Privacy Policy
Thank you for visiting our website! Your privacy and the protection of your data are very important to us. In the text below, we will inform you how and for which purposes we collect, process and use your data when you visit this website. You will also find out which rights you have regarding your data and who you can contact if you have any questions.
This Privacy Policy applies for all websites of Centravo Holding AG and its companies. It also applies for all our online presences such as websites, social media, apps and online services through which we receive and process personal data. By using this website, you agree to this Privacy Policy.
Responsibility and contact
The controller in terms of data protection legislation is:
Centravo Holding AG
Sihlquai 255
CH-8005 Zurich/Switzerland
+41 32 387 47 47
info@centravo.ch
Do you have any questions about this Privacy Policy or do you wish to exercise your privacy rights? Then please contact:
Email: datenschutz@centravo.ch
Our representative (Art. 27 GDPR) based in the European Union is:
SIDD Datenschutz Deutschland UG (haftungsbeschränkt)
Schellingstr. 109a
80798 Munich
Phone: +49 (0) 89 215 395 33
E-mail: hello@sidd-deutschland.de
Which law is applicable?
Centravo Holding AG and its companies are Swiss companies. Their activities are primarily governed by Swiss law. This also applies for this Privacy Policy, for which the Swiss Data Protection Act (DSG) is applicable. Wherever the processing of personal data falls within the scope of the European General Data Protection Regulation (GDPR), we naturally apply the GDPR.
Other legal provisions and contractual provisions that a customer or business partner has agreed with us may also apply. These can include, for example, additional data protection or confidentiality agreements as well as applicable mandatory laws and regulations. In addition, other privacy policies or general terms and conditions, participation conditions and similar documents governing specific circumstances may apply.
What is personal data?
“Personal data” refers to any information relating to an identified or identifiable natural person (“data subject”). In particular, a natural person is deemed identifiable, either directly or indirectly, by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more special features that express the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person.
What types of data do we process, for what purpose and on what legal grounds?
General information
Primarily, we process the personal data that we receive from our customers and business partners through our business relationships with them and other persons involved, or that we collect from their users during the operation of our websites, apps and other applications.
Visiting the website
When you visit our website, your browser sends us the information required for this purpose, such as IP address, MAC address of your smartphone or computer, details about your device and settings, cookies, date and time of your visit, pages and content accessed, functions used, referring website and location details. We use this information to improve our online offering and our services, for statistical purposes and for the efficient and secure operation of our website. The data is deleted as soon as it is no longer required for the purpose for which it was collected.
Contact by you
You have various ways of getting in touch with us, such as:
- filling out a contact form;
- ordering a product;
- in the purchase or acquisition of a fee-based offer (provision of payment information, purchase and transaction data);
- contacting customer service (for example, by email or phone);
- subscribing to the newsletter;
- participating in contests or competitions;
- user surveys and market research;
- marketing and analysis purposes.
As soon as you contact us, we receive and process certain data from you, as necessary, which you have shared with us. This usually includes your contact details such as your first name and last name, email address, postal address, phone and fax numbers as well as your company and position. We use this data to process your enquiry. The data is deleted as soon as we have dealt with your enquiry and there is no statutory retention obligation.
Applying for our job offers
We would be delighted if you were to look for a job on our website and send us your application. Please use our job website: https://jobs-centravo.ch/ You will also find the relevant data protection information for applicants here.
For what purposes do we process personal data and on what legal basis?
We use the personal data we collect primarily to conclude and process our contracts with our customers and business partners, to purchase products and services from our suppliers and subcontractors, and to comply with our legal obligations at home and abroad. Within the scope of the GDPR, we only process your data if there is an appropriate legal basis for doing so.
In addition, where permitted and deemed appropriate to us, we also process your personal data, for the following purposes in which we have a legitimate interest corresponding to the purpose:
- Conclusion of contracts: in order for you to purchase a product, we require certain data from you. Without this, we will not be able to supply you with any products or services. In this case, your data is required in order to take steps prior to entering into a contract and/or to fulfil our contractual obligations to you (Article 6, paragraph 1, letter b GDPR);
- Our online offer and further development of our offers, services and websites, apps and other platforms on which we are present are based on our legitimate interest in continuously optimising our business activities as well as our range of products and services;
- Market and opinion research, media monitoring: we may collect, store and evaluate your personal data for this purpose in order to continuously improve our services and products in line with the needs of our customers;
- Video surveillance and security measures: video surveillance to safeguard domiciliary rights and other measures in the interests of IT, building and system security and to protect our employees and other persons and assets belonging to or entrusted to us (such as access controls, visitor lists, network and mail scanners, telephone recordings). The legal basis is both our legitimate interest (such as operational safety) and the fulfilment of legal obligations (occupational safety).
If your consent was the legal basis for data collection/data processing, you may revoke this at any time. This does not affect the legality of the data processing carried out prior to the revocation of consent.
To what extent do we use profiling and automated decision-making?
We may process some of your personal data automatically. The aim is to evaluate certain personal aspects (profiling). We use profiling in particular to be able to provide you with targeted information and advice about our products and services. Here, we use evaluation tools that enable us to communicate and advertise in line with our requirements, including market and opinion research.
As a matter of principle, we do not use fully automated decision-making (as regulated by Article 22 GDPR) to establish and implement business relations or otherwise. Should we use such procedures in individual cases, we will inform you separately insofar as this is required by law as well as inform you of the associated rights.
Why do we use cookies and tracking technologies?
We also typically use “cookies” and equivalent technologies on our website that enable your browser or your device to be identified. A cookie is a small file which is sent to your computer or automatically stored on your computer or mobile device by the web browser you use when you visit our website. This means that when you visit this website again, we are able to recognise you even if we do not know who you are.
Which cookies do we use and for what purpose?
In addition to cookies that are only used during a session and are deleted after your visit to the website (known as “session cookies”), cookies can also be used to store user settings and other information for a specific period of time (such as two years) (known as “permanent cookies”). You can see which cookies we use in our “cookie settings”. You can adjust these settings at any time.
We use the following additional cookies:
Necessary cookies
These cookies are required for operating the website. Without these, the website and its contents will not function properly. This includes the cookie of the “infogram.com” service, which belongs to Prezi, Inc., 101 Broadway 2nd Floor, Oakland, CA 94607, USA. This cookie is used to optimise the display of infographics. You can find the Terms of Use and Privacy Policy here.
Newsletter and marketing emails
In our newsletters and other marketing emails, we sometimes and – if permitted – also incorporate visible and invisible image elements, which can be retrieved from our servers to determine if and when you open the email, so that we can also measure and better understand how you use our services and tailor them to your requirements. You can block this in your email program (most are preset to do so). You agree to the use of these technologies by using our websites and consenting to receive newsletters and other marketing emails. If you do not want this, you must configure your browser or email program accordingly.
Web analytics
We use website web analysis tools on our website (such as digistats, see below for more details) to analyse the Internet traffic of our websites. We use this information to improve our online offering, for statistical purposes and for the efficient and secure operation of our websites. The collection, storage and analysis of this information is legitimate as we need it to improve our online offering, for statistical purposes and for the efficient and secure operation of our websites.
How can you block or delete cookies?
You have the option of preventing cookies from being stored on your device by configuring corresponding settings in your browser. You can find more information here.
Which statistical analyses do we carry out?
We use the “digistats” service, which can generate straightforward, data protection-friendly visitor statistics. We use this anonymised data to better tailor the content and functions of the website to individual user needs.
digistats stores the following data about visitors to the website:
HTTP header | acceptance language | Main language of the browser used |
HTTP header | referrer | The referrer shows the URL that the user last visited and from which they followed a link to the current page. |
User agent | viewport width | Shows the visitor’s screen resolution. |
User agent | browser | Shows the browser used by the visitor. |
User agent | platform | Operating system (such as Windows, Mac, Linux, Android, etc.) |
Geolocation | city | Shows the visitor’s city. |
Geolocation | continent | Shows the visitor’s continent (such as Europe). |
Geolocation | country | Shows the visitor’s country (such as Switzerland). |
Events | event | Shows which links a visitor has clicked on and how often. |
Landing pages | landing_page | Shows which links a visitor has clicked on and how often. |
Visitors | visitors | Shows how many unique visitors have visited the website. |
Time of day | visitors_hours | Shows the time the website was opened for the first time. |
Page views | page views | Shows how often a page has been opened. |
Time of day | pageviews_hours | Shows the time at which certain websites were opened. |
Search engines | search_engines | Shows which search engine was used to access a website. |
Social networks | social_networks | Shows which social networks were used to access a website. |
digistats does not store the following data:
digistats does not store the IP addresses of website visitors. By default, digistats uses the IP address to determine its geolocation in real time without storing the IP address. This involves an automatic internal database query in order to identify the geographical location of a visitor or a device.
Which Google services do we use?
This website uses various different Google services. Although we will do everything technically possible to protect your personal data when using these services, we cannot guarantee that Google will comply with the GDPR or the FADP accordingly. You can find an overview of Google’s Privacy Policy and Terms of Use here.
Google Maps
This website uses Google’s “Google Maps API” to display map material visually. When using Google Maps, Google also collects, processes and utilises data about the use of the Maps functions by visitors to the websites. You can find the Terms of Use for Google Maps here. For more information on Google’s Privacy Policy, please see Google Privacy Policy & Terms of Use.
Google Fonts
Google Fonts are used on our websites. To the best of our knowledge, Google does not store any personal data. However, for technical reasons, your IP address must be transmitted to Google so that the fonts can be transmitted to your browser. You can find more information from Google about Google Fonts here: https://fonts.google.com/
Google Analytics
We use Google Analytics to analyse and regularly improve how our website is used (legal basis: Article 13 paragraph 1 FADP or Article 6 paragraph 1 letter f GDPR). The statistics we collect allow us to improve our offering and make it more appealing to you as the user.
This service uses cookies – text files which are stored on your end device. The information collected by the cookies is usually sent to a Google server in the US, where it is stored.
IP anonymisation is used on this website. If a user is located within one of the member states of the European Union or the European Economic Area, the user’s IP address is truncated. This truncation removes the personal reference contained in your IP address. Under the agreement on order data processing, which the website operators have concluded with Google Inc., the latter uses the information thus collected to produce an analysis of website use and website activity and supplies services associated with Internet use.
You have the option of preventing the cookie from being stored on your device by configuring the appropriate settings in your browser. However, it cannot be guaranteed that you will be able to access all the functions of this website without restrictions if your browser does not allow cookies.
You can also use a browser plug-in to prevent the information collected by cookies (including your IP address) from being sent to Google Inc. and used by Google Inc.
To what extent do we use social media?
We may use social media plug-ins on our websites (such as Meta/Facebook, Instagram, YouTube, Pinterest, Twitter, Vimeo, LinkedIN, WhatsApp). You are able to see these as they are typically shown via corresponding icons. We have configured these elements such that they are disabled by default. If you activate them (by clicking on them), the operators of the respective social networks may register that you are on our website and where, and may use this information for their own purposes.
Please note that processing of your personal data by the respective social media providers and their services is carried out under their responsibility and in accordance with their data protection and security provisions. We do not receive any information about your user behaviour from them. We therefore disclaim any liability for the use of these social media plug-ins.
Order processing and data recipients
As part of our business activities and for the purposes stated in this Privacy Policy, we may share your personal data. In particular, this might be with:
- companies and subsidiaries of Centravo Holding
- our service providers (such as banks, insurance companies), including order processors (such as IT providers)
- traders, suppliers, subcontractors and other business partners
- industry organisations, associations, organisations and other bodies
In each case, data recipients are selected with care and are instructed in writing to fully comply with data protection regulations and are obligated to do so (order processing agreement as well as technical and organisational measures).
Some of these data recipients are located in Switzerland and Europe (EU/EEA). However, they may also be located outside of Europe.
International context
Switzerland and Europe
Centravo Holding AG and its companies are based in Switzerland. As a rule, the personal data collected and stored by Centravo Holding AG and its companies is processed in Switzerland, the EU or the European Economic Area (EEA). The Federal Data Protection Act (FADP) and the European General Data Protection Regulation (GDPR) apply here. The protection of data exchanged between Switzerland and the EU/EEA countries is guaranteed by the adequacy decision of the EU Commission.
Data transfer to the US and other third countries
On 10 July 2023, the EU Commission issued a new adequacy decision for secure and trustworthy data traffic between the EU and the US – the new EU-US Data Privacy Framework. Based on this, personal data can once again be transferred from the EU to US companies in compliance with data protection regulations.
If it is necessary to transfer your personal data to the US or to a country that does not have adequate data protection in the same way as Switzerland or an EU or EEA country, Centravo Holding AG or its companies will take the legally prescribed protective measures such as obtaining your express consent or implementing the EU Commission’s standard contractual clauses.
How long will my data be stored?
We will only store or retain your personal data for as long as is necessary with regard to the use and operation of the website or to fulfil contractual obligations (such as supplier contracts) or legal obligations (such as statutory retention periods) as well as to safeguard our legitimate interests (such as clarifying a cyber security incident). Thereafter, your personal data will be deleted from our systems or anonymised so that you can no longer be identified. No further data processing, personal evaluations or disclosure to third parties will take place, except in connection with technical security incidents or criminal acts.
How is my data protected?
Centravo Holding AG and its companies take all organisational and technical measures commensurate with the risks to protect the confidentiality, integrity and availability of the data and systems for which they are responsible. Please note, however, that information as well as messages sent by you to Centravo Holding AG and its companies by email are accessed via the Internet and therefore via an open network which is accessible to anyone. Although this website and its pages are encrypted, certain transport connection data such as senders and recipient addresses remain unencrypted. Even though security precautions are regularly reviewed and optimised, absolute security cannot be guaranteed. Ultimately it is your responsibility to protect your end devices, such as computers and smartphones.
How are our websites linked?
Our websites contain links (references) to third-party websites. Neither Centravo Holding AG nor its companies have any influence whatsoever on their content, design, accuracy, topicality, reliability or legality, nor on their Terms of Use and data protection. All liability is therefore rejected.
What rights do you have with regard to your data?
With regard to the data stored by Centravo Holding and its companies, you have the statutory rights to information, rectification, erasure, restriction, objection, disclosure and portability of data, revocation and objection.
These rights are not unrestricted and may be subject to exceptions or limitations (for example, if your personal data has been stored for legal or contractual obligations, legal retention obligations exist or it is required for the purposes of providing evidence). To exercise your rights, please contact the following address: datenschutz@centravo.ch
If you believe that the processing of your data violates data protection law or that your data protection rights have been violated in any other way, you can contact and lodge a complaint to the data protection authority in the jurisdiction in which you live.
Changes
We reserve the right to change this Privacy Policy at any time with effect for the future. In particular, a change may be necessary in order to comply with changed legal provisions, requirements of the regulatory authorities or technological changes. The version published on our website applies.
Last amendment: 28 September 2023