3.1 What data we collect from you and from whom we receive this data
First and foremost, we process personal data that you provide to us or that we collect when operating our website. Under certain circumstances, we may also receive personal data about you from third parties. This may include the following categories:
- Contact data (cell phone number, e-mail address, etc.);
- Online identifiers (e.g. cookie identifiers, IP addresses);
- Location and traffic data;
- Sound and image recordings
- and others
3.2 Under what conditions do we process your data?
We treat your data confidentially and in accordance with the purposes set out in this privacy policy. In doing so, we ensure transparent and proportionate processing.
If, in exceptional cases, we are unable to comply with these principles, data processing may still be lawful because there is a justification. In particular, the following grounds for justification may apply:
- Your consent;
- the performance of a contract or pre-contractual measures.
3.3 How can you withdraw your consent?
If you have given us your consent to process your personal data for specific purposes, we will process your data within the scope of this consent, unless we have another justification.
You can withdraw your consent at any time by sending an e-mail to the address given in the legal notice. Data processing that has already taken place is not affected by this.
3.4 In which cases can we pass on your data to third parties?
a) Principle
Under certain circumstances, we may need to use the services of third parties or affiliated companies and commission them to process your data (so-called processors). Categories of recipients are in particular:
- IT service providers (web hosting, support, cloud services, website design, etc.);
- Providers of tracking, conversion and advertising services.
We ensure that these third parties and our affiliated companies comply with data protection requirements and treat your personal data confidentially.
b) Visiting our social media channels
We have embedded links to our social media channels on our website. This is visible to you in each case (typically via corresponding icons). If you click on the icons, you will be redirected to our social media channels.
In this case, the social media providers are informed that you have accessed their platform from our website. The social media providers can use the data collected in this way for their own purposes. We would like to point out that we have no knowledge of the content of the transmitted data or its use by the providers.
c) Transfer abroad
Under certain circumstances, your personal data may be transferred to companies abroad as part of order processing. These companies are obliged to protect your data to the same extent. The transfer can take place worldwide.
If the level of data protection does not correspond to that in Switzerland, we carry out a prior risk assessment and contractually ensure that the same level of protection is guaranteed as in Switzerland (e.g. by means of the new standard contractual clauses of the EU Commission or other legally prescribed measures). If our risk assessment is negative, we will take additional technical measures to protect your data. You can access the EU Commission’s standard contractual clauses at the following link: https://commission.europa.eu/publications/standard-contractual-clauses-controllers-and-processors-eueea_de
3.5 How long do we store your data?
We only store personal data for as long as is necessary to fulfill the individual purposes for which the data was collected.
Data that we store when you visit our website is stored for twelve months. An exception applies to analysis and tracking data, which may be stored for longer.
We store contract data for longer, as we are obliged to do so by law. In particular, we must store business communications, concluded contracts and accounting documents for up to 10 years. If we no longer need such data from you to perform the services, the data will be blocked and we will only use it for accounting and tax purposes.
3.6 How do we protect your data?
We will store your data securely and take all reasonable measures to protect your data from loss, access, misuse or alteration.
Our contractual partners and employees who have access to your data are obliged to comply with data protection regulations. In some cases, it will be necessary for us to pass on your inquiries to companies affiliated with us. Your data will also be treated confidentially in these cases.
Within our website, we use the SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser.
3.7 What rights do you have?
a) Right to information
You can request information about the data we have stored about you at any time. Please send your request for information together with proof of identity to julia.lambrecht@scort.ch.
You also have the right to receive your data in a commonly used file format if we process your data automatically and if:
- you have given your consent for the processing of this data; or
- you have provided data in connection with the conclusion or performance of a contract.
We may restrict or refuse to provide information or data if this conflicts with our legal obligations, our own legitimate interests, public interests or the interests of a third party.
The processing of your request is subject to the statutory processing period of 30 days. However, we may extend this period due to a high volume of requests, for legal or technical reasons or because we require more detailed information from you. You will be informed of the extension in good time, at least in text form.
b) Deletion and correction
You have the option of requesting the deletion or correction of your data at any time. We may reject the request if statutory provisions oblige us to store the data for a longer period or to store it unchanged or if your request is contrary to a legal requirement.
Please note that exercising your rights may be in conflict with contractual agreements and may have corresponding effects on the performance of the contract (e.g. premature termination of the contract or cost consequences).
c) Legal recourse
If you are affected by the processing of personal data, you have the right to enforce your rights in court or to file a complaint with the competent supervisory authority. The competent supervisory authority in Switzerland is the Federal Data Protection and Information Commissioner: https://www.edoeb.admin.ch.
3.8 Changes to the privacy policy
We may change this privacy policy at any time or adapt it to the currently applicable data protection guidelines. The changes will be published on our website; you will not be informed separately.
3.9 Cookies
We use the “Real Cookie Banner” consent tool to manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and the related consents. Details on how “Real Cookie Banner” works can be found at https://devowl.io/de/rcb/datenverarbeitung/.
The legal basis for the processing of personal data in this context is Art. 6 para. 1 lit. c GDPR and Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents.
The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consent.