The protection of your Personal Data that aucoma Ltd. (hereinafter «aucoma», «we» or «us») collects and processes in the course of its business activities is important to us. We process Personal Data in accordance with the requirements of the Swiss Data Protection Act and, if and to the extent applicable, in accordance with the EU General Data Protection Regulation.
The name and address of the controller is as follows:
Telefon: +41 41 610 45 45
1. Personal Data processing, purpose of processing and legal bases
1.1 General principles in connection with our business activities
We primarily process the Personal Data that we receive from our clients and other business partners in the course of our business relationship with them as well as from other persons involved in it. The Personal Data collected by aucoma include in particular name and contact details (e.g. address, telephone number and e-mail address), job title and business relationship, identification and background information that we receive from you as part of our on-boarding process, financial information for payment purposes as well as information of any kind from correspondence, contacts and interactions with us.
We process your Personal Data in order to communicate with you, to provide you with our services and to improve them, to organize events to which we invite you, to manage the business relationship with you, to inform you about recent developments or to provide you with other information about our services, to invite you to events and to comply with our legal obligations.
Your Personal Data are processed for the purposes specified above and depending on the situation, on the following legal bases:
- The processing of Personal Data is necessary for the performance of an agreement with you;
- You have given your consent to the processing of the Personal Data relating to you;
- The processing of Personal Data is necessary for the fulfilment of a legal obligation; or
- We have a legitimate interest in the processing of the Personal Data collected by us. Our legitimate interests include, in particular, providing our services, informing you about our services and being able to communicate with you. Depending on the specifics of the case, we may also have other legitimate interests.
1.2 Use of our website
In order to use our website, you do not need to disclose any Personal Data. However, each time a user accesses our website, our server collects a set of user information which is temporarily stored in the server’s log files. The information collected includes, but is not limited to, the IP address, the date and time of access, the time zone difference relative to GMT, the name and URL of the downloaded file, the website from which the access takes place, the browser used and the operating system used.
The use of this general information does not involve identification of a specific person. The collection of this information or data is technically necessary in order to display our website to you and to guarantee its stability and security. This information is also collected in order to improve the website and to analyze its use. The legal basis for the temporary storage of the information and log files is our legitimate interest in being able to offer you our website in sufficient quality and to continuously improve it.
If you subscribe to our newsletter, we will use your e-mail address and other contact details to send you the newsletter. You may subscribe to our newsletter by granting your consent.
The legal basis for the processing of your data in connection with our newsletter is your consent to the sending of the newsletter. You can withdraw the consent at any time and unsubscribe from the newsletter. You may withdraw by clicking on the link provided in each newsletter e-mail, or by sending an e-mail to firstname.lastname@example.org.
1.4 Contact form
You can contact us using the contact form provided on our website. The mandatory information we require you to enter in order to use the contact form is your name, e-mail address and your message. The Personal Data you send us will be stored and processed by us for the purpose of processing your request. The legal basis for this Personal Data processing is your consent and our legitimate interest in processing your request
1.5 Social Media Plug-ins
We have no control over the data collected and data processing operations of the plug-in providers. These are subject to the respective privacy policies of the third-party providers. Further information on the purpose and scope of data collection and its processing by the plug-in provider can be found in the privacy policies of these providers provided below.
LinkedIn: LinkedIn Ireland Unlimited Company: https://www.linkedin.com/legal/privacy-policy
XING: New Work SE: https://privacy.xing.com/en/privacy-policy
1.6 Google Analytics
This Web site uses functions of the Web analysis service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.
Google Analytics uses so-called “Cookies”, which are text files stored in your computer, to be used to analyse your use of the Web site. Information on your use of this Web site, created through the cookie, shall be normally transferred to a server owned by Google in the USA, and stored there.
By appropriately configuring your browser software, you can prevent storage of cookies in your computer; however, we would point out that in this case you may not be able to fully use all functions of this Web site. Moreover you can prevent the cookie from collecting data connected to your use of the Web site (including your IP address) and sending them to Google, as well as Google processing them, by downloading and installing the browser plugin available at this address: https://tools.google.com/dlpage/gaoptout?hl=en
You will find more information on how Google Analytics deals with user data in Google’s Data Protection Statement: https://support.google.com/analytics/answer/6004245?hl=en
2. Duration of storage
We process and store your Personal Data only for as long as is necessary in accordance with the relevant purpose of processing or if there is another legal basis for doing so (e.g. statutory retention periods). We retain Personal Data that we hold on the basis of a contractual relationship with you for at least the duration of that contractual relationship and the limitation periods for potential claims by us or based on contractual retention obligations. As soon as your Personal Data are no longer required for the above-referenced purposes, they will generally be deactivated, erased or anonymized as far as possible. In principle, shorter retention periods of 12 months or less apply to operational data (e.g. system protocols, logs).
3. Your rights
Under the data protection law applicable to you and to the extent provided for therein, you have the right to information, rectification, erasure, the right to restrict data processing and otherwise to object to our data processing as well as to the handover of certain Personal Data for transfer to another location (so-called data portability). Please note, however, that we reserve the right to assert the statutory restrictions on our part, for example if we are obliged to retain or process certain data, if we have an overriding interest in this (to the extent we are entitled to rely on such interest) or if we need the data in order to assert claims. If this results in costs for you, we will inform you in advance.
If data processing is based on your consent, after giving your consent you may withdraw it at any time with future effect. However, this does not affect the lawfulness of the processing carried out on the basis of your consent prior to your withdrawal of consent.
The exercise of such rights generally requires that you clearly prove your identity (e.g. by means of a copy of an identification document, where your identity is otherwise unclear or cannot be verified). In order to assert your rights, you may contact us at the address specified in Section 1 .
In addition, every data subject has the right to enforce his/her rights in court or to lodge a complaint with the competent data protection authority. The competent data protection authority in Switzerland is the Federal Data Protection and Information Commissioner (http://www.edoeb.admin.ch).
4. Data security
We put technical and organizational measures in place to protect your Personal Data from unauthorized access, misuse, loss and destruction. In particular, we use encryption during data transmission (SSL/TLS encryption) and have implemented additional protective measures in order to ensure that the Personal Data processed through our website is protected as comprehensively as possible.