Data protection notice

Last updated on: 26.03.2024

We attach great importance to the transparent handling of personal data. This Data protection notice provides information about what personal data we collect, for what purpose and to whom we pass it on. To ensure a high level of transparency, this protection notice is regularly reviewed and updated.

 

1. Which services we use

  • WordPress

 

2. Contact Information

If you have any questions or concerns about the protection of your data by us, you can reach us at any time by e-mail at info@QBITS.ch Responsible for the data processing that takes place via this website is

 

QBITS AG
Industriestrasse 18
8424 Embrach
Schweiz

Person responsible for data protection:
René Breu (Managing Director)
info@QBITS.ch
+41 44 866 70 00

 

3 General principles

3.1 What data we collect from you and from whom we receive this data

  • Contact data (cell phone number, e-mail address, etc.);;
  • Financial data (e.g. account details);;
  • online identifiers (e.g. cookie identifiers, IP addresses);;

 

3.2 Under what conditions do we process your data?

We treat your data confidentially and in accordance with the purposes set out in this privacy policy. We pay attention to transparent and proportionate processing.

If, in exceptional cases, we are unable to comply with these principles, data processing may still be lawful because there is a justification. In particular, the following grounds for justification may apply:

  • Your consent;
  • the performance of a contract or pre-contractual measures;
  • our legitimate interests, provided that your interests do not prevail.

 

3.3 How can you withdraw your consent?

If you have given us your consent to process your personal data for specific purposes, we will process your data within the scope of this consent, unless we have another justification.

You can withdraw your consent at any time by sending an e-mail to the address given in the legal notice. Data processing that has already taken place is not affected by this.

 

3.4 In which cases can we pass on your data to third parties?

 

a. Principle

We may need to use the services of third parties or affiliated companies and commission them to process your data (so-called processors). Categories of recipients are namely:

  • Accounting, fiduciary and auditing companies;
  • Consulting companies (legal advice, taxes, etc.);
  • IT service providers (web hosting, support, cloud services, website design, etc.);
  • payment service providers;

 

We ensure that these third parties and our affiliated companies comply with data protection requirements and treat your personal data confidentially.

We may also be obliged to disclose your personal data to authorities.

 

b. Visiting our social media channels

We may have embedded links to our social media channels on our website. This is visible to you in each case (typically via corresponding icons). If you click on the icons, you will be redirected to our social media channels.

In this case, the social media providers are informed that you have accessed their platform from our website. The social media providers can use the data collected in this way for their own purposes. We would like to point out that we have no knowledge of the content of the transmitted data or its use by the providers.

 

c. Transfer abroad

Under certain circumstances, your personal data may be transferred to companies abroad as part of order processing. These companies are obliged to protect data to the same extent as we are. The transfer may take place worldwide.

If the level of data protection does not correspond to that in Switzerland, we will carry out a prior risk assessment and contractually ensure that the same level of protection is guaranteed as in Switzerland (e.g. by means of the new standard contractual clauses of the EU Commission or other legally prescribed measures). If our risk assessment is negative, we will take additional technical measures to protect your data. You can access the EU Commission’s standard contractual clauses at the following link: https://commission.europa.eu/publications/standard-contractual-clauses-controllers-and-processors-eueea_de

 

3.5 How long do we store your data?

We only store personal data for as long as is necessary to fulfill the individual purposes for which the data was collected.

Data that we store when you visit our website is stored for twelve months. An exception applies to analysis and tracking data, which may be stored for longer.

We store contract data for longer, as we are obliged to do so by law. In particular, we must store business communications, concluded contracts and accounting documents for up to 10 years. If we no longer need such data from you to perform the services, the data will be blocked and we will only use it for accounting and tax purposes.

 

3.6 How do we protect your data?

We will keep your data secure and take all reasonable steps to protect your data from loss, access, misuse or alteration.

Our contractual partners and employees who have access to your data are obliged to comply with data protection regulations. In some cases, it will be necessary for us to pass on your inquiries to companies affiliated with us. Your data will also be treated confidentially in these cases.

Within our website, we use the SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser.

 

3.7 What rights do you have?

 

a. Right to information

You can request information about the data we have stored about you at any time. Please send your request for information together with proof of identity to info@QBITS.ch.

You also have the right to receive your data in a commonly used file format if we process your data automatically and if:

  • you have given your consent for the processing of this data; or
  • you have provided data in connection with the conclusion or performance of a contract.

    • We may restrict or refuse to provide information or data if this conflicts with our legal obligations, our own legitimate interests, public interests or the interests of a third party.

    The processing of your request is subject to the statutory processing period of 30 days. However, we may extend this period due to a high volume of requests, for legal or technical reasons or because we require more detailed information from you. You will be informed of the extension in good time, at least in text form.

     

    b. Erasure and rectification

     

    You have the option of requesting the erasure or rectification of your data at any time. We may reject the request if statutory provisions oblige us to store the data for a longer period or to store it unchanged or if your request conflicts with a legal permission.

    Please note that exercising your rights may be in conflict with contractual agreements and may have a corresponding impact on the performance of the contract (e.g. premature termination of the contract or cost consequences).

     

    c. Legal recourse

    If you are affected by the processing of personal data, you have the right to enforce your rights in court or to file a complaint with the competent supervisory authority. The competent supervisory authority in Switzerland is the Federal Data Protection and Information Commissioner: https://www.edoeb.admin.ch

     

    3.8 Changes to the Data Protection notice

    We may amend this Data Protection notice at any time. The changes will be published on , you will not be informed separately.

     

    4 Individual data processing operations

     

    4.1 Provision of the website and creation of log files

     

    What information do we receive and how do we use it?

    When you visit, certain data is automatically stored on our servers or on servers of services and products that we purchase and/or have installed for system administration, statistical, backup or tracking purposes. These are:

    • the name of your internet service provider;
    • Your IP address (under certain circumstances);
    • the version of your browser software;
    • the operating system of the computer used to access the URL;
    • the date and time of access;
    • the website from which you visit the URL;
    • the search terms you used to find the URL..

     

    Why are we allowed to process this data?

    This data cannot be assigned to a specific person and is not merged with other data sources. The log files are stored in order to guarantee the functionality of the website and to ensure the security of our information technology systems. This is our legitimate interest.

     

    How can you prevent data collection?

    The data is only stored for as long as is necessary to achieve the purpose for which it was collected. Accordingly, the data is deleted at the end of each session. The storage of log files is absolutely necessary for the operation of the website; you therefore have no option to object to this.

     

    4.2 WordPress

    Our website is based on the WordPress platform, a content management system developed by Automattic Inc, 60 29th Street #343, San Francisco, CA 94110, USA. WordPress enables us to create, manage and publish content.

    When you use our website, which is based on WordPress, various data, including your IP address, date and time of access and information about the browser you are using, may be collected and stored. This data is mainly used for administrative purposes and to ensure the smooth operation of the website.

    me WordPress features, such as comments or contact forms, may collect additional personal data when you use them.

     

    BrainBox Generators

    BrainBox Generators is a service provided by BrainBox Solutions GmbH to recognize all data protection-relevant services on a website and, among other things, to help with the creation of the privacy policy. No personal data is collected or processed in the process.