Privacy Policy

The responsible party within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

Götter Brauerei GmbH
Daniel Ruppen
Mühlegasse 18
Building H
6340 Baar

E-Mail: shop@goetterbrauerei.ch
Website: https://goetterbrauerei.ch/

General Note

Based on Article 13 of the Swiss Federal Constitution and the data protection provisions of the federal government (Data Protection Act, FADP), every person has the right to the protection of their privacy as well as protection against the misuse of their personal data. The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

In cooperation with our hosting providers, we strive to protect the databases as well as possible against unauthorized access, loss, misuse, or falsification.

We point out that data transmission over the Internet (e.g., when communicating via email) can have security vulnerabilities. A complete protection of data against access by third parties is not possible.

By using this website, you consent to the collection, processing, and use of data as described below. This website can generally be visited without registration. Data such as accessed pages or the name of the accessed file, date, and time are stored on the server for statistical purposes without these data being directly related to your person. Personal data, in particular name, address, or email address, are collected on a voluntary basis as far as possible. Without your consent, the data will not be passed on to third parties.

To use this website, you must be of legal age or have parental consent. We ask every person responsible for a minor to monitor the use of this website by the latter. You may also use the website for professional purposes or as part of a part-time job.

Processing of Personal Data

Personal data is all information that relates to an identified or identifiable person. A data subject is a person about whom personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures applied, in particular the archiving, disclosure, acquisition, deletion, storage, modification, destruction, and use of personal data.

We process personal data in accordance with Swiss data protection law. Furthermore, we process personal data – to the extent and insofar as the EU GDPR is applicable – in accordance with the following legal bases in connection with Art. 6 Para. 1 GDPR:

• Consent (Art. 6 Para. 1 lit. a. GDPR) - The data subject has given consent to the processing of his or her personal data for one or more specific purposes.
• Performance of a contract and pre-contractual requests (Art. 6 Para. 1 lit. b. GDPR) - Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
• Legal obligation (Art. 6 Para. 1 lit. c. GDPR) - Processing is necessary for compliance with a legal obligation to which the controller is subject.
• Protection of vital interests (Art. 6 Para. 1 lit. d. GDPR) - Processing is necessary in order to protect the vital interests of the data subject or of another natural person.
• Legitimate interests (Art. 6 Para. 1 lit. f. GDPR) - Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.
• Application procedure as a pre-contractual or contractual relationship (Art. 9 Para. 2 lit. b GDPR) - Insofar as special categories of personal data within the meaning of Art. 9 Para. 1 GDPR (e.g., health data, such as severely disabled status or ethnic origin) are requested from applicants as part of the application process so that the controller or the data subject can exercise the rights and fulfill the obligations arising from labor law and social security and social protection law, their processing takes place in accordance with Art. 9 Para. 2 lit. b. GDPR, in the case of the protection of the vital interests of the applicants or other persons acc. to Art. 9 Para. 2 lit. c. GDPR or for purposes of preventive or occupational medicine, for the assessment of the working capacity of the employee, medical diagnosis, the provision of health or social care or treatment or the management of health or social care systems and services acc. to Art. 9 Para. 2 lit. h. GDPR. In the case of communication of special categories of data based on voluntary consent, their processing takes place on the basis of Art. 9 Para. 2 lit. a. GDPR.

We process personal data for the duration required for the respective purpose or purposes. In the case of longer-term retention obligations due to legal and other obligations to which we are subject, we restrict the processing accordingly.

Relevant Legal Bases

In accordance with Art. 13 GDPR, we inform you of the legal bases of our data processing. If the legal basis is not mentioned in the privacy policy, the following applies: The legal basis for obtaining consent is Art. 6 Para. 1 lit. a and Art. 7 GDPR, the legal basis for processing for the performance of our services and the execution of contractual measures as well as answering inquiries is Art. 6 Para. 1 lit. b GDPR, the legal basis for processing to fulfill our legal obligations is Art. 6 Para. 1 lit. c GDPR, and the legal basis for processing to safeguard our legitimate interests is Art. 6 Para. 1 lit. f GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 Para. 1 lit. d GDPR serves as the legal basis.

Security Measures

We take appropriate technical and organizational measures in accordance with legal requirements, taking into account the state of the art, the implementation costs and the nature, scope, context and purposes of the processing as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, in order to ensure a level of security appropriate to the risk.

These measures include, in particular, safeguarding the confidentiality, integrity, and availability of data by controlling physical and electronic access to the data as well as the access, input, disclosure, safeguarding of availability, and separation concerning them. Furthermore, we have established procedures that ensure the exercise of data subject rights, the deletion of data, and responses to data endangerment. We also consider the protection of personal data right from the development or selection of hardware, software, and procedures in accordance with the principle of data protection by design and by default.

Transmission of Personal Data

In the context of our processing of personal data, it may happen that the data is transmitted to other entities, companies, legally independent organizational units, or persons, or that it is disclosed to them. Recipients of this data can include, for example, service providers tasked with IT tasks or providers of services and content embedded in a website. In such cases, we observe the legal requirements and, in particular, conclude corresponding contracts or agreements that serve to protect your data with the recipients of your data.

Data Processing in Third Countries

If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or if the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, bodies, or companies, this is done only in accordance with the legal requirements.

Subject to explicit consent or a contractually or legally required transfer, we only process the data in third countries with a recognized level of data protection, a contractual obligation through so-called standard protection clauses of the EU Commission, in the presence of certifications or binding corporate rules (Art. 44 to 49 GDPR, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_en).

Privacy Policy for Cookies

This website uses cookies. Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user’s computer. A cookie primarily serves to store information about a user during or after their visit within an online offering. The stored information can include, for example, the language settings on a website, the login status, a shopping cart, or the point at which a video was watched. The term cookies also includes other technologies that fulfill the same functions as cookies (e.g., if user details are stored using pseudonymous online identifiers, also referred to as “user IDs”).

The following cookie types and functions are distinguished:

• Temporary cookies (also: session cookies): Temporary cookies are deleted at the latest after a user has left an online offering and closed their browser.
• Permanent cookies: Permanent cookies remain stored even after the browser is closed. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. Likewise, the interests of users, which are used for reach measurement or marketing purposes, can be stored in such a cookie.
• First-party cookies: First-party cookies are set by us ourselves.
• Third-party cookies: Third-party cookies are mainly used by advertisers (so-called third parties) to process user information.
• Necessary (also: essential) cookies: Cookies may be strictly necessary for the operation of a website (e.g., to save logins or other user inputs or for security reasons).
• Statistics, marketing, and personalization cookies: Furthermore, cookies are generally also used in the context of reach measurement and when a user’s interests or their behavior (e.g., viewing certain content, using functions, etc.) on individual websites are stored in a user profile. Such profiles serve, for example, to show users content that corresponds to their potential interests. This process is also referred to as “tracking”, i.e., tracking the potential interests of users. If we use cookies or “tracking” technologies, we will inform you separately in our privacy policy or as part of obtaining consent.

Information on legal bases: The legal basis on which we process your personal data using cookies depends on whether we ask you for consent. If this applies and you consent to the use of cookies, the legal basis for the processing of your data is the declared consent. Otherwise, the data processed using cookies will be processed on the basis of our legitimate interests (e.g., in an economic operation of our online offering and its improvement) or, if the use of cookies is necessary to fulfill our contractual obligations.

Storage period: Unless we provide you with explicit information on the storage period of permanent cookies (e.g., as part of a so-called cookie opt-in), please assume that the storage period can be up to two years.

General information on revocation and objection (opt-out): Depending on whether the processing takes place on the basis of consent or legal permission, you have the opportunity at any time to revoke consent given or object to the processing of your data by cookie technologies (summarized as “opt-out”). You can initially declare your objection using your browser settings, e.g., by deactivating the use of cookies (whereby this may also restrict the functionality of our online offering). An objection to the use of cookies for online marketing purposes can also be declared via a variety of services, especially in the case of tracking, via the websites https://optout.aboutads.info and https://www.youronlinechoices.com/. In addition, you can receive further information on objecting within the context of the information on the service providers and cookies used.

Processing of cookie data on the basis of consent: We use a cookie consent management procedure within the framework of which the consent of the users to the use of cookies, or the processing and providers mentioned within the framework of the cookie consent management procedure, is obtained, managed, and can be revoked by the users. In this context, the declaration of consent is stored so as not to have to repeat the query again and to be able to prove consent in accordance with the legal obligation. The storage can take place server-side and/or in a cookie (so-called opt-in cookie, or with the help of comparable technologies) in order to be able to assign the consent to a user or their device. Subject to individual information on the providers of cookie management services, the following guidelines apply: The duration of the storage of consent can be up to two years. In this case, a pseudonymous user identifier is created and stored with the time of consent, information on the scope of consent (e.g., which categories of cookies and/or service providers) as well as the browser, system, and end device used.

• Processed data types: Usage data (e.g., visited websites, interest in content, access times), meta/communication data (e.g., device information, IP addresses).
• Data subjects: Users (e.g., website visitors, users of online services).
• Legal bases: Consent (Art. 6 Para. 1 lit. a. GDPR), Legitimate interests (Art. 6 Para. 1 lit. f. GDPR).

Privacy Policy for SSL/TLS Encryption

This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as the requests you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Privacy Policy for Server Log Files

The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

• Browser type and browser version
• Operating system used
• Referrer URL
• Host name of the accessing computer
• Time of the server request

This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of concrete indications of illegal use.

Third-Party Services

This website may use Google Maps for embedding maps, Google Invisible reCAPTCHA for protection against bots and spam, and YouTube for embedding videos.

These services of the American Google LLC use cookies, among other things, and as a result, data is transferred to Google in the USA, whereby we assume that no personal tracking takes place solely by using our website in this context.

Google has committed to ensuring adequate data protection in accordance with the US-European and US-Swiss Privacy Shield.

Further information can be found in Google’s privacy policy.

Privacy Policy for Contact Form

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not share this data without your consent.

Rights of Data Subjects

Right to Confirmation

Every data subject has the right to obtain confirmation from the operator of the website as to whether personal data concerning them is being processed. If you wish to exercise this right to confirmation, you can contact the Data Protection Officer at any time.

Right to Information

Any person affected by the processing of personal data has the right to receive free information about the personal data stored about them and a copy of this information from the operator of this website at any time. Furthermore, information may be provided on the following, where applicable:

• the purposes of the processing
• the categories of personal data being processed
• the recipients to whom the personal data has been or will be disclosed
• if possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period
• the existence of the right to request from the controller rectification or erasure of personal data, or restriction of processing of personal data concerning the data subject, or to object to such processing
• the right to lodge a complaint with a supervisory authority
• where the personal data are not collected from the data subject: any available information as to their source

Furthermore, the data subject has a right to be informed whether personal data has been transferred to a third country or to an international organization. If this is the case, the data subject also has the right to be informed of the appropriate safeguards relating to the transfer.

If you wish to exercise this right to information, you can contact our Data Protection Officer at any time.

Right to Rectification

Any person affected by the processing of personal data has the right to demand the immediate rectification of inaccurate personal data concerning them. Furthermore, taking into account the purposes of the processing, the data subject has the right to have incomplete personal data completed, including by means of providing a supplementary statement.

If you wish to exercise this right to rectification, you can contact our Data Protection Officer at any time.

Right to Erasure (Right to be Forgotten)

Any person affected by the processing of personal data has the right to require the controller of this website to erase personal data concerning them without undue delay where one of the following grounds applies, and provided the processing is not necessary:

• The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed
• The data subject withdraws consent on which the processing is based, and where there is no other legal ground for the processing
• The data subject objects to the processing for reasons arising from their particular situation, and there are no overriding legitimate grounds for the processing, or the data subject objects to processing for direct marketing and associated profiling
• The personal data have been unlawfully processed
• The personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject
• The personal data have been collected in relation to the offer of information society services directly to a child

If one of the above reasons applies and you wish to arrange for the erasure of personal data stored by the operator of this website, you can contact our Data Protection Officer at any time. The Data Protection Officer of this website will arrange for the erasure request to be complied with immediately.

Right to Restriction of Processing

Any person affected by the processing of personal data has the right to require the controller of this website to restrict processing where one of the following applies:

• The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data
• The processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead
• The controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defense of legal claims
• The data subject has objected to processing pending the verification whether the legitimate grounds of the controller override those of the data subject

If one of the above conditions is met and you wish to request the restriction of personal data stored by the operator of this website, you can contact our Data Protection Officer at any time. The Data Protection Officer of this website will arrange the restriction of the processing.

Right to Data Portability

Any person affected by the processing of personal data has the right to receive the personal data concerning them in a structured, commonly used and machine-readable format. They also have the right to have this data transmitted to another controller if the legal requirements are met.

Furthermore, the data subject has the right to have the personal data transmitted directly from one controller to another, where technically feasible and provided this does not adversely affect the rights and freedoms of others.

To assert the right to data portability, you can contact the Data Protection Officer appointed by the operator of this website at any time.

Right to Object

Any person affected by the processing of personal data has the right to object, on grounds relating to their particular situation, at any time to the processing of personal data concerning them.

The operator of this website will no longer process the personal data in the event of an objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defense of legal claims.

To exercise the right to object, you can contact the Data Protection Officer of this website directly.

Right to Withdraw Data Protection Consent

Any person affected by the processing of personal data has the right to withdraw consent given for the processing of personal data at any time.

If you wish to exercise your right to withdraw consent, you can contact our Data Protection Officer at any time.

Privacy Policy for Objection to Promotional Emails

We hereby object to the use of contact data published within the scope of the imprint obligation for the transmission of expressly unsolicited advertising and information material. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, for example through spam emails.

Paid Services

For the provision of paid services, we request additional data, such as payment details, in order to be able to execute your order or your mandate. We store this data in our systems until the statutory retention periods have expired.

Use of Google Maps

This website uses the Google Maps offering. This allows us to display interactive maps directly on the website and enables you to comfortably use the map function. By visiting the website, Google receives the information that you have accessed the corresponding subpage of our website. This occurs regardless of whether Google provides a user account through which you are logged in, or whether no user account exists. If you are logged in to Google, your data will be assigned directly to your account. If you do not wish the assignment with your profile on Google, you must log out before activating the button. Google stores your data as usage profiles and uses them for the purposes of advertising, market research, and/or demand-oriented design of its website. Such an evaluation takes place in particular (even for unlogged-in users) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have a right to object to the creation of these user profiles, and you must contact Google to exercise this right. Further information on the purpose and scope of data collection and its processing by Google, as well as further information on your rights in this regard and setting options to protect your privacy, can be found at: www.google.de/intl/en/policies/privacy.

Google Ads

This website uses Google Conversion Tracking. If you have reached our website via an advertisement placed by Google, Google Ads sets a cookie on your computer. The conversion tracking cookie is set when a user clicks on an ad served by Google. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of our website and the cookie has not yet expired, we and Google can recognize that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. Cookies therefore cannot be tracked across the websites of Ads customers. The information obtained using the conversion cookie is used to create conversion statistics for Ads customers who have opted for conversion tracking. Customers learn the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that personally identifies users.

If you do not wish to participate in tracking, you can reject the necessary setting of a cookie – for example, via a browser setting that generally deactivates the automatic setting of cookies, or configure your browser so that cookies from the domain “googleleadservices.com” are blocked.

Please note that you may not delete the opt-out cookies as long as you do not want measurement data to be recorded. If you have deleted all your cookies in the browser, you must set the respective opt-out cookie again.

Use of Google reCAPTCHA

We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on our websites. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter “Google”. With reCAPTCHA it is intended to check whether the data entry on our websites (e.g., in a contact form) is made by a human or by an automated program. To do this, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g., IP address, the time the website visitor spends on the website, or mouse movements made by the user). The data collected during the analysis is forwarded to Google. The reCAPTCHA analyses run entirely in the background. Website visitors are not informed that an analysis is taking place.

Data processing is based on Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its web offerings from abusive automated spying and from SPAM. Further information on Google reCAPTCHA and Google’s privacy policy can be found at the following links: https://www.google.com/intl/en/policies/privacy/ and https://policies.google.com/terms?hl=en.

Privacy Policy for Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited. If the data controller for this website is located outside the European Economic Area or Switzerland, then the Google Analytics data processing is carried out by Google LLC. Google LLC and Google Ireland Limited are hereinafter referred to as “Google”.

Via the obtained statistics we can improve our offer and make it more interesting for you as a user. This website also uses Google Analytics for a cross-device analysis of visitor flows, which is carried out via a user ID. If you have a Google user account, you can deactivate the cross-device analysis of your usage in the settings there under “My Data”, “Personal Data”.

The legal basis for the use of Google Analytics is Art. 6 Para. 1 S. 1 lit. f GDPR. The IP address transmitted by your browser within the framework of Google Analytics will not be merged with other Google data. We point out that on this website Google Analytics has been extended by the code “_anonymizeIp();” to ensure an anonymized collection of IP addresses. As a result, IP addresses are processed in abbreviated form, so that personal reference can be excluded. Insofar as the data collected about you has a personal reference, this is immediately excluded and the personal data is thus deleted immediately.

Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity, and to provide other services related to website activity and internet usage to the website operator.

Google Analytics uses cookies. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. You may refuse the use of cookies by selecting the appropriate settings on your browser; however, please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (incl. your IP address) to Google and the processing of these data by Google by downloading and installing the browser plugin available under the following link: Deactivate Google Analytics.

In addition, you can also prevent the use of Google Analytics by clicking on this link: Deactivate Google Analytics. This will save a so-called opt-out cookie on your data carrier, which prevents the processing of personal data by Google Analytics. Please note that if you delete all cookies on your device, these opt-out cookies will also be deleted, i.e., you will have to set the opt-out cookies again if you want to continue to prevent this form of data collection. The opt-out cookies are set per browser and computer/end device and must therefore be activated separately for each browser, computer or other end device.

Google Tag Manager

Google Tag Manager is a solution with which we can manage so-called website tags via an interface and thus integrate e.g., Google Analytics and other Google marketing services into our online offering. The Tag Manager itself, which implements the tags, does not process any personal data of the users. With regard to the processing of users’ personal data, reference is made to the following information on Google services. Usage policy: https://www.google.com/intl/en/tagmanager/use-policy.html.

Privacy Policy for Facebook

This website uses functions of Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. When you visit our pages with Facebook plug-ins, a connection is established between your browser and Facebook’s servers. Data is already transmitted to Facebook during this process. If you have a Facebook account, this data can be linked to it. If you do not wish this data to be associated with your Facebook account, please log out of Facebook before visiting our site. Interactions, especially the use of a comment function or clicking a “Like” or “Share” button, are also transmitted to Facebook. Find out more at https://www.facebook.com/about/privacy.

Privacy Policy for Instagram

Functions of the Instagram service are integrated on our website. These functions are offered by Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA. If you are logged into your Instagram account, you can link the contents of our pages to your Instagram profile by clicking the Instagram button. This allows Instagram to associate the visit to our pages with your user account. We point out that we as the provider of the pages have no knowledge of the content of the transmitted data or its use by Instagram.

For more information, see Instagram’s Privacy Policy: http://instagram.com/about/legal/privacy/

External Payment Service Providers

This website uses external payment service providers through whose platforms users and we can carry out payment transactions. For example via

• PostFinance (https://www.postfinance.ch/en/detail/legal-accessibility.html)
• Visa (https://www.visa.co.uk/legal/privacy-policy.html)
• Mastercard (https://www.mastercard.ch/en-ch/vision/corp-responsibility/commitment-to-privacy/privacy.html)
• American Express (https://www.americanexpress.com/en-gb/company/legal/privacy-centre/)
• Paypal (https://www.paypal.com/uk/webapps/mpp/ua/privacy-full)
• Bexio AG (https://www.bexio.com/en-CH/privacy-policy)
• Payrexx AG (https://www.payrexx.ch/site/assets/files/2592/datenschutzerklaerung.pdf)
• Apple Pay (https://support.apple.com/en-gb/ht203027)
• Stripe (https://stripe.com/en-ch/privacy)
• Klarna (https://www.klarna.com/uk/privacy/)
• Skrill (https://www.skrill.com/en/footer/privacypolicy/)
• Giropay (https://www.giropay.de/rechtliches/datenschutzerklaerung) etc.

In the context of fulfilling contracts, we use the payment service providers on the basis of the Swiss Data Protection Ordinance and, where necessary, Art. 6 Para. 1 lit. b. EU GDPR. Otherwise, we use external payment service providers on the basis of our legitimate interests in accordance with the Swiss Data Protection Ordinance and, where necessary, in accordance with Art. 6 Para. 1 lit. f. EU GDPR, in order to offer our users an effective and secure payment option.

The data processed by the payment service providers includes inventory data, such as name and address, bank details, such as account numbers or credit card numbers, passwords, TANs and checksums, as well as contract, total and recipient-related information. The information is required to carry out the transactions. However, the data entered is only processed by the payment service providers and stored with them. We as the operator do not receive any information regarding the (bank) account or credit card, but only information confirming (accepting) or rejecting the payment. Under certain circumstances, the data may be transmitted by the payment service providers to credit reporting agencies. The purpose of this transmission is to verify identity and creditworthiness. In this regard, we refer to the general terms and conditions and data protection notices of the payment service providers.

For payment transactions, the terms and conditions and privacy notices of the respective payment service providers apply, which are accessible within the respective website or transaction applications. We also refer to these for the purpose of further information and assertion of rights of revocation, information, and other rights of data subjects.

Privacy Policy for YouTube

Functions of the “YouTube” service are integrated on this website. “YouTube” belongs to Google Ireland Limited, a company incorporated and operating under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland, which operates the services in the European Economic Area and Switzerland.

Your legal agreement with “YouTube” consists of the terms and conditions available at the following link: https://www.youtube.com/static?gl=en&template=terms&hl=en. These terms constitute a legally binding agreement between you and “YouTube” regarding the use of the services. Google’s Privacy Policy explains how “YouTube” treats your personal data and protects your privacy when you use the service.

Order Processing in the Online Shop with Customer Account

We process our customers’ data in accordance with the federal data protection regulations (Data Protection Act, DPA) and the EU GDPR, within the scope of the ordering processes in our online shop, to enable them to select and order the chosen products and services, as well as their payment and delivery, or execution.

The processed data includes master data (inventory data), communication data, contract data, payment data, and the data subjects include our customers, interested parties, and other business partners. Processing is carried out for the purpose of providing contractual services in the context of operating an online shop, billing, delivery, and customer service. Here we use session cookies, e.g., for storing the shopping cart content, and permanent cookies, e.g., for storing the login status.

Processing is based on Art. 6 Para. 1 lit. b (Execution of order processes) and c (Legally required archiving) GDPR. The details marked as necessary are required for the establishment and fulfillment of the contract. We only disclose data to third parties within the scope of delivery, payment, or within the scope of legal permissions and obligations. The data is only processed in third countries if this is necessary to fulfill the contract (e.g., at the customer’s request upon delivery or payment).

Users can optionally create a user account, in which they can view their orders in particular. As part of the registration process, users are informed of the mandatory information required. The user accounts are not public and cannot be indexed by search engines, e.g., Google. If users have terminated their user account, their data with regard to the user account will be deleted, subject to its retention being necessary for commercial or tax law reasons in accordance with Art. 6 Para. 1 lit. c GDPR. Information in the customer account remains until its deletion with subsequent archiving in the event of a legal obligation. It is the users’ responsibility to secure their data upon successful termination before the end of the contract.

As part of the registration and subsequent logins, as well as the use of our online services, we store the IP address and the time of the respective user action. Storage is based on our legitimate interests, as well as the users’ interest in protection against misuse and other unauthorized use. This data is generally not passed on to third parties unless it is necessary to pursue our claims or there is a legal obligation to do so in accordance with Art. 6 Para. 1 lit. c GDPR.

Deletion takes place after the expiry of statutory warranty and comparable obligations; the necessity of storing the data is reviewed at irregular intervals. In the case of legal archiving obligations, deletion takes place after their expiration.

Copyrights

The copyrights and all other rights to content, images, photos, or other files on the website belong exclusively to the operator of this website or the specifically named right holders. For the reproduction of any files, the written consent of the copyright holder must be obtained in advance.

Anyone who commits a copyright infringement without the consent of the respective right holder may be liable to prosecution and possibly liable for damages.

General Disclaimer

All information provided on our website has been carefully checked. We make every effort to ensure that the information we offer is up-to-date, factually correct, and complete. Nevertheless, the occurrence of errors cannot be completely ruled out, which is why we cannot guarantee the completeness, correctness, and timeliness of information, including journalistic-editorial information. Liability claims arising from material or immaterial damage caused by the use of the information provided are excluded, provided there is no demonstrably intentional or grossly negligent fault on our part.

The publisher may alter or delete texts at their own discretion and without notice and is not obliged to update the contents of this website. Use of or access to this website is at the visitor’s own risk. The publisher, its clients, or partners are not responsible for damages, such as direct, indirect, incidental, predetermined, or consequential damages, allegedly caused by visiting this website and consequently assume no liability for them.

The publisher also assumes no responsibility and liability for the content and availability of third-party websites that can be accessed via external links on this website. The operators of the linked pages are solely responsible for their content. The publisher thereby expressly distances itself from all third-party content that may be relevant under criminal or liability law or that offends common decency.

Changes

We may amend this Privacy Policy at any time without prior notice. The current version published on our website shall apply. If the Privacy Policy is part of an agreement with you, we will inform you of the change in the event of an update by email or by other appropriate means.

Questions for the Data Protection Officer

If you have any questions about data protection, please write us an email or contact the person responsible for data protection in our organization listed at the beginning of the privacy policy directly.

Source: SwissAnwalt