Privacy Policy — Swiss Kristall GmbH

Last updated: 09.03.2026

Swiss Kristall GmbH
Vorderi Böde 1, 5452 Oberrohrdorf, Switzerland
E-mail: info@swisskristallgroup.ch
Phone: +41 79 429 36 38

1. Controller

The controller under the Swiss Federal Act on Data Protection (FADP) is:

Swiss Kristall GmbH
Vorderi Böde 1, 5452 Oberrohrdorf, Switzerland
E-mail: info@swisskristallgroup.ch

We have not appointed a Data Protection Officer. For privacy enquiries, please contact: info@swisskristallgroup.ch (subject: “Data Protection”).

2. Scope

This Privacy Policy applies to visitors of our website www.swisskristallgroup.ch and to the processing of personal data connected to:

• the operation and security of the website;
• enquiries sent via website forms (where available);
• enquiries sent via e-mail;
• enquiries initiated via WhatsApp links provided on the website (opening WhatsApp in a separate tab/app);
• other pre-contractual communications related to our services.

More specific privacy notices, consent forms or client documents may apply where an enquiry develops into a concrete service engagement (e.g., Health cases).

3. Categories of Data Processed

3.1 Technical data (website operation)

When you access our website, basic technical data may be recorded automatically:

• IP address;
• date and time of access;
• requested pages/files;
• browser and operating system;
• basic log and security data.

These data are used to ensure website operation, security and error diagnosis.

3.2 Data you provide (enquiries)

We may process personal data you provide when you contact us, including:

• name and surname;
• e-mail address;
• phone number (if provided);
• the content of your message and any information you choose to share.

Please do not submit sensitive personal data (e.g., health data) through general website forms unless explicitly requested for a specific process.

4. Hosting and Data Transfers

Our website is operated by external service providers. Hosting infrastructure may involve service providers whose servers or support operations may be located outside Switzerland (including the USA). Our infrastructure uses AWS and Fastly (CDN).

Where cross-border processing or access occurs, we aim to rely on appropriate safeguards (such as contractual safeguards) where required.

5. Purposes of Processing

We process personal data for:

• operation and presentation of the website;
• security and system integrity;
• responding to enquiries submitted via website forms, e-mail or WhatsApp links;
• pre-contractual communication and service coordination where relevant;
• compliance with legal obligations;
• establishing, exercising or defending legal claims.

6. Legal Basis

Where applicable, processing is based on:

• legitimate interests (e.g., operating a secure and functioning website, handling enquiries);
• pre-contractual steps and performance of a contract (where relevant);
• consent (where required or where you choose to provide sensitive information);
• legal obligations (where applicable).

7. Retention Period

Technical log files are retained only as long as required for security and troubleshooting (typically a few days to weeks).
Enquiry communications are retained only as long as necessary to handle the enquiry, manage follow-up, and meet legal, accounting or evidentiary requirements.

8. Disclosure to Third Parties

We do not sell personal data.

We may disclose or make personal data available to service providers acting on our behalf (processors), strictly to the extent necessary for:

• website hosting, content delivery and security;
• business communications and e-mail handling;
• processing and delivering messages submitted through website forms.

We may also disclose personal data to authorities or courts where required by law or otherwise legally justified.

If an enquiry develops into a concrete service engagement, personal data may later be shared with relevant counterparties (e.g., service partners) as needed and appropriately authorised. Any such sharing is governed by the applicable client documentation.

9. WhatsApp and External Links

Our website may include links to external services (e.g., WhatsApp, LinkedIn). When you click such a link, you may be redirected to a third-party service in a separate tab or application. In that case, the third party’s privacy policies apply in addition to ours.

10. Education-specific notice (minors)

If your enquiry relates to education services and concerns a child/minor, please provide only the minimum information necessary at the initial enquiry stage.
By submitting information about a child/minor, you confirm that you are the child’s parent/legal guardian or otherwise authorised to provide such information.

We may request additional documentation at later stages only where necessary and via appropriate channels.

11. Your Rights

Subject to applicable law, you may have the right to:

• access your personal data;
• rectify inaccurate data;
• request deletion or destruction where legally available;
• restrict processing where applicable;
• withdraw consent with effect for the future (where processing is based on consent);
• object to processing in certain circumstances.

Requests can be sent to: info@swisskristallgroup.ch

12. Data Security

We apply appropriate technical and organisational measures (such as SSL encryption, access restrictions and secure operational workflows) to protect personal data against unauthorised access.

13. Updates

This policy may be updated periodically. The current version is available on our website.

‍