Privacy Policy

With this Privacy Policy we inform you about what personal data we collect in connection with our Activities and tasks including our leutenegger.com-Website process. In particular, we provide information about why, how, and where we process which personal data. We also provide information about the rights of individuals whose data we process.

Additional privacy statements and other legal documents such as general terms and conditions (GTC), terms of use, or conditions of participation may apply to individual or additional activities and tasks.

We are subject to Swiss data protection law and any applicable foreign data protection law, in particular that of the European Union (EU) with the General Data Protection Regulation (GDPR). The European Commission acknowledgesthat Swiss data protection law ensures adequate data protection.

1. Contact addresses

Responsibility for processing personal data:

Leutenegger + Frei AG
Stefan Matti
St. Margrethenstrasse 35
9204 Andwil SG
info@leutenegger.com

We will indicate if there are other parties responsible for processing personal data in individual cases.

2. Terms and legal basis

2.1 Begriffe

personal data are alle Information relating to an identified or identifiable natural person. A data subject is a person about whom we process personal data.

Edit includes everyone Handling of personal data, independently the means and procedures used, for example, querying, comparing, adapting, archiving, storing, reading, disclosing, procuring, recording, collecting, deleting, disclosing, arranging, organizing, saving, changing, distributing, linking, destroying, and using personal data.

The European Economic Area (EEA) includes the Member States of the European Union (EU) as well as the Principality of Liechtenstein, Iceland, and Norway. The General Data Protection Regulation (GDPR) defines the handling of personal data as the processing of personal data.

2.2 Legal basis

We process personal data in accordance with Swiss data protection law, in particular the Federal Act on Data Protection (Data Protection Act, DSG) and the Regulation on data protection (Data Protection Regulation, DSV).

We process personal data in accordance with the General Data Protection Regulation (GDPR), where and to the extent that it applies. at least one of the following legal bases:

  • Art. 6 Abs. 1 lit. b DSGVO for the necessary processing of personal data to fulfill a contract with the data subject and to implement pre-contractual measures.
  • Art. 6 Abs. 1 lit. f DSGVO for the necessary processing of personal data to safeguard our legitimate interests or those of third parties, unless the fundamental freedoms and rights and interests of the data subject prevail. Legitimate interests include, in particular, our interest in being able to carry out our activities and operations in a permanent, user-friendly, secure, and reliable manner and to communicate about them, ensuring information security, protecting against misuse, enforcing our own legal claims, and complying with Swiss law.
  • Art. 6 Abs. 1 lit. c DSGVO for the necessary processing of personal data to fulfill a legal obligation to which we are subject under any applicable law of Member States in the European Economic Area (EEA).
  • Art. 6 Abs. 1 lit. e DSGVO for the necessary processing of personal data for the performance of a task carried out in the public interest.
  • Art. 6 Abs. 1 lit. a DSGVO for the processing of personal data with the consent of the data subject.
  • Art. 6 Abs. 1 lit. d DSGVO for the necessary processing of personal data to protect the vital interests of the data subject or another natural person.

3. Type, scope, and purpose

We process personal data that necessary in order to be able to carry out our activities and operations in a sustainable, user-friendly, secure, and reliable manner. Such personal data may fall into the categories of inventory and contact data, browser and device data, content data, meta or marginal data and usage data, location data, sales data, and contract and payment data.

We process personal data during those durationthat is necessary for the respective purpose or purposes or required by law. Personal data that no longer needs to be processed is anonymized or deleted.

We may collect personal data by third parties We may process personal data together with third parties or transfer it to third parties. Such third parties are, in particular, specialized providers whose services we use. We also guarantee data protection with such third parties.

We only process personal data with the consent of the data subject, unless processing is permitted for other legal reasons. Processing without consent may be permissible, for example, to fulfill a contract with the data subject and for corresponding pre-contractual measures, to protect our overriding legitimate interests, because processing is apparent from the circumstances, or after prior notification. Personal data is also processed for marketing and advertising purposes. This includes, in particular, personal data such as first name, last name, and email address. You can unsubscribe from the newsletter at any time using the unsubscribe link at the end of the newsletter.

In this context, we process in particular information that a data subject provides when contacting us—for example, by letter, email, instant messaging, contact form, social media, or telephone—or when registering for a user account. voluntarily transmitted to us. We may store such information in an address book, a customer relationship management system (CRM system), or similar tools. If we receive data about other persons, the persons transmitting the data are obligated to ensure data protection for these persons and to ensure the accuracy of this personal data.

We also process personal data that we receive from third parties, obtain from publicly available sources, or collect in the course of our activities and operations, provided that such processing is permitted for legal reasons.

4. Applications

We process personal data about applicants to the extent that it is necessary for assessing their suitability for employment or for the subsequent execution of an employment contract. The personal data required is derived in particular from the information requested, for example in the context of a job advertisement. We also process personal data that applicants provide to us. voluntarily communicate or publish, in particular as part of cover letters, resumes, and other application documents, as well as online profiles.

We process personal data relating to applicants, in particular in accordance with the following, to the extent that the General Data Protection Regulation (GDPR) applies: Art. 9 Abs. 2 lit. b DSGVO.

5. Personal data abroad

We process personal data fundamentally in Switzerland and the European Economic Area (EEA). However, we may also export or transfer personal data to other countries, in particular for processing or to have it processed there.

We may transfer personal data to all We may transfer personal data to all countries and territories on Earth. as well as elsewhere in the universe export, provided that the law there, in accordance with Decision of the Swiss Federal Council adequate data protection and, if and to the extent that the General Data Protection Regulation (GDPR) applies, in accordance with Decision of the European Commission ensures adequate data protection.

We may transfer personal data to countries whose laws do not guarantee adequate data protection, provided that data protection is guaranteed for other reasons, in particular on the basis of standard data protection clauses or other appropriate safeguards. In exceptional cases, we may export personal data to countries without adequate or appropriate data protection if the specific data protection requirements are met, for example, the express consent of the data subjects or a direct connection with the conclusion or execution of a contract. Upon request, we will gladly provide data subjects with information about any guarantees or provide a copy of any guarantees.

6. Rights of data subjects

6.1 Data protection claims

We grant data subjects all rights in accordance with applicable data protection law. Data subjects have the following rights in particular:

  • Information: Data subjects may request information as to whether we process personal data about them and, if so, what personal data is involved. Data subjects will also receive the information necessary to assert their data protection rights and ensure transparency. This includes the personal data processed as such, but also information on the purpose of processing, the duration of storage, any disclosure or export of data to other countries, and the origin of the personal data.
  • Correction and restriction: Data subjects may correct inaccurate personal data, complete incomplete data, and restrict the processing of their data.
  • Deletion and objection: Data subjects may have personal data deleted (“right to be forgotten”) and object to the processing of their data with future effect.
  • Data disclosure and data transfer: Data subjects may request the disclosure of personal data or the transfer of their data to another controller.

We may postpone, restrict, or refuse the exercise of data subjects' rights within the legally permissible scope. We may inform data subjects of any conditions that must be met in order to exercise their data protection rights. For example, we may refuse to provide information in whole or in part on the grounds of business secrets or the protection of other persons. We may also refuse to delete personal data in whole or in part on the grounds of statutory retention obligations.

We can exercise the rights exceptionally We will inform affected persons in advance of any costs that may be incurred.

We are obliged to take appropriate measures to identify data subjects who request information or assert other rights. Data subjects are obliged to cooperate.

6.2 Right to lodge a complaint

Affected persons have the right to enforce their data protection claims through legal action or to lodge a complaint with a competent data protection supervisory authority.

The data protection supervisory authority for private controllers and federal bodies in Switzerland is the Federal Data Protection and Information Commissioner (EDÖB).

Data subjects have the right to lodge a complaint with a competent supervisory authority, provided that and to the extent that the General Data Protection Regulation (DSGVO) applies. europäischen Datenschutz-Aufsichtsbehörde zu erheben.

7. Data security

We take appropriate technical and organizational measures to ensure data security commensurate with the respective risk. However, we cannot guarantee absolute data security.

Access to our website is secured by transport encryption (SSL/TLS, in particular with Hypertext Transfer Protocol Secure, abbreviated HTTPS). Most browsers indicate transport encryption with a padlock symbol in the address bar.

Unsere digitale Kommunikation unterliegt – wie fundamentally any digital communication – mass surveillance without cause or suspicion, as well as other surveillance by security authorities in Switzerland, the rest of Europe, the United States of America (USA), and other countries. We cannot directly influence the processing of personal data by secret services, police agencies, and other security authorities.

8. Use of the website

8.1 Cookies

We may use cookies. Cookies—both our own cookies (first-party cookies) and cookies from third parties whose services we use (third-party cookies)—are data that is stored in the browser. Such stored data is not necessarily limited to traditional cookies in text form.

Cookies können im Browser temporär als «Session Cookies» oder für einen bestimmten Zeitraum als sogenannte permanente Cookies gespeichert werden. «Session Cookies» werden automatisch gelöscht, wenn der Browser geschlossen wird. Permanente Cookies haben eine bestimmte Speicherdauer. Cookies ermöglichen insbesondere, einen Browser beim nächsten Besuch unserer Website wiederzuerkennen und dadurch beispielsweise die Reichweite unserer Website zu messen. Permanente Cookies können aber beispielsweise auch für Online-Marketing verwendet werden.

Cookies können in den Browser-Einstellungen jederzeit ganz oder teilweise deaktiviert sowie gelöscht werden. Ohne Cookies steht unsere Website allenfalls nicht mehr in vollem Umfang zur Verfügung. Wir ersuchen – mindestens sofern und soweit erforderlich – aktiv um die ausdrückliche Einwilligung in die Verwendung von Cookies.

For cookies used to measure success and reach or for advertising, a general objection (“opt-out”) is possible for numerous services via the AdChoices (Digital Advertising Alliance of Canada), which Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance) or Your Online Choices possible

8.2 Server log files

We may collect the following information for each visit to our website, provided that it is transmitted by your browser to our server infrastructure or can be determined by our web server: Date and time including time zone, Internet Protocol (IP) address, access status (HTTP status code), operating system including user interface and version, browser including language and version, individual subpages of our website accessed including amount of data transferred, last website accessed in the same browser window (referrer).

We store such information, which may also constitute personal data, in server log files. This information is necessary in order to provide our website in a permanent, user-friendly, and reliable manner, as well as to ensure data security and, in particular, the protection of personal data—including by third parties or with the help of third parties.

8.3 Tracking pixels

We may use tracking pixels on our website. Tracking pixels are also known as web beacons. Tracking pixels—including those from third parties whose services we use—are small, usually invisible images that are automatically retrieved when you visit our website. Tracking pixels can be used to collect the same information as server log files.

9. Social Media

We are present on social media platforms and other online platforms in order to communicate with interested parties and provide information about our activities and operations. In connection with such platforms, personal data may also be processed outside Switzerland and the European Economic Area (EEA).

The general terms and conditions (GTC) and terms of use, as well as privacy policies and other provisions of the individual operators of such platforms, also apply. These provisions provide information in particular about the rights of data subjects directly vis-à-vis the respective platform, including, for example, the right to information.

For our Social media presence on Facebook including so-called page insights, we are jointly responsible with Meta Platforms Ireland Limited (Ireland) insofar as the General Data Protection Regulation (GDPR) applies. Meta Platforms Ireland Limited is part of meta-company (including in the USA). Page Insights provide information about how visitors interact with our Facebook presence. We use Page Insights to ensure that our social media presence on Facebook is effective and user-friendly.

Further information about the type, scope, and purpose of data processing, information about the rights of data subjects, and the contact details of Facebook and Facebook's data protection officer can be found in the Facebook Privacy PolicyWe have established a so-called “Additional information for responsible persons” concluded and thus agreed in particular that Facebook is responsible for ensuring the rights of affected persons. For the so-called Page Insights, the relevant information can be found on the page Information about page insights including our Information about page insights data.

10. Third-party services

We use services provided by specialized third parties to ensure that our activities and operations are sustainable, user-friendly, secure, and reliable. These services enable us to embed functions and content into our website, among other things. When embedding such content, the services used collect the Internet Protocol (IP) addresses of users, at least temporarily, for technical reasons.

For necessary security-related, statistical, and technical purposes, third parties whose services we use may process data related to our activities and operations in an aggregated, anonymized, or pseudonymized form. This includes, for example, performance or usage data, in order to be able to offer the respective service.

We use in particular:

10.1 Digital infrastructure

We use the services of specialized third parties in order to be able to utilize the digital infrastructure required in connection with our activities and operations. These include, for example, hosting and storage services from selected providers.

10.2 Audio and video conferences

We use specialized services for audio and video conferencing to communicate online. This allows us to hold virtual meetings or conduct online classes and webinars, for example. Participation in audio and video conferences is also subject to the legal texts of the individual services, such as privacy policies and terms of use.

Depending on your living situation, we recommend muting your microphone by default when participating in audio or video conferences, as well as blurring the background or displaying a virtual background.

10.3 Social media features and social media content

We use third-party services and plugins to embed functions and content from social media platforms and to enable content to be shared on social media platforms and in other ways.

We use in particular:

10.4 Map material

We use third-party services to embed maps on our website.

We use in particular:

10.5 Digital audio and video content

We use services from specialized third parties to enable the direct playback of digital audio and video content such as music or podcasts.

We use in particular:

10.6 Documents

We use third-party services to embed documents in our website. Such documents may include forms, PDF files, presentations, tables, and text documents. This allows us to enable not only the viewing but also the editing or commenting of such documents.

10.7 Fonts

We use third-party services to embed selected fonts, icons, logos, and symbols into our website.

We use in particular:

10.8 Advertising

We take advantage of the opportunity to specifically Advertising our activities and services displayed on third-party sites such as social media platforms and search engines.

With this type of advertising, we want to reach people who are already interested in our activities and operations or who might be interested in them (Remarketing and Targeting). To this end, we may transfer relevant information—including personal data—to third parties who enable such advertising. We may also determine whether our advertising is successful, i.e., in particular, whether it leads to visits to our website. (Conversion Tracking).

Third parties with whom we advertise and where you are registered as a user may assign the use of our online offering to your profile there.

We use in particular:

11. Website extensions

We use extensions for our website to enable additional features.

We use in particular:

12. Success and reach measurement

We are trying to determine how our online services are used. This allows us, for example, to measure the success and reach of our activities and the impact of third-party links to our website. We can also test and compare how different parts or versions of our online services are used (A/B testing). Based on the results of these success and reach measurements, we can, in particular, fix errors, strengthen popular content, or make improvements to our online services.

For performance and reach measurement, the Internet Protocol (IP) addresses of individual users are stored in most cases. In this case, IP addresses are fundamentally abbreviated (“IP masking”) in order to follow the principle of data minimization through appropriate pseudonymization.

Cookies may be used to measure success and reach, and user profiles may be created. Any user profiles created may include, for example, the individual pages visited or content viewed on our website, information about screen or browser window size, and the – at least approximate – location. Basically any user profiles are created exclusively using pseudonyms and are not used to identify individual users. However, individual third-party services where users are registered may, at most, associate the use of our online services with the user's account or profile on the respective service.

We use in particular:

  • Google Analytics: Performance and reach measurement; Provider: Google; Google Analytics-specific information: Measurement also across different browsers and devices (Cross-Device Tracking) as well as with pseudonymized Internet Protocol (IP) addresses, which only exceptionally will be fully transferred to Google in the USA, “Data protection”, "Browser add-on to deactivate Google Analytics".
  • Google Tag Manager: Integration and management of other services for performance and reach measurement, as well as other services from Google and third parties; Provider: Google; Google Tag Manager-specific information: "Data collected with Google Tag Manager"Further information on data protection can be found with the individual integrated and managed services.

13. Final Provisions

We have implemented this privacy policy with the Privacy Policy Generator from Data protection partner created.

We may amend or supplement this privacy policy at any time. We will inform you of any such amendments or supplements in an appropriate manner, in particular by publishing the current version of the privacy policy on our website.