Privacy Policy

1. Introduction

Below we will inform you, among other things, about who is responsible for processing your data, what data we collect in connection with your visit to our website and the use of our services, for what purposes we process this data and to whom we may pass this data on. We will also inform you about the duration of the processing of your data, the legal basis for the processing (if such processing is necessary) and what rights you have with regard to the processing of your data. This privacy policy applies to all of your data that we already have or that we will have in the future. Please note that we may amend this privacy policy from time to time. The current version published on our website applies.


Personal data refers to all information relating to an identified or identifiable person (hereinafter "personal data"). This includes, in particular, information such as name, address, telephone number, email address, and possibly also IP addresses and device IDs. In this privacy policy, the term "data" includes not only personal data but also non-personal and anonymized data. Processing refers to any handling of data, regardless of the means and procedures used, in particular the collection, storage, use, modification, disclosure, archiving, or deletion of data (hereinafter "processing").


If you provide us with personal data of other people, please ensure that these people are aware of this privacy policy and only provide us with their personal data if you are authorized to do so under applicable data protection law.


2. Name and address of the person responsible

Responsible for data processing in accordance with this privacy policy is:

Z-AG Engineering
Böllistrasse 18, Oeschgen, 5072, Switzerland
alessandro.zumsteg@z-ag.ch


3. Categories of processed data

When you visit our website, use our services, and contact us, we collect certain data. Generally, we collect this data directly from you. The personal data we process may include the following:


  • Data collected or disclosed when you visit our website or use our services. This includes, among other things, the IP and MAC address or device ID of the device used, cookies, pages you visit and search terms entered, entries in dialog boxes, ratings, time and duration of visits, clicks, referrer/exit URL, information on the time of use, browser and device type, operating system and Internet service provider used, and the amount of data transferred.
  • Data exchanged in or in relation to contact with us, e.g. communication by letter, telephone, e-mail, contact form, etc. (in particular name, contact details, gender, marital status, date of birth, job title, photo, employees, language, payment information).
  • Data provided when registering for a newsletter or for downloading files (e.g. software) (in particular email address and name).
  • Data provided when creating a customer account for online shopping and in connection with orders placed (in particular user name, password, selected payment method and delivery address).
  • Data relating to offers and concluded contracts (e.g. contract date, type, content, product, parties, term, value, adjustments, payment details, contact details, contact persons, billing and correspondence addresses, customer feedback, terminations, disputes, etc.).
  • Data disclosed as part of the comment function (in particular email address, the user name you have chosen if you do not post anonymously, and your IP address).
  • Data that you disclose when participating in competitions, surveys and the like.


The above data does not always constitute personal data. As a rule, we cannot assign data generated when using our services without registration (e.g., for a newsletter or online shop) to a specific person by name. However, in individual cases, this may be possible in combination with other data.

We would like to draw your attention to the fact that the information provided in connection with the use of the contact form or the comment function may contain particularly sensitive data (such as health data) and that you have provided this information to us voluntarily.



4. Processing purposes

We will process personal data, to the extent permitted by applicable law, in particular for the following purposes:


  • Initiation, conclusion, fulfillment and processing of contracts;
  • Offering, further developing and improving our offerings, developing new services, operating, maintaining, optimising and ensuring the security of our services and infrastructure;
  • Managing users of our services, identity verification, logins, and other authentication;
  • Maintaining, administering and developing our customer relationships, communicating with customers and third parties, promotions, advertising and marketing, offering tailored services and relevant content;
  • Quality control, compilation of statistics;
  • Compliance with legal and regulatory obligations and internal rules, law enforcement, civil, administrative and criminal proceedings, complaints, anti-abuse measures, investigations and responses to requests from authorities and public agencies.



5. Legal basis

We use the personal data for the above purposes on the basis of the following legal bases, insofar as this is required under applicable data protection law:


  • performance of the contract;
  • Fulfillment of legal obligations;
  • Consent given to us or third parties;
  • Legitimate interests of us and third parties, in particular:
  • Offering and providing services;
  • Advertising and marketing;
  • Maintaining contact and communicating with users;
  • User management, identity verification, logins;
  • Compliance with legal and regulatory obligations, law enforcement, civil, administrative and criminal proceedings, complaints, investigations and responses to requests from public authorities.



6. Publication and sharing of data

We may publish and share information as follows:


Order data processor

We may commission third parties to provide certain services (e.g., in the area of IT, application operation, administration, shipping, etc.) and to process and store data (so-called "contract data processors"). Contract data processors may have access to personal data and process it on our behalf. We oblige the contract processors to comply with data protection law and to process data only in the same way as we do ourselves. Contract data processors who may receive personal data may be located in any country, in particular in Switzerland, Germany, Israel, and the USA.


Contractual partner

We may share data with contractual partners (e.g., sales partners, service providers, financial institutions, etc.). This occurs, for example, to fulfill contractual obligations, to offer certain services, for debt collection and marketing purposes, to analyze the use and operation of our services, systems, and infrastructure, and for payment processing. Potential recipients may also be acquirers or parties interested in acquiring business units, companies, or parts thereof. Contractual partners may receive access to personal data and process it for their own purposes (e.g., to fulfill the contract or to comply with their own legal obligations). In doing so, they are themselves obligated to comply with applicable data protection laws.

Contractual partners who may receive personal data may be located in any country, in particular in Switzerland, in EU and EEA countries and in the USA.


Disclosure to authorities

In certain situations, we may disclose data to public authorities, agencies, and other third parties. We do so in cases where we are requested to do so by public authorities or authorities, or where we believe that we are obligated to do so.



7. Retention period

We store personal data for as long as necessary for the purpose for which we collected it. Certain personal data is also subject to legally binding retention periods of ten years or more, which we take into account. We may also store personal data for at least the duration of the applicable limitation periods, which in many cases is five or ten years. Personal data that arises in connection with the use of our services (e.g. protocols, logs, analyses, etc.) and that is not subject to such retention or limitation periods is generally deleted sooner, as soon as we no longer have an interest in processing it. Data can also be stored for longer periods in anonymized form. Unless expressly agreed in a contractual agreement, we are not obligated to store data for a specific period.



8. Data security

We implement appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

9. Your rights (data subject rights)

Every data subject has the right to information about their personal data. They also have the right to request that we correct, delete, or restrict the processing of personal data, as well as to object to such processing of personal data. The exercise of such rights generally requires that the data subject can clearly prove their identity. If the processing of personal data is based on consent, the data subject can withdraw this consent at any time. In certain cases, the data subject has the right to receive the data generated during the use of online services in a structured, common, and machine-readable format that enables further use and transmission. Inquiries relating to these rights should be directed to the address stated above. We reserve the right to restrict the rights of the data subject within the framework of the applicable law, for example, not to provide complete information or not to delete data. We would also like to point out that if your personal data is deleted, certain services will no longer be available or can no longer be used in whole or in part.

Every data subject has the right to lodge a complaint with the competent data protection authority. For a controller in Switzerland, this is the Federal Data Protection and Information Commissioner. For a controller in the Principality of Liechtenstein, this is the Liechtenstein Data Protection Authority.


10. Cookies, web analysis and tracking tools

We use various common technologies to collect, store and evaluate data when you visit our website and use our services.

These include, in particular, cookies that can be used to identify your browser or device. A cookie is a small file that is sent to your computer or automatically saved on your computer or mobile device by the web browser you use. When you access a service again, the service can recognize your browser or device using the cookie. Cookies can store user preferences and other information. We use session cookies. These are necessary to perform the basic functions of the services and are automatically deleted after you have used our services. We also use temporary and permanent cookies that remain stored on your computer or mobile device for a longer period of time. The information collected by cookies enables us to improve our website and services in line with customer requirements and to provide you with offers tailored to your needs.

You can block the use of cookies in your browser settings or delete them there. Please note that if you do not allow cookies, you may not be able to fully use all the functions of a service, and if you delete cookies, any opt-out cookies you have set will also be deleted. Such opt-out cookies would then have to be reactivated the next time you visit the corresponding service. Otherwise, you will be recognized as a new user, and your data will be recorded again.

In addition to cookies, we use web analysis and tracking tools to measure and evaluate the use of our website and services, to personalize the services, and to display offers and advertising tailored to you. Data processing by such tools, which are usually provided by third parties, is subject to the terms of use and privacy policies of these third parties.



11. Integration of third-party offers

We integrate third-party services and content on our websites that may enable you to interact with third parties (e.g., YouTube videos or online payments via a payment service provider). Any data you provide will be forwarded to these third parties for processing and execution of the corresponding service or processed directly by them.

Please note that the data processing carried out by these third parties is subject to their terms of use and data protection regulations.


Version 1.0.0

Share by: