Privacy policy

With this data protection declaration we inform you which personal data we process in connection with our xdate portal and our other online offerings, how, where and for what purpose. With this data protection declaration we also inform you about the rights of people whose data we process.

For individual or additional offers and services, special, supplementary or additional data protection declarations as well as other legal documents such as General Terms and Conditions (GTC), terms of use or conditions of participation may be required apply.

Our online offering is subject to Swiss data protection law and any applicable foreign data protection law, in particular that of the European Union (EU) with the General Data Protection Regulation (GDPR). The European Commission recognizes that the Swiss Data protection law ensures adequate data protection.

1. Contact addresses

Responsibility for the online offer:

Online Marketing Solutions AG
Hauptstrasse 77
6260 Reiden
Switzerland

[email protected]

Data protection representation in the European Economic Area (EEA)

We have the following data protection representation in accordance with Art. 27 GDPR in the European Economic Area (EEA), including the European Union (EU) and the Principality of Liechtenstein, Iceland and Norway, as an additional contact point for supervisory authorities and those affected Persons for inquiries related to the General Data Protection Regulation (GDPR):

VGS Data Protection Partner UG
Am Kaiserkai 69
20457 Hamburg
Germany

[email protected]

2. Processing of personal data

2.1 Terms

Personal data is all information that relates to a specific or identifiable person. A data subject is a person about whom personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used, in particular the storage, disclosure, procurement, collection, deletion, storage, Changing, destroying and using personal data.

The European Economic Area (EEA) includes the European Union (EU) as well as the Principality of Liechtenstein, Iceland and Norway. The General Data Protection Regulation (GDPR) describes the processing of personal data as processing of personal data.

2.2 Legal basis

We process personal data in accordance with Swiss data protection law, in particular the Federal Act on Data Protection (FADP) and the Ordinance to the Federal Act on Data Protection (DPO).

We process personal data - if and to the extent that the General Data Protection Regulation (GDPR) is applicable - in accordance with at least one of the following legal bases:

Art. 6 Para. 1 lit. b GDPR for the necessary processing of personal data to fulfill a contract with the data subject and to carry out pre-contractual measures.
Art. 6 Para. 1 lit. f GDPR for the necessary processing of personal data in order to protect the legitimate interests of us or third parties, unless the fundamental freedoms and fundamental rights as well as the interests of the data subject outweigh this. Legitimate interests include, in particular, our interest in providing our online offering in a permanent, user-friendly, secure and reliable manner and in being able to advertise it when necessary, information security and protection against misuse and unauthorized use, the enforcement of our own legal claims and compliance with Swiss law .
Art. 6 Para. 1 lit. c GDPR for the necessary processing of personal data to fulfill a legal obligation to which we are subject under any applicable law of member states in the European Economic Area (EEA).
Art. 6 Para. 1 lit. e GDPR for the necessary processing of personal data to carry out a task that is in the public interest.
Art. 6 Para. 1 lit. a GDPR for the processing of personal data with the consent of the data subject.
Art. 6 Para. 1 lit. d GDPR for the necessary processing of personal data in order to protect the vital interests of the data subject or another natural person.

2.3 Type, scope and purpose

We process the personal data that is necessary in order to be able to provide our online offering on a permanent, user-friendly, secure and reliable basis. Such personal data may fall into the categories of inventory and contact data, browser and device data, content data, meta or edge data and usage data, location data, sales, contract and payment data.

We process personal data for the duration that is necessary for the respective purpose(s) or by law. Personal data that no longer needs to be processed will be anonymized or deleted. Persons whose data we process in principle have a right to deletion.

We process personal data as a general rule only with the consent of the data subject, unless the processing is permitted for other legal reasons, for example to fulfill a contract with the data subject and for corresponding pre-contractual measures to protect our overriding legitimate interests because the processing is obvious from the circumstances or after prior information.

In this context, we particularly process information that a data subject provides voluntarily and independently when contacting us - for example by post, email, contact form, social media or telephone - or when registering for a user account > transmitted to us. We may store such information, for example, in an address book, in a customer relationship management system (CRM system) or using comparable tools. If you transmit personal data about third parties to us, you are obliged to ensure data protection towards such third parties and to ensure the accuracy of such personal data.

We also process personal data that we receive from third parties, obtain from publicly accessible sources or collect when providing our online offering, if and to the extent that such processing is permitted for legal reasons.

2.4 Processing of personal data by third parties, including abroad

We may have personal data processed by commissioned third parties or processed jointly with third parties or with the help of third parties or transmitted to third parties. Such third parties are, in particular, providers whose services we use. We also guarantee appropriate data protection for such third parties.

Such third parties are basically located in Switzerland and the European Economic Area (EEA). However, such third parties can also be located in other states and territories on earth and elsewhere in the universe, provided that their data protection laws comply with Assessment of the Federal Data Protection and Information Commissioner (FDPIC) and - if and to the extent that the General Data Protection Regulation (GDPR) is applicable - according to Assessment of the European Commission - adequate data protection is guaranteed, or if adequate data protection is guaranteed for other reasons, such as through an appropriate contractual agreement, in particular based on standard contractual clauses, or through appropriate certification. For third parties in the United States of America (USA), certification according to the Privacy Shield can ensure adequate data protection. As an exception, such a third party may be located in a country without adequate data protection, provided that the data protection requirements are met, such as the express consent of the data subject.

3. Rights of data subjects

Affected persons whose personal data we process have the rights under Swiss data protection law. This includes the right to information and the right to correct, delete or block the processed personal data.

Affected persons whose personal data we process can - if and to the extent that the General Data Protection Regulation (GDPR) is applicable - obtain confirmation free of charge as to whether we are processing their personal data and, if so, request information about the processing of their personal data have their personal data restricted, exercise their right to data portability and have their personal data corrected, deleted (“right to be forgotten”), blocked or completed.

Affected persons whose personal data we process can - if and to the extent that the GDPR is applicable - revoke their consent at any time with future effect and object to the processing of their personal data at any time.

Affected persons whose personal data we process have the right to lodge a complaint with a responsible supervisory authority. The supervisory authority for data protection in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC).

4. Data security

We take appropriate and appropriate technical and organizational measures to ensure data protection and in particular data security. However, despite such measures, the processing of personal data on the Internet can always have security gaps. We therefore cannot guarantee absolute data security.

Access to our online offering is carried out using transport encryption (SSL / TLS, in particular with the Hypertext Transfer Protocol Secure, abbreviated HTTPS). Most browsers mark transport encryption with a padlock in the address bar.

Access to our online offering is subject - like basically all internet use - to mass surveillance without cause and without suspicion, as well as other surveillance by security authorities in Switzerland, in the European Union (EU), in the United States of America (USA) and other states. We cannot have any direct influence on the appropriate processing of personal data by secret services, police departments and other security authorities.

5. Use of the website

5.1 Cookies

We may use cookies for our website. Cookies - our own cookies (first-party cookies) and cookies from third parties whose services we use (third-party cookies or third-party cookies) - are data in text form that are stored in your browser . Cookies cannot run programs or transmit malware such as Trojans and viruses.

Cookies can be stored in your browser temporarily as “session cookies” or for a certain period of time as so-called permanent cookies when you visit our website. “Session cookies” are automatically deleted when you close your browser. Permanent cookies make it possible, in particular, to recognize your browser the next time you visit our website and thereby, for example, measure the reach of our website. Permanent cookies can also be used for online marketing, for example.

You can completely or partially deactivate and delete cookies in your browser settings at any time. Without cookies, our online offering may no longer be fully available. If and to the extent necessary, we actively ask for your express consent to the use of cookies.

For cookies that are used to measure success and reach or for advertising, a general objection (“opt-out”) is required for numerous services via the Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance) or Your Online Choices (European Interactive Digital Advertising Alliance, EDAA).

5.2 Server log files

We may collect the following information for each access to our website, provided that it is transmitted by your browser to our server infrastructure or can be determined by our web server: date and time including time zone, Internet Protocol (IP) address, access status (HTTP status code), operating system including user interface and version, browser including language and version, individual sub-page of our website accessed including amount of data transferred, last website accessed in the same browser window (referer or referrer).

We store such information, which can also represent personal data, in server log files. The information is necessary in order to provide our online offering on a permanent, user-friendly and reliable basis and to ensure data security and therefore in particular the protection of personal data - including by third parties or with the help of third parties.

5.3 tracking pixels

We may use web beacons on our website. Web beacons are also known as web beacons. Web beacons - including those from third parties whose services we use - are small, usually invisible images that are automatically retrieved when you visit our website. Web beacons can be used to collect the same information as server log files.

We send notifications and communications such as newsletters via email and other communication channels such as instant messaging.

Notifications and messages may contain web links or web beacons that record whether an individual message was opened and which web links were clicked. Such web links and web beacons can also record the use of notifications and messages on a personal basis. We need this statistical recording of usage to measure success and reach in order to be able to offer notifications and messages based on the needs and reading habits of the recipients effectively and user-friendly as well as permanently, securely and reliably.

You must in principle expressly consent to the use of your email address and your other contact addresses, unless the use is permitted for other legal reasons. If possible, we use the “double opt-in” procedure to give you consent to receive emails, which means you will receive an email with a web link that you must click on to confirm so that there is no misuse by unauthorized third parties can be done. We may log such consent, including the Internet Protocol (IP) address and date and time, for evidentiary and security reasons.

You can basically unsubscribe from notifications and communications such as newsletters at any time. Notifications and communications that are absolutely necessary for our online offering remain reserved. By unsubscribing you can, in particular, object to the statistical recording of usage for success and reach measurement.

We send notifications and communications through third-party services or with the help of service providers. Cookies can also be used. We also guarantee appropriate data protection for such services.

7. Third Party Services

We use services from third parties in order to be able to provide our online offering in a permanent, user-friendly, secure and reliable manner. Such services also serve to embed content into our online offering. Such services - such as hosting and storage services, video services and payment services - require your Internet Protocol (IP) address, otherwise such services cannot transmit the corresponding content. Such services may be located outside Switzerland and the European Economic Area (EEA), provided that adequate data protection is guaranteed.

For their own security-related, statistical and technical purposes, third parties whose services we use may also process data in connection with our online offering and from other sources - including cookies, log files and tracking pixels - in an aggregated, anonymized or pseudonymized manner.

7.1 Fonts

We use Google Fonts to be able to embed selected fonts into our website. No cookies are used. It is a service from the American Google LLC that is offered independently of other Google services. For users in the European Economic Area (EEA) and Switzerland, the Irish Google Ireland Limited is responsible. Further information about the type, scope and purpose of data processing can be found in the principles for data protection and security and in Google's privacy policy.

7.2 Payments

We use payment service providers to process our customers' payments securely and reliably. We only use payment service providers that guarantee adequate data protection. The conditions of the relevant payment service providers apply to processing, such as general terms and conditions (GTC) or data protection declarations.

7.3 Success and reach measurement

Google Analytics

We use Google Analytics to analyze how our website is used; for example, we can also measure the reach of our website and the success of third-party links to our website. It is a service from the American Google LLC. For users in the European Economic Area (EEA) and Switzerland, the Irish Google Ireland Limited is responsible.

Google also tries to record individual visitors to our website if they use different browsers or devices (Cross-Device Tracking). Cookies are also used. Your Internet Protocol (IP) address is required for Google Analytics, but it is not combined with other data from Google.

In any case, we will have your Internet Protocol (IP) address anonymized before analysis by Google. As a result, your full IP address will basically not be transmitted to Google in the USA.

Further information about the type, scope and purpose of data processing can be found in the Principles for data protection and security and in the data protection declaration each from Google, in the Guide to data protection in Google products (including Google Analytics), in the Information on how Google uses data from websites on which Google services are used and in the Information about cookies at Google. It is also possible to use the «Browser add-on to deactivate Google Analytics» and to object to personalized advertising.

8. Final provisions

We can adapt and supplement this data protection declaration at any time. We will inform you about such adjustments and additions in an appropriate form, in particular by publishing the current data protection declaration on our website.