Information Security and Data Privacy declaration
The website fercher-compliance.ch is subject to Swiss and, where applicable, international regulations. Accordingly, we observe the internationally recognized principles to ensure data protection and data security. This declaration informs you about how we collect and otherwise process personal data.
Fercher Compliance GmbH is based at Peter-Debye-Weg 15, 8049 Zurich. It is a legal association recognized by the Zurich High Court and subject to attorney-client privilege. All information entrusted to Fercher Compliance in connection with a mandate shall be deemed to be protected. If you have any suggestions, questions about this information and data protection declaration, please contact our Data Protection Officer:
- Sabine Fercher LL.M., Rechtsanwältin
- +41 79 53 88 000
2. PERSONAL DATA
We collect and receive personal data primarily in connection with a mandate relationship. Personal data is any data relating to an identified or identifiable natural person.
In connection with a mandate relationship, the collection of data also includes the search of publicly available sources (collection registers, land registers, presses, internet, commercial registers) as well as clients and their employees. In addition to data which customers themselves transmit to us, the data also includes information from third parties (business partners, family members, employees, employers), information from public registers, information in connection with official and judicial proceedings, Information from banks, insurance companies, etc.
We collect data related to the use of the website (e.g. IP address, MAC address of your smartphone or computer, information about your device and settings, cookies, date and time of visit, pages accessed and content, functions used, referring website , location information).
- Salutation, first name, name
- A valid e-mail address
- Telephone numbers
- Information necessary for the assertion of their legal interests.
The usual legal retention requirement for law firms is ten (10) years. Fercher Compliance deletes your data no later than after the end of the eleventh calendar year after the end of the mandate. At your request or based on legislation that provides for longer retention, we retain the data for a longer period of time.
4. DATA SECURITY
Our website is hosted by the Swiss company Hostpoint AG and access is made by means of transport encryption (SSL/TLS).
With the exception of the state security authorities, in particular Switzerland, the USA and the EU, which collect all data in connection with mass surveillance, access to the data is limited. For the exchange with customers, we work with zero-knowledge cloud providers SecureSafe and Tresorit. Zero knowledge means that encryption prevents cloud providers from gaining access to the data. To protect our email correspondence, we use the Zero-Access ProtonMail service. ProtonMail is a Swiss Company and stores all data encrypted and inaccessible in Switzerland.
Please note that we cannot protect your e-mail to us. We recommend that customers use our clouds. When sending emails, we recommend opening the free service from ProtonMail, PGP. At a minimum, individual attachments must be encrypted.
We collect certain personal data when you visit our website by using cookies and similar technology, such as local caching. A cookie is a small file that is stored on the hard drive of your computer or mobile device. When you revisit fercher-compliance.ch, we recognize you. You retain control over your cookies by using your browser settings. You can set your browser to reject cookies, save only one session, or delete them prematurely. Most browsers are preset to accept cookies.
We use Google Analytics on our websites. Google Analytics is an offer of Google LLC in the USA, www.google.com, with which we analyze the use of the website (non-personal). Google does not receive any personal data from us. For the statistical evaluation of the use and reach of our website, we receive the data generated by cookies about the use of our website (IP address, URL visited, date and time).
6. EXPERIENCE OF DATA TO THIRD
To ensure security and statistical evaluation, Hostpoint collects, according to its own information:
- IP addresses
- Date and time
- Protocol information such as protocol type, version, the desired action, status codes or Information about the transferred data (e.g. the size of a question or an answer)
- Error messages
- All information about the browser used (user-agent string) or, if applicable, page from which the visitor has reached the website.
We use the services of a Swiss cloud accounting company. In highly confidential cases, we use a customer numbering system, and limit the visibility of your data to our company and our auditor. Our auditor has signed a data processing agreement.
7. RIGHTS OF THE AFFECTED PERSONS
Visitors to our website, as well as other persons from which we might process personal data, receive a free confirmation whether personal data are processed by us. Persons whose data we process, can request information about it, have the processing of their personal data restricted, exercise their right to data portability, correct, delete or block their personal data, revoke consents granted and object to the processing of their personal data.