Privacy Policy

NOTE: This a translation of our German Privacy Policy, which we licensed from Datenschutzpartner. This translation serves only as a help for english speaking visitors. In case of discrepancies between the English and German version, the German version shall take precedence and be considered legally binding.

With this privacy policy, we provide information about the processing of personal data in connection with our activities and operations, including our website under the domain name jeffreywigger.ch. In particular, we explain for what purposes, how, and where we process personal data. We also inform individuals about their rights regarding the processing of their data.

For specific or additional activities and operations, we may publish further privacy policies or other data protection related information.

We are subject to Swiss data protection law as well as any applicable foreign data protection regulations, particularly those of the European Union (EU) under the General Data Protection Regulation (GDPR).

The European Commission recognized with its decision of July 26, 2000 that Swiss data protection law ensures an adequate level of protection. In a report dated January 15, 2024, the European Commission reaffirmed this adequacy decision.

1. Contact Information

Responsibility for the processing of personal data:

Jeffrey Wigger
Weissensteinstrasse 49B
6007 Bern
Schweiz

contact@jeffreywigger.ch

In individual cases, third parties may be responsible for the processing of personal data, or there may be joint responsibility with third parties.

2. Terms and Legal Bases

2.1 Terms

Data Subject: A natural person whose personal data we process.

Personal Data: All information relating to an identified or identifiable natural person.

Particularly Sensitive Personal Data: Data concerning trade union, political, religious, or philosophical views and activities; data related to health, intimate life, or affiliation with an ethnic group or race; genetic data; biometric data that uniquely identifies a natural person; data on criminal and administrative sanctions or prosecutions; and data on social assistance measures.

Processing: Any handling of personal data, regardless of the means and methods used, including among others querying, matching, modifying, archiving, storing, retrieving, disclosing, obtaining, recording, collecting, deleting, revealing, sorting, organizing, saving, altering, distributing, linking, destroying, and using personal data.

European Economic Area (EEA): Member states of the European Union (EU), as well as the Principality of Liechtenstein, Iceland, and Norway.

2.2 Legal Bases

We process personal data in accordance with the Swiss data protection law, in particular the Federal Act on Data Protection (Data Protection Act, DPA) and the Ordinance on Data Protection (Data Protection Ordinance, DPO).

We process personal data – insofar as and to the extent that the European General Data Protection Regulation (GDPR) is applicable – in accordance with at least one of the following legal bases:

• Art. 6 para. 1 lit. b GDPR for the necessary processing of personal data to fulfill a contract with the data subject and to carry out pre-contractual measures.
• Art. 6 para. 1 lit. f GDPR for the necessary processing of personal data in order to protect legitimate interests, including the legitimate interests of third parties, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject. Such interests are in particular the permanent, humane, safe and reliable execution of our activities and operations, the guarantee of information security, protection against misuse, the enforcement of our own legal claims and compliance with Swiss law.
• Art. 6 para. 1 lit. c GDPR for the necessary processing of personal data to fulfill a legal obligation to which we are subject under potentially applicable law in member states of the European Economic Area (EEA).
• Art. 6 para. 1 lit. e GDPR for the necessary processing of personal data for the fulfillment of a task carried out in the public interest.
• Art. 6 para. 1 lit. a GDPR for the processing of personal data with the consent of the data subject.
• Art. 6 para. 1 lit. d GDPR for the necessary processing of personal data to protect the vital interests of the data subject or another natural person.
• Art. 9 para. 2 ff. GDPR for the processing of special categories of personal data, in particular with the consent of the data subjects.

The European General Data Protection Regulation (GDPR) refers to the processing of personal data as the processing of personally identifiable data and the processing of particularly sensitive personal data as the processing of special categories of personal data (Art. 9 GDPR).

3. Type, Scope, and Purpose of Personal Data Processing

We process the personal data that is necessary to carry out our activities and operations in a sustainable, humane, secure, and reliable manner. The processed personal data may particularly fall into the categories of browser and device data, content data, communication data, metadata, usage data, master data including inventory and contact data, location data, transaction data, contract data, and payment data.

We also process personal data that we receive from third parties, obtain from publicly accessible sources, or collect in the course of our activities and operations, insofar as such processing is legally permitted.

We process personal data where necessary with the consent of the affected individuals. In many cases, we may process personal data without consent, for example, to fulfill legal obligations or to safeguard overriding interests. We may also ask affected individuals for their consent even when their consent is not required.

We process personal data for the duration necessary for the respective purpose. We anonymize or delete personal data, particularly in accordance with statutory retention and limitation periods.

4. Disclosure of Personal Data

We may disclose personal data to third parties, have it processed by third parties, or process it jointly with third parties. Such third parties are, in particular, specialized providers whose services we use.

For example, we may disclose personal data to banks and other financial service providers, authorities, educational and research institutions, consultants and lawyers, interest groups, IT service providers, cooperation partners, credit and financial information agencies, logistics and shipping companies, marketing and advertising agencies, media, organizations and associations, social institutions, telecommunications companies, and insurance providers.

5. Communication

We process personal data to communicate with individuals as well as with authorities, organizations, and companies. In doing so, we primarily process data that a data subject provides to us when contacting us, for example, by postal mail or email. We may store such data in an address book or similar tools.

Third parties who transmit data about other individuals to us are required to independently ensure the data protection of those affected individuals. In particular, they must ensure that such data is accurate and may be lawfully transmitted.

6. Data Security

We take appropriate technical and organizational measures to ensure data security appropriate to the respective risk. With our measures, we specifically ensure the confidentiality, availability, traceability, and integrity of the processed personal data, although we cannot guarantee absolute data security.

Access to our website and other online presence is secured using transport encryption (SSL / TLS, particularly with Hypertext Transfer Protocol Secure, abbreviated HTTPS). Most browsers warn users before visiting websites without transport encryption.

Our digital communication is subject – as is generally the case with all digital communication – to mass surveillance without cause or suspicion by security authorities in Switzerland, the rest of Europe, the United States of America (USA), and other countries. We have no direct influence over the corresponding processing of personal data by intelligence services, law enforcement agencies, and other security authorities. We also cannot rule out the possibility that a data subject may be specifically monitored.

7. Personal Data Abroad

We primarily process personal data in Switzerland and the European Economic Area (EEA).However, we may also export or transfer personal data to other countries, in particular in order to process it or have it processed there.

We may export personal data to all countries on Earth and elsewhere in the universe, provided that the legal framework in those locations ensures adequate data protection in accordance with the decision of the Swiss Federal Council and – insofar as the General Data Protection Regulation (GDPR) applies – also in accordance with the decision of the European Commission.

We may transfer personal data to countries whose legal framework does not ensure adequate data protection, provided that data protection is ensured by other means, particularly based on standard data protection clauses or other suitable safeguards. Exceptionally, we may export personal data to countries without adequate or appropriate data protection if the special legal data protection requirements are met, for example the express consent of the data subjects or a direct connection with the conclusion or execution of a contract. Upon request, we will be happy to provide data subjects with information about any guarantees or provide a copy of any guarantees.

8. Rights of Affected Individuals

8.1 Data Protection Claims

We grant affected individuals all rights in accordance with applicable data protection laws. In particular, affected individuals have the following rights:

• Access: Affected individuals can request information on whether we process personal data about them and, if so, which personal data is involved. Data subjects also receive the information required to assert their data protection claims and ensure transparency. This includes the processed personal data as such, but also information on the purpose of processing, the duration of storage, any disclosure or export of data to other countries and the origin of the personal data.
• Correction and Restriction: Affected individuals can correct inaccurate personal data, complete incomplete data, and request restrictions on the processing of their data.
• Deletion and Objection: Affected individuals can have their personal data deleted (“right to be forgotten”) and object to the processing of their data with effect for the future.
• Data Release and Transfer: Affected individuals may request the disclosure of personal data or the transfer of their data to another responsible party.

We may defer, restrict or refuse the exercise of the rights of data subjects to the extent permitted by law. We may inform data subjects of any requirements that must be met in order to exercise their rights under data protection law. For example, we may refuse to provide information in whole or in part with reference to confidentiality obligations, overriding interests or the protection of other persons. For example, we may also refuse to delete personal data in whole or in part, in particular with reference to statutory retention obligations.

In exceptional cases, we may impose costs for the exercise of rights. Affected individuals will be informed in advance of any potential costs.

We are required to take appropriate measures to identify affected individuals who request information or assert other rights. Affected individuals are obligated to cooperate in this process.

8.2 Legal Protection

Data subjects have the right to enforce their data protection claims by taking legal action or to lodge a complaint with a data protection supervisory authority.

The data protection supervisory authority for private controllers and federal agencies in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC).

European data protection supervisory authorities are organized as members of the European Data Protection Board (EDPB). In some member states of the European Economic Area (EEA), data protection supervisory authorities are federally structured, particularly in Germany.

9. Use of the Website

9.1 Cookies

We may use cookies. Cookies - our own cookies (first-party cookies) as well as cookies from third parties whose services we use (third-party cookies) - are data that are stored in the browser. Such stored data does not have to be limited to traditional text-based cookies.

Cookies can be temporarily stored in the browser as "session cookies" or for a specific period as so-called permanent cookies. "Session cookies" are automatically deleted when the browser is closed. Permanent cookies have a specific storage duration. Cookies make it possible to recognize a browser upon the next visit to our website and, for example, measure our website's reach. However, permanent cookies can also be used for online marketing.

Cookies can be completely or partially deactivated and deleted at any time in the browser settings. Without cookies, our website may no longer be fully available. We request – at least insofar as and where necessary – explicit consent for the use of cookies.

9.2 Logging

We may log at least the following information for each access to our website and our other online presence, insofar as this information is transmitted to our digital infrastructure during such accesses: date and time including time zone, IP address, access status (HTTP status code), operating system including user interface and version, browser including language and version, individual sub-page accessed on our website including transmitted data volume, and the last website accessed in the same browser window (referer or referrer).

We record such information, which may also constitute personal data, in log files. The information is required to provide our online presence in a permanent, user-friendly and reliable manner. Furthermore, the information is required to ensure data security – including through third parties or with the help of third parties.

9.3 Tracking Pixels

We may integrate tracking pixels into our online presence. Tracking pixels are also referred to as web beacons. Tracking pixels - including those from third parties whose services we use - are usually small, invisible images or scripts written in JavaScript that are automatically retrieved when our online presence is accessed. Tracking pixels can be used to collect at least the same information as log files.

10. Social Media

We are present on social media platforms and other online platforms to communicate with interested individuals and provide information about our activities and operations. In connection with such platforms, personal data may also be processed outside Switzerland and the European Economic Area (EEA).

The General Terms and Conditions (T&C), Terms of Use, Privacy Statements and other provisions of the individual operators of such platforms also apply. These provisions inform in particular about the rights of affected persons directly with the respective platform, which includes, for example, the right to information.

11. Third-Party Services

We use services from specialized third parties to carry out our activities and operations in a sustainable, user-friendly, secure, and reliable manner. With such services, we can amongst others embed functions and content into our website. In the case of such embedding, the services used collect the IP addresses of users at least temporarily for technically necessary reasons.

For necessary security-related, statistical, and technical purposes, third parties whose services we use may process data related to our activities and operations in an aggregated, anonymized, or pseudonymized manner. This includes, for example, performance or usage data required to provide the respective service.

Digital Infrastructure

We use the services of specialized third parties in order to be able to make use of the necessary digital infrastructure in connection with our activities and operations. This includes, for example, hosting and storage services from selected providers.

In particular, we use:

• Infomaniak: Hosting; Anbieterin: INFOMANIAK NETWORK SA (Schweiz); Angaben zum Datenschutz: «Infomaniak und der Schutz Ihrer personenbezogenen Daten», Datenschutzerklärung, Cookie-Richtlinie, «Zertifizierungen und Labels».

We created this privacy policy using the Privacy Policy Generator from Datenschutzpartner.

We may update this privacy policy at any time. We will inform about updates in an appropriate manner, particularly by publishing the latest version of the privacy policy on our website.