Data protection
Swiss Prime Site Solutions (hereinafter also referred to as "we") is committed to the protection of personal data. With this data protection declaration, we provide information on which personal data we process in connection with our activities and operations, including our website. In particular, we provide information on what personal data we process, for what purpose, how and where. We also provide information about the rights of persons whose data we process.
Individual or additional activities and operations may be subject to further data protection declarations as well as other legal documents such as general terms and conditions (GTC), terms of use or conditions of participation.
We are subject to Swiss data protection law, in particular the Federal Data Protection Act (FADP) and the Ordinance to the Federal Data Protection Act (FADP), and process personal data in accordance with them.
Persons responsible for the processing of personal data
Swiss Prime Site Solutions AG
Data protection advisor
Poststrasse 4a
CH-6300 Zug
E-mail: privacy(at)sps.swiss
Terms
Personal data is any information that relates to an identified or identifiable person.
A data subject is a person about whom personal data is processed.
Processing includes any handling of personal data, regardless of the means and procedures used, in particular the storage, disclosure, acquisition, collection, deletion, storage, modification, destruction and use of personal data.
The European Economic Area (EEA) comprises the member states of the European Union (EU) as well as the Principality of Liechtenstein, Iceland and Norway. The General Data Protection Regulation (GDPR) refers to the "processing of personal data" as "processing of personal data".
1.1 Purposes of the processing
Personal data is processed for the following purposes:
- Fulfilment of a contract or implementation of pre-contractual measures
- Contacting, communication and advertising purposes
- Display of our website and analysis of traffic
- Statistical and market research purposes
1.2 Categories of personal data to be processed
The personal data processed belong to the following categories of data:
- General personal data such as title, first and last name, address, telephone number, e-mail address
- Work-related data such as title, function, role
- Any other personal data that you share with us
- Online and communication data such as IP addresses, location data, language, date/time/location of access, URL clicked, browser, device, operating system, access provider
- All personal data that we collect via cookies. Further information can be found in the Cookie Policy.
1.3 Category of recipients of the personal data
Personal data will be disclosed to the following responsible persons:
- Companies of the Swiss Prime Site Group
- Auditing companies
- Shipping companies (courier and online)
- Form Provider (such as Google Ireland Limited, Ireland and Microsoft Ireland Operations Limited, Ireland)
- Provider of cookies; further information can be found in the Cookie Policy.
- Social media providers such as Meta Platforms Ireland Limited, Ireland (Facebook and Instagram), Google Ireland Limited, Ireland (Google Analytics, Google Maps, Youtube, reCAPTCHA), LinkedIn Ireland Unlimited Company, Ireland (LinkedIn)
We have no influence on the processing of personal data by these responsible parties. The data protection declarations of these third parties must be observed.
Personal data is passed on to the following companies:
- IT providers and IT service companies
- Service provider of website functions and online platforms with newsletter and marketing services
1.4 Place of processing
As a rule, personal data is processed in Switzerland. They may also be processed in the following countries:
- In the EU, EEA and UK: by IT service providers, such as providers of IT systems, infrastructure or cloud services. These countries ensure adequate data protection
- In the USA and, where applicable, other countries in the case of subcontracted processing: from IT providers, such as providers of IT systems, infrastructure or cloud services. Data protection is granted through the conclusion of standard data protection clauses recognised by the Federal Data Protection and Information Commissioner (FDPIC) and the necessary risk assessments are carried out. If a company in the USA is certified under a (state) treaty recognised by the Federal Council, data protection is granted through this certification.
1.5 Rights of the data subjects
Data subjects about whom we process personal data have the following rights under Swiss data protection law:
- Right to information
- Right of rectification
- Right to object to our data processing
- Right to withdraw your consent
- Right to data output or data transfer
To exercise the rights, contact the person responsible for processing.
2.1 Purposes of the processing
Personal data is processed for the following purposes:
- Fulfilment of a contract or implementation of pre-contractual measures
- Fulfilment of legal obligations, in particular notification of relocations, sanctions verification, safekeeping, tax obligations, fulfilment of official orders
- Credit assessment and debt collection
- Structural measures and planning
- Access management and security (e.g. video surveillance)
- Contacting, communication, publication and advertising purposes as well as registrations for events organised by the company or third parties
- Actions in the purchase and sale process of individual properties or property portfolios
- Product development and improvement or change of the organisation and processes
- Security purposes, ensuring IT security, for the prevention of theft, fraud and abuse and for evidence purposes
- Compliance with legal requirements and prevention and detection of violations
- Statistical and market research purposes
- Reorganisation, merger, demerger, conversion and asset transfer
2.2 Categories of personal data to be processed
The personal data processed belong to the following categories of data:
- General personal data such as title, first and last name, date of birth, address, telephone number, e-mail address, marital status
- Identification data such as identification numbers, AHV number, ID or passport number, number plate, user ID, signature
- Financial data such as bank data, payment history, debt collection register extracts, credit rating information
- Online data such as cookies, IP addresses, location data
- Family relationships such as general personal data on family members, family certificate, birth certificate, marriage certificate
- Images, recordings and access data
- Work-related data such as title, function, role, job description, type and duration of employment, workload, working hours, further training, training courses, sideline employment
- Salary data such as details of the remuneration amount and the remuneration model as well as the payment method, payslips, bank details, AHV number, pension and pension fund details, expense receipts
- Criminal record and debt collection register data
- Official / judicial data such as legal case information
- Performance and behavioural data such as feedback, appraisals
- Reference data
- Consumption values, such as those relating to electricity, water, heating, etc.
- Any other personal data that has been disclosed to us
2.3 Category of recipients of the personal data
Personal data will be disclosed to the following responsible persons:
- Auditing companies
- Valuation company
- Financial institutions, asset management and insurance companies
- Authorities, Courts and Finance and Tax Commissioners
- Notary's office, law firms, collection agencies
- Shipping companies (courier and online)
- Security service
- Property management and management companies
- Credit agencies
We have no influence on the processing of personal data by these responsible parties. The data protection declarations of these third parties must be observed.
Personal data is passed on to the following companies:
- Partners and suppliers in the construction sector such as planners, general and total contractors, tradesmen and companies in the field of facility management and marketing
- Company in the field of lettering (name badges)
- Interested parties of buyers and sellers as well as owners of properties
- Survey and quality assurance companies
- IT providers and IT service companies
- Service and consulting company for the fulfilment of the business conduct of Swiss Prime Site Solutions
2.4 Place of processing
As a rule, personal data is processed in Switzerland. They may also be processed in the following countries:
- In the EU, EEA and UK: by IT service providers, such as providers of IT systems, infrastructure or cloud services. These countries ensure adequate data protection
- In the USA and, where applicable, other countries in the case of subcontracted processing: from IT providers, such as providers of IT systems, infrastructure or cloud services. Data protection is granted through the conclusion of standard data protection clauses recognised by the Federal Data Protection and Information Commissioner (FDPIC) and the necessary risk assessments are carried out. If a company in the USA is certified under a (state) treaty recognised by the Federal Council, data protection is granted through this certification.
2.5 Rights of the data subjects
Data subjects about whom we process personal data have the following rights under Swiss data protection law:
- Right to information
- Right of rectification
- Right to object to our data processing
- Right to withdraw your consent
- Right to data output or data transfer
To exercise the rights, contact the person responsible for processing.
3.1 Purposes of the processing
Personal data is processed for the following purposes:
- Fulfilment of a contract or implementation of pre-contractual measures
- Fulfilment of legal obligations, in particular notification of storage, tax obligations, fulfilment of official orders
- Contacting, communication, publication and advertising purposes as well as registrations for events organised by the company or third parties
- Actions in the purchase and sale process of individual properties or property portfolios
- Product development and improvement or change of the organisation and processes
- Security purposes, ensuring IT security, for the prevention of theft, fraud and abuse and for evidence purposes
- Compliance with legal requirements and prevention and detection of violations
- Statistical and market research purposes
- Reorganisation, merger, demerger, conversion and asset transfer
3.2 Categories of personal data to be processed
The personal data processed belong to the following categories of data:
- General personal data such as title, first and last name, date of birth, address, telephone number, e-mail address
- Identification data such as identification numbers, AHV number, ID or passport number, user ID, signature
- Financial data such as bank data, payment history, debt collection register extracts, credit rating information, bank and insurance data
- Online data such as cookies, IP addresses, location data
- Images and recordings
- Work-related data such as title, function, role
- Criminal record and debt collection register data
- Official / judicial data such as legal case information
- Performance and behavioural data such as feedback, appraisals
- Tangible assets such as residential property incl. evidence (contracts, confirmations, loans, building permits), ownership, assets
- Any other personal data that has been disclosed to us
3.3 Category of recipients of the personal data
Personal data will be disclosed to the following responsible persons:
- Ownership of the object of purchase
- Interested parties of buyers and sellers as well as owners of properties
- Auditing companies
- Valuation company
- Financial institutions, asset management and insurance companies
- Authorities, Courts and Finance and Tax Commissioners
- Notary's office, law firms
- Shipping companies (courier and online)
- Security service
- Property management and management companies
We have no influence on the processing of personal data by these responsible parties. The data protection declarations of these third parties must be observed.
Personal data is passed on to the following companies:
- Partners and suppliers such as planners, general and total contractors as well as companies in the field of facility management and marketing
- IT providers and IT service companies
- Service and consulting company for the fulfilment of the business conduct of Swiss Prime Site Solutions
3.4 Place of processing
As a rule, personal data is processed in Switzerland. They may also be processed in the following countries:
- In the EU, EEA and UK: by IT service providers, such as providers of IT systems, infrastructure or cloud services. These countries ensure adequate data protection
- In the USA and, where applicable, other countries in the case of subcontracted processing: from IT providers, such as providers of IT systems, infrastructure or cloud services. Data protection is granted through the conclusion of standard data protection clauses recognised by the Federal Data Protection and Information Commissioner (FDPIC) and the necessary risk assessments are carried out. If a company in the USA is certified under a (state) treaty recognised by the Federal Council, data protection is granted through this certification.
3.5 Rights of the data subjects
Data subjects about whom we process personal data have the following rights under Swiss data protection law:
- Right to information
- Right of rectification
- Right to object to our data processing
- Right to withdraw your consent
- Right to data output or data transfer
To exercise the rights, contact the person responsible for processing.
4.1 Purposes of the processing
Personal data is processed for the following purposes:
- Fulfilment of a contract or implementation of pre-contractual measures
- Fulfilment of legal obligations, in particular notification of storage, tax obligations, fulfilment of official orders
- Contacting, communication, publication and advertising purposes as well as registrations for events organised by the company or third parties
- Actions in the purchase and sale process of individual properties or property portfolios
- Product development and improvement or change of the organisation and processes
- Security purposes, ensuring IT security, for the prevention of theft, fraud and abuse and for evidence purposes
- Compliance with legal requirements and prevention and detection of violations
- Statistical and market research purposes
- Reorganisation, merger, demerger, conversion and asset transfer
4.2 Categories of personal data to be processed
The personal data processed belong to the following categories of data:
- General personal data such as title, first and last name, date of birth, address, telephone number, e-mail address
- Identification data such as identification numbers, AHV number, ID or passport number, user ID, signature
- Financial data such as bank data, payment history, debt collection register extracts, credit rating information, bank and insurance data
- Online data such as cookies, IP addresses, location data
- Images, recordings and access data
- Work-related data such as title, function, role, further training
- debt collection register data
- Official / judicial data such as legal case information
- Performance and behavioural data such as feedback, appraisals
- Reference data
- Any other personal data that has been disclosed to us
4.3 Category of recipients of the personal data
Personal data will be disclosed to the following responsible persons:
- Auditing companies
- Valuation company
- Financial institutions, asset management and insurance companies
- Authorities, Courts and Finance and Tax Commissioners
- Notary's office, law firms
- Shipping companies (courier and online)
- Security service
- Property management and management companies
We have no influence on the processing of personal data by these responsible parties. The data protection declarations of these third parties must be observed.
Personal data is passed on to the following companies:
- Partners and suppliers such as planners, general and total contractors as well as companies in the field of facility management and marketing
- Interested parties of buyers and sellers as well as owners of properties
- Survey and quality assurance companies
- IT providers and IT service companies
- Service and consulting company for the fulfilment of the business conduct of Swiss Prime Site Solutions
4.4 Place of processing
As a rule, personal data is processed in Switzerland. They may also be processed in the following countries:
- In the EU, EEA and UK: by IT service providers, such as providers of IT systems, infrastructure or cloud services. These countries ensure adequate data protection
- In the USA and, where applicable, other countries in the case of subcontracted processing: from IT providers, such as providers of IT systems, infrastructure or cloud services. Data protection is granted through the conclusion of standard data protection clauses recognised by the Federal Data Protection and Information Commissioner (FDPIC) and the necessary risk assessments are carried out. If a company in the USA is certified under a (state) treaty recognised by the Federal Council, data protection is granted through this certification.
4.5 Rights of the data subjects
Data subjects about whom we process personal data have the following rights under Swiss data protection law:
- Right to information
- Right of rectification
- Right to object to our data processing
- Right to withdraw your consent
- Right to data output or data transfer
To exercise the rights, contact the person responsible for processing.
5.1 Purposes of the processing
Personal data is processed for the following purposes:
- Fulfilment of a contract or implementation of pre-contractual measures
- Fulfilment of legal obligations, in particular obligations in the financial market, storage, tax obligations, fulfilment of official orders
- Contacting, communication, publication and advertising purposes as well as registrations for events organised by the company or third parties
- Product development and improvement or change of the organisation and processes
- Security purposes, ensuring IT security, for the prevention of theft, fraud and abuse and for evidence purposes
- Compliance with legal requirements (including fulfilment of reporting obligations) and prevention and detection of violations
- Ensuring the stability of the financing structure and the entrepreneurial solvency
- Statistical and market research purposes
- Reorganisation, merger, demerger, conversion and asset transfer
5.2 Categories of personal data to be processed
The personal data processed belong to the following categories of data:
- General personal data such as title, first and last name, date of birth, address, telephone number, e-mail address, language, nationality
- Financial data such as bank details
- Online data such as cookies, IP addresses
- Work-related data such as title, function, role
- Performance and behavioural data such as feedback, appraisals
- Tangible assets such as ownership interests, ownership structure, assets
- Any other personal data that has been disclosed to us
5.3 Category of recipients of the personal data
Personal data will be disclosed to the following responsible persons:
- Auditing companies
- Valuation company
- Financial institutions, asset management and insurance companies
- Authorities, Courts and Finance and Tax Commissioners
- Notary's office, law firms
- Shipping companies (courier and online)
- Security service
- Property management and management companies
We have no influence on the processing of personal data by these responsible parties. The data protection declarations of these third parties must be observed.
Personal data is passed on to the following companies:
- Survey and quality assurance companies
- IT providers and IT service companies
- Service and consulting company for the fulfilment of the business conduct of Swiss Prime Site Solutions
5.4 Place of processing
As a rule, personal data is processed in Switzerland. They may also be processed in the following countries:
- In the EU, EEA and UK: by IT service providers, such as providers of IT systems, infrastructure or cloud services. These countries ensure adequate data protection
- In the USA and, where applicable, other countries in the case of subcontracted processing: from IT providers, such as providers of IT systems, infrastructure or cloud services. Data protection is granted through the conclusion of standard data protection clauses recognised by the Federal Data Protection and Information Commissioner (FDPIC) and the necessary risk assessments are carried out. If a company in the USA is certified under a (state) treaty recognised by the Federal Council, data protection is granted through this certification.
5.5 Rights of the data subjects
Data subjects about whom we process personal data have the following rights under Swiss data protection law:
- Right to information
- Right of rectification
- Right to object to our data processing
- Right to withdraw your consent
- Right to data output or data transfer
To exercise the rights, contact the person responsible for processing.