I. Introduction

In this data protection statement, we, Helvetic Secura AG with registered office in CH-3063 Ittigen (hereinafter referred to as "Helvetic Secura", "we" or "us"), explain the extent to which, in connection with the website operated by us www.helvetic-secura.ch (hereinafter referred to as "our website") collect and otherwise process personal data, with the description not being exhaustive. Personal data is understood to be all information relating to an identified or identifiable person.

II. Consent to data processing

By using our website, you as a user of our website (hereinafter referred to as "you" or "your") agree to the processing of personal data in accordance with this Data Protection Statement, including the use of cookies and Google Analytics. Otherwise, please refrain from using our website.

Please note that the content of our website is aimed at users who have reached the age of 18. We do not knowingly collect personal data from children and young people under the age of 18. Persons who use our website or otherwise provide us with personal data hereby declare that they are 18 years of age or older or are acting with the consent of their legal representative.

III. Scope

This data protection statement relates to the processing of your personal data by Helvetic Secura in connection with your access to and use of our website, including the use of cookies. This Data Protection Statement does not apply to other websites, in particular those of third parties, even if they are linked to our website or if we refer to them in any other way ("Third-Party Websites"). Helvetic Secura cannot influence the content or data protection practices of third parties and is therefore not responsible for their content or data protection practices. This Data Protection Statement also does not apply to the processing of personal data by Helvetic Secura in connection with the provision of its services.

IV. Lawfulness of data processing

Personal data is processed in accordance with the Swiss Federal Law of June 19, 1992 on Data Protection ("DPA") and in compliance with the EU General Data Protection Regulation (EU Regulation 2016/679; "GDPR"), in particular on the basis of Articles 12 and 13 DPA and Article 6 GDPR.

V. Categories of personal data processed

The personal data we regularly process can be roughly divided into two categories:

Data on the use of the website: This includes technical information about the computer, browser and Internet connection you are using (in particular browser type and version, IP address, Internet provider, operating system) as well as information about the time of access to our website and usage behavior.
Contact details: These include your name and email address.

Whenever "personal data" is referred to below, such data means the categories of your personal data as described in this Clause V.

VI. Purpose of the processing of personal data

We process personal data in order to be able to offer and inform you about our services, to enable an optimal user experience of our website and to analyze your use of the website. You can find additional information on this below in the explanations on the use of cookies and Google Analytics in Clauses VIII and IX.

VII. Collection of personal data

The personal data regarding use of the website (see Clause V above) are collected as soon as you access our website and while you use our website. For this purpose we use cookies and under certain circumstances also Google Analytics. To learn more about cookies and Google Analytics, see Clauses VIII and IX below.

We receive your contact details (see Clause V above) through you informing us, for example by contacting us via the contact form on the website.

VIII. Use of cookies

We use cookies to make visiting our website more attractive, to enable the use of certain functions and to improve user-friendliness. These are small text files which the browser you are using downloads and stores on your computer when you access and use our website. Cookies provide information about your browser settings, the location of your computer, technical data about your computer, which other websites you have visited, etc. Some cookies (so-called session cookies) are deleted at the end of the browser session, other cookies remain on your computer (so-called permanent cookies).

You have the option of restricting the use of cookies by changing the settings of your browser and also by deleting cookies. However, restricting the use of cookies may mean that certain contents or functions of our website are no longer available to you. Depending on the browser settings and in the event of a reset of the browser settings, it may be necessary for the browser settings regarding the use of cookies to be changed again. We have no influence on the settings of your browser. Further information on cookies can be found for example under www.aboutcookies.org.uk.

IX. Use of Google Analytics

We sometimes use Google Analytics to analyze the use of our website by you (so-called conversion tracking) and to find out how you access and use our website. Google Analytics is an analysis service of Google Inc ("Google"), which uses cookies that are stored on your computer and enables an analysis of your use of our website. The information generated by the cookies, including personal data, is usually transferred to a Google server in the USA and stored there. Google uses this information to evaluate your use of our website, to compile reports on website activities and to provide Helvetic Secura with further services related to the use of our website and the Internet. In accordance with the settings we have chosen, Google automatically deletes the data sent by Google Analytics and linked to cookies, user IDs or advertising IDs after a retention period of 24 months. Further information on Google Analytics is available at https://support.google.com/analytics/answer/6004245?hl=de.

Regarding your option to control the use of cookies through browser settings or to delete cookies, we refer to Clause VIII above.

Please note that our influence on the processing of your personal data by Google is limited to changing our user settings in Google Analytics. We can therefore not assume any responsibility and in particular no liability for further processing of your personal data by Google.

X. Disclosure of personal data to third parties

In principle, we do not pass on the personal data processed by us to third parties; nor do we sell your personal data. However, for the handling of business processes which may involve the processing of personal data, we use the services of external natural or legal persons, so-called Agents or third-party service providers (e.g. for the operation and design of our website, for the operation of our email servers, for the storage of our business data, which may contain personal data, within the framework of the use of Google Analytics [see Clause IX above], etc.). The processing of your personal data by such Agents or service providers is based on agreements that we have concluded with them.

In addition, Helvetic Secura may be obliged to disclose personal data (e.g. to the authorities) on the basis of statutory regulations or official orders.

XI. Transmission of personal data abroad

Personal data is generally processed in Switzerland. However, authorized representatives or third-party service providers (see Clause X above) may be located abroad or carry out the processing of personal data abroad. This may involve countries whose legally guaranteed level of data protection is lower than in Switzerland, such as the USA. On the other hand, we do not, as a matter of principle, pass on personal data to international organizations within the meaning of Art. 4 para. 26 GDPR.

Such a transfer of personal data abroad is always in accordance with Art. 6 DPA and Art. 44 GDPR. This means in particular that either the transfer is made to countries whose legislation has been found by the Federal Data Protection and Information Commissioner and the responsible EU Commission to have a sufficient level of data protection, or that appropriate legal safeguards have been put in place. Such safeguards include, in particular: (i) The conclusion of an agreement with the data recipient abroad, which is either based on EU standard contracts or approved by the Federal Data Protection and Information Commissioner, or (ii) - as far as the USA is concerned - the subjection of the data recipient under the Swiss-U.S. Privacy Shield or the EU-U.S. Privacy Shield. Please note that we only have limited influence on the transmission of personal data abroad by Agents or third-party service providers.

Please also note that, under certain circumstances, Helvetic Secura may be obliged to disclose personal data to recipients abroad (e.g. to the authorities) on the basis of statutory regulations or official orders.

XII. Retention of personal data

Helvetic Secura retains the personal data collected for as long as this is justified by the purpose of the data processing, required by the applicable laws or necessary for the assertion of any legal claims or for the defense of claims or due to official proceedings. As a rule, the retention period is no longer than 5 years, but can also include a longer or significantly shorter period. At the end of the retention period, the personal data concerned are deleted or destroyed. Regarding the storage of cookies and Google Analytics data, we also refer to Clauses VIII and IX above.

XIII. Your rights

You are entitled to various rights in relation to our processing of personal data:

Right to information: You may at any time request information from us as to whether and what personal data we process about you, for what purpose and on what legal basis we do so, where the personal data comes from if we have not collected it directly from you, to which categories of third parties we have disclosed your personal data and to which countries we have transferred your personal data. You are also entitled to receive free of charge a copy of the personal data we process about you. The time limit for providing information is usually 30 days.
Right to correction: You can always ask us to correct your personal data if it is incorrect.
Right to restriction of data processing: You have the right to request that a certain form of processing of your personal data, their processing for certain purposes or their processing as a whole be omitted. However, such a request is only effective with regard to the future processing of your personal data and does not affect the lawfulness of the processing carried out so far.
Right of erasure: You have the right to request the deletion or destruction of the personal data collected about you at any time. Such a request has no effect on the lawfulness of the processing of your personal data to date.

A restriction of data processing or a deletion of your personal data may, under certain circumstances, mean that you cannot use certain contents or functions of our website or that we cannot offer you our services.

The exercise of such rights requires, in principle, that you clearly prove your identity.

Please also note that, in individual cases, the rights set out in this Clause XIII may be restricted by legal provisions (e.g. reasons for justification on the part of Helvetic Secura).

XIV. Updating this Data Protection Statement

From time to time, we may update this Data Protection Statement at our discretion. In such a case we will make the updated version of this Data Protection Statement available on our website. The updated Data Protection Statement applies only to data processing that takes place after the effective date of the updated version. Please check our website for any updates. By continuing to use our website and disclosing your personal data after the publication of the updated version of this Data Protection Statement, you accept the changes made.

XV. Contact

Helvetic Secura AG is the controller for processing personal data. If you have any questions, wish to exercise the rights to which you are entitled, or have any other concerns about data protection, you can contact Helvetic Secura via the following email address: info@helvetic-secura.ch

Depending on the applicable data protection law, you may also have the option of contacting the Federal Data Protection and Information Commissioner or another data protection authority in the event of complaints about data processing.

Helvetic Secura AG
Worblentalstrasse 32
3063 Ittigen