Privacy policy

Privacy Policy

The responsible party in the sense of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

Biow Health & Beauty AG

Peter Hofstetter

Bundesplatz 9

6300 Zug

Phone: +41 (0)76 792 14 14 or +41 (0)41 743 14 14
E-mail: phofstetter@biow.ch
WebSite: http://www.biow.ch/

General notice

Based on Article 13 of the Swiss Federal Constitution and the data protection provisions of the Swiss Confederation (Data Protection Act, DSG), every person has the right to protection of his or her privacy as well as protection against misuse of his or her personal data. The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations as well as this privacy policy.

In cooperation with our hosting providers, we strive to protect the databases as well as possible against unauthorized access, loss, misuse or falsification.

We point out that data transmission over the Internet (eg when communicating by e-mail) can have security vulnerabilities. A complete protection of data against access by third parties is not possible.

By using this WebSite, you agree to the collection, processing and use of data in accordance with the following description. This WebSite can be visited in principle without registration. Data such as pages accessed or names of files accessed, date and time are stored on the server for statistical purposes, without this data being directly related to your person. Personal data, in particular name, address or e-mail address are collected as far as possible on a voluntary basis. Without your consent, the data will not be disclosed to third parties.

Processing of personal data

Personal data is any information that relates to an identified or identifiable person. A data subject is a person about whom personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used, in particular the storage, disclosure, procurement, deletion, storage, modification, destruction and use of personal data.

We process personal data in accordance with Swiss data protection law. In addition, we process - to the extent and insofar as the EU Data Protection Regulation is applicable - personal data in accordance with the following legal bases in connection with Art. 6 para. 1 DSGVO:

  • lit. a) Processing of personal data with the consent of the data subject.
  • lit. b) Processing of personal data for the performance of a contract with the data subject as well as for the implementation of corresponding pre-contractual measures.
  • lit. c) Processing of personal data to comply with a legal obligation to which we are subject under any applicable law of the EU or under any applicable law of a country where the GDPR is applicable in whole or in part.
  • lit. d) Processing of personal data to protect vital interests of the data subject or another natural person.
  • lit. f) Processing of personal data to protect the legitimate interests of us or of third parties, unless the fundamental freedoms and rights and interests of the data subject prevail. Legitimate interests are in particular our business interest in being able to provide our website, information security, the enforcement of our own legal claims and compliance with Swiss law.

We process personal data for the duration required for the respective purpose or purposes. In the case of longer-lasting storage obligations due to legal and other obligations to which we are subject, we restrict the processing accordingly.

Data protection statement for cookies

This WebSite uses cookies. These are small text files that make it possible to store specific information related to the user on the user's terminal device while the user is using the website. Cookies make it possible to determine in particular frequency of use and number of users of the pages, to analyze behavior patterns of page use, but also to make our offer more customer-friendly. Cookies remain stored beyond the end of a browser session and can be retrieved when visiting the site again. If you do not want this, you should set your Internet browser to refuse the acceptance of cookies.

A general objection to the use of cookies used for online marketing purposes can be made for a large number of the services, especially in the case of tracking, via the US site http://www.aboutads.info/choices/ or the EU page http://www.youronlinechoices.com/ explained. Furthermore, the storage of cookies can be achieved by means of their disabling in the settings of the browser. Please note that then, if necessary, not all functions of this online offer can be used.

Privacy policy for SSL/TLS encryption

This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Privacy policy for server log files

The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and browser version
  • Used operating system
  • Referrer URL
  • Host name of the accessing computer
  • Time of server request

This data can not be assigned to specific persons. A combination of this data with other data sources is not made. We reserve the right to review this data subsequently if we become aware of specific indications of illegal use.

Third-party services

This WebSite may use Google Maps for embedding maps, Google Invisible reCAPTCHA for protection against bots and spam, and YouTube for embedding videos.

These services of the American Google LLC use, among other things, cookies and, as a result, data is transferred to Google in the USA, although we assume that in this context no personal tracking takes place solely through the use of our website.

Google is committed to ensuring adequate data protection in accordance with the U.S.-European and U.S.-Swiss Privacy Shield.

Further information can be found in the Privacy Policy of Google.

Privacy policy for contact form

If you send us inquiries via contact form, your data from the inquiry form, including the contact information you provide there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass on this data without your consent.

Data protection statement for newsletter data

If you would like to receive the newsletter offered on this website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the specified e-mail address and agree to receive the newsletter. Further data will not be collected. We use this data exclusively for sending the requested information and do not pass it on to third parties.

You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the "unsubscribe" link in the newsletter.

Privacy policy for comment function on this website

For the comment function on this WebSite, in addition to your comment, information on the time of creation of the comment, your e-mail address and, if you do not post anonymously, the username you have chosen will be stored.

Storage of IP address

Our comment function stores the IP addresses of users who post comments. Since we do not check comments on our site before they are approved, we need this data to be able to take action against the author in case of legal violations such as insults or propaganda.

Subscribing to comments

As a user of the site, you can subscribe to comments after registering. You will receive a confirmation email to verify that you are the owner of the email address provided. You can unsubscribe from this function at any time via a link in the info emails.

Data protection statement for right to information, deletion, blocking

You have the right at any time to free information about your stored personal data, their origin and recipient and the purpose of data processing, as well as a right to correct, block or delete this data. For this purpose, as well as for further questions on the subject of personal data, you can contact us at any time at the address given in the imprint.

Privacy Policy for Opposition Advertising Mails

The use of contact data published within the framework of the imprint obligation for the transmission of not expressly requested advertising and information materials is hereby prohibited. The operators of the pages expressly reserve the right to take legal action in the event of unsolicited promotional information, such as spam e-mails.

Use of Google Maps

This website uses Google Maps API to visually display geographical information. When using Google Maps, Google also collects, processes and uses data about visitors' use of the map functions. More information about data processing by Google you can take from the Google Privacy Policy . There you can also change your personal privacy settings in the Privacy Center.

Detailed instructions for managing your own data in connection with Google products can be found here.

Google AdWords

This website uses Google conversion tracking. If you have reached our website via an ad placed by Google, Google Adwords will set a cookie on your computer. The cookie for conversion tracking is set when a user clicks on an ad placed by Google. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of our website and the cookie has not yet expired, we and Google can recognize that the user clicked on the ad and was redirected to this page. Each Google AdWords customer receives a different cookie. Cookies can therefore not be tracked across AdWords customers' websites. The information obtained using the conversion cookie is used to create conversion statistics for AdWords customers who have opted for conversion tracking. Customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information with which users can be personally identified.

If you do not wish to participate in tracking, you can refuse the setting of a cookie required for this purpose - for example, via browser settings that generally disable the automatic setting of cookies or set your browser to block cookies from the domain "googleleadservices.com".

Please note that you may not delete the opt-out cookies as long as you do not want any measurement data to be recorded. If you have deleted all your cookies in the browser, you must set the respective opt-out cookie again.

Use of Google Remarketing

This website uses the remarketing function of Google Inc. The function is used to present website visitors with interest-based advertisements within the Google advertising network. A so-called "cookie" is stored in the browser of the website visitor, which makes it possible to recognize the visitor when he calls up websites that belong to the Google advertising network. On these pages, the visitor can be presented with advertisements that relate to content that the visitor has previously accessed on websites that use Google's remarketing function.

According to its own information, Google does not collect any personal data during this process. If you still do not want the remarketing function of Google, you can disable it in principle by making the appropriate settings at http://www.google.com/settings/ads . Alternatively, you can disable the use of cookies for interest-based advertising through the Advertising Network Initiative by following the instructions at http://www.networkadvertising.org/managing/opt_out.asp .

Privacy Policy for Google Analytics

This WebSite uses Google Analytics, a web analytics service provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To disable Google Analytiscs, Google provides https://tools.google.com/dlpage/gaoptout?hl=de a browser plug-in. Google Analytics uses cookies. These are small text files that make it possible to store specific information related to the user on the user's terminal device. These enable an analysis of the use of our website offer by Google. The information collected by the cookie about the use of our pages (including your IP address) is usually transmitted to a Google server in the USA and stored there. We would like to point out that on this website Google Analytics has been extended by the code "gat._anonymizeIp();" to ensure anonymized collection of IP addresses (so-called IP masking). If anonymization is active, Google truncates IP addresses within member states of the European Union or in other contracting states to the Agreement on the European Economic Area, which is why no conclusions can be drawn about your identity. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. Google complies with the data protection provisions of the "Privacy Shield" agreement and is registered with the "Privacy Shield" program of the U.S. Department of Commerce and uses the information collected to evaluate the use of our websites, to compile reports for us in this regard and to provide other related services to us. You can learn more at https://support.google.com/analytics/answer/6004245?hl=de.

Privacy Policy for Google AdSense

This website uses Google AdSense, an advertising integration service provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. GoogleAdSense uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. Google AdSense also uses so-called web beacons (invisible graphics). Through these web beacons, information such as visitor traffic on these pages can be analyzed. The information generated by cookies and web beacons about the use of this website (including your IP address) and delivery of advertising formats will be transmitted to and stored by Google on servers in the United States. This information may be passed on by Google to contractual partners of Google. However, Google will not merge your IP address with other data stored by you. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.

Privacy Policy for the Use of Google Web Fonts

This website uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly. If your browser does not support web fonts, a standard font is used by your computer.

For more information on Google Web Fonts, see https://developers.google. com/fonts/faq and in Google's privacy policy: https://www.google.com/policies/privacy/

Privacy Policy for Facebook

This WebSite uses features from Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA . When calling up our pages with Facebook plug-ins, a connection is established between your browser and the servers of Facebook. In the process, data is already transmitted to Facebook. If you have a Facebook account, this data can be linked to it. If you do not want this data to be associated with your Facebook account, please log out of Facebook before visiting our site. Interactions, in particular the use of a comment function or the clicking of a "Like" or "Share" button are also passed on to Facebook. You can learn more at https://de-de.facebook.com/about/privacy.

Privacy Policy for Twitter

This WebSite uses functions of Twitter, Inc, 1355 Market St, Suite 900, San Francisco, CA 94103, USA. When calling up our pages with Twitter plug-ins, a connection is established between your browser and the servers of Twitter. In the process, data is already transferred to Twitter. If you have a Twitter account, this data can be linked to it. If you do not want this data to be associated with your Twitter account, please log out of Twitter before visiting our site. Interactions, in particular the clicking of a "Re-Tweet" button are also passed on to Twitter. You can learn more at https://twitter.com/privacy.

Data protection statement for Instagram

On our pages, functions of the service Instagram are integrated. These functions are offered by Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA integrated. If you are logged into your Instagram account, you can link the content of our pages to your Instagram profile by clicking on the Instagram button. This allows Instagram to associate the visit to our pages with your user account. We point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data and its use by Instagram.

For more information on this, see the privacy policy of Instagram: http://instagram.com/about/legal/privacy/

Privacy Policy for LinkedIn

This website uses functions of the network LinkedIn. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Each time one of our pages containing LinkedIn functions is accessed, a connection to LinkedIn servers is established. LinkedIn is informed that you have visited our web pages with your IP address. If you click the "Recommend Button" of LinkedIn and are logged into your account at LinkedIn, it is possible for LinkedIn to assign your visit to our website to you and your user account. We point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data as well as their use by LinkedIn.

For more information on this, please refer to the privacy policy of LinkedIn at: https://www.linkedin.com/legal/privacy-policy

Privacy Policy for Pinterest

On this website we use social plugins of the social network Pinterest, which is operated by Pinterest Inc, 808 Brannan Street San Francisco, CA 94103-490, USA ("Pinterest"). When you call up a page that contains such a plugin, your browser establishes a direct connection to the Pinterest servers. The plugin transmits log data to the Pinterest server in the USA. This log data may contain your IP address, the address of the visited websites that also contain Pinterest functions, type and settings of the browser, date and time of the request, your use of Pinterest as well as cookies.

For more information on the purpose, scope and further processing and use of the data by Pinterest, as well as your rights in this regard and options for protecting your privacy, please refer to the Pinterest privacy policy: https://about.pinterest.com/de/privacy-policy

External Payment Service Providers

This WebSite uses external payment service providers through whose platforms users and we may make payment transactions. For example, via

  • PostFinance (https://www.postfinance.ch/de/detail/rechtliches-barrierefreiheit.html)
  • Visa (https://www.visa.de/nutzungsbedingungen/visa-privacy-center.html)
  • Mastercard (https://www.mastercard.ch/de-ch/datenschutz.html)
  • American Express (https://www.americanexpress.com/de/content/privacy-policy-statement.html)
  • Paypal (https://www.paypal.com/de/webapps/mpp/ua/privacy-full)
  • Bexio AG (https://www.bexio.com/de-CH/datenschutz)
  • Payrexx AG (https://www.payrexx. ch/site/assets/files/2592/datenschutzerklaerung.pdf)
  • Apple Pay (https://support.apple.com/de-ch/ht203027)
  • Stripe (https://stripe.com/ch/privacy)
  • Klarna (https://www.klarna.com/de/datenschutz/)
  • Skrill (https://www.skrill. com/en/footer/privacy-policy/)
  • Giropay (https://www.giropay.de/rechtliches/datenschutz-agb/) etc.

In the context of the fulfillment of contracts, we use the payment service providers on the basis of the Swiss Data Protection Ordinance and, where necessary, the Art. 6 para. 1 lit. b. EU-DSGVO. Furthermore, we use external payment service providers on the basis of our legitimate interests pursuant to the Swiss Data Protection Ordinance as well as and to the extent necessary pursuant to Art. 6 para. 1 lit. f. EU-DSGVO in order to provide our users with effective and secure payment options.

The data processed by the payment service providers includes inventory data, such as the name and address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums, among others, as well as the contract, totals and recipient-related information. The information is required in order to carry out the transactions. However, the data entered is only processed by the payment service providers and stored with them. We as the operator do not receive any information about (bank) account or credit card, but only information to confirm (accept) or reject the payment. Under certain circumstances, the data is transmitted by the payment service providers to credit agencies. The purpose of this transmission is to check identity and creditworthiness. In this regard, we refer to the terms and conditions and privacy notices of the payment service providers.

For payment transactions, the terms and conditions and privacy notices of the respective payment service providers apply, which are available within the respective website, or transaction applications. We refer to these likewise for the purpose of further information and assertion of revocation, information and other data subject rights.

Data protection statement for YouTube

This WebSite uses plugins of the site YouTube operated by Google. The operator of the pages is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited.

If you are logged into your YouTube account, you enable YouTube to associate your surfing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

For more information on the handling of user data, see YouTube's privacy policy at: https://www.google.de/intl/de/policies/privacy

Privacy Policy for Vimeo

On this website, plugins of the video portal Vimeo of Vimeo, LLC, 555 West 18th Street, New York, New York 10011, USA are integrated. Each time you visit a page that offers one or more Vimeo video clips, a direct connection is established between your browser and a Vimeo server in the USA. In the process, information about your visit and your IP address are stored there. Through interactions with the Vimeo plugins (e.g. clicking the start button), this information is also transmitted to Vimeo and stored there. The privacy policy for Vimeo with more information on the collection and use of your data by Vimeo can be found in the privacy policy of Vimeo.

If you have a Vimeo user account and do not want Vimeo to collect data about you via this website and link it to your membership data stored with Vimeo, you must log out of Vimeo before visiting this website.

In addition, Vimeo calls up the Google Analytics tracker via an iFrame in which the video is called up. This is Vimeo's own tracking, to which we have no access. You can prevent tracking by Google Analytics by using the deactivation tools that Google offers for some Internet browsers. You can also prevent the collection of data generated by Google Analytics and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link:

https://tools.google.com/dlpage/gaoptout?hl=de

Order processing in the online store with customer account

We process the data of our customers acc. the data protection provisions of the Federal (Data Protection Act, DSG) and the EU-DSGVO, in the context of ordering transactions in our online store, to enable them to select and order the selected products and services, as well as their payment and delivery, or execution.

The processed data include master data (inventory data), communication data, contract data, payment data and the persons affected by the processing include our customers, prospective customers and other business partners. The processing is carried out for the purpose of providing contractual services in the context of operating an online store, billing, delivery and customer services. In this context, we use session cookies, e.g. for storing the shopping cart content, and permanent cookies, e.g. for storing the login status.

The processing is carried out on the basis of Art. 6 para. 1 lit. b (execution of order transactions) and c (legally required archiving) DSGVO. In this context, the information marked as required is necessary for the justification and fulfillment of the contract. We disclose the data to third parties only in the context of delivery, payment or in the context of legal permissions and obligations. The data will be processed in third countries only if this is necessary for the fulfillment of the contract (for example, at the request of the customer for delivery or payment).

Users can optionally create a user account, in particular by viewing their orders. As part of the registration process, the required mandatory information will be provided to users. User accounts are not public and cannot be indexed by search engines, e.g. Google. If users have terminated their user account, their data with regard to the user account will be deleted, subject to their retention is necessary for commercial or tax reasons entspr. Art. 6 para 1 lit. c DSGVO. Information in the customer account remains until its deletion with subsequent archiving in the event of a legal obligation. It is incumbent on users to save their data in the event of termination before the end of the contract.

In the context of registration and renewed registrations and use of our online services, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests, as well as the users in protection against abuse and other unauthorized use. In principle, this data is not passed on to third parties, unless it is necessary for the pursuit of our claims or there is a legal obligation to do so in accordance with Art. 6 para. 1 lit. c DSGVO.

Deletion takes place after the expiry of statutory warranty and comparable obligations, the necessity of retaining the data is reviewed at irregular intervals. In the case of legal archiving obligations, deletion takes place after their expiry.

Copyrights

The copyright and all other rights to content, images, photos or other files on the website, belong exclusively to the operator of this website or the specifically named rights holders. For the reproduction of all files, the written consent of the copyright holder must be obtained in advance.

Whoever commits a copyright infringement without the consent of the respective rights holder, may be liable to prosecution and possibly damages.

General disclaimer

All information on our website has been carefully checked. We make every effort to ensure that the information we provide is up-to-date, accurate and complete. Nevertheless, the occurrence of errors can not be completely excluded, with which we can not guarantee the completeness, accuracy and timeliness of information, including journalistic-editorial nature. Liability claims resulting from material or non-material damage caused by the use of the information provided are excluded, unless there is evidence of willful misconduct or gross negligence.

The publisher may, at its discretion and without notice, change or delete texts and is not obliged to update content on this website. Use of or access to this website is at the visitor's own risk. The publisher, its principals or partners are not responsible for any damages, such as direct, indirect, incidental, consequential or punitive damages, alleged to have been caused by the visit of this website and consequently assume no liability for such damages.

The publisher also assumes no responsibility or liability for the content and availability of third party websites that are accessible through external links of this website. For the content of the linked pages are solely responsible for their operators. The publisher thus expressly dissociates itself from all third party content that may be relevant under criminal or liability law or offend common decency.

Changes

We may adjust this privacy policy at any time without notice. The current version published on our website shall apply. To the extent that the Privacy Policy is part of an agreement with you, we will notify you of the change by email or other appropriate means in the event of an update.

Questions to the Data Protection Officer

If you have any questions about data protection, please write to us by e-mail or contact directly the responsible person in our organization listed for data protection at the beginning of the Privacy Policy.

Zug, 06.01.2019
Source: SwissAnwalt