2 Data origin and data categories

We primarily process Personal Data that we receive or collect from our customers (including their employees, shareholders, directors, etc.), website visitors, service providers, banks, and other business partners in the course of our business activities. In addition, we may also process Personal Data that we have obtained from publicly accessible sources (e.g., websites or public records such as the commercial registry, etc.) and that we have obtained from publicly accessible sources.

The Personal Data we process includes, as appropriate, in particular name and contact details (e.g. address, telephone number and e-mail address), identification data (e.g. passport number, ID card number, birth data, nationality, gender), job title and employment relationship, country of residence, geographic location, family situation (e.g. marital status, number of children), data relating to criminal proceedings, financial information for payment purposes (e.g. bank account data) financial data (e.g., financial assets, source of funds), investment information (e.g., investment profile, risk profile, suitability testing, asset allocation, investments, transaction data (e.g., payment instructions, investment instructions), information on the use of our websites, and information of any kind from correspondence, contacts, and interactions (e.g., photographs, videos, and voice recordings) with us.

3 Purpose of processing and legal basis

3.1 In relation to our business activities

We process your personal data primarily to provide our services in connection with our business activities. Specifically, we process your personal data for the following purposes:

• • To communicate with you, particularly to provide you with information or to process your requests. If you contact us by e-mail, you authorize us to respond to you through the same channel. Please note that unencrypted e-mails are transmitted over the Internet, so it cannot be ruled out that they may be viewed, accessed, and manipulated by third parties. Therefore, we ask you not to send us confidential information via e-mail. We exclude, to the extent permitted by law, any liability you may incur, particularly in the event of erroneous transmission, falsification of content, or network interruption (outages, overloading, illegal intervention, blocking);
  • To make our services and website available to you and to evaluate and improve them;
  • for the conclusion, administration and execution of our contractual relationships;
  • To maintain and manage the business relationship with you (including the issuance of invoices);
  • to inform you of recent updates or to provide you with other information about our services;
  • To promote our services;
  • For statistical purposes;
  • for IT and building security measures (such as access controls, visitor lists, network and mail scanners, telephone records) and for risk control reasons;
  • for the assertion of legal rights and defense in connection with legal disputes and proceedings before the authorities;
  • To fulfill our legal obligations.

We process your personal data for the above purposes, depending on the situation, particularly on the following legal bases:

• • processing of Personal Data is necessary for the performance of an agreement with you;
  • You have given your consent to the processing of personal data about you;
  • The processing of Personal Data is necessary for the fulfillment of a legal obligation;
  • We have a legitimate interest in processing Personal Data.

3.2 Visiting our websites

Whenever a user accesses our website, our server collects a variety of information about the user that is stored in the server log file. Information collected includes, but is not limited to, the IP address, the date and time of access, the time difference from GMT, the name and URL of the downloaded file, the website from which access is made, the browser used, and the operating system used.

Use of this general information does not involve identification of a specific person. The collection of this information or data is technically necessary to view our website and to ensure its stability and security. This information is also collected to improve the website and to analyze its use. The legal basis for the temporary storage of information and log files is our legitimate interest in being able to offer our website with sufficient quality and to continuously improve it.

3.3 Contact by e-mail and telephone

You can contact us using the e-mail address and phone numbers provided on our website. The personal data you send us will be stored and processed by us for the purpose of processing your request. The legal basis for this processing of personal data is your consent and our legitimate interest in processing your request.

3.4 Cookie/analysis tools

Our website may use so-called cookies or other technologies/tools such as pixels, tags or external services (hereinafter“cookies” or“analytics tools“). Cookies are text files that are stored in or by the Internet browser on the user’s computer system or mobile device. The cookie contains a characteristic string that uniquely identifies the browser or mobile device when you visit the website or app again.

The purpose of using cookies is, on the one hand, to enable and simplify users’ use of our website. Some functions of the website cannot be offered without the use of cookies (so-called technically necessary cookies). On the other hand, we use cookies/analytics tools to analyze users’ behavior on our website, especially for measuring reach and for marketing purposes.

3.4.1 Technically necessary cookies

Technically necessary cookies are essential for the operation of our website. Therefore, these cookies cannot be disabled in our systems. These cookies usually record important actions, such as the number of requests made, changing privacy settings (for example, when the user gives consent to certain options), or filling out forms. Although you can block these cookies in your browser, some parts of our website may no longer work.

The legal basis for data processing when using technically necessary cookies is our legitimate interest, which is primarily to ensure the functionality and improvement of our website.

3.4.2 Analytical and marketing cookies

Analytical cookies allow us to analyze visitor behavior and traffic sources so that we can measure the performance of our website and improve the user experience. They help us identify the degree of popularity of pages and show us how visitors move within our website. The information collected is aggregated and anonymous.

Marketing cookies allow us to provide relevant advertising to you. These cookies may remember that you have visited our website and share this information with other companies, including other advertisers.

If we use cookies for analytics and marketing purposes, we obtain your consent. Therefore, the processing of data for analysis and marketing purposes is based on your consent. If you provide us with your consent, you can revoke it at any time with effect for the future. However, this does not affect the lawfulness of processing carried out on the basis of your consent before your revocation. You can opt out at any time by changing your cookie settings.

3.4.3 Disabling the cookie via the browser

The user can object to the use of cookies, for example. (i) selecting the appropriate settings in his or her browser or (ii) using appropriate cookie blocking software (e.g., ghostery, etc.).

For more information and support related to managing cookies directly from your browser, you can visit the following pages:

• Microsoft Internet explorer: click the ‘Tools’ icon in the upper right corner and select ‘Internet options’. In the pop-up window, select ‘Privacy. Here the User can change cookie settings:
  
  http://windows.microsoft.com/it-it/internet-explorer/delete-manage-cookies#ie=ie-11-win-7
  
• Google Chrome: Click the “wrench” icon in the upper right corner and select ‘Settings’. Then select ‘Show advanced settings’ and change the privacy settings:
  
  https://support.google.com/accounts/topic/2373959?hl=it&ref_topic=2373957
  
• Mozilla Firefox: From the drop-down menu in the upper left corner, select ‘Options’. In the pop-up window select ‘Privacy’. Here the User can adjust cookie settings:
  
  https://support.mozilla.org/it/kb/Attivare%20e%20disattivare%20i%20cookie#firefox:win7:fx38
  
• Safari: from the drop-down settings menu in the upper right corner, select ‘Preferences’. Select ‘Security’ and here the User can adjust cookie settings:
  
  https://support.apple.com/it-it/HT201265
  

For more information visit: http://www.youronlinechoices.eu/

If you do not know the type and version of the browser you are using, click on “Help” in the browser window above, from which you can access all the information you need.

If you know your browser, click on the browser you are using to access the cookie management page.

3. 5 Google Maps

On our website we may use the Google Maps plug-in from Google Ireland Limited or Google LLC, USA. If you use Google Maps on our website, information about your use of our website (including your IP address) may be transmitted to and stored on a Google server in the United States. We have no knowledge of the precise content of the transmitted data or its use by Google. However, user data is only transmitted to Google if the user activates Google Maps content on our website.

The legal basis for processing your data is Your consent. For more information about the Google Maps privacy policy and terms of use, visit the following link:
https:
//www.google.com/intl/en_de/help/terms_maps.

3.6 Social media plug-ins

On our website we may use the social media plug-ins contained in the following table. For this purpose, we use the so-called two-click solution, which means that when you visit our website, in principle no personal data is disclosed to the plug-in providers. Only from the moment you click on the selected plug-in field and activate it, the provider will be informed that you have visited our website. In addition, the data referred to in Section 3.2 of this privacy policy will be transmitted. The legal basis for processing your data in connection with social media plug-ins is our legitimate interest in enabling our users to use social media plug-ins.

We have no control over the data collected and data processing operations of plug-in providers. These are subject to the respective privacy policies of the third-party providers. More information about the purpose and scope of data collection and processing by plug-in providers can be found in the privacy policies of those providers below.

Plug-in	Provider and privacy information
LinkedIn	LinkedIn Ireland Unlimited Company: https://www.linkedin.com/legal/privacy-policy
Facebook	Meta Platforms Ireland Limited: https://www.facebook.com/about/privacy/update?ref=old_policy

 

3.7 Application

You can apply for a position at Artisa through an online channel, through our careers page, by mail or through the e-mail address provided on our website. Your application documents and all personal data you have provided to us will be treated confidentially, will not be disclosed to third parties and will be processed only for the purpose of processing your application for employment with us. Unless you have given consent to the contrary, your application file will be returned to you after the conclusion of the application process or will be deleted/destroyed, unless it is subject to a legal retention requirement. The legal basis for processing your data is your consent, the performance of the contract with you and our legitimate interests.

5. communication of personal data to recipients and abroad

5.1 Disclosure of personal data to recipients

In addition to data transfers to recipients expressly mentioned in this privacy policy, we may – to the extent permitted – disclose Personal Data to the following categories of recipients:

• Other companies belonging to Artisa;
• Providers to whom we have outsourced certain services (e.g., debt collection service providers, etc.;)
• Service providers, subcontractors and other business partners;
• Banks and insurance companies;
• Tax consultants, auditors, lawyers, notaries;
• Domestic and foreign authorities, agencies, and courts.

5.2 Disclosure of personal data abroad

Your personal data may be processed within Switzerland and the European Union or the European Economic Area (hereinafter referred to as “EU/EEA”), but it may also be processed and transferred to a country outside Switzerland, the EU or the EEA, such as the United States.

If we transfer data to a country that does not have adequate legal data protection, we ensure an adequate level of protection as required by law by using appropriate contracts (in particular on the basis of the European Commission’s so-called model clauses and security measures such as encryption) or rely on the legal exceptions of consent, execution of a contract, conclusion of a contract, exercise or defense of a right in court, overriding public interests, published Personal Data, or because it is necessary to protect the vital interests of the data subject. We would like to point out that data transmitted abroad are no longer protected by Swiss law and that foreign laws and local authorities may require disclosure of such data to authorities and other third parties.