This privacy policy of CYNATIC GmbH shows how we collect and process personal data. More detailed regulations in individual cases or for specific departments supplement this declaration.

For the purposes of this privacy policy, personal data means any information relating to an identified or identifiable person.

1. Responsible body and contact

CYNATIC GmbH is responsible for the data processing described here, unless otherwise stated in individual cases. Enquiries about data protection can be sent by letter or e-mail to the data protection officer, Mr Ivan Krnjaic-Friedlin, info@cynatic.ch, enclosing a copy of the ID or passport identifying the user.

2. Collection and processing of personal data

Personal data is processed in the following categories:

• Customer data of customers for whom we provide or have provided services.
• Personal data that we have received indirectly from our customers during the provision of services.
• Digital visitor data when clicking on our website.
• Customer address data when using our newsletter.
• Customer data relating to personal profile / interests based on participation in an event organised by us.
• Different data when we communicate in any way (different in terms of location, time, subject matter).
• Data in other contractual relationships, e.g. as a supplier, service provider or consultant.
• Personal data for
• data if we are obliged to do so for legal reasons.
• Data that we use in connection with data protection or compliance with the law.

  More detailed information can be found in the description of the respective categories of processing in section 4

3. Categories of personal data

The type of processing of personal data and the scope depends on the relationship between you and CYNATIC GmbH and the purpose or reason for which we process the data. In addition to your contact details, we also process other information about you or about persons who have a relationship with you. If this information is particularly sensitive personal data, this has further consequences for our processing and our internal processes.

We collect the following categories of personal data, depending on the purpose:

• Contact information (e.g. surname, first name, address, telephone number, e-mail)
• Personal customer information (e.g. date of birth, nationality, marital status, profession, title, job title, passport / ID number, AHV number)
• Data on your creditworthiness and company law data as well as financial information (bank accounts, credit card data)
• Data in connection with specific orders / contracts
• Website data (e.g. IP address, device information (UDI), browser information, website usage (analysis and use of plugins, etc.)
• Data from applications (e.g. CV, references)
• Advertising and marketing information and personal interests (e.g. newsletter registration, interest in specific topics, specialisations)
• Security and network data (e.g. visitor lists, access controls, network and mail scanners, telephone call lists)

Insofar as this is permitted, we also obtain certain data from publicly accessible sources (e.g. debt collection registers, land registers, commercial registers, press, Internet) or receive such data from our customers and their employees, from authorities, (arbitration) courts and other third parties. In addition to the data that you provide to us directly, the categories of personal data that we receive about you from third parties include, in particular, information from public registers, information that we learn in connection with official and court proceedings, information in connection with your professional functions and activities, information about you in correspondence and meetings with third parties, creditworthiness information, information about you that people from your environment (family, advisors, legal representatives, etc.) provide to us so that we can conclude contracts with you.) so that we can conclude or process contracts with you or with your involvement (e.g. References, your address for deliveries, powers of attorney) Information on compliance with legal requirements such as anti-money laundering and export restrictions, information from banks, insurance companies, sales partners and other contractual partners of ours on the utilisation or provision of services by you (e.g. payments made, purchases made), information from the media and Internet about you (insofar as this is appropriate in the specific case, e.g. in the context of a job application, etc.).e.g. in the context of a job application etc.), your addresses and, if applicable, interests and other socio-demographic data (for marketing), data in connection with the use of the website (e.g. IP address, MAC address of the smartphone or computer, information about your device and settings, cookies, date and time of the visit, pages and content accessed, functions used, referring website, location data).

4. What do we process the data for (purpose)?

4.1 Provision of services

We primarily process the personal data that we receive from our customers and other persons involved in our business relationship with them and other contractual relationships with business partners.

The personal data of our customers includes the following information in particular:

• Contact information (e.g. surname, first name, address, telephone number, e-mail, other contact information)
• Personal information (e.g. date of birth, nationality, marital status, profession, title, job title, passport/ID number, AHV number, family circumstances, etc.).
• Data on your creditworthiness and your entries in various registers or, if applicable, sanctions lists, as well as data in specialised databases and from publicly accessible digital sources
• Financial information (e.g. data on bank details, credit cards, investments or shareholdings)
• Business data, depending on the order/contract
• Particularly sensitive personal data: This personal data may also include particularly sensitive personal data, in accordance with Art. 5 lit. c FADP:
  
  

1. Data on religious, ideological, political or trade union views or activities (e.g. religious denomination, political affiliation),
2. Data relating to health, privacy or racial or ethnic origin (e.g. sexual orientation),
3. Genetic data (e.g. DNA profile),
4. Biometric data that uniquely identifies a natural person (e.g. digital fingerprint, voice recordings),
5. Data on administrative and criminal prosecutions or sanctions (e.g. criminal record entry, debt collection register entry),
6. Data on social assistance measures (e.g. receipt of material assistance).

We process this personal data for the purposes described on the basis of the following legal bases:

• Conclusion or execution of a contract with the data subject or in favour of the data subject, including contract initiation and possible enforcement (e.g. supply contract, sales contract, service contract)
• Fulfilment of a legal obligation (e.g. if we have to collect and/or disclose data due to a legal obligation)
• Safeguarding legitimate interests (e.g. for administrative purposes, to improve our quality, ensure security, manage risk, enforce our rights, defend ourselves against claims or to check for possible conflicts of interest)
• Consent (e.g. to send you marketing information).

4.2 Indirect data processing from service provision

When we provide services for our customers, we may also process personal data that we have not collected directly from the data subjects or personal data of third parties. These third parties are usually employees, contact persons, family members or persons who have a relationship with the customers or data subjects for other reasons. We require this personal data in order to fulfil contracts with our customers. We receive this personal data from our customers or from third parties commissioned by our customers. Third parties whose information we process for this purpose are informed by our customers that we are processing their data. Our customers can refer to this privacy policy for this purpose.

The personal data of persons who have a relationship with our customers includes the following information in particular:

• Contact information (e.g. surname, first name, address, telephone number, e-mail, other contact information, marketing data)
• Personal information (e.g. date of birth, nationality, marital status, profession, title, job title, passport/ID number, AHV number, family circumstances, etc.).
• Financial information (e.g. data on bank details, investments or shareholdings)
• Contract or business data, depending on the order or contract
• Particularly sensitive personal data This personal data may also include particularly sensitive personal data, cf. section 4.1.

We process this personal data for the purposes described on the basis of the following legal bases:

• Conclusion or performance of a contract with the data subject or in favour of the data subject (e.g. when we fulfil our contractual obligations)
• Fulfilment of a legal obligation (e.g. if we fulfil our duties as auditors or are obliged to disclose information)
• Safeguarding legitimate interests, in particular our interest in providing our customers with an optimal service.

4.3 Website

No personal data needs to be disclosed in order to use our website. However, the server collects a range of user information with each visit, which is temporarily stored in the server's log files.

When using this general information, no assignment to a specific person takes place. The collection of this information or data is technically necessary to display our website and to ensure its stability and security. This information is also collected in order to improve the website and analyse its use.

This includes the following information in particular: 

• Contact information (e.g. surname, first name, address, telephone number, e-mail)
• Further information that you send us via the website
• Technical information automatically transmitted to us or our service providers, information on user behaviour or website settings (e.g. IP address, UDI, device type, browser, number of clicks on the page, opening the newsletter, clicking on links, etc.).

We process this personal data for the purposes described on the basis of the following legal bases:

• Safeguarding legitimate interests (e.g. for administrative purposes, to improve our quality, analyse data or publicise our services)
• Consent (e.g. to the use of cookies or the newsletter).

4.4 Newsletter

If you subscribe to our newsletter, we will use your address and contact details to send you the newsletter. You can subscribe to our newsletter with your consent. Your full name and email address, which we store after your registration, are mandatory for sending the newsletter. The legal basis for the processing of your data in connection with our newsletter is your consent to the sending of the newsletter. You can revoke this consent at any time and unsubscribe from the newsletter.

4.5 Events

If you take part in an event organised by us, we collect personal data in order to organise and run the event and, if necessary, to send you additional information afterwards. We also use your information to inform you about other events. You may be photographed or filmed by us at these events and we may publish this image material internally or externally.

This includes the following information in particular:

• Contact information (e.g. surname, first name, address, telephone number, e-mail)
• Personal information (e.g. profession, function, title, employer company, eating habits, special interests & inclinations, feedback)
• Pictures or videos
• Payment information (e.g. bank details).

We process this personal data for the purposes described on the basis of the following legal bases:

• Fulfilment of a contractual obligation with the data subject or in favour of the data subject, including contract initiation and possible enforcement (enabling participation in the event)
• Safeguarding legitimate interests (e.g. holding events, disseminating information about our event, providing services, efficient organisation)
• Consent (e.g. to send you marketing information or create image material).

4.6 Data due to different communication in terms of location, time and subject matter (telephone, visits, etc.)

When you contact us (e.g. by telephone, e-mail or chat) or we contact you, we process the personal data required for this. We also process this personal data when you visit us. In this case, you may have to leave your contact details before your visit or at reception. We store this data for a certain period of time in order to protect our infrastructure and our information.

We use the "Google Meets", "Zoom" or "Microsoft Teams" service to hold telephone conferences, online meetings, video conferences and/or webinars ("online meetings").

We process the following information in particular:

• Contact information (e.g. surname, first name, address, telephone number, e-mail)
• Edge data for communication (e.g. IP address, duration of communication, communication channel)
• Recordings of conversations, e.g. during video conferences
• Other information that the user uploads, provides or creates while using the video conferencing service as well as metadata used for the maintenance of the service provided. Additional information on the processing of personal data by "Google Meets", "Zoom" or "Microsoft Teams" can be found in their privacy policies.
• Personal information (e.g. profession, function, title, employer company)
• Time and reason for the visit.

We process this personal data for the purposes described on the basis of the following legal bases:

• Fulfilment of a contractual obligation with the data subject or in favour of the data subject, including contract initiation and possible enforcement (provision of a service)
• Safeguarding legitimate interests (e.g. security, traceability, processing and administration of customer relationships).

4.7 Applications

You can submit your application for a position with us by post or via the e-mail address provided on our website or via certain internet portals. The application documents and all personal data disclosed to us will be treated as strictly confidential, will not be disclosed to third parties and will only be processed for the purpose of processing your application for employment with us. Without your consent to the contrary, your application dossier will either be returned to you or deleted/destroyed after the application process has been completed, unless it is subject to a statutory retention obligation. The legal basis for the processing of your data is your consent, the fulfilment of the contract with you and our legitimate interests.

We process the following information in particular:

• Contact information (e.g. surname, first name, address, telephone number, e-mail)
• Personal information (e.g. profession, function, title, employer company)
• Application documents (e.g. letter of motivation, certificates, diplomas, CV)
• Assessment information (e.g. assessment of personnel consultants, reference information, assessments).

We process this personal data for the purposes described on the basis of the following legal bases:

• Safeguarding legitimate interests (e.g. hiring new employees)

4.8 Suppliers, service providers, other contractual partners

If we conclude a contract with you so that you can produce something for us, deliver a product or provide a service for us, we process personal data about you or your employees. We need this data in order to communicate with you and utilise your services.

We process the following information in particular:

• Contact information (e.g. surname, first name, address, telephone number, e-mail).
• Personal information (e.g. profession, function, title, employer company).
• Financial information (e.g. data on bank details).

We process this personal data for the purposes described on the basis of the following legal bases:

• Conclusion or execution of a contract with the data subject or in favour of the data subject, including contract initiation and possible enforcement
• Protection of legitimate interests (e.g. avoidance of conflicts of interest, protection of the company, enforcement of legal claims).

5. Tracking technologies

We use cookies on our website. These are small files that your browser automatically creates and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our website.

Information is stored in the cookie that results in each case in connection with the specific end device used. However, this does not mean that we obtain direct knowledge of your identity. On the one hand, the use of cookies serves to make the use of our website more pleasant for you. For example, we use session cookies to recognise that you have already visited individual pages of our website.

In addition, we also use temporary cookies to optimise user-friendliness, which are stored on your end device for a specified period of time. If you visit our site again to use our services, it is automatically recognised that you have already visited us and which entries and settings you have made so that you do not have to enter them again. On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimising our offer for you. These cookies enable us to automatically recognise that you have already visited our website when you visit it again.

The data processed by cookies is required for the purposes mentioned. Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. However, completely deactivating cookies may mean that you cannot use all the functions of our website.

6. Web and newsletter analysis

We use the following web analysis tools and re-targeting technologies to obtain information about the use of our website, to improve our Internet offering and to be able to address you with advertising on third-party websites or on social media: Google Analytics, Google Tag Manager.

These tools are provided by third-party providers. As a rule, the information collected for this purpose about the use of a website is transmitted to the server of the third-party provider through the use of cookies or similar technologies. Depending on the third-party provider, these servers may be located abroad.

The data is normally transmitted by shortening the IP addresses, which prevents the identification of individual end devices. This information is only transmitted by third-party providers due to legal regulations or as part of order data processing.

6.1 Privacy policy for SSL/TLS encryption

This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as the enquiries you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

6.2 Privacy policy for contact form

If you send us enquiries via the contact form, your details from the enquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We will not pass on this data without your consent.

6.3 Privacy policy for newsletter data

If you would like to receive the newsletter offered on this website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. No further data is collected. We use this data exclusively for sending the requested information and do not pass it on to third parties.

You can revoke your consent to the storage of the data, the e-mail address and its use for sending the newsletter at any time, for example via the "unsubscribe link" in the newsletter.

6.4 Privacy policy for comment function on this website

For the comment function on this website, in addition to your comment, information about the time the comment was created, your e-mail address and, if you are not posting anonymously, the user name you have chosen will be saved.

6.5 Storage of the IP address

Our comment function stores the IP addresses of users who post comments. As we do not check comments on our site before they are activated, we need this data in order to be able to take action against the author in the event of legal violations such as insults or propaganda.

6.6 Subscribing to comments

As a user of the site, you can subscribe to comments after registering. You will receive a confirmation e-mail to check whether you are the owner of the e-mail address provided. You can unsubscribe from this function at any time via a link in the info mails.

6.7 Chargeable services

For the provision of chargeable services, we request additional data, such as payment details, in order to be able to fulfil your order. We store this data in our systems until the statutory retention periods have expired.

6.8 Use of Google Maps

This website uses the Google Maps service. This allows us to show you interactive maps directly on the website and enables you to use the map function conveniently. When you visit the website, Google receives the information that you have accessed the corresponding subpage of our website. This occurs regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in to Google, your data will be assigned directly to your account. If you do not wish your data to be associated with your Google profile, you must log out before activating the button. Google stores your data as usage profiles and uses them for the purposes of advertising, market research and/or customising its website. Such an analysis is carried out in particular (even for users who are not logged in) to provide customised advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right. For more information on the purpose and scope of data collection and its processing by Google, as well as further information on your rights in this regard and settings options to protect your privacy, please visit this link.

6.9 Google Ads

This website uses Google Conversion Tracking. If you have reached our website via an advert placed by Google, Google Ads will set a cookie on your computer. The cookie for conversion tracking is set when a user clicks on an advert placed by Google. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of our website and the cookie has not yet expired, we and Google can recognise that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. Cookies can therefore not be tracked via the websites of Ads customers. The information collected using the conversion cookie is used to generate conversion statistics for Ads customers who have opted for conversion tracking. Customers are told the total number of users who clicked on their advert and were redirected to a page with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users.

If you do not wish to participate in tracking, you can refuse the setting of a cookie required for this - for example, by using a browser setting that generally deactivates the automatic setting of cookies or by setting your browser to block cookies from the domain "googleleadservices.com".

Please note that you must not delete the opt-out cookies as long as you do not wish measurement data to be recorded. If you have deleted all your cookies in the browser, you must set the respective opt-out cookie again.

6.10 Use of Google Remarketing

This website uses the remarketing function of Google Inc. This function is used to present interest-based adverts to website visitors within the Google advertising network. A so-called "cookie" is stored in the website visitor's browser, which makes it possible to recognise the visitor when he or she visits websites that belong to the Google advertising network. On these pages, the visitor may be presented with adverts that relate to content that the visitor has previously accessed on websites that use Google's remarketing function.

According to its own information, Google does not collect any personal data during this process. However, if you do not wish to use Google's remarketing function, you can always deactivate it by changing the corresponding settings here to do so. Alternatively, you can deactivate the use of cookies for interest-based advertising via the advertising network initiative by following the instructions at this link follow.

6.11 Use of Google reCAPTCHA

We use "Google reCAPTCHA" (hereinafter "reCAPTCHA") on our websites. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google". The purpose of reCAPTCHA is to check whether data is entered on our websites (e.g. in a contact form) by a human or by an automated programme. For this purpose, reCAPTCHA analyses the behaviour of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent on the website by the website visitor or mouse movements made by the user). The data collected during the analysis is forwarded to Google. The reCAPTCHA analyses run completely in the background. Website visitors are not informed that an analysis is taking place.

Data processing is carried out on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its website from abusive automated spying and SPAM. For more information about Google reCAPTCHA and Google's privacy policy, please see the following links: Link 1 and Link 2.

6.12 Privacy policy for Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited. If the controller responsible for data processing on this website is located outside the European Economic Area or Switzerland, Google Analytics data processing is carried out by Google LLC. Google LLC and Google Ireland Limited are hereinafter referred to as "Google".

We can use the statistics obtained to improve our offering and make it more interesting for you as a user. This website also uses Google Analytics for a cross-device analysis of visitor flows, which is carried out via a user ID. If you have a Google user account, you can deactivate the cross-device analysis of your usage in the settings there under "My data", "Personal data".

The legal basis for the use of Google Analytics is Art. 6 para. 1 sentence 1 lit. f GDPR. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. Please note that the code "_anonymizeIp();" has been added to Google Analytics on this website to ensure anonymised collection of IP addresses. As a result, IP addresses are further processed in abbreviated form, so that they cannot be linked to a specific person. If the data collected about you is personally identifiable, it is immediately excluded and the personal data is deleted immediately.

Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. Google will use this information on behalf of the operator of this website to analyse your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage.

Google Analytics uses cookies. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link: Deactivate Google Analytics.

You can also prevent the use of Google Analytics by clicking on this link: Deactivate Google Analytics. This stores an opt-out cookie on your data carrier, which prevents the processing of personal data by Google Analytics. Please note that if you delete all cookies on your end device, these opt-out cookies will also be deleted, i.e. you will have to set the opt-out cookies again if you want to continue to prevent this form of data collection. The opt-out cookies are set for each browser and computer/end device and must therefore be activated separately for each browser, computer or other end device.

6.13 Privacy policy for Google AdSense

We use Google AdSense on this website. This is an advertising programme of the company Google Inc. In Europe, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google AdSense allows us to display adverts on this website that are relevant to our topic.

Google AdSense uses cookies to display adverts that are relevant to users, to improve campaign performance reports or to prevent a user from seeing the same adverts more than once. Google uses a cookie ID to record which adverts are displayed in which browser and can thus prevent them from being displayed more than once. In addition, Google AdSense can use cookie IDs to record so-called conversions that are related to ad requests. This is the case, for example, when a user sees a Google Ads advert and later visits the advertiser's website with the same browser and makes a purchase there. According to Google, Google Ads cookies do not contain any personal information.

Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. Through the integration of Google Ads, Google receives the information that you have called up the corresponding part of our website or clicked on an advert from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is a possibility that Google will find out your IP address and store it.

You can prevent participation in this tracking process in various ways:

1. by setting your browser software accordingly; in particular, the suppression of third-party cookies means that you will not receive any adverts from third-party providers;
2. by deactivating cookies for conversion tracking by setting your browser to block cookies from the domain "www.googleadservices.com", read moreThis setting is deleted when you delete your cookies;
3. by deactivating the interest-based adverts of providers that are part of the "About Ads" self-regulation campaign via the LinkThis setting is deleted when you delete your cookies;
4. by permanently deactivating it in your Firefox, Internet Explorer or Google Chrome browsers under the link. We would like to point out that in this case you may not be able to use all the functions of this website to their full extent.

The legal basis for the processing of your data is a balancing of interests, according to which the processing of your personal data as described above does not conflict with any overriding interests on your part (Art. 6 para. 1 sentence 1 lit. f GDPR). You can obtain further information about Google Ads from Google hereand on data protection at Google general. Alternatively, you can visit the website of the Network Advertising Initiative (NAI) at this link visit.

6.14 Privacy policy for the use of Google Web Fonts

This website uses so-called web fonts provided by Google for the standardised display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. If your browser does not support web fonts, a standard font will be used by your computer.

Further information on Google Web Fonts can be found at here and in the privacy policy of Google.

6.15 Google Tag Manager

Google Tag Manager is a solution with which we can manage so-called website tags via an interface and thus, for example, integrate Google Analytics and other Google marketing services into our online offering. The Tag Manager itself, which implements the tags, does not process any personal user data. With regard to the processing of users' personal data, please refer to the following information on Google services: Usage guidelines

6.16 Privacy policy for Facebook

This website uses functions of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA . When you access our pages with Facebook plug-ins, a connection is established between your browser and the Facebook servers. Data is already transmitted to Facebook. If you have a Facebook account, this data can be linked to it. If you do not wish this data to be linked to your Facebook account, please log out of Facebook before visiting our site. Interactions, in particular the use of a comment function or clicking on a "Like" or "Share" button, are also passed on to Facebook. Find out more here.

6.17 Privacy policy for Instagram

Functions of the Instagram service are integrated on our website. These functions are offered by Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA. If you are logged into your Instagram account, you can link the content of our pages to your Instagram profile by clicking on the Instagram button. This allows Instagram to associate your visit to our pages with your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Instagram.

Further information on this can be found in the privacy policy of Instagram.

6.18 Privacy policy for LinkedIn

We use the marketing services of the social network LinkedIn of LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland ("LinkedIn") within our online offering.

These use cookies, i.e. text files that are stored on your computer. This enables us to analyse your use of the website. For example, we can measure the success of our adverts and show users products that they were previously interested in.

For example, information about the operating system, the browser, the website you previously visited (referrer URL), which websites the user visited, which offers the user clicked on, and the date and time of your visit to our website are recorded.

The information generated by the cookie about your use of this website is transferred to a LinkedIn server in the USA in pseudonymised form and stored there. LinkedIn therefore does not store the name or email address of the respective user. Rather, the above-mentioned data is only assigned to the person for whom the cookie was generated. This does not apply if the user has allowed LinkedIn to process the data without pseudonymisation or has a LinkedIn account.

You can prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all the functions of this website to their full extent. You can also directly object to the use of your data here object to LinkedIn.

We use LinkedIn Analytics to analyse and regularly improve the use of our website. We can use the statistics obtained to improve our offering and make it more interesting for you as a user. All LinkedIn companies have adopted the standard contractual clauses to ensure that the data traffic to the USA and Singapore necessary for the development, implementation and maintenance of the services takes place in a lawful manner. If we ask users for their consent, the legal basis for processing is Art. 6 para. 1 lit. a GDPR. Otherwise, the legal basis for the use of LinkedIn Analytics is Art. 6 para. 1 sentence 1 lit. f GDPR.

Information from the third-party provider: LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2 Ireland;
User agreement and Privacy policy.

6.19 External payment service providers

This website uses external payment service providers through whose platforms users and we can make payment transactions. For example via:

• PostFinance
• Visa
• Mastercard
• American Express
• Paypal
• Bexio AG
• Payrexx AG
• Apple Pay
• Stripe
• Klarna
• Skrill
• Giropay etc.

As part of the fulfilment of contracts, we use payment service providers on the basis of the Swiss Data Protection Ordinance and, where necessary, Art. 6 para. 1 lit. b. EU-DSGVO. In addition, we use external payment service providers on the basis of our legitimate interests in accordance with the Swiss Data Protection Ordinance and, if necessary, in accordance with Art. 6 para. 1 lit. f. EU GDPR in order to offer our users effective and secure payment options.

The data processed by the payment service providers includes inventory data, such as the name and address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums, as well as the contract, totals and recipient-related details. The information is required to carry out the transactions. However, the data entered is only processed by the payment service providers and stored by them. As the operator, we do not receive any information about the (bank) account or credit card, but only information to confirm (accept) or reject the payment. Under certain circumstances, the data may be transmitted by the payment service providers to credit agencies. The purpose of this transmission is to check identity and creditworthiness. Please refer to the general terms and conditions and data protection information of the payment service providers.

Payment transactions are subject to the terms and conditions and the data protection notices of the respective payment service providers, which can be accessed on the respective website or transaction applications. We also refer to these for further information and the assertion of cancellation, information and other data subject rights.

6.20 Privacy policy for YouTube

Functions of the "YouTube" service are integrated on this website. "YouTube" belongs to Google Ireland Limited, a company registered and operated under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland, which operates the services in the European Economic Area and Switzerland.

Your legal agreement with "YouTube" consists of the terms and conditions set out in the following link Terms and conditions. These terms form a legally binding agreement between you and "YouTube" regarding the use of the services. Google's privacy policy explains how "YouTube" handles your personal data and protects your data when you use the service.

7. Data transfer and data transmission

We only pass on your data to third parties if this is necessary for the provision of our services, if these third parties provide a service for us, if we are legally or officially obliged to do so or if we have an overriding interest in passing on the personal data. We will also pass on personal data to third parties if you have given your consent or requested us to do so.

Not all personal data is transmitted in encrypted form as standard. Unless explicitly agreed otherwise with the customer, all data is transmitted unencrypted.

The following categories of recipients may receive personal data from us:

• Branches, subsidiaries or sister companies
• Other service providers (e.g. IT service providers, hosting providers, suppliers, consultants, lawyers, insurance companies).
• Third parties within the scope of our legal or contractual obligations, authorities, state institutions, courts.

We conclude contracts with service providers who process personal data on our behalf, obliging them to guarantee data protection. The majority of our service providers are located in Switzerland or in the EU/EEA. Certain personal data may also be transferred to the USA (e.g. Google Analytics data) or, in exceptional cases, to other countries worldwide. If it is necessary to transfer data to other countries that do not have an adequate level of data protection, this is done on the basis of the EU standard contractual clauses (e.g. in the case of Google) or other suitable instruments.

8. duration of storage of personal data

We process and store your personal data for as long as is necessary for the fulfilment of our contractual and legal obligations or otherwise for the purposes pursued with the processing, i.e. for the duration of the entire business relationship (from the initiation, processing to the termination of a contract) and beyond that in accordance with the statutory retention and documentation obligations. It is possible that personal data may be stored for the period in which claims can be asserted against our company (i.e. in particular during the statutory limitation period) and insofar as we are otherwise legally obliged to do so or legitimate business interests require this (e.g. for evidence and documentation purposes). As soon as your personal data is no longer required for the above-mentioned purposes, it will be deleted or anonymised as far as possible. Shorter retention periods of twelve months or less generally apply to operational data (e.g. system protocols, logs).

9. Data security

We take appropriate technical and organisational security precautions to protect your personal data

• from unauthorised access (confidentiality)
• so that they are available when they are needed (availability)
• against misuse and changes (integrity)
• so that they are processed in a comprehensible manner (traceability).

This can be done by issuing directives, training, IT and network security solutions, access controls and restrictions, encryption of data carriers and transmissions, pseudonymisation and controls.

The data protection officer of CYNATIC GmbH must be involved in new projects from the outset and regularly checks data security in accordance with the principles, objectives and TOMs in Art. 1 to 3 GDPR.

10. Obligation to provide personal data

As part of our business relationship, you must provide the personal data that is necessary for the establishment and implementation of a business relationship and the fulfilment of the associated contractual obligations (you are not generally legally obliged to provide us with data). Without this data, we will not be able to enter into or fulfil a contract with you (or the entity or person you represent). The website can also not be used if certain information to secure data traffic (such as IP address) is not disclosed.

11. Your rights

You have the following rights in connection with our processing of personal data:

• Right to information about your personal data stored by us, the purpose of processing, the origin and recipients or categories of recipients to whom personal data is disclosed.
• Right to rectification if your data is incorrect or incomplete.
• Right to restrict the processing of your personal data.
• right to request the deletion of the processed personal data.
• Right to data portability.
• right to object to data processing or to withdraw consent to the processing of personal data at any time without giving reasons.
• Right to lodge a complaint with a competent supervisory authority, if provided for by law.

To assert these rights, please contact the address given in section 1.

Please note, however, that we reserve the right to assert the restrictions provided for by law, for example if we are obliged to store or process certain data, have an overriding interest in doing so (insofar as we are entitled to invoke this) or require it for the assertion of claims. If you incur costs, we will inform you in advance.

12. Amendment of the privacy policy

We expressly reserve the right to amend this privacy policy at any time.

Last change: December 2024
CYNATIC GmbH