Privacy Policy

We protect your privacy and your private data. Our processing of our users’ personal data is limited to the data required to provide a functional website and our content and services.

According to Article 13 of the Swiss Federal Constitution and the data protection provisions of the Swiss Confederation as amended on 1 September 2023 (revised Data Protection Act, hereinafter referred to as “DPA”), every person is entitled to protection of their privacy and protection against misuse of their personal data.  

We collect, process and use your personal data in accordance with the content of this Privacy Policy and the applicable data protection regulations. The following data protection provisions regulate which personal data we collect, process and use about you. We therefore ask you to read the following information carefully.

1.    Responsible body

Virtual Services by Nadine Waser
Panoramaweg 3
5616 Meisterschwanden
Phone: +41 79 270 48 52
Email: info@virtualservices.ch

2.    Description and scope of data processing

2.1 Personal data within the meaning of these data protection provisions is all information that relates to an identified or identifiable natural person (hereinafter “data subject”). This includes in particular your name, your e-mail address, your address and your telephone number as well as your credit card and account details.

2.2 Log files: Personal data also includes information about your use of our website. In this context, we collect the following personal data from you : the anonymised IP address of the user, the date and time of access including the time zone, the type of request, customer information such as type and version, the user’s operating system (device, OS version of the device), referrer information (i.e. the source of access ). This is done through the use of log files provided by the processor Infomaniak Network SA, located at Rue Eugène-Marziano 25, 1227 Acacias in Switzerland . There is a contract with the host . We store this data for the duration of 7 days . We only store the server log files for longer in the event of attacks on our server infrastructure or other legal violations.

3.    Other intended uses

We use your personal data for the following purposes:

3.1 Customer service, order processing: We use your personal data for the purposes of communication, including responding to your enquiries by e-mail or contact form in the course of (pre)contractual relationships.  

3.2 Booking calendar: So that you can book an appointment directly via the website. For this purpose, your name, email address and telephone number are processed to fulfil (pre)contractual obligations. The order processor Calendly from the company Calendly LLC, based in Atlanta, USA, is used for booking. A contract for order processing exists. The transfer of data to the USA is based on standard contractual clauses.

3.3 Creating video messages using Loom: We may create video messages and instructions to communicate with customers. We use the provider Loom Inc. based at 140 2ND St FL 3 San Francisco, CA, 94105-3731, USA. We have a contract with this provider for order processing. We store videos until they are retrieved or for as long as the video is required.

3.4 Communication via video conferencing system:We use “Zoom” from Zoom Video Communications Inc. and Microsoft Teams from Microsoft Ireland Limited to hold video conferences, telephone conferences and online meetings.

You will receive access to the agreed appointments via a link provided by e-mail. You can enter the video room by clicking on the link. Before joining, you can decide for yourself whether or not to activate the video. If you switch on the camera and/or microphone, your microphone and video camera data will be processed during the meeting.

The following additional data may also be processed depending on the type and scope of the specific use:

• Personal details (e.g. first and last name, e-mail address, profile picture)
• Meeting metadata (e.g. date, time and duration of the communication, name of the meeting, participant IP address)
• Device/hardware data (e.g. IP addresses, MAC addresses, Clint version)
• Text, audio and video data (e.g. chat histories, video, audio and presentation recordings)
• Connection data (e.g. phone numbers, country names, start and end times, IP addresses)

We cannot rule out the possibility that personal data may also be routed via internet servers located outside Switzerland, the EU or the EEA . Standard contractual clauses exist with the providers. In some countries, e.g. the USA, there is a risk that authorities may access the data for security and surveillance purposes without you being informed or having the right to appeal. We have agreed EU standard contractual clauses as the legal basis for data transfer.

The above-mentioned providers necessarily receive knowledge of the above-mentioned data insofar as this is contractually regulated within the framework of our order processing contract. There are no other recipients.

You are not obliged to communicate with us via the above-mentioned providers. Alternatively, meetings can also be held by telephone.

We generally delete personal data when there is no need for further storage.

3.5 Newsletter : You can subscribe to our newsletter via our homepage. The legal basis for data processing in the context of sending newsletters is your consent. The purpose of data processing in the context of ordering the newsletter is to inform our newsletter subscribers about offers, promotions, products and services.

If you register for the newsletter, we require your e-mail address as mandatory information. You can enter your name voluntarily. After submitting the registration form, you will receive an e-mail from us with a confirmation link. If you click on the link contained therein, you are registered for the newsletter. You will be informed of this by another e-mail. By confirming your registration, you confirm your consent to the processing of your e-mail address and, if applicable, your first name. This ensures that no third party or unauthorised person subscribes to our newsletter (compliance with the double opt-in procedure). The legal basis for the confirmation e-mail is our legitimate interest, which lies in being able to prove that you have given your consent.

Notifications and messages may contain links or pixels to track whether a message has been opened and which links have been clicked. These links and pixels may also collect personal data. We use these statistics to measure the success and reach of notifications and messages. This helps us to customise these messages to the needs and reading habits of the recipients and to ensure that they are sent efficiently, user-friendly and reliably.

We generally exclude the transfer of data to third parties. We use the following two service providers to send our newsletter: Mailchimp The Rocket Science Group LLC, based in Atlanta, USA, and CleverReach GmbH & Co KG, based in Rastede, Germany. There is a contract with both service providers for order processing at . The transfer of data to the USA is based on EU standard contractual clauses. Mailchimp The Rocket Science Group LLC and CleverReach also transfer data to sub-processors as part of their service provision in accordance with the agreed order processing contract.

You can revoke your consent at any time with effect for the future by clicking the “unsubscribe” button in the newsletters or you can also contact us at any time at our e-mail address. If you withdraw your consent, your data will be deleted immediately.

4.    Principles of data processing

When processing data, we take into account the processing principles of lawfulness, proportionality, purpose limitation, transparency – in particular the fulfilment of information obligations – and data security.

5.    Information about cookies

5.1 We use cookies to facilitate and improve the use of our website. Cookies are small pieces of text information that can be stored on your computer or smartphone via the browser when you visit a website. This serves to recognise the website visitor. Cookies can also provide us with information about how you use our website so that we can continuously improve the design of the website.

Cookies themselves do not contain any personal data about users, they merely serve to uniquely identify what our customers find interesting and useful on our website.

Specifically, the following cookies are set with your consent:

5.2 Google Analytics

This website uses Google Analytics with your consent. This is a service provided by Google Ireland Limited (“Google”), a company incorporated and operated under Irish law (registration number: 368047) with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland and Google LLC (USA) (“Google”).

Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and enable the use of the website by the user to be analysed. The information obtained by the cookies about your usage behaviour of this website is usually transferred to a Google server in the USA and stored there. An adequacy decision exists for the USA within the scope of the General Data Protection Regulation (GDPR), so that the data transfer can take place without further measures. You can view Google’s certification here. Within the scope of the Data Protection Act, data transfers to the USA are carried out on the basis of standard contractual clauses.

We have made the setting that your IP address will be anonymised. IP address anonymisation is carried out by Google, but within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.

On behalf of the operator of this website, Google will use this information to analyse your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage.

The anonymised IP address transmitted by your browser as part of Google Analytics is linked to other data about you, such as your search history, personal accounts, usage data from other devices and all other data that Google has about you.

You can see the cookies that are set in connection with Google Analytics in the list above.

You can revoke your consent at any time by making the appropriate settings directly via the cookie consent banner . The user and event data will be deleted after 2 months. The “Reset user data on new activity” function is deactivated. This means that if you visit again before the retention period expires, your data will not be deleted.

6.    Use of Google reCAPTCHA

This website uses the reCAPTCHA service provided by Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland “Google”). The query serves the purpose of distinguishing whether the input is made by a human or by automated, machine processing. The query includes sending the IP address and any other data required by Google for the reCAPTCHA service to Google. For this purpose, your input is transmitted to Google and used there. However, your IP address will be shortened beforehand by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information to analyse your use of this service. The IP address transmitted by your browser as part of reCAPTCHA will not be merged with other Google data. Your data may also be transmitted to the USA. An adequacy decision by the European Commission, the “Privacy Shield”, is in place for data transfers to the USA. Google participates in the “Privacy Shield” and has submitted to the requirements. By confirming the enquiry, you consent to the processing of your data. The processing is carried out on the basis of Art. 6 (1) lit. A GDPR with your consent. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

You can find more information about Google reCAPTCHA and the associated privacy policy at: https://policies.google.com/privacy?hl=en

7.    Data security

All information that you transmit to us is generally stored on servers within Switzerland/European Union. Unfortunately, the transmission of information via the Internet is not completely secure, which is why we cannot guarantee the security of data transmitted to our website via the Internet. However, we take technical and organisational measures to protect our website and other systems against loss, destruction, access, modification or dissemination of your data by unauthorised persons. In particular, your personal data is transmitted to us in encrypted form. We use the SSL (Secure Socket Layer) [or TLS (Transport Layer Security)] coding system.

8.    Social media accounts

We operate the following social media presences:

LinkedIn: https://www.linkedin.com/in/nadine-waser
LinkedIn: https://www.linkedin.com/company/virtual-services-by-nadine-waser
Instagram: https://www.instagram.com/virtualservices_by_nadinewaser
Facebook: https://www.facebook.com/virtualservicesbynadinewaser

Data processing by us:

a. Operation of the above-mentioned social media pages

The personal data entered on social media pages such as comments, videos, images, likes, public messages etc. are published by the respective social media platform. We reserve the right to delete content if necessary. We may share content on our site and contact you via the social media platform, e.g. via the messengers offered. The legal basis is the legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR or Art. 32 para. 1 revDSG, which is in the interest of public relations and communication.

b. Page Insights

The social media platforms provide anonymised statistics and insights that allow us to gain knowledge about the types of actions people take on our site (so-called “page insights”). These Page Insights are created on the basis of certain information about people who have visited our site.

The legal basis for this data processing is the legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR or Art. 32 para. 1 revDSG, which is based on obtaining information about the actions and visitors to the pages.

This processing of personal data is carried out by the social media platform and us as joint controllers. In the case of joint controllership, a separate agreement must be concluded.

LinkedIn: https://legal.linkedin.com/pages-joint-controller-addendum
Instagram & Facebook: https://www.facebook.com/legal/controller_addendum

If you wish to object to certain data processing over which we have an influence, please use the contact details above.

Note: The provision of data is not required by law or contract or necessary for the conclusion of a contract. You are not obliged to provide personal data. The consequence of not providing this data is that you will not be able to communicate with us via our social media pages, interact with us or take part in the competition. To contact us, please use our e-mail address.

Data processing by the operator of the social media platform:

There is also the operator of the social media platforms themselves. From a data protection perspective, this is also regarded as another controller that carries out its own data processing. This means that the operator is also a separate controller. However, we only have limited influence on data processing by the operator. Where we can exert influence (e.g. through parameterisation), we work within the scope of our possibilities to ensure that the operator of the social media platform handles data in accordance with data protection regulations. In many places, however, we cannot influence the data processing by the operator of the social media platform and do not know exactly what data they process. The operator will inform you about the processing of personal data in its own data protection information:

LinkedIn: https://de.linkedin.com/legal/privacy-policy

Instagram: https://help.instagram.com/155833707900388

Facebook: https://www.facebook.com/help/568137493302217

Note: The operator of the social media platform uses web tracking methods. Web tracking can also take place regardless of whether you are logged in or registered with the social media platform. As already explained, we unfortunately have little influence on the web tracking methods of the social media platform. For example, we cannot switch this off. Please be aware: It cannot be ruled out that the provider of the social media platform may use your profile and behavioural data, for example to evaluate habits, personal relationships, preferences, etc. We have no influence on the processing of your data by the provider of the social media platform.

Data transfer to third countries and recipients:

When using the platform, personal data is also processed on servers in third countries, such as the USA. There is no adequate level of data protection in the USA. Data is transferred on the basis of standard contractual clauses. In some countries (such as the USA), there is a risk that authorities may access the data for security and monitoring purposes without you being informed or having the right to appeal.

9.    No disclosure of your personal data

We do not pass on your personal data to third parties unless you have consented to the data being passed on or we are authorised or obliged to pass on data on the basis of statutory provisions and/or official or court orders. In particular, this may involve the disclosure of information for the purposes of criminal prosecution, to avert danger or to enforce intellectual property rights.

10.   Changes to this privacy policy

We reserve the right to amend these data protection provisions at any time with effect for the future. A current version is always available on the website. Please visit the website regularly and inform yourself about the applicable data protection provisions.

11.    Your rights

You have the right to request information about your personal data processed by us. In particular, you can request information about the personal data as such, the purpose of processing, the storage period or, if this is not possible, the criteria for determining this period, the origin of your data if it was not collected from you, the existence of an automated individual decision and, if applicable, the recipients or categories of recipients to whom personal data is disclosed.

You also have the right to withdraw your consent to the use of your personal data at any time.

You can assert your rights at any time by contacting us at the address provided.

If you are of the opinion that the processing of your personal data by us is in breach of the applicable data protection provisions, you have the option of lodging a complaint with the Federal Data Protection and Information Commissioner.

This data protection information is subject to the copyright of SCALELINE data protection.

Status 20/03/2024