Data Protection

Introduction

Thank you for visiting our website. Louis Widmer SA (hereinafter referred to as “Louis Widmer”, “we” or “us”) places utmost importance on the security of user data and compliance with data protection regulations. Please read on to find out how we process your personal data on our website.

Controller and data protection contact person

Controller:

Louis Widmer SA
Rietbachstrasse 5
8952 Schlieren
Switzerland

Tel.: +41 (0) 43 433 77 00
Email: info@louis-widmer.com

Contact 

Tel.: +41 (0) 43 433 77 32
E-Mail: datenschutz@louis-widmer.com

Terminology

The terminology used in the Privacy Policy is to be interpreted as legally defined in Art. 4 of the General Data Protection Regulation (GDPR):

Information on data processing

Automated data processing (log files, etc.)

It is not necessary to disclose any information about the user’s person when visiting our website. However, every time a user visits our website, we automatically store access data (server log files), such as the name of the internet service provider, operating system, the website from where the user reached our website, date and duration of the user's visit, or the name of the requested file, as well as the IP address of the computer used, the latter for security reasons, e.g. for recognising attacks on our website, for a period of seven days. This data is analysed exclusively for improving our website content. It cannot be used for drawing any conclusions about the user's person. We do not compile this data with other data sources. 

We process and use the data for the following purposes: provision and improvement of our website, prevention and recognition of errors / malfunction as well as misuse of the website.

Legal basis: Legitimate interest in accordance with Art. 6 (1) lit. f) GDPR

Legitimate interests: Ensuring functionality and the error-free and secure operation of the website as well as adjusting this website to meet user requirements.

Use of cookies (general, functionality, opt-out links, etc.)

We use cookies on our website to create a more attractive website and to enable certain user functions. The use of cookies serves our legitimate interest in providing users with the most pleasant website visit possible and is based on Art. 6 (1) lit. f) GDPR. Cookies are standard internet technology for storing and accessing login and other user information for all website users. Cookies are small text files that are stored on the device. They enable us, amongst other things, to store user settings so that our website can be displayed in the correct format for the user’s device. Some of the cookies used by us are deleted again at the end of the browser session, in other words once the user closes the browser (session cookies). Other cookies remain on the user's device and enable us or our partner companies to recognise the browser on the user's next visit (persistent cookies).

The browser settings can be adjusted so that the user is informed about the installation of cookies so that the user can decide whether to accept them or block them for specific events or in general. The user can also delete cookies at a later date so as to delete files that have been stored on the user's computer by the website. The deactivation of cookies (opt-out) can lead to restricted functionality of our website.

Data subject categories: Visitors to our website, users of online services

Opt-out: Internet Explorer: https://support.microsoft.com/de-de/help/17442 

Firefox: https://support.mozilla.org/de/kb/wie-verhindere-ich-dass-websites-mich-verfolgen

Google Chrome: https://support.google.com/chrome/answer/95647?hl=de 

Safari: https://support.apple.com/de-de/HT201265

Legal bases: Consent (Art. 6 (1) lit. a) GDPR), legitimate interest (Art. 6 (1) lit. f) GDPR)

The relevant legal basis is stated specifically for each tool. 

Legitimate interests: Storage of opt-in preferences, website display, ensuring the functionality of the website, maintaining user status across the entire website, recognition during subsequent website visits, user-friendly online content, ensuring the chat function

Online marketing

In order to continuously increase our reach and popularity of our website content, we process personal data within the scope of online marketing activities, particularly with regard to potential interest and measuring the effectiveness of our marketing activities.

Relevant information is stored in cookies or similar methods are used for measuring the effectiveness of our marketing activities and recognising potential interests. The data stored in the cookies may include accessed contents, website contents visited, settings and functions and systems used. However, clearly identifiable user data is not regularly processed for the above purposes. The data is then modified so that neither we nor the provider of the tool used know the real identity of the user. The thus modified data is regularly stored in user profiles.

If user profiles are stored, when visiting other website contents that use the same online marketing method, the data can be read, added to and completed on the server of the online marketing provider. 

We can determine the success of our advertisements on the basis of compiled data made available to us by the provider of the online marketing method (conversion measurement). This conversion measurement enables us to trace if a marketing activity led to the visitor of our website content deciding to purchase the advertised product. This analysis indicates the success of our online marketing activities.

Data subject categories: Website visitors, users of online services, interested parties, communication partners, business and contracting partners

Data categories: User data (e.g. web pages visited, interest in contents, access times), meta and communication data (e.g. device information, IP addresses), location data, contact details, content data (e.g. text entries, photographs, videos)

Processing purposes: Marketing (partially also based on interests and behaviour), conversion measurement, target group creation, click tracking, developing marketing strategies and increasing campaign efficiency

Legal bases: Consent (Art. 6 (1) lit. a) GDPR), legitimate interest (Art. 6 (1) lit. f) GDPR)

Legitimate interests: Optimisation and further development of the website, profit increase, customer retention and acquisition

Google Tag Manager

Service used: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland 

Privacy policy: https://policies.google.com/privacy 

Opt-out link: https://tools.google.com/dlpage/gaoptout?hl=de 

or https://myaccount.google.com/ 

Legal basis: Legitimate interest (Art. 6 (1) lit. f) GDPR) 

Legitimate interests: Coordination of different tools, optimisation and further development of the website, ease of use and display

Google Analytics

Service used: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

Privacy policy: https://policies.google.com/privacy 

Opt-out link: https://tools.google.com/dlpage/gaoptout?hl=de 

or https://myaccount.google.com/ 

Legal basis: Consent (Art. 6 (1) lit. a) GDPR) 

Google AdWords and conversion analytics

Service used: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland 

Privacy policy: https://policies.google.com/privacy 

Opt-out link: https://tools.google.com/dlpage/gaoptout?hl=de 

or https://myaccount.google.com/ 

Legal basis: Consent (Art. 6 (1) lit. a) GDPR) 

Google Doubleclick

Service used: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

Privacy policy: https://policies.google.com/privacy 

Opt-out link: https://tools.google.com/dlpage/gaoptout?hl=de 

or https://myaccount.google.com/ 

Legal basis: Consent (Art. 6 (1) lit. a) GDPR) 

Google Adsense with personalised adverts

Service used: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

Privacy policy: https://policies.google.com/privacy 

Opt-out link: https://tools.google.com/dlpage/gaoptout?hl=de 

or https://myaccount.google.com/ 

Legal basis: Consent (Art. 6 (1) lit. a) GDPR) 

Google Adsense with non-personalised adverts

Service used: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

Privacy policy: https://policies.google.com/privacy 

Opt-out link: https://tools.google.com/dlpage/gaoptout?hl=de 

or https://myaccount.google.com/ 

Legal basis: Legitimate interest (Art. 6 (1) lit. f) GDPR) 

Legitimate interests: Increasing profits, customer retention and acquisition

Facebook Pixel

Service used: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland 

Privacy policy: https://www.facebook.com/privacy/explanation 

Opt-out link: https://www.facebook.com/policies/cookies/ 

Legal basis: Consent (Art. 6 (1) lit. a) GDPR) 

CloudFlare

Service used: Cloudflare, Inc., 101 Townsend St., San Francisco, CA 94107, USA

Data protection: https://www.cloudflare.com/de-de/privacypolicy/

Opt-out link: https://optout.networkadvertising.org/?c=1 or https://youronlinechoices.eu/ (for users in the United Kingdom and Switzerland)

Usercentrics

Service used: Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany

Data protection: https://usercentrics.com/de/datenschutzerklaerung/#toggle-id-1

Opt-Out : datenschutz@usercentrics.com

Plyr

Service used: Plyr via GitHub

Privacy policy: https://sampotts.me/

Opt-out link: https://docs.github.com/de/site-policy/privacy-policies/github-privacy-statement

Amazon Web Services

Service used: Amazon Web Services EMEA S.à.r.l., 38 Avenue John F. Kennedy, 1855 Luxembourg

Data protection: https://aws.amazon.com/de/privacy/?nc1=f_pr

Opt-out link: https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_ai-opt-out.html

AppNexus

Service used: AppNexus Inc. (Xandr Inc.), 28 West 23rd Street, Floor 4, New York, NY 10010, USA

Privacy policy: https://www.xandr.com/privacy/platform-privacy-policy/

Opt-out link: https://monetize.xandr.com/privacy-center/opt_out

Social media profiles

We maintain profiles on social networks and career platforms in order to exchange information with registered users and to communicate with them in an uncomplicated manner. 

Social network user data is sometimes used for market research with the purpose of subsequent advertising. User profiles may be created and used that record user behaviour, such as users’ stated interests, in order to adjust advertisements to meet the interests of target groups. Cookies a regularly stored on users’ devices for this purpose, sometimes regardless of them being registered users of the social network or not. 

When using social media platforms, we also use the related messenger services to communicate with users in an uncomplicated manner. We herewith point out that the security of individual services may depend on the user’s account settings. Even if end-to-end encryption is used, the service provider can draw conclusions about the fact that users are communicating with us and the time this takes places and may also record location data.

Depending on the location from where the social network is being operated, the user data may be processed outside the European Union and/or outside the European Economic Area. This may result in risks to users, as it may be difficult for them to enforce their rights, for instance. 

Data subject categories: Registered and unregistered social network users

Data categories: Master data (e.g. name, address), contact details (e.g. email address, phone number), content data (e.g. text entries, photos, videos), user data (e.g. web pages visited, interests, access times), meta and communication data (e.g. device information, IP address)

Processing purposes: Increase of reach, networking

Legal bases: legitimate interests (Art. 6 (1) lit. f) GDPR), consent (Art. 6 1) lit. a) GDPR)

Legitimate interests: Interaction and communication on social media platforms, profit increase, findings about target groups

Instagram

Service used: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland

Privacy policy: https://help.instagram.com/519522125107875 

and https://www.facebook.com/about/privacy

Opt-out link: 

https://www.instagram.com/accounts/login/?next=/accounts/privacy_and_security/

Facebook

Service used: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland 

Privacy policy: https://www.facebook.com/privacy/explanation 

and https://www.facebook.com/legal/terms/page_controller_addendum

Opt-out link: https://www.facebook.com/policies/cookies/ 

LinkedIn

Service used: LinkedIn Corporation, 1000 West Maude Avenue, Sunnyvale, CA 94085, USA

Privacy policy: https://www.linkedin.com/legal/privacy-policy

Opt-out link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

TikTok

Service used: TikTok Inc., 10100 Venice Blvd., Culver City, CA 90232, USA

Privacy policy: https://www.tiktok.com/legal/privacy-policy?lang=de

Opt-out link:

YouTube

Service used: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

Privacy policy: https://policies.google.com/privacy?hl=de&gl=de 

Opt-out link: https://tools.google.com/dlpage/gaoptout?hl=de 

or https://myaccount.google.com/ 

Facebook Connect

Service used: Facebook Connect (Meta Platforms Ireland Ltd), 4 Grand Canal Square, Grand Canal Harbour, 462129 Dublin, Ireland

Privacy policy: https://www.facebook.com/privacy/policy/

Opt-out link: https://www.facebook.com/help/search/?q=opt%20out%20

Pinterest

Service used: Pinterest Inc., 808 Brannan Street San Francisco, CA 94103-490, United States of America

Privacy policy: https://policy.pinterest.com/en/privacy-policy

Opt-out link: https://help.pinterest.com/en/article/your-privacy-and-data-settings

Plugins and integrated third-party contents

Our website contains integrated functions and contents that we purchase from third-party providers. videos, images, interfaces or posts (hereinafter referred to as contents) may be integrated, for instance. 

In order to display contents to our website visitors, the respective third-party service provider processes data such as the user’s IP address so that the contents can be transmitted to, and displayed in, the browser. It is impossible to integrate third-party content without this processing activity. 

In some instances, additional information is collected through pixel tags or web beacons, which provide the third-party provider with information on the use of the content or the traffic on our website, technical information on the user’s browser or operating system, time of visit or referrer URLs. The data thus collected is stored in cookies on the user’s device. 

To protect the personal data of our website visitors, we have implemented certain security measures to prevent the automatic transfer of this data. This data is only transferred when users click on buttons and/or third-party contents. 

Data subject categories: Users of the plugin or integrated third-party contents

Data categories: User data (e.g. web pages visited, interests, time of access), meta and communication data (e.g. device information, IP address), contact details (e.g. email address, phone number), master data (e.g. name, address)

Processing purposes: Creating our website content, increasing the reach of advertisements on social media platforms, sharing of posts and contents, interest- and behaviour-based marketing, cross device tracking

Legal bases: Consent (Art. 6 (1) lit. a) GDPR)

Facebook social plugins

Service used: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland 

Privacy policy: https://www.facebook.com/privacy/explanation 

Opt-out link: https://www.facebook.com/policies/cookies/ 

Legal basis: Consent (Art. 6 (1) lit. a) GDPR)

Google Maps

Service used: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA

Privacy policy: https://policies.google.com/privacy?hl=de&gl=de 

Opt-out- link: https://tools.google.com/dlpage/gaoptout?hl=de or 

https://myaccount.google.com/ 

Legal basis: Consent (Art. 6 (1) lit. a) GDPR)

Instagram plugins and buttons

Service used: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland

Privacy policy: https://help.instagram.com/519522125107875 

and https://www.facebook.com/about/privacy

Opt-out link: https://www.instagram.com/accounts/login/?next=/accounts/privacy_and_security/

Legal basis: Consent (Art. 6 (1) lit. a) GDPR)

LinkedIn plugins and buttons

Service used: LinkedIn Corporation, 1000 West Maude Avenue, Sunnyvale, CA 94085, USA

Privacy policy: https://www.linkedin.com/legal/privacy-policy

Opt-out link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Legal basis: Consent (Art. 6 (1) lit. a) GDPR)

YouTube

Service used: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA

Privacy policy: https://policies.google.com/privacy?hl=de&gl=de 

Opt-out link: https://tools.google.com/dlpage/gaoptout?hl=de 

or https://myaccount.google.com/ 

Legal basis: Consent (Art. 6 (1) lit. a) GDPR)

Online conferences, meetings and webinars 

We hold online conferences, meetings and/or webinars. We use the products of carefully selected third-party provider for this purpose. 

During active use of such services, any data of the participants that is necessary for the purpose of communicating is processed and stored on the servers of the third-party providers used. User and meta data may also be processed in this context. 

Data subject categories: Participants of the respective online product (conference, meeting, webinar)

Data categories: Master data (e.g. name, address), contact details (e.g. email address, phone number), content data (e.g. text entries, photos, videos), meta and communication data (e.g. device information, IP address)

Processing purposes: Processing queries, increasing efficiency, boosting cooperating between various companies and locations

Legal bases: Consent (Art. 6 (1) lit. a) GDPR)

Cisco WebEx

Service used: Cisco Systems, Inc., 170 West Tasman Dr., San Jose, CA 95134, USA

Privacy policy: https://www.cisco.com/c/de_de/about/legal/privacy-full.html

Opt-out link:

Legal basis: Consent (Art. 6 (1) lit. a) GDPR)
 

Microsoft Teams

Service used: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA

Privacy policy: https://privacy.microsoft.com/de-de/privacystatement

Opt-out link: https://account.microsoft.com/privacy/ad-settings/signedout?ru=https:%2F%2Faccount.microsoft.com%2Fprivacy%2Fad-settings

Legal basis: Consent (Art. 6 (1) lit. a) GDPR)

Chatbots

Our customers can contact us through a chat function on our website. We use a chatbot for this purpose. Personal data is processed when the tool, which we provide, is being actively used. 

It is sometimes possible to communicate via chat in the internal area of an online platform. If this is the case, the chat user ID is processed. 

Our chatbot enables our website visitors to obtain regular information. This only applies if the respective user has actively selected this option. users can unsubscribe from this information at any time with effect for the future. 

Data subject categories: Chatbot users

Data categories: Master data (e.g. name, address), contact details (e.g. email address, phone number), content data (e.g. text entries, photos, videos), user data (e.g. web pages visited, interests, access times), meta and communication data (e.g. device information, IP address, location data)

Processing purposes: Processing enquiries and increasing efficiency

Legal bases: Consent (Art. 6 (1) lit. a) GDPR)

Chatchamp

Service used: Chatchamp UG, c/o Plug & Play, Balanstrasse 73, 81561 Munich, Germany

Privacy policy: https://www.chatchamp.com/privacy/

Opt-out link: datenschutz@usercentrics.com

Legal basis: Consent (Art. 6 (1) lit. a) GDPR)

Newsletter and mass communication (with tracking if necessary)

Users can subscribe to our newsletters or potential notifications (hereinafter referred to as newsletter) through various channels on our website. In accordance with legal provisions, we only send newsletters to recipients who agreed to receive the newsletter. We use a selected service provider for sending our newsletter.

An email address needs to be entered when subscribing to our newsletter. We may also collect additional data, such as name, that is required for addressing newsletter subscribers in person, for instance. 

Our newsletter is only sent out once the double-opt in process has been completed. When visitors decide to subscribe to our newsletter on our website, they receive a confirmation email that serves to prevent and exclude the improper entry of incorrect email addresses through a simple, potentially accidental, click that triggers the newsletter to be sent. Users can unsubscribe from our newsletter again at any time with future effect. Each newsletter contains an unsubscribe link (opt-out link) at the bottom.

We are further obligated to keep proof that our subscribers actually wanted to receive the newsletter. We collect and store the UP address as well as date and time of subscribe and unsubscribe for this purpose. 

Our newsletters are designed to provide us with findings about improvements, target groups and read behaviour of our subscribers. We use a web beacon or tracking pixel, which reacts to interactions with the newsletter and tells us, for example, which links in the newsletter have been clicked, if any, or at which time the newsletter has been read. We are able to allocate this information to individual subscribers for technical reasons. 

Data subject categories: Newsletter subscribers

Data categories: Master data (e.g. name, address), contact details (e.g. email address, phone number), meta and communication data (e.g. device information, IP address), user data (e.g. interests, access times)

Processing purposes: Marketing, customer retention and acquisition, campaign success analysis and assessment

Legal basis: Consent (Art. 6 (1) lit. a) GDPR)

Salesforce

Service used: Salesforce.com, inc. Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA

Privacy policy: https://www.salesforce.com/uk/company/privacy/ 

Advertising communication

We use the data provided to us for advertising purposes, particularly for publishing news about us, or our product portfolio, through various channels. All of our advertising activities comply with legal requirements and adverts are only sent once any necessary consent has been obtained. 

Recipients can inform us at any time if they no longer wish to receive our advertising. We will meet their request straight away. 

Data subject categories: Communication partners

Data categories: Master data (e.g. name, address), contact details (e.g. email address, phone number) 

Processing purposes: Direct marketing 

Legal basis: Consent (Art. 6 (1) lit. a) GDPR), legitimate interest (Art. 6 (1) lit. f) GDPR)

Legitimate interests: Retention of existing and acquisition of new contacts and/or contracting partners

Prize draws and competitions

We hold prize draws and/or competitions on our website. We process the data of participants which is required for implementing the respective campaign. This also includes data that we require for notifying the winner and distributing prizes. 

Depending on the type of campaign, posts by or about participants may be published, such as when reporting on the respective campaign or if a vote on a contribution sent in by a participant forms part of the campaign. The name of the participant is also published for this purpose. The exact data processed by us in each case depends on the specific campaign and on which data we are provided with by the participant.

The implementation of the respective campaign on one of our social media profiles is further subject to the terms and conditions and privacy policy of the respective network. 

Data subject categories: Competition participants

Data categories: Master data (e.g.name, address), contact details (e.g. email address, phone number), content data (e.g. text entries, photos, videos)

Processing purposes: Prize draw implementation, including prize distribution and announcement of the winner on various media 

Legal bases: Consent (Art. 6 (1) lit. a) GDPR)

Contacting us

Visitors can contact us directly or obtain information on various contact options on our website. We use a management tool for processing corresponding enquiries to maintain an overview of contact enquiries at all times.

If a visitor contacts us, we process the data of the person sending the query within the scope required for answering and/or processing the query. The processed data may vary depending on the channel through which a visitor has contacted us.

Data subject categories: Persons sending a query 

Data categories: Master data (e.g. name, address), contact details (e.g. email address, phone number), content data (e.g. text entries, photos, videos), user data (e.g. interests, access times), meta and communication data (e.g. device information, IP address)

Processing purposes: Processing of queries

Legal bases: Consent (Art. 6 (1) lit. a) GDPR), contractual fulfilment or initiation (Art. 6 (1) lit. b) GDPR)

Salesforce

Service used: Salesforce.com, inc. Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA

Privacy policy: https://www.salesforce.com/uk/company/privacy/ 

Registration

Visitors can register for a user account on our website. During the registration process, we collect the data required for providing a user account and related functions from the interested visitor. 

If our website visitors register, they receive an email that has to be confirmed and serves to prevent the deliberate provision of incorrect email addresses. 

We collect the IP address and time of access in order to protect the use of the internal area and prevent the misuse and unauthorised use of user accounts. We do not transfer this data to third parties, unless it is required for asserting our claims or we are obligated to do so by law. 

Data subject categories: Registered users

Data categories: Master data (e.g. name, address), contact details (e.g. email address, phone number), registration data (e.g. username and password), any other content data (e.g. text entries, photos, videos), meta and communication data (e.g. device information, IP address), user data (e.g. websites visited, interests, access times)

Processing purposes: Simplification of the website function, contractual fulfilment, customer retention

Legal bases: Consent (Art. 6 (1) lit. a) GDPR)

Events

Visitors can register for events on our website. The information collected by us, which is required for initiating and fulfilling the contract, is marked as mandatory. Any other data is provided on a voluntary basis.

Data subject categories: Participants, interested parties

Data categories: Master data (e.g. name, address), contact details (e.g. email address, phone number), transaction data (bank details, invoices, payment history), contractual data (e.g. object of contract, term)

Processing purposes: Contractual initiation and fulfilment 

Legal bases: Contractual initiation and fulfilment (Art 6 (1) lit. b) GDPR), consent (Art. 6 (1) lit. a) GDPR)

Sending information / brochures per email or post

We provide our website visitors with the option to request information of products of Louis Widmer SA per email or post. We require their contact details to provide them with this information.

Data subject categories:  Interested parties who separately request our information

Data categories:  Contact details (e.g. email address, forename and surname, address)  Marketing, customer acquisition, increasing sales
Legal bases:  Contractual initiation and fulfilment (Art 6 (1) lit. b) GDPR), consent (Art. 6 (1) lit. a) GDPR), legitimate interests (Art. 6 (1) lit. f) GDPR)

Data transfer

We transfer the person data of our website visitors for internal purposes (e.g. for internal management or to the HR department for meeting legal or contractual obligations). The data is only transferred or disclosed internally within the required scope in accordance with the relevant data protection regulations.

We may have to transfer personal data in order to perform agreements or fulfil legal obligations. Failure to provide us with the required data may result in us being unable to conclude an agreement with the data subject. 

We transfer data to countries outside of Switzerland and the European Economic Area (third countries). We do so for the reasons stated above (transfer to other recipients). We transfer data for the sole purpose of fulfilling our contractual and legal obligations or on the basis of consent previously given by the data subject. 

If we transfer data to a country outside of Switzerland and the EEA for the purpose of processing this data, we ensure that the processing activities planned by us are legitimate. For such case, we have concluded, among other things, standard contractual clauses, including a separate regulation for suitable technical and organisational measures, to protect the data subject’s data as best as possible. A copy of the guarantees used can be accessed at [link].

Storage period

We generally store the data of our website visitors for as long as required for the provision of our services or for as long as stipulated by the legislators of the European directives and regulations or other legislators in laws or regulations that apply to us. In all other cases, we delete the personal data once it has fulfilled its purpose, with the exception of data that we are obligated to store further for the fulfilment of legal obligations (e.g. we are obligated to retain documents such as agreements and invoices for a certain period as stipulated in tax and commercial law).

Automated decision-making

We do not use automated decision-making or profiling in accordance with Art. 22 GDPR.

Legal bases

The main legal bases arise from the GDPR. They are supplemented by national laws of the member states and may be applicable together with, or in addition to, the GDPR. 

Consent: Art. 6 (1) lit. a) GDPR serves as the legal basis for processing activities for which we have obtained consent for a specific processing purpose. 

Contractual fulfilment: Art 6 (1) lit. b) GDPR serves as the legal basis for processing activities that are required for the fulfilment of an agreement whose contracting party is the data subject or for the implementation of pre-contractual measures by request of the data subject.

Legal obligations: Art. 6 (1) lit. c) GDPR serves as the legal basis for processing activities that are required for the fulfilment of legal obligations. 

Vital interests: Art. 6 (1) lit d) GDPR serves as the legal basis for processing activities that are required to protect vital interests of the data subject or another natural person.

Public interests: Art. 6 (1) lit. e) GDPR serves as the legal basis for processing activities that are required for fulfilling a task that is within the interest of the public or is being fulfilled by executive order that has been transferred to the controller.

Legitimate interests: Art. 6 (1) lit. f) GDPR serves as the legal basis for processing activities that are required for maintaining the legitimate interests of the controller or third party, unless the interests or basic rights and basic freedoms of the data subject, which require for the personal data to be protected, outweigh them, particularly if the data subject is a child.

Rights of the data subject

Right to be informed In accordance with Art. 15 GDPR, data subjects have the right to request confirmation if we process personal data pertaining to them. They may request information about this data as well as the additional information stated in Art. 15 (1) GDPR and also request a copy of their data.

Right to rectification: In accordance with Art. 16 GDPR, data subjects have the right to request the rectification or completion of their personal data processed by us.

Right to erasure: In accordance with Art. 17 GDPR, data subjects have the right to request the immediate erasure of their personal data. Alternatively, they may request for us to restrict the processing in accordance with Art. 18 GDPR. 

Right to data portability: In accordance with Art. 20 GDPR, data subjects have the right to request the provision of their personal data and its transfer to another controller.

Right to complain: Data subjects have the right to complain to a responsible supervisory authority in accordance with Art. 77 GDPR.

Right to object: If personal data is processed on the basis of legitimate interests in accordance with Art. 6 (1) lit. f) GDPR, data subjects have the right to object to the processing of their personal data in accordance with Art. 21 GDPR if there are reasons arising from their specific situation or the objection is about direct advertising. In the case of the latter, the data subject has a general right to object which will be implemented by us without having to state any specific situation.

Revocation

Some data processing activities can only be carried out with explicit consent from the data subject. You can revoke your previously given consent at any time. To do so, it is sufficient to email us an informal notification at revocation.ch@louis-widmer.com. Your revocation does not affect the legitimacy of the data processing activities conducted until the receipt of your revocation.

External links

Our website contains links to websites of other providers. We herewith point out that we do not have any influence over the contents of the linked websites and compliance with data protection regulations by their providers.

Amendments

We reserve the right to amend this Privacy Policy at any time in the event of changes to our website and in accordance with the applicable data protection regulations to ensure that it meets legal requirements.

This Privacy Policy was prepared by 

DDSK GmbH