Privacy Policy

I. Controller name and address

The data controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the EU Member States, as well as other data protection regulations, is:

Tschudin AG
Nicolas Tschudin
Maienstrasse 9
2540 Grenchen
Switzerland

Phone: +41 (0) 32 654 64 74
E-mail:

 

II. Name and address of the data protection officer

The controller's data protection officer is:

- not named -

 

III. General information on data processing

1. Scope of personal data processing

We collect and utilize our users' personal data only insofar as this is necessary for provision of an operational site and of our content and services. Collection and utilization of our users' personal data is only undertaken periodically with the user's consent. An exception applies in those cases where prior consent cannot be obtained for legal or circumstantial reasons and the processing of the data is permitted by law.

2. Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for processing personal data, Art. 6 para. 1 lit. a of the EU General Data Protection Regulation (GDPR) applies as legal basis.

For the processing of personal data necessary for performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b GDPR applies as the legal basis. This also applies to processing operations that are necessary for carrying out pre-contractual measures.

Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR applies as the legal basis.

In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR applies as the legal basis.

If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 lit. f GDPR applies as the legal basis for processing.

3. Data deletion and storage duration

The personal data of a relevant person will be deleted or blocked as soon as the purpose of storage ceases to exist. Furthermore, data may be stored if this has been provided by the European or national legislation in EU regulations, laws or other provisions to which the data controller is subject. Blocking or erasing of data will also be carried out if a storage deadline prescribed by the above-mentioned standards expires, unless further data storage is necessary for concluding or performing a contract.

 

IV. Provision of the website and creation of log files

1. Description and scope of data processing

Every time you visit our website, our system automatically collects data and information from the computer system of the accessing computer.

In doing so, the following data is collected:

(1) Information about the browser type and version used
(2) The user's operating system
(3) The user's internet service provider
(4) The user's IP address
(5) Date and time of access
(6) The websites from which the user's system accesses our website
(7) The websites accessed by the user's system via our website

The data is also stored in the log files of our system. This data is not stored together with other personal user data.

2. Legal basis for data processing

The legal basis for temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.

3. Purpose of data processing

Temporary storage of IP address by the system is necessary to enable delivery of the website to the user's computer. To this end, the user's IP address must remain stored for the duration of the session.

The data is stored in log files to ensure the functionality of the website. The data is also used to optimize the website and to ensure the security of our information technology systems. No evaluation of the data for marketing purposes is undertaken in this context.

These purposes also encompass our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR.

4. Duration of storage

The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. If data has been collected in order to provide this website, it will be deleted once you leave the site.

If the data is stored in log files, it will be deleted within 30 days at the latest. Longer storage is possible. In this case, the user's IP addresses will be deleted or distorted, so that assignment of the accessing client will no longer be possible.

5. Objection and removal options

Collection of data for provision of the website and storage of data in log files is absolutely necessary for operation of the website. Consequently, there is no option to object on the part of the user.

 

V. Use of cookies

a) Description and scope of data processing

Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user's computer system. If a user visits a website, a cookie may be stored on the user's operating system. This cookie contains a distinctive character string that enables unique identification of the browser when the website is accessed again.

We use cookies to make our website more user-friendly. Some elements of our website require that the browser's accessing can be identified even after changing the page.

The following data is stored and transmitted in cookies:

(1) PHP session
(2) Log-in information

We also use cookies on our website to analyze user surfing behavior.

The following data can be transmitted in this way:

(1) Search terms entered
(2) Frequency of page views
(3) Use of website functions

The user data collected in this way is pseudonymized via technical provisions. It is therefore no longer possible to assign the data to the accessing user. The data is not stored together with users' other personal data.

When accessing our website, users are informed by an information banner on the use of cookies for analytical purposes and referred to this data protection declaration. A note is also included in this context as to how the user can disable the storage of cookies in the browser settings.

When accessing our website, the user is informed regarding the use of cookies for analytical purposes and his or her consent to the processing of personal data used in this context is obtained. Reference is also made to this data protection declaration in this context.

b) Legal basis for the data processing

The legal basis for processing personal data using technically necessary cookies is Art. 6 para. 1 lit. f GDPR.

The legal basis for processing personal data by using cookies for analytical purposes, if the user's consent to this has been obtained, is Art. 6 para. 1 a GDPR.

c) Purpose of the data processing

The purpose of using technically necessary cookies is to simplify use of websites for users. Some features of our website are not offered without the use of cookies. In this case, it is necessary that the browser be recognized even after changing the page.

We require cookies for the following applications:

(1) Applying language settings
(2) Remembering search terms

The user data collected by technically necessary cookies is not used to create user profiles.

The analysis cookies are used to improve the quality of our website and its content. Using analysis cookies, we learn how the site is used and can constantly optimize our service.

This ensures that our services (such as blog posts) offer added value in terms of content for our users.

For these purposes, our legitimate interest also lies in the processing of personal data pursuant to Art. 6 para. 1 lit. f GDPR.

e) Duration of storage, objection and removal option

Cookies are stored on the user's computer and transmitted to our site. Therefore, as a user you have full control of the use of cookies. By changing the settings in your Internet browser, you can disable or restrict the transmission of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all of the website's features.

 

VI. Contact form and e-mail contact

1. Description and scope of data processing

There is a contact form on our website that can be used for electronic contact. If a user accepts this option, the data entered in the input screen will be transmitted to us and stored. This data includes:

(1) Name
(2) Company
(3) Department within the company
(4) Street
(5) Postcode and city
(6) Telephone number
(7) E-mail address

The following data is also stored at the time the message is sent:

(1) The user's IP address
(2) Date and time the form is submitted

During the sending process, your consent is obtained for processing data with reference to this privacy policy.

Alternatively, you can contact us via the provided e-mail address. In this case, the user's personal data that is transmitted along with the e-mail will be stored.

The data will not be disclosed to third parties during the course of this. The data is used exclusively for responding to the inquiry.

2. Legal basis for data processing

The legal basis for processing the data if the user's consent has been obtained is Art. 6 para. 1 a GDPR.

The legal basis for processing the data transmitted in your e-mail is Art. 6 para. 1 lit. f GDPR. If you send us an e-mail with the intention of entering into a contract with us, this creates an additional legal basis for the processing of the data in accordance with Art. 6 para. 1 b GDPR.

3. Purpose of data processing

The processing of personal data in the input screen is used by us only for processing the contact. In the event of contact by e-mail, this also constitutes the necessary legitimate interest in processing the data.

The other personal data processed during the sending process helps prevent misuse of the contact form and to ensure the security of our information technology systems.

4. Duration of storage

The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. For the personal data from the contact form input screen and the data that was sent by e-mail, this is the case when the respective conversation with the user has been completed. The conversation is terminated when the circumstances indicate that the matter in question has been finally resolved.

Personal data that was additionally collected when the inquiry was submitted will be deleted within no more than sixty days.

5. Objection and removal options

The user has the option of revoking his or her consent to the processing of personal data at any time. A user who has contacted us by e-mail can object at any time to the storage of his or her personal data. It will not be possible to continue the conversation in this case.

You can declare the revocation simply by sending a letter or electronic message to Tschudin AG, Maienstrasse 9, 2540 Grenchen, Switzerland..

All personal data stored in the course of contacting us will then be deleted.

 

VII. Web analysis by Matomo (formerly PIWIK)

1. Scope of personal data processing

We occasionally use the open source software tool Matomo (formerly PIWIK) on our website to analyze the surfing behavior of our users. The software places a cookie on the user's computer (see above for cookies). If individual pages of our website are accessed, the following data is stored:

(1) Two bytes of the user's IP address
(2) The website accessed
(3) The website from which the user has accessed the website (referrer)
(4) The subpages the user goes to from the main page accessed
(5) The time spent on the website
(6) The frequency with which the website is accessed

The software runs exclusively on the servers of our website. The personal data of users is only stored there. Your data will not be disclosed to third parties.

The software is set in such a way that the IP addresses are not stored completely, but only in a truncated form, e.g. 192.168.xxx.xxx. In this way, it would no longer be possible to assign the truncated IP address to the computer accessing the site.

2. Legal basis for the processing of personal data

The legal basis for processing the personal data of users is Art. 6 para. 1 lit. f GDPR.

3. Purpose of data processing

The processing of users' personal data enables us to analyze the surfing behavior of our users. We are in a position to compile information about the use of the individual components of our website by evaluating the data obtained. This helps us to continuously improve our website and to make it more user-friendly. For these purposes, we have a legitimate interest to process personal data pursuant to Art. 6 para. 1 lit. f GDPR. By anonymizing the IP address, users' interest in protecting their personal data is sufficiently taken into account.

4. Duration of storage

The data will be deleted as soon as it is no longer needed for our recording purposes.

In our case, this will be after 60 days.

5. Objection and removal options

Cookies are stored on the user's computer and transmitted to our site. Therefore, as a user you have full control of the use of cookies. By changing the settings in your Internet browser, you can disable or restrict the transmission of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all of the website's features.

We offer our users on our website the possibility of an opt-out from the analysis procedure. To do this, you must follow the corresponding link. In this way, another cookie is placed on your system, which signals to our system not to store the user's data. If the user deletes the corresponding cookie from their system in the meantime, they must set another opt-out cookie.

More information about the privacy settings of the Matomo software can be found under the following link: https://matomo.org/docs/privacy/.

 

VIII. Rights of the data subject

The following lists the rights of data subjects per GDPR. Rights that are not relevant for this website do not need to be listed here. In this respect, the list can be shortened.

If your personal data is processed, you are a data subject as defined by GDPR and you have the following rights against the controller of that data:

1. Right to information

You can request that the responsible party confirm whether we will process personal data that concerns you.

If such processing takes place, you can request the following information from the data controller:

(1) the purposes for which the personal data is being processed;
(2) the categories of personal data being processed;
(3) the recipients or categories of recipients to whom your personal data has been or will be disclosed;
(4) how long the controller plans to store your personal data, or, if specific information in this respect is not possible, the controller's criteria for determining the storage period;
(5) the existence of a right to correct or have your personal data deleted or to restrict its processing by the data controller or to object to such processing;
(6) the existence of the right to lodge a complaint with a supervisory authority;
(7) any available information on the origin of the data if the personal data has not been collected from the data subject;
(8) the existence of automated decision-making systems, including profiling, as defined in Art. 22 para. 1 and 4 GDPR and meaningful information on the logic involved and the scope and intended effects of such processing for the data subject.

You have the right to request information regarding whether your personal information will be transmitted to a third-party country or an international organization. In this respect, you can request the appropriate guarantees per Art. 46 GDPR.

2. Right to correct information

You have a right to correct and/or add to your personal data held by the data controller if it is incorrect or incomplete. The data controller shall make the correction immediately.

3. Right to restrict processing

Under the following conditions, you may request that the processing of your personal data be restricted:

(1) if you contest the accuracy of your personal data, for as long as it takes the data controller to verify its accuracy;
(2) if the processing is unlawful and you refuse to have the data deleted and instead wish to restrict its use;
(3) the data controller no longer needs the personal data for processing purposes, but you need it to establish, exercise, or defend legal claims; or
(4) you have objected to processing pursuant to Art. 21 para. 1 GDPR and it is not yet clear whether the data controller's legitimate reasons for processing your data outweigh your interests.

Where processing of the personal data that concerns you has been restricted, such data – apart from being stored – may be processed only with your consent or for the purpose of asserting, exercising or defending rights or protecting the rights of another natural or legal person or on the grounds of an important public interest of the Union or of a Member State.

If the data processing has been restricted for any of the grounds listed above, the data controller will notify you before lifting the restriction.

4. The right to deletion

a) Obligation to erase

You have the right to demand that the data controller delete your personal data without delay. The data controller is required delete personal data without delay when one of these conditions applies:

(1) Your personal data is no longer necessary for the purposes for which it was originally collected or otherwise processed;
(2) You revoke your consent to its processing per Art. 6 para. 1 lit. a) or Art. 9 para. 2 lit. a) GDPR and there is no other legal basis for its continued processing;
(3) You object to its processing per Art. 21 para. 1 GDPR and there are no overriding legitimate grounds for its continued processing or you object to the processing per Art. 21 para. 2 GDPR.
(4) Your personal data has been processed unlawfully.
(5) The deletion of personal data is required in order to comply with legal obligations according to EU or national law applicable to the data controller.
(6) Your personal data has been collected in connection with services offered by an information company per Art. 8 para. 1 GDPR.

b ) Transfer of personal data to third parties

If the data controller has made your personal data public and is required to delete it per Art. 17 Para. 1 GDPR, we will take appropriate measures, including technical measures, taking into account the available technology and the implementation costs, to inform data processors who process the personal data that the data subject has requested the deletion of all links to this personal data as well as any copies thereof.

c) Exceptions

The right to deletion does not exist if processing is necessary

(1) to exercise the right to freedom of expression and information;
(2) to fulfill a legal obligation requiring the processing per EU or national law applicable to the data controller or to perform a duty that lies in the public interest or with which the data controller has been tasked by an official authority;
(3) for reasons of public interest with regard to public health per Art. 9 para. 2 lit. h) and i), as well as Art. 9 para. 3 GDPR;
(4) for archival, scientific, or historical research purposes in the public interest or for statistical purposes per Art. Art. 89 para. 1 GDPR, to the extent that the right referred to in a) is likely to seriously inhibit or make achieving the purposes of such processing impossible; or
(5) to assert, exercise, or defend legal claims.

5. Right to information

If you have exercised your right to have the responsible party correct, delete, or limit the processing, this party is obliged to inform all recipients to whom the personal data that concerns you has been disclosed of this correction or deletion of the data or restriction on processing, unless this proves impossible or involves a disproportionate effort.

It is your right to have the controller inform you about these recipients.

6. The right to data portability

You have the right to obtain your personal data, which you have provided to the controller, in a structured, commonly used and machine-readable format. In addition, you have the right to transmit this data to another controller without hindrance from its original controller if

(1) the processing is based on consent given per Art. 6 para. 1 lit. a) or Art. 9 para. 2 lit. a) GDPR or on a contract per Art. 6 para. 1 lit. b) GDPR and
(2) the processing is carried out using automated methods.

In exercising this right, you shall have the right to have the personal data transmitted directly from one data controller to another, where technically feasible. The freedoms and rights of other persons must not be affected by this.

The right to data portability does not apply to the processing of personal data necessary for the performance of a task in the public interest or in the exercise of official authority conferred on the data controller.

7. Right of objection

You have the right, for reasons arising from your specific situation, to object to the processing of your personal data per Art. 6 para. 1 lit. e) or f) GDPR; the same applies to profiling based on these provisions.

The responsible party will no longer process the personal data that concerns you, unless the party can prove compelling legitimate reasons for the processing, which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

If the personal data that concerns you is being processed for direct marketing purposes, you have the right to object at any time to the processing of the personal data that concerns you for the purpose of such marketing; this also applies to profiling, insofar as it is associated with such direct marketing.

If you object to processing that is for direct marketing purposes, the personal data that concerns you will no longer be processed for these purposes.

In the context of the use of information company services, and notwithstanding Directive 2002/58/EC, you may exercise your right to object by automated means for which technical specifications are used.

8. Right to revoke consent

You have the right at any time to revoke your data protection declaration of consent. The revocation of consent shall not affect the legality of any processing undertaken on the basis of this consent before its withdrawal.

9. Automated decision in individual cases, including profiling

You have the right not to be subject to a decision based exclusively on automated processing - including profiling - that has legal effect against you or significantly impairs you in a similar manner. This shall not apply if the decision:

(1) is necessary to establish to fulfill a contract between you and the data controller;
(2) is authorized by EU or national law applicable to the data controller which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests; or
(3) is based on your explicit consent.

However, these decisions may not be based on special categories of personal data as defined in Art. 9 para. 1 GDPR, unless Art. 9 para. 2 lit. a) or g) GDPR applies and appropriate measures have been taken to protect your rights and freedom as well as your legitimate interests.

In the cases referred to in (1) and (3), the data controller shall take reasonable measures to safeguard your rights, freedoms and legitimate interests, including at least the right to obtain the intervention of a person on the part of the data controller, to state his or her own position and to challenge the decision.

10. The right to file a legal complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right of appeal to a supervisory authority, in particular in the Member State where you reside, work or where the infringement is suspected, if you believe that the processing of personal data that concerns you is in contravention of GDPR.

The supervisory authority with which the appeal has been filed shall inform the appellant of the status and results of the appeal, including the possibility of a judicial remedy under Art. 78 GDPR.

Tschudin AG

Kontakt

Infocenter

Die TSCHUDIN AG ist ein internationals Technologie-Unternehmen mit Hauptsitz in Grenchen/Schweiz und weltweiten Vertretungen. 

 

Sie ist spezialisiert auf die Entwicklung und die Herstellung von spitzenlosen Rundschleifmaschinen zur Fertigung von mechanischen Bauteilen. 

Maienstrasse 9, CH-2540 Grenchen

+41 32 654 64 74