Detailed information can be found here.
Thank you for visiting our website. Phoenix Mecano Solutions AG (hereinafter “Phoenix Mecano Solutions AG,” “we,” or “us”) places great importance on the security of user data and compliance with data protection regulations. We would like to inform you below about the processing of your personal data on our website.
As a company based in Switzerland, Phoenix Mecano Solutions AG publishes this Privacy Policy in compliance with the provisions of Swiss data protection legislation (DSG) and the EU General Data Protection Regulation (GDPR).
Data controller:
Phoenix Mecano Solutions AG, Hofwisenstrasse 6, CH - 8260 Stein am Rhein
Phone +41 (0)52 742 75 00
info@phoenix-mecano.ch
Data Protection Officer:
Phoenix Mecano Solutions AG, Hofwisenstrasse 6, CH - 8260 Stein am Rhein
Phone +41 (0)52 742 75 00
datenschutz@phoenix-mecano.ch
The technical terms used in this privacy policy are to be understood as legally defined in Art. 4 of the GDPR and Art. 5 of the DSG.
Our website can be visited without users actively providing personal information. However, we automatically store access data (server log files) such as the name of the Internet service provider, the operating system used, the website from which the user visits us, the date and duration of the visit, or the name of the requested file, as well as, for security reasons—e.g., to detect attacks on our website—the IP address of the device used for a period of 7 days. This data is evaluated exclusively to improve our offerings and does not allow any conclusions to be drawn about the user’s identity. This data is not combined with other data sources. We process and use the data for the following purposes: providing the website, improving our websites, and preventing and detecting errors/malfunctions as well as misuse of the website.
Legal basis:
Legitimate interest pursuant to Art. 6(1)(f) GDPR; overriding interests pursuant to Art. 31(1) DSG
Legitimate interests:
Ensuring the functionality and error-free and secure operation of the website, as well as adapting this website to the requirements of users.
We use a consent management process on our website to store and manage the consent given by visitors to our website in a verifiable manner in accordance with the requirements of the GDPR. At the same time, visitors to our website can manage the consents and preferences they have given or revoke their consent via the service we have integrated.
The consent status is stored on the server and/or in a cookie (so-called opt-in cookie) or comparable technology to enable the consent to be assigned to a user or their device. Additionally, the time at which consent was given is recorded.
Categories of Data Subjects:
Website visitors who use the Consent Management Tool
Data categories:
User data (e.g., websites visited, interest in content, access times), meta and communication data (e.g., device information, IP addresses)
Purposes of processing:
Compliance with accountability obligations, consent management
Legal basis:
Legal obligation (Art. 6(1)(c) GDPR in conjunction with Art. 7 GDPR), Overriding interests pursuant to Art. 31(1) DSG
Overriding interests:
Demonstrable compliance with data protection obligations, administration and documentation of consents
Recipient:
Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany
Transfer to a third country:
Based on the Swiss Federal Council’s adequacy decision for Germany
Data protection:
https://usercentrics.com/de/datenschutzerklaerung/
To make visiting our website an enjoyable experience and to enable the use of certain features, we use so-called cookies on our website. The use of cookies serves our legitimate interest in making your visit to our website as pleasant as possible and is based on Art. 6(1)(f) GDPR and Art. 31(1) DSG. Cookies are a standard internet technology used to store and retrieve login and other usage information for all users of the website. Cookies are small text files that are stored on the user’s device. They enable us, among other things, to save user settings so that our website can be displayed in a format tailored to the user’s device. Some of the cookies we use are deleted at the end of the browser session, i.e., after closing the browser (so-called session cookies). Other cookies remain on the user’s device and allow us or our partner companies to recognize the browser on the next visit (so-called persistent cookies).
The browser can be configured so that the user is notified when cookies are set and can decide on a case-by-case basis whether to accept them, or can block the acceptance of cookies in specific cases or generally. Furthermore, cookies can be deleted later to remove data that the website has stored on the user’s computer. Disabling cookies (so-called opt-out) may result in some limitations to the functionality of our website.
Categories of Data Subjects:
Website visitors, users of online services
Opt-Out:
Internet Explorer:
https://support.microsoft.com/de-de/help/17442
Firefox:
https://support.mozilla.org/de/kb/wie-verhindere-ich-dass-websites-mich-verfolgen
Google Chrome:
https://support.google.com/chrome/answer/95647
Safari
https://support.apple.com/de-de/HT201265
Legal basis:
Consent (Art. 6(1)(a) GDPR or Art. 31(1) DSG); legitimate interests (Art. 6(1)(f) GDPR or Art. 31(1) DSG)
The relevant legal basis is specifically stated for each tool.
Legitimate interests:
Storage of opt-in preferences, display of the website, ensuring the functionality of the website, maintaining user status across the entire website, recognition for subsequent website visits, user-friendly online offering, ensuring the chat function.
To evaluate visitor traffic on our online offering, we use web analytics and audience measurement tools. For this purpose, we collect information about our visitors’ behavior, interests, or demographic data, such as age, gender, etc. This helps us identify when our online offering, its features, or content are most frequently accessed or encourage repeat visits. In addition, we can use the collected information to determine whether our online platform requires optimization or adaptation.
The information collected for this purpose is stored in cookies or through similar methods and is used for audience measurement and optimization. The data stored in the cookies may include viewed content, visited websites, settings, and used functions and systems. However, no personally identifiable user data is generally processed for the purposes described. In this case, the data is anonymized so that the actual identity of the users is unknown to both us and the provider of the tool used. The anonymized data is often stored in user profiles.
Categories of Data Subjects:
Website visitors, users of online services
Data categories:
User data (e.g., websites visited, interest in content, access times), meta and communication data (e.g., device information, IP addresses), contact data (e.g., email address, phone number), content data (e.g., text entries, photographs, videos)
Purposes of processing:
Website analysis, reach measurement, usage analysis, and evaluation of website interaction, lead evaluation
Legal basis:
Consent (Art. 6(1)(a) GDPR or Art. 31(1) DSG)
Service provider:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy Policy:
https://policies.google.com/privacy
Opt-out link:
https://tools.google.com/dlpage/gaoptout?hl=de
or https://myaccount.google.com/
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Service used:
Leadinfo B.V., Rivium Quadrant 141, 909 LC Capelle aan den IJssel
Privacy:
https://www.leadinfo.com/de/rechtliches/datenschutz/
Opt-out link:
https://www.leadinfo.com/de/rechtliches/opt-out/
Transfer to third countries:
Based on the Swiss Federal Council’s adequacy decision for the Netherlands
Legal basis:
Consent (Art. 6(1)(a) GDPR or Art. 31(1) DSG)
Service used:
Mouseflow, Inc. Flaesketorvet 68, 1711 Copenhagen V, Denmark
Privacy Policy:
https://mouseflow.com/legal/privacy/
Opt-out link:
https://mouseflow.com/de/opt-out/
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for Denmark
Legal basis:
Consent (Art. 6(1)(a) GDPR or Art. 31(1) DSG)
Service Provider:
Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA
Privacy:
https://privacy.microsoft.com/de-de/privacystatement
Transfer to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR or Art. 31(1) DSG)
Recipient:
LinkedIn Corporation, 1000 West Maude Avenue, Sunnyvale, CA 94085, USA
Privacy:
https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy
Transfer to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR or Art. 31(1) DSG)
Recipient:
HubSpot, Inc., 25 First Street, 2nd Floor, Cambridge, MA 02141 USA
Data protection:
https://legal.hubspot.com/de/privacy-policy
Transfer to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR or Art. 31(1) DSG)
To continuously increase the reach and visibility of our online offerings, we process personal data as part of our online marketing activities, particularly with regard to potential interests and measuring the effectiveness of our marketing measures.
To measure the effectiveness of our marketing measures and identify potential interests, relevant information is stored in cookies or similar methods are used. The data stored in the cookies may include viewed content, visited websites, settings, and used functions and systems. However, for the purposes described, no personally identifiable user data is typically processed. The data is then anonymized so that the actual identity of the users is unknown to both us and the provider of the tool used. The anonymized data is often stored in user profiles.
If user profiles are stored, the data may be read, supplemented, and updated on the online marketing provider’s server when visiting other websites that use the same online marketing method.
We can determine the success of our advertisements based on aggregated data made available to us by the provider of the online marketing method (so-called conversion tracking). As part of this conversion tracking, we can determine whether a marketing measure led to a purchase decision by a visitor to our online service. This evaluation serves to analyze the success of our online marketing.
Categories of Data Subjects:
Website visitors, users of online services, prospective customers, communication partners, business and contractual partners
Data categories:
User data (e.g., websites visited, interest in content, access times), meta and communication data (e.g., device information, IP addresses), location data, contact data, content data (e.g., text information, photographs, videos)
Purposes of processing:
Marketing (in some cases also interest-based and behavior-based), conversion tracking, target group identification, click tracking, development of marketing strategies, and increasing campaign efficiency
Legal basis:
Consent (Art. 6(1)(a) GDPR; Art. 31(1) DSG); legitimate interests (Art. 6(1)(f) GDPR; Art. 31(1) DSG)
Legitimate interests:
Optimization and further development of the website, profit growth, customer retention, and new customer acquisition
Service used:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy Policy:
https://policies.google.com/privacy
Opt-out link:
https://tools.google.com/dlpage/gaoptout?hl=de
or https://myaccount.google.com/
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Legitimate interest (Art. 6(1)(f) GDPR; Art. 31(1) DSG)
Legitimate interests:
Ensuring the functionality and error-free and secure operation of the website, as well as adapting this website to the needs of users.
Service provider:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy:
https://policies.google.com/privacy
Opt-out link:
https://tools.google.com/dlpage/gaoptout?hl=de
or https://myaccount.google.com/
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR; Art. 31(1) DSG)
Service provider:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Data protection:
https://policies.google.com/privacy
Opt-out link:
https://adssettings.google.com/authenticated
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR; Art. 31(1) DSG)
Service used:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy Policy:
https://policies.google.com/privacy
Opt-out link:
https://tools.google.com/dlpage/gaoptout?hl=de
or https://myaccount.google.com/
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR; Art. 31(1) DSG)
Service used:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy Policy:
https://policies.google.com/privacy
Opt-out link:
https://tools.google.com/dlpage/gaoptout?hl=de
or https://myaccount.google.com/
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR; Art. 31(1) DSG)
Recipient:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy Policy:
https://policies.google.com/privacy?hl=en-US
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR; Art. 31(1) DSG)
Recipient:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy Policy:
https://policies.google.com/privacy?hl=en-US
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR; Art. 31(1) DSG)
Recipient:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy Policy:
https://policies.google.com/privacy?hl=en-US
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR; Art. 31(1) DSG)
Recipient:
LinkedIn Corporation, 1000 West Maude Avenue, Sunnyvale, CA 94085, USA
Privacy:
https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy
Transfer to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR; Art. 31(1) DSG)
Recipient:
LinkedIn Corporation, 1000 West Maude Avenue, Sunnyvale, CA 94085, USA
Privacy:
https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy
Transfer to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR; Art. 31(1) DSG)
We maintain online presences on social networks and career platforms in order to exchange information with registered users and to get in touch easily.
In some cases, data from users on social networks is used to conduct market research and pursue advertising purposes. User profiles can be created and used based on users’ browsing behavior, for example their stated interests, to tailor advertisements to the interests of target groups. For this purpose, cookies are regularly stored on users’ devices, sometimes regardless of whether they are registered users of the social network.
Depending on where the social network operates, user data may be processed outside the European Union or the European Economic Area. This may entail risks for users, as it may, for example, make it more difficult to enforce their rights.
Categories of Data Subjects:
Registered and non-registered users of the social network
Data categories:
Master data (e.g., name, address), contact data (e.g., email address, phone number), content data (e.g., text entries, photographs, videos), usage data (e.g., websites visited, interests, access times), meta and communication data (e.g., device information, IP address)
Purposes of processing:
Extending reach, networking
Legal basis:
Legitimate interests (Art. 6(1)(f) GDPR; Art. 31(1) DSG), consent (Art. 6(1)(a) GDPR; Art. 31(1) DSG)
Legitimate interests:
Interaction and communication on social media presences, profit growth, insights into target groups
Service used:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy Policy:
https://policies.google.com/privacy?hl=de&gl=de
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Opt-out link:
https://tools.google.com/dlpage/gaoptout?hl=de
or https://myaccount.google.com/
Legal basis:
Consent (Art. 6(1)(a) GDPR, Art. 31(1) DSG)
Recipient:
LinkedIn Corporation, 1000 West Maude Avenue, Sunnyvale, CA 94085, USA
Data protection:
https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy
Transfer to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR, Art. 31(1) DSG)
Recipient:
Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Data protection:
https://www.facebook.com/privacy/explanation
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR, Art. 31(1) DSG)
We have integrated functions and content into our online offering that are sourced from third-party providers. For example, videos, images, buttons, or posts (hereinafter referred to as content) may be integrated.
To display content to visitors of our online offering, the respective third-party provider processes, among other things, the user’s IP address so that the content can be transmitted to and displayed in the browser. Without this processing, the display of third-party content is not possible.
In some cases, additional information is collected via so-called pixel tags or web beacons, through which the third-party provider receives information about the use of the content or visitor traffic on our online offering, technical information regarding the user’s browser or operating system, the time of the visit, or referring websites. The data obtained in this manner is stored in cookies on the user’s device.
To protect the personal data of visitors to our online offering, we have implemented certain security measures to prevent the automatic transmission of this data. This data is only transmitted when users click on the buttons or the third-party content.
Categories of Data Subjects:
Users of the plug-in or integrated third-party content
Data categories:
Usage data (e.g., websites visited, interests, access time), meta and communication data (e.g., device information, IP address), contact data (e.g., email address, phone number), master data (e.g., name, address)
Purposes of processing:
Design of our online offering, increasing the reach of advertisements on social media, sharing posts and content, interest- and behavior-based marketing, cross-device tracking
Legal basis:
Consent (Art. 6(1)(a) GDPR, Art. 31(1) DSG)
Service used:
Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Privacy Policy:
https://policies.google.com/privacy?hl=de&gl=de
Opt-out link:
https://tools.google.com/dlpage/gaoptout?hl=de
or https://myaccount.google.com/
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR, Art. 31(1) DSG)
When using Google services, in particular YouTube, it is possible that the service may automatically load its own services on the website. These may include, among others, the following services: Google Fonts, Google Play, Google Static, Google Ads.
Our online offering is hosted by an external service provider. Personal data of visitors to our online offering, in particular so-called log files, are stored on our service provider’s servers. This may also include data generated or collected during the active use of our online offering. By using a specialized service provider, we are able to provide our online offering securely and efficiently. The hosting provider we use does not process the data for its own purposes.
We also use a so-called Content Delivery Network (CDN) to deliver content from our online offering more quickly. For example, when visitors to our online offering access graphics, scripts, or other content, this content is delivered quickly and optimally via servers distributed regionally and internationally. When the files are retrieved, a connection is established to the servers of a CDN provider, during which personal data of visitors to our online offering is processed, such as the IP address, browser data, or the so-called user agent.
Categories of Data Subjects:
Website visitors
Data categories:
User data (e.g., websites visited, interest in content, access times), meta and communication data (e.g., device information, IP addresses)
Purposes of processing:
Proper configuration of our online offering
Legal basis:
Legitimate interests (Art. 6(1)(f) GDPR, Art. 31(1) DSG)
Legitimate interests:
Proper display and optimization of the website, faster website access, avoidance of downtime, high scalability
Recipient:
OpenJS Foundation, 1 Letterman Drive, Suite D4700, San Francisco, CA 94129, USA
Transfers to third countries:
Based on standard contractual clauses
Legal basis:
Consent (Art. 6(1)(a) GDPR, Art. 31(1) DSG)
Recipient:
Prospect One, Królewska 65A, 30-081 Kraków, Poland
Data protection:
https://www.jsdelivr.com/terms/privacy-policy-jsdelivr.com
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for Poland
Legal basis:
Consent (Art. 6(1)(a) GDPR, Art. 31(1) DSG)
Recipient:
BunnyWay doo, Cesta komandanta Staneta 4A, 1215 Medvode, Slovenia
Data protection:
https://bunny.net/privacy/
Transfers to third countries:
Based on the Swiss Federal Council’s adequacy decision for Slovenia
Legal basis:
Consent (Art. 6(1)(a) GDPR, Art. 31(1) DSG)
Our website offers the option to contact us directly or to obtain information about various contact options. We use a chat function to facilitate contact. This can also be used for video calls if needed. Through this, customers can submit relevant inquiries directly to the service staff at Phoenix Mecano Solutions AG.
When you contact us, we process the data of the person making the inquiry to the extent necessary to respond to or handle the inquiry. The data processed may vary depending on the method used to contact us.
Categories of Data Subjects:
Inquirers, participants in the respective online service (chat, online appointment scheduling, online meeting, webinar)
Categories of data:
Master data (e.g., name, address), contact data (e.g., email address, phone number), content data (e.g., text entries, photographs, videos), usage data (e.g., interests, access times), meta and communication data (e.g., device information, IP address).
Purposes of processing:
Processing of inquiries
Legal basis:
Consent (Art. 6(1)(a) GDPR, Art. 31(1) DSG), performance or initiation of a contract (Art. 6(1)(b) GDPR; Art. 31(2)(a) DSG)
Service used:
Userlike UG, Probsteigasse 44-46, 50670 Cologne
Data protection:
https://www.userlike.com/de/terms#privacy-policy
Transfer to third countries:
Based on the Swiss Federal Council’s adequacy decision for Germany
Legal basis:
Consent (Art. 6(1)(a) GDPR, Art. 31(1) DSG)
Service Provider:
Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA
Data protection:
https://privacy.microsoft.com/de-de/privacystatement
Transfer to third countries:
Based on the Swiss Federal Council’s adequacy decision for the United States
Legal basis:
Consent (Art. 6(1)(a) GDPR, Art. 31(1) DSG)
We transfer the personal data of visitors to our online offering for internal purposes (e.g., for internal administration or to the human resources department to fulfill legal or contractual obligations). Internal data transfer or disclosure of data takes place only to the extent necessary, in compliance with the relevant data protection regulations.
Legal basis:
Legitimate interests (Art. 6(1)(f) GDPR, Art. 31(1) DSG)
Legitimate interests:
So-called “small group privilege,” centralized management and administration within the company to leverage synergies, reduce costs, and increase effectiveness
Recipients:
https://group.phoenix-mecano.com/de/sparten-standorte/standorte-weltweit
To execute contracts or fulfill a legal obligation, it may be necessary for us to disclose personal data. If the data required for this purpose is not provided to us, it may not be possible to conclude the contract with the data subject.
We transfer data to countries outside Switzerland/the EEA (so-called third countries). This is done for the purposes mentioned above (transfer within the Group). The transfer takes place only to fulfill our contractual and legal obligations or based on prior consent from the data subject.
In the event that we transfer data to a country outside Switzerland/the EEA for the purpose of processing, we ensure that the processing is legally permissible in the manner we have intended. In such cases, we have entered into standard contractual clauses, including a separate provision regarding appropriate technical and organizational measures, unless an adequacy decision by the Swiss Federal Council exists, in order to protect the data of data subjects to the best of our ability.
In this specific case, we transfer your personal data to the U.S., the EU… The appropriate safeguard is in place with the respective service provider.
We generally store the data of visitors to our online offering for as long as is necessary to provide our services or as long as required by European directives and regulations or by other legislation in laws or regulations to which we are subject. In all other cases, we delete personal data once the purpose has been fulfilled, with the exception of data that we are required to retain to comply with legal obligations (e.g., due to tax and commercial law retention periods, we are obligated to retain documents such as contracts and invoices for a certain period of time).
We do not engage in automated decision-making or profiling pursuant to Article 22 of the GDPR and Article 21 of the DSG.
Right of access:
Data subjects have the right, pursuant to Art. 15 GDPR and Art. 25 DSG, to request confirmation as to whether we process data concerning them. They may request access to this data, as well as the additional information listed in Art. 15(1) GDPR, and a copy of their data.
Right to rectification: Data subjects have the right, pursuant to Article 16 of the GDPR and Article 32(1) of the DSG, to request the rectification or completion of data concerning them that we process.
Right to erasure:
Data subjects have the right, pursuant to Article 17 of the GDPR and Article 32 of the DSG, to request the immediate erasure of data concerning them. Alternatively, they may request that we restrict the processing of their data pursuant to Article 18 of the GDPR and Article 32 of the DSG.
Right to data portability:
Data subjects have the right, pursuant to Art. 20 GDPR and Art. 28 DSG, to request the provision of the data they have provided to us and to demand its transfer to another controller.
Right to lodge a complaint:
Data subjects also have the right to lodge a complaint with the supervisory authority responsible for them in accordance with Article 77 of the GDPR and Article 49 of the DSG.
Right to object:
If personal data is processed on the basis of legitimate interests pursuant to Art. 6(1)(f) GDPR, Article 31(1) DSG, data subjects have the right, pursuant to Article 21 GDPR, to object to the processing of their personal data, provided there are grounds arising from their particular situation or the objection is directed against direct marketing. In the latter case, data subjects have a general right to object, which we will honor without requiring them to specify a particular situation.
Some data processing operations are only possible with the explicit consent of the data subjects. You have the option to withdraw consent that has already been given at any time. To do so, simply send us an informal message or email to datenschutz@phoenix-mecano.ch. The lawfulness of the data processing carried out prior to the withdrawal remains unaffected by the withdrawal.
Our website contains links to the online offerings of other providers. We hereby point out that we have no influence over the content of the linked online offerings or the compliance of their providers with data protection regulations.
We reserve the right to amend this privacy policy at any time in the event of changes to our online services and in compliance with applicable data protection regulations to ensure that it meets legal requirements.
This is a translation of the original privacy policy in German, which was created by DDSK GmbH.
