Back

Privacy Policy

 

With this Privacy Policy, we inform you about which personal data we process for which purposes, how and where, especially in connection with the use of our website (advertima.com) and our other products and services. This Privacy Policy further informs you about the rights of the individuals whose personal data we process.

Individual or additional products and services may be subject to special, supplementary or additional privacy policies as well as other legal documents including General Terms and Conditions (GTC), terms of use or conditions of participation.

Our products and services are subject to Swiss data protection law as well as any applicable foreign data protection law, especially the General Data Protection Regulation (GDPR) of the European Union (EU). The European Commission acknowledges that Swiss data protection law guarantees an adequate level of data protection.

 

1. Contact Information

Responsible for personal data processing:

Advertima Vision AG
Lerchenfeldstrasse 3
9014 St. Gallen
Switzerland
dataprivacy@advertima.com

We will inform you if in individual cases other persons are responsible for the processing of personal data.

Data protection representative in the European Economic Area (EEA)

Within the European Economic Area (EEA) including the European Union (EU), the Principality of Liechtenstein, Iceland and Norway, we have the following data protection representative as an additional contact point for requests from supervisory authorities and data subjects in connection with the General Data Protection Regulation (GDPR) pursuant to art. 27 GDPR:

VGS Datenschutzpartner UG
Am Kaiserkai 69
20457 Hamburg
Germany
info@datenschutzpartner.eu

 

2. Processing of Personal Data

2.1  Definitions

Personal data means any information relating to an identified or identifiable natural person. Data subject means a person about whom personal data is processed. Processing means any operation which is performed on personal data, irrespective of the means and procedures used, in particular the storage, disclosure, acquisition, collection, erasure, recording, alteration, destruction and use of personal data.

European Economic Area (EEA) comprises the European Union (EU) as well as the Principality of Liechtenstein, Iceland and Norway.

2.2  Legal Bases

We process personal data in compliance with Swiss data protection law, namely the Federal Act on Data Protection (FADP) and the Ordinance to the Federal Act on Data Protection.

If and to the extent that the General Data Protection Regulation (GDPR) is applicable, we process personal data according to at least one of the following legal bases:

  • 6 par. 1 lit. b GDPR for the processing of personal data necessary for the performance of a contract with the data subject and for taking steps prior to entering into a contract.
  • 6 par. 1 lit. f GDPR for the processing of personal data necessary for the purposes of the legitimate interests of us or of third parties, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject. Legitimate interests particularly include our interest in the ability to provide our products and services in a permanent, user-friendly, secure and reliable manner and promote them as necessary, information security as well as the protection against misuse or unauthorized use, the enforcement of own legal claims and the compliance with Swiss law.
  • 6 par. 1 lit. c GDPR for the processing of personal data necessary for the compliance with a legal obligation to which we are subject according to any applicable law of member states of the European Economic Area (EEA).
  • 6 par. 1 lit. e GDPR for the processing of personal data necessary for the performance of a task carried out in the public interest.
  • 6 par. 1 lit. a GDPR for the processing of personal data with the consent of the data subject.
  • 6 par. 1 lit. d GDPR for the processing of personal data necessary in order to protect the vital interests of the data subject or of another natural person.

2.3  Type, Scope and Purpose

We process such personal data as is necessary in order to be able to provide our products and services in a permanent, user-friendly, secure and reliable manner. Such personal data may fall into the categories of inventory and contact data, browser and device data, content data, meta or marginal data and usage data, location data, sales, contract and payment data.

We process personal data for such period as is necessary for the respective purpose or respective purposes or as required by law. Personal data whose processing is no longer required will be anonymized or erased. Data subjects whose data we process have a fundamental right to erasure.

We only process personal data with the consent of the data subject, unless processing is permitted for other legal reasons, such as to perform a contract with the data subject and to take steps prior to entering into a contract, to protect our overriding legitimate interests, because the processing is evident from the circumstances or after prior information.

In this context, we process information which a data subject voluntarily and personally provides us with when making contact – for example by letter post, e-mail or phone, via contact form or on social media – or when registering for a user account. We may store such information, e.g., in an address book, in a customer relationship management system (CRM system) or with similar tools. If you provide us with personal data of any third party, you are obliged to guarantee protection of such third party’s data and to ensure accuracy of such personal data.

In addition, we process personal data that we receive from third parties, acquire from sources available to the public or collect when providing our products and services, if and to the extent that such processing is permitted by law.

Personal data from job applications is only processed to the extent that is necessary for the assessment of suitability for an employment or for the subsequent execution of an employment contract. The personal data necessary for the performance of an application process arises from the information requested or provided, for example in the framework of a job description. Applicants have the possibility to voluntarily provide additional information for their respective applications.

2.4  Processing of Personal Data by Third Parties, also Abroad

We may have personal data processed by commissioned third parties or process it together with third parties or with the help of third parties or transfer it to third parties. Such third parties are namely providers of services that we make use of. We also guarantee adequate data protection for such third parties.

Such third parties are generally located in Switzerland and in the European Economic Area (EEA). However, such third parties may also be located in other states and territories on earth as well as elsewhere in the universe, provided that their data protection law guarantees an adequate level of data protection according to the assessment of the Federal Data Protection and Information Commissioner (FDPIC) and – if and to the extent that the General Data Protection Regulation (GDPR) is applicable – according to the assessment of the European Commission, or if an adequate level of data protection is guaranteed for other reasons, including respective contractual agreements, particularly on the basis of standard contractual clauses, or any respective certification. In exceptional cases, such third party may be located in a country without adequate level of data protection, provided that the data protection requirements, such as the explicit consent of the data subject, are met.

 

3. Rights of Data Subjects

Data subjects whose personal data we process have the rights set out in the Swiss Data Protection Act. These include the right of access as well as the right to rectification, erasure or restriction of the personal data processed.

If and to the extent that the General Data Protection Regulation (GDPR) is applicable, data subjects whose personal data we process have the right to obtain free of charge confirmation as to whether or not we are processing their personal data, and, where that is the case, access to the personal data, request restriction of processing of their personal data, exercise their right to data portability and have their personal data rectified, erased (”right to be forgotten”), blocked or completed.

If and to the extent that the General Data Protection Regulation (GDPR) is applicable, data subjects whose personal data we process have the right to withdraw their consent at any time with effect for the future and object to the processing of their personal data at any time.

Data subjects whose personal data we process have the right to lodge a complaint with a competent supervisory authority. Supervisory authority for data protection in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC).

 

4. Data Security

We take adequate and appropriate technical and organizational measures to guarantee data protection and in particular data security. Despite such measures, however, processing of personal data over the Internet can always have security gaps. Therefore, we cannot guarantee absolute data security.

Access to our online services is provided using transport encryption (SSL/TLS, especially with Hypertext Transfer Protocol Secure, abbreviated as HTTPS). Most browsers mark transport encryption with a padlock in the address bar.

Access to our online services is – as basically every use of the Internet – subject to mass surveillance without cause or suspicion and other monitoring by security authorities in Switzerland, the European Union (EU), the United States of America (USA) and other countries. We have no direct influence on the corresponding processing of personal data by secret services, police agencies and other security authorities.

 

5. Use of the Website

5.1  Cookies

We may use cookies for our website. Cookies – both our own cookies (first-party cookies) and cookies of third parties whose services we use (third-party cookies) – are data that is stored in your browser. Such stored data need not be limited to traditional cookies in text form. Cookies cannot execute programs or transmit malware such as Trojans and viruses.

When you visit our website, cookies may be stored in your browser temporarily as “session cookies” or for a certain period of time as so-called permanent cookies. “Session cookies” are automatically deleted when you close your browser. Permanent cookies have a certain storage period. They make it possible to recognize your browser the next time you visit our website and thus, e.g., measure the reach of our website. Permanent cookies may also be used for other purposes such as online marketing.

In your browser settings, you can fully or partially deactivate or delete cookies at any time. Without cookies, our website may no longer be fully available. We actively ask you – if and to the extent necessary – for your explicit consent to the use of cookies.

For cookies used for success or reach measurement or advertising, general objection (“opt-out”) is possible for various services via Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance) or Your Online Choices (European Interactive Digital Advertising Alliance, EDAA).

5.2  Server Log Files

We may collect the following information for each access to our website, provided that this information is transmitted by your browser to our server infrastructure or can be determined by our web server: Date and time including time zone, Internet Protocol address (IP address), access status (HTTP status code), operating system including user interface and version, browser including language and version, accessed individual subpage of our website including transferred data volume, website last accessed in the same browser window (referer or referrer).

We store such information, which may also contain personal data, in server log files. The information is necessary in order to be able to provide our online services in a permanent, user-friendly and reliable manner and ensure data security and thus in particular the protection of personal data – including by third parties or with the help of third parties.

5.3  Tracking Pixels

We may use tracking pixels on our website. Tracking pixels are also known as web beacons. Tracking pixels – including tracking pixels of third parties whose services we use – are tiny, usually invisible images that are automatically retrieved when visiting our website. With tracking pixels, the same information can be collected as in server log files.

 

6. Notifications and Communications

We send notifications and communications such as newsletters by e-mail and through other communication channels such as instant messaging.

6.1  Success and Reach Measurement

Notifications and communications may contain web links or tracking pixels that record whether an individual message was opened and which web links were clicked. Such web links and tracking pixels may also record the use of notifications and communications in person-related manner. We need these statistical recording of usage for our success and reach measurement in order to be able to provide notifications and communications in an effective and user-friendly as well as permanent, secure and reliable manner based on the needs and reading habits of the recipients.

6.2  Consent and Objection

In order to be allowed to use your e-mail address and your other contact details, your explicit consent is required, unless the use is permitted for other legal reasons. Whenever possible, we use the „double opt-in“ process for your consent to the receipt of e-mails. This means, that you receive an e-mail with a web link which you must click to confirm in order to prevent abuse by unauthorized third parties. For evidence purposes and security reasons, we may record such consent including Internet Protocol address (IP address), date and time.

You may unsubscribe from notifications and communications such as newsletters at any time. Notifications and communications that are essential for the provision of our products and services remain reserved. By unsubscribing, you can namely object to the statistical recording of usage for success and reach measurement.

6.3  Service Providers for Notifications and Communications

We send notifications and communications through third-party services or with the help of service providers. In this context, cookies may be used. We also guarantee adequate data protection for such services.

 

7. Social Media

We are present on social media platforms and other online platforms in order to be able to communicate with interested people and inform about our products and services. In this context, personal data may also be processed outside of Switzerland and the European Economic Area (EEA).

The General Terms and Conditions (GTC), terms of use and privacy policies as well as other provisions of the respective operators of such online platforms shall apply additionally. These provisions provide information about the rights of data subjects, which particularly include the right of access.

In terms of our social media presence on Facebook, we are jointly responsible with Facebook for the so-called Page Insights, if and to the extent that the GDPR is applicable. Page Insights provide information about how visitors interact with our Facebook presence. We use Page Insights in order to be able to provide our social media presence on Facebook in an effective and user-friendly manner. Facebook has published information about Page Insights data as well as additional information about the responsibility for Page Insights (Controller Addendum).

 

8. Success and Reach Measurement

8.1  Google Analytics

We use Google Analytics in order to analyze how our website is used. For example, we may measure the reach of our website and the success of third-party links to our website. Google Analytics is a service of US-based Google LLC. The Irish company Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland.

Google also attempts to track individual visitors to our website when they use different browsers or devices (cross-device tracking). This involves the use of cookies. Your Internet Protocol address (IP address) is required for Google Analytics. However, your IP address will not be merged with any other data held by Google.

In any case, we have your Internet Protocol address (IP address) anonymized by Google prior to the analysis. As a general principle, this means that your complete IP address is not transmitted to Google in the USA.

We use Google Analytics with Google Signals. This provides us with extended statistics about visitors to our website who have ads personalization enabled as registered users of Google. Despite these extended statistics, we are not able to make any connection to individual Google user accounts.

For further information about the type, scope and purpose of data processing, please refer to the Privacy and Security Principles and the Privacy Policy of Google, the Google Product Privacy Guide (including Google Analytics), the information about how Google uses information from websites that use Google services and the information about how Google uses cookies. Furthermore, you have the possibility to use the „Google Analytics Opt-out Browser Add-on“ and to object to ads personalization.

8.2  Google Tag Manager

We use Google Tag Manager in order to be able to integrate and manage services for Google Analytics or advertising from Google and third parties on our website. Google Tag Manager is a service of US-based Google LLC. The Irish company Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland. Google Tag Manager does not use cookies. However, cookies may be used as part of the services integrated and managed with Google Tag Manager. In this Privacy Policy, we inform you about the processing of personal data by such services.

8.3  WordPress.com Stats

We use WordPress.com Stats, a module of the WordPress extension Jetpack, to measure the reach of our online services. This involves the use of cookies. Jetpack is a service of Aut O’Mattic A8C Ireland Ltd. in Ireland or Automattic Inc. in the USA which is, among other things, known for its WordPress.com products. For further information about the type, scope and purpose of data processing, please refer to the Privacy Notice for websites and the general Privacy Policy of Automattic as well as the Jetpack Privacy Center and the information about cookies at Jetpack.

 

9. Third-Party Services

We use third-party services in order to be able to provide our products and services in a permanent, user-friendly, secure and reliable manner. Such services are also used to integrate content into our website. Such services – e.g. hosting and storage services, video services and payment services – require your Internet Protocol address (IP address) to be able to transmit the corresponding content. Such services may be located outside of Switzerland and the European Economic Area (EEA), provided that an adequate level of data protection is guaranteed.

For their own security-related, statistical or technical purposes, third parties whose services we use may process data collected in connection with our products and services or from other sources – e.g. by using      cookies, log files and tracking pixels – in an aggregated, anonymized or pseudonymized form.

9.1  Digital infrastructure

We use third-party services in order to be able to use the digital infrastructure necessary for our products and services. These particularly include hosting and storage services of specialized providers. Such providers process – usually exclusively on our behalf – the data required to operate this infrastructure. Such data particularly includes your Internet Protocol address (IP address). We also guarantee adequate data protection for such providers.

9.2  Contact Opportunities

We use third-party services in order to be able to improve our communication with you and other persons, such as customers. We also guarantee adequate data protection for such third parties.

We use the customer relationship management (CRM) software HubSpot to improve communication with our customers and other persons. HubSpot is provided by HubSpot Inc. in the USA. For information about the type, scope and purpose of data processing, please refer to the HubSpot Privacy Policy.

9.3  Audio and Video Conferences

We use audio and video conferencing services for the communicate with our customers and other persons. In particular, these services enable us to conduct audio and video conferences, virtual meetings and training such as webinars.

We only use services that guarantee adequate data protection. In addition to this Privacy Policy, the respective terms and conditions (e.g. terms of use or privacy policies) of the services we use shall apply.

9.3.1 We namely use Google Meet (formerly Google Hangouts Meet), a service of US-based Google LLC. The Irish company Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland. For further information about the type, scope and purpose of data processing, please refer to the Privacy and Security Principles and the Privacy Policy of Google, the web page Google Meet Security and Privacy and the information about how Google uses cookies.

9.3.2 We namely use Zoom, a service of US-based Zoom Video Communications Inc. Zoom also grants the rights under the European General Data Protection Regulation (GDPR) for users in Switzerland. For further information about the type, scope and purpose of data processing, please refer to the Zoom Privacy Statement and the web page Legal & Privacy of Zoom.

9.4  Social Media Features and Social Media Content

9.4.1 Facebook

We use Social Plugins of Facebook to integrate Facebook features and Facebook content into our website. Such features include the “Like” and “Share” buttons. This involves the use of cookies. For further information, please refer to the web page about Social Plugins of Facebook.

The Social Plugins are offered by Facebook Ireland Ltd. in Ireland or US-based Facebook Inc. If you are registered on Facebook as a user, Facebook can match the use of our online services to your profile. For further information about the type, scope and purpose of data processing, please refer to the Data Policy of Facebook.

9.4.2 LinkedIn

We use plugins to integrate features and content of LinkedIn into our website. This gives you the possibility to use, for example, the “Share” feature of LinkedIn on our website. This involves the use of cookies. For further information, please refer to the web page about plugins of LinkedIn.

The plugins are offered by LinkedIn Ireland Unlimited Company in Ireland or US-based LinkedIn Corporation. If you are registered on LinkedIn as a user, LinkedIn can match the use of our online services to your profile. For further information about the type, scope and purpose of data processing, please refer to the Privacy Policy, Cookie Policy and the web page about data protection of LinkedIn. You also have the possibility to object to ads personalization.

9.4.3 Twitter

We use plugins to integrate features and content of Twitter into our website (“Twitter for Websites”). This allows us, for example, to display tweets on our website or give you the possibility to use the “Share” feature of Twitter on our website. This involves the use of cookies.

“Twitter for Websites” is offered by Twitter International Company in Ireland or US-based Twitter Inc. If you are registered on Twitter as a user, Twitter can match the use of our online services to your profile. For further information about the type, scope and purpose of data processing, please refer to the information about ads and privacy for Twitter for Websites and the Twitter Privacy Policy. Twitter also provides information about the use of cookies and similar technologies as well as the personalization of ads both in connection with any Twitter account and due to the use of Twitter content published on the Internet. For ads personalization, privacy controls are available which also contain the option to object.

9.5  Entertainment

We use YouTube to integrate video content into our website. This involves the use of cookies. YouTube is a service of US-based Google LLC. The Irish company Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland. For further information about the type, scope and purpose of data processing, please refer to the Privacy and Security Principles and the Privacy Policy of Google, the Google Product Privacy Guide (including YouTube), the information about how Google uses information from websites that use Google services and the information about how Google uses cookies. You also have the possibility to object to ads personalization.

9.6  Fonts

We use Google Fonts in order to be able to integrate selected fonts into our website. Google Fonts does not use cookies. It is a service of the US-based Google LLC and is offered independently from other Google services. The Irish company Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland. For further information about the type, scope and purpose of data processing, please refer to the Privacy and Security Principles and the Privacy Policy of Google.

 

10. Website Extensions

10.1  We use Google reCAPTCHA in order to protect input forms from bots and spam while allowing entries of humans in a reliable manner. This involves the use of cookies. Google reCAPTCHA is a service of the US-based Google LLC. The Irish company Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland. For further information about the type, scope and purpose of data processing, please refer to the Privacy and Security Principles and the Privacy Policy of Google as well as the information about how Google uses cookies.

10.2  We use the WordPress extension Jetpack, which offers various features in the form of modules that we need for our online services. This involves the use of cookies. Jetpack is a service of Aut O’Mattic A8C Ireland Ltd. in Ireland or Automattic Inc. in the USA which is, among other things, known for its WordPress.com products. For further information about the type, scope and purpose of data processing, please refer to the Privacy Notice for websites and the general Privacy Policy of Automattic as well as the Jetpack Privacy Center and the information about cookies at Jetpack.

10.3  We use jQuery, a free JavaScript library of the JS Foundation. We integrate the library using jQuery.com to improve the speed of our website. jQuery is delivered through the StackPath Content Delivery Network (CDN), a service of US-based StackPath LLC. In this context, cookies may be used. For further information about the type, scope and purpose of data processing, please refer to the Privacy Statement of StackPath.

 

11. Final Provisions

This Privacy Policy has been created using the privacy policy generator of Datenschutzpartner (links only available in German).

We may adapt and amend this Privacy Policy at any time. We inform you about such adaptations and amendments in appropriate form, in particular by publishing the current version of the Privacy Policy on our website.