Skip to content
Startseite » Privacy policy

Privacy policy

A. Person responsible

The Heyning-Roelli Foundation, c/o Blum&Grob Rechtsanwälte AG Neumühlequai 6, 8021 Zurich, Switzerland, is responsible for the processing of personal data and therefore the controller in accordance with this privacy policy. The person responsible for data protection at our company can be contacted at the above postal address, by e-mail to heyning-roelli@blumgrob.ch or by telephone on +41 58 320 00 00.

B. Personal data and terms

Personal data is information that relates to an identified or identifiable natural person, such as name, address, telephone number, e-mail address, date of birth, etc. (“personal data”). (“personal data”). Any handling of personal data, regardless of the means and procedures used, in particular the collection, procurement, storage, use, processing, disclosure, archiving or deletion of data, is considered processing (“processing” or “processed”).
A data subject is any natural person about whom personal data is processed (“data subject”).

The controller is any private person or federal body that alone or jointly with others decides on the purposes and means of processing (“controller”)

Processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller (“processor”).

C. Obtaining personal data

You or the persons concerned provide us with some of the personal data yourself by making it available to us, using our services or contacting us by e-mail or telephone. This includes, for example, name, contact details, date of birth, nationality, financial circumstances, university education, etc. We may also collect personal data ourselves, e.g. if you make use of our services, or we may obtain data from publicly accessible sources (e.g. debt collection registers, land registers, commercial registers, press, internet, media, social media). data (e.g. information from the media and Internet, credit information, your addresses and, if applicable, interests and other socio-demographic data). We may also receive data or when you use our website (see lit. I).

We collect the data mentioned in this paragraph for the purposes described in lit. D, unless otherwise stated. If you have given us your consent to process your personal data for specific purposes, we will process your personal data within the set framework and based on this consent. We may also base the processing of personal data on other legal bases, where necessary. This includes the fulfillment of a contract, the implementation of pre-contractual measures or the protection of other legitimate interests (see lit. D).

If you are acting on behalf of or providing us with information about a third party, you represent that you are an authorized representative or agent of that third party and/or that you have obtained all necessary consents from that third party to collect, process, use and disclose their personal data to us or to third parties. by us in accordance with the provisions of this Privacy Policy.

D. Purpose of the processing

We use the personal data in particular to fulfill the purposes of our organization, to provide our services and to initiate and process agreements with our donors, beneficiaries and business partners, as well as to comply with our legal obligations. If you work for our donors, beneficiaries or business partners, your personal data may also be affected in this capacity.

In addition, we also process personal data of you and other persons for the following purposes, insofar as this is permissible and appears appropriate to us:

  • Communication with third parties and processing their inquiries (e.g. applications, media inquiries);
  • Assertion of legal claims and defense in connection with legal disputes and official proceedings;
  • Provision and further development of our offers, services and websites.

E. Duration of storage

Unless an explicit retention period is specified at the time of collection or in this privacy policy, we process and store personal data until it is no longer required to fulfill the purpose, unless statutory retention obligations (e.g. retention obligations under commercial and tax law) prevent deletion. Personal data may also be retained for the period in which claims can be asserted and insofar as we are otherwise legally obliged to do so or legitimate business interests require this (e.g. for evidence and documentation purposes).

F. Rights of the data subject

Consent that has been given can be revoked at any time, but this has no effect on data processing that has already taken place. In addition, depending on the circumstances and the applicable data protection law, you have the right to information, correction, deletion or restriction of the processing of personal data, the right to object to processing and the right to portability (data portability). We are also entitled to assert the statutory restrictions on your rights as a data subject, for example if we are obliged to store or process certain data, have an overriding interest in doing so or need it to assert claims.

Every data subject also has the right to enforce their claims in court or to lodge a complaint with the competent data protection authority. The competent data protection authority in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC).

With regard to your rights and other questions, suggestions and comments on the subject of data protection, please contact the person responsible for data protection using the contact details given at the beginning (see A).

G. Security

We take appropriate measures to protect personal data against loss, misuse, unauthorized access, disclosure, alteration or destruction. To this end, we implement suitable technical and organizational measures. However, we cannot guarantee the absolute security of the data.

H. Data transmission

As part of our business activities, we also disclose personal data to third parties, insofar as this is permissible and appears appropriate to us, either because they process data for us or because they use the data for their own purposes. This relates in particular to the following positions:

  • Service providers of ours (e.g. banks, insurance companies), including contract processors (such as cloud or IT providers);
  • domestic and foreign authorities, official bodies or courts;
  • Media;
  • The public, including visitors to websites and social media;
  • other parties in potential or actual legal proceedings;

In this context, your personal data may be stored in Switzerland as well as in other countries in Europe and the USA, where the service providers we use are located.

If personal data is processed outside Switzerland or the European Economic Area, we will take the steps required by applicable data protection law to ensure that your personal data is treated as securely and protected as it is in Switzerland or the European Economic Area, unless we rely on a

exemption clause. An exception may apply in the case of legal proceedings abroad, but also in cases of overriding public interests, if the execution of a contract requires such disclosure or if you have given your consent.

I. Data processing through use of the website

During your visit to the website, general information is automatically collected (e.g. date of your visit, time zone, type of web browser and its settings, version and language, your IP address, MAC address of the end device (e.g. computer or cell phone), the operating system used, content accessed and the domain name of your Internet service provider). This data is also required to correctly provide and optimize the content of the website, to ensure the long-term functionality of our IT systems and the website and to provide law enforcement authorities with the information they need for criminal prosecution in the event of a cyber attack.

1. SSL encryption

This website uses SSL encryption for security reasons and to protect the transmission of confidential content. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://”.

2. Server log files

The provider of this website automatically collects and stores information in so-called “server log files”, which your browser automatically transmits to us. In particular, the items listed under lit. I information listed at the beginning.

3. Use of cookies

3.1 Definition
Cookies are small files that are stored on your end device when you use our website.

3.2 Necessary and non-necessary cookies
Necessary cookies are files that are sent to the browser on your computer’s hard disk to ensure the functionality of the website and to enable us to offer you certain functions. You do not need the consent of the users of the website. We use non-essential cookies to collect information about visits to the website. In addition, we use non-essential cookies to improve the user-friendliness of the website, for example to ensure the shopping cart functionality, to adapt our offer to customer requirements and to make surfing the website as convenient as possible for you. We also use cookies to optimize our advertising. Non-essential cookies require the consent of the website user, depending on the applicable law.

3.3 Session cookies and permanent cookies
So-called “session cookies” are automatically deleted at the end of your visit. For example, we may use session cookies to save your shopping cart, completed online forms or language settings across different pages of an Internet session. We also use permanent cookies. These remain stored on your end device after the end of the browser session until you delete them. When you visit our website again, it will automatically recognize which entries and settings you prefer. Depending on the type of cookie, these cookies remain stored on your end device for a certain period of time (e.g. two years) and are automatically deactivated after the programmed time has expired. They serve to make our website more user-friendly, effective and secure. Thanks to these cookies, for example, you will be shown information on the site that is specifically tailored to your interests.

3.4 Activation, deactivation and deletion of cookies
All web browsers offer the option of activating, deactivating or deleting the use of cookies by configuring the browser settings or options accordingly. If cookies are completely or partially deactivated or deleted, not all functions of the website may be available.

3.5 Cookies and personal data
As a rule, the cookies we use do not store any personal data. However, personal data that we or third-party providers commissioned by us store about you (e.g. if you have a user account with us or these providers) may be linked to the technical data or to the information stored in and obtained from cookies and thus possibly to your person.

J. Final provisions

This privacy policy is not part of a contract with you. We reserve the right to change the content of this privacy policy at any time and without notice. The current version published on our website applies. It is therefore recommended that you consult this privacy policy regularly. In addition to this data protection declaration, we may inform you separately about the processing of your data, for example by means of further separate data protection declarations concerning special relationships (e.g. donor, beneficiary or applicant relationships).