Privacy Policy
1. Overview and Scope of Application
SENN Advokatur (hereinafter “we”, “us” or “our”) collects and processes personal data relating to you or other persons (hereinafter “third parties”) in the course of its business activities. “Personal data” means all information and details relating to an identified or identifiable natural person. In this Privacy Policy, the terms “data”, “personal data” and “personal information” are used synonymously.
Herein we describe what we do with your data when you use our website https://www.sennadvokatur.ch, obtain our services, are otherwise connected with us in the context of a contract, communicate with us, or otherwise have dealings with us.
If you transmit or disclose data to us about third parties, we assume that you are authorized to do so and that such data is correct. By transmitting data about third parties, you confirm this. Please also ensure that these third parties have been informed about this Privacy Policy.
2. Responsibility
For the data processing described in this Privacy Policy, SENN Advokatur is responsible under data protection law, unless otherwise communicated in individual cases, e.g. in additional privacy policies, on forms or in contracts.
You may contact us regarding your data protection concerns and the exercise of your rights as follows:
SENN Advokatur
Burggartenstrasse 40
CH-4103 Bottmingen
info@sennadvokatur.ch
3. Data Categories and Data Sources
We process various categories of data. The most important categories are as follows:
Technical data: When you use our website or other electronic offerings, we collect the IP address of your end device and other technical data to ensure the functionality and security of these offerings. This data also includes logs in which the use of our systems is recorded. We generally retain technical data for 3 months. In order to ensure the functionality of these offerings, we may also assign an individual code to you or your end device (e.g. in the form of a cookie). Technical data alone generally does not allow conclusions to be drawn about your identity. However, in the context of user accounts, registrations, access controls or contract processing, it may be linked with other data categories (and thus possibly with your person).
Communication data: When you communicate with us via the contact form, by email, telephone, letter or other means of communication, we collect the data exchanged between you and us, including your contact details and the peripheral data of the communication. If we wish or are required to establish your identity, we collect data to identify you (e.g. a copy of an identity document). We generally retain this data for 12 months from the last exchange with you. This period may be longer if required for evidentiary reasons or to comply with legal or contractual requirements, or for technical reasons. Emails and written correspondence are generally retained for at least 10 years.
Master data: By master data we mean the basic data that we require, in addition to contractual data (see below), for the processing of our contractual and other business relationships or for marketing and advertising purposes, such as name, contact details and other information (e.g. about your role and function, your bank account details, your date of birth, customer history, powers of attorney and declarations of consent). We process your master data if you are a customer or other business contact, or act for such a person (e.g. as a contact person of a business partner), or because we wish to approach you for our own purposes or those of a contractual partner (e.g. in the context of marketing and advertising, invitations to events, newsletters, etc.). We generally retain this data for 10 years from the last exchange with you, but at least from the end of the contract. This period may be longer if required for evidentiary reasons or to comply with legal or contractual requirements, or for technical reasons.
Contract data: This includes data that arises in connection with the conclusion or performance of a contract (e.g. information about contracts and the services to be provided or provided), as well as data from the period prior to the conclusion of a contract. This also includes health data and information about third parties. We generally collect this data from you, from contractual partners and from third parties involved in the performance of the contract, but also from third-party sources (e.g. authorities, opposing parties, providers of creditworthiness data) and from publicly accessible sources. We generally retain this data for 10 years from the last contractual activity, but at least from the end of the contract. This period may be longer if required for evidentiary reasons or to comply with legal or contractual requirements, or for technical reasons.
Other data: We also collect data from you in other situations. In connection with official or judicial proceedings, for example, data may arise (such as files, evidence, etc.) that may also relate to you. We may receive or create photos, videos and audio recordings in which you may be identifiable (e.g. at events, etc.). The retention period for this data depends on the purpose and is limited to what is necessary.
You provide us with many of the aforementioned data yourself (e.g. via forms, in the context of communication with us, in connection with contracts, when using the website, etc.). You are generally not obliged to do so. However, if you wish to conclude contracts with us or make use of services, you must provide us with data within the scope of your contractual obligations in accordance with the relevant contract, in particular master data, contract data and registration data. When using our website, the processing of technical data is unavoidable.
Where permitted, we also obtain data from publicly accessible sources (e.g. debt enforcement registers, land registers, commercial registers, media or the internet including social media) or receive data from authorities, opposing parties and other third parties.
4. Purposes of Data Processing
We process your data primarily for those processing purposes that are necessary in connection with our business activities and the provision of our services.
In particular, we process your data for the following purposes:
Communication: in particular to be able to provide you with information or process your requests, to authenticate and identify you, and for customer service and customer care.
Contractual relationship: in particular in connection with the initiation, conclusion and performance of contractual relationships.
Marketing and relationship management: for example, to send you communications and offers and to carry out marketing activities.
Security: in particular for IT and building security (such as access controls, visitor lists, prevention, defense and investigation of cyberattacks and malware attacks, network and mail scanners, video surveillance, telephone recordings), as well as for the prevention and investigation of criminal offenses and other misconduct or the conduct of internal investigations.
Compliance: for the purpose of complying with laws, directives and recommendations of authorities and internal regulations.
5. Disclosure of Data
If required or appropriate for the provision of our services or the fulfillment of the purposes defined in this Privacy Policy, we may disclose personal data that we collect in the course of providing our services, when you contact us or when you visit our website, to third parties.
In particular, we may disclose your personal data to third parties if:
you or the organization for which you work has given the necessary consent;
we are obliged to do so due to legal, regulatory or business obligations (e.g. to comply with anti-money laundering regulations or sanctions provisions); or
this is necessary in connection with legal proceedings or in order to assert or defend claims.
In general, we process your data in Switzerland. However, in exceptional cases, your personal data may also be transferred abroad in certain cases (e.g. when involving certain service providers or using certain software applications), primarily to member states of the European Union and the EEA (in particular Ireland), but partly also to other countries worldwide, in particular New Zealand (primarily in connection with cookies) and the United States.
6. Retention Period
We process and store your data for as long as it is necessary for the fulfillment of our contractual and legal obligations or otherwise for the purposes pursued with the processing, or as long as another legal basis (e.g. statutory retention periods) exists. Personal data that we possess on the basis of a contractual relationship with you is retained at least for as long as the contractual relationship exists and limitation periods for possible claims by us are running or contractual retention obligations exist.
Once your personal data is no longer required for the above purposes, it will generally be blocked, deleted or anonymized, insofar as possible.
7. Data Security
We take appropriate security measures to safeguard the confidentiality, integrity and availability of your personal data, to protect it against unauthorized or unlawful processing, and to counter the risks of loss, accidental alteration, unintended disclosure or unauthorized access.
8. Your Rights
Applicable data protection law grants you, under certain circumstances, the right to object to the processing of your data, in particular processing for purposes of direct marketing and other legitimate interests in processing.
In order to facilitate your control over the processing of your personal data, you have, depending on the applicable data protection law and insofar as provided therein, the right to information, rectification, deletion, release and withdrawal of consent, insofar as our processing is based on your consent.
The exercise of such rights generally requires that you clearly prove your identity (e.g. by means of a copy of an identity document, if your identity is otherwise not clear or cannot be verified). To assert your rights, you may contact us at the addresses specified in Section 2 of this Privacy Policy (by post or by email).
9. Amendments to this Privacy Policy
We expressly reserve the right to amend this Privacy Policy at any time. If such amendments are made, we will promptly publish the amended Privacy Policy on our website. The version published on this website is the current version at any given time.