Privacy Policy
Date of update: 25.09.2023
ALTERLAND SA, via Cantonale 11, Lugano, Switzerland ("Company" or "We") collects personal data (as defined below) in accordance with applicable laws and regulations, in particular the Swiss Federal Act on Data Protection ("FADP") and, where applicable, the General Data Protection Regulation (EU/2016/679) (General Data Protection Regulation, "GDPR"), both defined as "privacy regulations".
Definitions
In accordance with the privacy regulations, the terms below have different meanings:
"Personal Data" includes any information relating to an identified or identifiable natural person.
"Data Subject" is an identified or identifiable natural person.
"Processing" shall mean any operation or set of operations, whether or not by automatic means, which applies to (groups of) personal data, including collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, diffusion, communication by transmission, dissemination or any other form of disclosure, alignment or combination, restriction, erasure or destruction.
"Sensitive personal data" are personal data worthy of special protection: (i) data concerning religious, philosophical, political or labour unions, (ii) data concerning health, the intimate sphere or racial or ethnicity, (iii) genetic data, (iv) biometric data that uniquely identify a natural person, (v) data concerning administrative and criminal prosecutions and sanctions, (vi) data concerning social assistance measures.
"Navigation data" are acquired by the computer systems and procedural software used to operate this site during their normal operation. This is personal data whose transmission is implicit in the use of Internet communication protocols. This category includes IP addresses, addresses in URI/URL (Uniform Resource Identifier/Locator) notation, the time of the request, the type of request, the size of the outgoing packet, the status of the response given by the server (received, error, etc.) and other parameters relating to the operating system.
Data controller
The data controller is the Company.
Type of personal data acquired, purpose, legal basis and data retention
The data are collected and managed for the purposes and within the times indicated below:
Data
Mode of data acquisition: Automatic during the visit of the website
Purpose of the treatment: Visit of the website by the user
Legal basis of the treatment: Predominant private interest
Data retention time: During the website visit or when receiving newsletter
Technical data, such as IP address, browser characteristics (type, language, installed plug-ins, etc.).
Personal data for the fulfilment of the service (e.g. e-mail address, first name, last name, location, birthdate and other identification information)
Mode of data acquisition: Upon conclusion of the service
Purpose of the treatment: Offer of newsletter services
Legal basis of the treatment: Fulfilment of contractual obligations
Data retention time: 10 years
The Company should not collect sensitive personal data; should this become the case, the Data Subject is expected to explicitly accept and give consent to the processing of these sensitive data and a specific clause will be inserted in the subscription form.
We shall ask your consent to receive marketing / promotional e-mails or newsletter from us and the frequency of it, by asking you to select a checkbox on your own accord to opt-in or agree to receive the newsletter or our email marketing. We shall inform you should our marketing e-mails contain web beacons, trackers, or other cookies that get stored on users’ browsers. You will have the option at any time to opt-out of receiving such e-mails or unsubscribe of our communications by following the process included in the e-mail you received or by logging into your account, if any, and indicating your preference; this method it’s easy for you to locate and use. Should you unsubscribe from the newsletter we will delete your information unless we provide you with another active service.
To whom will the data collected be communicated?
We will only disclose your personal data if we are obliged to do so in order to comply with our legal or regulatory obligations, for business or administrative reasons or because you have asked us to do so. This probably also includes disclosure:
within the Company;
to third parties who process personal data on our behalf (IT system providers and other service providers);
to any government, regulatory agency, enforcement or exchange body or court that so requires under applicable law or regulation.
Can the Company transfer data to a third country and/or international organisations?
The data collected by the Company are stored in Switzerland. Should we transfer your data outside Switzerland, we will ensure that in the first instance the data is stored in countries that guarantee adequate protection of personal data, such as member states of the European Economic Area. If this is not possible, we will ensure that the provisions of the applicable legislation on the transfer of personal data to third countries are complied with in all cases and require your consent.
How we protect your personal data
The security of your personal data is important to us and we use various technical and organisational measures to protect it.
We are committed to safeguarding and protecting personal data by taking appropriate measures against accidental or unlawful destruction, loss, alteration or unauthorised disclosure.
Rights of the interested parties
Under the privacy regulations, users have a number of rights in relation to their personal data. They have the right to request access, correction or deletion of such information, the right to limit or oppose the processing and, under certain circumstances, the right to data portability.
If a user has given his or her consent to the processing of his or her data, he or she has the right (under certain circumstances) to revoke this consent at any time.
If you wish to exercise the above rights, please send an e-mail to gdpr@alterland.io.
We try to answer you within a maximum of one month, although we reserve the right to extend this period for more complex requests. We also reserve the right to charge a reasonable administration fee for any manifestly unfounded or excessive requests for access to personal data and for any additional copies of personal data requested.
You may also contact the Swiss privacy authority should our reply do not satisfy you:
www.edoeb.admin.cg/edoeb/de/home/deredoeb/kontakt.html
tel. +41 58 464 94 10, info@edoeb.admin.ch
Last update: 25.09.2023