Data protection
Status: 1 November 2024
In this privacy policy, we inform you about what personal and company data we collect and store from you when you use our website and how we use this data, as well as with whom we may share this data. Personal data is always processed in accordance with the applicable data protection regulations (nFADP and/or GDPR).
In addition, you will receive information on what rights you have vis-à-vis us with regard to the use of your data.
We take the protection of your personal data very seriously!
Overall responsibility, owner
Krummenacher Treuhand GmbH
Pia Krummenacher
Grellingerstrasse 77
4052 Basel
+41 61 273 81 20
info@krummenacher-treuhand.ch
Scope
Based on Article 13 of the Swiss Federal Constitution and the data protection provisions of the Swiss Confederation (Data Protection Act, nFADP), and the EU Data Protection Regulation (GDPR), every person has the right to protection of their privacy as well as protection against misuse of their personal data.
We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration. This privacy statement is intended to inform the users of this website about the nature, scope and purpose of the collection and use of personal data by the Krummenacher Treuhand GmbH.
This website can generally be used without entering personal data. If we do, we process personal data in accordance with Swiss data protection law (nFADP) and the European Union’s General Data Protection Regulation (GDPR). We draw your attention expressly to the fact that data transmission on the Internet may be subject to security vulnerabilities. It is not possible to provide complete protection against access by third parties.
What personal data do we obtain?
We process personal data (data that directly or indirectly identifies natural persons) that we have received from you or involved third parties within the scope of the business relationship or that we collect ourselves. This includes in particular your name, address, e-mail address, telephone numbers (landline and/or mobile), as well as – if necessary – your account details and VAT charges.
Personal data also includes information about your use of our website. In this context, we collect information about your visits to our website. This is usually done through the use of log files and cookies. You can find more information about log files and cookies below.
For what purpose do we collect personal data?
We only use your personal data to provide the services you have requested.
How long is the personal data stored?
We process and store your personal data for as long as it is necessary for the fulfilment of our contractual and legal obligations or otherwise for the purposes pursued with the processing, as well as beyond that in accordance with the legal storage and documentation obligations.
To whom do we disclose personal data?
We do not disclose your personal data to third parties unless you have consented to the disclosure of data or we are entitled or obliged to disclose data due to legal provisions and/or official or court orders. In particular, this may involve the disclosure of information for the purposes of criminal prosecution, to avert danger or to enforce intellectual property rights.
What rights do you have regarding your data?
You have the right to obtain information about the origin, recipient and purpose of your stored personal data free of charge at any time. It also gives you the right to request the correction, blocking or deletion of this data. For this purpose, as well as for further questions on the subject of data protection, you can contact us at any time at the address given in the legal notice. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
Right to object to the collection of data in specific cases and to direct marketing (Art. 21 GDPR)
If data processing is carried out on the basis of GDPR Art. 6 (1) letter e or f , you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions. The respective legal basis on which processing is based can be found in this data protection declaration. If you object, we will no longer process your personal data concerned unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims (objection under Article 21(1) of the GDPR).
If your personal data is processed for the purpose of direct advertising, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling, insofar as it is associated with such direct marketing. If you object, your personal data will subsequently no longer be used for the purpose of direct marketing (objection pursuant to Art. 21 (2) of the GDPR).
Right of appeal to the competent supervisory authority
In the event of breaches of the nFADP or the GDPR, data subjects shall have a right of appeal to a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged breach. The right of appeal is without prejudice to any other administrative or judicial remedy.
Right to data portability
You have the right to have data that we process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.
SSL and TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Handling contact details
If you send us enquiries via the contact form, your details from the enquiry form, including the contact details you have provided there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We will not share this data without your consent.
The data entered in the contact form is therefore processed exclusively on the basis of your consent (Art. 6 para. 1 letter a of the GDPR). You can revoke this consent at any time. All you need to do is send us an informal message by e-mail. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to store it or if the purpose for storing the data no longer applies (e.g. after we have completed processing your enquiry). Mandatory legal provisions – in particular retention periods – remain unaffected.
Enquiries by e-mail and telephone
If you contact us by e-mail or telephone, your enquiry including all resulting personal data (name, enquiry) will be stored and processed by us for the purpose of processing your request. We will not share this data without your consent.
This data is processed on the basis of Art. 6 Para. 1 letter b of the GDPR, insofar as your request is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 (1) letter a of the GDPR) and/or on our legitimate interests (Art. 6 (1) letter f of the GDPR), as we have a legitimate interest in the effective processing of requests addressed to us.
The data you send us via contact enquiries will remain with us until you request us to delete it, revoke your consent to store it or if the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions – in particular statutory retention periods – remain unaffected.
Cookies
The internet pages in some cases use so-called cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies are used to make our website more user-friendly, effective and secure. Cookies are small text files that are filed on your computer and stored by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies enable us to recognise your browser on your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.
We use the consent tool “Real Cookie Banner” to manage the cookies and similar technologies (tracking pixels, web beacons, etc.) used and the related consents. Details on how “Real Cookie Banner” works can be found at https://devowl.io/de/rcb/datenverarbeitung.
The legal basis for the processing of personal data in this context is Art. 6 para. 1 lit. c GDPR and Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents.
The provision of the personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.
Server log files (access data)
This site is hosted by Cyon GmbH on servers in Basel (CH). We work closely with our hosting providers to protect the databases as far as possible from unauthorised access, loss, misuse or falsification. When you access our websites, the following data is stored in log files: IP address, date, time, browser request and general information transmitted about the operating system or browser. This usage data forms the basis for statistical, anonymous evaluations so that trends can be identified which we can use to improve our services accordingly.
The owner of this website has concluded a data processing agreement (DPA) with the hosting partner. This can be viewed on request.
Changes to our privacy policy
We reserve the right to adapt this data protection declaration so that it always complies with the current legal requirements or in order to implement changes to our services in the data protection declaration, e.g. when introducing new services. The new privacy policy will then apply to your next visit.