pro­vi­de our web­site, we use memo­ry, com­pu­ting capa­ci­ty and soft­ware that we rent from a cor­re­spon­ding ser­ver pro­vi­der (web hos­ting). The­se ser­vices also include the sen­ding, receipt and sto­rage of e‑mails. When you visit our web­site, data is auto­ma­ti­cal­ly pro­ces­sed and sent by your brow­ser to our ser­ver. This gene­ral data and infor­ma­ti­on is saved in log files on the ser­ver (so-cal­led “ser­ver log files”). The fol­lo­wing may be recor­ded:
• Brow­ser type and brow­ser ver­si­on
• Ope­ra­ting sys­tem used
• Refer­rer URL (pre­vious­ly visi­ted web­site)
• Host name of the acces­sing com­pu­ter
• Date and time of the ser­ver request
• IP address

6.5.1.2 Pur­po­se of the processing

When using this data and infor­ma­ti­on, we do not draw any con­clu­si­ons about you. The pur­po­ses of the pro­ces­sing include the fol­lo­wing:
• Pro­vi­ding our web­site
• Pro­vi­ding our online offer and user-fri­end­li­ne­ss
• Ope­ra­ting and pro­vi­ding infor­ma­ti­on sys­tems
• Con­tent Deli­very Net­work (CDN)
• Per­forming con­trac­tu­al ser­vices
• Cus­to­mer ser­vice
• Pro­vi­ding e‑mail com­mu­ni­ca­ti­on
• Gua­ran­te­e­ing a smooth con­nec­tion to the web­site
• Cla­ri­fy­ing any attempt­ed misu­se or fraud
• Ana­ly­sing net­work pro­blems
• Eva­lua­ting sys­tem secu­ri­ty and stability

6.5.1.3 Legal basis

The legal basis for the data pro­ces­sing is our legi­ti­ma­te inte­rest in the sen­se of Art. 6 Para. 1, Sec­tion 1 (f) GDPR. We have a legi­ti­ma­te inte­rest in ensu­ring that we can pro­vi­de our web­site wit­hout any tech­ni­cal errors.

6.5.1.4 Receipt of per­so­nal data

Your data will be pas­sed on to ser­vice pro­vi­ders to the ext­ent requi­red for hos­ting and con­tent deli­very net­works (CDN) within the frame­work of con­tract processing.

6.5.2 Use of cookies

6.5.2.1 Gene­ral information

We use coo­kies on our web­site.
The­se are text files that are auto­ma­ti­cal­ly crea­ted by your brow­ser and saved on your IT sys­tem when you visit our web­site. Infor­ma­ti­on flows through coo­kies to the body that sets the coo­kie. Coo­kies can­not be used to exe­cu­te pro­gram­mes or trans­fer viru­s­es onto your end device.
If you do not want coo­kies to be used, you can deac­ti­va­te them under the set­tings.
When you visit our web­site or a sub-web­site for the first time and the­se con­tain coo­kies, you will see a “coo­kie ban­ner”. This pro­vi­des you with infor­ma­ti­on about the indi­vi­du­al coo­kies that we use. You can find out about the name, pro­vi­der, pur­po­se of the pro­ces­sing and sto­rage peri­od for each indi­vi­du­al coo­kie. In addi­ti­on, you can allow us to use non-essen­ti­al coo­kies and also rever­se this decis­i­on the­re.
From a legal per­spec­ti­ve, it is essen­ti­al to make a distinc­tion bet­ween essen­ti­al and non-essen­ti­al cookies.

6.5.2.2 Essen­ti­al cookies

We use essen­ti­al coo­kies. The­se are coo­kies that are tech­ni­cal­ly neces­sa­ry to be able to pro­vi­de all fea­tures of our web­site. The legal basis for the data pro­ces­sing is our legi­ti­ma­te inte­rest pur­su­ant to Art. 6 Para. 1, sen­tence 1 (f) GDPR. We have an over­ri­ding legi­ti­ma­te inte­rest in being able to pro­vi­de our offer wit­hout any tech­ni­cal errors. The legal basis for the use of coo­kies towards our con­trac­tu­al part­ners who make use of ser­vices con­trac­tual­ly owed by us via our web­site is Art. 6 Para. I (b) GDPR, the pro­vi­si­on of our con­trac­tu­al services.

6.5.2.3 Non-essen­ti­al cookies

We also use non-essen­ti­al coo­kies (e.g. ana­ly­sis and mar­ke­ting coo­kies). The­se are coo­kies that are not tech­ni­cal­ly neces­sa­ry. We use the­se to under­stand your beha­viour on our web­site and impro­ve our offer. The legal basis for the data pro­ces­sing is your con­sent pur­su­ant to Art. 6 Para. 1 Sec­tion 1 (a) GDPR. The coo­kies are not set until you have gran­ted your con­sent via our “coo­kie banner”.

6.5.2.4 Sto­rage duration

A distinc­tion is made bet­ween the fol­lo­wing types of coo­kies in rela­ti­on to sto­rage dura­ti­on:
• Tem­po­ra­ry coo­kies (also known as ses­si­on coo­kies): Tem­po­ra­ry coo­kies are dele­ted once a user has left an online offer and clo­sed their end device (e.g. brow­ser or mobi­le app) at the latest.
• Per­ma­nent coo­kies: Per­ma­nent coo­kies are still stored after the end device has been clo­sed. For exam­p­le, the log-in sta­tus can be saved or pre­fer­red con­tent dis­play­ed direct­ly when the user visits a web­site again. The user data coll­ec­ted using coo­kies can also be used for reach mea­su­re­ment. If we do not pro­vi­de users with any expli­cit infor­ma­ti­on on the natu­re and sto­rage dura­ti­on of coo­kies (e.g. when gathe­ring con­sent), users should assu­me that coo­kies are per­ma­nent and that the sto­rage dura­ti­on can be up to two years.

6.5.3 Coo­kie banner

6.5.3.1 Scope of the processing

Our coo­kie ban­ner informs you about the spe­ci­fic coo­kies that we use. We also give you the oppor­tu­ni­ty to deci­de whe­ther you want to con­sent to the set­ting of non-essen­ti­al coo­kies. The pro­ces­sing may cover:
• Usa­ge data (e.g. web­sites visi­ted, time of access)
• Meta and com­mu­ni­ca­ti­on data (e.g. IP address)
6.5.3.2 Pur­po­se of the pro­ces­sing
We pro­cess your per­so­nal data for the fol­lo­wing pur­po­ses:
• Informing the user about the coo­kies we use
• Making it pos­si­ble to con­sent to the use of tech­ni­cal­ly non-essen­ti­al cookies

6.5.3.3 Legal basis for the processing

The legal basis for the use of the coo­kie ban­ner is Art. 6 Para. 1, Sec­tion 1 (f) GDPR. We have an over­ri­ding legi­ti­ma­te inte­rest in using the coo­kie ban­ner, wher­eby we get the sta­tu­to­ry con­sent for the use of non-essen­ti­al coo­kies and com­ply with our infor­ma­ti­on obli­ga­ti­on in rela­ti­on to the cookies.

6.5.3.4 Sto­rage duration

The coo­kie ban­ner saves the pre­fe­ren­ces until they are reset or adjus­ted by you.

6.5.3.5 Receipt of per­so­nal data

Your data will be pas­sed on to a ser­vice pro­vi­der for coo­kie ban­ners within the scope of con­tract pro­ces­sing to the ext­ent necessary.

6.6 Cont­act options

6.6.1 Scope of the processing

You have the oppor­tu­ni­ty to cont­act us via e‑mail on our web­site.
In the cour­se of cont­ac­ting you and respon­ding to your enquiry, we pro­cess the fol­lo­wing per­so­nal data rela­ted to you:
• First name and sur­na­me
• E‑mail address
• Tele­pho­ne num­ber
• Address details
• Date and time of the enquiry
• IP address
• Com­mu­ni­ca­ti­on cont­act (if applicable)

6.6.2 Pur­po­se of the processing

We pro­cess your data to respond to your enquiry and the resul­ting matters.

6.6.3 Legal basis

If your request is rela­ted to pre-con­trac­tu­al mea­su­res or an exis­ting con­tract with us, the legal basis is the per­for­mance of the con­tract and the imple­men­ta­ti­on of pre-con­trac­tu­al mea­su­res pur­su­ant to Art. 6 Para. 1 Sec­tion 1 (b) GDPR.
If your request is made inde­pendent­ly of any pre-con­trac­tu­al mea­su­res or con­tracts with us, our over­ri­ding legi­ti­ma­te inte­rests pur­su­ant to Art. 6 Para. 1 Sec­tion 1 (f) GDPR con­sti­tu­te the legal basis. We have an over­ri­ding legi­ti­ma­te inte­rest to offer visi­tors to our web­site an oppor­tu­ni­ty to cont­act us.

6.6.4 Sto­rage duration

We dele­te your per­so­nal data as soon as it is no lon­ger neces­sa­ry for achie­ving the pur­po­se of coll­ec­tion. In the con­text of cont­act enqui­ries, this is gene­ral­ly the case when it is clear from the cir­cum­s­tances that the spe­ci­fic mat­ter has been con­clu­si­ve­ly processed.

6.6.5 Reci­pi­ents of per­so­nal data

Your data will be for­ward­ed to regio­nal part­ners of ours who will cont­act you direct­ly as part of the offer pre­pa­ra­ti­on and instal­la­ti­on pro­cess. Within the con­text of con­tract pro­ces­sing, your data will also be pas­sed on to a ser­vice pro­vi­der for cus­to­mer cont­act manage­ment to the ext­ent necessary.

6.7 Goog­le Tag Manager

6.7.1 Scope and pur­po­se of the processing

We use Goog­le Tag Mana­ger to mana­ge the use of code snip­pets (“tags”) e.g. track­ing code on our web­site. Goog­le Tag Mana­ger enables us to replace a web sur­face code quick­ly and easi­ly on our web­site wit­hout having to inter­fe­re with the source code.
We use Goog­le Tag Mana­ger to pro­cess the fol­lo­wing per­so­nal data among others:

• IP address
• Device data such as ope­ra­ting sys­tem, brow­ser ver­si­on, screen resolution

6.7.2 Legal basis

Pur­su­ant to Art. 6 Para. 1 (a) GDPR, the legal basis for the use of Goog­le Tag Mana­ger is the vol­un­t­a­ry and revo­ca­ble con­sent gran­ted by you. You can with­draw your con­sent at any time with effect for the future by making the cor­re­spon­ding chan­ges or adjus­t­ments to your coo­kie settings.

6.7.3 Trans­fer of per­so­nal data to third countries

Per­so­nal data may be pro­ces­sed in the USA in rela­ti­on to the use of Goog­le Tag Mana­ger. The lawful­ness of the trans­fer of this data is based on the EU-US Data Pri­va­cy Frame­work or the Swiss-US Data Pri­va­cy Frame­work. Goog­le LLC has an acti­ve cer­ti­fi­ca­ti­on. Fur­ther infor­ma­ti­on can be found here: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active

6.7.4 Sto­rage duration

Goog­le anony­mi­ses per­so­nal data after 9 months if the­re are no legal obli­ga­ti­ons to store it.

6.7.5 Receipt of per­so­nal data

Your data will be pas­sed on to the ext­ent neces­sa­ry to Goog­le Ire­land Ltd as part of con­tract processing.

6.8 Goog­le Analytics

6.8.1 Scope and pur­po­se of the processing

This web­site uses func­tions of the web ana­ly­sis ser­vice Goog­le Ana­ly­tics. We use Goog­le Ana­ly­tics to ana­ly­se your user beha­viour in order to make decis­i­ons about pro­duct and mar­ket opti­mi­sa­ti­on based on the results. We use Goog­le Ana­ly­tics to pro­cess the fol­lo­wing per­so­nal data among others:

• Time of the enquiry
• IP addres­ses
• Online labels
• Device iden­ti­fi­ca­ti­on
• Tech­ni­cal fea­tures of users (e.g. brow­ser type and ver­si­on, device type, ope­ra­ting sys­tem)
• Mea­su­re­ment of user beha­viour (e.g. access to indi­vi­du­al pages / con­tent, access to con­tent in various are­as, ses­si­on dura­ti­on / length of stay, boun­ce rate
• Use of indi­vi­du­al func­tion­a­li­ties of the web­site (e.g. search enqui­ries, down­loads)
• eCom­mer­ce acti­vi­ty (e.g. purcha­se pro­ducts, reve­nues)
• Refe­rence URL (the pre­vious­ly visi­ted site)

6.8.2 Legal basis

Pur­su­ant to Art. 6 Para. 1 (a) GDPR, the legal basis for the use of Goog­le Ana­ly­tics is the vol­un­t­a­ry and revo­ca­ble con­sent gran­ted by you. You can with­draw your con­sent at any time with effect for the future by making the cor­re­spon­ding chan­ges or adjus­t­ments to your coo­kie settings.

6.8.3 Trans­fer of per­so­nal data to third countries

Per­so­nal data may be pro­ces­sed in the USA in rela­ti­on to the use of Goog­le Ana­ly­tics. The lawful­ness of the trans­fer of this data is based on the EU-US Data Pri­va­cy Frame­work or the Swiss-US Data Pri­va­cy Frame­work. Goog­le LLC has an acti­ve cer­ti­fi­ca­ti­on. Fur­ther infor­ma­ti­on can be found here: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active

6.8.4 Sto­rage duration

Goog­le anony­mi­ses per­so­nal data 14 months after your last acti­vi­ty, pro­vi­ded that the­re are no legal obli­ga­ti­ons to store it.

6.9 Goog­le reCAPTCHA

6.9.1 Scope of the processing

We use Goog­le reCAPTCHA on our web­site to pro­cess the fol­lo­wing data among others:
• IP address
• Length of time spent by the visi­tor on the web­site
• Mou­se move­ments acti­va­ted by the user
Fur­ther infor­ma­ti­on on Goog­le reCAPTCHA and Google’s pri­va­cy poli­cy can be found here: https://www.google.com/intl/de/policies/privacy/

6.9.2 Pur­po­se of the processing

reCAPTCHA checks whe­ther data ente­red on our web­sites (e.g. in a cont­act form) comes from a per­son or an auto­ma­ted pro­gram­me. reCAPTCHA does this by using various fea­tures to ana­ly­se the beha­viour of the web­site visi­tor. This ana­ly­sis starts auto­ma­ti­cal­ly as soon the visi­tor acces­ses the website.

6.9.3 Legal basis

Pur­su­ant to Art. 6 Para. 1 (f) GDPR, the legal basis for the data pro­ces­sing is our legi­ti­ma­te inte­rest in pro­tec­ting our web offers against impro­per auto­ma­ted spy­ing and spam.

6.9.4 Trans­fer of per­so­nal data to third countries

Per­so­nal data may be pro­ces­sed in the USA in rela­ti­on to the use of Goog­le reCAPTCHA. The lawful­ness of the trans­fer of this data is based on the EU-US Data Pri­va­cy Frame­work or the Swiss-US Data Pri­va­cy Frame­work. Goog­le LLC has an acti­ve cer­ti­fi­ca­ti­on. Fur­ther infor­ma­ti­on can be found here: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active

6.10 Incor­po­ra­ti­on of ser­vices and con­tent from third parties

6.10.1 Gene­ral information

We use con­tent or ser­vice offe­rings from third-par­ty pro­vi­ders within our online offe­ring in order to inte­gra­te their con­tent and ser­vices (e.g. vide­os or fonts) (her­ein­af­ter uni­form­ly refer­red to as “con­tent”).
This always requi­res that the third-par­ty pro­vi­ders of this con­tent are awa­re of the IP address of the user, as they would not be able to send the con­tent to their brow­ser wit­hout the IP address. The IP address is the­r­e­fo­re requi­red to dis­play this con­tent. We endea­vour only to use such con­tent whe­re the respec­ti­ve pro­vi­ders only use the IP address for deli­ve­ring the con­tent. Third-par­ty pro­vi­ders can also use so-cal­led pixel tags (invi­si­ble gra­phics, also descri­bed as “web bea­cons”) for sta­tis­ti­cal or mar­ke­ting pur­po­ses. The “pixel tags” can be used to eva­lua­te infor­ma­ti­on such as visi­tor traf­fic to the pages of this web­site. The pseud­ony­mous infor­ma­ti­on may also be stored in coo­kies on the user’s device and may con­tain, among other things, tech­ni­cal infor­ma­ti­on about the brow­ser and ope­ra­ting sys­tem, refer­ring web­sites, time of visit and other infor­ma­ti­on about the use of our online offer. It may also be com­bi­ned with such infor­ma­ti­on from other sources.

6.10.2 Goog­le Maps

We inte­gra­te maps from the Goog­le Maps ser­vice pro­vi­ded by Goog­le LLC, 1600 Amphi­theat­re Park­way, Moun­tain View, CA 94043, USA. The pro­ces­sed data may include, in par­ti­cu­lar, IP addres­ses and loca­ti­on data of the users.
Fur­ther infor­ma­ti­on can be found in Google’s pri­va­cy poli­cy: https://www.google.com/policies/privacy/

6.10.3 Trans­fer of per­so­nal data to third countries

Per­so­nal data may be pro­ces­sed in the USA in rela­ti­on to the use of Goog­le Maps. The lawful­ness of the trans­fer of this data is based on the EU-US Data Pri­va­cy Frame­work or the Swiss-US Data Pri­va­cy Frame­work. Goog­le LLC has an acti­ve cer­ti­fi­ca­ti­on. Fur­ther infor­ma­ti­on can be found here: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active

7 Your rights

In this sec­tion, we pro­vi­de infor­ma­ti­on about your rights in rela­ti­on to the pro­ces­sing of your data. The pre­cise scope of the sta­ted right can be found in the cor­re­spon­ding artic­le of the GDPR. If you wish to exer­cise one of your rights, plea­se cont­act us via e‑mail (dsb@secjur.com).

7.1 Right to confirmation

You have the right to request con­fir­ma­ti­on from us as to whe­ther we pro­cess your per­so­nal data.

7.2 Right to infor­ma­ti­on (Art. 15 GDPR)

You have the right to recei­ve from us at any time free infor­ma­ti­on about the per­so­nal data stored about you, as well as a copy of this data in accordance with the sta­tu­to­ry provisions.

7.3 Right to rec­ti­fi­ca­ti­on (Art. 16 GDPR)

You have the right to request the cor­rec­tion of inac­cu­ra­te per­so­nal data con­cer­ning you. Fur­ther­mo­re, you have the right to request the com­ple­ti­on of incom­ple­te per­so­nal data, taking into account the pur­po­ses of the processing.

7.4 Right to era­su­re (Art. 17 GDPR)

You have the right to demand that per­so­nal data con­cer­ning you is dele­ted imme­dia­te­ly if one of the reasons pro­vi­ded for by law appli­es and inso­far as the pro­ces­sing or sto­rage is not necessary.

7.5 Right to rest­ric­tion of pro­ces­sing (Art. 18 GDPR)

You have the right to request that we rest­rict pro­ces­sing if one of the sta­tu­to­ry requi­re­ments applies.

7.6 Right to data por­ta­bi­li­ty (Art. 20 GDPR)

You have the right to recei­ve the per­so­nal data you have pro­vi­ded to us in a struc­tu­red, com­mon­ly used and machi­ne-rea­da­ble for­mat. You also have the right to trans­mit this data to ano­ther con­trol­ler wit­hout hin­drance from us, to whom the per­so­nal data was pro­vi­ded, if the pro­ces­sing is based on con­sent as per Art. 6 Para. 1, Sec­tion 1 (a) GDPR or Art. 9 Para. 2 (a) GDPR or a con­tract pur­su­ant to Art. 6 Para. 1 Sec­tion 1 (b) GDPR and the pro­ces­sing is car­ri­ed out by auto­ma­ted means, pro­vi­ded that the pro­ces­sing is not neces­sa­ry for the per­for­mance of a task car­ri­ed out in the public inte­rest or in the exer­cise of offi­ci­al aut­ho­ri­ty trans­fer­red to us.
When exer­cis­ing your right to data por­ta­bi­li­ty as per Art. 20 Para. 1 GDPR, you also have the right to have the per­so­nal data trans­mit­ted direct­ly from one con­trol­ler to ano­ther, whe­re this is tech­ni­cal­ly fea­si­ble and does not affect the rights and free­doms of other individuals.

7.7 Right to object (Art. 21 GDPR)

You have the right to object, on grounds rela­ting to your par­ti­cu­lar situa­ti­on, at any time to pro­ces­sing of per­so­nal data which is in the public inte­rest as per Art. 6 Para. 1 Sec­tion 1 (e) GDPR or based on our legi­ti­ma­te inte­rest pur­su­ant to Art. 6 Para. 1 Sec­tion 1 (f) GDPR.
If you rai­se an objec­tion, we will no lon­ger pro­cess your per­so­nal data, unless we can demons­tra­te com­pel­ling jus­ti­fied reasons for the pro­ces­sing that over­ri­de your inte­rests, rights and free­doms, or that the pro­ces­sing is for asser­ting, exer­cis­ing or defen­ding legal claims.

7.8 Revo­ca­ti­on of con­sent under data pro­tec­tion law

You have the right to revo­ke your con­sent to the pro­ces­sing of per­so­nal data at any time with effect for the future.

7.9 Making a com­plaint to a super­vi­so­ry authority

You have the right to com­plain to a super­vi­so­ry aut­ho­ri­ty respon­si­ble for data pro­tec­tion about our pro­ces­sing of per­so­nal data.
8 Up-to-daten­ess and chan­ges to the data pro­tec­tion noti­ce
This data pro­tec­tion noti­ce is curr­ent­ly valid and has the fol­lo­wing sta­tus: August 2023.
If we fur­ther deve­lop our web­site and our offers, or if the sta­tu­to­ry or offi­ci­al regu­la­ti­ons chan­ge, it may be neces­sa­ry to chan­ge this data pro­tec­tion noti­ce. The cur­rent data pro­tec­tion noti­ce can be view­ed here at any time.

 

Revi­si­on 09/01/2023 (= 01.09.2023)