Privacy Policy of Goldbach Group AG

The Goldbach Group is generally responsible for data processing in accordance with this privacy notice. Goldbach Group is a public limited company under Swiss law.

If you would like to contact us in this regard, please use the following address:

Goldbach Group  
Seestrasse 39  
CH-8700 Küsnacht ZH  
Switzerland  
[email protected]  

If you contact us using the form on the website or by email, the data you provide will be stored by us for six months for the purpose of processing the inquiry and in the event of follow-up questions. We will not pass on this data without your consent.  

For requests from the EU area, you can contact our representative (Art. 27 GDPR):  

ePrivacy GmbH  
Burchardstrasse 14  
20095 Hamburg  
Germany  
www.eprivacy.eu  

If another Goldbach Group subsidiary refers to this Privacy Policy on its website or in its processing activities, that subsidiary is responsible for the relevant data processing and such processing is subject to this Privacy Policy. For other situations, please consult our respective privacy policies available here.

We collect your personal data when you visit our websites or when we have contact with you. The situations in which we have contact with you are varied. For example, we collect your personal data in the following circumstances:  

• You use or communicate with us or third parties via our websites, apps for mobile devices or offers on internet platforms, multimedia portals or social networks.  
• You supply us with goods or services.  
• You take part in our conferences, customer events or seminars.  
• You are using a service from us.  
• You receive a newsletter.  
• You are taking part in a competition or prize draw.  
• You send your contact details via our chat tool.
• You become a member of one of our customer loyalty programs.  
• You take part in one of our market research campaigns or opinion polls.  
• You communicate with us via telephone, e-mail, voice messages, text messages (SMS), video messages or instant messaging or social media.  
• You will come into contact with us at customer events, promotional events, sponsoring events or similar occasions. 

Most of our services do not require registration, so you can visit our website without telling us who you are. However, some services may require you to provide personal information. In such a case, if you decide not to provide personal data requested by us, you may not be able to use certain areas of the website or we may not be able to respond to your request.  

The personal data collected is diverse. On the one hand, we collect personal data that you provide to us. On the other hand, we collect personal data that is collected automatically or manually when you contact us, such as  

Personal data  

• Surname and first name;  
• Birthday and age; 
• Gender;  
• Residential address;  
• Delivery address;  
• Billing address;  
• Language preferences;  
• Telephone number(s);  
• E-mail address(es);  
• Identification numbers of your technical devices;  
• Information on subscribed newsletters or other advertising;  
• Consent to receive advertising;  
• Memberships within our business division;  
• Photo and video recordings of visits to our events, conferences, seminars or other recordings on our premises.  

Customer activity data  

• Contract data (including contract date, contract type, contract content; contractual partner; contract term; contract value; claims asserted under the contract);  
• Customer service information;  
• Session data relating to visits to our Internet pages or offers on Internet platforms, multimedia portals or social networks (including duration and frequency of visits, language and country preferences, information about browser and computer operating system, Internet protocol addresses, search terms and search results; ratings given);  
• Location-based data when using mobile devices;  
• Communications via telephone, e-mail, voice messages, text messages (SMS), video messages or instant messaging.  

We process your personal data for various purposes. These purposes can be summarized in different groups. In particular, we may process all or part of your personal data for one or more of the following purposes:  

Processing purposes in connection with our website and the provision of the services you have requested

• Providing the contractually agreed services, including managing the business relationship and invoicing the services;
• Operation and administration of our website and provision of the content you access and request.

Processing purposes in connection with customer communication  

• Provision, administration and implementation of customer communication by post and via electronic means of communication;  
• Business communication by post and by telephone, e-mail, voice messages, text messages (SMS), video messages or instant messaging;  
• Evaluation of the use of our offers via telephone, e-mail, voice messages, text messages (SMS) or instant messaging such as: Type of use, frequency and duration of use, exact location of use.  

Processing purposes in connection with special occasions  

• Organization and implementation of competitions or prize draws, including notification and publication of the winners via our website or our offers on internet platforms, multimedia portals or social networks;  
• Organization and implementation of special events such as conferences, seminars or customer events. 

Processing purposes in connection with the further development and improvement of our websites

• To analyze trends and track your use of and interaction with our websites so that we can develop and improve our websites and provide more relevant content and services to our users.

Processing purposes in connection with compliance with applicable terms and conditions/advertising terms; ensuring the security of our business, preventing or detecting fraud or misuse of our website

• To track the use of our website, review activity, investigate suspicious activity and enforce our terms and conditions/advertising terms to promote the security of the website and protect our rights and the rights of others.

Processing purposes in connection with compliance with legal obligations

• To cooperate with governmental, judicial or regulatory authorities in accordance with our legal obligations under applicable law, to the extent that such processing or disclosure of personal data is necessary to protect our rights or legitimate interests to protect against misuse of our website, to protect personal property or safety, to pursue available remedies or limit the damages we may sustain, to comply with legal process, court orders or legal proceedings, to respond to valid requests or for audit purposes.

We have technical and organizational security procedures in place to maintain the security of your personal data and to protect your session data and personal data against unauthorized or unlawful processing and/or against accidental loss, alteration, disclosure or access. However, you should always be aware that the transmission of information via the Internet and other electronic means involves certain security risks and that we cannot guarantee the security of information transmitted in this way. All data via the website, such as the newsletter registration or forms, is transmitted via SSL. We use the SSL process to protect the data that you as a customer send to our company's servers via the Internet. SSL provides triple protection:  

• The entries that are to be transmitted are encrypted.  
• It is ensured that the form is only sent back to the server from which it was opened.  
• It is checked whether the data reaches its respective recipient complete and unchanged.  

We will retain your personal data for as long as we deem necessary or appropriate to comply with applicable laws or for as long as it is necessary for the purposes for which it was collected. We will delete your personal data as soon as it is no longer needed and in any case after the maximum retention period prescribed by law. 

We may disclose your personal data to other subsidiaries of the Goldbach Group and to the companies of our parent company TX Group AG for the purposes set out in this Privacy Policy. These other companies may use your personal data in their own interest for the same purposes as we do. The Goldbach Group companies may process your personal data in particular for individualized and personalized analyses of customer behavior and for direct marketing activities in their own interest. Within the Goldbach Group, employees will only have access to your personal data to the extent necessary for the performance of their duties.  

We may also disclose  your personal data to other subsidiaries of the Goldbach Group, of TX Group AG and to third parties outside the Goldbach Group in order to use technical or organizational services that we require to fulfil the aforementioned purposes or our other business activities. These service providers are contractually obliged to process the personal data exclusively on our behalf and in accordance with our instructions. We also oblige our service providers to comply with technical and organizational measures that ensure the protection of personal data.  

If the service providers are located in countries where the applicable laws do not provide for personal data protection comparable to Swiss or European law, we will contractually ensure that the service providers concerned comply with the Swiss and European level of data protection (for example, with the standard contractual clauses issued by the EU Commission) and take further technical measures where necessary.  

The list of our service providers, which is updated from time to time, and what we use them for can be found here.  

We may also disclose your personal data if we deem it necessary to comply with applicable laws and regulations, in legal proceedings, at the request of the competent courts and authorities or due to other legal obligations in order to protect and defend our rights or property.  

We also use so-called cookies on our website. These are small files that are stored on your computer or mobile device when you use one of our websites. We would also like to provide you with comprehensive information about our use of cookies.  

Why do we use cookies?  

The cookies we use initially serve to ensure the functions of our website - such as saving your preferred language. We also use cookies to adapt our website to your customer requirements and to make your surfing experience as convenient as possible.  

Which cookies do we use?  

Most of the cookies we use are automatically deleted from your computer or mobile device at the end of the browser session (so-called session cookies). For example, we use session cookies to save your country and language preferences across different pages of an internet session. 

We also use temporary or permanent cookies. These remain stored on your computer or mobile device after the end of the browser session. When you visit one of our websites again, it will automatically recognize which entries and settings you prefer. Depending on the type of cookie, these temporary or permanent cookies remain stored on your computer or mobile device for between one month and ten years and are automatically deactivated after the programmed time has expired.  Please visit our "Cookie Preference Center" mentioned below to learn more about cookie retention periods. They are used to make our website more user-friendly, effective and secure. Thanks to these cookies, for example, you will receive information on the site that is specifically tailored to your interests.  

The cookies stored on your computer or mobile device may also originate from partner companies. These may be other Goldbach Group companies or companies outside the Goldbach Group. The list of our partner companies, which is updated from time to time, and what we use them for can be found in section 8. The cookies of the partner companies remain stored on your computer or mobile device for between one month and ten years and are automatically deactivated after the programmed time has expired.  

You can also find information about the purposes of cookies and which third parties set cookies when you visit our website in the Privacy Center, Privacy Center, which is displayed when you visit our website for the first time or which you can easily find on our website. In the Privacy Center, you also have the option to object to the processing of your personal data for certain purposes or by certain companies.  

What data is stored in the cookies?  

When a cookie is set, it is assigned an identification number. This number cannot be linked to specific personal data (such as your name or address) and is instead linked to the device you use to visit our website. The collection of data using a cookie identification number is therefore referred to as pseudonymous data. This pseudonymous identification number can be used, for example, to collect data about your interaction with our website.  

How can you prevent the storage of cookies?  

Most Internet browsers accept cookies automatically. However, you can instruct your browser not to accept cookies or to prompt you each time before accepting a cookie from a website you visit. You can also delete cookies on your computer or mobile device by using the corresponding function of your browser.  

You can also use the Privacy Center mentioned above to object to the setting of cookies for certain purposes or by certain companies.  

If you decide not to accept our cookies or the cookies of our partner companies, you may not be able to see certain information on our Internet pages or use some functions that are intended to improve your visit.  

Every time you access our website, certain usage data is transmitted to us by your Internet browser for technical reasons and stored in log files. This involves the following usage data: Date and time of access to our website; name of the website accessed; IP address of your computer or mobile device; address of the website from which you accessed our website; amount of data transferred and the name and version of your browser. The analysis of the log files helps us to further improve our website and make it more user-friendly, to find and rectify errors more quickly and to manage server capacities. We can use the log files to determine, for example, at which times our Internet services are particularly popular and provide the corresponding data volume to ensure the best possible user experience. 

In order to constantly improve and optimize our website, we use so-called tracking technologies. Web analysis tools provide us with statistics and graphics that give us information about the use of our Internet pages. The data on the use of a website is transmitted to the server used for this purpose.  

You can find the analytics service providers we use in the list of third-party service providers we use in section 8. You can also use the Privacy Center mentioned in section 9 to object to the setting of cookies by Google Analytics or other analytics tools used.

When you register for our newsletter, we process the data that you provide as a newsletter recipient. After your registration, we will send you an email with a link to confirm your registration.  

You can unsubscribe from the newsletter at any time by clicking on the link provided in each newsletter. We will then immediately delete your data in connection with the newsletter mailing and you will not receive any further newsletters.  

You can find the partner we use for sending and analyzing the newsletter in the list of our service providers in section 8.  

Our newsletter contains a "web beacon". This is a pixel-sized file that is retrieved from the server of our newsletter service provider when the newsletter is opened. Technical information on the browser and operating system of the newsletter recipient as well as the IP address are collected for the purpose of technical improvement of the newsletter dispatch. We also analyze whether and when the newsletters are opened and which links are accessed in order to improve our newsletter content and make it more relevant for the recipients. We do not analyze or monitor  individual newsletter recipients . 

In some cases, we have to redirect you as a newsletter recipient within the newsletter to the websites of our external service providers, for example in order to be able to access the latest version of their privacy notice. Please note that cookies are set on the websites of such service providers and that personal data may therefore be processed by the service providers and their partners (e.g. Google Analytics). We have no influence over this. Further information can be found in the privacy policies of our service providers.  

When applying for an open position at the Goldbach Group, you will be automatically redirected to an independent IT infrastructure. The application process is subject to this privacy notice and not that of our website.

Our website may contain links to other websites. We are not responsible for the content or privacy practices of these other websites. Please be aware of this when you leave our website and read the privacy statements of other websites that collect personal data. For these third-party platforms, your data and privacy protection is subject to the respective data protection practices of these platforms.

Insofar as the applicable requirements are met and no legal exceptions apply, you also have the right to information, correction, deletion, restriction of data processing and the right to receive the personal data you have provided in a commonly used format. You also have the right to revoke any consent you may have given us with effect for the future.  

• Right to information: You have the right to be informed about how we process your personal data and what rights you have in connection with the processing of your personal data. We fulfill this obligation with this privacy notice. If you would like further information, please feel free to contact us.  
• Right to information: You have the right to request information about your personal data stored by us at any time. This gives you the opportunity to check what personal data we process about you. In individual cases, the right to information may be restricted or excluded, in particular if there are doubts about your identity or if this is necessary to protect other persons.  
• Right to rectification: You have the right to have incorrect or incomplete personal data corrected or completed or supplemented by a note of dispute and to be informed of the correction.  
• Right to erasure: You have the right to request the erasure of your personal data if the personal data is no longer required for the purposes pursued, if you have effectively withdrawn your consent or effectively objected to the processing, or if the personal data is processed unlawfully. In individual cases, the right to erasure may be excluded, in particular if the processing is necessary for the exercise of freedom of expression or for the exercise of legal claims. We can also anonymize personal data so that personal data is no longer available. Please note that even after you request the deletion of your personal data, we must retain some of it within the scope of our statutory or contractual retention obligations and in this case only block your personal data to the extent necessary for this purpose. Furthermore, deletion of your personal data may mean that you can no longer obtain or use the services you have registered.  
• Right to restriction of processing: Under certain circumstances, you have the right to request that the processing of your personal data be restricted. This may mean, for example, that personal data is (temporarily) no longer processed or that published personal data is (temporarily) removed from a website.  
• Right to data disclosure or transfer: You have the right to receive from us the personal data that you have provided to us in a structured, commonly used and machine-readable format, provided that the specific data processing is based on your consent or is necessary for the performance of a contract and the processing is carried out by automated means.  
• Right to withdraw consent: If we process your personal data on the basis of your consent, you have the right to withdraw your consent at any time. The revocation is only valid for the future; processing activities based on your consent in the past are not rendered unlawful by your revocation. We reserve the right to continue processing personal data on another basis if you withdraw your consent.  

• Right to object (opt-out) regarding our direct marketing activities. We process your data for the purposes stated in section 5 because we have a business interest in contacting you and convincing you of our services. You are of course free to object to this processing, which we will take into account accordingly. You can object to the processing using the same communication channel as we used to contact you. You can find our contact details in section 2. You can unsubscribe from our newsletter directly using the opt-out link at the end of each newsletter (see also section 12). Information regarding your right to object to the use of cookies can be found below in section 9.
• Right to lodge a complaint with the competent supervisory authority. The Swiss supervisory authority can be contacted at www.edoeb.admin.ch/edoeb/de/home/deredoeb/kontakt.html and the Liechtenstein supervisory authority at www.datenschutzstelle.li.

You can contact us in accordance with section 2 if you wish to exercise any of your rights or if you have any questions about the processing of your personal data. You can also unsubscribe from the  newsletter and other advertising emails by clicking on the corresponding link at the end of the email.  

We may ask you for a copy of your identity card or other proof of identity. To the extent permitted by law, in particular to protect the rights and freedoms of others and to protect confidential interests, we may also refuse your request in whole or in part (e.g. by blacking out certain content relating to third parties or our business secrets).

You are also free to lodge a complaint with a competent supervisory authority if you have concerns as to whether the processing of your personal data complies with the law. 

The competent supervisory authority in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC). 

This privacy notice may be updated from time to time. Please read this privacy notice regularly to stay informed about the processing of your data.

The original privacy notice is in German. The translated versions are provided for ease of understanding only. In the event of contradictions, the German text shall take precedence.