Privacy Policy

1. Responsible person and data protection consultant

Responsible for the collection and processing of your personal data in accordance with data protection laws is:

HOCHDORF Swiss Nutrition AG
Siedereistrasse 9
P.O. Box 691
6281 Hochdorf
switzerland
Phone: +41 41 914 65 65
email: hochdorf@hochdorf.com
web page: https://www.hochdorf.com

Any data subject can contact our data protection advisor directly at any time with any questions or suggestions regarding data protection:

HOCHDORF Swiss Nutrition AG
For example, Data protection consultant
Siedereistrasse 9
P.O. Box 691
6281 Hochdorf
Phone: +41 41 914 65 65
email: datenschutz@hochdorf.com

 

The EU representative of HOCHDORF Swiss Nutrition AG is Swiss Infosec (Deutschland) GmbH, Unter den Linden 24, 10117 Berlin, Germany; e-mail: hochdorf.dataprivacy@swissinfosec.de.

2General information about personal data and its processing

2.1 How do we handle personal data?

Data protection is particularly important in our company. We treat your personal data confidentially and in accordance with applicable legal data protection laws and this privacy policy.

In principle, it is possible to use our websites without providing any personal data. However, if a data subject wishes to make use of special services (e.g. contact via contact form, newsletter subscription) on our website, it may be necessary to process personal data.

If the processing of personal data is necessary, the processing of personal data is always carried out in accordance with the provisions of the applicable data protection laws.

2.2 Background

By means of this privacy policy, we would like to inform you about the type, scope and purpose of the personal data we collect, use and process (information that relates to a person and directly or indirectly identifies him or her) when you visit our websites, use our applications or use our services. We would also like to inform you about your rights.

2.3 Types of personal data

Among other things, we process personal data that we receive from, collect from, or create for customers, website visitors, job applicants and other persons.

 

In particular, this includes the following types of personal data:

  • Contact and identification data (this includes, for example, first and last name, postal address, telephone number, email address, or user account information)
  • Contract data (this includes, for example, information on related services/products and remuneration
  • Communication data (this includes, for example, physical or electronic correspondence with HOCHDORF, use of our contact form, telephone or video calls, appointment booking details)
  • Marketing data (this includes, for example, information on how to order a newsletter or participate in a competition)
  • Eligibility data for discounted purchase of goods (to support people in need of financial assistance and mothers who have given birth to twins)
  • Data related to job applications (this includes, for example, letters of recommendation and/or application, CVs, qualifications, job references)
  • Meta/usage data and other technical data (e.g. IP address, MAC address of the smartphone or computer, information about your device and settings, cookies)

 

As far as this is permitted, we also obtain certain data from publicly available sources (e.g. debt collection registers, land registers, commercial registers, press, Internet) or from authorities and other third parties (such as address dealers). In addition to the data about you that you give us directly, the categories of personal data that we receive about you from third parties include, in particular, information about you in correspondence and meetings with third parties, information about you that people from your environment (family, consultant, legal representative, etc.) give us so that we can conclude or process contracts with you or involving you (e.g. references, your address for deliveries, powers of attorney), information about compliance with you (e.g. references, your address for deliveries, powers of attorney), information about compliance with you requirements, information from banks, insurance companies, sales and other contractual partners from us to use or provide services by you (e.g. payments made, services provided), information from the media and the Internet about you (insofar as this is indicated in a specific case, e.g. as part of an application, marketing/sales, etc.), your addresses and, if applicable, interests and other socio-demographic data (for marketing).

2.4 Purposes and legal basis for processing personal data

We process personal data from you and other persons, to the extent permitted and deemed appropriate to us, for the following purposes, in which we (and sometimes also third parties) have a legitimate interest corresponding to the purpose:

  • Visiting and using our websites (see below for details)
  • New registration for a user account as a prerequisite for receiving certain services from us
  • Communication with customers and third parties and processing of inquiries
  • Advice in connection with the purchase of our products
  • Administration and accounting
  • advertising and marketing, provided that you have not objected to the use of your data (if we send you advertising as an existing customer from us, you can object to this at any time, we will then put you on a blacklist against further advertising)
  • Development of our services and website and other platforms on which we are present
  • Job applications (see below for details)
  • Market and opinion research, media monitoring
  • Enforcement of legal claims and defense in connection with legal disputes and regulatory proceedings
  • Regulatory compliance
  • Guarantees of our operations, in particular IT, our website and other platforms

If the processing of personal data is necessary to fulfill a contract with you, which is necessary for the delivery of goods or the provision of another service or consideration, this contract fulfilment serves as the legal basis. The same applies to such processing processes that are necessary to carry out pre-contractual measures, for example in cases of inquiries about our products or services.

If we are subject to a legal obligation that requires the processing of personal data, this compliance obligation serves as the legal basis for processing.

If the processing of personal data is necessary due to vital interests, these vital interests serve as the legal basis for processing.

If the processing of personal data is necessary to protect a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, these legitimate interests serve as the legal basis for processing.

If you have given us consent to process your personal data for specific purposes, we will process your personal data within the scope of and based on this consent, unless we have another legal basis and we need one. A given consent can be withdrawn at any time, but this has no effect on data processing that has already been carried out. You can send us a revocation by e-mail or by post to the (e-mail) address mentioned in section 1.

Otherwise, we always process your personal data in compliance with the basic principles of data protection law.

2.5 Data transfer and data transfer abroad

As part of our activities and for the purposes mentioned above, we also disclose personal data to third parties, insofar as this is permitted and indicated, either because they process it for us (order data processing), or because they want and may use it for their own purposes within the scope of what is permitted by law (data disclosure). In particular, this concerns:

  • Service providers, including contract processors, suppliers and other business partners
  • IT service provider (e.g. web hosting provider, service provider for CRM/online marketing)
  • banking institutions and payment service providers, collection agencies
  • customers
  • public, including visitors to websites and social media
  • authorities
  • Debt collection partners
  • other parties in possible or actual legal proceedings
  • auditor

Data recipients are partly domestically, but partly also abroad. Whenever possible, your data is processed in Switzerland or within the European Union or the European Economic Area. If data could be transferred to a country where there is no adequate level of legal data protection, we require that the recipient take appropriate measures to protect personal data, e.g. by agreeing on so-called EU standard clauses. In certain cases, we can transfer data in accordance with data protection requirements even without such contracts, e.g. if you have consented to the corresponding disclosure or if the disclosure is necessary for contract processing, for the establishment, exercise or enforcement of legal claims or for overriding public interests.

2.6 Data security

As the person responsible for data processing, we have implemented numerous technical and organizational measures to ensure the most complete protection possible against loss and manipulation as well as against unauthorized access by third parties to personal data processed via this website. The measures taken are intended to ensure the confidentiality and integrity of your personal data and the availability and resilience of our systems and services when processing your personal data in the long term. They also ensure that your personal data is quickly restored and accessed in the event of a physical or technical incident.

Our website and blog have integrated an SSL certificate to increase security. The SSL certificate is used to encrypt the data that is exchanged via HTTP. Nevertheless, Internet-based data transmissions can generally have security gaps, meaning that absolute protection cannot be guaranteed.

Our security measures are constantly being improved in line with technological developments.

We also take our own internal data protection seriously. Our employees and service providers commissioned by us are bound to secrecy and to comply with data protection regulations. In addition, they are only granted access to your personal data to the extent necessary.

2.7 General information about data deletion and storage period

Unless expressly stated in this privacy policy, we only process and store your personal data for as long as is necessary to fulfill our contractual and legal obligations or otherwise for the purposes for which the processing is carried out and in accordance with the statutory retention periods. As soon as the purpose of storage no longer applies or a prescribed retention period expires, your personal data will be deleted or anonymized as far as possible.

3. Analytical data and reporting

Using Google Analytics or Microsoft Clarity, we can carry out the following analytical surveys and evaluations, among others:

  • activity on our website and blog
  • Number of page views and time spent by the website visitor
  • Click path of the respective visitor
  • Downloads of files made available via the website
  • Visits to landing pages
  • Opening rates of emails from newsletters and campaigns

The legal basis for processing is our legitimate interest. Our legitimate interest in processing is to further improve our offer and our website and to adapt them to customer needs.

You can unsubscribe from tracking at any time using the “Reject” button in the cookie message.

4. Cookies

When you visit our website, you are informed that we use cookies. At the same time, you will be referred to this privacy policy and given the opportunity to object to the use of cookies.

Cookies are small text files that are stored on your computer. We use cookies to automatically recognize you the next time you visit our website. Cookies do not cause any damage to your computer and do not contain any viruses. Cookies are used to make our website more user-friendly, effective and secure. Cookies also make it possible to analyse your use of the website.

You can differentiate between first-party and third-party cookies. First-party cookies are those that are set for our website. All other cookies are third-party cookies. Our websites use both first-party and third-party cookies.

Not all cookies collect personal data.

The following personal data can be collected, among other things, through cookies:

  • IP address
  • login information

 

The following non-personal data can be collected through cookies, among others:

  • Browser language
  • session information

Most of the cookies we use are so-called “session cookies.” They are automatically deleted at the end of your visit. Other cookies remain stored on your device until you delete them. We also use “analysis cookies.” These are used to monitor anonymized user behavior on the website, for example to record the number of visits per page. The data collected is used exclusively to optimize the performance and design of this website. These cookies are third-party cookies (e.g. Google Analytics, Microsoft Clarity). However, the data is collected anonymously and used exclusively by us.

If you generally do not want cookies to be used, you can view and delete cookies stored in your browser settings and generally control the handling of cookies. For more information, please refer to the help function of your browser or from the manufacturer of your browser. However, it cannot be ruled out that important parts of our websites and the services offered there will no longer function properly unless you allow cookies.

5. Google Analytics

The legal basis for processing personal data through technically necessary cookies is our legitimate interest. The legal basis for processing personal data through non-technically necessary cookies (analysis cookies) is your consent.

Our website uses Google Analytics, a web analysis service provided by Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, or if you have your habitual residence in the European Economic Area (EEA) or Switzerland, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).

Google uses cookies. The information generated by the cookie about your use of our website (including your IP address) is usually transmitted to a Google server in the USA and stored there.

On our behalf, Google uses this information to evaluate your use of our website, to compile reports on website activity and to provide us with other services related to website activity and Internet usage. Pseudonymous user profiles of users can be created from the processed data.

Google Analytics 4 enables the anonymization of IP addresses by default. As a result, your IP address is abbreviated by Google within Switzerland or the EU/EEA before transmission. Only in exceptional cases is the full IP address transmitted to a Google server and abbreviated there.

The IP address transmitted by your browser as part of Google Analytics is not combined with other data from Google. You can prevent cookies from being saved yourself by setting your browser software accordingly. You can also prevent Google from collecting the data generated by the cookie and related to your use of our website and from processing this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de. However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.

Your personal data is processed on the legal basis of your consent.

6. Webflow

We use tools provided by Google which, according to Google, can process personal data in countries where Google or its subcontractor Maintain facilities. Google promises in its”Data Processing Addendum for Products where Google is a Data Processor”, to ensure an adequate level of data protection by relying on EU standard contractual clauses. Google is also listed under the EU-U.S. and Swiss-U.S. Data Privacy Framework certified.

More information about Google's privacy policy can be found here: www.google.com/analytics/terms/en.html And here https://policies.google.com/privacy

7. Google Floodlight

This website is hosted via Webflow's Content Delivery Network (CDN). This is a service provided by Webflow Inc., 398 11th Street, 2nd Floor, San Francisco, California, 94103. The Webflow CDN provides duplicates of data from a website on various Webflow servers distributed worldwide. This results in faster website loading time, higher reliability, protection against brute force attacks and increased protection against data loss. A large part of the elements and source code of this website are obtained from the Webflow CDN when the page is accessed. As a result of this retrieval, your IP address is transmitted anonymously to Webflow servers in other EU countries and stored there for 24 hours. This anonymized storage for 24 hours is used to protect against brute force attacks. There is no tracking or other further processing of this data. The Webflow CDN is used in the interest of greater website reliability, increased protection against data loss, protection against brute force attacks and a better loading speed of this website. This represents a legitimate interest of HOCHDORF Swiss Nutrition AG.

In addition, Webflow is certified under the EU-U.S. and the Swiss-U.S. Data Privacy Framework. Webflow's current privacy policy can be found at: https://webflow.com/legal/eu-privacy-policy‍.

Based on our legitimate interest, the Bimbosan website uses Google's Floodlight Tag to measure the effectiveness of our advertising campaigns, limit the number of times you see a particular ad and only display ads that are relevant to you and your interests. In particular, information about the advertising you clicked on and your previous user behavior on third websites is collected and stored. Google uses a cookie ID to record which ads are shown in which browser and can thus prevent them from being displayed multiple times. In addition, Google can use cookie IDs to record so-called conversions that are related to ad requests. This is the case, for example, when a user sees a Google ad and later visits our website with the same browser and buys something there. The cookies do not contain any personal information such as email addresses, names, or addresses.

8th Cloudflare CDN

As a result of the marketing tools used, your browser automatically creates a direct connection to Google's server. By integrating the Floodlight tag, Google receives the information that you have accessed the corresponding part of our website or clicked on an ad from us.

In addition, the Floodlight tags used enable us to understand whether you perform certain actions on our website after you have viewed or clicked on one of our display/video ads on another platform (conversion tracking). Google uses this cookie to understand the content you've interacted with on our websites in order to be able to send you targeted advertising later on.

EU standard contractual clauses have been concluded as appropriate guarantees because data transfers to countries with inadequate data protection cannot be ruled out. The Floodlight Tag is used on the basis of our legitimate interest.

9. YouTube videos

On our website, we use Cloudflare CDN, a service provided by Cloudflare Inc., based in the USA (“Cloudflare”).

Cloudflare provides a globally distributed content delivery network with DNS. Technically speaking, Cloudflare redirects the exchange of information between your web browser and our website. This allows Cloudflare to monitor data exchange and act as a layer of protection between our servers and potentially harmful data. During this process, Cloudflare may use technologies such as cookies to identify Internet users, using these technologies exclusively for the tasks described here.

To protect your privacy, with Cloudflare, we have a”Data processing addendum” including EU standard contractual clauses concluded. Cloudflare is also available under the EU-U.S. and the Swiss-U.S. Data Privacy Framework certified.

More details about security and privacy at Cloudflare can be found in their”Privacy Policy” remove.

10. links

On our website, we use the services of YouTube LLC, based in the USA (“YouTube”), a subsidiary of Google LLC, to integrate videos. (“Google”).

When you start a YouTube video on our website, a connection to YouTube's servers is established. This tells the YouTube server which of our pages you have visited. This information (including your IP address) can be transmitted to a Google server in the USA and stored there. If you are logged into your YouTube account at the same time, you enable YouTube to associate your surfing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account before visiting our website.

We use YouTube's so-called extended data protection mode. According to YouTube, this mode means that YouTube does not save any data about you as a visitor to our website before you watch or play the video. However, the extended data protection mode does not necessarily preclude the transfer of data to YouTube partners.

11. Minors

For more information, you can visit YouTube terms of use and the Google's privacy policy remove.

Our websites may contain links to other websites that are not operated by us and to which this privacy policy does not extend. We do not monitor these websites and are neither responsible for their content nor their handling of personal data. After clicking on the link, we no longer have any influence on the processing of any data transferred to third parties (such as the IP address or the URL), as the conduct of third parties is naturally beyond our control. Insofar as using the websites of other providers involves the collection, processing or use of your personal data, please note the privacy policies of the respective providers.

12. Server log files

Our offer is aimed at an adult audience. Minors, in particular children under 16 years of age, are prohibited from transmitting personal data to us or signing up for a service without the consent or consent of their parents or legal guardians. If we discover that such data has been transmitted to us, it will be deleted immediately. The parents (or legal representative) of the child can contact us and request deletion or deregistration.

Each time you visit our websites, the hosting service provider of our websites automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These include:

  • website visited
  • Date and time of website visit/ server request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Access status/HTTP status code
  • amount of data transferred
  • Successful retrieval message
  • Browser type and browser version
  • operating system used
  • referrer URL (the previously visited page)
  • host name of the accessing computer
  • IP addresses

The temporary storage of the IP address by the system is necessary to enable our websites to be delivered to your computer. To do this, the IP address must be stored at least for the duration of the session. We also use the data in the log files to optimize our websites and to ensure the security of our websites. Log files are not used to evaluate the behavior of website visitors and for marketing purposes and are not associated with other data collected from you by us. The storage of IP addresses enables prosecution in the event of cyber attacks or illegal use, because the IP addresses can be assigned to a user via the provider so that the user can be identified. For this reason, the log files are stored by our hosting partner for a maximum of 14 days and then deleted.

13. Your rights

The legal basis for the temporary storage of data in log files is our legitimate interest. The collection of data to provide the websites and the storage of data in log files is absolutely necessary for the operation of our website. There is therefore no option for you to object.

In principle, you have the rights to information, correction, deletion, restriction, data portability, objection to processing and revocation of consent with regard to your personal data.

Please note, however, that we reserve the right to enforce the restrictions provided for by law, for example if we are required to store or process certain data, have an overriding interest in doing so (insofar as we may rely on them) or need them to assert claims.

Please note that the exercise of these rights may conflict with contractual agreements and this may have consequences such as early termination of the contract or cost consequences. In this case, we will inform you in advance where this is not already contractually agreed.

If you believe that the processing of your personal data violates data protection law, or your data protection claims have otherwise been violated in any way, you can also complain to the competent supervisory authority. In Switzerland, this is the Federal Data Protection and Information Commissioner (FDPIC; https://www.edoeb.admin.ch/).

Exercising your data protection rights usually requires that you clearly prove your identity (e.g. by means of a copy of your identity document, where your identity is otherwise not clear or cannot be verified). To assert your rights, please contact us by e-mail using the contact option set out in section 1.

Notification and contact us: If you have any questions about this privacy statement or about your information, please contact us at: datenschutz@hochdorf.com 

14. Changes to this privacy policy — status

We expressly reserve the right to supplement or change this privacy policy at any time. All changes and additions are at the sole discretion of the company.

Wenn Sie auf "Akzeptieren" klicken, stimmen Sie der Speicherung von Cookies auf Ihrem Gerät zu, um die Navigation auf der Website zu verbessern, die Nutzung der Website zu analysieren und unsere Marketingmassnahmen zu unterstützen. Weitere Informationen finden Sie in unserer Datenschutzrichtlinie.

PräferenzenAblehnenAkzeptieren
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.