General Privacy Statement
A. Controller and Responsibility
The responsible for the processing of personal data and therefore the controller in accordance with this privacy statement is swiss-acm charter GmbH, Widenacherstrasse 17a, 8156 Oberhasli Switzerland ("swiss-acm"). The person responsible for data protection at our company can be reached at the aforementioned postal address, by e-mail to contact@swiss-acm.ch or by telephone at +41 79 691 82 27
B. Personal data and terminology
Personal data is all information relating to a specific or identifiable (i.e., identified, or identifiable) natural person such as name, address, telephone number, e-mail address, date of birth, etc. ("personal data").
Processing means any operation with personal data, irrespective of the means applied and the procedure, and in particular the collection, storage, use, revision, disclosure, archiving or destruction of data (“processing” or processed”).
Data Subject is any natural person whose personal data is processed (“data subject").
Any private natural or legal person, public authority, agency, or other entity that alone or jointly with others decides on the purpose and the means of the processing is a controller (“controller”).
Any natural or legal person, public authority, agency, or other entity which processes personal data on behalf of the controller is a processor (“processor”).
C. Collection of personal data
You or the persons concerned provide us with some of the personal data yourself by making it available to us, using our services or contacting us by e-mail or telephone. This includes, for example, name, contact data, date and place of birth, professional function, passport numbers, nationality, etc. We also process personal data that we receive from applicants for jobs or if you are one of our employees. We may also collect personal data ourselves, e.g., if you or the company for which you work use our services, or we obtain data (e.g. information from media and Internet, credit information, your addresses and possibly interests and other socio-demographic data) from publicly accessible sources (e.g. commercial registers, press, internet, media, social media). Furthermore, we may collect data from other companies, from authorities and other third parties (credit agencies) or your personal surroundings, or if you use our website (see section J). We collect this data for the purposes laid down in section D, unless otherwise referred to.
If you have given us consent to process your personal data for specific purposes, we will collect your personal data within the scope set and based on this consent. We may also base the collecting and processing of personal data on other legal grounds, if at all necessary. These include the fulfillment of a contract, the implementation of pre-contractual measures or the protection of other legitimate interests (see section D).
If you are acting on behalf of a third party or providing us with information about a third party, you declare that you are an authorized representative or agent of that third party and/or that you have obtained all necessary consents from that third party to the collection, processing, use and disclosure of their personal information to us or by us in accordance with the terms of this privacy statement.
D. Purposes of processing
We use personal data in particular to fulfill the purposes of our organization, to provide our services and to initiate and execute agreements with our customers and business partners, as well as to comply with our legal obligations. If you work for our customers or business partners, your personal data may also be affected in this function.
In addition, we also process personal data about you and other individuals, to the extent permitted and as we deem appropriate, for the following purposes:
- providing and developing our products, services and websites;
- communication with third parties and processing of their inquiries (e.g., permits, overflight, landing rights etc.);
- credit or creditworthiness checks (credit card)
- assertion of legal claims and defense in connection with legal disputes and official proceedings;
- prevention and investigation of crime and other misconduct (e.g., conducting internal investigations, data analysis to combat fraud);
- guarantees of our operations, in particular IT, our websites and other platforms;
E. Duration of retention
Unless an explicit retention period is specified at the time of collection or in this privacy statement, we process and store personal data until it is no longer required to fulfill the purpose for which it was collected, unless legal retention obligations (e.g., commercial and tax retention obligations) do not allow deletion. It is possible that personal data will also be retained for the period in which claims can be asserted and as far as we are otherwise legally obligated to do so, or legitimate business interests require this (e.g., for evidence and documentation purposes).
F. Rights of the data subject
Consent given can be revoked at any time, without affecting the lawfulness of the data processing carried out already. In addition, depending on the circumstances and the applicable data protection law you may have the right to Information, correction, deletion, or restriction of the processing of your personal data, the right to object to the processing and the right to data portability. Please note that the exercise of these rights may conflict with contractual agreements and may have consequences such as the premature termination of the contract or cost consequences. We will inform you in advance if this is not already contractually regulated. We are also entitled to make use of the statutory restrictions on your rights, for example if we are obliged to retain or process certain data, have an overriding interest in doing so, or require it for the assertion of claims.
In addition, every data subject has the right to enforce his or her claims in court or to file a complaint with the competent data protection authority, if the applicable law provides such a right. The data protection authority in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC/EDÖB).
Regarding your rights as well as further questions, suggestions, and comments on the subject of data protection, please contact the person responsible for data protection at the contact data mentioned at the beginning (see section A).
G. Security
We take appropriate measures to protect personal data from loss, misuse, unauthorized access, disclosure, alteration, or destruction. For this purpose, we use appropriate technical and organizational measures. However, we cannot guarantee the absolute security of the data.
Unless otherwise agreed, we do not accept any liability for breaches of these safety regulations unless they are intentional or due to gross negligence.
H. Data transfer
Within the scope of our business activities, we also disclose personal data to third parties, insofar as this is permissible and appears to us to be appropriate, either because they process data for us or because they use the data for their own purposes. This concerns in particular the following entities:
¾ service providers of us (e.g., banks, insurance companies), including order processors (such as IT providers);
¾ dealers, suppliers, subcontractors, and other business partners;
¾ domestic and foreign authorities, agencies (e.g., customs and boarder control and other authorities) or courts;
¾ industry organizations, associations, organizations and other bodies;
In this context, your personal data may be stored in Switzerland as well as in other countries in Europe, the United States or any other country in the rest of the world where the service providers we use are located or where your desired destination might be. If personal Data is processed outside of Switzerland or the European Economic Area, we will take the steps required by applicable data protection law to ensure that your personal Data is treated as securely and safely as it is in Switzerland or within the European Economic Area, unless we can rely on an exception clause. An exception may apply in the case of legal proceedings abroad, but also in cases of prevailing public interests, if the performance of a contract and your requested service requires such disclosure or if you have consented.
I. Data processing through use of the website
During your visit to the website, general information is automatically collected (e.g., date of your visit, time zone, type of web browser and its settings, version and language, your IP address, MAC address of the terminal device (e.g., computer or cell phone), the operating system used, content retrieved and the domain name of your internet service provider). We use this data for the purposes mentioned in section D, in particular for marketing and administrative purposes as well as to ensure the functionality of the website. This data is also necessary to correctly operate and optimize the content of the website, to ensure the long-term functionality of our IT systems and the website, and to provide law enforcement authorities with the information they need to prosecute in the event of a cyber-attack.
1. SSL-encryption
This website uses SSL encryption for security reasons and to protect the transmission of confidential content. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://".
2. Server-Log-Files
The provider of this website automatically collects and stores information in so-called "server log files", which your browser automatically transmits to us. In particular, the information listed at the beginning under section J is transmitted.
3. Cookies
3.1 Definition
Cookies are small files that are stored on your terminal device when you use our website.
3.2 Essential and non-essential cookies
Essential cookies are files that are sent to the browser on your computer's hard drive to ensure the functionality of the website and to enable us to provide you with certain features. They do not require the consent of the users of the website.
With the help of non-essential cookies, we collect information about visits to the website. In addition, we use non-essential cookies to improve the user-friendliness of the website, for example, to ensure the submission sheet functionality, to adapt our offer to customer preferences and to make your browsing experience on the website as comfortable as possible. We also use cookies to optimize our advertising. Non-essential cookies require depending on the applicable law the consent of the users of the website.
3.3 Session-cookies and persistent cookies
So-called "session cookies" are automatically deleted after the end of your visit. For example, we may use session cookies for already completed online forms or language settings across different pages of an internet session. In addition, we also use persistent cookies. These remain stored on your terminal device after the end of the browser session if you do not delete them. When you visit our website again, it will then automatically recognize which inputs and settings you prefer. Depending on the type of cookie, these cookies remain stored on your terminal device for a limited period of time (e.g., two years) and are automatically deactivated after the programmed time has expired. They serve to make our website more user-friendly, more effective, and more secure. Thanks to these cookies, you will, for example, be shown information on the page that is specifically tailored to your interests.
3.4 Activation, deactivation, and deletion of cookies
All web browsers offer the possibility to activate, deactivate or delete the use of cookies by configuring the settings or options of the browser accordingly. If cookies are completely or partially disabled or deleted, not all functions of the website may be available.
3.5 3.5 Cookies and personal data
For the cookies we use, no personal data is usually stored. However, personal data that we or third-party providers commissioned by us store from you (e.g., if you have a user account with us or these providers) may be linked to the technical data or to the information stored in and obtained from cookies and thus possibly to your person.
J. Data protection
In accordance with the applicable federal act on data protection (Data Protection Act, DPA), the employer is responsible for the processing of personal data. Therefore, the controller is swiss-acm charter GmbH, Widenacherstrasse 17a, 8156 Oberhasli Switzerland ("swiss-acm"). The person responsible for data protection at our company can be reached at the aforementioned postal address, by e-mail to contact@swiss-acm.ch or by telephone at +41 79 691 82 27.
In connection with the employment, the employer will process personal data (personal details, application documents submitted and reference information, marital status, religious denomination in the case of persons liable to withholding tax, salary and other remuneration, employee qualifications as well as interim and final certificates or employment, accident and illness reports as well as medical certificates, salary assignments, debt collection policys and extracts from the criminal register, etc.) of the employee, which includes in particular collecting, storing, using, revising, disclosing, archiving, deleting or destroying of data. The employer processes the employee's personal data insofar as it relates to the employee's suitability for the employment relationship or is necessary for the performance of the employment contract and for marketing and representation purposes on our Webpages and social media profiles.
In connection with the employment relationship, it may be necessary for the employer to disclose Personal Data to the following categories of recipients: external service providers, (possible) clients, website visitors, insurance companies, insurance brokers or public authorities.
Within the scope of the employment relationship, use is also made in particular of external IT-service and cloud providers with servers in Switzerland and the European Economic Area (EEA). The employer then uses certain IT-services and means of communication which may be associated with data security risks (e.g. e-mail, video conferences).
The employer may also transfer personal data to affiliated companies and other third parties located within and outside the European Union worldwide. The employer will do the latter based on consent or standard contractual clauses, or if it is necessary for the performance of a contract or the enforcement of legal claims.
Personal data shall be stored by the employer for as long as is necessary in connection with the employment relationship, for as long as there is a legal obligation to retain and document the data, or for as long as there is an overriding private or public interest in doing so. The employer shall take all reasonable and appropriate precautions to protect the personal data from loss and unauthorized access by third parties.
In particular, the employee has the right to obtain information about the personal data processed about her/him and the purpose of the data processing, the right to correction as well as the right to deletion or restriction of the processing of her/his personal data, the right to object to the processing, the right to take legal action before a competent supervisory authority and as well as to data transmission/transferability. Conditions and exceptions apply to these rights. To the extent permitted or required by law, the employer may refuse requests to exercise these rights. For example, if the employer may or must retain or otherwise continue to process the personal data despite a request to delete the personal data or restrict processing for legal reasons.
This privacy policy does not require express consent by the employee. This privacy policy on data protection is merely information on the nature, scope and purpose of the use of personal data by the employer. The employer reserves the right to unilaterally change the content of this clause at any time and without notice. For this reason, and for data processing going beyond the employment relationship, it is recommended that you regularly consult the employer's general privacy policy on its website.
K. Final provisions
This privacy statement is not part of any contract with you. We reserve the right to change the content of this privacy statement at any time and without notice. The current version published on our website applies. We therefore recommend that you consult this privacy statement regularly. In addition to this data protection statement, we may inform you separately about the processing of your data, for example by means of further separate data protection statements relating to specific relationships (e.g., customer or applicant relationships).
We appreciate your business
Widenacherstrasse 17a
8156 Oberhasli
Switzerland