DSVGO

DSVGO

 

Last updated on: 07.04.2024

 

We attach great importance to the transparent handling of personal data. This privacy policy provides information on what personal data we collect, for what purpose and to whom we pass it on. To ensure a high level of transparency, this privacy policy is regularly reviewed and updated.

 

1. which services we use

 

  • Google Ads
  • Google Ads Conversion Tracking
  • Google Publisher Tag
  • Linkedin Ads
  • Meta Ads
  • Microsoft Advertising
  • TikTok Pixel
  • Google Analytics
  • Google Call Conversion Tracking
  • Google Tag Manager
  • Linkedin Insight Tag
  • Calendly
  • Google Customer Reviews
  • Google My Business
  • Jetpack
  • Vimeo
  • YouTube
  • Google Forms
  • Google Site Kit
  • Microsoft 365
  • WordPress
  • Amazon Web Services

 

 

2. contact information

If you have any questions or concerns about the protection of your data by us, you can contact us at any time by e-mail at bartjan.denhartogh@osterwalder.com. Responsible for the data processing that takes place via this website is

 

Osterwalder AG
Industrial ring 4
3250 Lyss
Switzerland

Person responsible for data protection:
Bartjan Denhartogh
bartjan.denhartogh@osterwalder.com
+41 32 387 14 00

 

3. general principles

3.1 What data we collect from you and from whom we receive this data

First and foremost, we process personal data that you transmit to us or that we collect when operating our website. We may also receive personal data about you from third parties. This may include the following categories:

  • Personal master data (name, address, date of birth, etc.);
  • Contact details (cell phone number, e-mail address, etc.);
  • Financial data (e.g. account details);
  • Online identifiers (e.g. cookie identifiers, IP addresses);
  • Location and traffic data;
  • Sound and image recordings;
  • particularly sensitive data (e.g. biometric data or information about your health).

 

3.2 Under what conditions do we process your data?

We treat your data confidentially and in accordance with the purposes set out in this privacy policy. We pay attention to transparent and proportionate processing.

If, in exceptional cases, we are unable to comply with these principles, data processing may still be lawful because there is a justification. In particular, the following grounds for justification may apply:

  • Your consent;
  • the performance of a contract or pre-contractual measures;
  • our legitimate interests, unless your interests prevail.

 

3.3 How can you withdraw your consent?

If you have given us your consent to process your personal data for specific purposes, we will process your data within the scope of this consent, unless we have another justification.

You can withdraw your consent at any time by sending an e-mail to the address given in the legal notice. Data processing that has already taken place is not affected by this.

 

3.4 In which cases can we pass on your data to third parties?

 

a. Principle

We may need to use the services of third parties or affiliated companies and commission them to process your data (so-called processors). The categories of recipients are as follows:

  • Accounting, fiduciary and auditing company;
  • Consulting companies (legal advice, taxes, etc.);
  • IT service provider (web hosting, support, cloud services, website design, etc.);
  • Payment service provider;
  • Provider of tracking, conversion and advertising services.

 

We ensure that these third parties and our affiliated companies comply with data protection requirements and treat your personal data confidentially.

We may also be obliged to disclose your personal data to authorities.

 

b. Visiting our social media channels

We may have embedded links to our social media channels on our website. You can see this in each case (typically via corresponding icons). If you click on the icons, you will be redirected to our social media channels.

In this case, the social media providers will learn that you have accessed their platform from our website. The social media providers can use the data collected in this way for their own purposes. We would like to point out that we have no knowledge of the content of the transmitted data or its use by the providers.

 

c. Transfer abroad

Under certain circumstances, your personal data may be transferred to companies abroad as part of order processing. These companies are obliged to protect data to the same extent as we are. The transfer may take place worldwide.

If the level of data protection does not correspond to that in Switzerland, we carry out a prior risk assessment and contractually ensure that the same level of protection is guaranteed as in Switzerland (e.g. by means of the new standard contractual clauses of the EU Commission or other legally prescribed measures). If our risk assessment is negative, we will take additional technical measures to protect your data. You can access the EU Commission's standard contractual clauses at the following link: https://commission.europa.eu/publications/standard-contractual-clauses-controllers-and-processors-eueea_de

 

3.5 How long do we store your data?

We only store personal data for as long as is necessary to fulfill the individual purposes for which the data was collected.

Data that we store when you visit our website is stored for twelve months. An exception applies to analysis and tracking data, which may be stored for longer.

We store contract data for longer, as we are obliged to do so by law. In particular, we must store business communications, concluded contracts and accounting documents for up to 10 years. If we no longer need such data from you to perform the services, the data will be blocked and we will only use it for accounting and tax purposes.

 

3.6 How do we protect your data?

We will keep your data secure and take all reasonable steps to protect your data from loss, access, misuse or alteration.

Our contractual partners and employees who have access to your data are obliged to comply with data protection regulations. In some cases it will be necessary for us to pass on your inquiries to companies associated with us. Your data will also be treated confidentially in these cases.

Within our website, we use the SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser.

 

3.7 What rights do you have?

 

a. Right to information

You can request information about the data we have stored about you at any time. Please send your request for information together with proof of identity to info@osterwalder.com.

You also have the right to receive your data in a commonly used file format if we process your data automatically, and if:

  • you have given your consent to the processing of this data; or
  • you have disclosed data in connection with the conclusion or execution of a contract.

We may restrict or refuse to provide information or data if this conflicts with our legal obligations, our own legitimate interests, public interests or the interests of a third party.

The processing of your application is subject to the statutory processing period of 30 days. However, we may extend this period due to a high volume of requests, for legal or technical reasons or because we need more detailed information from you. You will be informed of the extension in good time, at least in text form.

 

b. Erasure and rectification

 

You have the option of requesting the deletion or correction of your data at any time. We may reject the request if statutory provisions oblige us to store the data for a longer period or to store it unchanged or if your request conflicts with a legal requirement.

Please note that exercising your rights may be in conflict with contractual agreements and may have corresponding effects on the performance of the contract (e.g. premature termination of the contract or cost consequences).

 

c. Legal process

If you are affected by the processing of personal data, you have the right to enforce your rights in court or to file a complaint with the competent supervisory authority. The competent supervisory authority in Switzerland is the Federal Data Protection and Information Commissioner: https://www.edoeb.admin.ch

 

3.8 Changes to the privacy policy

We may change this privacy policy at any time. The changes will be published on , you will not be informed separately.

 

4. individual data processing operations

 

4.1 Provision of the website and creation of log files

 

What information do we receive and how do we use it?

When you visit, certain data is automatically stored on our servers or on servers of services and products that we purchase and/or have installed for system administration, statistical, backup or tracking purposes. These are

  • the name of your Internet service provider;
  • Your IP address (under certain circumstances);
  • the version of your browser software;
  • the operating system of the computer used to access the URL;
  • the date and time of access;
  • the website from which you are visiting URL;
  • the search terms you used to find the URL.

 

Why are we allowed to process this data?

This data cannot be assigned to a specific person and is not merged with other data sources. The log files are stored in order to guarantee the functionality of the website and to ensure the security of our information technology systems. This is our legitimate interest.

 

How can you prevent data collection?

The data is only stored for as long as is necessary to achieve the purpose for which it was collected. Accordingly, the data is deleted at the end of each session. The storage of log files is absolutely necessary for the operation of the website; you therefore have no option to object to this.




4.2 Google Ads

We use the Google Ads service on our website, an online advertising service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter "Google"). Google Ads enables us to place advertisements in Google search results and in the Google advertising network.



4.3 Google Ads conversion tracking

We use the online advertising program "Google Ads" on our website and, in this context, conversion tracking (visit action evaluation). Google Ads Conversion Tracking is an analysis service of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google").

When you click on an ad placed by Google, a cookie for conversion tracking is set on your device. These cookies have a limited validity, do not contain any personal data and are therefore not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognize that you have clicked on the ad and have been redirected to this page.

The information collected using the conversion cookie is used to generate conversion statistics. This tells us the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag. However, we do not receive any information with which users can be personally identified.

You can prevent the storage of cookies by selecting the appropriate technical settings in your browser software. However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent. You will then not be included in the conversion tracking statistics.

You can also deactivate personalized advertising for you in the Google advertising settings. You can find instructions on how to do this at https://support.google.com/My-Ad-Center-Help/answer/12155764.



4.4 Google Publisher Tag

On our website, we use the Google Publisher Tag, a service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). The Google Publisher Tag enables us to efficiently manage and optimize advertising on our website.

By integrating the Google Publisher Tag, cookies and similar technologies are stored on your end device and information about the use of our website, including your IP address, is transmitted to Google. This information may be used by Google for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to us.

If you do not wish to receive targeted advertising, you can prevent the storage of cookies by selecting the appropriate settings in your browser software. Please note, however, that in this case you may not be able to use all functions of this website to their full extent.



4.5 Linkedin Ads

On our website, we use advertising services from LinkedIn, a service of LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland ("LinkedIn").

LinkedIn Ads allows us to serve targeted ads based on users' interests and behavior. LinkedIn uses cookies and similar technologies to display advertisements based on your previous visits to our and other websites. This enables us to measure and optimize the effectiveness of our advertising measures.

The information collected by LinkedIn Ads is anonymous to us, i.e. we do not receive any personal data about individual users. However, this data is stored and processed by LinkedIn so that a connection to the respective user profile is possible and LinkedIn can use the data for its own advertising purposes in accordance with the LinkedIn Privacy Policy.

If you are a member of LinkedIn and are logged into your LinkedIn account while visiting our website, the data collected by LinkedIn Ads will be linked to your LinkedIn account.

The use of LinkedIn Ads serves the purpose of analyzing and optimizing the effectiveness of our advertising measures. Data processing is carried out on the basis of our legitimate interest in targeted advertising and analyzing the impact and efficiency of this advertising.



4.6 Meta Ads

Our website uses Meta Ads, an online advertising service provided by Meta Platforms, Inc, 1601 Willow Road, Menlo Park, CA 94025, USA (formerly known as Facebook, Inc.). With the help of Meta Ads, we can place targeted advertisements to draw users' attention to our products or services.

When you visit our website, Meta Ads may place a cookie on your device that enables your use of the website to be analyzed. In addition, Meta can use this cookie to track your usage behavior across different websites and devices and place personalized advertisements on this basis.

The data collected by the cookie is transmitted to Meta and stored there. Meta can link this data to your Meta account (formerly Facebook account) and use it for its own advertising purposes.

To generally object to the use of cookies on your computer, you can set your Internet browser so that cookies can no longer be stored on your computer in the future or cookies that have already been stored are deleted. However, disabling cookies may result in some functions of our website no longer working properly.

Further information on how Meta Ads handles user data can be found in Meta's privacy policy: https://www.facebook.com/privacy/policy/. If you do not want Meta to use data for advertising purposes, you can adjust the corresponding settings in your Meta account.



4.7 Microsoft Advertising

On our website we use Microsoft Advertising, an online advertising service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. With the help of this service, we can place targeted advertisements to present our products and services.

Microsoft Advertising uses cookies and similar technologies to collect data about the use of our website and interaction with our advertisements. This data may include information such as IP address, browser type, pages visited, date and time of access and response to advertisements.

The data collected by the cookies is used to measure the effectiveness of our advertisements, to optimize our marketing strategies and to display targeted advertising based on the interests of the users.



4.8 TikTok Pixel

We use the TikTok pixel on our website, an analysis tool from TikTok Pte. Ltd, 1 Keong Saik Road, Singapore 089109, Singapore ("TikTok"). With the help of the TikTok pixel, we can track the behavior of users after they have been redirected to our website by clicking on a TikTok ad. This enables us to measure the effectiveness of TikTok ads for statistical and market research purposes and to optimize our advertising measures.

The information collected by the pixel is anonymous to us, i.e. we do not see the personal data of individual users. However, this data is stored and processed by TikTok so that a connection to the respective user profile is possible and TikTok can use the data for its own advertising purposes in accordance with the TikTok privacy policy.

If you are a member of TikTok and are logged into your TikTok account when you visit our website, the data collected by the pixel will be linked to your TikTok account.

The use of TikTok Pixel serves the purpose of analyzing and optimizing the effectiveness of our advertising measures. Data processing is carried out on the basis of our legitimate interest in targeted advertising and analyzing the impact and efficiency of this advertising.



4.9 Google Analytics

We use Google Analytics on our website, a web analysis service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site.

The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, if IP anonymization is activated on this website, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator.

The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout.



4.10 Google Call Conversion Tracking

On our website, we use Google Call Conversion Tracking, an analytics service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). This service enables us to measure the effectiveness of certain advertisements by recording how many calls are generated by these advertisements.

If you reach our website via a Google ad and call us using the telephone number provided, Google can recognize this and record it for us as a "conversion". No personal data of the caller, such as the telephone number or name, is transmitted to us.

Google uses cookies and similar technologies to provide the service and to track calls. These cookies are used to identify and track the advertisement that led the user to the website and the source of the call.

If you do not wish to participate in tracking, you can object to this use by deactivating the Google Conversion Tracking cookie via your Internet browser under user settings. You will then not be included in the conversion tracking statistics.



4.11 Google Tag Manager

To manage website tags via an interface, we use Google Tag Manager, a service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). The Google Tag Manager itself (which implements the tags) is a cookie-less domain and does not process any personal data. The service triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at domain or cookie level, this remains in place for all tracking tags that are implemented with Google Tag Manager.

By using the Google Tag Manager, scripts (so-called tags) can be automatically activated on our website and data can be transmitted from your browser to Google. This data may include information about your IP address, the browser you are using, the subpages of our website you have visited and other interactions during your visit to our website.



4.12 Linkedin Insight Tag

We have integrated the LinkedIn Insight Tag on our website, a tool from LinkedIn, a service of LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland ("LinkedIn").

The LinkedIn Insight Tag allows us to collect information about visitors to our website, in particular about the types of LinkedIn features that visitors to our website use and how they interact with these features. This tool helps us to create targeted advertisements within the LinkedIn platform and to measure the effectiveness of these advertisements.

By using the LinkedIn Insight Tag, cookies are set on your device that enable the collection of pseudonymized data, such as the URL of the page visited, the referrer URL, IP address (in abbreviated form), device and browser properties and timestamps.

The data collected by the LinkedIn Insight Tag is anonymous to us, i.e. we do not receive any personal data about individual users. However, this data is stored and processed by LinkedIn so that a connection to the respective user profile is possible and LinkedIn can use the data for its own advertising purposes in accordance with the LinkedIn Privacy Policy.

If you are a member of LinkedIn and are logged into your LinkedIn account while visiting our website, the data collected by the LinkedIn Insight Tag will be linked to your LinkedIn account.

The purpose of using the LinkedIn Insight Tag is to analyze and optimize the effectiveness of our advertising measures. Data processing is carried out on the basis of our legitimate interest in targeted advertising and analyzing the impact and efficiency of this advertising.



4.13 Calendly

Our website integrates functions of the online appointment scheduling service Calendly, offered by Calendly LLC, 271 17th Street NW, Atlanta, GA 30363, USA. With Calendly, visitors to our website can make appointments with us directly online.

When you book an appointment via Calendly, you will be asked to provide certain personal information such as your name, e-mail address and, if applicable, your telephone number. This data is required to coordinate the appointment, inform you of the appointment status and send reminders if necessary.

Calendly has its own privacy policies and practices, which may differ from those of our website. For more information about privacy in connection with Calendly, please see Calendly's privacy policy: https://calendly.com/pages/privacy. If you have any questions about the information Calendly collects or wish to exercise your rights with respect to that information, you should contact Calendly LLC directly.



4.14 Google Customer Reviews

We use the Google Customer Reviews service on our website, offered by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). Google Customer Reviews enables our customers to provide feedback on their purchasing experience with us and helps us to improve our service quality and customer experience.

After making a purchase on our website, you may be invited to participate in a Google Customer Reviews survey. If you choose to participate, Google will provide you with a survey in which you can rate your experience with us. The information you provide will be processed and aggregated by Google to give us an overall picture of customer satisfaction.

When you use Google Customer Reviews, data, including your IP address, the date and time of the survey and your reviews, are transmitted to Google and stored on Google servers. These servers may be located in the USA or other countries.

If you do not wish to participate in Google Customer Reviews, you can simply ignore or decline the invitation to the survey.

For more information about Google's data collection and privacy practices in relation to Google Customer Reviews, please see Google's privacy policy at https://www.google.de/intl/de/policies/privacy/ and the specific information on Google Customer Reviews.



4.15 Google My Business

On our website we use functions of Google My Business, a service of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). Google My Business enables companies to manage their presence on Google, including Google Search and Google Maps, and to interact with customers.

By visiting our website or through interactions with our Google My Business entry, such as leaving reviews or asking questions, data, in particular your IP address and the content of your interactions, is transmitted to Google and stored on Google servers. These servers may be located in the USA or other countries.

Google uses this information to provide Google My Business services, to facilitate user interactions with businesses and to provide us with reports and analytics about the interactions and performance of our business listing.



4.16 Jetpack

Jetpack is a product of Automattic Inc., a company that provides various online services and products, including WordPress.com. Jetpack offers a range of features to improve and optimize WordPress websites, including website statistics, security services, image optimization and various other tools to increase performance and security. Automattic Inc. has its registered office at 60 29th Street #343, San Francisco, CA 94110, USA.

We use Jetpack on our website to provide various functions and optimizations. This includes monitoring website traffic, optimizing images for faster loading times, protecting against unwanted logins and providing social media sharing tools.

Jetpack uses various technologies, including cookies, to improve the user experience and provide detailed website statistics. It also collects IP addresses, browser information and other data to support security features and detect potential threats.



4.17 Vimeo

Vimeo is a service of Vimeo Inc, 555 West 18th Street, New York, New York 10011, USA. Vimeo is a platform that allows users to upload, share and watch videos. It also provides various tools for video producers to monetize their content and interact with their audience.

We use Vimeo to embed videos on our website and provide our visitors with high quality visual content. This may include product launches, tutorials or other content relevant to our users. By embedding Vimeo videos, our visitors can watch them directly on our website without being redirected to the Vimeo platform.

When you access a web page on our website that contains a Vimeo video, your browser establishes a direct connection to the Vimeo servers. Certain information is transmitted to Vimeo in the process. This also includes the user's IP address. Vimeo also uses cookies and similar technologies to collect information about the use of the service and to improve the user experience.



4.18 YouTube

Videos from YouTube, a platform of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"), are integrated on our website. When you view the videos or click on the play button, data, including your IP address and information about the browser you are using, is transmitted to Google's servers and stored there. This data is used to provide the video, monitor performance and improve the user experience.

If you are logged in to your YouTube account, you allow YouTube to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.



4.19 Google Forms

For surveys and online forms, we use Google Forms, a service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). Google Forms enables us to create individual forms for surveys and data collection, which you can fill out via links or directly on our website.

If you fill out a Google form provided by us, the data you enter and your IP address will be transmitted to Google and stored on Google servers. These servers may be located in the USA or other countries.

Please note that the data you enter in Google Forms will be processed and stored by Google. If you have concerns about data storage by Google or wish to prevent the transmission of your data to Google, you should not complete the form.



4.20 Google Site Kit

We use the "Google Site Kit" plugin, which is provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"), to manage and analyze our website. Google Site Kit enables us to integrate various Google services, such as Google Analytics, Google Search Console, Google AdSense and others, directly into our WordPress website and manage them centrally.

By using Google Site Kit, various data, including your IP address, information about the browser you are using, the subpages of our website visited and other interactions during your website visit, are transmitted to Google and stored on Google servers. These servers may be located in the USA or other countries.

Google uses this information to provide us with detailed reports and analyses about website traffic, the performance of our website, visitor interactions and other relevant metrics.



4.21 Microsoft 365

For various office and communication tasks, we use Microsoft 365, a service provided by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.

Microsoft 365 offers a range of productivity tools, including email (Outlook), document storage (OneDrive), collaboration tools (Teams) and Office applications such as Word, Excel and PowerPoint. When you contact us, for example by email, or when we share documents, these interactions are processed and stored via Microsoft 365.

Microsoft uses servers in different countries to provide the Microsoft 365 services. This means that your data may be stored in data centers outside Switzerland. However, Microsoft has implemented various security and data protection measures to protect its customers' data.



4.22 WordPress

Our website is based on the WordPress platform, a content management system developed by Automattic Inc, 60 29th Street #343, San Francisco, CA 94110, USA. WordPress enables us to create, manage and publish content.

When you use our website, which is based on WordPress, various data, including your IP address, the date and time of access and information about the browser you are using, may be collected and stored. This data is mainly used for administrative purposes and to ensure the smooth operation of the website.

Some WordPress functions, such as comments or contact forms, may collect additional personal data when you use them.



4.23 Amazon Web Services

Our website uses services from Amazon Web Services (AWS), a comprehensive cloud service provider of Amazon.com, Inc. AWS offers a variety of infrastructure technologies that enable us to operate our website and related services in a reliable and scalable manner.

When you visit our website or use services hosted on AWS, certain information, such as your IP address, usage data and other relevant information, may be stored on AWS servers. This data is used to ensure the functionality of our website and to provide us with analysis and insights into the use of our services.

Amazon processes your data in accordance with the AWS Privacy Policy. It is recommended that you consult this policy for more information about how AWS uses your data.



BrainBox generators

BrainBox Generators is a service of the BrainBox Solutions GmbHto recognize all data protection-relevant services on a website and, among other things, to help with the creation of the privacy policy. No personal data is collected or processed in the process.