Privacy policy

MediaBros. GmbH

Spitzengeerstrasse 7 | CH-8606 Uster | Schweiz | +41 43 355 14 20 | welcome@mediabros.ch | UID: CHE-114.748.660 | MwSt- Number: CHE-114.748.660 MWST

Account details
ZKB Zürcher Kantonalbank | Postfach | 8010 Zürich
IBAN: CH50 0070 0110 0019 8559 2
SWIFT-Adresse (BIC): ZKBKCHZZ80A

 

With this privacy policy, we inform about the processing of personal data in connection with our website mediabros.ch as well as our other online offerings.

For individual or additional offers and services, special, supplementary, or further privacy policies as well as other legal documents such as

may exist.

Our online offering is subject to Swiss data protection law as well as any applicable foreign data protection law, especially that of the European Union (EU) with the General Data Protection Regulation (GDPR). The EU acknowledges that Swiss data protection law ensures adequate data protection.

1. Contact Addresses

Responsibility for the online offering:

MediaBros. GmbH
Spitzengeerstrasse 7
8606 Uster Switzerland
Email

We have the following operational data protection officer as a contact person for data subjects and as a contact person for supervisory authorities for data protection-related inquiries or suggestions:

MediaBros. GmbH
Mr. Ivano Celia, Data Protection Officer
8606 Uster
Switzerland
Email

We have the following data protection representation according to Art. 27 GDPR in the European Economic Area (EEA) including the European Union (EU) and the Principality of Liechtenstein as an additional point of contact for supervisory authorities and data subjects for inquiries related to the General Data Protection Regulation (GDPR):

VGS Datenschutzpartner GmbH
Am Kaiserkai 69
20457 Hamburg
Germany
info@datenschutzpartner.eu

2. Processing of Personal Data

2.1 Definitions

Personal data are all information relating to an identified or identifiable person. A data subject is a person about whom personal data are processed. Processing includes any handling of personal data, regardless of the means and procedures used, in particular the storage, disclosure, acquisition, collection, deletion, storage, modification, destruction, and use of personal data.

2.2 Legal 

We process personal data in accordance with Swiss data protection law, in particular the Federal Data Protection Act (DSG) and the Ordinance to the Federal Data Protection Act (VDSG). We process - if and to the extent the GDPR is applicable - personal data in accordance with at least one of the following legal bases:

  • Art. 6 para. 1 lit. b GDPR for the necessary processing of personal data to fulfill a contract with the data subject and to carry out pre-contractual measures.
  • Art. 6 para. 1 lit. f GDPR for the necessary processing of personal data to protect the legitimate interests of us or third parties, unless the fundamental freedoms and rights as well as interests of the data subject prevail. Legitimate interests include in particular our interest in being able to provide our online offering permanently, user-friendly, securely, and reliably and to be able to advertise it if necessary, information security and protection against misuse and unauthorized use, enforcement of our own legal claims, and compliance with Swiss law.
  • Art. 6 para. 1 lit. c GDPR for the necessary processing of personal data to fulfill a legal obligation to which we are subject under any applicable law of the EU or Member States in the European Economic Area (EEA).
  • Art. 6 para. 1 lit. e GDPR for the necessary processing of personal data to perform a task carried out in the public interest.
  • Art. 6 para. 1 lit. a GDPR for the processing of personal data with the consent of the data subject.
  • Art. 6 para. 1 lit. d GDPR for the necessary processing of personal data to protect vital interests of the data subject or another natural person. 

2.3 Type, Scope, and Purpose

We process those personal data that are necessary to provide our online offering permanently, user-friendly, securely, and reliably. Such personal data may fall into the categories of inventory and contact data, content data, meta or marginal data, as well as usage data, location data, contract data, and payment data.

We process personal data for the duration necessary for the respective purpose(s) or as required by law. Personal data that is no longer required will be permanently anonymized or deleted no later than 25 months.

We generally process personal data only with the consent of the data subject, unless processing is permissible for other legal reasons, such as to fulfill a contract with the data subject and for corresponding pre-contractual measures, to protect our overriding legitimate interests, because processing is apparent from the circumstances, or after prior information.

In this context, we particularly process information that a data subject voluntarily and independently transmits to us when contacting us - for example, by postal mail, email, contact form, social media, or telephone - or when registering for a user account. We may store such information, for example, in an address book, in a Customer Relationship Management (CRM) system, or with comparable tools. If you transmit personal data of third parties to us, you are obliged to ensure data protection vis-à-vis such third parties and to ensure the accuracy of such personal data.

Furthermore, we process personal data that we receive from third parties, obtain from publicly accessible sources, or collect when providing our online offering, to the extent and insofar as such processing is permitted by law.

Personal data from job applications will only be processed to the extent necessary to assess suitability for an employment relationship or for the subsequent execution of an employment contract. The personal data required to conduct a job application process is derived from the information requested or communicated, for example, in a job description. Applicants have the opportunity to voluntarily provide additional information for their respective applications.

2.4 Processing of Personal Data by Third Parties, also Abroad

We may have personal data processed by third parties such as processors or jointly with third parties or with the assistance of third parties. Such third parties are in particular providers whose services we use. We also ensure adequate data protection with such third parties. Such third parties are generally located in Switzerland and the European Economic Area (EEA) including the European Union (EU). However, such third parties may also be located in other countries, provided that, according to the assessment of the Swiss Federal Data Protection and Information Commissioner (FDPIC) and - if and to the extent the GDPR is applicable - according to the assessment of the European Commission, adequate data protection is guaranteed, or if adequate data protection is ensured for other reasons, such as by an appropriate contractual agreement, in particular based on standard contractual clauses, or by appropriate certification. Exceptionally, such a third party may be located in a country without adequate data protection, provided that the data protection requirements, such as explicit consent of the data subject, are met.

3. Rights of Data Subjects

Data subjects whose personal data we process have rights under Swiss data protection law. These include the right to information and the right to correction, deletion, or blocking of the processed personal data. Data subjects whose personal data we process may, if and to the extent the GDPR is applicable, request confirmation free of charge as to whether we are processing their personal data and, if so, request information about the processing of their personal data, request restriction of the processing of their personal data, exercise their right to data portability, as well as correct, delete ("right to be forgotten"), block, or complete their personal data. Data subjects whose personal data we process may, if and to the extent the GDPR is applicable, revoke consent given at any time with effect for the future and object at any time to the processing of their personal data. Data subjects whose personal data we process have the right to lodge a complaint with a competent supervisory authority. The supervisory authority for data protection in Switzerland is the Swiss Federal Data Protection and Information Commissioner (FDPIC).

4. Data Security

We take appropriate and suitable technical and organizational measures to ensure data protection and especially data security. These include order controls, input, separation, and transfer controls, availability controls as well as access and entry controls. However, despite such measures and due to monitoring by security authorities, the processing of personal data on the Internet may always have security gaps. We therefore cannot guarantee absolute data security. Access to our online offering is via transport encryption (SSL / TLS with HTTPS).

5. Use of the Website

5.1 Cookies

We may use cookies for our website. Cookies - also from third parties whose services we use (third-party cookies) - are data in text form that are stored in your browser. Cookies cannot execute programs or transmit malware such as Trojans and viruses.

When visiting our website, cookies may be temporarily stored in your browser as "session cookies" or for a specific period as so-called permanent cookies. "Session cookies" are automatically deleted when you close your browser. Permanent cookies, in particular, enable your browser to be recognized when you visit our website again and thus, for example, to measure the reach of our website. However, permanent cookies can also be used for online marketing, for example.

You can disable or delete cookies in your browser settings at any time, either completely or partially. Without cookies, our online offering may not be available in full. We ask you - if and to the extent necessary - for your consent to the use of cookies.

5.2 Server Log Files

For each access to our website, we may record the following information if it is transmitted from your browser to our server infrastructure or can be determined by our web server: date and time including time zone, Internet Protocol (IP) address, access status (HTTP status code), operating system including user interface and version, browser including language and version, individual page of our website accessed including the amount of data transmitted, last website accessed in the same browser window (referer or referrer).

We store such information, which may also represent personal data, in server log files. The information is necessary to provide our online offering permanently, user-friendly, and reliably and to ensure data security and thus especially the protection of personal data - also by third parties or with the help of third parties.

5.3 Tracking Pixels

We may use tracking pixels on our website. Tracking pixels are also referred to as web beacons. Tracking pixels - also from third parties whose services we use - are small images that are retrieved when visiting our website. Tracking pixels can capture the same information as in server log files.

6. Opt-Out of Interest-Based Advertising

Check your browser with the NAI Opt Out Tool and decide for yourself at any time which providers/platforms you want to allow cookies and tracking from. CAUTION: The NAI Opt-Out page is provided as a service to the public, but the opt-out cookie is set by participating NAI members, who are solely responsible for setting opt-out cookies and honoring your requests. Since no technology is perfect, neither NAI nor its members guarantee that the opt-out tool is error-free or always functions as intended.

7. Notifications and Communications

We may send notifications and communications such as newsletters by email and through other communication channels such as instant messaging.

Notifications and communications may contain web links or tracking pixels that record whether an individual message was opened and which web links were clicked (success measurement). Such web links and tracking pixels can also record the use of notifications and communications on a personal basis. We need this statistical recording of use, including success and reach measurement, to be able to provide notifications and communications effectively and user-friendly as well as permanently, securely, and reliably based on the needs and reading habits of the recipients.

7.1 Consent and Objection

You must generally expressly consent to the use of your email address and other contact addresses, unless the use is permissible for other legal reasons. For any consent to receive emails, we use "Double Opt-in," meaning you will receive an email with a web link that you must click to confirm, to prevent abuse by unauthorized third parties. We may log such consents, including Internet Protocol (IP) address as well as date and time, for evidence and security reasons.

You can generally unsubscribe from notifications and communications such as newsletters at any time. Notifications and communications that are essential for our online offering remain reserved. With the cancellation, you can in particular object to the statistical recording of use, including success and reach measurement.

7.2 Service Providers for Notifications and Communications

We may have notifications and communications sent by service providers or sent with the help of service providers. We also ensure adequate data protection with such service providers.

8. Social Media

We are present on social media platforms and other online platforms to be able to communicate with interested persons and inform about our online offering. The general terms and conditions (GTC), data protection declarations, and other provisions of the respective operators of such online platforms also apply.

For our social media presence on Facebook/Instagram, if and to the extent the GDPR applies, we are jointly responsible with Facebook for the so-called page insights. The page insights provide information on how visitors interact with our Facebook/Instagram presence. We use page insights to be able to provide our social media presence on Facebook/Instagram effectively and user-friendly. Facebook has published information on page insights data and an addition regarding responsibility for page insights.

Users of social media platforms have the option to log in or register for our online offering with their corresponding user account ("social login"). The respective conditions of the respective social media platforms such as general terms and conditions (GTC), data protection declarations, or terms of use apply.

9. Third-Party Services

We may use services from third parties to provide our online offering permanently, user-friendly, securely, and reliably. Such services also serve to embed content in our online offering. Such services - such as hosting and storage services, video services, and payment services - require your Internet Protocol (IP) address, as such services cannot otherwise transmit the corresponding content. Such services can be located outside Switzerland and the European Economic Area (EEA), including the European Union (EU), if adequate data protection is ensured.

For their own security-related, statistical, and technical purposes, third parties whose services we use may also process data in connection with our online offering and from other sources aggregated, anonymized, or pseudonymized - including with cookies, log files, and tracking pixels. Such data is not used to directly reach affected persons in connection with our online offering.

9.1 Infrastructure

We use services from third parties to operate the infrastructure for our online offering permanently, securely, and reliably. We only use infrastructure service providers where adequate data protection is ensured. These include in particular the services of HubSpot (European HQ) in Dublin and Amazon Web Services (AWS) of Amazon Web Services EMEA SARL in Luxembourg. Our service providers are subject to Swiss data protection law (DSG) and/or the General Data Protection Regulation (GDPR). The infrastructures we use are located in Switzerland or in the European Union. The Swiss Federal Data Protection and Information Commissioner (FDPIC) acknowledges that adequate data protection is ensured in the countries concerned.

9.2 Google and Fonts

We use Google Fonts to embed selected fonts into our website. No cookies are used for this purpose. This is a service of the American Google LLC, which is offered independently of other Google services. For users in the European Economic Area (EEA) and in Switzerland, the Irish Google Ireland Limited is responsible. Further information on the type, scope, and purpose of data processing can be found in Google's Privacy and Security Principles and Google's Privacy Policy.

9.3 Payments

We use payment service providers to process payments from our customers securely and reliably. We only use payment service providers where adequate data protection is ensured. The terms of the respective payment service providers such as general terms and conditions (GTC) or privacy policies apply to the processing.

10. Final Provisions

We reserve the right to amend and supplement this privacy policy at any time. We will inform about such amendments and supplements in an appropriate manner, in particular by publishing the respective current privacy policy on our website.

Memberships & certifications