Privacy policy and cancellation policy


This privacy policy informs you about the processing of personal data in connection with our website mediabros.ch and our other online services.


For individual or additional offers and services, separate, supplementary or further data protection declarations and other legal documents such as

  • General Terms and Conditions (GTC)
  • Terms of Use
  • or terms and conditions of participation

consist.


Our online services are subject to Swiss data protection law and any applicable foreign data protection law, in particular that of the European Union (EU) with the General Data Protection Regulation (GDPR). The EU recognizes that Swiss data protection law ensures an adequate level of data protection.


1. Contact addresses


Responsibility for the online content:


MediaBros. GmbH

Spitzengeerstrasse 7

8606 Uster

Switzerland

Email


We have appointed the following company data protection officer as a contact point for data subjects and as a contact person for supervisory authorities for data protection inquiries or suggestions:


MediaBros. GmbH

Mr. Ivano Celia, Data Protection Officer

8606 Uster

Switzerland

Email


We have appointed the following data protection representative pursuant to Art. 27 GDPR in the European Economic Area (EEA) including the European Union (EU) and the Principality of Liechtenstein as an additional point of contact for supervisory authorities and data subjects for inquiries relating to the General Data Protection Regulation (GDPR):


VGS Data Protection Partner GmbH

Am Kaiserkai 69

20457 Hamburg

Germany

info@datenschutzpartner.eu


2. Processing of personal data


2.1 Terms

Personal data is any information relating to an identified or identifiable natural person. A data subject is a person whose personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used, in particular the retention, disclosure, acquisition, collection, erasure, storage, alteration, destruction, and use of personal data.


2.2 Legal basis

We process personal data in accordance with Swiss data protection law, in particular the Federal Act on Data Protection (FADP) and the Ordinance to the Federal Act on Data Protection (OFADP). Where and to the extent that the General Data Protection Regulation (GDPR) is applicable, we process personal data based on at least one of the following legal grounds:

 

  • Article 6 paragraph 1 letter b GDPR for the necessary processing of personal data for the performance of a contract with the data subject and for the implementation of pre-contractual measures.
  • Article 6 paragraph 1 letter f GDPR provides the legal basis for the processing of personal data necessary to protect our legitimate interests or those of third parties, unless the fundamental rights and freedoms and interests of the data subject override those interests. Legitimate interests include, in particular, our interest in providing our online services in a permanent, user-friendly, secure and reliable manner, and in being able to advertise them as needed; information security and protection against misuse and unauthorized use; the enforcement of our own legal claims; and compliance with Swiss law.
  • Article 6 paragraph 1 letter c GDPR for the necessary processing of personal data to fulfill a legal obligation to which we are subject under applicable EU or Member State law in the European Economic Area (EEA).
  • Article 6 paragraph 1 letter e GDPR for the processing of personal data necessary for the performance of a task carried out in the public interest.
  • Article 6 paragraph 1 letter a GDPR for the processing of personal data with the consent of the data subject.
  • Article 6 paragraph 1 letter d GDPR for the necessary processing of personal data to protect the vital interests of the data subject or of another natural person.


2.3 Type, scope and purpose

We process personal data that is necessary to provide our online services in a sustainable, user-friendly, secure, and reliable manner. Such personal data may fall into the categories of inventory and contact data, content data, metadata or marginal data, usage data, location data, contract data, and payment data.


We process personal data for the duration necessary for the respective purpose(s) or as required by law. Personal data whose processing is no longer necessary is permanently anonymized or deleted after a maximum of 25 months.


We generally only process personal data with the consent of the data subject, unless the processing is permitted for other legal reasons, for example to fulfill a contract with the data subject and for corresponding pre-contractual measures, to protect our overriding legitimate interests, because the processing is evident from the circumstances or after prior information.


In this context, we process, in particular, information that a data subject voluntarily submits to us when contacting us – for example, by mail, email, contact form, social media, or telephone – or when registering for a user account. We may store such information, for example, in an address book, a customer relationship management (CRM) system, or using comparable tools. If you transmit personal data of third parties to us, you are obligated to ensure data protection for those third parties and to guarantee the accuracy of such personal data.


We also process personal data that we receive from third parties, obtain from publicly accessible sources, or collect when providing our online service, provided and to the extent that such processing is permissible for legal reasons.


Personal data from applications will only be processed to the extent necessary for assessing suitability for employment or for the subsequent execution of an employment contract. The personal data required for conducting an application process is derived from the information requested or provided, for example, within a job description. Applicants have the option to voluntarily submit additional information with their applications.


2.4 Processing of personal data by third parties, including abroad

We may have personal data processed by third parties, in particular data processors, or process it jointly with or with the assistance of third parties, or transfer it to third parties. These third parties are primarily service providers whose services we utilize. We ensure adequate data protection even when using such third parties. These third parties are generally located in Switzerland and the European Economic Area (EEA), including the European Union (EU). However, such third parties may also be located in other countries, provided that their data protection laws, in the assessment of the Federal Data Protection and Information Commissioner (FDPIC) and – if and to the extent that the General Data Protection Regulation (GDPR) is applicable – in the assessment of the European Commission, guarantee an adequate level of data protection, or if adequate data protection is ensured for other reasons, such as through a corresponding contractual agreement, in particular based on standard contractual clauses, or through appropriate certification. In exceptional cases, such a third party may be located in a country without an adequate level of data protection, provided that the data protection requirements, such as the explicit consent of the data subject, are met.

 

3. Rights of data subjects


Data subjects whose personal data we process have rights under Swiss data protection law. These include the right to information, as well as the right to rectification, erasure, or restriction of processing of their personal data.


Data subjects whose personal data we process may – insofar as the General Data Protection Regulation (GDPR) is applicable – request confirmation free of charge as to whether we process their personal data and, if so, request information about the processing of their personal data, restrict the processing of their personal data, exercise their right to data portability, and have their personal data rectified, erased (“right to be forgotten”), blocked or completed.


Data subjects whose personal data we process may – insofar as the GDPR is applicable – revoke their consent at any time with effect for the future and object to the processing of their personal data at any time.


Individuals whose personal data we process have the right to lodge a complaint with a competent supervisory authority. The supervisory authority for data protection in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC).


4. Data security


We take appropriate and suitable technical and organizational measures to ensure data protection and, in particular, data security. These include order controls, input, separation and transfer controls, availability controls, and access controls. However, despite such measures and due to monitoring by security authorities, the processing of personal data on the internet can always have security gaps. Therefore, we cannot guarantee absolute data security.

Access to our online services is via transport encryption (SSL / TLS with HTTPS).


5. Use of the website


5.1 Cookies

We may use cookies on our website. Cookies – including those from third parties whose services we use (third-party cookies) – are text files that are stored in your browser. Cookies cannot execute programs or transmit malware such as Trojans and viruses.


Cookies can be temporarily stored in your browser as "session cookies" or for a specific period as so-called persistent cookies when you visit our website. Session cookies are automatically deleted when you close your browser. Persistent cookies, in particular, allow us to recognize your browser on your next visit to our website and thus, for example, to measure the reach of our website. Persistent cookies can also be used for online marketing purposes.


You can disable or delete cookies completely or partially at any time in your browser settings. Without cookies, our online services may not be fully available. We request your consent for the use of cookies where and to the extent necessary.


5.2 Server log files

We may collect the following information for each access to our website, provided it is transmitted by your browser to our server infrastructure or can be determined by our web server: date and time including time zone, Internet Protocol (IP) address, access status (HTTP status code), operating system including user interface and version, browser including language and version, individual page of our website accessed including the amount of data transferred, last accessed website in the same browser window (referrer).


We store such information, which may also constitute personal data, in server log files. This information is necessary to ensure the continuous, user-friendly, and reliable provision of our online services, as well as to guarantee data security and, in particular, the protection of personal data – including through or with the assistance of third parties.


5.3 counting pixels

We may use tracking pixels on our website. Tracking pixels are also known as web beacons. These pixels – including those from third parties whose services we use – are small images that are retrieved when you visit our website. Tracking pixels can collect the same information as server log files.


6. Opt out of interest-based advertising


Check your browser with the NAI Opt Out Tool and decide at any time which providers/platforms you want to allow cookies and tracking from. IMPORTANT: The NAI Opt Out page is provided as a public service, but the opt-out cookie is set by participating NAI members, who are solely responsible for setting opt-out cookies and respecting your requests. Since no technology is perfect, neither NAI nor its members guarantee that the opt-out tool is error-free or always works as intended.


7. Notifications and messages


We can send notifications and messages such as newsletters via email and other communication channels such as instant messaging.


Notifications and messages may contain web links or tracking pixels that record whether an individual message has been opened and which web links were clicked (performance measurement). Such web links and tracking pixels can also record the use of notifications and messages on a personal level. We require this statistical recording of usage, including performance and reach measurement, to offer notifications and messages effectively, user-friendly, and in a sustainable, secure, and reliable manner, based on the needs and reading habits of the recipients.


7.1 Consent and objection

You must expressly consent to the use of your email address and other contact information, unless such use is permitted for other legal reasons. For any consent to receive emails, we use a "double opt-in" process. This means you will receive an email with a link that you must click to confirm your subscription, preventing misuse by unauthorized third parties. We may log such consents, including the Internet Protocol (IP) address, date, and time, for evidentiary and security purposes.


You can unsubscribe from notifications and messages such as newsletters at any time. This excludes notifications and messages that are essential for our online service. By unsubscribing, you can specifically object to the statistical collection of usage data, including for performance and reach measurement.


7.2 Service providers for notifications and messages

We may have notifications and messages sent by service providers or send them ourselves with the help of service providers. We also guarantee adequate data protection when using such service providers.


8. Social Media


We maintain a presence on social media and other online platforms to communicate with interested individuals and provide information about our online services. The terms and conditions, privacy policies, and other regulations of the respective operators of these online platforms also apply.


For our social media presence on Facebook/Instagram, we are jointly responsible with Facebook for the so-called Page Insights, insofar as and to the extent that the GDPR applies. Page Insights provide information about how visitors interact with our Facebook/Instagram presence. We use Page Insights to ensure our social media presence on Facebook/Instagram is effective and user-friendly. Facebook has published information on Page Insights data as well as an addendum regarding responsibility for Page Insights.


Users of social media platforms have the option to log in or register for our online service using their respective user account ("Social Login"). The respective terms and conditions of the social media platforms apply, such as general terms and conditions, privacy policies, or terms of use.


9. Third-party services


We may use third-party services to ensure our online services are consistently available, user-friendly, secure, and reliable. These services also enable us to embed content into our online offerings. Such services—for example, hosting and storage services, video services, and payment services—require your Internet Protocol (IP) address, as they cannot otherwise transmit the relevant content. These services may be located outside of Switzerland and the European Economic Area (EEA), including the European Union (EU), provided that adequate data protection is guaranteed.


For their own security-related, statistical, and technical purposes, third parties whose services we use may also process data related to our online services, as well as data from other sources, in an aggregated, anonymized, or pseudonymized form – including through the use of cookies, log files, and tracking pixels. Such data will not be used to directly contact individuals in connection with our online services.


9.1 Infrastructure

We use third-party services to ensure the continuous, secure, and reliable operation of the infrastructure for our online services. We only use infrastructure providers that guarantee an adequate level of data protection. These include, in particular, the services of HubSpot (European HQ) in Dublin and Amazon Web Services (AWS) from Amazon Web Services EMEA SARL in Luxembourg. Our service providers are subject to the Swiss Federal Act on Data Protection (FADP) and/or the General Data Protection Regulation (GDPR). The infrastructure we use is located in Switzerland or the European Union. The Federal Data Protection and Information Commissioner (FDPIC) recognizes that an adequate level of data protection is guaranteed in the countries concerned.


9.2 Google and Fonts

We use Google Fonts to embed selected fonts into our website. No cookies are used in this process. This is a service provided by the American company Google LLC, offered independently of other Google services. For users in the European Economic Area (EEA) and Switzerland, Google Ireland Limited is responsible. Further information about the type, scope, and purpose of data processing can be found in Google's Privacy and Security Principles and Privacy Policy.


9.3 Payments

We use payment service providers to process payments from our customers securely and reliably. We only use payment service providers that guarantee adequate data protection. The terms and conditions of the respective payment service providers, such as their general terms and conditions (GTC) or privacy policies, apply to the processing of payments.


10. Final Provisions

We may amend or supplement this privacy policy at any time. We will inform you of any such amendments or supplements in an appropriate manner, in particular by publishing the current version of the privacy policy on our website.


© November 2026 MediaBros. GmbH