Privacy policy
With this data protection declaration we inform you about the processing of personal data in connection with our urbndrnk.ch website and our other online offer.
For individual or additional offers and services, there may be special, supplementary or further data protection declarations as well as other legal documents such as general terms and conditions, terms of use or conditions of participation.
Our online offer is subject to Swiss data protection law and any applicable foreign data protection law, in particular that of the European Union (EU) with the General Data Protection Regulation (GDPR). The EU acknowledgesthat Swiss data protection law guarantees adequate data protection.
1. Contact addresses
Responsibility for the online offer:
Tenoris GmbH
Marthalerstrasse 6
8463 Benken
Switzerland
Data protection officer
We have the following data protection officer as a contact point for data subjects and as a contact for supervisory authorities for data protection inquiries:
Patrick Stauffacher
c / o Tenoris GmbH
Marthalerstrasse 6
8463 Benken
Switzerland
2. Processing of personal data
2.1 Terms
personal data are all information that relates to a specific or identifiable person. A affected person is a person about whom personal data is processed. To edit includes everyone Handling of personal data, independently of the means and procedures used, in particular the storage, disclosure, procurement, collection, deletion, storage, modification, destruction and use of personal data.
2.2 Legal bases
We process personal data in accordance with Swiss data protection law, in particular the Federal law on data protection (DSG) and the Ordinance on the Federal Law on Data Protection (VDSG).
If and to the extent that the General Data Protection Regulation (GDPR) is applicable, we process personal data in accordance with at least one of the following legal bases:
2.3 Type, scope and purpose
We process those personal data that required in order to be able to provide our online offer permanently, user-friendly, secure and reliable. Such personal data can fall into the categories of inventory and contact data, content data, usage data and marginal data, as well as contract data and payment data.
We process personal data during those Durationthat is required for the respective purpose or purposes or by law. Personal data that are no longer required to be processed are anonymized or deleted.
We process personal data basically only with the consent of the person concerned, unless the processing is permitted for other legal reasons, for example to fulfill a contract with the person concerned and for corresponding pre-contractual measures in order to safeguard our predominant legitimate interests, because the processing is evident from the circumstances is or after prior information.
In this context, we process information that a data subject receives when contacting us - for example by post, email, contact form, social media or telephone - or when registering for a user account voluntarily and by yourself transmitted to us. We can save such information, for example, in an address book, in a customer relationship management system (CRM system) or with comparable tools. If you transmit personal data from third parties to us, you are obliged to guarantee data protection vis-à-vis such third parties and to ensure the accuracy of such personal data.
We also process personal data that we receive from third parties, obtain from publicly accessible sources or collect when making our online offer available, if and to the extent that such processing is permitted for legal reasons.
Personal data based on Applications are only processed insofar as they concern the suitability for an employment relationship or are necessary for the subsequent implementation of an employment contract. The personal data required for an application result from the information requested or communicated, for example in the context of the job description. Applicants have the option of voluntarily providing further information for their respective applications.
2.4 Processing of personal data by third parties, including abroad
We can have personal data processed by third parties, in particular order processors, or process them together with third parties and with the help of third parties or transmit them to third parties. Such third parties are in particular providers whose services we make use of. We also guarantee adequate data protection for such third parties.
There are such third parties basically in Switzerland and in the European Economic Area (EEA) including the European Union (EU). Such third parties can also be located in other countries on earth and elsewhere in the universe, provided that their data protection law is in accordance with them Assessment of the Federal Data Protection and Information Commissioner (EDÖB) and - if and insofar as the General Data Protection Regulation (GDPR) is applicable - according to Assessment of the European Commission - ensures adequate data protection, or if, for other reasons, such as a corresponding contractual agreement, in particular on the basis of standard contractual clauses, or a corresponding certification, adequate data protection is guaranteed. For third parties in the United States of America (USA), certification in accordance with the Privacy Shield can guarantee adequate data protection. As an exception, such a third party can be located in a country without adequate data protection, provided that the data protection requirements such as the express consent of the person concerned are met.
3. Data Subject Rights
Affected persons, whose personal data we process, have the rights under Swiss data protection law. This includes the right to information and the right to correct, delete or block the processed personal data.
Affected persons, whose personal data we process, can - if and insofar as the General Data Protection Regulation (GDPR) applies - a free confirmation as to whether we are processing their personal data and, if so, request information about the processing of their personal data, restrict the processing of their personal data exercise your right to data portability and have your personal data corrected, deleted (“right to be forgotten”), blocked or completed.
Affected persons, whose personal data we process, can - if and insofar as the GDPR is applicable - revoke their consent at any time with effect for the future and object to the processing of their personal data at any time.
Affected persons, whose personal data we process, have a right of appeal to a competent supervisory authority. The supervisory authority for data protection in Switzerland is Federal data protection and information officer (FDPIC).
4. Data security
We take appropriate and suitable technical and organizational measures to ensure data protection and, in particular, data security. However, the processing of personal data on the Internet can always have security gaps despite such measures. We can therefore not guarantee absolute data security.
Access to our online offer is via transport encryption (SSL / TLS with HTTPS).
Access to our online offer is subject to - how basically Any Internet use - cause-free and suspicious-independent mass surveillance and other surveillance by security authorities in Switzerland, the European Union (EU), the United States of America (USA) and other countries. We cannot exert any direct influence on the processing of personal data by secret services, police stations and other security authorities.
5. Use of the website
5.1 Cookies
We can use cookies for our website. Cookies - also from third parties whose services we use (cookies from third parties or third-party cookies) - are data in text form that is stored in your browser. Cookies cannot run programs or transmit malware such as Trojans and viruses.
When you visit our website, cookies can be temporarily stored in your browser as "session cookies" or for a certain period of time as so-called permanent cookies. "Session cookies" are automatically deleted when you close your browser. Permanent cookies make it possible in particular to recognize your browser the next time you visit our website and thereby measure the range of our website, for example. However, permanent cookies can also be used for online marketing, for example.
You can deactivate and delete cookies in whole or in part at any time in your browser settings. Without cookies, our online offer may no longer be fully available. We ask - if and as far as necessary - for your consent to the use of cookies.
In the case of cookies that are used to measure success and reach or for advertising, there is a general objection (“opt-out”) for numerous services Networking Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance) or Your Online Choices (European Interactive Digital Advertising Alliance, EDAA) possible.
5.2 log files
We can collect the following information for every access to our website, provided this is transmitted from your browser to our server infrastructure or can be determined by our web server: Date and time including time zone, Internet Protocol (IP) address, access status (HTTP- Status code), operating system including user interface and version, browser including language and version, individual pages accessed and amount of data transferred, last website accessed (referrer or referrer).
We store such information, which can also represent personal data, in log files. The information is required in order to make our online offer permanent, user-friendly and reliable and to ensure data security and, in particular, the protection of personal data - also by third parties or with the help of third parties.
5.3 Tracking pixels
We can use tracking pixels on our website. Tracking pixels are also known as web beacons. Tracking pixels - also from third parties whose services we use - are small images that are called up when you visit our website. The same information can be recorded with tracking pixels as in server log files.
5.4 Comments
We enable you to post comments on our website. In this context, we process, in particular, the information that a commenting person sends to us, but also the Internet Protocol (IP) address used, as well as the date and time. This information is required to enable the publication of comments and to be able to ensure protection against misuse, which is in our overriding legitimate interest.
6. Notifications and communications
We can send notifications and communications such as newsletters by email and other communication channels such as instant messaging.
6.1 Success measurement and reach measurement
Notifications and messages can contain web links or tracking pixels that record whether an individual message has been opened and which web links have been clicked on (success measurement). Such web links and tracking pixels can also record the use of notifications and messages. We need this statistical recording of usage including success and reach measurement in order to be able to offer notifications and messages based on the needs and reading habits of the recipients effectively and user-friendly as well as permanently, securely and reliably.
6.2 Consent and objection
You need to basically expressly consent to the use of your e-mail address and your other contact addresses, unless the use is permitted for other legal reasons. We use “double opt-in” for any consent given to e-mails, which means that you will receive an e-mail with a web link that you must click to confirm, so that no unauthorized third parties can misuse it. We can log such consents including the Internet Protocol (IP) address as well as the date and time for reasons of evidence and security.
you can basically unsubscribe from notifications and communications such as newsletters at any time. Notifications and notifications that are absolutely necessary for our online offer are reserved. By unsubscribing, you can in particular object to the statistical recording of usage, including for measuring success and reach.
6.3 Service providers for notifications and communications
We can have notifications and messages sent by service providers or with the help of service providers. We also guarantee adequate data protection for such service providers.
MailChimp
We use MailChimpto be able to send and manage newsletters. Cookies are also used for this. MailChimp is a service of The Rocket Science Group LLC. Further information on the type, scope and purpose of data processing can be found in the MailChimp privacy policy as well as on the Page about «MailChimp, the Privacy Shield and the GDPR».
7. Social media
We are present on social media platforms and other online platforms in order to communicate with interested people and to be able to provide information about our online offer. The general terms and conditions (GTC), data protection declarations and other provisions of the individual operators of such online platforms also apply.
For our Social media presence on Facebook If and to the extent that the GDPR is applicable, we are jointly responsible with Facebook for the so-called page insights, which provide information on how visitors interact with our Facebook presence. We use page insights to provide our social media presence on Facebook in an effective and user-friendly way. Facebook has one Addition regarding responsibility for page insights released.
8. Third Party Services
We can use services from third parties to make our online offer permanent, user-friendly, secure and reliable. Such services also serve to be able to embed content in our online offer. Such services - for example hosting and storage services, video services and payment services - require your Internet Protocol (IP) address, since such services cannot otherwise transmit the corresponding content. Such services can be located outside Switzerland and the European Economic Area (EEA) including the European Union (EU), provided that adequate data protection is guaranteed.
For their own security-relevant, statistical and technical purposes, third-party services can also process data in connection with our online offer and from other sources in an aggregated, anonymized or pseudonymized manner - including with cookies, log files and tracking pixels. Such data is not used to get directly to data subjects in connection with our online offer.
8.1 Contact options
We use Freshdeskin order to be able to communicate better with our customers and other people, in particular via email and other digital communication channels. Freshdesk is a ticketing system from the American Freshworks Inc. Information on the type, scope and purpose of data processing can be found in the Freshworks Privacy Policy.
We use Customer Relationship Management (CRM) software from HubSpot for improved communication with customers and other people. HubSpot is offered by the American HubSpot Inc. Information on the type, scope and purpose of data processing can be found in the HubSpot's privacy policy.
8.2 Social media functions and social media content
8.2.1 Facebook
We use social plugins from Facebookin order to be able to embed Facebook functions and Facebook content in our website. Such functions are, for example, “Like” or “Share”. Cookies are also used for this. Further information can be found on the Page about «Social plug-ins» from Facebook.
The social plugins are an offer from Facebook Ireland Ltd. in Ireland or the American Facebook Inc. If you are logged into Facebook as a user, Facebook can assign the use of our online offer to your profile. Further information on the type, scope and purpose of data processing can be found in the Facebook data policy.
8.2.2 Instagram
For our website we use the option of functions and content from Instagram to embed. For example, we can use it to show you pictures that have been published on Instagram on our website. Cookies are also used for this.
Instagram is an offer from Facebook Ireland Ltd. in Ireland or the American Facebook Inc. If you are registered as a user on Instagram or other Facebook services, Facebook can assign the use of our online offer to your profile. Further information on the type, scope and purpose of data processing can be found in the Instagram privacy policy.
8.2.3 LinkedIn
For our website we use the option of functions and content from LinkedIn embed with the help of plugins. This enables us, for example, to enable you to use the LinkedIn “share” function on our website. Cookies are also used for this. Further information can be found on the Page about plugins from LinkedIn.
The plugins are offered by LinkedIn Ireland Unlimited Company or the American LinkedIn Corporation. If you are logged into LinkedIn as a user, LinkedIn can assign the use of our online services to your profile. Further information on the type, scope and purpose of data processing can be found in the Privacy Policy, in the Cookie Policy and on the Data protection portal each from LinkedIn. There is also the possibility Objection to personalized advertising to raise.
8.2.4 Pinterest
For our website we use the option of functions and content from Pinterest to embed. For example, we can use it to show you images or pins that have been published on Pinterest on our website. Cookies are also used for this.
The offer comes from Pinterest Europe Ltd. in Ireland or the American Pinterest Inc. If you are registered as a user on Pinterest, Pinterest can assign the use of our online offer to your profile. Further information on the type, scope and purpose of data processing can be found on the Page «Data protection» from Pinterest.
8.2.5 Twitter
For our website we use the option of functions and content from Twitter embedded (“Twitter for websites” or “Twitter for websites”). For example, we can enable you to use Twitter's “Share” function on our website or to show you tweets on our website. Cookies are also used for this.
“Twitter for Websites” is an offer from the Twitter International Company in Ireland or the American Twitter Inc. If you are logged on to Twitter as a user, Twitter can assign the use of our online offer to your profile. Further information on the type, scope and purpose of data processing can be found in the Information on advertisements and data protection on Twitter for websites as well as in the Privacy Policy each from Twitter. Twitter also provides information about the Use of cookies and similar technologies as well as about personalizing ads both in connection with a possible Twitter account as well as due to the use of Twitter content on the Internet released. Stand for personalized ads Privacy settings - also with the option to object.
8.3 Maps
We use Google Mapsto be able to embed maps in our website. Cookies are also used for this. Google Maps is a service of the American Google LLC, for users in the European Economic Area (EEA) and Switzerland is the Irish one Google Ireland Limited responsible. Further information on the type, scope and purpose of data processing can be found in the Principles for data protection and security and in the Data protection each from Google, in Guide to data protection in Google products (including Google Maps), in the Information on how Google uses data from websites on which Google services are used and in the Information about cookies on Google. There is also the possibility Objection to personalized advertising to raise.
8.4 Music and Videos
We use Spotifyto enable the direct playback of music and podcasts on our website with a widget from Spotify. Cookies are also used for this. Spotify is a service of the Swedish Spotify AB. Further information on the type, scope and purpose of data processing can be found in Spotify's “data protection center” and in the Spotify Privacy Policy.
We use YouTubein order to be able to embed videos in our website. Cookies are also used for this. YouTube is a service of the American Google LLC, for users in the European Economic Area (EEA) and Switzerland is the Irish one Google Ireland Limited responsible. Further information on the type, scope and purpose of data processing can be found in the Principles for data protection and security and in the Data protection each from Google, in Guide to data protection in Google products (including YouTube), in the Information on how Google uses data from websites on which Google services are used and in the Information about cookies on Google. There is also the possibility Objection to personalized advertising to raise.
8.5 Documents and presentations
We use SlideSharein order to be able to embed presentations in our website. Cookies are also used for this. It is a service provided by LinkedIn Ireland Unlimited Company or the American LinkedIn Corporation. If you are registered as a user with SlideShare or another LinkedIn service, LinkedIn can assign the use of our online offer to your profile. Further information on the type, scope and purpose of data processing can be found in the LinkedIn privacy policywhich also applies to SlideShare.
8.6 Fonts
We use Google Fontsin order to be able to embed selected fonts in our website. Come along none Cookies for use. It is a service of the American Google LLC that is offered independently from other Google services. For users in the European Economic Area (EEA) and Switzerland, the Irish Google Ireland Limited responsible. Further information on the type, scope and purpose of data processing can be found in the Principles for data protection and security as well as in the Data protection from Google.
8.7 Payments
We use payment service providers so that we can process our customers' payments securely and reliably. We only use payment service providers who guarantee adequate data protection. The terms and conditions of the payment service providers concerned apply, such as the general terms and conditions (GTC) or data protection declarations.
We use Stripe for processing payments. Stripe is a service provided by Stripe Payments Europe Ltd. in Ireland or the American Stripe Inc. information on the type, scope and purpose of data processing can be found in the Stripe's privacy policy.
8.8 Success and reach measurement
We use Google Analyticsto analyze how our website is used, whereby we can also measure the reach of our website and the success of third-party links to our website, for example. It is a service of the American Google LLC, for users in the European Economic Area (EEA) and in Switzerland is the Irish one Google Ireland Limited responsible.
Google also tries to record individual visitors to our website if they use different browsers or devices (Cross-device tracking). Cookies are also used for this. Your Internet Protocol (IP) address is required for Google Analytics, but it will not be merged with other Google data.
In any case, we have your Internet Protocol (IP) address anonymized by Google before analysis. The result will be your full IP address basically not transferred to Google in the USA.
Further information on the type, scope and purpose of data processing can be found in the Principles for data protection and security and in the Data protection each from Google, in Guide to data protection in Google products (including Google Analytics), in the Information on how Google uses data from websites on which Google services are used and in the Information about cookies on Google. There is also the possibility of the "Browser add-on to deactivate Google Analytics" to use as well Objection to personalized advertising to raise.
We use the Google Tag Managerin order to be able to integrate and manage services for analytics or advertising from Google and third parties in our website. It is a service of the American Google LLC, for users in the European Economic Area (EEA) and in Switzerland is the Irish one Google Ireland Limited responsible. Come along none Cookies are used, but cookies can be used as part of the services integrated and managed with them. We provide information on the processing of personal data by such services in this data protection declaration.
8.9 Advertising
We use Facebook Adsin order to be able to advertise our online offer on Facebook. Facebook Ads is an offer from Facebook Ireland Ltd. in Ireland or the American Facebook Inc. Cookies are also used in Facebook Ads.
With such advertising, we would particularly like to reach people who are interested in our online offer or who already use our online offer. For this we transmit, especially with the so-called Facebook pixel, corresponding - possibly also personal - information to Facebook (Custom Audiences including Lookalike Audiences). We can also determine whether our advertising is successful, i.e. whether it leads to visits to our website (Conversion tracking).
Further information on the type, scope and purpose of data processing can be found in the Facebook data policy. In addition, Facebook users can use the Advertising preferences influence which advertisements you see on Facebook and which advertisements you will see on Facebook in the future.
We use Google Ads (formerly Adwords)in order to be able to advertise our online offer on the Google search engine and elsewhere on the Internet, for example on other websites, based on search queries, among other things. Google Ads is an offer from the American Google LLC, for users in the European Economic Area (EEA) and Switzerland is the Irish one Google Ireland Limited responsible. Cookies are also used by Google Ads. Google uses various domain names - in particular doublelick.net, googleadservices.com and googlesyndication.com - for Google Ads.
With such advertising, we would particularly like to reach people who are interested in our online offer or who already use our online offer. For this purpose, we transmit corresponding - possibly also personal - information to Google (Remarketing). We can also determine whether our advertising is successful, i.e. whether it leads to visits to our website (Conversion tracking).
Further information on the type, scope and purpose of data processing can be found in the Principles for data protection and security and in the Data protection each from Google, in the Information on how Google uses data from websites on which Google services are used and in the Information about cookies on Google. There is also the possibility Objection to personalized advertising to raise.
We use LinkedIn Marketing Solutionsin order to be able to advertise our online offering on LinkedIn (LinkedIn Ads). It is an offer from LinkedIn Ireland Unlimited Company or the American LinkedIn Corporation. Cookies are also used for this.
With such advertising, we would particularly like to reach people who are interested in our online offer or who already use our online offer. For this we transmit, especially with the so-called LinkedIn Insight Day, corresponding - possibly also personal - information to LinkedIn (Retargeting). We can also determine whether our advertising is successful, i.e. whether it leads to visits to our website (Conversion tracking). If you are logged into LinkedIn as a user, LinkedIn can assign the use of our online services to your profile.
Further information on the type, scope and purpose of data processing can be found in the Privacy Policy, in the Cookie Policy and on the Data protection portal each from LinkedIn. There is also the possibility Objection to personalized advertising to raise.
9. Extensions for the website
We use Google reCAPTCHAto protect input forms from bots and spam, while at the same time reliably enabling human input. Cookies are also used for this. It is a service of the American Google LLC, for users in the European Economic Area (EEA) and in Switzerland is the Irish one Google Ireland Limited responsible. Further information on the type, scope and purpose of data processing can be found in the Principles for data protection and security and in the Data protection respectively from Google as well as in the Information about cookies on Google.
We use jQuery, a free JavaScript library from the JS Foundation. We bind the library via the Content Delivery Network (CDN) Google Hosted Libraries (Domain name ajax.googleapis.com) so that we can improve the speed of our website. Cookies are only used if they are necessary to prevent misuse and for security-related purposes. It is a service from the American Google LLC, which is offered independently of other Google services. For users in the European Economic Area (EEA) and Switzerland, the Irish Google Ireland Limited responsible.
Further information on the type, scope and purpose of data processing can be found in the Principles for data protection and security and in the Data protection respectively from Google as well as in the Google Hosted Libraries Terms of Use.
10. Final provisions
We can adapt and supplement this data protection declaration at any time. We will inform you about such adjustments and additions in a suitable form, in particular by publishing the current data protection declaration on our website.