Privacy policy

Thank you for visiting our website errateam.ch and for your interest in our company.

The protection of your personal data, such as date of birth, name, telephone number, address, etc., is important to us.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect from you when you visit our site. Our data protection practices are in accordance with the legal regulations of the Swiss Federal Data Protection Act (FADP) and the EU's General Data Protection Regulation (GDPR). The following data protection declaration serves to fulfil the information obligations arising from the FADP and the GDPR. These can be found, for example, in Art. 19 ff. FADP as well as Art. 13 ff. of the GDPR.

Owner or responsible person

The controller within the meaning of Art. 5 let. j FADP or Art. 4 no. 7 GDPR is the person who alone or jointly with others decides on the purposes and means of the processing of personal data. The controller pursuant to Art. 4 No. 7 GDPR is also the recipient of the personal data within the meaning of Art. 4 No. 9 GDPR. Any third party recipient shall be identified separately.

With regard to our website, the owner or responsible person is:

ERRA TEAM AG
Strumbergächerstrasse 17
8907 Wettswil
Switzerland
E-mail: errateam@pingnet.ch
Tel: +41 44 700 30 35

Contact details of the person responsible for data protection (FADP) or the data protection officer (GDPR)

We have appointed a data protection advisor in accordance with Art. 10 FADP. This person also complies with the requirements of a data protection officer pursuant to Art. 37 GDPR. You can reach this person under the following contact details:

Erich Pohoralek
Strumbergächerstrasse 17
8907 Wettswil
Switzerland
E-mail: errateam@pingnet.ch

Provision of the website and creation of log files

Each time our website is accessed, our system automatically collects data and information from the device (e.g. computer, mobile phone, tablet, etc.) used to access it.

What personal data is collected and to what extent is it processed?

(1) Information about the browser type and version used;
(2) The operating system of the retrieval device;
(3) Host name of the accessing computer;
(4) The IP address of the retrieval device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) accessed on our website;
(7) Websites from which the user's system accessed our website (referrer tracking);
(8) Message whether the retrieval was successful;
(9) Amount of data transmitted

This data is stored in the log files of our system. This data is not stored together with the personal data of a specific user, so that individual site visitors cannot be identified.

Legal basis for the processing of personal data

Personal data is processed in accordance with the principle of legality (Art. 6 para. 1 FADP) and the principle of good faith (Art. 6 para. 2 FADP or Art. 2 CC) as well as Art. 6 para. 1 lit. f GDPR (legitimate interest).

Purpose of data processing

The temporary (automated) storage of data is necessary for the course of a website visit in order to enable delivery of the website. The storage and processing of personal data is also carried out to maintain the compatibility of our website for as many visitors as possible and to combat abuse and eliminate malfunctions. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. In addition, we use the data to optimise the website and to generally ensure the security of our information technology systems.

Duration of storage

The deletion of the aforementioned technical data takes place as soon as they are no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.

Possibility of restriction, objection, correction and deletion

You may at any time request the restriction of processing pursuant to Art. 18 GDPR or object to processing pursuant to Art. 21 GDPR as well as request the correction or deletion of data pursuant to Art. 16 or 17 GDPR. You can find out which rights you have and how to exercise them in the lower section of this privacy policy.

Special functions of the website

Our site offers you various functions, during the use of which personal data is collected, processed and stored by us. We explain below what happens to this data:

Order form

• What personal data is collected and to what extent is it processed?

  The data you enter in the form fields, such as address, surname, first name, etc., will be processed by us to fulfil the purpose stated below.

• Legal basis for the processing of personal data

  Personal data is processed in accordance with the principle of legality (Art. 6 para. 1 FADP) and the principle of good faith (Art. 6 para. 2 FADP or Art. 2 CC) as well as Art. 6 para. 1 let. b FADP (implementation of (pre)contractual measures).

• Purpose of data processing

  The purpose of the data processing is to process your order so that we can fulfil or initiate the contract concluded with you.

• Duration of storage

  The data is deleted as soon as it is no longer required for processing the order and there are no longer any legal storage obligations. As a rule, the legislator provides for a retention obligation of 10 years.

• Possibility of objection, processing, correction and deletion

  You can restrict processing in accordance with Article 18 of the GDPR, object to processing in accordance with Article 21 of the GDPR and request correction or deletion of data in accordance with Article 16 or 17 of the GDPR at any time. You can find out which rights you have and how to exercise them in the lower section of this data protection declaration.

• Necessity of providing personal data

  The information in the order form is necessary for the conclusion of a contract. If you do not fill in the mandatory fields or do not fill them in completely, the order you have requested cannot be carried out.

Contact form(s)

• What personal data is collected and to what extent is it processed?

  The data you have entered in our contact forms, which you have entered in the input mask of the contact form.

• Legal basis for the processing of personal data

  Personal data is processed in accordance with the principle of legality (Art. 6 para. 1 FADP) and the principle of good faith (Art. 6 para. 2 FADP or Art. 2 CC) as well as Art. 6 para. 1 lit. a FADP (consent through unambiguous confirmatory action or behaviour).

• Purpose of data processing

  We will only use the data collected via our contact form or contact forms for processing the specific contact request received through the contact form. Please note that in order to fulfil your contact request, we may also send you e-mails to the address you have provided. The purpose of this is so that you can receive confirmation from us that your enquiry has been correctly forwarded to us. However, the sending of this confirmation e-mail is not obligatory for us and is only for your information.

• Duration of storage

  After processing your request, the collected data will be deleted immediately, unless there are legal retention periods.

• Possibility of restriction, objection, correction and deletion

  You may at any time request the restriction of processing pursuant to Art. 18 GDPR or object to processing pursuant to Art. 21 GDPR as well as request the correction or deletion of data pursuant to Art. 16 or 17 GDPR. You can find out which rights you have and how to exercise them in the lower section of this privacy policy.

• Necessity of providing personal data

  The use of the contact forms is on a voluntary basis. You are not obliged to contact us via the contact form, but can also use the other contact options provided on our website. If you wish to use our contact form, you must fill in the fields marked as mandatory. If you do not fill in the required information on the contact form, you will either not be able to send the enquiry or we will not be able to process your enquiry due to a lack of information.

Login area / Registration

• Scope of personal data processing and personal data collected

  The registration and login details you have entered with us or have been provided to you.

• Legal basis for the processing of personal data

  Personal data is processed in accordance with the principle of legality (Art. 6 para. 1 FADP) and the principle of good faith (Art. 6 para. 2 FADP or Art. 2 CC) as well as Art. 6 para. 1 lit. b FADP (implementation of (pre)contractual measures).

• Purpose of data processing

  You have the option of using a separate login area on our website. In order for us to check your authorisation to use the protected area or the protected documents, you must enter your login data (e-mail or user name and password) in the corresponding form. If required, we can send you your login data or the option to reset the password by e-mail on request.

• Duration of storage

  The data collected will be stored for as long as you maintain a user account with us.

• Possibility of restriction, objection, correction and deletion

  You may at any time request the restriction of processing pursuant to Art. 18 GDPR or object to processing pursuant to Art. 21 GDPR as well as request the correction or deletion of data pursuant to Art. 16 or 17 GDPR. You can find out which rights you have and how to exercise them in the lower section of this privacy policy.

• Necessity of providing personal data

  Certain pages and their contents are not publicly accessible. Via the login area on our site, certain users can gain access to the protected area. The use of the content protected by the login area is not possible without entering personal data. If you wish to use our login area, you must fill in the fields marked as mandatory (user name and password). The entry of the data requires the existence of a user account. Registration is not possible if the data you have entered is incorrect. If the data you enter is incorrect or not entered at all, the protected area cannot be used. However, the rest of the site can still be used without a login.

Online cancellation form

• Scope of the processing of personal data

  The data entered by you in the form fields of the online cancellation form.

• Legal basis for the processing of personal data

  Personal data is processed in accordance with the principle of legality (Art. 6 para. 1 FADP) and the principle of good faith (Art. 6 para. 2 FADP or Art. 2 CC) as well as Art. 6 para. 1 lit. b FADP (implementation of (pre)contractual measures).

• Purpose of data processing

  Processing of revocation declarations received through the online revocation form.

• Duration of storage

  The data collected within the scope of our online revocation form will be deleted immediately after the processing of the revocation has been completed, provided that there are no statutory retention obligations.

• Possibility of restriction, objection, correction and deletion

  You may at any time request the restriction of processing pursuant to Art. 18 GDPR or object to processing pursuant to Art. 21 GDPR as well as request the correction or deletion of data pursuant to Art. 16 or 17 GDPR. You can find out which rights you have and how to exercise them in the lower section of this privacy policy.

• Necessity of providing personal data

  The provision of your data within the framework of the online cancellation form is legally necessary with regard to the mandatory information for exercising the right of cancellation via the cancellation form. Of course, you can also use the cancellation form template or other legally permissible methods for cancellation at any time. Insofar as you do not fill in all the details properly, it is possible that your cancellation declared via the online revocation form will not be effective towards us.

Disclosure of information to third parties

Personal data is processed in accordance with the principle of legality (Art. 6 para. 1 FADP) and the principle of good faith (Art. 6 para. 2 FADP and Art. 2 CC).

The disclosure of information to third parties depends on the scope of the activities or offers of our website or our business model described below.

As a matter of principle, we only keep your information for as long as necessary and treat it confidentially. Exceptions to this are the transfer of personal data to debt collection service providers, to public bodies and authorities and to private individuals, who have a right to it due to legal regulations, court decisions or official orders as well as the transfer to authorities for the purpose of initiating legal proceedings or for law enforcement purposes if our legally protected rights are attacked.

Statistical analysis of visits to this website - Webtracker

We collect, process and store the following data when this website or individual files on the website are accessed: IP address, website from which the file was accessed, name of the file, date and time of access, amount of data transferred and report on the success of the access (so-called web log). We use this access data exclusively in non-personalised form for the continuous improvement of our website and for statistical purposes.

Any personal data is processed in accordance with the principle of legality (Art. 6 para. 1 FADP) and the principle of good faith (Art. 6 para. 2 FADP and Art. 2 CC). We also use the following web trackers to evaluate visits to this website:

• Google Analytics

  • Scope of the processing of personal data

    On our site we use the web tracking service of the company Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, website: http://www.google.com/ (hereinafter: Google Analytics). Within the scope of web tracking, Google-Analytics uses cookies that are stored on your computer and enable an analysis of the use of our website and your surfing behaviour (so-called tracking). We carry out this analysis on the basis of the Google Analytics tracking service in order to constantly optimise our website and make it more accessible. When you use our website, data such as your IP address and your user activities in particular are transmitted to servers of Google Ireland Limited. We carry out this analysis on the basis of Google's tracking service in order to constantly optimise our website and make it more accessible. We also need the web tracking for security reasons. Web tracking allows us to track whether third parties are attacking our website. The information from the web tracker enables us to take effective countermeasures and protect the personal data we process from these cyber attacks. By activating IP anonymisation within the Google Analytics tracking code of this website, your IP address will be anonymised by Google Analytics before transmission. This website uses a Google Analytics tracking code that has been extended by the operator gat._anonymizeIp(); to enable only anonymised collection of IP addresses (so-called IP masking).

  • Legal basis for the processing of personal data

    The legal basis for data processing is your consent in our information banner regarding the use of cookies and web tracking (consent through clear confirming action or behaviour) in accordance with Art. 13 Para. 1 FADP and Art. 6 Para. 1 lit. a GDPR.

  • Purpose of data processing

    Google will use this information on our behalf for the purpose of evaluating your visit to this website, compiling reports on website activity and providing us with other services relating to website activity and internet usage. We also require web tracking for security reasons. Web tracking allows us to track whether third parties are attacking our website. The information from the web tracker allows us to take effective countermeasures and protect the personal data we process from these cyber attacks.

  • Duration of storage

    Google will store the data relevant to the provision of web tracking for as long as is necessary to fulfil the booked web service. The data collection and storage is anonymised. If there is a reference to a person, the data will be deleted immediately, insofar as this is not subject to any statutory retention obligations. In any case, the data will be deleted after expiry of the retention period.

  • Opposition and deletion options

    You can prevent the collection and forwarding of personal data to Google (in particular your IP address) and the processing of this data by Google by deactivating the execution of script code in your browser or activating the "Do Not Track" setting of your browser. You can also prevent the collection of data generated by the Google cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plug-in available at the following link (http://tools.google.com/dlpage/gaoptout?hl=de). Google's security and privacy policy can be found at https://policies.google.com/privacy.

• Google Tag Manager

  • What personal data is collected and to what extent is it processed?

    On our site, we use the Google Tag Manager service of the company Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: http://www.google.com/ (hereinafter: Google Tag Manager). Google Tag Manager offers a technical platform for executing and bundling other web services and web tracking programmes by means of so-called "tags". In this context, Google Tag Manager stores cookies on your computer and analyses your surfing behaviour (so-called "tracking"), insofar as web tracking tools are executed using Google Tag Manager. This data sent by individual tags integrated in Google Tag Manager is merged, stored and processed by Google Tag Manager under a uniform user interface. All integrated "tags" are listed separately again in this data protection declaration. You can find more information on the data protection of the tools integrated in Google Tag Manager in the respective section of this data protection declaration. When you use our website with the integration of Google Tag Manager tags activated, data, such as your IP address and your user activities in particular, are transmitted to servers of Google Ireland Limited. With regard to the web services integrated by means of Google Tag Manager, the regulations in the respective section of this data protection declaration apply. The tracking tools used in Google Tag Manager ensure that the IP address is anonymised by Google Tag Manager before transmission by means of IP anonymisation of the source code. In doing so, Google Tag Manager is only enabled to record IP addresses anonymously (so-called IP masking).

  • Legal basis for the processing of personal data

    The legal basis for data processing is your consent in our information banner regarding the use of cookies and web tracking (consent through clear confirming action or behaviour) in accordance with Art. 13 Para. 1 FADP and Art. 6 Para. 1 lit. a GDPR.

  • Purpose of data processing

    On our behalf, Google will use the information obtained by means of the Google Tag Manager to evaluate your visit to this website, to compile reports on website activity and to provide us with other services related to website and internet usage.

  • Duration of storage

    Google will store the data relevant to the function of Google Tag Manager for as long as is necessary to fulfil the booked web service. The data collection and storage is anonymised. If there is a reference to a person, the data will be deleted immediately, insofar as this is not subject to any legal obligations to retain data. In any case, the data will be deleted after expiry of the retention period.

  • Possibility of objection and deletion

    You can prevent the collection and forwarding of personal data to Google (in particular your IP address) and the processing of this data by Google by deactivating the execution of script code in your browser, installing a script blocker in your browser or activating the "Do Not Track" setting of your browser. In addition, you can prevent the collection of the data generated by the Google cookie and related to your use of the website (incl. your IP address) by Google as well as the processing of this data by Google by downloading and installing the browser plug-in available at the following link http://tools.google.com/dlpage/gaoptout?hl=de. Google's security and privacy policy can be found at https://policies.google.com/privacy.

• Quantcount

  We use on our site the service Quantcount of the company Quantcast International Limited, Beaux Lane House Lower Mercer Street, 2 Dublin , Ireland, e-mail: privacy.qil@quantcast.com, website: https://www.quantcast.com/. According to the assessment of Swiss authorities, the processing takes place in safe third countries. You can find the list of countries in Switzerland and further information at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html. From the EU's perspective, the data processing takes place in a third country for which there is no adequacy decision by the EU Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed for the transfer, as it cannot be ruled out that in the third country, e.g. authorities can access the collected data.your data can only be transferred to these third countries if it is ensured that the personal data are sufficiently protected at the recipient's. This can be done through the use of standard contractual clauses, in the case of data transfers within a corporate group through so-called Binding Corporate Rules, through an obligation to comply with codes of conduct that have been declared generally applicable by the Commission or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 FADP or Art. 31 para. 2 FADP and pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

  The service collects information about your user behaviour on our site and processes this for us as part of a technical analysis of user behaviour. This enables us to offer them user-oriented advertisements and improve their website experience.

  You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.

  For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://www.quantcast.com/privacy/.

  The provider also offers an opt-out option at https://www.quantcast.com/opt-out/.

• Quantserve

  We use on our site the service Quantserve of the company Quantcast International Limited, Quantcast International Limited, 2 Dublin, Ireland, e-mail: privacy.qil@quantcast.com, website: https://www.quantcast.com/. According to the assessment of Swiss authorities, the processing takes place in safe third countries. You can find the list of countries in Switzerland and further information at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html. From the EU's perspective, the data processing takes place in a third country for which there is no adequacy decision by the EU Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed for the transfer, as it cannot be ruled out that in the third country, e.g. authorities can access the collected data.your data can only be transferred to these third countries if it is ensured that the personal data are sufficiently protected at the recipient's. This can be done through the use of standard contractual clauses, in the case of data transfers within a corporate group through so-called Binding Corporate Rules, through an obligation to comply with codes of conduct that have been declared generally applicable by the Commission or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 FADP or Art. 31 para. 2 FADP and pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

  This service is an analysis tool that allows us to monitor the surfing behaviour on our site.

  You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.

  For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://www.quantcast.com/privacy/.

  The provider also offers an opt-out option at https://www.quantcast.com/opt-out/.

Integration of external web services and processing of data outside the EU

On our website, we use active content from external providers, so-called web services. By calling up our website, these external providers may receive personal information about your visit to our website. This may involve the processing of data outside of Switzerland and the EU. You can prevent this by installing an appropriate browser plug-in or deactivating the execution of scripts in your browser. This may result in functional restrictions on Internet pages that you visit.

We use the following external web services:

• CloudFlare

  We use on our site the service CloudFlare of the company Cloudflare, Inc., 101 Townsend St, 94107 San Francisco, United States, e-mail: support@cloudflare.com, website: https://www.cloudflare.com/de-de/. Your personal data will be transferred to so-called insecure third countries which do not guarantee adequate data protection through their legislation. Your data will only be transferred if appropriate data protection is guaranteed. This can be guaranteed by:

  • contracts under international law
  • Data protection clauses in a contract between the controller or processor and his contractual partner, which have been notified in advance to the FDPIC
  • specific safeguards drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses which the FDPIC has approved, issued or recognised in advance, or
  • binding internal company data protection regulations which have been approved in advance by the FDPIC or by an authority responsible for data protection in a state which guarantees adequate protection

  If such guarantees do not exist, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or performance of a contract, or if the disclosure is necessary in the context of the enforcement of claims before courts and authorities or to protect public interests. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is our legitimate interest in processing pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in achieving the purpose described below.

  Cloudflare is a so-called content delivery network that provides security functions in addition to splitting the website across several servers. Cloudflare also acts as a reverse proxy for our website.

  You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000GnZKAA0.

  With regard to the processing, you have the right of objection listed in Art. 21 GDPR. You can find more information at the end of this privacy policy.

  For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://www.cloudflare.com/privacypolicy/.

• Issuu.com

  We use on our site the service Issuu.com of the company Issuu, Inc., 131 Lytton Ave, 94301 Palo Alto, United States, e-mail: privacy@issuu.com, website: https://issuu.com/de. Your personal data will be transferred to so-called insecure third countries which do not guarantee adequate data protection through their legislation. Your data will only be transferred if appropriate data protection is guaranteed. This can be guaranteed by:

  • contracts under international law
  • Data protection clauses in a contract between the controller or processor and his contractual partner, which have been notified in advance to the FDPIC
  • specific safeguards drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses which the FDPIC has approved, issued or recognised in advance, or
  • binding internal company data protection regulations which have been approved in advance by the FDPIC or by an authority responsible for data protection in a state which guarantees adequate protection

  If such guarantees do not exist, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or performance of a contract, or if the disclosure is necessary in the context of the enforcement of claims before courts and authorities or to protect public interests. From the EU's perspective, the data processing takes place in a third country for which there is no adequacy decision by the EU Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed for the transfer, as it cannot be ruled out that in the third country, e.g. authorities can access the collected data.your data can only be transferred to these third countries if it is ensured that the personal data are sufficiently protected at the recipient's. This can be done through the use of standard contractual clauses, in the case of data transfers within a corporate group through so-called Binding Corporate Rules, through an obligation to comply with codes of conduct that have been declared generally applicable by the Commission or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 FADP or Art. 31 para. 2 FADP and pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

  Through the integrated service we can deposit graphics and PDF files in creative forms on our website.

  You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.

  For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://issuu.com/legal/privacy.

• Legally ok Rechtstextsnippet und Module

  We use on our site the service Legally ok Rechtstextsnippet und Module of the company Legally ok GmbH, Schochenmühlestrasse 6, 6340 Baar, Switzerland, e-mail: hello@legally-ok.com, website: https://www.legally-ok.com/. Processing is carried out exclusively in Switzerland in accordance with the data protection legislation applicable there. The processing also takes place in a third country outside the EU. For this third country, there is an adequacy decision of the Commission. On the page of the EU Commission (link: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_de) you will find an up-to-date list of all adequacy decisions.

  The legal basis for the transmission and processing is Art. 31 para. 1 FADP and Art. 6 para. 1 lit. c GDPR. The use of the service helps us to comply with our legal obligations.

  With the help of the service, the contents of our legal texts are reloaded on our website. The respective current legal texts are reloaded via the integration on our page. This integration may also be used to reload further technical modules with regard to the legal texts or legally required elements.

  You can find out what rights you have with regard to processing at the end of this privacy statement.

  For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://www.legally-ok.com/datenschutz/.

• PayPal

  We use the service PayPal of the company PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg on our website. According to the assessment of Swiss authorities, the processing takes place in safe third countries. You can find the list of countries in Switzerland and further information at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html. The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is the contract already concluded or to be concluded between you and us pursuant to Art. 31 para. 2 let. a FADP and Art. 6 para. 1 let. b GDPR.

  The service is integrated by us in order to be able to show you the PayPal button on every sub-page in our online shop, so that you know which payment method you can use to shop with us….

  Due to the contract concluded between you and PayPal, data may be transferred to companies affiliated with PayPal in the event of payment via PayPal. These companies may also be located in the USA, which is why it cannot be ruled out that US authorities may have access to your data.

  You can find out what rights you have with regard to processing at the end of this privacy statement.

  For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE.

Data security and data protection, communication by e-mail

Your personal data is protected by technical and organisational measures during collection, storage and processing so that it is not accessible to third parties. In the case of unencrypted communication by e-mail, we cannot guarantee complete data security on the transmission path to our IT systems, so we recommend encrypted communication or the postal service for information requiring a high level of confidentiality.

Duration of data storage and rights of the data subject

Duration of storage

We store personal data only to the extent and for as long as necessary to fulfil the purposes for which the personal data was collected, we have a legitimate overriding interest in retaining the data or are legally obliged to do so.

Right to information

You have the right to request confirmation as to whether we are processing personal data about you. If this is the case, you have the right to information on the data specified in 25 ff. FADP or Art. 15 para. 1 GDPR, insofar as the information cannot be refused, restricted or postponed by the owner of the data collection (cf. Art. 26 f. FADP or Art. 15 para. 4 GDPR). We will also be happy to provide you with a copy of the data.

Right of rectification

Pursuant to Art. 32 (1) FADP or Art. 16 GDPR, you have the right to demand that incorrect personal data (e.g. address, name, etc.) be corrected, provided that there is no legal obligation to the contrary. You can also request that the data stored by us be completed at any time. A corresponding adjustment will be made immediately.

Right to erasure

Pursuant to Article 17 (1) of the GDPR, you have the right to have us delete the personal data we have collected about you if

• the data is either no longer required;
• the legal basis for processing has ceased to exist without replacement due to the revocation of your consent;
• there are no longer any legitimate reasons for processing the data;
• Your data is being processed unlawfully;
• a legal obligation requires this.

Pursuant to Article 17 (3) of the GDPR, this right does not exist if

• the processing is necessary for the exercise of the right to freedom of expression and information;
• Your data has been collected on the basis of a legal obligation;
• processing is necessary for reasons of public interest;
• the data is necessary for the assertion, exercise or defence of legal claims.

Right to restrict processing

According to Art. 18 (1) GDPR, you have the right to request the restriction of the processing of your personal data in individual cases.

This is the case when

• the accuracy of the personal data is disputed by you;
• the processing is unlawful and you do not consent to its deletion;
• the data is no longer required for the purpose of processing, but the collected data is used for the assertion, exercise or defence of legal claims;
• an objection to the processing has been lodged pursuant to Art. 21 (1) GDPR and it is still unclear which interests prevail.

Right of withdrawal

If you have given us express consent to process your personal data (Art. 6 para. 6 FADP and Art. 31 para. 1 FADP; Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR), you may revoke this consent at any time. Please note that the lawfulness of the processing carried out on the basis of the consent up to the revocation is not affected by this. Information for which we are legally obliged to retain data will be deleted after expiry of the deadline.

Right to object

In accordance with Art. 21 of the GDPR, you have the right to object at any time to the processing of personal data relating to you that has been collected on the basis of Art. 6 (1) f of the GDPR (in the context of a legitimate interest). If you have given us express consent to process your personal data (Art. 6 para. 6 FADP and Art. 31 para. 1 FADP), you may revoke this consent at any time. Please note that the lawfulness of the processing carried out on the basis of the consent up to the r

Back