Data protection
We take the topic of data protection very seriously.
Here you will find important information regarding your personal data protection.
What is automatically stored by our hoster
Hosting operator and data storage location: cyon GmbH, Brunngässlein 12, 4052 Basel, Switzerland.
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. The access data includes:
- Name of the accessed website
- date and time of access
- amount of data transferred
- Message about successful retrieval
- Browser type and version, the user's operating system
- Referrer URL (the URL referring to our website, e.g. Google search)
- IP address and the requesting provider.
The provider uses the log data only for statistical analysis for the purpose of operation, security and optimization of the offer. However, the provider reserves the right to subsequently check the log data if there is a justified suspicion of unlawful use based on concrete indications.
All further information can be found here:
https://www.cyon.ch/legal/datenschutzerklaerung
https://www.cyon.ch/legal/agb
E-mail provider
Operator: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, United States of America.
Data location: Microsoft Cloud, at various locations around the world.
For our communication & organization (emails, appointments, online meetings, etc.) we use Microsoft's extensive Office 365 offering. When a contact request is made or an email is sent to us, this data is transmitted to Microsoft (USA). For the operation of e-mail/Office services, there are technical and legal requirements as to which data must be collected and stored. All details can be found on the operator's data protection page:
https://www.microsoft.com/de-ch/trust-center/privacy/gdpr-overview
Contao
Our website was implemented with the CMS Contao, as it is a proven open source system with high security and data protection standards. When visiting our website, no data is collected by Contao itself. Personal data is only collected if you provide it to us voluntarily, e.g. by submitting a contact form, subscribing to a newsletter, creating a profile, etc., and is stored and processed in accordance with the applicable data protection regulations. For technical reasons, it is necessary to set cookies under certain conditions:
A PHPSESSID cookie is set for session recognition (e.g., to mark pages already visited in purple) (expires after the session).
When using forms, a CSRF cookie is set to prevent CSRF attacks (expires after the session).
When using login areas, a FE_USER_AUTH is set to save the login (expires after the session)
Matomo
Operator/Provider: Media Motion AG, Arbonerstrasse 6, 9300 Wittenbach CH
Data storage location: cyon GmbH, Brunngässlein 12, 4052 Basel CH
In order to continuously optimize our website and the information and services it provides, we collect usage data from website visitors. However, we have deliberately decided against an American or advertising-financed solution and therefore use a Matomo Analytics operated in Switzerland.
This is offered by Media Motion AG and operated on the infrastructure of cyon GmbH. Matomo collects statistical data about the use of the website, such as browser information, browser type, referrer/exit pages, files accessed on our website, operating system, timestamp and/or clickstream data, usage data (views, clicks), IP address (we have activated IP anonymization and cookieless mode). Only data that is technically or legally necessary is collected. All other data is anonymized. We do not use this application to track individuals, create profiles or serve ads, so we do not share the collected data with third parties. Matomo has to set cookies for technical reasons, especially to be able to fend off so-called CSRF attacks, the MATOMO_SESSID is necessary. Depending on the activated functionality, it may also be possible that further cookies are set. All details can be found on this website:
https://matomo.org/faq/general/-faq_146/
How we handle personal data
Personal data is information with the help of which a person can be determined, i.e. information that can be traced back to a person. This includes the name, email address or telephone number. But also data about preferences, hobbies, memberships or which websites were viewed by someone count as personal data. Personal data is only collected, used and passed on by the provider if this is permitted by law or the users consent to the data collection.
How we protect your personal data
We have taken technical and organizational security measures to protect your personal data from loss, destruction, manipulation and unauthorized access. Our security measures are continuously revised and optimized in line with technological developments.
When you use a service on our website, your personal data is transmitted to us. To prevent this data from falling into the wrong hands, we encrypt it using the SSL (Secure Socket Layer) procedure. The SSL procedure is currently the most common and safest data transmission procedure on the Internet.
How the SSL procedure works
The SSL (Secure Socket Layer) method protects data that a customer sends over the Internet to a company's server. SSL provides a threefold protection:
- Your input to be transmitted is encrypted.
- It ensures that the form is returned only to the server from which it was opened.
- It is checked whether the data reaches its respective recipient completely and unchanged.
SSL is always used when you see a small (usually green) lock at the bottom left of your browser's status bar.
What we store during a contact request
When contacting us via our contact form, the information provided by the user is stored for the purpose of processing the request and in case follow-up questions arise. We do not pass on this data without your consent.
Integration of services and contents of third parties
It may happen that third-party content, such as videos from YouTube, maps from Google Maps, RSS feeds or graphics from other websites are integrated within this online offer. This always requires that the providers of this content (hereinafter referred to as "third-party providers") perceive the IP address of the user. Without the IP address, they could not send the content to the browser of the respective user. The IP address is thus necessary for the display of this content. We endeavor to use only such content whose respective providers use the IP address only for the delivery of the content. However, we have no influence if the third-party providers store the IP address, e.g. for statistical purposes. Insofar as this is known to us, we inform the users about it.
Why cookies may be stored on your computer
In order to make your visit to the website more attractive and to enable the use of certain functions, the website uses so-called cookies on various pages. These are small text files that are stored on your terminal device (e.g. cell phone, tablet, PC). Some of the cookies used are deleted after the end of the browser session, i.e. after closing your browser (so-called session cookies such as are you logged in?). Other cookies remain on your terminal device and make it possible to recognize your browser the next time you visit (so-called persistent cookies such as storing your login data on request). You can set your browser so that you are informed about the setting of cookies and can decide for yourself whether to accept them or generally exclude their acceptance. We hereby inform you that the functionality and user comfort can be limited without cookies. You can find more information here:
http://www.allaboutcookies.org/ge/cookies-verwalten/
Earmarked use of data
We observe the principle of purpose-related data use and collect, process and store your personal data only for the purposes for which you have provided it to us. Your personal data will not be passed on to third parties without your express consent, unless this is necessary for the provision of the service or the execution of the contract. We will also only disclose your data to state institutions and authorities entitled to receive such information within the scope of our statutory duty to provide information or if we are obliged to do so by a court decision.
We also take internal company data protection very seriously. Our employees and the service companies commissioned by us have been obligated by us to maintain confidentiality and to comply with the provisions of data protection law.
Right of information and revocation
You can obtain information about the data we have stored about you free of charge at any time without having to give a reason. You can have your data collected by us blocked, corrected or deleted at any time and object to anonymized or pseudonymized data collection and storage for the purpose of optimizing our website. You can also revoke your consent to the collection and use of your data at any time without giving reasons. To do so, please contact info@naturgefahr.ch. We will be happy to answer any further questions you may have about our privacy policy and the processing of your personal data. Please note that data protection regulations and data protection practices, e.g. at Google, can change continuously. It is therefore advisable and necessary to keep up to date with changes in legal regulations and the practices of companies, e.g. Google.
Still have questions or unsure?
Your trust is important to us. Therefore, we would like to be at your disposal regarding the processing of your personal data. If you have any questions that this privacy policy could not answer, please contact us via email at info@naturgefahr.ch.