Privacy policy

1. General information

Data protection is an important concern for us. We therefore process your personal data data ("personal data") with great care and in accordance with the applicable legal requirements. Specifications. MADE Identity AG, Quellenstrasse 27, 8005 Zurich, Switzerland processes your personal data for various purposes and provides transparent information about this data processing. The term "personal data" refers to all information that can be linked to a specific or identifiable natural person. The term "processing" covers all handling of personal data, e.g. obtaining, disclosing, storing, deleting, etc.

Please read the entire privacy policy carefully. This will tell you how and why we process your personal data and what rights you have in connection with this data processing.

This privacy policy is based on the Swiss Data Protection Act (DSG). It is then also governed by the European General Data Protection Regulation (GDPR). It depends on the individual case to what extent the GDPR is applicable at all.

To whom and when does this privacy policy apply?

  • if you purchase services or products from us or have a contractual relationship with us
  • Visitors to our website www.made-identity.ch 
  • when you contact us, e.g. by e-mail, letter or other contact tool 
  • when you receive information or marketing communication from us 
  • when you subscribe to our newsletter 
  • when you apply for a job with us 
  • when you deal with us in the context of further data processing in connection with our offers

2. Responsibility

The company responsible for the processing of personal data is the one that determines the purpose and means of the processing. For the following company or person is the "controller" within the meaning of the FADP, i.e. the body responsible for data protection, unless otherwise communicated in the specific individual case (identity):

  • MADE Identity AG, Quellenstrasse 27, 8005 Zurich, Switzerland

 

If you have any concerns or questions about data protection, you can contact us at the following address: hello@made-identity.ch

3. Personal data to be processed

With a view to the different purposes, we also process different categories of Personal data. In the case of contractual partners who are companies, we process less Personal data - here we process in particular data of contact persons of the Company (e.g. name, e-mail address, function in the company, communication data). You provide us with much of the following personal data yourself. As a rule, however, you are not obliged to do so. If you provide us with data about other persons, we assume that you are authorised to do so and that this data is also correct. You automatically confirm this when you provide us with data about these third parties. Please ensure that the third parties concerned have been made aware of this privacy policy.

3.1. Basic data and contact information

Basic data and contact information relate directly to your person and characteristics (e.g. to contact you). For example, we process the following basic data:

  • Surname, first name
  • E-mail address

 

We receive this master data directly from you. Under certain conditions, however, we may also obtain personal data from third parties, e.g. from our contractual partners, associations and address dealers and from publicly accessible sources such as the Internet.

3.2. Application data

Application data is data that is collected in connection with your application to us, e.g. the following data:

  • CV, letter of motivation
  • Employment and degree certificates
  • Information about your current job (e.g. notice period) Wage expectations
  • Information in connection with a job interview

 

3.3. Communication data

Communication data is data that arises in connection with communication with you, e.g. the following data:

  • Contact details such as postal address, e-mail address and telephone number
  • Content of all correspondence
  • Information on the type, time and other marginal data of the communication

 

3.4. Location data and technical data

When you visit our website, technical data is collected. This includes the following data, for example:

  • Location and traffic data
  • IP address of the end device and device ID
  • Information about your device, the operating system of your end device
  • Information about your internet provider
  • Content accessed or logs in which the use of our systems is recorded
  • Date and time of access to the website

4. Purposes of our data processing

Where permitted, we process your personal data for various purposes in which we have a legitimate interest corresponding to the purpose:

  • For marketing and information purposes (e.g. so that we can contact you in accordance with your personal interests about offers or new activities)
  • Examination of your application (so that we can assess whether you are suitable for a position with us)

5. Data processing in connection with social media

If you contact us via social media and our profiles there, e.g. on Facebook, Instagram, LinkedIn, Spotify, etc., comment on content or share posts, we collect information that we can use for marketing purposes, for example. The respective provider of a social media platform also collects data itself when you visit our profile. Further information on data processing by a social media provider itself can be found in the respective privacy policy of this provider.

On our website, we offer you the option of using a social media plugin from Instagram, LinkedIn and Spotify to integrate the functions of the respective provider on our website. These plugins are deactivated by default, but are activated when you click on the social media icon on the website. You can address requests for information and other data subject enquiries in connection with these social media providers directly to the provider in question.

6. Disclosure of data to other companies and other recipients

We disclose your personal data to service providers. This applies in particular to IT service providers, but may - where necessary - include analytics service providers, debt collection service providers, credit agencies, marketing service providers, etc. Insofar as these service providers process personal data as processors, they are obliged to process personal data exclusively in accordance with our instructions and to take measures to ensure data security. Data may then also be disclosed to other recipients, e.g. to courts and authorities in the context of legal proceedings.

In individual cases, we may also pass on personal data to other third parties for their own purposes, e.g. if you have given us your consent to do so or if we are legally obliged or authorised to do so.

7. Duration of data processing

We store and process your personal data for as long as is necessary for the purpose of processing (for data in connection with contracts, this is usually for the duration of the contractual relationship), as long as we have a legitimate interest in storing the data (e.g. to enforce legal claims or to ensure IT security) and as long as data is subject to a statutory retention obligation (for certain data, for example, a ten-year retention period applies, which we must comply with). We destroy or anonymise your personal data after the storage or retention period has expired. Processing time, provided no legal or contractual obligations prohibit this.

8. Legal basis according to GDPR for data processing

Depending on the circumstances, data processing is only permitted if the applicable law specifically authorises it. This does not apply under Swiss data protection law, but under the European GDPR, insofar as it applies. In this case, we base the processing of your personal data on the following legal bases:

  • on your consent (Art. 6 para. 1 lit. a and Art. 9 para. 2 lit. a GDPR); that the processing is necessary for the fulfilment of the contract or pre-contractual measures (Art. 6 para. 2 lit. b GDPR) 
  • the processing is necessary for a legitimate interest in the data processing (Art. 6 para. 1 lit. f GDPR)
  • that the processing is necessary for the establishment, exercise or defence of legal claims or civil proceedings (Art. 6 para. 1 lit. f and Art. 9 para. 2 lit. f GDPR) 
  • that the processing is necessary for compliance with domestic or foreign legal provisions (Art. 6 para. 1 lit. c and lit. f as well as Art. 9 para. 2 lit. g GDPR)

9. Rights of data subjects

You have certain rights under applicable data protection law to obtain further information about our data processing and to influence it. These are in particular the following rights:

  • You have a right to information. This means that you can request information about our data processing. We will be happy to provide you with this information. You can also submit a request for information if you would like further information and a copy of your data.
  • You have a right to data portability. This means that you have the right to receive the personal data that you have provided to us in a structured, commonly used and machine-readable format or to have it transferred to a third party, provided that the corresponding data processing is based on your consent or is necessary for the fulfilment of the contract.
  • You have the right to erasure and objection. This means that you can object to our data processing so that we can no longer process your data. You can then request that we erase your personal data. However, we would like to point out that we will continue to process and store your data if we are obliged to do so.
  • You have a right to rectification. This means that you can have incorrect or incomplete personal data corrected or completed or then have it marked with a so-called confirmation note.
  • You have the right to withdraw your consent. This means that you can withdraw your consent at any time, provided that you have previously given your consent for data processing. The revocation applies from this moment, i.e. only for the future and not for the past. However, we may continue to process your data on another basis if you withdraw your consent.

 

If you assert your rights as a data subject, we must verify your identity (e.g. by sending you a copy of your ID). The listed data subject rights are then subject to legal requirements and restrictions. This means that it is not always possible to exercise your rights in full. For example, we must continue to process your personal data in order to fulfil a contract with you, to protect our own legitimate interests or to comply with legal obligations. Insofar as it is legally permissible (e.g. to protect the privacy of third parties and to protect our own interests worthy of protection, such as the existence of business secrets), we may restrict or deny your exercise of rights. It should also be noted that you also have the option of contacting the responsible data protection authority with your concerns.

10. Liability for links

References and links to third-party websites lie outside the area of responsibility of MADE Identity AG. No responsibility is accepted for such third-party websites and their content. Access to and use of such websites is at the user's own risk.

11. Status of the privacy policy

This privacy policy is up to date and dated 29.04.2024.