Privacy Policy

Last updated: 27 February 2025

We place great importance on ensuring that the handling of personal data is transparent. This Privacy Policy provides information on which personal data we collect, for what purpose, and to whom we disclose it. In order to ensure a high level of transparency, this Privacy Policy is reviewed and updated on a regular basis.

Applicable Law

This Privacy Policy and the data processing described herein are primarily governed by the Swiss Federal Act on Data Protection (nDSG). Where applicable, the processing of personal data also complies with the requirements of the European Union General Data Protection Regulation (EU GDPR) and applicable United States data protection laws.

1. Services We Use

  • Google Analytics

  • Google Tag Manager

  • ProcessWire

  • Google reCAPTCHA

2. Contact Information

If you have any questions or concerns regarding the protection of your data, you can contact us at any time by email at info@recoveryspace.ch.

The entity responsible for data processing carried out via this website is:

grossmann & partner llc
info@grossmann-partner.ch

Person responsible for data protection:
Alexander Grossmann
info@grossmann-partner.ch

3. General Principles

3.1 What Data Do We Collect and From Whom Do We Receive This Data?

We primarily process personal data that you provide to us or that we collect when operating our website. Under certain circumstances, we may also receive personal data about you from third parties. These may include the following categories:

  • Personal master data (name, address, date of birth, etc.);

  • Contact data (mobile phone number, email address, etc.);

  • Financial data (e.g. bank account details);

  • Online identifiers (e.g. cookie identifiers, IP addresses);

  • Location and traffic data;

  • Audio and visual recordings;

  • Particularly sensitive personal data (e.g. biometric data or information about your health).

3.2 Under What Conditions Do We Process Your Data?

We treat your data confidentially and in accordance with the purposes defined in this Privacy Policy. We ensure that data processing is transparent and proportionate.

If, in exceptional cases, we are unable to comply with these principles, data processing may still be lawful if a legal justification applies. Such justifications may include in particular:

  • Your consent;

  • The performance of a contract or pre-contractual measures;

  • Our legitimate interests, provided that your interests do not override them.

3.3 How Can You Withdraw Your Consent?

If you have given us consent to process your personal data for specific purposes, we will process your data within the scope of that consent, unless another legal justification applies.

You may withdraw your consent at any time by sending an email to the address stated in the legal notice. Data processing that has already taken place remains unaffected.

3.4 In Which Cases Do We Disclose Your Data to Third Parties?

a. General Principle

In some cases, we rely on third-party services or affiliated companies and may commission them to process your data (so-called data processors). Categories of recipients include in particular:

  • Accounting, fiduciary, and auditing companies;

  • Consulting firms (legal advice, tax consulting, etc.);

  • IT service providers (web hosting, support, cloud services, website development, etc.);

  • Payment service providers;

  • Providers of tracking, conversion, and advertising services.

We ensure that these third parties and our affiliated companies comply with data protection requirements and treat your personal data confidentially.

In certain cases, we may also be legally obliged to disclose your personal data to authorities.

b. Visiting Our Social Media Channels

Our website may contain links to our social media channels. This is recognizable for you (typically via corresponding icons). When you click on these icons, you will be redirected to our social media channels.

In this case, the social media providers are informed that you are accessing their platform from our website. The social media providers may use the data collected in this way for their own purposes. We would like to point out that we have no knowledge of the content of the transmitted data or how it is used by the platform operators.

c. Disclosure Abroad

As part of data processing, personal data may be transferred to companies abroad. These companies are subject to the same data protection obligations as we are. Data transfers may take place worldwide.

If the level of data protection in the recipient country does not correspond to that of Switzerland, we carry out a prior risk assessment and contractually ensure that an equivalent level of protection is guaranteed (e.g. by using the European Commission’s new Standard Contractual Clauses or other legally prescribed measures). If our risk assessment yields a negative result, we take additional technical measures to protect your data.

You can access the European Commission’s Standard Contractual Clauses at the following link:
https://commission.europa.eu/publications/standard-contractual-clauses-controllers-and-processors-eueea_de

3.5 How Long Do We Store Your Data?

We store personal data only for as long as necessary to fulfil the purposes for which the data was collected.

Data collected during your visit to our website is stored for twelve months. An exception applies to analysis and tracking data, which may be stored for a longer period.

We store contractual data for longer periods, as we are required to do so by law. In particular, we must retain business correspondence, concluded contracts, and accounting documents for up to ten years. If we no longer require such data for the performance of our services, the data will be blocked and used only for accounting and tax purposes.

3.6 How Do We Protect Your Data?

We store your data securely and take all reasonable measures to protect it from loss, access, misuse, or alteration.

Our contractual partners and employees who have access to your data are obliged to comply with data protection regulations. In some cases, it may be necessary to forward your requests to affiliated companies. In such cases, your data will also be treated confidentially.

Within our website, we use SSL (Secure Socket Layer) encryption in conjunction with the highest level of encryption supported by your browser.

3.7 What Rights Do You Have?

a. Right of Access

You may request information at any time about the personal data we have stored about you. Please send your request together with proof of identity to info@recoveryspace.ch.

You also have the right to receive your data in a commonly used file format if we process your data automatically and if:

  • You have given your consent to the processing of this data; or

  • You have provided data in connection with the conclusion or performance of a contract.

We may restrict or refuse the provision of information or data if this conflicts with legal obligations, our legitimate interests, public interests, or the interests of a third party.

The processing of your request is subject to the statutory processing period of 30 days. This period may be extended due to a high volume of requests, legal or technical reasons, or if we require further information from you. You will be informed of any extension in good time, at least in text form.

b. Deletion and Rectification

You may request the deletion or correction of your data at any time. We may refuse such requests if statutory provisions require us to retain the data for a longer period or if another legal justification applies.

Please note that exercising your rights may, in some cases, conflict with contractual agreements and may have consequences for contract performance (e.g. early termination of a contract or cost implications).

c. Legal Remedies

If you are affected by the processing of personal data, you have the right to enforce your rights through the courts or to file a complaint with the competent supervisory authority. The competent supervisory authority in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC):
https://www.edoeb.admin.ch

3.8 Changes to This Privacy Policy

We may amend this Privacy Policy at any time. The changes will be published on https://recoveryspace.ch. You will not be notified separately.

4. Specific Data Processing Activities

4.1 Provision of the Website and Creation of Log Files

What information do we collect and how do we use it?

When you visit https://recoveryspace.ch, certain data is automatically stored on our servers or on servers of services and products that we use and/or have installed, for purposes of system administration, statistical analysis, security, or tracking. This includes:

  • The name of your internet service provider;

  • Your IP address (in some cases);

  • The version of your browser software;

  • The operating system of the device used to access the URL;

  • The date and time of access;

  • The website from which you accessed the URL;

  • The search terms used to find the URL.

Why are we allowed to process this data?

This data cannot be assigned to a specific person and is not merged with other data sources. Log files are stored to ensure the functionality of the website and the security of our IT systems. This constitutes our legitimate interest.

How can you prevent data collection?

The data is stored only for as long as necessary to achieve the purpose for which it was collected and is deleted after each session ends. The storage of log files is essential for the operation of the website; therefore, you cannot object to this processing.

4.2 Google Analytics

We use Google Analytics, a web analytics service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”).

Google Analytics uses so-called “cookies”, which are text files stored on your computer that enable an analysis of your use of the website.

The information generated by the cookie about your use of this website is generally transmitted to and stored on a Google server in the United States. If IP anonymization is activated on this website, your IP address will first be truncated by Google within member states of the European Union or other contracting states of the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and truncated there.

On behalf of the website operator, Google uses this information to evaluate your use of the website, compile reports on website activity, and provide other services related to website and internet usage.

The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data.

You can prevent the storage of cookies by adjusting your browser settings; however, please note that doing so may prevent you from using all features of this website fully. You can also prevent Google from collecting and processing data generated by the cookie and related to your website use (including your IP address) by downloading and installing the browser plugin available at:
https://tools.google.com/dlpage/gaoptout

4.3 Google Tag Manager

We use Google Tag Manager, a service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”), to manage website tags via an interface.

Google Tag Manager itself (which implements the tags) is a cookie-less domain and does not process personal data. The service triggers other tags that may collect data. Google Tag Manager does not access this data. If deactivation has been implemented at the domain or cookie level, it remains in effect for all tracking tags implemented via Google Tag Manager.

Through the use of Google Tag Manager, scripts (so-called tags) may be activated automatically on our website, and data may be transmitted from your browser to Google. This data may include information about your IP address, the browser you use, the subpages you visit, and other interactions during your visit to the website.

4.4 ProcessWire

Our website was created using the content management system (CMS) ProcessWire, developed by Ryan Cramer Design, LLC. ProcessWire is an open-source CMS that enables us to manage and present website content efficiently.

When using ProcessWire, certain data such as IP addresses or browser information may be processed to ensure the correct display and functionality of the website. However, this data is not stored permanently or disclosed to third parties unless required for website operation or due to legal obligations.

ProcessWire may also set cookies on your device to enable certain website functions and optimize the user experience. These cookies do not contain personal data and are used exclusively for technical purposes.

4.5 Google reCAPTCHA

To protect our website forms from unwanted automated access, we use the reCAPTCHA service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”).

The purpose of this service is to distinguish whether input is made by a human or by automated, machine-based processing. In this process, information such as your IP address or your behavior while filling out the form may be transmitted to Google.

For this purpose, your input is transmitted to Google and further processed there. By using reCAPTCHA, you agree that the recognition you provide contributes to the digitization of older works.

If IP anonymization is activated on this website, your IP address will first be truncated by Google within member states of the European Union or other contracting states of the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and truncated there.

On behalf of the website operator, Google uses this information to evaluate your use of this service. The IP address transmitted by your browser as part of reCAPTCHA is not merged with other Google data.

BrainBox Generators

BrainBox Generators is a service provided by BrainBox Solutions GmbH that identifies all data protection–relevant services used on a website and assists, among other things, in creating privacy policies. No personal data is collected or processed in this process.

Cookie-Einstellungen