1. CONTACT DETAILS

RESPONSIBLE FOR THE ONLINE SERVICE

Irene Elmer
c/o Zanana
Rychenbergstr. 67
8400 Winterthur
info(at)medit-8.ch

2. PROCESSING OF PERSONAL DATA

2.1 TERMS

Personal data refers to any information relating to an identified or identifiable person. A data subject is a person whose personal data is processed. Processing includes any handling of personal data, regardless of the methods and procedures used, in particular, the storage, disclosure, acquisition, collection, deletion, storage, modification, destruction, and use of personal data.

2.2 LEGAL BASIS

We process personal data in accordance with Swiss data protection law, particularly the Federal Act on Data Protection (FADP) and the Ordinance to the Federal Act on Data Protection (FADP-O).

Where the General Data Protection Regulation (GDPR) is applicable, we process personal data under at least one of the following legal bases:

  • Art. 6 para. 1 lit. b GDPR for processing personal data necessary for fulfilling a contract with the data subject and for implementing pre-contractual measures.

  • Art. 6 para. 1 lit. f GDPR for processing personal data necessary to protect our legitimate interests or those of third parties, provided the fundamental freedoms and rights of the data subject do not outweigh them. Legitimate interests include ensuring our online services’ continuous, user-friendly, secure, and reliable provision, promoting them when necessary, ensuring information security and protection against misuse and unauthorized use, enforcing our legal claims, and complying with Swiss law.

  • Art. 6 para. 1 lit. c GDPR for processing personal data necessary to fulfill a legal obligation to which we are subject under EU or European Economic Area (EEA) member state laws.

  • Art. 6 para. 1 lit. e GDPR for processing personal data necessary for carrying out a task in the public interest.

  • Art. 6 para. 1 lit. a GDPR for processing personal data with the data subject’s consent.

  • Art. 6 para. 1 lit. d GDPR for processing personal data necessary to protect the vital interests of the data subject or another natural person.

2.3 TYPE, SCOPE, AND PURPOSE

We process the personal data necessary to provide our online services continuously, in a user-friendly, secure, and reliable manner. This personal data may fall into categories such as master and contact data, content data, usage data, transaction data, and payment data.

We process personal data for the duration required for the respective purpose or as required by law. Personal data that is no longer necessary is anonymized or deleted.

We generally process personal data only with the consent of the data subject unless processing is permitted by other legal reasons, such as fulfilling a contract with the data subject, safeguarding our overriding legitimate interests, or if the processing is evident from the circumstances or occurs after prior information.

3. DATA SECURITY

We take appropriate technical and organizational measures to ensure data protection and, in particular, data security. However, processing personal data on the Internet can always have security gaps despite such measures. Therefore, we cannot guarantee absolute data security.

Access to our online services is provided using transport encryption (SSL/TLS with HTTPS).

4. USE OF THE WEBSITE

4.1 COOKIES

We may use cookies on our website. Cookies—also from third parties whose services we use (third-party cookies)—are data stored in your browser, often in the form of text files. Cookies cannot execute programs or transmit malware such as trojans or viruses.

You can deactivate or delete cookies in your browser settings at any time. Without cookies, our online services may not be available in full.

4.2 LOG FILES

We may collect the following data for each access to our website, provided it is transmitted by your browser to our server infrastructure or can be determined by our web server:

  • Date and time, including time zone

  • Internet Protocol (IP) address

  • Access status (HTTP status code)

  • Operating system, including user interface and version

  • Browser, including language and version

  • Accessed pages and transferred data volume

  • Last accessed website (referrer)

4.3 TRACKING PIXELS

We may use tracking pixels (web beacons) on our website. These small images can capture similar data as server log files when accessed.

5. NEWSLETTERS AND NOTIFICATIONS

We may send newsletters and notifications via email and other communication channels. We may also send newsletters and notifications via third-party services.

You can unsubscribe from newsletters and notifications at any time and thereby object to the mentioned tracking.

6. SOCIAL MEDIA

We are present on social media and other online platforms to communicate with interested parties and provide information about our online services. The respective operators’ general terms and conditions (GTC), privacy policies, and other provisions apply.

7. THIRD-PARTY SERVICES

We may use third-party services to ensure the continuous, user-friendly, secure, and reliable provision of our online services.

7.1 GOOGLE ANALYTICS

We use Google Analytics to analyze how our website is used. Google Analytics is a service provided by Google LLC. For users in the European Economic Area (EEA) and Switzerland, Google Ireland Limited is responsible.

8. FINAL PROVISIONS

We may update and supplement this privacy policy at any time. We will inform about such updates in an appropriate manner, in particular, by publishing the current privacy policy on our website.

The English version of this privacy policy is a translation. In case of discrepancies, the German version shall prevail.