Responsibility: Redefine GmbH, Flüelastrasse 27, 8047 Zurich, Schweiz
Data Protection Officer: Didier Bertschinger, firstname.lastname@example.org
1. Basic information on data processing and legal bases
We refer the terms used, such as "personal data", pseudonymisation, consent, person responsible or their "processing", to the definitions in Art. 4 of the EU Data Protection Basic Regulation (DSGVO).
The terms used, such as "user", are to be understood gender-neutrally.
We process users' personal data only in compliance with the relevant data protection regulations (Swiss data protection law and in the case of application of Art. 3 EU DS-GVO, the EU DS-GVO). This means that user data will only be processed if legal permission has been obtained. This means, in particular, if data processing is necessary or legally prescribed for the provision of our contractual services (e.g. processing of orders) and online services.
Persons under the age of 18 should not transmit any personal data to us without the consent of their parents or legal guardians. We do not request personal data from children and adolescents. We do not knowingly collect such data and do not pass it on to third parties.
2. Collection of access data and log files
Each time a person or an automated system accesses the website, we collect a series of general data and information. These general data and information are stored in the log files of the server. The name of the website accessed, file, date and time of access, transferred data volume, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider can be recorded.
If users leave comments or other contributions, their IP addresses are stored.
Log file information is stored for security reasons (e.g. to clarify abuse or fraud) for a maximum period of one month and then deleted. Data, the further storage of which is necessary for evidence purposes, is excluded from deletion until the respective incident has been finally clarified.If users leave comments or other contributions, their IP addresses are stored.
3. Disclosure of data to third parties and third-party providers
Data recorded during access to our website will only be transmitted to third parties if we are obliged to do so by law, contract, court order or due to legitimate interests.
If you order information material, brochures or products, we will only use the personal information you have entered within our company or pass it on to the companies commissioned to process the order. We will not disclose your personal information to third parties for commercial or non-commercial purposes without your express consent.
If we use subcontractors to provide our services, we will take appropriate legal precautions and take appropriate technical and organisational measures to ensure the protection of personal data in accordance with the relevant legal provisions.
If content, tools or other means from other providers (hereinafter jointly referred to as "third party providers") are used within the scope of this data protection declaration and their registered office is located in a third country, it is to be assumed that a data transfer to the registered office states of the third party providers takes place. Third countries are countries in which the DSGVO is not a directly applicable law, i.e. in principle countries outside the EU or the European Economic Area. Data is transferred to third countries either if an appropriate level of data protection, user consent or other legal permission has been obtained.
4. Data processing within the scope of the provision of contractual services
We process inventory data (e.g., names and addresses as well as contact data of users), contract data (e.g., services used, names of contact persons, payment information) for the purpose of fulfilling our contractual obligations and services pursuant to Art. 6 Para. 1 lit b. DSGVO.
5. Contact and order
When contacting us (via contact form or e-mail), the user's details will be processed in order to process the contact request and its processing in accordance with Art. 6 Para. 1 lit. b) DSGVO.
When you order information material, brochures or products, we ask for your name and other personal information. You are free to choose whether or not to provide this information. When you place an order, your personal data will only be used to process the order. This includes the transfer to distribution companies commissioned by us. Your data will only be used for direct correspondence with you.
6. Cookies & range measurement
Cookies are pieces of information that are transferred from our web server or third party web servers to the user's web browser and stored there for later retrieval. Cookies can be small files or other types of information storage.
If users do not wish cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Stored cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.
7. Google Analytics
We use Google Analytics (with anonymization function) on this website. Google Analytics is a web analysis service. Web analysis is the collection, collection and evaluation of data about the behaviour of visitors to websites. A web analysis service collects data on, among other things, from which website a person concerned came to a website (so-called referrers), which subpages of the website were accessed or how often and for how long a subpage was viewed. A web analysis is mainly used to optimise a website and to analyse the costs and benefits of Internet advertising.
As a result of the anonymisation function, your IP address is shortened before it is transmitted to the USA and thus made anonymous. This means that Google cannot associate your IP address with any other data held by Google.
The operating company of the Google Analytics component is Google Inc. 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
Google is certified under the Privacy Shield Agreement, providing a guarantee of compliance with European data protection law https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.
Google will use this information on our behalf to evaluate the use of our online services by users, to compile reports on the activities within this online service and to provide us with other services associated with the use of this online service and the Internet. Pseudonymous user profiles can be created from the processed data.
We only use Google Analytics with IP anonymization enabled. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there.
The browser is using IP address to other data from Google together. The user can prevent the cookies through a corresponding setting of browser software; About Google prevent the following link from being available Download and install browser plugin: https://tools.google.com/dlpage/gaoptout?hl=de.
For more information on Google's use of data and setting and objection options, please visit Google's web pages at: https://www.google.com/intl/de/policies/privacy/partners ("Use of data by Google when using the websites or apps of our partners"), https://www.google.com/policies/technologies/ads ("Use of data for advertising purposes"), https://www.google.de/settings/ads ("Manage information that Google uses to display advertising for you").
For more information and to review Google's current privacy policies, please visit https://www.google.de/intl/de/policies/privacy/ and https://www.google.com/analytics/terms/de.html
Further information about Google Analytics can be found at this link: https://www.google.com/intl/de_de/analytics/
8. Integration of third-party services and content
Within the scope of our online offer, we act on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 Para. 1 lit. f. of the German Civil Code). DSGVO) content or service offers from third parties in order to integrate their content and services, such as videos or fonts (hereinafter uniformly referred to as "content"). This always presupposes that the third-party providers of this content perceive the IP address of the user, since they would not be able to send the content to their browser without the IP address. The IP address is therefore required for the presentation of this content. We make every effort to use only those contents whose respective providers only use the IP address to deliver the contents. Third party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. Pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user's device and may contain, among other things, technical information about the browser and operating system, referring web pages, visit times and other information about the use of our online offering, as well as may be linked to such information from other sources.
The following presentation provides an overview of third-party providers and their contents, along with links to their data protection declarations, which contain further information on the processing of data and, in some cases already mentioned here, possible objections (so-called opt-out):
9. Rights of the data subject
Every data subject has the right to request confirmation from us as to whether we are processing personal data relating to him or her.
Any person affected by the processing of personal data may at any time request from us information free of charge (in the event of repeated or abusive assertion, a fee may be charged) about the personal data we have stored about that person. We also provide the following information:
- the processing purposes
- the categories of personal data processed
- the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations
- if possible, the planned duration for which the personal data will be stored or, if that is not possible, the criteria for determining that duration
- the existence of a right to the rectification or erasure of personal data concerning him or her or to the limitation of the processing carried out by the controller or of a right to object to such processing
- the existence of a right of appeal to a supervisory authority
- if the personal data are not collected from the data subject: All available information on the origin of the data
- the existence of a right of appeal to a supervisory authority
- the existence of automated decision-making, including profiling, and, at least in these cases, meaningful information on the logic involved and the scope and intended impact of such processing on the data subject
Any person data subject to the processing of personal data has the right to obtain the rectification without delay of inaccurate personal data concerning him or her. Furthermore, the data subject shall have the right, having regard to the purposes of the processing, to request the completion of incomplete personal data, including by means of a supplementary statement.
Any person data subject to the processing of personal data shall have the right to request that the personal data relating to him or her be deleted without delay, where there are legal reasons for the deletion and where the processing is not necessary.
Any person concerned by the processing of personal data shall have the right to request the controller to limit the processing if one of the following conditions is met:
- The accuracy of the personal data is contested by the data subject for a period of time which allows the data controller to verify the accuracy of the personal data.
- The processing is unlawful and the data subject refuses to delete the personal data and instead requests that the use of the personal data be restricted.
- The controller no longer needs the personal data for the purposes of processing, but the data subject needs them for the assertion, exercise or defence of legal rights.
- The data subject has objected to the processing and it is not yet clear whether the controller's legitimate reasons outweigh those of the data subject.
Any data subject involved in the processing of personal data has the right to obtain personal data concerning him or her which have been provided by the data subject to a controller, in a structured, common and machine-readable format, or to request that they be communicated to another controller. Provided that the processing of the data is carried out by means of automated procedures.
Any person concerned by the processing of personal data has the right to object at any time to the processing of personal data concerning him on grounds relating to his particular situation.
Any person concerned by the processing of personal data has the right to withdraw consent to the processing of personal data at any time. If a data subject wishes to exercise one or more of his or her rights, he or she can contact our data protection officer at any time.
10. Deletion of data
The data stored by us will be deleted as soon as they are no longer required for their intended purpose and there are no legal obligations to retain them. If the user's data are not deleted because they are required for other and legally permissible purposes, their processing will be restricted. This means that the data will be blocked and not processed for other purposes. This applies, for example, to user data that must be stored for commercial or tax reasons.
11. Right of objection
Users may at any time object to the future processing of their personal data in accordance with the statutory provisions. The objection can be made in particular against the processing for purposes of direct marketing.
12. Safety precautions
We take organizational, contractual and technical security measures in accordance with the state of the art to ensure that the provisions of the data protection laws are complied with and to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons.
In the course of the further development of our websites and the implementation of new technologies, changes to this data protection declaration may become necessary. We therefore recommend that you review this privacy statement from time to time.
Users are requested to inform themselves regularly about the content of the data protection declaration.
We wish you a happy day and the best of luck in achieving your goals today.