Privacy policy
In this privacy policy, we inform you about the processing of your your personal data in connection with our activities and our website. and our website. We explain in detail which personal data we process, why, how and where. Furthermore we inform you about your rights as a data subject. It may be that for certain or additional activities and services services may require additional data protection declarations as well as other legal documents such as general terms and conditions (GTC), Terms of Use or Conditions of Participation apply. We are subject to the Swiss Data Protection Act and, where applicable, also the foreign data protection law, in particular that of the European Union (EU) including the General Data Protection Regulation (GDPR). The European Commission has recognized that Swiss data protection data protection law ensures adequate data protection.
1. contact addresses
Responsibility for the processing of personal data:
Dominique Mustur, MD
Seestrasse 353, 8038 Zurich
Email: info@augencenterwollishofen.ch
We point out if there are other responsible parties in individual cases for the processing of personal data.
2. definitions and legal basis
2.1 Definitions
Personal data is any information relating to an identified or identified or identifiable natural person. A data subject is a person whose personal data we process. Processing includes any handling of personal data, regardless of the means and methods used. This includes, but is not limited to This includes, but is not limited to, retrieving, comparing, adapting, archiving, storing, reading, disclosing, obtaining, recording, collecting, deleting, disclosing, arranging, organizing, storing, modifying, distributing, Linking, destroying and using personal data. The European Economic Area (EEA) includes the member states of the European Union (EU), Liechtenstein Union (EU) as well as Liechtenstein, Iceland and Norway. The The General Data Protection Regulation (DSGVO) defines the processing of personal data as processing of personal data.
2.2 Legal basis
We process personal data in accordance with the Swiss data protection law, in particular the Swiss Federal Act on (Data Protection Act, DSG) and the Ordinance on Data Protection (Data Protection Ordinance, DSV). Data Protection Ordinance (Data Protection Ordinance, DPA). We process personal data if and to the extent that the General Data Protection Regulation (GDPR) is applicable is applicable in accordance with at least one of the following legal bases:
- Art. 6 para. 1 lit. b DSGVO for the necessary processing of personal data to fulfill a contract with the data subject. as well as for the implementation of pre-contractual measures.
- Art. 6 para. 1 lit. f DSGVO for the necessary processing of personal data in order to protect the legitimate interests of us or of third parties or third parties, unless the fundamental freedoms and rights as well as the Interests of the data subject prevail. Legitimate interests are, in particular, our interest in ensuring that our activities and operations are to be able to carry out our activities and operations in a sustainable, user-friendly, secure and reliable manner, as well as and to communicate about them, the guarantee of information security, the protection against misuse, the enforcement of our own legal legal claims and compliance with Swiss law. law.
- Art. 6 para. 1 lit. c DSGVO for the necessary processing of personal data in order to comply with a legal obligation to which we are subject applicable law of member states in the European Economic Area (EEA). Economic Area (EEA).
- Art. 6 para. 1 lit. e DSGVO for the necessary processing of personal data to perform a task that is in the public interest. interest.
- Art. 6 para. 1 lit. a DSGVO for the processing of personal data. with the consent of the data subject.
- Art. 6 para. 1 lit. d DSGVO for the necessary processing of personal data in order to protect the vital interests of the data subject or another natural of another natural person.
3. nature, scope and purpose of data processing
We process personal data that is necessary to provide our activities and services in a continuous, user-friendly securely and reliably. This personal data may include, in particular, inventory and contact data, browser and Device Data, Content Data, Meta or Boundary Data, Usage Data, Location Data, Sales Data, and Contract and Payment Data.
Duration of data processing
The processing of personal data is carried out for the period, that is required for the respective purpose or purposes or by law. required. Personal data whose processing is no longer is no longer required, will be anonymized or deleted.
Processing of data by third parties
We may outsource the processing of personal data to third parties or outsource or carry out jointly with third parties. These third parties are specialized service providers whose services we use. make use of their services. We also ensure data protection for these third parties. data protection.
Legal basis for data processing
We process personal data only with the consent of the data subject's consent, unless the processing is permitted for other legal grounds. Processing without consent may for example, for the performance of a contract with the data subject and for corresponding pre-contractual measures, to safeguard our overriding legitimate interests, because the processing is apparent from the circumstances or after prior information is permissible. be permissible.
Special data processing situations
In particular, we process data that a data subject provides to us when contacting us - e.g. by letter post, e-mail, instant messaging, contact form, social media, or telephone - or when registration for a user account. Such Information we may, for example, store in an address book, in a customer relationship management system (CRM system) or with comparable tools. store comparable tools. If we receive data about other persons persons are obliged to ensure data protection with respect to these persons and to data protection with respect to these persons and to ensure the Ensure the accuracy of this personal data. We also process personal data that we receive from third parties, from publicly available sources, or collected in the course of our activities, if and insofar as such processing is permitted by law. is permitted for legal reasons.
4. processing of applicant data
We process personal data of applicants when it is necessary for the assessment of their qualifications for employment or for the subsequent subsequent execution of an employment contract. The required personal data mainly results from the information that we request, for example in the context of a job advertisement. In addition, we process the personal data that applicants voluntarily provide or publish, in particular as part of letters of application, resumes and other application application documents as well as online profiles.
General Data Protection Regulation (DSGVO)
Insofar as the General Data Protection Regulation (DSGVO) is applicable, we process personal data of applicants in particular in accordance with Article 9(2)(b) DSGVO.
5. personal data processing abroad
We generally process personal data in Switzerland and in the European Economic Area (EEA). However, it is also possible that we export or transfer personal data to other countries, in particular for processing or handling there.
Export of personal data
We are authorized to export personal data to all countries and territories worldwide as well as to other areas of the universe, provided that the data protection in these countries is in accordance with the decisions of the Swiss Federal Council and - if the Basic Data Protection Regulation (GDPR) is applicable - the European Commission is adequately ensured.
Transfer of personal data to countries without adequate data protection
We may also transfer personal data to countries in which no data protection is not ensured, provided that data protection is ensured for other is ensured for other reasons. This may be done, for example, on the standard data protection clauses or other suitable guarantees. guarantees. In exceptional cases, we may also export personal data to countries without adequate or appropriate data protection, if the special requirements under data protection law are met, such as for example, the express consent of the data subjects, or a direct connection with the conclusion or execution of a contract. contract.
Information about guarantees
Upon request, we will be happy to inform the data subjects about possible guarantees or provide a copy of these guarantees.
6. rights of data subjects
6.1 Data protection law claims
We grant the data subjects all the rights to which they are entitled under applicable data protection law. In particular, data subjects have persons have the following rights:
- Information: Data subjects can request, whether we process personal data about them and, if so, which personal data this is. They will also receive the information they need to enforce their data protection rights and to ensure Ensure transparency. This includes the processed personal data itself, but also information about the purpose of of processing, the duration of storage, possible transfer or export of data to other countries, and the origin of the personal data.
- Correction and restriction: data subjects Individuals may correct inaccurate personal data, complete incomplete data and restrict the processing of their data. restrict the processing of their data.
- Deletion and objection: Data subjects may request the erasure of their personal data (right to be right to be forgotten) and object to the future processing of their data. object.
- Data output and data transmission: Data subject individuals may request the release of their personal data or the transfer of their data to another data controller.
We may suspend or refuse the exercise of the rights of data subjects to the extent Defer, restrict or refuse the exercise of data subjects' rights to the extent permitted by law. We may inform data subjects of possible requirements for the Exercise of their data protection rights. We can, for example information with reference to business secrets or the protection of other persons. persons in whole or in part. We can also request the deletion deletion of personal data in whole or in part with reference to retention obligations in whole or in part. We may exceptionally provide for costs for the exercise of rights. We inform data subjects in advance about possible costs. We are obligated to provide data subjects who request information or assert other other rights, we are obliged to take appropriate measures to identify them. identify them. Data subjects are obliged to cooperate.
6.2 Right to complain
Data subjects have the right to enforce their data protection rights enforce their data protection rights in court or to lodge a complaint with a competent data protection supervisory authority. The data protection supervisory authority for private data controllers and federal bodies in Switzerland is the Swiss Federal Data Protection and Data Protection and Information Commissioner (FDPIC). Data subjects have - if and insofar as the General Data Protection Regulation (GDPR) is applicable - have the right to lodge a complaint with a competent European data protection supervisory authority.
7. data security
We take appropriate technical and organizational measures, to ensure a level of data security that is appropriate to the the respective risk. However, we cannot guarantee absolute data security. guarantee. Access to our website takes place by means of transport encryption (SSL / TLS, in particular with the Hypertext Transfer Protocol Secure, abbreviated HTTPS). Most browsers indicate the transport encryption with a padlock in the address bar. in the address bar. Our digital communication is subject to mass all digital communication - is subject to mass surveillance without and suspicion as well as other surveillance by security by security authorities in Switzerland, in the rest of Europe, in the United States of America (USA) and in other countries. We have no direct influence on the corresponding processing of personal data by intelligence services, police forces and other security security authorities.
8. use of the website
8.1 Cookies
We may use cookies. For cookies own cookies (first-party cookies) and cookies from third parties whose services we use (third-party cookies). (third-party cookies) are data that are stored in the browser. stored in the browser. Such stored data need not be limited to be limited to traditional cookies in text form. Cookies can be stored in the be stored in the browser temporarily as "session cookies" or for a specific period of time as so-called permanent cookies. "Session cookies" are automatically deleted when the browser is closed. is closed. Permanent cookies have a specific storage period. Cookies enable us in particular to recognize a browser the next time you visit our website and thus, for example, to measure the reach of our website. to measure the reach of our website. However, permanent cookies can also be used for online marketing, for example. Cookies can be completely or partially deactivated or deleted at any time in the or partially deactivated and deleted at any time. Without cookies, our website may may no longer be fully available. We actively request, at least if and to the extent necessary for your express consent to the use of cookies.
8.2 Server log files
For each access to our website we can collect the following data if they are transmitted by your browser to our server infrastructure or if they can be or can be determined by our web server: Date and time including time zone, Internet Protocol (IP) address, access status (HTTP status code), operating system including user interface and version, browser including language and version browser including language and version, individual sub-page of our website accessed including the amount of data transferred, the last page viewed in the browser window (referer or referrer). We store such information, which may also constitute personal data, in server log files. This information is necessary to make our website website permanently, user-friendly and reliably, as well as to ensure data data security and thus in particular the protection of personal data. also by third parties or with the help of third parties.
8.3 Tracking pixel
We may use tracking pixels on our website. Tracking pixels are also referred to as web beacons. Tracking pixels, also from third third parties whose services we use are small, usually invisible images, usually invisible images that are automatically retrieved when you visit our website. automatically when you visit our website. Counting pixels can be used to collect the same information as in server log files.
8.4 Comments
We allow you to post comments on our website. publish. In this context, we process in particular those information that a commenting person transmits to us him/herself, but also the the Internet Protocol (IP) address used, as well as date and time. time. This information is required to enable the publication of comments and to be able to ensure protection against misuse, which is from misuse, which is in our overriding legitimate interest. interest.
9. notifications and messages
We send notifications and communications by email and and other communication channels, such as instant messaging and or SMS.
9.1 Success and reach measurement
Notifications and communications may contain web links or tracking pixels that record whether an individual notification has been opened and which which web links were clicked. Such web links and tracking pixels can also record the use of notifications and messages on a personal data. We need this statistical recording usage for performance and reach measurement, in order to Deliver notifications and communications based on the needs and and reading habits of the recipients in an effective and user-friendly manner. and user-friendly as well as durable, secure and reliable. be able to.
9.2 Consent and objection
In principle, you must expressly consent to the use of your e-mail address and other contact addresses, unless the use is permitted for other legal reasons, the use is permitted for other legal reasons. For a consent, we use the "double opt-in" procedure wherever possible. opt-in" procedure, i.e. you will receive an e-mail with a web link that you link, which you must click to confirm, so that no misuse can be misuse by unauthorized third parties. We may use such including the Internet Protocol (IP) address and the date and time for date and time for evidence and security reasons. You can generally opt out of receiving notifications and communications such as newsletters at any time. With such an such an objection, you can at the same time object to the statistical collection use for performance and reach measurement. This is without prejudice to necessary notifications and communications in connection with our activities and operations.
9.3 Service provider for notifications and messages
We send notifications and messages with the help of specialized service providers. In particular, we use: MailPoet: Email marketing software ("Better Email for WordPress-Powered Websites"); Provider: WooCommerce Ireland Ltd (Ireland) for users in Australia, all European countries, Japan, Canada, Mexico, New Zealand and Russia, partly in cooperation with Automattic Inc. (USA) and WooCommerce Inc. (USA) / WooCommerce Inc. (USA) for users in other states and territories on Earth as well as elsewhere in the universe, partly jointly with Automattic Inc. (USA); Privacy information: Privacy Policy.
10. social media
Our presence on social media and other online platforms enables us to interact with interested parties and provide information about our activities and services. our activities and services. It should be note that personal data in this context may also be disclosed outside processed outside of Switzerland and the European Economic Area (EEA). may be processed. The General Terms and Conditions (GTC), terms of use, data protection declarations and other provisions of the respective platform operators are also applicable. These provisions inform you in particular about your rights including the right to information, which you can assert directly against the respective platform.
11. services from third parties
In order to carry out our activities and operations in an efficient, user-friendly, activities and operations in an efficient, user-friendly, secure and reliable manner. specialized services from third-party providers. These services enable us, among other things, to embed functions and content into our website. embed. In the case of such embedding, the services used record the services used record the Internet Protocol (IP) addresses of the users at least temporarily Internet Protocol (IP) addresses of the users. Third parties whose services we services, may collect data in connection with our activities and operations for necessary activities for necessary security-related, statistical and technical purposes. technical purposes in aggregated, anonymized or pseudonymized form. process. This includes, for example, performance or Usage data in order to be able to provide the respective service. In particular, we use services provided by Google. The providers are Google LLC (USA) / Google Ireland Limited (Ireland) for users in the European Economic Economic Area (EEA) and in Switzerland. General information on data protection can be found in the data protection and security principles Privacy and Security Policy, the Privacy Statement, the Privacy Google products, and the information about how we use data from websites or apps on or in which our services are used (Google's disclosures), and the (Google Disclosures), as well as the types of cookies and other technologies used by Google. Cookie types and other technologies and Personalized advertising. (Activation / Deactivation / Settings).
11.1 Digital infrastructure
We use services from specialized third parties to provide required digital infrastructure in connection with our activities and operations. activities and operations. These include, for example Hosting and storage services from selected providers. In particular, we use Cyon for hosting. The provider is Cyon GmbH (Switzerland). Information on data protection can be found in the Privacy Information and the Privacy Policy.
11.2 Contact options
We use services from selected providers in order to better communicate with third parties such as potential and existing customers. customers.
11.3 Audio and video conferencing
We use specialized services for audio and video conferencing, in order to be able to communicate online. With these services we can virtual meetings or offer online lessons and webinars. and webinars. For participation in audio and video conferences, the legal texts of the individual services, such as privacy Services, such as privacy statements and terms of use. We recommend, depending on the situation, to mute the microphone by default and to mute and blur the background or use a virtual background, depending on the situation. background. In particular, we use Zoom for video conferencing. The provider is Zoom Video Communications Inc. (USA). Information on data protection can be found in the Privacy Policy, Privacy at Zoom and the Legal Compliance Center.
11.4 Digital audio and video content
We use services from specialized third parties to enable direct play digital audio and video content such as music or podcasts. Music or podcasts. In particular, we use Podigee for Podcast hosting. The provider is Podigee GmbH (Germany). Information on data protection can be found in the privacy policy. We use Vimeo as a video platform. The provider is Vimeo Inc. (USA). Information on data protection can be found in the Privacy Policy and under Privacy. We use YouTube as a video platform. The provider is Google. Specific information on YouTube can be found in the Privacy and Security Center and under My data on YouTube.
12. extensions for the website
In order to use additional features on our website, we use various extensions. Of particular note is: Antispam Bee: This extension provides privacy-friendly, efficient and reliable spam protection. It distinguishes between desirable comments from humans and undesirable comments from bots as well as spam. It was developed by the Pluginkollektiv, which operates in Germany as well as in the rest of Europe. Regarding the privacy it should be noted that it is used on our own server infrastructure and does not use cookies. For more information can be found in the documentation of the plugin collective and on GitHub.
13. final provisions
This privacy policy was created with the data protection generator of Privacy Partner. We reserve the right to change and amend this Privacy Policy at any time. About such and supplements in an appropriate manner, in particular by publishing the in an appropriate manner, in particular by publishing the current current data protection declaration on our website.