Privacy policy
This privacy notice informs you about how Arcomed AG (Arcomed, also known as we or us) collects and processes personal data in accordance with Swiss and European data protection law. The notice refers in particular to the following situations: You use the website arcomed.com (the Website), you contact us, or you or we otherwise enter into a business relationship.
1. Data controller
The responsible data controller is Arcomed AG, Steinackerstrasse 29, 8302 Kloten, Switzerland. If you have any questions about the processing of personal data, you can contact us at dpo@arcomed.com and +41 (0) 43 388 90 30
2. Categories of personal data
The most important categories of personal data that we process are listed below. The list is not exhaustive.
Master data and communication data: When you contact us by e-mail or contact form, we usually process your e-mail address and name. We may also process other personal data that you provide to us, such as your job title, professional address, telephone number, communication content and any other information relating to your business relationship with us.
Contract data: If you negotiate or conclude a contract with us (e.g. as a customer, business partner or job applicant), we process the corresponding contract data. This includes any type of personal data that arises in connection with the conclusion, execution and enforcement of a contract.
Technical data: When you visit the website, so-called log data is automatically processed and temporarily stored in log files. This includes in particular the IP address of the requesting end device, information about your internet provider as well as the operating system and browser used, the referring URL, the date and time of access as well as the content accessed when visiting the website.
By using our website, you consent to the use of cookies, provided they are accepted in accordance with your browser settings. Most browsers are set by default to accept all cookies. However, you have the option of setting your browser to display cookies before they are stored, to accept or reject only certain cookies or to reject cookies in general. Use of the website is possible even if cookies are rejected.
3. Data sources
When you communicate with us, personal data is transmitted. This includes in particular master data, contract data and communication data. We may also automatically collect personal data about you, e.g. technical data, when you use the website.
4. Editing purposes
We process personal data in order to communicate with you, e.g. to answer enquiries, to contact potential and future business partners and to carry out projects (e.g. research and development, financing). This usually involves master data and communication data.
We also process personal data to initiate and manage contracts. This typically involves master data and contract data.
Technical data is processed to the extent necessary for the operation of the website.
We also process personal data for marketing purposes, e.g. to send you written and electronic communications and offers and to carry out marketing campaigns. For this purpose, we use master data, contract data and communication data.
We may also process personal data of any kind for security purposes (to ensure IT security, to prevent theft, fraud and abuse), to comply with legal obligations and to enforce claims or for our defence in or out of court.
5. Legal basis
Depending on the purpose, our processing of personal data is based on different legal bases. We may process personal data in particular if the processing:
- is necessary for the performance of a contract or for pre-contractual measures;
- is necessary to protect legitimate interests;
- is based on your consent; or
- is required to comply with domestic or foreign law.
6. Disclosure and transfer of personal data
We may share or transfer personal data to other companies when we use their services. As a rule, such service providers act as data processors. They are obliged to process personal data exclusively in accordance with our instructions and to take appropriate data security measures.
We process and store personal data mainly within Switzerland and the European Economic Area (EEA). In certain cases, however, we may transfer personal data to service providers in other countries. In the event that personal data is transferred to a country without an adequate level of data protection, we agree on appropriate safeguards. In particular, we conclude the European Standard Contractual Clauses or similar guarantees where required.
7. Retention period
We process and store your personal data,
- as long as it is necessary for the purpose of the processing, in the case of contracts at least for the duration of the contractual relationship;
- as long as we have a legitimate interest in storing the data, e.g. to enforce or defend against claims, for archiving purposes and to ensure IT security;
- as long as they are subject to a statutory retention obligation.
In certain cases, we ask for your consent if we want to store personal data for a longer period of time (e.g. in the case of applications that we want to keep in suspense). After the above-mentioned periods have expired, we delete or anonymise your personal data.
8. Your rights
You have the right to object to data processing, especially if we process your personal data on the basis of a legitimate interest. You can also object to data processing for marketing purposes (e.g. promotional e-mails) at any time. You can unsubscribe from newsletters and similar e-mails by clicking on the corresponding link at the end of the e-mail.
Subject to the applicable legal provisions, you also have the following rights:
- the right to request information about your personal data stored by us;
- the right to have inaccurate or incomplete personal data corrected;
- the right to request the deletion or anonymisation of your personal data;
- the right to request the restriction of the processing of your personal data;
- the right to receive certain personal data in a structured, commonly used and machine-readable format;
- the right to revoke consent with effect for the future, provided that the processing is based on consent.
You may contact us (as indicated in section 1) if you wish to exercise any of your rights. You are also free to lodge a complaint with a competent supervisory authority. This is primarily the data protection authority in your country of residence.
9. Changes to this privacy policy
This privacy policy may be amended over time, in particular if we change our data processing practices or if applicable data protection laws change. We will notify individuals whose contact details are registered with us of any material changes. In principle, the data protection notice in the version valid at the time of the start of processing applies in each case.
February 2023