6. Data security
We take suitable technical and organizational measures to ensure data security appropriate to the respective risk. With our measures, we guarantee in particular the confidentiality, availability, traceability and integrity of the personal data processed, but cannot guarantee absolute data security.
Access to our website and our other online presence is via transport encryption (SSL / TLS, in particular with the Hypertext Transfer Protocol Secure, abbreviated HTTPS). Most browsers warn against visiting websites without transport encryption.
Our digital communication is subject to mass surveillance without cause or suspicion by security authorities in Switzerland, the rest of Europe, the United States of America (USA) and other countries - like all digital communication in principle. We have no direct influence on the corresponding processing of personal data by secret services, police departments and other security authorities. We also cannot rule out the possibility that a person concerned is being specifically monitored.
We process personal data in order to be able to communicate with third parties. In this context, we process in particular data that a data subject transmits when contacting us, for example by letter or email. We can store such data in an address book or with similar tools.
Third parties who transmit data about other people are obliged to guarantee data protection for such data subjects. This includes ensuring that the personal data transmitted is accurate.
5. Communication
4. Disclosure of personal data
We may disclose personal data to third parties, have it processed by third parties or process it jointly with third parties. Such third parties are in particular specialized providers whose services we use.
We may, for example, disclose personal data to banks and other financial service providers, authorities, educational and research institutions, consultants and lawyers, interest groups, IT service providers, cooperation partners, credit and credit agencies, logistics and shipping companies, marketing and advertising agencies, media, organizations and associations, social institutions, telecommunications companies and insurance companies.
3. Type, scope and purpose of processing personal data
We process the personal data that is necessary to carry out our activities and operations in a permanent, humane, secure and reliable manner. The personal data processed can in particular fall into the categories of browser and device data, content data, communication data, metadata, usage data, master data including inventory and contact data, location data, transaction data, contract data and payment data.
We also process personal data that we receive from third parties, obtain from publicly accessible sources or collect in the course of our activities, provided that such processing is permitted for legal reasons.
We process personal data, where necessary, with the consent of the data subjects. In many cases, we may process personal data without consent, for example to comply with legal obligations or to protect overriding interests. We may also ask data subjects for their consent when their consent is not required.
We process personal data for the period necessary for the respective purpose. We anonymize or delete personal data, in particular depending on statutory retention and limitation periods.
2. Terms and legal bases
2.1 Terms
Data subject: Natural person about whom we process personal data.
Personal data: All information relating to an identified or identifiable natural person.
Personal data requiring particular protection: data concerning trade union, political, religious or ideological views and activities, data concerning health, privacy or ethnic or racial affiliation, genetic data, biometric data that uniquely identify a natural person, data on criminal and administrative sanctions or prosecutions, and data on social assistance measures.
Processing: Any handling of personal data, regardless of the means and procedures used, such as querying, comparing, adapting, archiving, storing, retrieving, disclosing, obtaining, recording, collecting, deleting, disclosing, arranging, organizing, storing, changing, disseminating, linking, destroying and using personal data.
2.2 Legal basis
We process personal data in accordance with Swiss data protection law, in particular the Federal Act on Data Protection (Data Protection Act, DSG) and the Ordinance on Data Protection (Data Protection Ordinance, DSV).
1. Contact addresses
Responsibility for the processing of personal data:
Nicole Walker
HEY KLARA GmbH
Sandackerweg 10
3054 Schüpfen
In individual cases, third parties may be responsible for the processing of personal data or there may be joint responsibility with third parties.
data protection consultant
We have the following data protection advisor as a contact point for data subjects and authorities for inquiries related to data protection:
Nicole Walker
HEY KLARA GmbH
Nicole Walker
Sandackerweg 10
3054 Schüpfen
privacy policy
With this privacy policy we inform you about the processing of personal data in connection with our activities and operations, including our www.heyklara.ch website. In particular, we inform you about what, how and where we process which personal data. We also inform you about the rights of persons whose
data we process.
Additional privacy statements or other information on data protection may apply to individual or additional activities and operations.