Privacy policy

The responsible body within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

Erdineering GmbH
Thomas Erdin
Dorfstrasse 33
5210 Windisch

Telefon: +41 79 421 62 49
E-Mail: info@erdineering.ch
WebSite: https://www.erdineering.ch/

 

General note

Based on Article 13 of the Swiss Federal Constitution and the federal data protection regulations (Data Protection Act, FDPA), every person has the right to protection of his or her privacy and to protection against misuse of his or her personal data. The operators of these sites take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this privacy policy.

In cooperation with our hosting providers, we strive to protect the databases as best as possible against third-party access, loss, misuse or forgery.

We would like to point out that data transmission over the Internet (e.g. communication by e-mail) may have security gaps. It is not possible to completely protect the data from access by third parties.

By using this website, you agree to the collection, processing and use of data in accordance with the following description. In principle, this website can be visited without registration. Data such as pages accessed or the name of the accessed file, date and time are stored on the server for statistical purposes without this data being directly related to you. Personal data, in particular name, address or e-mail address, are collected as far as possible on a voluntary basis. The data will not be passed on to third parties without your consent.

Processing of personal data

Personal data is all information relating to an identified or identifiable person. A data subject is a person through whom personal data are processed. Processing includes any handling of personal data, irrespective of the means and procedures used, in particular the storage, disclosure, acquisition, deletion, storage, modification, destruction and use of personal data.

We process personal data in accordance with Swiss data protection law. In addition, we process personal data – insofar as and insofar as the EU GDPR is applicable – in accordance with the following legal bases in connection with Art. 6 para. 1 GDPR:

  • Consent (Art. 6 para. 1 sentence 1 lit. a GDPR) – The data subject has given his or her consent to the processing of personal data concerning him or her for a specific purpose or for several specific purposes.
  • Contract performance and pre-contractual requests (Art. 6 para. 1 sentence 1 lit. b GDPR) – The processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures which are carried out at the request of the data subject.
  • Legal obligation (Art. 6 para. 1 sentence 1 lit. c. GDPR) – The processing is necessary to fulfil a legal obligation to which the controller is subject.
  • Protection of vital interests (Art. 6 para. 1 sentence 1 lit. d GDPR) – The processing is necessary to protect the vital interests of the data subject or another natural person.
  • Legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR) – The processing is necessary to protect the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data override.
  • Application procedure as a pre-contractual or contractual relationship (Art. 9 para. 2 lit. b GDPR) – Insofar as special categories of personal data within the meaning of Art. 9 para. 1 GDPR (e.g. health data, such as severely disabled status or ethnic origin) are requested from applicants in order to enable the controller or the data subject to exercise his or her rights under employment law and social security and social protection law and to fulfil his or her obligations in this regard, their processing is carried out in accordance with Art. 9 para. 2 lit. b. GDPR, in the case of the protection of vital interests of applicants or other persons pursuant to Art. 9 para. 2 lit. c. GDPR or for the purposes of preventive health care or occupational medicine, for the assessment of the employee’s ability to work, for medical diagnosis, care or treatment in the health or social field or for the administration of systems and services in the health or social field in accordance with Art. 9 para. 2 lit. h. GDPR. In the case of communication of special categories of data based on voluntary consent, their processing takes place on the basis of Art. 9 para. 2 lit. a GDPR.

We process personal data for as long as is necessary for the respective purpose or purposes. In the event of longer-term retention obligations due to legal and other obligations to which we are subject, we restrict the processing accordingly.

Relevant legal bases

In accordance with Art. 13 GDPR, we inform you of the legal basis of our data processing. Unless the legal basis is stated in the data protection declaration, the following applies: The legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 GDPR, the legal basis for the processing to fulfil our services and carry out contractual measures as well as answering queries is Art. 6 para. 1 lit. b GDPR, the legal basis for the processing to fulfil our legal obligations is Art. 6 para. 1 lit. c GDPR, and the legal basis for the processing to safeguard our legitimate interests is Art. 6 para. 1 lit. f GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.

Security measures

In accordance with the legal requirements, taking into account the state of the art, the costs of implementation and the nature, extent, circumstances and purposes of the processing as well as the various appropriate technical and organisational measures to ensure a level of protection commensurate with the risk of occurrence and the extent of the threat to the rights and freedoms of natural persons.

Measures shall include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to, access to, input, disclosure, ensuring availability and separation of data. We have also put in place procedures to ensure the exercise of data subjects’ rights, the deletion of data and responses to data threats. Furthermore, we take the protection of personal data into account when developing or selecting hardware, software and processes in accordance with the principle of data protection, through technology design and through data protection-friendly default settings. 

Transmission of personal data

In the context of our processing of personal data, the data may be transmitted to other bodies, companies, legally independent organisational units or persons or disclosed to them. The recipients of this data may include, for example, service providers commissioned with IT tasks or providers of services and content that are integrated into a website. In such cases, we comply with the legal requirements and, in particular, conclude appropriate contracts or agreements that serve the protection of your data with the recipients of your data. 

Data processing in third countries

If we process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA)) or if the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, bodies or companies, this will only be done in accordance with the legal requirements.

Subject to express consent or contractually or legally required transfer, we process the data only in third countries with a recognized level of data protection, contractual obligation through so-called standard protection clauses of the EU Commission, in the case of certifications or binding internal data protection regulations (Articles 44 to 49 GDPR, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de). 

Privacy policy for cookies

This website uses cookies. Cookies are text files containing data from websites or domains visited and stored by a browser on the user’s computer. A cookie is primarily used to store information about a user during or after his or her visit within an online offer. The information stored may include, for example, the language settings on a website, the login status, the shopping cart or the location where a video was viewed. We also include other technologies that perform the same functions as cookies (e.g. when user information is stored using pseudonymous online identifiers, also known as “user IDs”).

The following cookie types and functions are differentiated:

  • Temporary cookies (also: session or session cookies): Temporary cookies are deleted at the latest after a user has left an online offer and closed his browser.
  • Persistent cookies: Persistent cookies remain stored even after the browser is closed. For example, the login status may be saved or preferred content may be displayed directly when the user visits a website again. Similarly, the interests of users used for reach measurement or marketing purposes may be stored in such a cookie.
  • First-party cookies: First-party cookies are set by us ourselves.
  • Third-party cookies: Third-party cookies are primarily used by advertisers (so-called third parties) to process user information.
  • Necessary (also: essential or absolutely necessary) cookies: On the one hand, cookies may be absolutely necessary for the operation of a website (e.g. to store logins or other user input or for security reasons).
  • Statistics, marketing and personalization cookies: In addition, cookies are usually also used in the context of reach measurement and when a user’s interests or behavior (e.g. viewing certain content, use of functions, etc.) are stored in a user profile on individual websites. Such profiles serve to show users, for example, content that corresponds to their potential interests. This process is also known as “tracking,” i.e. tracking the potential interests of users. Where we use cookies or “tracking” technologies, we inform you separately in our privacy policy or in the context of obtaining consent.

Legal basis: The legal basis on which we process your personal data using cookies depends on whether we ask you for your consent. If this is the case and you consent to the use of cookies, the legal basis for the processing of your data is your stated consent. Otherwise, the data processed with the help of cookies will be processed on the basis of our legitimate interests (e.g. in the business operation of our online offer and its improvement) or if the use of cookies is necessary to fulfil our contractual obligations.

Duration of storage: Unless we provide you with explicit information on the duration of storage of permanent cookies (e.g. as part of a so-called cookie opt-in), please assume that the duration of storage can be up to two years.

General information on revocation and objection (opt-out): Depending on whether the processing takes place on the basis of consent or legal permission, you have the option at any time to revoke your consent or to object to the processing of your data using cookie technologies (collectively referred to as “opt-out”). You can first explain your objection using the settings of your browser, e.g. by deactivating the use of cookies (which may also limit the functionality of our online offer). An objection to the use of cookies for online marketing purposes can also be declared by means of a variety of services, especially in the case of tracking, via the websites https://optout.aboutads.info and https://www.youronlinechoices.com/. In addition, you can obtain further objection notices in the context of the information on the service providers and cookies used.

Processing of cookie data on the basis of consent: We use a cookie consent management process in which the user’s consent to the use of cookies, or the processing operations and providers referred to in the cookie consent management process, can be obtained and managed and revoked by the user. The declaration of consent is stored in order to avoid having to repeat its query and to be able to prove the consent in accordance with the legal obligation. The storage can be done on the server side and/or in a cookie (so-called opt-in cookie, or using similar technologies) in order to be able to assign the consent to a user or his device. Subject to individual information about the providers of cookie management services, the following information applies: The duration of storage of the consent may be up to two years. A pseudonymous user identifier is created and stored at the time of consent, information on the scope of consent (e.g. which categories of cookies and/or service providers) as well as the browser, system and terminal device used.

  • Types of data processed: Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Data subjects: Users (e.g. website visitors, users of online services).
  • Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a. GDPR), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR).

Privacy Policy for SSL/TLS encryption


This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as the requests you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock icon in your browser line.

If SSL or TLS encryption is enabled, the data you transmit to us cannot be read by third parties. 

Data transfer security (excluding SSL)

Please note that data transmitted via an open network such as the Internet or an e-mail service without SSL encryption can be viewed by anyone. An unencrypted connection can be identified by the fact that the address bar of the browser shows “http://” and that no lock icon is displayed in your browser bar. Information transmitted over the Internet and content received online may be transmitted via third-party networks. We cannot guarantee the confidentiality of communications or documents transmitted via such open networks or third-party networks.

If you disclose personal information through an open network or third-party networks, you should be aware that your information may be lost or that third parties may potentially access that information and may therefore collect and use the information without your consent. Although in many cases the individual packets of data are transmitted in encrypted form, the names of the sender and the recipient are not. Even if the sender and the recipient reside in the same country, data are transmitted via such networks often and without controls over third countries, i.e. also over countries which do not offer the same level of data protection as your country of residence. We take no responsibility for the security of your data during transmission over the Internet and do not accept any liability for indirect or direct losses. We ask you to use other means of communication if you consider this necessary or reasonable for security reasons.

Despite extensive technical and organizational safeguards, data may be lost or intercepted and/or manipulated by unauthorized persons. We take appropriate technical and organizational security measures to prevent this occurrence within our system. However, your computer is outside the security area we can control. It is your responsibility as a user to inform yourself about the necessary security precautions and to take appropriate measures in this regard. As the website operator, we are in no way liable for damages that you may incur as a result of data loss or manipulation.

Data that you provide in online forms may be passed on to commissioned third parties for the purpose of order processing and may be viewed and, if necessary, processed by them. 

Privacy policy for server log files

The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Time of server request

This data cannot be assigned to specific persons. This data will not be combined with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of unlawful use.

Third-party services

These websites may use Google Maps for embedding maps, Google Invisible reCAPTCHA for protection against bots and spam, and YouTube for embedding videos.

These services of the US-based Google LLC use cookies, among other things, and as a result, data is transferred to Google in the USA, whereby we assume that no personal tracking takes place solely through the use of our website.

Google is committed to ensuring appropriate data protection in accordance with the American-European and American-Swiss Privacy Shields.

Further information can be found in Google’s privacy policy

Privacy policy for contact form

If you send us enquiries via the contact form, your details from the enquiry form, including the contact details you provide there, will be stored with us for the purpose of processing the enquiry and in case of follow-up questions. We will not pass on this data without your consent. 

Privacy policy for newsletter data

If you wish to subscribe to the newsletter offered on this website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. No further data will be collected. We use this data exclusively for sending the requested information and do not pass it on to third parties.

You can revoke your consent to the storage of the data, the e-mail address and their use to send the newsletter at any time, for example via the “unsubscribe link” in the newsletter. 

Privacy policy for comments on this website

For the comment function on this website, in addition to your comment, information at the time of writing the comment, your e-mail address and, if you do not post anonymously, the username you have chosen will be stored.

Storage of the IP address

Our comments function stores the IP addresses of users who write comments. Since we do not check comments on our site before they are posted, we need this data in order to be able to take action against the author in the event of legal infringements such as insults or propaganda.

Subscribe to comments

As a user of the site, you can subscribe to comments after logging in. You will receive a confirmation email to verify whether you are the owner of the e-mail address provided. You can unsubscribe from this feature at any time via a link in the info-mails.

Benefits subject to payment

In order to provide paid services, we request additional data, such as payment details, in order to be able to fulfill your order or order. We store this data in our systems until the legal retention periods have expired. 

External payment service providers

This website uses external payment service providers through whose platforms the users and we can carry out payment transactions. For example, via

  • PostFinance (https://www.postfinance.ch/de/detail/rechtliches-barrierefreiheit.html)
  • Visa (https://www.visa.de/nutzungsbedingungen/visa-privacy-center.html)
  • Mastercard (https://www.mastercard.ch/de-ch/datenschutz.html)
  • American Express (https://www.americanexpress.com/de/legal/online-datenschutzerklarung.html)
  • Paypal (https://www.paypal.com/de/webapps/mpp/ua/privacy-full)
  • Bexio AG (https://www.bexio.com/de-CH/datenschutz)
  • Payrexx AG (https://www.payrexx.ch/site/assets/files/2592/datenschutzerklaerung.pdf)
  • Apple Pay (https://support.apple.com/de-ch/ht203027)
  • Stripe (https://stripe.com/ch/privacy)
  • Klarna (https://www.klarna.com/de/datenschutz/)
  • Skrill (https://www.skrill.com/de/fusszeile/datenschutzrichtlinie/)
  • Giropay (https://www.giropay.de/rechtliches/datenschutzerklaerung) etc.

In fulfilling contracts, we use payment service providers on the basis of the Swiss Data Protection Ordinance and, if necessary, Art. 6 para. 1 lit. b. EU-GDPR. In addition, we use external payment service providers on the basis of our legitimate interests in accordance with the Swiss Data Protection Ordinance and, if necessary, in accordance with Art. 6 para. 1 lit. f. EU GDPR in order to provide our users with an effective and secure payment option.

The data processed by payment service providers include inventory data such as name and address, bank data such as account or credit card numbers, passwords, TANs and checksums, as well as contractual, sums and recipient details. The details are necessary to carry out the transactions. However, the data entered will only be processed and stored by the payment service providers. As the operator, we do not receive any information about (bank) account or credit card, but only information about confirming (accepting) or rejecting the payment. In some cases, the data will be transmitted by the payment service providers to credit agencies. The purpose of this transmission is to verify identity and creditworthiness. For this purpose, please refer to the GTC and data protection notices of the payment service providers.

Payment transactions are governed by the terms and conditions of the respective payment service providers, which can be accessed within the respective website or transaction applications. We also refer to these for the purpose of further information and asserting the rights of withdrawal, information and other data subjects.

Order processing in the online shop with customer account

We process the data of our customers in accordance with the data protection regulations of the Federal Government (Datenschutzgesetz, DSG) and the EU-GDPR, as part of the ordering processes in our online shop, in order to enable them to select and order the selected products and services, as well as to pay for and deliver them, respectively.

The processed data includes master data (inventory data), communication data, contract data, payment data and the persons affected by the processing include our customers, interested parties and other business partners. The processing takes place for the purpose of providing contractual services in the context of the operation of an online shop, invoicing, delivery and customer services. For this purpose, we use session cookies, e.g. for storing the contents of the shopping cart and permanent cookies, e.g. for storing the login status.

The processing takes place on the basis of Art. 6 para. 1 lit. b (execution of ordering procedures) and c (statutory archiving) GDPR. The information marked as necessary is required to establish and fulfil the contract. We disclose the data to third parties only within the scope of delivery, payment or within the scope of legal permissions and obligations. The data will only be processed in third countries if this is necessary for the performance of the contract (e.g. at the customer’s request upon delivery or payment).

Users can optionally create a user account, in particular by viewing their orders. As part of the registration process, users are informed of the required mandatory information. User accounts are not public and cannot be indexed by search engines, e.g. Google. If users have terminated their user account, their data will be deleted with regard to the user account, subject to their retention being necessary for commercial or tax reasons in accordance with Art. 6 para. 1 lit. c GDPR. Information in the customer account remains until its deletion and subsequent archiving in the case of a legal obligation. Users are responsible for securing their data in case of termination before the end of the contract.

As part of the registration and re-registration as well as the use of our online services, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests, as well as the user, in protection against misuse and other unauthorized use. In principle, this data will not be passed on to third parties unless it is necessary to pursue our claims or there is a legal obligation to do so pursuant to Art. 6 (1) (c) GDPR.

The deletion takes place after the expiry of legal warranty and comparable obligations, the necessity of retaining the data is checked at irregular intervals. In the case of legal archiving obligations, the deletion takes place after their expiry. 

General disclaimer

All information on our website has been carefully checked. We strive to offer our information up-to-date, correct and complete. Nevertheless, the occurrence of errors cannot be completely ruled out, which means that we cannot guarantee the completeness, accuracy and up-to-dateness of any information, including journalistic-editorial information. Liability claims for material or non-material damage caused by the use of the information provided are excluded, unless there is demonstrably intentional or grossly negligent fault.

The Publisher may, at its sole discretion and without prior notice, modify or delete texts and is not obliged to update the content of this website. Use of or access to this website is at the visitor’s own risk. The publisher, its clients or partners are not liable for damages, such as direct, indirect, incidental, to be determined in advance or consequential damages, allegedly caused by the visit of this website and therefore assume no liability for this.

The publisher also assumes no responsibility or liability for the content and availability of third-party websites that are accessible via external links of this website. The operators of linked sites are solely responsible for their content. The publisher hereby expressly distances itself from all content of third parties that may be relevant to criminal or liability law or violate good morals.

Amendments

We may modify this Privacy Policy at any time without prior notice. The current version published on our website applies. If the Privacy Policy forms part of an agreement with you, we will notify you of the change by e-mail or by any other appropriate means in the event of an update. 

Questions to the Data Protection Officer

If you have any questions about data protection, please send us an e-mail or contact the person responsible for data protection in our organisation listed at the beginning of the privacy policy.


Source: SwissAnwalt