A. Privacy statement

Thank you for your interest in our Internet presence. The protection of your personal data (hereinafter also “data”) is a very important concern for us.

Controller, contact, data protection officer

Controller pursuant to Art. 4 (7) EU General Data Protection Regulation (“GDPR”) is

        Valueties AG 
        Wigärtlistraße 7 
        8274 TÄGERWILEN 
        SCHWEIZ
        

It is represented by the Managing Director Dirk Hamm. You can also contact us through the email address welcome@nic.voting

In case of questions or comments concerning this privacy statement, please contact our data protection officer by email at privacy@nic.voting or by post at the following address:

        Data Protection Officer
        c/o Valueties AG 
        Wigärtlistraße 7 
        8274 TÄGERWILEN 
        SCHWEIZ
        

For the rest, reference is made to our information at nic.voting/policies/index_en.html.

Legal bases for processing of your data

If the legal basis is not listed in the privacy statement, the following applies:

Retention periods

The data processed by us is erased or its processing is restricted in compliance with statutory requirements, in particular Art. 17 and 18 GDPR. Unless expressly stated otherwise within the scope of this privacy statement, we erase data stored by us as soon as such is no longer required for the intended purpose. Data will be retained beyond the time at which the purpose ends only if such data is necessary for other, legally permissible purposes or if the data must continue to be retained due to statutory retention periods. In these cases, processing is restricted, i.e. it is blocked, and will not be processed for other purposes.

Server log data

For the informational use of our Internet presence it is generally not required that you actively disclose your personal data. In this case we instead collect and use only the data automatically transmitted to us by your Internet browser. This includes:

The data is stored on our servers. This data is not stored together with other personal data except those stated above. The temporary storage of the IP address by the system is necessary to allow delivery of the website to the user’s computer. For this purpose, the IP address of the user must be stored for the duration of the session. We create so-called log files from this data. The created log files are stored to safeguard the security of our IT systems. A personal evaluation of the data, in particular for marketing purposes, does not take place.

Processing of the above data is required for technical reasons to offer a website pursuant to Art. 6 (1) Clause 1 lit. b), lit. c), lit. f) GDPR in order to correctly display our website to you and to safeguard stability and security. In particular, log files are created to verify attacks on our systems. We erase server log data from our systems at the latest after 7 days.

Contacting

In case of contacting by email or telephone, your data is processed, depending on the content of the request, for purely informational inquiries based on your (assumed) consent pursuant to Art. 6 (1) Clause 1 lit. a) GDPR or pursuant to Art. 6 (1) Clause 1 lit. b) GDPR, insofar as contacting is connected to contractual performance obligations. We delete your contact requests immediately after they are processed, unless statutory retention periods require additional retention.

Processors and data recipients

In some cases, we use external service providers to process your data, which are bound to our instructions. They were selected and commissioned by us with care and they are monitored regularly. The orders are based on data processing agreements pursuant to Art. 28 GDPR. The processor does not independently process data for its own purposes. We use a hosting provider to operate this web offer, who processes inventory data, contact data, content data, contract data, utilization data, metadata, and communication data from visitors or customers of this web offer within the scope of our legitimate interest in an efficient and secure provision of this online offer pursuant to Art. 6 (1) Clause 1 lit. f), 28 GDPR.

Your rights

Pursuant to statutory provisions, you can assert the following rights vis-à-vis the data processing controller free of charge:

You also have the right to complain to a data protection supervisory authority concerning the controller’s processing of your personal data.

Social media presences

We maintain presences in social media in order to communicate with customers and prospective customers there and to keep them informed. When retrieving the relevant networks, the terms and conditions of the operators apply.

B. Data security

We also use technical and organizational security measures to protect incurred or collected personal data, in particular against accidental or intentional manipulation, loss, destruction, or against an attack by unauthorized persons. Our security measures are continuously improved pursuant to technological advances.

For this purpose, this site, among other things, uses SSL encryption for the secure transmission of data. The common SSL process (Secure Socket Layer) is used in connection with the respective maximum encryption level supported by your browser.