Privacy Policy
Principle and Scope
This privacy information relates to the processing of personal data in connection with visiting the websites at www.figureit.ch. To use our websites and the associated online services or applications (collectively referred to as services), we process your personal data (hereinafter also referred to as “data”). Please note that these privacy notices do not apply to third-party websites that may be linked to from our website.
Personal data are information relating to an identified or identifiable natural person. Certain categories of particularly sensitive personal data, such as health data, are specially protected by specific legal provisions. The term processing encompasses all operations related to your data, including collection, storage, use, disclosure, archiving, or deletion. When processing data, we comply with the Federal Data Protection Act (DSG), the corresponding implementation regulation (DSGV), and other applicable data protection laws (e.g., the General Data Protection Regulation (GDPR)), where applicable.
Below, we explain which data we collect, for what purposes we use them, and what rights you have regarding your data. If you provide us with data about third parties, we assume that you are authorised to do so and that the data provided are correct. We therefore ask you to inform the relevant third parties about the processing of their data by us and to provide them with a copy of this privacy notice or the relevant product information. If we notify you of an updated version of these documents, we ask you to forward the new versions as well.
Our employees are regularly trained on data protection issues and are subject to confidentiality obligations. Furthermore, compliance with data protection regulations is monitored by our data protection department.
Processed Data
We place great importance on the protection of your personal data. When you use our website and services, we primarily process the data necessary for the use, which you provide to us and which we collect directly.
When you use our website and services, we collect metadata, such as information about your browser (type and version), your device type (e.g., smartphone or tablet), and your IP address. We also collect access data, known as log data. This includes the name of the accessed website, the date and time of access, the amount of data transmitted, a message about successful access, information about the operating system, and information about the previously visited website.
We store and process additional data about you only if you provide it to us in the course of using services and tools (e.g., contact forms). Further privacy-related information on individual tools can be found further down in this privacy policy.
Purpose
Processing of Data
We process your data for various purposes related to communication with you. This includes, in particular, responding to inquiries, asserting your rights, and contacting you with questions. We mainly use communication data and master data, as well as registration data related to the services and offerings you use. This data may be stored for documentation purposes, training, quality assurance, and inquiries.
Additionally, we process data for marketing purposes and for maintaining customer relationships. We may send our users general or personalised information about our offerings, for example, through irregular contact by email, post, or telephone, as well as through other channels, provided we have your contact information. You always have the option to object to such contact or to refuse or withdraw your consent for contact for advertising purposes. With your consent, we can tailor our online offering to the needs of our users.
Furthermore, we may use your data for market research, to improve our online offering, our services, and possibly for product development.
Finally, we may also store and process your data on our website for security reasons and access control.
Logfiles
We primarily use data to create server log files to conduct statistical evaluations for operating the website, to ensure IT system security, and to optimise the website. We use log data for this purpose. The legal basis for this data processing is our legitimate interest in providing you with a secure and smooth user experience at all times. We expressly reserve the right to review the log data retrospectively if there are concrete indications of unlawful use.
HubSpot
Customer data may be integrated or further processed from our website in HubSpot (HubSpot, 2 Canal Park, Cambridge, MA 02141, United States). The data may be stored in HubSpot to increase our efficiency in collaborating with you as a customer.
The legal basis for processing your data is our legitimate interest in optimising processes. Further information on the data protection provisions in HubSpot can be found at the following link: legal.hubspot.com/privacy-policy
Online Appointment Booking
We may offer services on our website where providing personal data may be mandatory. An example of such services is the online scheduling of appointments or consultations. In these cases, we primarily process master and communication data, as well as other information necessary for processing your request. We may also store your data to refer to it in future communications. Additionally, we can assist you with using our services through contact.
The legal basis for processing your data is our legitimate interest in providing you with an attractive service for online appointment coordination. You can withdraw your consent at any time. The lawfulness of the processing of your data up to the withdrawal of your consent is not affected by the withdrawal.
Google Fonts
We may use Google Fonts on our website to display selected fonts, icons, and symbols. This service is provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). Further information on Google Fonts can be found at this link.
Google Analytics
Your Rights
Under applicable data protection laws and under certain conditions, you have the following rights:
- Right to information: You can request information from us about whether we process your personal data and which data this may be.
- Right to correction: You can request the correction of incorrect data or the completion of incomplete data from us.
- Right to deletion: You can request the deletion of your data. However, please note that certain legal provisions or legitimate interests may restrict our obligation to delete.
- Right to data portability: Under certain conditions, you can request that we provide you with the data you have provided in a structured, commonly used, and machine-readable format.
- Right to withdraw consent: If the data processing is based on your consent, you can withdraw this consent at any time. Please note that the withdrawal does not affect the lawfulness of the data processing that occurred before the withdrawal.
- Right to object: Under certain circumstances, you have the right to object to the processing of your data, particularly for purposes of direct marketing or legitimate interests.
- Right to lodge a complaint: If you disagree with how we handle your data, you have the right to contact our data protection officers or the relevant data protection supervisory authority at edoeb.admin.ch.
Please note that these rights are subject to legal conditions and that exceptions and limitations may apply. To exercise your rights, you can contact us in writing or by email at the address provided below.
figure it ag
Data Protection Office
Bahnhofstrasse 4
9100 Herisau
Switzerland
Email:
SSL
Due to the technical structure of the internet as an open network, secure transmission of your data cannot be guaranteed in all cases. When you send your personal data to us, it is always at your own risk.
To protect your transmitted data, we use encryption mechanisms in accordance with current security standards (Transport Layer Security, TLS). TLS is a protocol for secure data transmission over the internet and is supported by most browsers. It uses public-key cryptography, where data is encrypted with a publicly available key and can only be decrypted with a specific private key. Most browsers indicate whether a connection is secure with a key symbol or padlock.
We take various technical and organisational security measures to ensure the protection of your data within our system. However, we point out that despite these measures, there is still a risk of data loss, unauthorised access, or data manipulation by third parties. Please also note that certain network areas and your computer lie outside our controllable security area. As a user, you are responsible for informing yourself about necessary security measures and taking the required actions within your control. We are generally not liable for damages resulting from data loss or manipulation.
Data Retention
We store your data only as long as necessary for the purposes mentioned above or as required by law or contract. Data that is no longer necessary for the mentioned purposes will be clarified or anonymised during our regular data maintenance.
Privacy Policy Updates
This privacy information is not part of the contract and may be amended by us at any time. The version published here applies.
Last updated on 28 August 2023