Based on Article 13 of the Swiss Federal Constitution and the data protection regulations of the Confederation (Data Protection Act, DPA), every person has the right to protection of their privacy and protection against misuse of their personal data. We are particularly committed to the protection of personal data. The website of CyberWehr RMS GmbH is subject to Swiss data protection law, in particular the revised Federal Act on Data Protection (revDPA), as well as the possibly applicable General Data Protection Regulation (GDPR) of the European Union (EU). The EU recognizes the adequacy of Swiss data protection law to the European level of data protection.
In cooperation with our hosting providers, we endeavor to protect the databases as well as possible against external access, loss, misuse or falsification.
We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) can have security gaps. It is not possible to completely protect data from access by third parties.
General information:
The responsible body within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:
Company: CyberWehr RMS GmbH / Legal representative: Monika Wehr
Alte Landstrasse 109, 8803 Rüschlikon
Data protection contact details: +41 79 348 55 63 - info@cyberwehr-rms.ch
Personal data of our users is only collected if you provide it to us voluntarily or if this is necessary to provide a functional website as well as our content and services. Personal data is only collected and used with the user’s consent. Furthermore, no personal data is collected. Your personal data will only be processed beyond the scope of the legal permission if you have given your express consent.
We do not use your personal data for any other purposes unrelated to the core service and do not pass your data on to third parties.
Consulting and contract execution
Legal basis:
Art. 6 para. 1 lit. b GDPR/revDPA Art. 37. This also applies to processing operations that are necessary for the implementation of pre-contractual measures.
Category of recipients:
Public authorities in the event of overriding legal regulations, external service providers or other contractors.
Third country transfers:
No processors from outside the European Union are used.
Data deletion/storage period:
The duration of data storage depends on the statutory retention periods and is generally 10 years
Specific information on further data processing procedures
Affected data: | Data provided for the execution of the contract; if applicable, additional data for processing based on your express consent. |
Purpose of processing: | Contract execution, including offers, orders, sales and invoicing, quality assurance. |
Categories of recipients: | Public authorities in the event of overriding legal regulations. |
Third country transfers: | No contract processors outside the European Union are used. |
Duration of data storage: | The duration of data storage depends on the statutory retention obligations and is generally 10 years. |
The personal data of the data subject will be deleted or blocked as soon as the purpose of storage no longer applies. Storage may also take place if this has been provided for by the European or national legislator in Union regulations, laws or other regulations to which the controller is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or performance of a contract.
As a user, you have the possibility and the right at any time in accordance with revDSG and GDPR to request information, access, rectification, the revocation of consent to the processing of personal data or the deletion of the data stored about you.
Right to lodge a complaint with a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the member state of your place of residence, your place of work or the place of the alleged infringement, if you consider that the processing of personal data relating to you violates the revDSG or the GDPR.
The supervisory authority with which the complaint has been lodged shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy under Art. 78 GDPR.
Right to confirmation
Every data subject has the right to request confirmation as to whether personal data relating to them is being processed. Contact the data protection officer to exercise this right to confirmation.
Right to access
Any person affected by the processing of personal data has the right to obtain information about the personal data stored about them and a copy of this information at any time. In any case, the person will be informed of the following information:
Furthermore, the data subject has a right to information as to whether personal data have been transferred to a third country or to an international organisation. If this is the case, the data subject also has the right to obtain information about the appropriate guarantees in connection with the transfer.
Contact the data protection officer to exercise the right to access.
Right to rectification
Any person affected by the processing of personal data has the right to request the immediate rectification of inaccurate personal data concerning them. Furthermore, the data subject has the right to request the completion of incomplete personal data, including by means of a supplementary declaration, taking into account the purposes of the processing.
Contact the data protection officer to exercise the right to rectification.
Right to erasure (right to be forgotten)
Any person affected by the processing of personal data has the right to request the controller of this website to erase the personal data concerning them immediately, provided that one of the following reasons applies and insofar as the processing is not necessary:
If one of the above reasons applies and you would like to have personal data stored by the operator of this website erased, you can contact our data protection officer at any time. The data protection officer of this website will arrange for the erasure request to be complied with immediately.
Right to restriction of processing
Any person affected by the processing of personal data has the right to request the controller of this website to restrict processing if one of the following conditions is met:
If one of the above conditions is met and you would like to request the restriction of personal data stored by the operator of this website, you can contact our data protection officer at any time. The data protection officer of this website will arrange for the restriction of processing.
Right to data portability
Any person affected by the processing of personal data has the right to receive the personal data concerning them in a structured, commonly used and machine-readable format. They also have the right to have this data transmitted to another controller if the legal requirements are met.
At your request, the personal data can be transmitted directly from the controller to another controller, provided that this is technically feasible and does not affect the rights and freedoms of other persons.
Contact the data protection officer to exercise the right to data portability.
Right to object
Any person affected by the processing of personal data has the right to object at any time to the processing of personal data concerning them for reasons arising from their particular situation.
In the event of an objection, we will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing that override the interests, rights and freedoms of the data subject, or if the processing serves to assert, exercise or defend legal claims.
Contact the data protection officer to exercise the right to object.
Right to withdraw consent under data protection law
Any person affected by the processing of personal data has the right to withdraw consent to the processing of personal data at any time. If you would like to assert your right to withdraw your consent, you can contact our data protection officer at any time.
Specific information on the use of video conferencing/webinar software
Affected data: | Data provided for the use of video conferencing software or webinar software (in particular first name, last name, e-mail address; optional: audio transmission; optional: image transmission; optional: questions when using chat functions); processing of data from your system to the extent technically necessary to establish a connection with the provider of the conference software |
Purpose of processing: | Conducting video conferences or webinars. |
Categories of recipients: | Public authorities in the event of overriding legal regulations. External service providers or other contractors, including for data processing and hosting. Other external bodies if the data subject has given their consent or a transfer is permitted due to an overriding interest. |
Third country transfers: | Processors outside the European Union are used (here: United States of America); standard contractual clauses have been concluded with the service provider accordingly. |
Duration of data storage: | Video conferences are only recorded with the prior documented consent of the participants. The technical data will be deleted if they are no longer required. The duration of data storage also depends on the statutory retention obligations and is generally 10 years. |
Contact form and e-mail contact
There is a contact form on our website that can be used for electronic contact. If a user takes advantage of this option, only the data entered in the input mask that you as a user provide to us will be transmitted to us and stored. The processing of personal data from the input mask serves us solely to process the contact.
Use of own “cookies”
This website uses its own “cookies” to increase user-friendliness. “Cookies” are data records that are sent from the web server to the user’s browser and stored there for later retrieval. No personal data whatsoever is stored in our own “cookies”. You can generally prevent the use of “cookies” if you prohibit the storage of “cookies” in your browser.
Usage data server log files
The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of concrete indications of illegal use.
SSL/TSL encryption
This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.
The call to LinkedIn, LinkedIn, 2029 Stierlin Courtm, Mountain View, CA 94043 USA, can be recognized by the “in” symbol on a blue background. When you activate our “in” button as part of the 2-click solution, a connection is established with the LinkedIn server, and the LinkedIn plugin is reloaded on the respective website. The content of the “in” button is transmitted directly from LinkedIn to your browser and integrated into the website. It is possible that your IP address will be transmitted to LinkedIn in the USA in this way. The purpose and scope of the data collection and the further processing and use of the data by LinkedIn, as well as your rights and setting options to protect your privacy, can be found in LinkedIn’s data protection information (http://www.linkedin.com/legal/privacy-policy) for the “in” button. If you are a LinkedIn member and do not want LinkedIn to collect data about you via our website when the “in” button is activated and link it to your member data stored on LinkedIn, you must log out of LinkedIn before visiting our website.
The call to XING, XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany, can be recognized by the “x” or “xing” symbol on a green background. When you activate our “XING” button as part of the 2-click solution, a connection is established with the XING server, and the XING share button functions (in particular the calculation/display of the counter value) are reloaded on the respective website. XING does not store any personal data from you about the call to this website. In particular, XING does not store any IP addresses. Your usage behavior is also not evaluated via the use of cookies in connection with the “XING Share Button”. The current data protection information on the “XING Share Button” and supplementary information can be found on this website: https://www.xing.com/app/share?op=data_protection.
Further information and contacts
In addition, you can assert your claims to information, correction or deletion or to restriction of processing or the exercise of your right to object to processing and the right to data portability at any time. Contact us by email or letter. You also have the right to contact the data protection supervisory authority with complaints.
Rüschlikon, May 5, 2021
CyberWehr RMS GmbH
Alte Landstrasse 109
8803 Rüschlikon (ZRH), Switzerland
2020 © All rights reserved by CyberWehr
