Data pro­tec­tion decla­ra­ti­on

DATA PROTECTION DECLARATION

Your per­so­nal data is important to us. The pur­po­se of this data pro­tec­tion decla­ra­ti­on is to inform you in advan­ce about the per­so­nal data we coll­ect and pro­cess from you and the pur­po­se for which it is pro­ces­sed in accordance with the revi­sed Swiss Fede­ral Act on Data Pro­tec­tion (Data Pro­tec­tion Act, DPA) and – if appli­ca­ble in indi­vi­du­al cases – the Euro­pean Gene­ral Data Pro­tec­tion Regu­la­ti­on (GDPR).

RESPONSIBLE PARTY

Altefco AG, Stocken­stras­se 3, 8362 Bal­ters­wil, Switz­er­land, is respon­si­ble for data pro­ces­sing and rela­ted issues. For que­sti­ons and con­cerns, plea­se cont­act us at the fol­lo­wing email address: altefco@altefco.ch or by tele­pho­ne on +41 71 973 90 30.

WITCH PERSONAL DATA DO WE COLLECT OR PROCESS?

We gene­ral­ly recei­ve appli­cants’ names, address details, date of birth, CVs and appli­ca­ti­on docu­ments.

We coll­ect stan­dard employee master data (name, birth date, address, social secu­ri­ty num­ber, pho­to, bank details, cont­act details).

We coll­ect full names, addres­ses, tele­pho­ne num­bers, email addres­ses, as well as payment details and infor­ma­ti­on from our cus­to­mers and busi­ness part­ners.

Whe­re per­mit­ted and neces­sa­ry, we also use infor­ma­ti­on from publicly acces­si­ble sources (e.g., debt coll­ec­tion regi­sters, land regi­sters, com­mer­cial regi­sters, press, inter­net) or recei­ve such infor­ma­ti­on from aut­ho­ri­ties or third par­ties.

We also auto­ma­ti­cal­ly coll­ect data rela­ted to the use of our web­site, www.altefco.ch. We use coo­kies on our web­site which are essen­ti­al for the cor­rect func­tio­ning of the web­site and which are only stored in the user’s brow­ser (e.g. PHPSESSIONID or cur­rent lan­guage (WPML)). We may also coll­ect, for exam­p­le, your IP address, the MAC address of your smart­phone or com­pu­ter, infor­ma­ti­on about your device and set­tings, the date and time of your visit, pages and con­tent acces­sed, func­tions used, refer­ring web­sites and loca­ti­on data.

The­re is a cont­act form for vacan­ci­es. The web­site uses a data­ba­se to store the data pro­vi­ded by appli­cants (name, email).

 

WHAT IS THE PURPOSE OF PROCESSING YOUR PERSONAL DATA AND WHY DO WE NEED IT?

We only coll­ect the per­so­nal data that we real­ly need for the ope­ra­ti­on of our com­pa­ny and busi­ness rela­ti­on­ships.

We use the per­so­nal data pro­vi­ded by appli­cants to opti­mi­se our recruit­ment pro­cess for vacant posi­ti­ons.

We use the per­so­nal data of our cus­to­mers and busi­ness part­ners for the pro­ces­sing of orders and for adver­ti­sing pur­po­ses in order to keep you up to date. If you no lon­ger wish to recei­ve adver­ti­sing from us, you can opt out of the use of your data for adver­ti­sing pur­po­ses at any time and we will no lon­ger send you mar­ke­ting mate­ri­al.

We may also requi­re per­so­nal data for the asser­ti­on of our legal claims and/or for defence in con­nec­tion with legal dis­pu­tes and offi­ci­al pro­ce­e­dings.

Inso­far as the GDPR applies in indi­vi­du­al cases, we base the pro­ces­sing of your per­so­nal data in par­ti­cu­lar on the fol­lo­wing legal bases:

  • pro­ces­sing on the basis of con­sent given by you as the data sub­ject to the pro­ces­sing of your per­so­nal data for one or more spe­ci­fic pur­po­ses (Art. 6 para. 1 lit. a GDPR), e.g., via a cor­re­spon­ding decla­ra­ti­on on our web­site (Art. 6 para. 1 lit. a and Art. 9 para. 2 lit. a GDPR);
  • pro­ces­sing is neces­sa­ry for the per­for­mance of a con­tract to which the data sub­ject is par­ty or in order to take steps at the request of the data sub­ject pri­or to ente­ring into a con­tract (Art. 6 para. 1 lit. b GDPR);
  • pro­ces­sing is neces­sa­ry for com­pli­ance with a legal obli­ga­ti­on to which the con­trol­ler is sub­ject (Art. 6 para. 1 lit. c GDPR) or is neces­sa­ry in order to pro­tect the vital inte­rests of the data sub­ject or of ano­ther natu­ral per­son (Art. 6 para. 1 lit. d GDPR);
  • pro­ces­sing is neces­sa­ry for the pur­po­ses of the legi­ti­ma­te inte­rests pur­sued by us or by third par­ties as descri­bed in the pro­ces­sing pur­po­ses, name­ly for com­mu­ni­ca­ti­on with you or third par­ties, to ope­ra­te our web­site, to impro­ve our elec­tro­nic offers and regi­stra­ti­on for cer­tain offers and ser­vices, for secu­ri­ty pur­po­ses, for com­pli­ance with Swiss law and inter­nal regu­la­ti­ons for our risk manage­ment and cor­po­ra­te gover­nan­ce and for other pur­po­ses such as trai­ning and edu­ca­ti­on, admi­ni­stra­ti­on, evi­dence and qua­li­ty assu­rance, orga­ni­sa­ti­on, imple­men­ta­ti­on and fol­low-up of events and for the pro­tec­tion of other legi­ti­ma­te inte­rests (Art. 6 para. 1 lit. f GDPR).

THIRD-PARTY PERSONAL DATA

If you pro­vi­de us with data from third par­ties (such as your own cus­to­mers), plea­se ensu­re that the­se per­sons have been infor­med in advan­ce about the dis­clo­sure of their per­so­nal data to us or have sub­se­quent­ly con­sen­ted to this, that the data is cor­rect and that the­se per­sons are also awa­re of the con­tent of this data pro­tec­tion decla­ra­ti­on.

TRANSFER OF DATA TO THIRD PARTIES OR ABROAD

We only dis­c­lo­se your per­so­nal data to third par­ties to the ext­ent that this is neces­sa­ry for the ful­film­ent of the con­trac­tu­al rela­ti­on­ship with you and only for the sta­ted pur­po­ses. Should a legal requi­re­ment ari­se, your per­so­nal data may be shared with dome­stic and inter­na­tio­nal aut­ho­ri­ties, as well as courts. In some cases, your address may be dis­c­lo­sed to a sub­con­trac­tor for the pur­po­se of deli­ve­ring goods.

We also use a ran­ge of other ser­vice pro­vi­ders (such as sup­pliers, con­trac­tu­al part­ners, banks, and insu­rance com­pa­nies) as well as our con­trac­ted pro­ces­sors (such as IT ser­vice pro­vi­ders, IT pro­vi­ders, adver­ti­sing agen­ci­es, and prin­ters).

The pho­tos and con­tent on our web­site are acces­si­ble to the public.

Data is gene­ral­ly trans­mit­ted and for­ward­ed to the afo­re­men­tio­ned reci­pi­en­ts in Switz­er­land and within Euro­pe.

In rare instances, if the reci­pi­ent is situa­ted in a coun­try lack­ing suf­fi­ci­ent sta­tu­to­ry data pro­tec­tion regu­la­ti­ons and is not alre­a­dy bound by a legal­ly reco­g­nis­ed frame­work for safe­guar­ding data, and we are unable to rely on an exemp­ti­on pro­vi­si­on, we requi­re the reci­pi­ent to adhe­re to the rele­vant data pro­tec­tion mea­su­res through a con­trac­tu­al agree­ment. For this pur­po­se, we use the revi­sed stan­dard con­trac­tu­al clau­ses of the Euro­pean Com­mis­si­on (as of June 2021). An excep­ti­on may ari­se, espe­ci­al­ly in the con­text of legal pro­ce­e­dings abroad, as well as in situa­tions invol­ving signi­fi­cant public inte­rests or when the dis­clo­sure is neces­sa­ry for con­tract ful­film­ent. This excep­ti­on may also app­ly if you have pro­vi­ded con­sent or if the data in que­sti­on has been publicly acces­si­ble and you have not objec­ted to its pro­ces­sing.

HOW LONG DO WE STORE YOUR PERSONAL DATA?

We only store per­so­nal data of appli­cants until the vacant posi­ti­on has been fil­led or if it has been express­ly agreed that the docu­ments should be retai­ned by us in the event that a sui­ta­ble posi­ti­on beco­mes vacant again. We then store your per­so­nal data for as long as the cur­rent con­trac­tu­al rela­ti­on­ship exists and also obser­ve the sta­tu­to­ry reten­ti­on peri­ods. Fol­lo­wing the con­clu­si­on of a busi­ness part­ner­ship, we will retain per­so­nal data for as long as neces­sa­ry for the pur­po­ses of asser­ting or defen­ding against any poten­ti­al claims. Once your per­so­nal data is no lon­ger requi­red for the afo­re­men­tio­ned pur­po­ses, it will be dele­ted or anony­mi­sed whe­re pos­si­ble.

HOW DO WE ENSURE DATA SECURITY?

We have imple­men­ted various tech­ni­cal and orga­nizatio­nal mea­su­res to safe­guard the secu­ri­ty of your per­so­nal data when trans­mit­ted to us. Our employees recei­ve regu­lar trai­ning, ins­truc­tion and awa­re­ness on data secu­ri­ty and the handling of per­so­nal data.

WHAT ARE YOUR RIGHTS?

You have the right to object to the pro­ces­sing of your data at any time, espe­ci­al­ly in rela­ti­on to adver­ti­sing pur­po­ses. Pro­vi­ded the­re are no legal pro­vi­si­ons or a legi­ti­ma­te inte­rest on our part to the con­tra­ry, you also have the fol­lo­wing rights:

  • Right to infor­ma­ti­on about exi­sting per­so­nal data;
  • Right to cor­rec­tion of incor­rect or incom­ple­te per­so­nal data;
  • Right to era­su­re or anony­mi­sa­ti­on or rest­ric­ted pro­ces­sing of your per­so­nal data;
  • Right to recei­ve the spe­ci­fic per­so­nal data in a struc­tu­red, com­mon­ly used and machi­ne-rea­da­ble for­mat;
  • Right to revo­ke con­sent given at any time with effect for the future.

If you wish to assert your rights, we may ask you to enc­lo­se a cor­re­spon­ding pro­of of iden­ti­ty with the respec­ti­ve requests.

It is important to note that the rights men­tio­ned abo­ve may have cer­tain rest­ric­tions. We are also sub­ject to legal rest­ric­tions (such as reten­ti­on obli­ga­ti­ons) or, for exam­p­le, we may have an over­ri­ding legi­ti­ma­te inte­rest in rest­ric­ting your rights.

The com­pe­tent data pro­tec­tion aut­ho­ri­ty in Switz­er­land is the Fede­ral Data Pro­tec­tion and Infor­ma­ti­on Com­mis­sio­ner (https://edoeb.admin.ch).

NEWSLETTER

We use the MailChimp app to send our news­let­ter elec­tro­ni­cal­ly. MailChimp is cer­ti­fi­ed under the Pri­va­cy Shield Frame­work and thus ensu­res com­pli­ance with the Euro­pean level of data pro­tec­tion.

The deli­very ser­vice pro­vi­der may use reci­pi­ent data in pseud­ony­mi­sed form, i.e. wit­hout assig­ning it to a user, to opti­mi­se or impro­ve its own ser­vices, e.g. to tech­ni­cal­ly opti­mi­se the sen­ding and pre­sen­ta­ti­on of the news­let­ter or for sta­tis­ti­cal pur­po­ses. Howe­ver, the deli­very ser­vice pro­vi­der may not use the data rela­ting to our news­let­ter reci­pi­en­ts to wri­te to them direct­ly, nor are the­se data given to a third par­ty.

The pri­va­cy statement of The Rocket Sci­ence Group LLC, 675 Pon­ce De Leon Ave NE Suite 5000, Atlan­ta, GA 30308, United Sta­tes, can be view­ed here: https://mailchamp.com/legal/privacy/

SOCIAL MEDIA

To effi­ci­ent­ly deli­ver important infor­ma­ti­on about our com­pa­ny and pro­ducts, we uti­li­se social media plug-ins on our web­site. The­se can be iden­ti­fi­ed by the logos of the respec­ti­ve com­pa­nies dis­play­ed as but­tons. We use Lin­ke­dIn in par­ti­cu­lar.

When you click on the com­pa­ny logos, you will be redi­rec­ted to the web­sites of the respec­ti­ve ope­ra­tors, who may regi­ster that you have been to our web­site and use this infor­ma­ti­on for their own pur­po­ses. This pro­ces­sing is bey­ond our con­trol and is the respon­si­bi­li­ty of the respec­ti­ve ope­ra­ting com­pa­ny. We do not recei­ve any infor­ma­ti­on about you from the ope­ra­ting com­pa­nies. Plea­se refer to the appli­ca­ble data pro­tec­tion decla­ra­ti­ons of the respec­ti­ve ope­ra­ting com­pa­nies.

COOKIES/TRACKING WHEN YOU VISIT OUR WEBSITE

When using our web­site, coo­kies are used to iden­ti­fy your end device and enable us to reco­g­ni­se when the end device returns to our web­site. You can accept all coo­kies or mana­ge the coo­kie set­tings indi­vi­du­al­ly on the web­site if you do not wish to do so or only want to accept essen­ti­al coo­kies that are neces­sa­ry for the use of our web­site. If you par­ti­al­ly or com­ple­te­ly block coo­kies, cer­tain func­tions (e.g. shop­ping bas­ket, orde­ring pro­ces­ses) may no lon­ger work and you may no lon­ger be able to use our web­site to its full ext­ent.

We use Goog­le Ana­ly­tics or simi­lar ser­vices on our web­site. The­se are ser­vices pro­vi­ded by third par­ties, which may be loca­ted in any coun­try in the world. In the case of Goog­le Ana­ly­tics, it is Goog­le Ire­land (based in Ire­land), which reli­es on Goog­le LLC (based in the USA) as a pro­ces­sor (both “Goog­le”), www.google.com), with which we can mea­su­re and ana­ly­se the use of our web­site (not on a per­so­nal basis). Per­ma­nent coo­kies are also used for this pur­po­se, which are set by the ser­vice pro­vi­der.

We use Goog­le Ana­ly­tics 4. It does not log or store indi­vi­du­al IP addres­ses. Only the fol­lo­wing data is coll­ec­ted: City (incl. lon­gi­tu­de and lati­tu­de), brow­ser minor ver­si­on, brow­ser user agent string, device brand, device model, device name, ope­ra­ting system minor ver­si­on, plat­form minor ver­si­on, screen reso­lu­ti­on.

We have con­fi­gu­red the ser­vice in such a way that your IP addres­ses are shor­ten­ed by Goog­le in Euro­pe befo­re being for­ward­ed to the USA and the­r­e­fo­re can­not be tra­ced back. For this pur­po­se, we have dis­ab­led the “Data trans­fer” and “Signals” set­tings. Alt­hough we can assu­me that the infor­ma­ti­on we share with Goog­le is not per­so­nal data for Goog­le, it is pos­si­ble that Goog­le can draw con­clu­si­ons about your iden­ti­ty from this data for its own pur­po­ses, crea­te per­so­nal pro­files and link this data to your Goog­le accounts. If you have regi­stered with the ser­vice pro­vi­der yours­elf, they will also have a record of you. The pro­ces­sing of your per­so­nal data by the ser­vice pro­vi­der is then the respon­si­bi­li­ty of the ser­vice pro­vi­der in accordance with its data pro­tec­tion pro­vi­si­ons. The ser­vice pro­vi­der only pro­vi­des us with infor­ma­ti­on about how our web­site is used (no infor­ma­ti­on about you per­so­nal­ly).

AMENDMENT RIGHT OF THIS DATA PROTECTION DECLARATION

We reser­ve the right to amend this data pro­tec­tion decla­ra­ti­on at any time wit­hout pri­or noti­ce. The cur­rent ver­si­on available on our web­site shall app­ly.