This data protection information applies to data processing by Salenture GmbH, Freilagerstrasse 39, CH-8047 Zurich (Switzerland), telephone: +41 44 500 500 5, e-mail: email@example.com (hereinafter referred to as "we" or "Salenture").
As a Swiss company with no branches abroad, we are bound by the applicable data protection regulations and laws of Switzerland. In order to also enable clients from the European Union (EU) to use our services, we also comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data, on the free movement of such data and repealing Directive 95/46/EC ("General Data Protection Regulation", hereinafter "GDPR"). In this context, we would like to point out that Salenture is not obliged to appoint a data protection officer pursuant to Article 37 of the GDPR.
Person responsible pursuant to Art. 4 (7) of the GDPR: Salenture GmbH, Freilagerstasse 39, 8047 Zurich, Switzerland, firstname.lastname@example.org
We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration. As a rule, it is possible to use our website without providing personal data. Insofar as personal data (e.g. name, address or e-mail addresses) is collected on our pages, this is always done, as far as possible, on a voluntary basis. This data will only be passed on to third parties without your express consent if this is necessary to ensure the services agreed with you. We would like to point out that data transmission on the Internet (e.g. communication by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
The data protection declaration of Salenture is based on the terms used by the European Directive and Ordinance Maker when issuing the General Data Protection Regulation (GDPR). Our data protection declaration should be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance. We use the following terms, among others, in this data protection declaration:
Personal data is any information relating to an identified or identifiable natural person (hereinafter "data subject"). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Data subject means any identified or identifiable natural person whose personal data are processed by the controller.
Processing means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organisation, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of limiting its future processing.
Profiling is any type of automated processing of personal data which consists of using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or change of location.
Pseudonymisation is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures which ensure that the personal data are not attributed to an identified or identifiable natural person.
Controller or person responsible for processing
The controller or person responsible for processing is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its designation may be provided for under Union or Member State law.
Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
Recipient means a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not a third party. However, public authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law shall not be considered as recipients.
Third party means a natural or legal person, public authority, agency or other body other than the data subject, the controller, the processor and the persons authorised to process the personal data under the direct responsibility of the controller or the processor.
Consent is any freely given indication of the data subject's wishes for the specific case in an informed and unambiguous manner, in the form of a statement or any other unambiguous affirmative act by which the data subject indicates that he or she consents to the processing of personal data relating to him or her.
Server log files
When you visit our websites, we or our provider automatically process information in so-called server log files that your browser automatically transmits to us. These are:
- Browser type/ browser version
- Operating system used/li>
- Name of your access provider/li>
- Referring URL/li>
- Name and URL of the accessed file/li>
- Host name / IP address of the accessing computer/li>
- Date and time of the server request/li>
The above data is processed by us for the following purposes:
- Ensuring a smooth connection setup of the website
- Ensuring the comfortable use of the website
- Evaluation of system security and stability
- For further administrative purposes
- The legal basis for the data processing is Art. 6 para. 1 p.1 lit. f GDPR. Our legitimate interest follows from the data collection purposes listed above. The data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to check the data subsequently if we become aware of concrete indications of unlawful use.
Transfer of data
We do not transfer your personal data to third parties for purposes other than those listed below. We only pass on your personal data to third parties if:
- you have given your express consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR,
- the disclosure is necessary for the assertion, exercise or defence of legal claims pursuant to Art. 6 para. 1 p. 1 lit. f GDPR and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,
- in the event that there is a legal obligation to disclose your data pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR, as well as
- this is legally permissible and necessary for the processing of contractual relationships with you according to Art. 6 para. 1 p. 1 lit. b GDPR.
Contact forms and support forms
If you have any questions or support requests, we offer you the opportunity to contact us using the forms provided on the website. In addition to the actual message, we require your name and a valid e-mail address so that we know what kind of information you want from us, who the request is from and so that we can answer it. Further information can be provided voluntarily. Data processing for the purpose of contacting us is based on your voluntarily given consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR. The personal data collected by us for the use of the contact form are used exclusively for processing your enquiry.
Duration of storage and deletion of data
In order to be able to fulfill offers and contractually agreed services within the defined framework, data is stored for as long as a business relationship exists between you and Salenture, unless otherwise stipulated by law for the storage of processed data. Unless otherwise defined, a business relationship begins when you sign up for a Salenture offer and ends when you or Salenture terminates the business relationship. The deletion of data may be requested by you in the context of your business relationship with Salenture on the basis of data subject rights. For legal reasons, the right to erasure of data only extends to data collected by Salenture, or at the request of Salenture, or data collected by you. Data provided to us outside of a business relationship or outside of the use of one of our offers will be deleted within the scope of the rights of the data subject, unless they conflict with applicable law. Salenture reserves the right to charge you for expenses incurred for deletions requested by you on the basis of data protection rights and which exceed a reasonable and proportionate measure, at a rate customary in the industry.
Data subject rights
You have the right:
- Pursuant to Art. 15 GDPR, to request information about your personal data processed by us. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details;
- in accordance with Art. 16 GDPR, to demand the immediate correction of inaccurate or incomplete personal data stored by us;
- in accordance with Article 17 of the GDPR, to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defence of legal claims;
- pursuant to Art. 18 GDPR, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defence of legal claims or you have objected to the processing pursuant to Art. 21 GDPR;
- pursuant to Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller;
- revoke your consent at any time in accordance with Art. 7 (3) GDPR. This has the consequence that we may no longer continue the data processing based on this consent in the future; and
- complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our registered office for this purpose.
To exercise your data protection rights, you can either contact email@example.com or our data protection representative in the European Union. Salenture reserves the right to charge you for expenses incurred as a result of you exercising your data protection rights which exceed a reasonable and proportionate level, at a rate customary in the industry.
Right of objection
If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 (1) sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, insofar as there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which will be implemented by us without specifying a particular situation.If you wish to exercise your right of revocation or objection, an email to firstname.lastname@example.org will suffice.
We use the widespread SSL procedure (Secure Socket Layer) in connection with the highest level of encryption supported by your browser when visiting our website. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is encrypted by the closed key or lock symbol in the status bar of your browser. We also use appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.
This data protection policy is valid as of 1 December 2019. Should individual parts of this agreement be invalid, this shall not affect the validity of the rest of the agreement. Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration. You can access and print out the current data protection statement at any time on the website at https://www.salenture.com/privacy.