Generalprovisions

Privacypolicy of Akrodyn GmbH

Foreword

The protection of personal data is of great importance to Akrodyn GmbH (hereinafter "Akrodyn", "we", "us"). We therefore explain here how we collect and process personal data (hereinafter referred to as "personal data") in connection with the services we provide to you as part of our business relationship.

Personal data

"Personal data" means any information relating to an identified or identifiable natural person (hereinafter "data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Legal basis for data processing

The legal basis and regulations for the processing of personal data of data subjects in Switzerland are set out in the Federal Act of 25.09.2022 on Data Protection (Data Protection Act, DPA; SR 235.1) and the Ordinance of 31.08.2022 on Data Protection (Data Protection Ordinance, DPO; SR 235.11).

The European General Data Protection Regulation (EU GDPR) with effect from May 25, 2018 applies to the processing of personal data of data subjects located in the European Union if the data processing is related to offering goods or services to data subjects in the European Union.

Controller and data protection advisor

The controller responsible for

data processing in terms of data protection is

Akrodyn GmbH

Thurgauerstrasse 40

8050 Zurich

E-Mail: info@akrodyn.com

Data protection advisor

For data protection concerns or questions in connection with the exercise of your rights or this privacy policy, please contact:

Akrodyn GmbH

Data protection consultant

Thurgauerstrasse 40

8050 Zurich

E-Mail: info@akrodyn.com

Security

We regularly review our technical and organizational security measures for our data and communication systems in order to adapt them to the risks and to prevent the loss, misuse or unauthorized modification of your personal data.

In addition to security measures such as the encryption or pseudonymization of data, our employees are obliged to maintain confidentiality when handling personal data. You are responsible for keeping the password you use to access our website secret.

We will not ask you for your password unless you log in to our website. We cannot be held responsible for any damage that may result from accessing or using our website, including any damage or viruses that may infect your computer equipment or other property.

Although we have taken steps to ensure the reliability of the information contained on our website, we are not liable for any errors, omissions or results that may be obtained, transmitted, re-transmitted or recorded through the use of such information. In particular, the use of hypertext links while visiting our website may take you to other third party websites to access the information you are seeking. We have no control over such servers and are not responsible for the privacy policies and practices of third party websites.


Your rights

If you have provided us with personal data, you can assert the following rights at any time, provided there are no legal regulations to the contrary. We will check the identity of the person making the request in advance. If the effort required to fulfill the request exceeds the usual level, we may charge a fee before we can provide information.

Right to information

You have the right to obtain information about the data concerning you at any time in order to be aware of the lawfulness of the processing and to check it. For a complete deletion of your account, please contact our data protection advisor (Art. 25 para. 1-7 FADP; Art. 15 para. 1-4 GDPR).

Right to rectification

If your personal data that we process is incorrect or incomplete, you

can request that we rectify it. We will rectify this after appropriate notification (Art. 32 para. 1 FADP; Art. 16 GDPR).


Right to data portability

You have the right to obtain and reuse your personal data for your own purposes for various services. This applies to the personal data that you have provided to us. In return, we will provide you with this information in a structured, commonly used and computer-readable format. Where (and if) technically feasible, you have the right to request that we transfer your personal data directly to another data controller (Art. 28 para. 1-3 FADP; Art. 20 para. 1-4 GDPR).

Right to object to data processing

You have the right to object to the processing of your personal data for certain purposes if it is used for

direct marketing purposes (including profiling), based on Akrodyn's legitimate interests (including profiling) and for statistical purposes. Upon receipt of such a request, the processing of personal data will cease (Art. 21 (1)-(6) GDPR; Art. 22 (1)-(4) GDPR).


Right to restrict data processing

You can restrict or block the processing of your personal data if you dispute the accuracy of the data until we have verified the accuracy of such data. This also applies if the processing of your personal data is unlawful and you request the restriction of its use instead of its deletion. The right to restriction of processing can also be exercised if we no longer need the data, but you need the data to establish, exercise or defend a legal claim. Processing may also be restricted if you have objected to the processing of your data and we are considering whether our legitimate grounds or those of you take precedence. We will inform you before the restriction of processing is lifted (Art. 32 para. 2 lit. a FADP; Art. 18 para. 1-3 GDPR; Art. 19 GDPR).

Right to erasure of data (right to be forgotten)

You have the right to have the data stored about you erased if it is no longer required for processing, if it has been processed unlawfully or if you no longer consent to processing or object to it (subject to the statutory retention periods in accordance with the Swiss Code of Obligations (CO) (Art. 32 para. 2 lit. a FADP; Art. 17 para. 1-3 GDPR).


Right to withdraw consent

You can withdraw your consent to the processing of your personal data at any time. If there is no compelling justification for the processing of your personal data, we will stop processing it (Art. 7 para. 3 GDPR).

Right to lodge a complaint

If you wish to lodge a complaint about our handling of your personal data, you can contact our data protection advisor, who will investigate the matter. You also have the right to lodge a complaint with the competent data protection authority (Art. 77 para. 1 GDPR).


Data protection authority for Switzerland:


Federal Data Protection and Information Commissioner (FDPIC)

Feldeggweg 1

CH-3003 Bern

Reporting portals (admin.ch)

Restriction of your rights

Please note that we reserve the right to assert the restrictions provided for by law, for example if we are obliged to store or process certain data, have an overriding interest in doing so (insofar as we may invoke this) or need it to assert claims (Art. 26-27, 29 FADP; Art. 23 para. 1-2 GDPR).

Personal data that we process

We process personal data that we receive from you as a customer or business partner as part of our business relationship. Insofar as it is necessary for the provision of services within the scope of our contractual agreements, we also process personal data that we legitimately obtain from publicly accessible sources - including commercial registers, the press, but also the Internet - but which is also transmitted to us by other third parties (e.g. a credit agency).

This relates in particular to personal data such as

• Contact details (first name, surname, e-mail address, telephone number. Postal address, delivery address, as well as data that we receive through contact, contact form, request form for quotations or other forms or newsletters;

• Credit card details (credit card number, security code);

• Credit checks (information from credit agencies);

• Personal data that we are obliged to process due to contractual or legal requirements;

• When receiving push messages (device ID, user name, e-mail address, usage information);

• Webshop login data (user name, password); recipients of the data may be technical service providers who act as processors for the operation and maintenance of our website. We have concluded the corresponding order processing contracts with the providers for this purpose. Further recipients and details on the technical functioning of the tools used and information on how you can prevent data transmission (tracking) can be found under cookie and opt-out information below.

• Location data via the Akrodyn mobile apps (but only on condition that you have activated the device's location service and allowed access to the Akrodyn app for this service);

• When you enter one of our buildings, your image may be recorded by security cameras. Some of the recording systems are managed directly by us, while other cameras are monitored by a third-party provider. We delete the video footage on a regular basis unless it is used to investigate a suspected crime or incident. In this case, it may be retained for up to one year after the investigation has been completed.


Purposes of the processing of your personal data

We process your personal data in accordance with our contractual obligations and the statutory provisions (Art. 6 para. 1-7 FADP; Art. 6 para. 1 lit. a-f GDPR) for the following purposes:

• To operate the business and carry out essential business transactions;

• To provide goods and improve our services. For this purpose, your personal data is processed on the basis of our legitimate interest in improving the stability of our services and our websites/app (Art. 6 para. 1 lit. f GDPR).

• For the processing of transactions, e.g. the purchase and sale of goods, provision and delivery as well as invoicing and payment posting (Art. 6 para. 1 lit. b GDPR);

• To process all customer inquiries and provide other customer care and support services;

• To detect and prevent fraud, resolve disputes and enforce our agreements;

• Legitimate business purposes such as audits or internal training;

• to improve and personalize communication with you. For example, we may contact you by e-mail or other means in order to

o remind you of items that are still in your online shopping basket in the Akrodyn webshop;

o to inform you about a request you have made;

o to invite them to take part in a survey;

o to inform you that you need to take action to keep your online account active;

o provide you with marketing communications about products, services, offers, activities, promotions or other matters that may be of interest or benefit to you.

If personal data is also processed, the provision of your data is also voluntary, solely on the basis of your consent (Art. 6 para. 7 lit. a-c FADP; Art. 6 para. 1 lit. a GDPR).


Disclosure of your personal data by us to third parties

Recipients of the data may be technical service providers who act as processors for the operation and maintenance of our website. We have concluded the corresponding order processing contracts with the providers for this purpose. Further recipients and details on the technical functioning of the tools used and information on how you can prevent data transmission (tracking) can be found under cookie and opt-out information below. We only pass on your personal data if this is necessary,

• to complete a transaction or provide a purchased good or service;

• so that suppliers or vendors contracted to perform certain tasks on your behalf can carry them out;

• For example, when purchasing software licenses from third-party providers via our web store or another sales channel, we only forward the personal data that is absolutely necessary for the activation of such a product to the manufacturer of the product;

• for the exercise or defense of legal claims and for compliance with legal obligations;

• when you provide us with payment details to make a purchase, we share the payment details with banks and other entities that process payment transactions or provide other financial services, as well as for fraud prevention and credit risk reduction;

• in certain cases where we need to use third party service providers or suppliers to carry out certain activities, such as processing and sorting data, monitoring website/mobile application usage and sending emails.  In such cases, we may share contact information, sales data and other relevant information. The partner companies must comply with the legal requirements of the Swiss Data Protection Act and possibly other legal regulations and may not process the personal data received for purposes other than those contractually agreed.

• When you apply for a credit account with us, we pass on your personal data to the Central Office for Credit Information (ZEK), which carries out credit checks. As part of this process, your business and personal credit records, as well as those of anyone financially connected to you (e.g. guarantors), will be checked. For more information on how these credit reference agencies process your data, please refer to the privacy policy published on the website of the Central Office for Credit Information (ZEK). If you apply for a credit account with us, you guarantee that you have obtained and received the consent of the person financially connected to you to pass on their personal data as part of the credit search.

• In the event of debt collection, we will in certain cases pass on your personal data to debt collection agencies if payments have been missed or the correct amount has not been paid.

• In certain cases, we may also pass on your personal data to affiliated companies and subsidiaries. The same applies in the context of a corporate transaction such as a merger or takeover.

• And we will process, share, retain or disclose your personal data if the company believes in good faith that this is necessary:

o It must be permissible under applicable law;

o It is required to respond to legitimate requests for information, including from law enforcement authorities;

o When it is necessary to protect our customers, for example to prevent fraud.

• We only collect or transmit your personal data to state institutions and authorities within the framework of mandatory legal provisions.

Transfer of your personal data to the EU and outside the EU

In principle, we only transfer your personal data - where necessary - from Switzerland to the EU. In some cases, however, it may be necessary for us to transfer your personal data outside the European Economic Area because we (or a third party or vendor commissioned by us) store it on systems that are not hosted in the EU or because we have to pass it on to companies that are not located in the EU (Art. 17 para. 1, lit. a-f FADP).

Where this is the case, we will ensure that your personal data is secure and only transferred to organizations that provide appropriate safeguards:

• Organizations based in countries that have adequate provisions for the protection of personal data, see: Swiss recognition of countries that guarantee adequate data protection (admin.ch)

• Organizations that are contractually obliged to protect personal data or data protection through standard data protection clauses that have been approved, issued or recognized in advance by the Federal Data Protection and Information Commissioner (FDPIC) (Art. 16 para. 2 lit. a-e FADP; Art. 46 para. 2 lit. c-d GDPR).

• The transfer to a third country or organization takes place on the basis of an adequacy decision (Art. 16 FADP; Art. 45 para. 3 GDPR)

Storage period

We only store your personal data for as long as is necessary for the purposes of processing or in accordance with the statutory provisions (Art. 6 para. 4 FADP).

Website of Akrodyn GmbH

Contact form

The processing of the data entered in the contact form or transmitted to us is based on a legitimate interest (Art. 6 para. 1 lit. f GDPR).

By providing the contact form and other contact options, we would like to make it easy for you to get in touch with us. The information you provide will be stored for the purpose of processing your inquiry and for possible follow-up questions. If you contact us to request a quote, the transmitted data will be processed to carry out pre-contractual measures (Art. 6 para. 1 lit. b GDPR). The data is stored on our servers, which are operated in a data center in Switzerland.

Newsletter

If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter (so-called opt-in) (Art. 6 para. 1 lit. a GDPR).

No further data is collected.

We use this data exclusively for sending the requested information and do not pass it on to third parties, subject to the section "Disclosure of your personal data by us to third parties" above.

You can revoke your consent to the storage of your personal data (in particular your e-mail address) and its use for sending the newsletter at any time, for example via the "unsubscribe" link in the newsletter (so-called opt-out) (Art. 7 para. 3 GDPR).

If you have unsubscribed from the newsletter, the personal data processed for sending it will be deleted.


Webshop of Akrodyn GmbH

We operate a webshop on our website.

The personal data you enter on our website during the ordering process, such as your name, address, postal address, telephone number, e-mail address, credit card number, date of birth, etc., will be used by us to the extent necessary for the processing and invoicing of your order (see "Purposes of processing your personal data").

For the purpose of shipping your order, we are entitled to transmit your personal data to a carrier who processes this data on our behalf and in accordance with our applicable data protection and security regulations (Art. 28 para. 3 GDPR).

Additional separate terms and conditions apply to purchases in the webshop.

Password

To ensure confidentiality and security, your data is protected by a password chosen by you; you must ensure that only authorized persons have access to your password. For your own security, we recommend that you change your password regularly.

Registration in the webshop

If you decide to register, you must enter personal information in your individual user profile. To register, you must already have a customer number in our system, otherwise you will not be able to register.

You are free to decide whether you wish to enter this data. We use the personal data for the purposes of technical administration of the website and for user and customer administration only to the extent necessary in each case. Beyond this, personal data is only stored if it is provided voluntarily.

SSL encryption

This website uses SSL encryption for security reasons and to protect the transmission of confidential content, such as the inquiries you send to us. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL encryption is activated, the data you transmit to us cannot be read by third parties.


Server log files

We automatically collect and store information on our website in so-called "server log files", which your browser automatically transmits to us. These are in particular

• Browser type and browser version;

• operating system used;

• Referrer URL;

• Host name of the accessing computer;

• Time of the server request.

This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of unlawful use.

Use of apps from Akrodyn

When you use the Akrodyn apps, we process the ID of your mobile device and information about your usage behavior. This information is used to send you personalized offers by e-mail, SMS or push message. You can receive push messages on order status, delivery information or offer notifications. You can also receive push messages when the application is not open. As with other applications, you can suppress the receipt of push messages via the settings on your smartphone. Notifications within the open application are then still possible.

We do not use your data to draw conclusions about your person. Information of this kind is only used for statistical evaluations for the purpose of the operation, security and technical optimization of our website and services and is evaluated in anonymized form.

The processing is based on our legitimate interest in improving the stability and functionality of our website/app (Art. 6 para. 1 lit. f GDPR).

Integration of social media plug-ins

Our website contains numerous social media plug-ins, which are usually integrated into our website as graphic files. Each time you visit our website, the buttons are loaded from the social media provider's website. In this way, it is possible that, in particular, your IP address and the URL of our website are forwarded to the social media provider's servers and stored there.

In these cases, we do not receive any disclosure of data in accordance with the Swiss Data Protection Act. We receive and have no knowledge of the content of any data transmitted or its use by the social media providers. For further information on data protection (in particular the scope, type and purpose of data processing), please refer to the data protection declarations of the individual social media providers. There you will also find further information on your rights and settings options to protect your privacy.

You can prevent third-party providers from collecting information about you during your visit by logging out of your social network pages beforehand and deleting cookies that have been set (see "Cookies" below).

Use of Google Analytics

This website uses Google Analytics, a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA (hereinafter: "Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, due to the activation of IP anonymization on these websites, your IP address will be shortened by Google beforehand within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

The purpose of the data processing is to evaluate the use of the website and to compile reports on activities on the website. Based on the use of the website and the Internet, further related services are then to be provided.

The storage of information on your end device or access to information that is already stored on the end device takes place voluntarily solely on the basis of your consent (Art. 6 para. 1 lit. a GDPR).


Use of Google Remarketing

This website uses the remarketing function of Google Inc. The operating company of the Google Remarketing services is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter "Google"). The function is used to present interest-based advertisements to website visitors within the Google advertising network. A so-called "cookie" is stored in the browser of the website visitor, which makes it possible to recognize the visitor when he or she visits websites that belong to the Google advertising network. On these pages, the visitor may be presented with advertisements that relate to content that the visitor has previously accessed on websites that use Google's remarketing function.

The storage of information on your end device or access to information that is already stored on the end device takes place voluntarily solely on the basis of your consent (Art. 6 para. 1 lit. a GDPR).

According to its own information, Google does not collect any personal data during this process. However, if you do not wish to use Google's remarketing function, you can generally deactivate it by making the appropriate settings at: https://support.google.com/adwordspolicy/answer/143465. Alternatively, you can deactivate the use of cookies for interest-based advertising via the advertising network initiative by following the instructions at: http://www.networkadvertising.org/managing/opt_out.asp.


Cookies

Like many other websites, we also use so-called "cookies". Cookies are small data records that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our website. A distinction must be made between necessary cookies, functionality cookies, analysis and performance cookies, target group cookies and advertising cookies. Strictly necessary cookies are used to ensure that our website functions correctly. Functionality cookies are used to improve and simplify your user experience. For example, they can store data about your previous choices or your password. Analytics and performance cookies are used for internal purposes to help us provide you with an improved user experience, e.g. to analyze the performance of a website or to test different design ideas for the website. The specific purposes can be found in the cookie overview below.

We often work with third party research companies to provide these services to you, so these cookies may be created by a third party. Targeting and advertising cookies are used to show you relevant and tailored content (including advertising content) and also to evaluate the effectiveness of that content. This content may be provided on our websites or on a third party website. We often work with third parties to provide this content, so some of these cookies may be created by a third party. This provides us with certain data such as IP address, browser and operating system used. Cookies cannot be used to launch programs or deliver viruses to a computer. Based on the information contained in cookies, we can make navigation easier for you and enable the correct display of our web pages.

Under no circumstances will the data collected by us be passed on to third parties or linked to personal data without your consent.

Of course, you can also view our website without cookies. Internet browsers are regularly set to accept cookies. In general, you can deactivate the use of cookies at any time via your browser settings. Please use the help functions of your Internet browser to find out how to change these settings. Please note that individual functions of our website may not work if you have deactivated the use of cookies. If you use different computers in different locations, make sure that each of these computers is configured according to your cookie preferences.

Storage duration and cookies used (cookie and opt-out information):

If you allow us to use cookies through your browser settings or consent, the following cookies, among others, may be used on our websites:

Name / Duration

_ga / 2 years

_gat / 1 minute

_gid / 24 hours

_gac / 90 days

IDE / 540 days

DSID / 540 days

Test_cookie / Session

All web browsers allow you to activate, deactivate or delete the use of cookies by configuring the browser settings or options accordingly. Depending on the provider of your browser, you will find the necessary information under the following links:

Internet Explorer:

https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies

Google Chrome:

https://support.google.com/accounts/answer/61416?co=GENIE.Platform%3DDesktop&hl=de

Mozilla Firefox:

https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen

Safari:

https://support.google.com/accounts/answer/61416?co=GENIE.Platform%3DDesktop&hl=de

Opera:

http://www.opera.com/de/help

If cookies are completely or partially deactivated or deleted, not all functions of the website may be available. If a user uses a web browser not listed above, further information is available in the browser documentation or in the online help.

The necessary cookies are collected on the basis of our legitimate interest in a user-friendly design of our website and in the documentation of consent (Art. 6 para. 1 lit. f GDPR).

Links to other websites

Our online offer contains links to other websites. We have no influence on whether their operators comply with data protection regulations. We exclude any responsibility or liability for the websites of third parties that can be accessed via the links.

Contributions

The contributions on our site are accessible to everyone. Contributions should be carefully checked before publication to ensure that they do not contain information that is not intended for the public. The contributions may be recorded in search engines and may also be accessible worldwide without specifically calling up this website.

Changes to this privacy policy

We reserve the right to adapt this privacy policy so that it always complies with current legal requirements or to implement changes to our services in the privacy policy, e.g. when introducing new services. The new privacy policy will then apply to your next visit.