Version: January 2025 /// This Privacy Policy explains how we collect, process, and protect personal data when you use our website and related online services. “We” refers to the operator of swissriffs.com as listed in the imprint. This policy also applies to our social media profiles.
Personal data means any information relating to an identified or identifiable individual.
If you provide personal data of third parties, we assume you are authorised to do so and that these persons have been informed about this Privacy Policy.
Our practices follow the Swiss Federal Act on Data Protection (FADP/DSG) and, where applicable, the EU General Data Protection Regulation (GDPR).
1. Controller and Contact
The data controller is the website operator listed in the imprint of swissriffs.com. For any privacy-related concerns, you may contact us using the details provided in the imprint.
2. Collection and Processing of Personal Data
We primarily process data that you provide to us directly, as well as data collected automatically when you visit our website, interact with our services, or subscribe to our newsletter.
We may collect the following categories of data:
* Contact information (name, email address, optional address)
* Technical data (IP address, device information, browser type)
* Usage data (visited pages, date and time, interactions, referrer URL)
* Newsletter interaction data (opens, clicks)
* Data received through integrated third-party services (Google, YouTube, Mailchimp, Elementor tools)
* Publicly available information where legally permitted
3. Purposes of Data Processing
We process personal data for the following purposes:
* Operating, optimising, and developing our website and services
* Communication (contact forms, email responses, customer support)
* Newsletter distribution via Mailchimp
* Usage analysis (Google Analytics and similar tools)
* Marketing and performance measurement
* Ensuring IT and server security (log files)
* Fulfilling legal obligations
* Protecting our legitimate business interests (e.g., fraud prevention)
Where you have given consent (e.g., newsletter registration), you may withdraw it at any time.
4. Cookies, Tracking and Technologies We Use
Our website uses cookies and similar technologies to:
* Enable core website functions
* Store user settings
* Analyse website traffic
* Support marketing and advertising activities
You can disable cookies in your browser settings, though certain functions may be limited.
4.1 Google Services
We use various Google services (USA/EU), including:
* Google Analytics (with IP anonymisation when available)
* Google Tag Manager
* Google Fonts (loaded externally)
* YouTube video embeds
* Google reCAPTCHA (for spam protection)
Google may link collected data with your Google account if you are logged in.
4.2 Mailchimp Newsletter
If you subscribe to our newsletter, your personal data (email address, optional name) is stored on servers of **Mailchimp (USA)**.
Mailchimp uses tracking pixels that detect whether you open an email. You can avoid this by unsubscribing or blocking images in your email program.
4.3 Elementor & Leap13 Add-ons
Our website is built using **WordPress**, **Elementor Pro**, and add-ons such as those from **Leap13**.
These tools may collect technical data necessary for delivering content and ensuring the correct functioning of the website.
We do not modify Elementor system files, and only strictly necessary data is collected.
4.4 External Streaming Links
We link to third-party streaming services, including:
* Spotify
* Apple Music
* YouTube / YouTube Music
* Amazon Music
* Deezer
* TikTok
* Other platforms distributed through DistroKid
When you click such a link, you leave our website. Those platforms operate independently under their own privacy policies. We do not receive any personal data from them.
5. Data Disclosure and International Transfers
We share personal data only when necessary or when we have a legitimate interest. Recipients may include:
* IT and hosting service providers
* Analytics and newsletter service providers (Google, Mailchimp)
* External partners involved in delivering our services
* Authorities when legally required
Data may be transferred to countries without an adequate level of data protection, including the USA.
Where necessary, we use safeguards such as Standard Contractual Clauses (SCCs) or rely on consent and legal exceptions.
6. Data Retention
We store personal data only as long as necessary:
* Technical logs: usually up to 12 months
* Newsletter data: until you unsubscribe
* Contract and business data: according to statutory retention requirements
* Analytics data: depending on service, up to 26 months
Data that is no longer required is deleted or anonymised.
7. Data Security
We take appropriate technical and organisational measures to protect your data from loss, misuse, unauthorised access, and alteration.
8. Profiling and Automated Decision-Making
We do not conduct automated decision-making or profiling within the legal meaning of the term. Any analytics tools used (e.g., Google Analytics) serve statistical purposes only.
9. Your Rights
Under applicable data protection laws, you have the right to:
* Access your personal data
* Request correction or deletion
* Restrict or object to data processing
* Withdraw consent
* Request data portability (where applicable)
To exercise your rights, you may need to verify your identity. Please contact us using the details provided in the imprint.
10. Changes to This Privacy Policy
We may update this Privacy Policy at any time without prior notice. The version published on our website is the currently valid one.