Contact Information
Responsibility for the processing of personal data:
Source 10
Lara Holzer
Quellenweg 10
3652 Hilterfingen
We will notify you if, in specific cases, there are other parties responsible for processing personal data.
Data Protection Officer or Data Protection Consultant
We have appointed the following Data Protection Officer and Data Protection Consultant to serve as a point of contact for data subjects and authorities regarding inquiries related to data protection:
Source 10
Lara Holzer
Quellenweg 10
3652 Hilterfingen
Data Protection Representative in the European Economic Area (EEA)
We have appointed the following data protection representative in accordance with Article 27 of the GDPR:
VGS Datenschutzpartner GmbH
69 Kaiserkai,
, 20457 Hamburg,
, Germany
The Data Protection Representative serves as an additional point of contact for data subjects and public authorities in the European Union (EU) and the rest of the European Economic Area (EEA) for inquiries related to the GDPR.
Terms
Personal data refers to any information relating to an identified or identifiable natural person. A data subject is a person whose personal data we process. Processing encompasses any handling of personal data, regardless of the means and methods used, such as querying, matching, modifying, archiving, storing, retrieving, disclosing, obtaining, recording, collecting, deleting, revealing, classifying, organizing, saving, altering, disseminating, linking, destroying, and using personal data.
The European Economic Area (EEA) comprises the member states of the European Union (EU) as well as the Principality of Liechtenstein, Iceland, and Norway. The General Data Protection Regulation (GDPR) refers to the handling of personal data as the processing of personal data.
Legal Basis
We process personal data in accordance with Swiss data protection law, in particular the Federal Act on Data Protection (Data Protection Act, DPA) and the Ordinance on Data Protection (Data Protection Ordinance, DPO).
We process personal data—to the extent that the General Data Protection Regulation (GDPR) applies—in accordance with at least one of the following legal bases:
We process the personal data necessary to carry out our activities and operations in a sustainable, user-friendly, secure, and reliable manner. Such personal data may include, in particular, categories such as account and contact data, browser and device data, content data, metadata and ancillary data, usage data, location data, sales data, as well as contract and payment data.
We process personal data for as long as is necessary for the specific purpose(s) or as required by law. Personal data that is no longer needed for processing is anonymized or deleted.
We may have personal data processed by third parties. We may process personal data jointly with third parties or transfer it to third parties. Such third parties include, in particular, specialized service providers whose services we use. We ensure that data protection is maintained even when such third parties are involved.
As a general rule, we process personal data only with the consent of the individuals concerned. If and to the extent that processing is permitted for other legal reasons, we may refrain from obtaining consent. For example, we may process personal data without consent to fulfill a contract, to comply with legal obligations, or to protect legitimate interests.
In this context, we process, in particular, information that a data subject voluntarily provides to us when contacting us—for example, via postal mail, email, instant messaging, contact forms, social media, or telephone—or when registering for a user account. We may store such information, for example, in an address book, in a customer relationship management system (CRM system), or using comparable tools. If we receive data about other individuals, the parties transmitting the data are obligated to ensure data protection for those individuals and to verify the accuracy of such personal data.
We also process personal data that we receive from third parties, obtain from publicly available sources, or collect in the course of our activities and operations, provided that such processing is permitted by law.
We generally process personal data in Switzerland and within the European Economic Area (EEA). However, we may also export or transfer personal data to other countries, in particular to process it there or have it processed there.
We may transfer personal data to any country or territory on Earth or elsewhere in the universe, provided that the local law, in accordance with a decision by the Swiss Federal Council, ensures an adequate level of data protection and – provided and to the extent that the General Data Protection Regulation (GDPR) applies – ensures adequate data protection in accordance with a decision by the European Commission.
We may transfer personal data to countries whose laws do not provide adequate data protection, provided that data protection is ensured for other reasons, in particular on the basis of standard data protection clauses or other appropriate safeguards.
In exceptional cases, we may transfer personal data to countries without adequate or appropriate data protection if the specific legal requirements for data protection are met, such as the explicit consent of the data subjects or a direct connection to the conclusion or performance of a contract. Upon request, we are happy to provide data subjects with information about any safeguards or to provide a copy of any safeguards.
Data Protection Claims
We grant data subjects all rights under applicable data protection law.
Data subjects have the following rights in particular:
We may defer, restrict, or deny the exercise of data subjects’ rights within the limits permitted by law. We may inform data subjects of any prerequisites that must be met for them to exercise their data protection rights. For example, we may refuse to provide information in whole or in part, citing trade secrets or the protection of other individuals. We may also, for example, refuse to delete personal data in whole or in part, citing statutory retention obligations.
In exceptional cases, we may charge a fee for the exercise of these rights. We will inform data subjects in advance of any such fees.
We are required to take reasonable steps to verify the identity of data subjects who request information or exercise other rights. Data subjects are required to cooperate.
Right to File a Complaint
Data subjects have the right to enforce their data protection rights through legal action or to file a complaint with a competent data protection supervisory authority.
The supervisory authority for data protection for private data controllers and federal bodies in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC). Data subjects have the right—provided and to the extent that the General Data Protection Regulation (GDPR) applies—to lodge a complaint with a competent European data protection supervisory authority.
We take appropriate technical and organizational measures to ensure data security commensurate with the respective risk. However, we cannot guarantee absolute data security.
Access to our website is secured using transport encryption (SSL/TLS, specifically the Hypertext Transfer Protocol Secure, abbreviated as HTTPS). Most browsers indicate transport encryption with a padlock icon in the address bar. Our digital communications—like all digital communications—are subject to mass surveillance without cause or suspicion, as well as other forms of surveillance by security authorities in Switzerland, the rest of Europe, the United States of America (USA), and other countries. We have no direct influence over the processing of personal data by intelligence agencies, police departments, and other security authorities.
Cookies
We may use cookies. Cookies—including our own cookies (first-party cookies) and cookies from third parties whose services we use (third-party cookies)—are data stored in the browser. Such stored data is not limited to traditional text-based cookies.
Cookies can be stored temporarily in the browser as “session cookies” or for a specific period of time as so-called permanent cookies. “Session cookies” are automatically deleted when the browser is closed. Permanent cookies have a specific storage duration. Cookies enable, in particular, the recognition of a browser upon the next visit to our website and thereby, for example, the measurement of our website’s reach. Permanent cookies can also be used, for example, for online marketing.
Cookies can be disabled entirely or partially, or deleted, at any time in your browser settings. However, without cookies, our website may not be fully functional. We actively request your explicit consent to the use of cookies—at least to the extent necessary.
For cookies used to measure performance and reach or for advertising purposes, many services offer a general opt-out option through AdChoices (Digital Advertising Alliance of Canada), the Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance), or Your Online Choices (European Interactive Digital Advertising Alliance, EDAA).
Server log files
We may collect the following information for each visit to our website, provided that this information is transmitted by your browser to our server infrastructure or can be determined by our web server: date and time, including time zone; Internet Protocol (IP) address; access status (HTTP status code); operating system, including user interface and version, browser, including language and version, individual subpages of our website accessed, including the amount of data transferred, and the last webpage accessed in the same browser window (referrer).
We store such information, which may also constitute personal data, in server log files. This information is necessary to ensure that our website remains available, user-friendly, and reliable, as well as to ensure data security and, in particular, the protection of personal data—including through third parties or with the assistance of third parties.
pixel counter
We may use web beacons on our website. Web beacons are also known as tracking pixels. Web beacons—including those from third parties whose services we use—are small, typically invisible images that are automatically loaded when you visit our website. Web beacons can collect the same information as server log files.
Notifications and Announcements
We send notifications and messages via email and other communication channels, such as instant messaging or text messages.
Measuring Success and Reach
Notifications and messages may contain web links or tracking pixels that track whether a specific message has been opened and which web links were clicked within it. Such web links and tracking pixels may also track the use of notifications and messages on a personal basis. We require this statistical tracking of usage to measure effectiveness and reach so that we can send notifications and messages in a way that is effective, user-friendly, sustainable, secure, and reliable, based on the needs and reading habits of the recipients.
Consent and Objection
You must generally give your express consent to the use of your email address and other contact information, unless such use is permitted for other legal reasons. For any consent, we use the “double opt-in” procedure whenever possible, which means you will receive an email with a web link that you must click to confirm, so that no misuse by unauthorized third parties can occur. We may log such consents, including the Internet Protocol (IP) address as well as the date and time, for evidentiary and security purposes. You may generally object to receiving notifications and communications, such as newsletters, at any time. By objecting in this way, you may simultaneously object to the statistical tracking of usage for the purpose of measuring success and reach. This does not apply to necessary notifications and communications related to our activities and operations.
Provider of notification and communication services
We send notifications and messages through specialized service providers.
We maintain a presence on social media platforms and other online platforms to communicate with interested individuals and provide information about our activities and operations. In connection with such platforms, personal data may also be processed outside of Switzerland and the European Economic Area (EEA). The General Terms and Conditions (GTC) and Terms of Use, as well as privacy policies and other provisions of the individual operators of such platforms, also apply in each case. These provisions provide information, in particular, about the rights of data subjects directly vis-à-vis the respective platform, including, for example, the right of access.
We are jointly responsible with Meta Platforms Ireland Limited (Ireland) for our social media presence on Facebook, including so-called Page Insights, to the extent that the General Data Protection Regulation (GDPR) applies. Meta Platforms Ireland Limited is part of the Meta group of companies (including those in the United States). Page Insights provide information about how visitors interact with our Facebook presence. We use Page Insights to ensure that our social media presence on Facebook is effective and user-friendly.
Further information regarding the nature, scope, and purpose of data processing, details on the rights of data subjects, and the contact information for Facebook and Facebook’s Data Protection Officer can be found in Facebook’s Privacy Policy. We have entered into the so-called“Addendum for Controllers”with Facebook and have thereby specifically agreed that Facebook is responsible for ensuring the rights of data subjects. For the so-called Page Insights, the relevant information can be found on the “Information about Page Insights” page, including “Information about Page Insights Data.”
We use services provided by specialized third parties to ensure that our activities and operations are sustainable, user-friendly, secure, and reliable. These services allow us, among other things, to embed features and content into our website. When such embedding occurs, the services used collect users’ Internet Protocol (IP) addresses, at least temporarily, for technical reasons.
For necessary security, statistical, and technical purposes, third parties whose services we use may process data related to our activities and operations in an aggregated, anonymized, or pseudonymized form. This includes, for example, performance or usage data required to provide the respective service.
In particular, we use:
We use services provided by specialized third parties to access the digital infrastructure required for our activities and operations. These include, for example, hosting and storage services from selected providers.
In particular, we use:
We use services from selected providers to better communicate with third parties, such as potential and existing customers.
Scheduling
We use services provided by specialized third parties to enable online scheduling, such as for meetings. In addition to this Privacy Policy, any terms and conditions directly associated with the services we use—such as terms of use or privacy policies—also apply.
We use third-party services and plugins to embed features and content from social media platforms and to enable the sharing of content on social media platforms and through other channels.
In particular, we use:
We use third-party services to embed maps on our website.
In particular, we use:
Fonts:
We use third-party services to embed selected fonts, icons, logos, and symbols on our website.
In particular, we use:
We use the option of displaying targeted advertisements for our activities and services on third-party platforms, such as social media platforms and search engines. With such advertising, we aim in particular to reach people who are already interested in our activities and services or who might be interested in them (remarketing and targeting). To this end, we may transmit relevant information—including, where applicable, personal data—to third parties that enable such advertising. We may also determine whether our advertising is successful, specifically whether it leads to visits to our website (conversion tracking).
Third parties with whom we advertise and where you are registered as a user may, in some cases, associate your use of our website with your profile on their platform.
In particular, we use:
We seek to determine how our online platform is used. In this context, we can, for example, measure the success and reach of our activities, as well as the impact of third-party links on our website. We may also, for example, test and compare how different parts or versions of our online offering are used (the “A/B testing” method). Based on the results of these success and reach measurements, we can, in particular, fix errors, enhance popular content, or make improvements to our online offering.
In most cases, the Internet Protocol (IP) addresses of individual users are stored for the purpose of measuring success and reach. In such cases, IP addresses are always truncated (“IP masking”) in order to comply with the principle of data minimization through appropriate pseudonymization.
Cookies may be used to measure performance and reach, and user profiles may be created. Any user profiles created may include, for example, the specific pages visited or content viewed on our website, information about the size of the screen or browser window, and the user’s location (at least approximately). In principle, any user profiles created are exclusively pseudonymized and are not used to identify individual users. Certain third-party services with which users are registered may, in some cases, associate the use of our online offering with the user account or user profile for the respective service.
In particular, we use:
We created this Privacy Policy using the privacy policy generator from Datenschutz-Partner. We may amend or supplement this Privacy Policy at any time. We will provide notice of such modifications and additions in an appropriate manner, in particular by publishing the current privacy policy on our website. With this privacy policy, we inform you about what personal data we process in connection with our activities and operations, including our www.latviaplan.ch-Website. In particular, we explain for what purpose, how, and where we process which personal data. We also provide information about the rights of individuals whose data we process. Additional privacy policies and other legal documents, such as General Terms and Conditions (GTC), Terms of Use, or Terms of Participation, may apply to specific or additional activities and operations. We are subject to Swiss data protection law as well as any applicable foreign data protection law, in particular that of the European Union (EU) with the General Data Protection Regulation (GDPR). The European Commission recognizes that Swiss data protection law ensures an adequate level of data protection.
