Data protection

What are we doing?

On this website, you can find out more about our organization and get in touch with us.

Protecting your personal data is very important to us. In this privacy policy, we inform you transparently and comprehensibly about what data we collect via our website and how we handle it.

What do we provide information about?

• Who is responsible for data processing;
• What data is collected;
• For what purpose this data is collected;
• Who we share this information with;
• How you can object to data processing;
• What rights do you have and how you can assert them.

definitions

What is personal data?

Personal data (synonymous with the term “personal data”) is all information relating to a specific or identifiable natural person. This includes, for example, name, address, date of birth, e-mail address or telephone number as well as the IP address. Personal data also includes data about personal preferences, such as leisure activities or memberships.

What are special categories of personal data?

Special categories of personal data (synonymous with the term “particularly sensitive data”) include:

• data on religious, ideological, political or trade union views or activities;
• data on health, privacy, race or ethnicity, sex life and sexual orientation;
• data on administrative or criminal prosecutions and sanctions, as well as data on social assistance measures;
• Genetic data and biometric data that uniquely identify an individual.

If necessary and you provide us with this data yourself, we may process data that belongs to a special category of personal data. In this case, their processing is subject to stricter confidentiality.

What is the processing of personal data?

Processing (synonymous with the term “processing”) means any handling of personal data, regardless of the means and procedures used, in particular the acquisition, storage, use, modification, disclosure, archiving, deletion or destruction of personal data.

What is the disclosure of personal data?

This is the transfer or making available of personal data, for example the publication or disclosure to a third party.

contact

If you have any questions or concerns about the protection of your data by us, you can contact our responsible person in accordance with the legal notice.

data security

We will keep your information secure and take all reasonable steps to protect your information from loss, access, misuse, or alteration.

Our contract partners and employees who have access to your data are required to comply with data protection regulations. In some cases, as part of order processing, it will be necessary for us to forward your inquiries to companies affiliated with us. Even in these cases, your data will be kept confidential.

Within our website, we use the SSL (Secure Socket Layer) procedure in conjunction with the highest level of encryption supported by your browser.

Rights affected

Right to information

You can request information about the data we have stored about you at any time. Please send your request for information together with credible proof of identity to info@corfac2.com.

The information is provided in writing or in another form, possibly also electronically. If you request this, we can also provide you with the information verbally, provided that you prove your identity in another form. If you submit the request for information electronically, we will provide the information in a standard electronic format, unless you specify otherwise.

The information is usually free of charge. If copies are also requested, a reasonable fee may be charged.

The right to obtain a copy of the processed data must not affect the rights and freedoms of other persons.

In the event of requests for information that are obviously unfounded or excessive, we reserve the right to refuse to provide information within the scope of legal barriers or to demand an appropriate fee for it.

The processing of your application is subject to the legal period of 30 days. Due to the complexity and the high number of inquiries, we may extend this period by a further two months if necessary. You will be notified of the extension of the deadline within one month of submitting the request for information. At the same time, you will be given the reasons for the extension.

Deletion and correction

You have the option to request the deletion, correction or completion of your data at any time, provided that there are no legal storage obligations or legal permission to the contrary.

Please note that exercising your rights may conflict with contractual agreements and may have corresponding effects on contract performance (e.g. early termination of contract or cost consequences).

Restricting editing

You also have the right to request a restriction of processing if you dispute the accuracy of this data, if the processing is unlawful, the data is no longer required or if you have objected to the processing.

If the processing of the data is restricted, it may only be stored. Further processing may only take place with your consent, to assert, exercise or defend legal claims, to protect the rights of another person or for reasons of important public interest. If the restriction is lifted, you will be notified.

Right to release and transfer data

You have the right to receive your data in a common file format or (if technically feasible) to have it transferred to a third party if we process your data automatically, and if:

• you have given your consent to process this data; or
• You have provided data in connection with the conclusion or execution of a contract.

Right to object

For reasons arising from your particular situation, you have the right to object at any time to processing, including profiling, which is based on our legitimate interests. This right also applies to processing for direct marketing purposes.

"Rechtsweg"

If you are affected by the processing of personal data, you have the right to enforce your rights in court or to lodge a complaint with the competent supervisory authority. The competent supervisory authority in Switzerland is Federal Data Protection and Information Commissioner.

Processing in general

What data do we process from you and from whom do we receive this data?

First and foremost, we process personal data that you provide to us or that we collect when operating our website. We may also receive personal information about you from third parties. These can be the following categories:

• personal data (name, address, etc.);
• contact details (mobile phone number, email address, etc.);
• online identifiers (e.g. IP addresses);

This data may come from the following sources:

• information from publicly available sources (e.g. media, Internet);
• information regarding your professional functions and activities (e.g. professional networks);
• information about you in correspondence and meetings with third parties;
• information about you that people around you give us so that we can conclude or process contracts with you;
• Data related to the use of the website.

Under which conditions do we process your data?

We process your data fairly and in accordance with the purposes set out in this privacy statement. In doing so, we ensure transparent and proportionate processing.

If, as an exception, we are unable to comply with these principles, data processing may still be lawful because there is a justification. In particular, the following reasons are considered as a justification:

• your consent;
• the implementation of a contract or pre-contractual measures;
• compliance with legal requirements;
• our legitimate interests, unless your interests prevail.

You may be required to provide us with certain personal data so that we can initiate business relationships with each other. Without such data, we are normally unable to process a contract. The website also cannot normally be used if certain information to ensure data traffic, such as your IP address, is not disclosed.

How can you withdraw consent that you have given?

If you have given us consent to process your personal data for specific purposes, we will process your data within the scope of this consent, unless we have any other justification or no other permission has been met.

You can revoke your consent for the future at any time and send an e-mail to the address given in the legal notice. Data processing that has already taken place is not affected by the revocation and remains valid.

In which cases do we share your data with third parties?

a. Principle

We may need to use the services of third parties or affiliated companies and commission them to process your data (so-called contract processors). The categories of recipients include in particular:

• accounting, trust and auditing companies;
• consulting companies (legal advice, taxes, etc.);
• IT service providers (web hosting, support, cloud services, website design, etc.);
• payment service providers (only with your prior consent);
• Provider of tracking, conversion, and advertising services.

We ensure that the data is only passed on with your express consent, provided that this does not involve order data processing. We also ensure that these third parties and our affiliated companies comply with data protection requirements and keep your personal data confidential. We may also be required to disclose your personal data to authorities.

b. Transfer to partners and cooperation companies

In some cases, we work with various companies and partners who post their offers on our website.

If you make use of such an offer, we will transfer your personal data to the relevant partner or cooperation company (e.g. name, function, communication, etc.) whose offer you wish to take advantage of, provided that you have expressly consented to this in advance. These partners and cooperation companies are independently responsible for the personal data received. After the data has been transmitted, the data protection regulations of the respective partner apply.

c. Transfer abroad

Under certain circumstances, your personal data may be transferred to companies abroad as part of order processing. These companies are committed to data protection to the same extent as we are. The transmission can take place anywhere in the world.

If the level of data protection does not correspond to that of Switzerland, we carry out a preliminary risk assessment and contractually ensure that the same protection is guaranteed as in Switzerland (e.g. by means of the new standard contractual clauses of the EU Commission or other measures required by law). Should our risk assessment be negative, we will take additional technical measures to protect your data. You can access the EU Commission's standard contractual clauses at the following link.

How long do we keep your data?

We only store personal data for as long as is necessary to fulfill the individual purposes for which the data was collected.

We store contract data longer because we are required to do so by legal regulations. In particular, we must store business communications, concluded contracts and accounting receipts for up to 10 years. Insofar as we no longer need such data from you to perform the services, the data will be restricted for further processing and we will only use it for accounting and tax purposes.

Processing in detail

Provision of the website and creation of log files

By simply visiting corfac2.com, i.e. not registering or providing any other information, only the data that your browser automatically transmits to our server is collected. The data is technically necessary for the operation of the website.

Which data do we process?

In particular, the following data is processed to provide the website and create log files:

• IP address
• Technical information such as browser, operating system or screen resolution
• the date and time of access
• referrer URL

This data cannot be assigned to a specific person and there is no merging of this data with other data sources.

For what purpose do we process the data?

The log files are processed to ensure the functionality of the website and to ensure the security of our information technology systems.

Who do we share the data with?

The transfer of data by us is based on our Explanations on data transfer.

How can you prevent data processing?

The data is only stored for as long as is necessary to achieve the purpose for which it was collected. Accordingly, the data is deleted at the end of each session. The storage of log files is absolutely necessary for the operation of the website, so you have no opportunity to object to this because you are not visiting our website.

cookies

Our website uses cookies. Cookies are text files that are stored on your device's operating system using the browser when you visit our website. Cookies do not cause any damage to your computer and do not contain any viruses. Some cookies are technically necessary for the website to function. Most of the cookies we use are so-called “session cookies.” They are automatically deleted at the end of your visit. Other cookies remain stored on your device until you delete them or their duration expires.

For what purpose do we process the data?

We only use anonymized cookies so that we can use the data collected to make our website more user-friendly, effective and secure. In particular, we use cookies to save your preferences (such as language and location settings), to deliver website content quickly and attractively (for example through the use of content delivery networks) and to analyze the use of this website for statistical evaluation and for continuous improvements. The specific purposes for which we use the technically unnecessary cookies are set out in the following statements in this privacy policy.

Who do we share the data with?

The transfer of data by us is based on our Explanations on data transfer. In addition, the following information on the individual data processing operations in this privacy policy must be observed.

How can you prevent data processing?

Cookies are stored on your computer. You can delete them completely or deactivate or restrict transmission by changing the settings in your browser. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website to their full extent.

Instructions for the most common browsers can be found here:

• For Chrome by Google
• For safari by Apple
• For Edge by Microsoft
• For firefox by Mozilla

Google Web Fonts

How does Google Web Fonts work for us?

On our website, we use so-called web fonts, which are provided by Google, to uniformly display fonts. However, these fonts are stored locally on our servers. No connection to Google servers is established. When you visit one of our pages, your browser loads the required web fonts into your browser cache to correctly display texts and fonts.

Fathom Analytics

This website uses features of the Fathom Analytics web analysis service. The provider is Conva Ventures Inc. 26 Bastion Square, Third Floor Burnes House, Victoria, British Columbia, V8W 1H9, Canada.

More details about GDPR compliance can be found at https://usefathom.com/legal/compliance/gdpr-compliant-website-analytics

Fathom Analytics enables the website operator to analyze the behavior of website visitors. Here, the website operator receives various usage data, such as page views, length of stay, operating systems used and origin of the user. This data is assigned to the user's respective device. There is no assignment to a user ID.

In contrast to Google Analytics, no personal cookies or data are collected. Therefore, a cookie banner with active consent is not necessary to collect data.