Table of contents
1. Objectives and responsible entity
2. Basic details about data processing
3. Processing of personal data
4. Collection of access data
5. Cookies and reach measurement
7. Inclusion of services and content from third parties
8. Contact information telephony / e-mail
9. Support / ticketing system NIBO
10. User rights and deletion
1 Objectives and responsible entity
The provider of the online offer and thus the data controller is Netree AG, Industriestrasse 14, CH-4658 Däniken, Managing Director: Roland Häfliger, Managing Director, responsible for content: Daniel Lauber, (hereinafter referred to as „providers“, „we“ or „us“). For our contact details, please refer to our imprint.
The term „user“ includes all customers of and visitors to our online offer. The terminology used, such as ”user” should be understood as gender-neutral.
2 Basic details about data processing
We process personal data of users strictly in compliance with the relevant data protection regulations and pursuant to the requirements of data minimisation and data avoidance. This means that user data is processed only if legally permitted, in particular if the data is necessary or legally required for the performance of our contractual services or to deliver our online services, or if consent has been obtained.
We undertake organisational, contractual and technical security measures using the best available technology in order to ensure that we comply with data protection regulations and to protect the data that we process from accidental or deliberate manipulation, loss, destruction or from being accessed by unauthorised individuals.
3 Processing of personal data
- To provide, execute, maintain, optimise and ensure the security of our user services;
- To guarantee effective customer service and technical support.
We only transfer users‘ data to third parties when this is necessary for billing purposes (for example, to a payment service provider) or for other purposes, if necessary, in order to fulfil our contractual obligations towards users (for example, address information to suppliers).
When contact is made with us (via the contact form or by email), the information the user provides is saved for the purposes of processing the enquiry and also in the eventuality that there are follow-up questions.
Personal data will be deleted once the purpose for which they were collected has been fulfilled, insofar as deletion does not conflict with statutory retention requirements.
4 Collection of access data
We collect data about each access to the server on which this service is located (so-called server log files). Access data include the name of the website visited, the file accessed, the date and time of the visit, the volume of data transferred, notification of a successful visit, the browser type and version, the user’s operating system, the referring URL (previously visited site), the IP address and the querying provider.
Pursuant to statutory provisions, we use log data without assigning it to individual users or other profiling measures. We use such data only for the statistical evaluation of the operation, security and optimisation of our online offer. However we reserve the right to check the log data retrospectively if, due to concrete evidence, there is a legitimate suspicion of illegal use.
5 Cookies and reach measurement
This online offer can also be viewed without cookies. If users do not wish for cookies to be saved on their computers, we ask them to activate the appropriate option in their browser’s system preferences. You can delete stored cookies using your browser’s system preferences at any time. The exclusion of cookies can lead to function limitations in this online offering.
You can manage a wide range of online advertising cookies from companies on the US American website: http://www.aboutads.info/choices, or the EU website: http://www.youronlinechoices.com/uk/your-ad-choices/.
The following information is intended to provide information on the content of our newsletter, the registration process, the distribution process, the statistical evaluation process and your right to object. When you subscribe to our newsletter, you acknowledge that you have agreed to receive the newsletter and that you agree with the processes that have been described.
Content of the newsletter: We send newsletters, emails and other electronic messages with advertising information (hereinafter referred to as ‘newsletter’) only with the recipient’s consent or if we have been granted legal permission to do so. Insofar as the contents of the newsletter are concretely described when subscribing, this is decisive for user consent. Incidentally, our newsletter contains information about our products, offers, promotions and our company.
Double opt-in and data logging: A double opt-in process is used when users register to receive our newsletter. This means that you will receive an email after registering which asks you to confirm your registration. This confirmation is necessary so that it is not possible for people to log in with external email addresses. New registrations to the newsletter are logged in order to verify that the registration process complies with the legal requirements. This involves storing the IP address and the time at which the new user registers and confirms the registration. Changes to any of your data stored by the email marketing service are also logged.
Registration details: You only need to provide your email address when you register to receive the newsletter.
Statistical surveys and analysis – The newsletters contain what is known as a web beacon, which is a pixel-sized file called up by the email marketing provider’s server when the newsletter is opened. Technical information such as information on your browser, your operating system and IP address are collected at the time the file is called up. This information is used to facilitate technical improvements in our services by means of gathering technical data, information on target groups and their reading behaviour by analysing access times and the locations from which readers call up the files (determined by means of IP addresses). Further statistical analysis includes determining whether the newsletter has been opened, when it was opened and which links have been clicked. For technical reasons, this information can be matched to individual newsletter recipients. However, neither we nor the email marketing service intend to monitor individual users. The main purpose of this analysis is to identify the reading habits of our users and to tailor our content to their requirements or to publish content that matches the interests of our readers.
Cancelation/revocation – You can cancel your subscription to our newsletter i.e. revoke your consent, at any time. In doing so, your consent to receive the newsletter via the email marketing provider and to statistical analysis both also terminate. Unfortunately you cannot terminate these services separately. You will find an unsubscribe link at the end of each newsletter.
7 Inclusion of services and content from third parties
It may occur that third-party content or services from other websites such as maps or fonts are included in this online service. The inclusion of third-party content always takes for granted that third-party providers detect users’ IP address, because they cannot send content to users’ browsers without the IP address. This means that the IP address is required to display the content in question. Furthermore, providers of third-party content can set their own cookies and process users‘ data for their own purposes. User profiles can thereby be generated from processed data. Insofar as this is possible, we will comply with the principles of data avoidance and data economy when using this content, and we will select reliable third-party providers with regard to data security.
The following list provides an overview of third party providers, their contents, as well as links to their privacy policies, which contain further information on the processing of data and, as already mentioned here, options for objecting (so called opt-out):
8 Contact information telephony / e-mail
For telephony and e-mail traffic, Netree uses the Microsoft Exchange Online service, which operates in the Microsoft Azure cloud in Western Europe. The contact data stored in our ERP are thus synchronized with the Microsoft cloud service Azure Active Directory (AAD).
9 Support / ticketing system NIBO
Customers using Netree’s support and operations services acknowledge and accept that the NIBO ticketing system is operated in the Microsoft Azure Cloud in Western Europe and the following data is stored in the cloud.
- Contact details of the contact persons
- (name, first name, e-mail address, telephone number, company and address).
- All information relevant to the case to be processed, including e-mail traffic (no sensitive data and access data [especially passwords] should be communicated via e-mail).
- If the customer operates with his own paid ticketing system NIBO with advanced features, all employees business contact information, involved in a support request, will also be managed in the cloud.
If you do not accept this, please contact Netree.
10 User rights and deletion of data
On request, users are entitled to receive information on the personal data we store about them free of charge.
In addition, users have the right to correct inaccurate data, to revoke previously given consent, to limit the processing and/or request the erasure of their personal data and, in the event of unlawful processing, lodge a complaint with the appropriate supervisory authority.
The data stored by us shall be deleted as soon as they are no longer necessary for the purpose for which they were collected, insofar as their deletion does not conflict with any statutory storage requirements.