Below you will find our privacy policy, which applies to our website https://www.baselnetgroup.ch/ , Articles 13, 14 and 21 of the General Data Protection Regulation (GDPR) and Articles 19, 20 FADP.

We inform you about the processing of your personal data by us and the rights and claims to which you are entitled on the basis of data protection regulations.

1. responsible body for data processing

baselnetgroup AG
Binningerstrasse 94
4123 Allschwil

Phone: 061 268 60 60

E-Mail: welcome@baselnetgroup.ch

2. sources and data for the processing of personal data
We receive and process personal data from you that you have transmitted to us, for example via our contact form, or that we receive through the use of our website.

This may involve these types of data:

• Inventory data (name, address).
• Contact details (e-mail, telephone numbers).
• Content data (text entries, photographs, videos).
• Usage data (websites visited, interest in content, access times).
• Meta/communication data (device information, IP addresses).

We may also process other data comparable to the categories mentioned.

Data is also stored in server log files, which are collected and automatically stored by the provider and are largely transmitted to us by your browser. These are:

• Referrer URL
• Host name of the accessing computer
• Date and time of the server request
• Name of the requested file
• Page from which the corresponding file was requested
• Web browser and operating system used
• (Complete) IP address of the requesting computer
• Amount of data transferred

We may process other data comparable to the categories mentioned.

The legal basis for the temporary storage of this data or the log files is Art. 6 para. 1 lit. f) GDPR, Art. 31 DSG. We collect the listed data to ensure a smooth connection to the website and to enable users to use our website comfortably. The log file is used to evaluate system security and stability as well as for administrative purposes.

3. hosting
We use the following hosting provider for our website:

Hostpoint AG
New Jonastrasse 60
8640 Rapperswil-Jona

Switzerland We make use of these hosting services: Infrastructure and platform services, computing capacity, storage space, database services, security services and technical maintenance services for the purpose of operating the online offering. On the basis of our legitimate interest, we process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors to this online offer in accordance with Art. 6 para. 1 lit. f GDPR. Art. 6 para. 1 lit. f) GDPR in conjunction with. Art. 28 GDPR, in order to provide you with an efficient and secure online service. The hosting provider collects data about every access to the server on which this service is located (so-called server log files). The logged data includes the name of the website accessed, file, date, time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider. The data will be stored for as long as this is necessary to fulfill the purposes for which the data was collected, we have a legitimate interest in storing the data or are legally obliged to do so, or storage is technically necessary (e.g. in the case of backups or document management systems).

You can find the hosting provider’s privacy policy here:

https://www.hostpoint.ch/hostpoint/kontakt-agb.html#datenschutz

4. purpose of processing and legal basis
We process personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR) and the Federal Act on Data Protection (FADP)

If necessary, we process your data beyond the actual fulfillment of the contract to protect our legitimate interests or those of third parties. We collect the data listed above in order to ensure a smooth connection to the website and to enable convenient use by users. The log file is used to evaluate system security and stability as well as for administrative purposes. We also store your data for reasons of technical security, in particular to defend against attempted attacks on our web server.

Examples in this context:

• Provision of the online offer, its functions and content,
• Answering contact requests and communicating with users,
• Testing and optimization of procedures for needs analysis and direct customer contact;
• Advertising or market and opinion research, e.g. through the use of cookies, unless you have objected to the use of your data;
• Assertion of legal claims and defense in legal disputes;
• Ensuring IT security and IT operations;
• Measures for business management and further development of services and products.
• The lawfulness of the processing of personal data for certain purposes (e.g. disclosure of data to third parties, evaluation of data for marketing purposes) is given on the basis of your consent if you have given it to us in accordance with Art. 6 para. 1 lit. f GDPR. Art. 6 para. 1 lit. a) GDPR, Art. 31 DSG have given. Any consent given can be revoked at any time.

We would like to point out that the revocation is only effective for the future. Processing that took place before the revocation is not affected by this.

We are also subject to legal requirements. Insofar as data is processed in connection with this, this is done exclusively on the basis of legal regulations.

5 Relevant legal bases:

• Consent, Art. 6 para. 1 lit. a and Art. 7 GDPR; Art. 31 FADP
• for the fulfillment of our services and implementation of contractual measures as well as answering inquiries, Art. 6 para. 1 lit. b GDPR, Art 31 para. 2 DSG;
• for the fulfillment of legal obligations, Art. 6 para. 1 lit. c GDPR, Art. 31 FADP;
• in the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR;
• for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, Art. 6 para. 1 lit. e GDPR, Art 31 para. 1 DSG.
• for the protection of legitimate interests, Art. 6 para. 1 lit. f GDPR, Art 31 para. 1 DSG.
• The processing of data for purposes other than those for which they were collected is governed by the provisions of Art. 6 para. 4 GDPR, Art 31 DSG.

The processing of special categories of data (in accordance with Art. 9 (1) GDPR) is governed by the provisions of Art. 9 (1) GDPR. 2 GDPR, Art. 5 FADP.

6. disclosure of data
Within the company, only those departments receive your data that are also required to fulfill our contractual and legal obligations. Processors employed by us (Art. 28 GDPR, Art. 9 FADP) may also receive data for the aforementioned purposes. These are companies in the categories of IT services, telecommunications, consulting and advisory as well as sales and marketing.

When passing on data to recipients outside the company, please note that we will only pass on your data if this is permitted or required by law, if you have given your consent or if we are authorized to provide information. Recipients of personal data in this context may be, for example, public bodies and institutions (e.g. public prosecutor’s office, police, supervisory authorities) if there is a legal or official obligation.

7. data transfer to third countries
Data is only transferred to third countries or abroad if this is required by law or if you have given us your consent. If required by law, we will inform you separately about further details.

8. use of cookies
Our website uses cookies, which are stored by the browser on your device and contain certain settings for the use of the website (e.g. for the current session). If personal data is also processed by individual cookies implemented by us, the processing is carried out in accordance with Art. 6 para. 1 lit. b) GDPR, Art. 31 FADP either for the performance of the contract or pursuant to Art. 6 para. 1 lit. f) GDPR to safeguard our legitimate interests in the best possible functionality of the website and a customer-friendly and effective design of the page visit. Cookies are used to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser. Most of the cookies we use are so-called session cookies, which are automatically deleted after the browser is closed. Other cookies remain stored on your end device until you delete them or the storage period expires. These cookies enable us to recognize your browser on your next visit.

In some cases, cookies are used to simplify website processes by saving settings (e.g. keeping options that have already been selected available).

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.

You can raise a general objection to cookies used for online marketing purposes via the US website
http://www.aboutads.info/choices/
or via the EU page http://www.youronlinechoices.com/ .

You can also deactivate the storage of cookies in your browser settings. Please note that you may then not be able to use all the functions of this website.

a. Google Maps
This site uses the map service Google Maps. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

The map service Google Maps will only be loaded with your consent. Your consent can be freely revoked at any time.

To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission. If Google Maps is activated, Google may use Google Fonts for the purpose of uniform display of fonts. When you call up Google Maps, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.

The US company we use, Google, is a DPF-certified company. The legal basis is therefore the EU-U.S. Data Privacy Framework. Your consent is still required for data that is collected for analysis purposes. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR, Art. 31 FADP. Consent can be revoked at any time.

Further information can be found here:

https://privacy.google.com/businesses/gdprcontrollerterms/ and

https://privacy.google.com/businesses/gdprcontrollerterms/sccs/

You can find more information on the handling of user data in Google’s privacy policy:

https://policies.google.com/privacy?hl=de

b. Google APIS
We use the Google APIS service provided by Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States of America on our website.

The processing also takes place in a third country for which there is no adequacy decision by the Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed during the transfer, as it cannot be ruled out that authorities in the third country, for example, may have access to the data collected. Therefore, the transfer of personal data takes place exclusively on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR and Art. 9 para. 2 lit. a GDPR. We use Google APIS to be able to load additional Google services on the website. Google Apis is a collection of interfaces for communication between the various Google services used on your website. The following data is collected for processing: IP address.

You can revoke your consent at any time by changing the settings made via our cookie banner. Further information can be found in Google’s privacy policy at:

https://policies.google.com/privacy

c. Gstatic
We use the Gstatic service of Google LLC, 1600 Amphitheatre Parkway, 94043 Mointain View, United States of America on our website.

The processing takes place in a third country for which there is no adequacy decision by the Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed during the transfer, as it cannot be ruled out that authorities in the third country, for example, may have access to the data collected. The legal basis for the transfer of your personal data is your consent. Consent acc. Art. 6 para. 1 lit. a GDPR and Art. 9 para. 2 lit. a GDPR. Gstatic is a service used by Google to retrieve static content in order to reduce bandwidth usage and preload required catalog files.

You can revoke your consent at any time by changing the settings made via our cookie banner. You can find more information on revoking your consent in Google’s privacy policy at:

https://policies.google.com/privacy

d. Google Fonts
We integrate the fonts (“Google Fonts”) of the provider Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, into our online offer. Privacy policy: https://www.google.com/policies/privacy/

The use of Adobe Fonts is based on your consent, which you have previously given us via the Consent Manager. If your browser does not support fonts or you have not given us your consent, a standard font will be used by your computer.

When you call up a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. For this purpose, the browser you are using must connect to Google’s servers. Google collects the following data:

• Your IP address,
• The time required by the web browser to download the fonts,
• The time from downloading the fonts with the web browser to using the fonts,
• Whether an ad blocker is installed to determine if the ad blocker is interfering with the correct tracking of page views,
• Operating system and browser version.

Opt-Out: https://adssettings.google.com/authenticated

e. Google Tag Manager
Google Tag Manager is a service provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). It is used to create, update and manage tags. These are used to measure traffic and visitor behavior on our website and to record the impact of online advertising and social channels.

Data processing takes place exclusively on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. This can be freely revoked at any time.

If you visit our website and have given your consent, the current tag configuration will be sent to your browser. The tool itself does not collect any personal data. However, it triggers other tags, which in turn may collect data. Further information on how Google Tag Manager tags work can be found here:

https://support.google.com/tagmanager/answer/2772432?hl=de&topic=2574304&ctx=topic and in the usage guidelines:
https://www.google.com/tagmanager/use-policy.html

9. job vacancies and online applications
From time to time, we advertise vacancies in our company on our website with the option of sending us an application online (by e-mail). If you apply for an advertised position, your data will only be collected and processed by us as part of the application process and deleted by us once the vacancy has been filled, unless legal requirements (e.g. the burden of proof under the General Equal Treatment Act) make longer storage necessary, you have expressly consented to longer storage in the event that another position is to be filled at a later date, or we conclude an employment contract with you, in which case the data will be stored by us in the personnel file and for processing payroll accounting in compliance with the statutory data protection requirements. The legal basis for data processing is Art. 6 para. 1 p. 1 lit. f) GDPR, Art 31 DSG. The legitimate interest lies in the fulfillment of the burden of proof under the General Equal Treatment Act. The data will be deleted after 6 months at the latest if you consent to longer storage.

10. administration, financial accounting, office organization, contact management
We process data in the context of administrative tasks and the organization of our business, financial accounting and compliance with legal obligations, such as archiving. The same data that we process as part of the provision of our contractual services is processed. The legal basis for the processing is Art. 6 para. 1 lit. c) GDPR and Art. 6 para. 1 lit. f) GDPR, Art 31 DSG. Customers, interested parties, business partners and website visitors are affected by the processing. The purpose of the processing is administration, financial accounting, office organization, archiving of data, performance of our tasks and provision of our services. To ensure this, data is passed on to the tax authorities, consultants (e.g. tax consultants or auditors) and other fee offices and payment service providers. Based on our business interests, details of suppliers, event organizers and other business partners are also stored for the purpose of possibly contacting them at a later date.

11. contractual services
In order to be able to provide our contractual and pre-contractual services to our contractual partners, interested parties, other clients, customers, clients, clients or contractual partners, we process data in accordance with Art. 6 para. 1 lit. a GDPR. 1 lit. b) GDPR, Art 31 DSG. Master data of our contractual partners (e.g. names and addresses), contact data (e.g. email addresses and telephone numbers), contract data (e.g. services used, contract content, contractual communication, names of contact persons) and payment data (e.g. bank details, payment history) are processed. In principle, we do not process special categories of personal data, but only if they are part of commissioned or contractual processing. We process the data required to establish and fulfill the contractual services. Data is only disclosed to external persons and companies if this is necessary within the framework of a contract. When processing the data provided to us as part of an order, we act in accordance with the instructions of the client and the legal requirements. If our online services are used, we may store the IP address and the time of the respective user action. This storage takes place on the basis of our legitimate interest, as well as the user’s interest in protection against misuse and other unauthorized use.

12. duration of storage of personal data
To the extent permitted by law, we process and store your personal data, in particular as long as this is necessary to fulfill the respective purposes and the deletion does not conflict with any statutory retention requirements. If the data are not deleted because they are required for other and legally permissible purposes, their processing will be restricted. This means that the data is blocked and not processed for other purposes. This applies in particular to data that must be stored for commercial or tax law reasons or due to other legal requirements.

13. your rights
We would like to inform you about your rights as a data subject vis-à-vis the controller with regard to the processing of your personal data in accordance with the General Data Protection Regulation:

a. Right to information:
In accordance with Art. 15 GDPR, Art. 25 FADP, to request information about your personal data processed by us.

b. Right to rectification:
in accordance with Art. 16 GDPR, Art. 32 FADP, to demand the immediate rectification of incorrect or incomplete personal data stored by us.

c. Right to erasure:
in accordance with Art. 17 GDPR, Art. 32 FADP, to request the erasure of your personal data stored by us, unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims.

d. Right to restriction of processing:
in accordance with Art. 18 GDPR to demand the restriction of the processing of your personal data if the accuracy of the data is disputed by you, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you need it to assert, exercise or defend legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR.

e. Right to data portability pursuant to Art. 20 GDPR, Art. 28 FADP:
You have the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request transmission to another controller, insofar as this is technically feasible

f. Right to lodge a complaint:
You can lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of the federal state in which our registered office is located or, if applicable, that of your usual place of residence or workplace. In addition, there is a right to consult the FDPIC (Art. 23 nDSG).

g. Right of revocation:
You can revokethe consent you have already given in accordance with Art. 7 para. 3 GDPR revoked. You also have the right to withdraw your consent to the processing of data at any time with effect for the future. In the event of revocation, we will delete the data concerned immediately, unless further processing can be based on a legal basis for processing without consent. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

h. Right of objection
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Article 6(1)(f) GDPR. e) GDPR (data processing in the public interest) and Article 6(1) lit. f) of the General Data Protection Regulation (data processing on the basis of a balancing of interests). This also includes profiling based on this provision within the meaning of Article 4 No. 4 GDPR.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defense of legal claims.

The objection can be made informally and should preferably be sent to the e-mail address given above.

14. obligation to provide data
When using the internet or social media, you only need to provide the personal data that is required for use or that we are legally obliged to collect. Without this data, meaningful use may be restricted or impossible.

15. external links
If there are links to other websites, we have neither influence nor control over the linked content and the data protection regulations there. When accessing linked websites, we recommend checking the data protection declarations of these websites in order to determine whether and to what extent personal data is collected, processed, used or made accessible to third parties.

16. Use of SalesViewer® technology:
This website uses SalesViewer® technology from SalesViewer® GmbH on the basis of the website operator’s legitimate interests (Section 6 paragraph 1 lit.f GDPR) in order to collect and save data on marketing, market research and optimisation purposes.

In order to do this, a javascript based code, which serves to capture company-related data and according website usage. The data captured using this technology are encrypted in a non-retrievable one-way function (so-called hashing). The data is immediately pseudonymised and is not used to identify website visitors personally

The data stored by SalesViewer® will be deleted as soon as they are no longer required for their intended purpose and there are no legal obligations to retain them.

The data recording and storage can be repealed at any time with immediate effect for the future, by clicking on https://www.salesviewer.com/opt-out in order to prevent SalesViewer® from recording your data. In this case, an opt-out cookie for this website is saved on your device. If you delete the cookies in the browser, you will need to click on this link again.