Privacy

We place great importance on ensuring that the handling of personal data is transparent. This privacy policy explains what personal data we collect, for what purpose, and to whom we disclose it. To ensure a high level of transparency, this privacy policy is regularly reviewed and updated.

Content

1. What services we use

Craft CMS

 

2. Contact details

If you have any questions or concerns regarding how we protect your data, you can contact us at any time by email at admin@10vu10.ch. The entity responsible for data processing carried out via this website is:

 

10vu10
Fabian Häfliger
Bellevueweg 8
6300 Zug
Switzerland

 

Data Protection Officer:
Fabian Häfliger
admin@10vu10.ch

 

3. General principles

3.1 What data do we collect from you, and from whom do we receive this data?

We primarily process personal data that you provide to us or that we collect when operating our website. In some cases, we may also receive personal data about you from third parties. These may include the following categories:

  • Personal master data (name, address, date of birth, etc.)
  • Contact data (mobile number, email address, etc.)
  • Financial data (e.g. account details)
  • Online identifiers (e.g. cookie ID, IP addresses)
  • Location and traffic data
  • Audio and image recordings
  • Particularly sensitive data (e.g. biometric data or information about your health)

3.2 Under what conditions do we process your data?

We treat your data confidentially and in accordance with the purposes set out in this privacy policy. We ensure processing is transparent and proportionate.

If we are exceptionally unable to follow these principles, processing may still be lawful where a justification applies. Justifications include in particular:

  • Your consent
  • Performance of a contract or pre-contractual measures
  • Our legitimate interests, provided your interests do not override ours

3.3 How can you withdraw your consent?

If you have given us consent to process your personal data for specific purposes, we process your data within the scope of that consent, unless we have another justification.

You may withdraw your consent at any time by sending an email to the address given in the legal notice. Processing that has already taken place is not affected.

3.4 In which cases may we disclose your data to third parties?

a. General principle

We may need to use services of third parties or affiliated companies and commission them to process your data (so-called processors). Categories of recipients include in particular:

  • Accounting, fiduciary and audit firms
  • Consultancies (legal, tax, etc.)
  • IT service providers (web hosting, support, cloud services, website design, etc.)
  • Payment service providers
  • Providers of tracking, conversion and advertising services

We ensure that these third parties and our affiliated companies meet data protection requirements and treat your personal data confidentially.

We may also be required to disclose your personal data to authorities.

b. Visiting our social media channels

We may have embedded links to our social media channels on our website. This is visible to you in each case (typically via corresponding icons). If you click the icons, you are redirected to our social media channels.

In this case, the social media provider learns that you are accessing their platform from our website. The social media provider may use the data collected in this way for its own purposes. We point out that we have no knowledge of the content of the transmitted data or of how it is used by the operators.

c. Disclosure abroad

In the context of commissioned processing, your personal data may be transferred to companies abroad. These companies are subject to the same extent of data protection obligations as we are. Transfer may take place worldwide.

If the level of data protection does not correspond to that of Switzerland, we carry out a prior risk assessment and contractually ensure that the same protection as in Switzerland is guaranteed (e.g. by means of the new EU Commission standard contractual clauses or other legally required measures). If our risk assessment is negative, we take additional technical measures to protect your data. You can access the EU Commission standard contractual clauses at the following link: https://commission.europa.eu/publications/standard-contractual-clauses-controllers-and-processors-eueea_de

3.5 How long do we retain your data?

We store personal data only for as long as necessary to fulfil the individual purposes for which the data was collected.

Data we store when you visit our website is retained for twelve months. An exception applies to analysis and tracking data, which may be retained for longer.

We store contract data for longer because we are obliged to do so by law. In particular, we must retain business correspondence, concluded contracts and accounting records for up to 10 years. Where we no longer need such data from you to provide services, the data is blocked and we use it only for accounting and tax purposes.

3.6 How do we protect your data?

We store your data securely and take all reasonable measures to protect your data against loss, access, misuse or alteration.

Our contractual partners and employees who have access to your data are obliged to comply with data protection provisions. In some cases, we may need to forward your requests to affiliated companies. Your data will also be treated confidentially in those cases.

On our website we use SSL (Secure Socket Layer) together with the highest level of encryption supported by your browser.

3.7 What rights do you have?

a. Right of access

You may request information about the data we store about you at any time. Please send your request together with proof of identity to admin@10vu10.ch.

You also have the right to receive your data in a common file format if we process your data automatically and if:

  • you have given consent for processing of this data; or
  • you have provided data in connection with the conclusion or performance of a contract.

We may restrict or refuse disclosure if this conflicts with our legal obligations, legitimate own or public interests, or the interests of a third party.

Your request is subject to the statutory processing period of 30 days. We may extend this period due to high request volume, legal or technical reasons, or because we need further information from you. You will be informed of any extension in good time, at least in text form.

b. Deletion and rectification

You may request deletion or rectification of your data at any time. We may refuse the request if legal provisions require longer or unchanged retention, or if a permitted ground conflicts with your request.

Please note that exercising your rights may conflict with contractual arrangements and may affect contract performance (e.g. early termination or cost consequences).

c. Legal remedies

If you are affected by the processing of personal data, you have the right to enforce your rights in court or to file a report with the competent supervisory authority. The competent supervisory authority in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC): https://www.edoeb.admin.ch

3.8 Changes to this privacy policy

We may change this privacy policy at any time. Changes will be published on 10vu10.ch; you will not be informed separately.

 

4. Individual processing operations

4.1 Providing the website and creating log files

What information do we receive and how do we use it?

When you visit 10vu10.ch, certain data is automatically stored on our servers or on servers of services and products we use and/or have installed, for system administration, statistical or backup purposes, or for tracking purposes. This includes:

  • the name of your internet service provider
  • your IP address (where applicable)
  • the version of your browser software
  • the operating system of the device used to access the URL
  • the date and time of access
  • the website from which you accessed the URL
  • the search terms you used to find the URL

Why are we allowed to process this data?

This data cannot be attributed to a specific person, and we do not merge it with other data sources. Log files are stored to ensure the functionality of the website and the security of our IT systems. This constitutes our legitimate interest.

How can you prevent data collection?

Data is stored only as long as necessary to achieve the purpose of collection. Accordingly, data is deleted after each session ends. Storage of log files is essential for operation of the website; you therefore have no right to object.

4.2 Craft CMS

Our website is based on Craft CMS, a content management system developed by Pixel & Tonic, Inc. Craft CMS enables us to create, manage and publish content.

When you use our website, which is based on Craft CMS, various data may be collected and stored, including your IP address, the date and time of access, and information about the browser you use. This data is used mainly for administrative purposes and to ensure smooth operation of the website.

Some Craft CMS features, such as contact forms or comment functions, may collect additional personal data when you use them.