Data protection declaration
This data protection declaration informs you about the type, scope and purpose of the collection and use of personal data on our website www.trafobaden.ch (hereinafter "website") by Trafo Baden Betriebs AG (hereinafter "we" or "us") and provides information about the rights to which you are entitled. These rights are governed by the applicable data protection laws.
1. Responsible party and contact
The person responsible for data processing on this website and the contact for data protection concerns is:
Trafo Baden Betriebs AG
Brown Boveri Platz 1
5400 Baden
+41 56 204 08 88
info@trafobaden.ch
2. Collection and processing of personal data
Personal data is processed in the following categories:
- Client data of clients for whom we provide or have provided services.
- Personal data that we have received indirectly from our customers in the course of providing services.
- Digital visitor data when clicking on our website.
- Customer address data when using our newsletter.
- Customer data regarding personal profile / interests due to participation in an event of ours.
- Miscellaneous data when we communicate in any way (location, time, subject matter varies).
- Data in the case of other contractual relationships, e.g. as a supplier, service provider or consultant.
- Personal data in the case of job applications.
- Data if we are obliged to do so for legal reasons.
- Data which we use in connection with data protection or compliance with the law.
You can find more detailed information under point 4.
3. Categories of personal data
The type of processing of personal data and the scope depends on the relationship between you and Trafo Baden Betriebs AG as well as the purpose or reason for which we process the data. In addition to your contact details, we also process other information about you or about persons who have a relationship with you. If this information is particularly sensitive personal data, this has further consequences for our processing and our internal procedures.
The following categories of personal data, depending on the purpose, are collected by us:
- Contact information (e.g. surname, first name, address, telephone number, email).
- Personal customer information (e.g. date of birth, nationality, marital status, profession, title, job title, AHV number)
- Data on their creditworthiness and company law data as well as financial information (bank accounts)
- Data in connection with specific orders / contracts
- Website data (e.g. IP address, device information (UDI), browser information, website usage (analysis and use of plugins, etc.)
- Application data (e.g. CV, references)
- Advertising and marketing information as well as personal interests (e.g. newsletter subscription, interest in specific topics, specialisations)
- Security and network data (e.g. visitor lists, access controls, network and mail scanners, telephone call lists)
To the extent permitted, we also take certain data from publicly accessible sources (e.g. debt collection registers, land registers, commercial registers, press, internet) or receive such data from our clients and their employees, from authorities, (arbitration) courts and other third parties. In addition to the data about you that you give us directly, the categories of personal data that we receive about you from third parties include, in particular, information from public registers, information that we learn in connection with official and legal proceedings, information in connection with your professional functions and activities, information about you in correspondence and meetings with third parties, creditworthiness information, information about you that people close to you (family, advisors, legal representatives, etc.) give us so that we can conclude contracts with you. ) so that we can conclude or process contracts with you or involving you (e.g. references, your address for deliveries, powers of attorney). Information on compliance with legal requirements such as anti-money laundering and export restrictions, information from banks, insurance companies, sales and other contractual partners of ours on the use or provision of services by you (e.g. payments made, purchases made), information from the media and Internet about you (insofar as this is indicated in the specific case, e.g. in the context of a job application etc.). in the context of a job application, etc.), your addresses and, if applicable, interests and other socio-demographic data (for marketing), data in connection with the use of the website (e.g. IP address, MAC address of the smartphone or computer, details of your device and settings, cookies, date and time of the visit, pages and content accessed, functions used, referring website, location details).
4. What do we process the data for (purpose)?
When you contact us (e.g. via telephone, contact form or e-mail), when we contact you or within the framework of our business relationship with our customers and other contractual relationships with business partners and other persons involved, we process the necessary personal data.
The personal data is in particular the following information:
- Contact information (e.g. surname, first name, address, telephone number, e-mail, other contact information).
- Personal information (e.g. date of birth, nationality, marital status, profession, title, job title, passport / ID number, AHV number, family circumstances, etc.).
- Data on your creditworthiness and on your entries in various registers or, if applicable, sanction lists, as well as data in specialised databases and from digitally publicly accessible sources
- Financial information (e.g. data on bank accounts, investments or shareholdings)
- Business data, depending on the order/contract
- Personal data requiring special protection
We process this personal data for the described purposes based on the following legal grounds:
- Conclusion or performance of a contract with or for the benefit of the data subject, including contract initiation and any enforcement (e.g. supply contract, sales contract, service contract).
- Fulfilment of a legal obligation (e.g. if we have to collect and/or disclose data due to a legal obligation).
- Safeguarding legitimate interests, (e.g. for administrative purposes, to improve our quality, ensure security, manage risk, enforce our rights, defend ourselves against claims or to check for potential conflicts of interest)
- Consent (e.g. to send them marketing information, to create images, to use cookies or the newsletter).
4.1 Website
No personal data need to be disclosed in order to use our website. However, the server collects a series of user information with each call, which is temporarily stored in the server's log files.
When using this general information, no assignment to a specific person takes place. The collection of this information or data is technically necessary to display our website and to ensure its stability and security. This information is also collected in order to improve the website and analyse its use.
Our website is hosted by NetZone AG (Panoramaweg 2, 5040 Schöftland). For further information, please refer to the privacy policy of NetZone AG at netzone.ch/downloads/datenschutzerklaerung_netzone.pdf
4.2 Newsletter
If you subscribe to our newsletter, we will use your address and contact details to send you the newsletter. You can subscribe to our newsletter with your consent. Mandatory data for sending the newsletter are your full name as well as your e-mail address, which we store after your subscription. The legal basis for the processing of your data in connection with our newsletter is your consent to the sending of the newsletter. You can revoke this consent and unsubscribe from the newsletter at any time.
4.3 Events
If you participate in an event organised by us, we collect personal data in order to organise and hold the event and, if necessary, to send you additional information afterwards. We also use your information to inform you of other events. You may be photographed or filmed by us at these events and we may publish this footage internally or externally.
5. Tracking technologies
We use cookies on our website. These are small files that are automatically created by your browser and stored on your end device (laptop, tablet, smartphone or similar) when you visit our site.
Information is stored in the cookie that is related to the specific end device used. However, this does not mean that we gain direct knowledge of your identity. The use of cookies serves, on the one hand, to make the use of our offer more pleasant for you. We use so-called session cookies to recognise that you have already visited individual pages of our website.
In addition, we also use temporary cookies to optimise user-friendliness, which are stored on your end device for a certain fixed period of time. If you visit our site again in order to use our services, it is automatically recognised that you have already been with us and which entries and settings you have made so that you do not have to enter them again. On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimising our offer for you. These cookies enable us to automatically recognise that you have already been to our website when you visit it again.
The data processed by cookies is necessary for the above-mentioned purposes. Most browsers accept cookies automatically. However, you can configure your browser in such a way that no cookies are stored on your computer or a message always appears before a new cookie is created. However, the complete deactivation of cookies may mean that you cannot use all the functions of our website.
6. Web and newsletter analysis
In order to obtain information about the use of our website, to improve our Internet offering and to be able to address you with advertising on third-party websites or on social media, we use the following technologies: Google Analytics, Google Maps, Google Tag Manager, Google reCAPTCHA, Adobe Fonts, Social Media Plugins, Newsletter Tracking.
These tools are provided by third-party providers. As a rule, the information collected for this purpose about the use of a website is transmitted to the third-party provider's server through the use of cookies or similar technologies. Depending on the third-party provider, these servers may be located abroad.
The transmission of the data usually takes place with shortening of the IP addresses, which prevents the identification of individual end devices. A transmission of this information by third-party providers only takes place due to legal regulations or in the context of order data processing.
6.1 Google Analytics
We use Google Analytics, the web analysis service of Google LLC, Mountain View, California, USA, on our websites. Google Limited Ireland ("Google") is responsible for Europe. To deactivate Google Analytics, Google provides a browser plug-in at https://tools.google.com/dlpage/gaoptout?hl=de. Google Analytics uses cookies. These are small text files that make it possible to store specific information related to the user on the user's terminal device. These enable an analysis of the use of our website by Google. The information collected by the cookie about the use of our pages (including your IP address) is usually transmitted to a Google server in the USA and stored there. We would like to point out that on this website Google Analytics has been extended by the code "gat._anonymizeIp();" to ensure anonymised collection of IP addresses (so-called IP masking). If anonymisation is active, Google shortens IP addresses within member states of the European Union or in other contracting states of the Agreement on the European Economic Area, which is why no conclusions can be drawn about your identity. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. Google may associate your IP address with other Google data. For data transfers to the USA, Google has undertaken to sign and comply with the EU standard contractual clauses.
6.2 Google Maps
On our website we use Google Maps (API) from Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; responsible for Europe is Google Limited Ireland, "Google"). Google Maps is a web service for displaying interactive (land) maps in order to visually present geographical information. By using this service, our location is shown to you and a possible approach is made easier. When you call up those sub-pages in which the Google Maps map is integrated, information about your use of our website (such as your IP address) is transmitted to Google servers in the USA and stored there. This takes place regardless of whether Google provides a user account via which you are logged in or whether no user account exists. If you are logged in to Google, your data will be directly assigned to your account. If you do not wish your data to be associated with your Google profile, you must log out before activating the button. Google stores your data (even for users who are not logged in) as usage profiles and evaluates them.
For data transfers to the US, Google has committed to sign and comply with the EU standard contractual clauses.
6.3 Google Tag Manager
We use Google Tag Manager on our website to create tags for our website and applications. These tags enable us to target marketing measures concerning our services to potential customers (re-targeting).
We use advertising technologies from Google (Ads) and Facebook. According to our settings in Google Tag Manager, Google and Facebook set so-called conversion cookies. This is necessary to verify the effectiveness of the corresponding advertising measures. We have a legitimate interest in this. In addition, we use Google Tag Manager to set re-targeting tags. These tags enable us to target users with information about our services when they visit another website (e.g. Facebook).
6.4 Adobe Fonts
This website uses web fonts from Adobe for the uniform display of certain fonts. The provider is Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA (Adobe).
When you call up this website, your browser loads the required fonts directly from Adobe in order to be able to display them correctly on your end device. In doing so, your browser establishes a connection to Adobe's servers in the USA. This enables Adobe to know that your IP address has been used to access this website. According to Adobe, no cookies are stored when providing the fonts.
The storage and analysis of the data is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the uniform presentation of the typeface on its website. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) as defined by the TTDSG. The consent can be revoked at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission.
6.5 Social Media Plugins
So-called social media plugins ("plugins") from third-party providers are used on our website. The plugins are recognisable by the logo of the respective social network. Via the plugins, we offer you the opportunity to interact with the social networks and other users. We use the following plugins on our website: Facebook, Instagram, LinkedIn, YouTube. When you call up our website, your browser establishes a direct connection to the servers of the third-party provider. The content of the plugin (e.g. YouTube videos) is transmitted directly to your browser by the respective third-party provider and integrated into the page.
The data transfer for the display of content (e.g. publications on Instagram) takes place regardless of whether you have an account with the third-party provider and are logged in there. If you are logged in to the third-party provider, the data we collect is also directly assigned to your account with the third-party provider. If you activate the plugins, the information will also be published on the social network and displayed to your contacts there. The purpose and scope of the data collection and the further processing and use of the data by the third-party providers, as well as your rights in this regard and setting options for protecting your privacy, can be found in the data protection information of the third-party providers. The third-party provider stores the data collected about you as a usage profile and uses it for the purposes of advertising, market research and/or designing its website to meet your needs. Such an evaluation is also carried out in particular for users who are not logged in for the purpose of displaying needs-based advertising and to inform other users of the social network about your activities on our website. If you would like to prevent the third-party providers from assigning the data collected via our website to your personal profile in the respective social network, you must log out of the corresponding social network before visiting our website. You can also completely prevent the loading of the plugins with specialised add-ons for your browser such as "Ghostery" or "NoScript".
6.6 Newsletter Tracking
We use Hubspot to send our digital newsletters. With this software, newsletters can be sent and analysed. In order to carry out this analysis, we collect device and access data. To collect these, the newsletter contains a pixel. The newsletter and the websites that can be accessed from this newsletter are also tracked with cookies. A pixel is an image file that is stored on the recipient's device.
With the help of these technologies, we receive information as to whether the newsletter has been received, opened and which content has been clicked on. We use this information to improve our newsletter and our offers. The setting of a pixel can be prevented by deactivating HTML in the mail programme (this varies depending on the mail programme).
7. Data Sharing and Data Transfer
We will only disclose your data to third parties if this is necessary to provide our service, if these third parties provide a service for us, if we are obliged to do so by law or by the authorities or if we have an overriding interest in disclosing the personal data. We will also disclose personal data to third parties if you have given your consent or requested us to do so.
Not all personal data is transmitted in encrypted form as standard. Unless explicitly agreed otherwise with the client, all data is transmitted unencrypted.
The following categories of recipients may receive personal data from us:
- Other service providers (e.g. IT service providers, hosting providers, suppliers).
- Third parties within the scope of our legal or contractual obligations, authorities, state institutions, courts.
We conclude contracts with service providers who process personal data on our behalf, obliging them to ensure data protection. The majority of our service providers are located in Switzerland or in the EU / EEA. Certain personal data may also be transferred to the USA (e.g. Google Analytics data) or, in exceptional cases, to other countries worldwide. If data transfer to other countries that do not have an adequate level of data protection is necessary, this will be done on the basis of the EU standard contractual clauses (e.g. in the case of Google) or other suitable instruments.
8. Duration of storage of personal data
We process and store your personal data for as long as it is necessary for the fulfillment of our contractual and legal obligations or for the other purposes pursued with the processing, i.e. for example for the duration of the entire business relationship (from the initiation, processing to the termination of a contract) as well as in accordance with the statutory retention and documentation obligations. It is possible that personal data will be stored for the period in which claims can be asserted against our company (i.e. in particular during the statutory limitation period) and insofar as we are otherwise legally obliged to do so or legitimate business interests require this (e.g. for evidence and documentation purposes). As soon as your personal data are no longer required for the above purposes, they will be deleted or made anonymous as far as possible. In principle, shorter retention periods of twelve months or less apply to operational data (e.g. system protocols, logs).
9. Data Security
We take appropriate technical and organizational security precautions to protect your personal data
- against unauthorized access (confidentiality)
- so that they are available when they are needed (availability)
- against misuse and changes (integrity)
- so that they are processed in a traceable manner (traceability).
This can be done by issuing instructions, training, IT and network security solutions, access controls and restrictions, encryption of data carriers and transmissions, pseudonymization and controls.
The data protection officer of Trafo Baden Betriebs AG must be involved in new projects from the start and regularly checks data security in accordance with the principles, goals and TOMs in Art. 1 to 3 DSV.
10. Obligation to provide personal data
As part of our business relationship, you must provide the personal data that is required to establish and conduct a business relationship and to fulfill the associated contractual obligations (as a rule, you do not have a legal obligation to provide us with data). Without this data we will not be able to enter into a contract with you (or the entity or person you represent) or to perform it. The website cannot be used either if certain information to ensure data traffic (e.g. IP address) is not disclosed.
11. Your Rights
You have the following rights in connection with our processing of personal data:
- Right to information about your personal data stored by us, the purpose of the processing, the origin and recipients or categories of recipients to whom personal data is passed on.
- Right to rectification if your data is incorrect or incomplete.
- Right to restrict the processing of your personal data.
- Right to demand the deletion of the processed personal data.
- Right to data portability.
- Right to object to data processing or to revoke consent to the processing of personal data at any time without giving reasons.
- Right to lodge a complaint with a competent supervisory authority, if provided for by law.
To assert these rights, contact the address given under point 1.
Please note, however, that we reserve the right to assert the statutory restrictions on our part, for example if we are obliged to store or process certain data, have an overriding interest in this (to the extent that we can invoke this) or you need them for the assertion of require claims. If you incur any costs, we will inform you in advance.