Privacy Policy
In this Privacy Policy, we explain how we collect and process personal data in connection with our website (www.amenti.ch) (hereinafter “Website”) and in connection with our services pursuant to the General Terms and Conditions (https://amenti.ch/terms-of-service) (hereinafter “Services”). Personal data means any information relating to an identified or identifiable natural person (hereinafter “personal data” or “data”).
1. Controller and Contact
The controller of this website and responsible for the processing of personal data is:
Amenti AG
Weststrasse 50
8003 Zürich
Switzerland
Telephone: +41 44 224 49 00
E-mail: info@amenti.ch
(hereinafter “Amenti”, “we” or “us”)
For questions about our handling of personal data or other data protection concerns, please contact us using the contact details set out above.
2. Collection and Processing of Your Personal Data
We collect personal data in various ways, including in connection with your enquiries, the provision or offering of our services, or when you use the Website. We process the following types of personal data for the following purposes:
2.1 Information Provided by You
We collect personal data that you provide to us directly, e.g. when you send us an e-mail, register on our Website (i.e. create a user account/user profile), comment on a post, submit an enquiry via the contact form, or place an order for the provision of our services. This also includes personal data transmitted to us in the context of business contacts or in connection with the initiation or conduct of business relationships. Depending on the circumstances, this concerns in particular the following categories of personal data:
Names, address, e-mail address, telephone numbers of you and/or your partners, directors, governing bodies, employees and representatives.
We may also obtain personal data from publicly accessible sources (e.g. from public registers, websites, media or social networks).
The processing is carried out for the purpose of the desired contact with you or the provision of our services (in particular via the Website) to you.
2.2 Information Automatically Collected When Visiting the Website
When you access and use the Website, certain data is automatically collected. This includes in particular the following data: browser, operating system, settings, date and time of page access, IP address, pages visited and content viewed. The collection of this data takes place automatically as soon as you visit our Website. We use this data to provide the features of the Website and to ensure the proper and secure operation of the Website. We also analyse this data for statistical purposes, for example to determine which pages are most frequently visited or how many accesses occur at a given time. The analysis is carried out on an aggregated basis, without this data being directly related to your person. The insights gained are used by us to improve and further develop our Website and our offerings.
2.3 Newsletter
If you wish to subscribe to a newsletter offered by us, we require your e-mail address and information that allows us to verify that you are the owner of the specified e-mail address and that you consent to receiving the newsletter. We use this data exclusively for sending the requested information (in particular information about our services, products or events). The consent given to the storage of the data, the e-mail address and its use for the purpose of sending the newsletter may be revoked at any time, for example via the “Unsubscribe” link in the newsletter.
2.4 Employment Relationships
If you apply for a position with us, we process personal data such as: first name, surname, gender, address, telephone number (mobile and landline), e-mail address, social security number, information from your curriculum vitae; qualifications, salary account number, extracts from the criminal and debt enforcement register, as well as any other relevant data transmitted to us in the course of the employment relationship, the application process or the pre-contractual relationship.
The processing of personal data is carried out for the purpose of conducting the application process, conducting the pre-contractual relationship (e.g. negotiating an employment contract), conducting the employment relationship, fulfilling our obligations as employer (e.g. salary payments), and fulfilling statutory obligations (e.g. accounting with social security authorities, issuing employment references).
2.5 Further Purposes
In addition to the purposes mentioned above, we may also use the collected personal data to assert or enforce our legal claims, to defend ourselves in connection with legal disputes and administrative proceedings, and for the prevention and investigation of criminal offences and abuse of our services.
2.6 Profiling and Automated Processing
Within the scope of our services, personal data may be processed in an automated manner, in particular for the analysis of usage data, the preparation of evaluations, and the improvement of our services.
Profiling within the meaning of the applicable data protection law may also occur, i.e. automated processing of personal data for the purpose of evaluating certain personal aspects relating to a natural person.
Automated individual decisions with legal or similarly significant effects within the meaning of the applicable data protection law do not occur.
3. Cookies, Analytics Tools and Other Technologies
3.1 Cookies in General
We use cookies on our Website. These are files that are stored on the user’s device and collect information about visitors and the use of our Website, or tracking applications that are technically differently designed. Cookies allow the identification of the user and serve to offer more user-friendly, effective and secure services via the Website.
Most of the cookies we use are so-called “session cookies”. These are automatically deleted after the end of your visit to our Website. Other cookies remain stored on your device until you delete them. These cookies enable us to recognise your browser on your next visit. For further information on the cookie or cookie-like technologies used, please refer to the provisions below.
You can configure your browser settings so that you are informed about the placement of cookies and only allow cookies on a case-by-case basis, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when you close the browser. Disabling cookies may limit the functionality of the Website (e.g. language selection).
Where required, we obtain your consent for the use of cookies and comparable technologies.
3.2 Analytics Tools
We also use cookies, analytics programmes and tracking technologies from third-party providers (such as Google Analytics, LinkedIn Insight Tag, LinkedIn Matched Audiences, Meta Pixel, Meta Conversion API (CAPI) or comparable services), which measure and analyse your use of the Website in order to determine user behaviour, build target groups and optimise advertisements. When you visit the Website, data is collected on when and how long the Website is visited, which pages are accessed, which features are clicked and which content is displayed. This allows us to better understand how and by which target groups the Website is used.
The programmes of third-party providers use cookies, identifiers and cookie-like (tracking) technologies to identify the user. Third-party providers process personal data in some cases as independent controllers. Their data protection provisions apply exclusively to their data processing.
4. Disclosure of Personal Data
We do not disclose personal data, except in the following cases:
to service providers engaged by us (processors), who process personal data on our behalf, in particular in connection with IT infrastructure (including hosting of the Website), cloud services, communication and collaboration tools, software solutions, payment processing, sending of communications (e.g. newsletters) and the enforcement of our contractual claims (including debt collection); globally active providers with their registered office or data processing outside Switzerland or the EEA may also be engaged in this context;
to authorities or other third parties if we are legally obliged to do so or if it is necessary to protect our interests, such as for the prevention of abuse or the enforcement of rights;
to the extent necessary for the conclusion, amendment or performance of a contract with you, for example to payment service providers or providers of electronic signature solutions. Payment processing is carried out via external providers (e.g. Stripe), to whom the data required to process the payment is transmitted. These providers process personal data in some cases as independent controllers. Their data protection provisions apply exclusively to their data processing;
in the context of the analytics tools, tracking technologies and third-party cookies described in section 3;
if you have expressly consented to the disclosure; or
to acquirers or interested acquirers of business divisions, companies or other operational units of ours, or in connection with a reorganisation, merger, transfer or other disposal of our company, our assets or parts thereof.
Your data will not be disclosed to third parties for advertising purposes.
The hosting of the Website and your data takes place on servers in Switzerland. When we disclose data to recipients abroad, we take the legally required precautions to protect the personal data. If we transfer personal data to a country without adequate statutory data protection (such as in particular the USA), we ensure, as provided for by law, an adequate level of protection by entering into data protection clauses (standard data protection clauses) with the recipients of the data, unless they are already subject to an officially recognised framework for ensuring data protection (such as the Swiss-US Data Privacy Framework), or we rely on a statutory exception. An exception may apply in particular to legal proceedings abroad, but also in cases of overriding public interests, or if the performance of a contract requires such a disclosure, if you have consented, or if it concerns data that you have made generally accessible and whose processing you have not objected to. Documentation on these measures is available upon request from the office referred to in section 1.
5. Retention Period
We retain personal data for as long as it is required for the fulfilment of the purpose for which it was collected. Thereafter, it will either be deleted or anonymised, unless we exceptionally require it for a longer period, e.g. due to statutory retention and documentation obligations or our legitimate interests such as for evidentiary purposes or for IT security. Data on the use of our Website (e.g. IP addresses) are generally anonymised or deleted after 12 months, unless we exceptionally still require them, such as to safeguard our legitimate interests and to prevent abuse. Application documents are generally deleted 6 months after rejection and contractual data after 10 years in accordance with the statutory retention obligation.
6. Data Security
We protect personal data against loss, misuse, unauthorised access, disclosure, alteration or destruction by means of appropriate measures. For this purpose, we use suitable technical and organisational security measures which are continuously improved in line with technological developments (e.g. SSL/TLS encryption, access restrictions, access controls, regular backups, two-factor authentication for administrative access). However, we cannot guarantee the absolute security of personal data.
This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us via the contact form. You can recognise an encrypted connection by the fact that the address bar of the browser changes from “http://” to “https://”, and by the padlock symbol in your browser bar. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties. We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) may be subject to security vulnerabilities. Complete protection of data against access by third parties is not possible.
7. Your Rights
Data subjects whose data we process have, within the scope of the data protection law applicable to them, the right to request information about the personal data concerning them as well as the rectification or erasure thereof and the restriction of its processing, and to object to the processing of their personal data. There is also the right to data portability (i.e. the surrender of their personal data in a commonly used electronic format). These rights may be subject to statutory restrictions in individual cases. To the extent that our processing is based on consent, every data subject also has the right to revoke this consent at any time with effect for the future. To exercise such rights, please contact the point of contact referred to in section 1.
A data subject also has the right to lodge a complaint with the competent data protection authority. The competent data protection authority in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC) (www.edoeb.admin.ch). If you reside in the EU or EEA, you also have the right to lodge a complaint with a supervisory authority in your member state. A list of the national data protection authorities in the EU can be found at: https://edpb.europa.eu/about-edpb/about-edpb/members_en
8. Legal Basis
The processing of your personal data is carried out in accordance with the applicable data protection law, in particular the Swiss Federal Act on Data Protection (FADP).
To the extent required or appropriate under applicable law, the processing is based in particular on:
(i) your consent,
(ii) the performance of a contract or pre-contractual measures,
(iii) our overriding legitimate interests (e.g. the operation, security and further development of our Website and services), or
(iv) statutory obligations.
Otherwise, the processing takes place within the framework of the statutory requirements and for the purposes described in this Privacy Policy.
9. Consent of Third Parties
If you act as an intermediary or otherwise on behalf of or on the instructions of a third party, or if you provide us with information about a third party, you hereby declare that you are an authorised representative or agent of that third party and/or that you have obtained all necessary consents (as may be required by the applicable law) from those third parties for the collection, processing, use and disclosure of their personal data to or by us and/or that you fulfil all other requirements under applicable law so that we may process the personal data of such third parties as agreed.
10. Amendments to this Privacy Policy
Amendments to this Privacy Policy may be necessary from time to time. Once a revised Privacy Policy is available on the Website, it shall become binding.
11. Final Provisions
Should one or more provisions or parts of this Privacy Policy be or become invalid or void, this shall not affect the validity of the remaining provisions. In the event of the invalidity or voidness of a provision, it shall be replaced by an effective provision that comes closest to the purpose of the invalid or void provision that this Privacy Policy has been found to violate.
Subject to any mandatorily applicable data protection laws, this Privacy Policy is governed by substantive Swiss law, to the exclusion of its conflict of law rules. The exclusive place of jurisdiction is the city of Zurich, Switzerland (Zurich 1).
This Privacy Policy may be drawn up in several language versions. In the event of contradictions or differences in interpretation between the language versions, the German version shall prevail.