1. General information
Data protection is an important concern for us. Therefore, we process your personal data ("personal data") with great care and in accordance with the applicable legal requirements. Castle Private Equity AG, Schützenstrasse 6, 8808 Pfäffikon, Switzerland processes your personal data for different purposes and informs transparently about this data processing. Personal data" means any information that can be associated with an identified or identifiable natural person. The term "processing" includes any handling of personal data, e.g. obtaining, disclosing, storing, deleting, etc.
Please read the entire privacy policy carefully. This will tell you how and why we process your personal data and what rights you have in connection with this data processing.
This privacy policy is based on the Swiss Data Protection Act (DSG). It is also based on the European General Data Protection Regulation (GDPR). It depends on the individual case to what extent the GDPR is applicable at all.
To whom and when does this privacy policy apply?
SSL or TLS encryption
When you enter your data on websites, place online orders or send e-mails over the Internet, you must always be prepared for unauthorized third parties to access your data. There is no complete protection against such access. However, we do our utmost to protect your data as best we can and to close security gaps as far as we can.
An important protection mechanism is the SSL or TLS encryption of our website, which ensures that data you transmit to us cannot be read by third parties. You can recognize the encryption by the lock icon in front of the Internet address entered in your browser and by the fact that our Internet address begins with https:// and not with http://.
Google reCAPTCHA
This website uses "Google reCAPTCHA" (hereinafter "reCAPTCHA"). The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter "Google". The purpose of reCAPTCHA is to verify whether data entry on our websites (e.g. in a contact form) is made by a human or by an automated program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent by the website visitor on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google. The reCAPTCHA analyses run entirely in the background. Website visitors are not made aware that an analysis is taking place. The data processing is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in protecting its web offers from abusive automated spying and from SPAM. For more information on Google reCAPTCHA and Google's privacy policy, please see the following links: https://www.google.com/intl/de/policies/privacy/ and https://policies.google.com/terms?hl=de.
Google Maps
This website uses the offer of Google Maps. This allows us to display interactive maps directly on the website and enables you to comfortably use the map function. By visiting the website, Google receives the information that you have accessed the corresponding subpage of our website. This occurs regardless of whether Google provides a user account through which you are logged in or whether there is no user account. If you are logged in to Google, your data will be directly assigned to your account. If you do not want the assignment with your profile at Google, you must log out before activating the button. Google stores your data as usage profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right. For more information on the purpose and scope of data collection and processing by Google, as well as further information on your rights in this regard and settings options for protecting your privacy, please visit: www.google.de/intl/de/policies/privacy.
Google Webfonts
This website uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly. If your browser does not support web fonts, a standard font is used by your computer.
You can find more information on Google Web Fonts at https://developers.google.com/fonts/faq and in Google's privacy policy: https://www.google.com/policies/privacy/
2. Responsibility
The company responsible for the processing of personal data is the company that specifies the purpose for which and the means by which the processing is to be carried out. For the data processing according to this privacy policy, the following company or person is the "responsible party" in the sense of the Data Protection Act, i.e. the body responsible for data protection, unless otherwise communicated in the specific individual case (identity):
Castle Private Equity AG Schützenstrasse 6 8808 Pfäffikon Switzerland.
If you have any concerns or questions regarding data protection, you can contact us at the following address:
dse@castlepe.com
3. Personal data to be processed
We also process different categories of personal data in view of the different purposes. In the case of contractual partners that are companies, we process less personal data - here we process in particular data of contact persons of the companies (e.g. name, e-mail address, function in the company, communication data). You provide us with much of the following personal data yourself. However, as a rule you are not obliged to do so. If you disclose data about other persons to us, we assume that you are authorized to do so and that this data is also correct. You automatically confirm this when you provide us with data about these third parties. Please ensure that the third parties concerned have been made aware of this data protection declaration.
3.1 Basic data and contact information
Basic data and contact information relate directly to your person and characteristics (for example, to contact you). For example, we process the following basic data:
We obtain this master data directly from you. However, under certain conditions, we may also obtain personal data from third parties, such as our contractual partners, associations and address dealers, and from publicly available sources such as the Internet.
3.2 Contract data
Contract data is information that accrues in connection with the execution of the contract. We process the following data:
3.3 Application data
Application data is data that is generated in connection with your application to us, e.g. the following data:
3.4 Communication data
Communication data is data that arises in connection with communication with you, e.g. this is the follow
3.5 Location data and technical data
When you visit our website, technical data is collected. This includes, for example, the following data:
3.6 Other possible data
Depending on necessity, we may then also process the following additional data:
4. purposes of our data processin
We process personal data from you, to the extent permitted, for different purposes in which we have a legitimate interest corresponding to the purpose:
5. Online advertising technique
On our website, we use online advertising techniques such as cookies. We use them to measure the user experience and the success of the website and online advertising campaigns.
5.1 What are online advertising techniques such as cookies?
If we track you, we can distinguish your accesses from accesses by other users so that we can ensure the functionality of the website and carry out statistical evaluations. Each time you access a page, you are recognized as an individual visitor and can thus be distinguished from other persons, for example by the server assigning a unique identification number to your browser (this is then referred to as a "cookie"). Cookies are automatically stored on your terminal device when you visit our website. We use cookies, for example, to save settings between your visits to the website or to collect statistical, technical data.
5.2 Which cookies or online advertising techniques do we use?
We use analytics services so that we can optimize our website. In the following, we explain by way of example how our most important analytics service providers work. Other third-party providers of corresponding tools usually process personal data in a similar way.
6. Data disclosure to other companies and further recipients
We disclose your personal data to service providers. This applies in particular to IT service providers, but may - where necessary - involve analysis service providers, debt collection service providers, credit reporting agencies, marketing service providers, etc. Insofar as these service providers process personal data as order processors, they are obliged to process personal data exclusively in accordance with our instructions and to take data security measures. Data may then also be disclosed to other recipients, e.g. to courts and authorities in the context of legal proceedings.In individual cases, it is possible that we may also disclose personal data to other third parties for their own purposes, e.g. if you have given us your consent to do so or if we are legally obliged or entitled to disclose it.
7. Duration of data processing
We store and process your personal data for as long as it is necessary for the purpose of the processing (in the case of data relating to contracts, this is usually for the duration of the contractual relationship), for as long as we have a legitimate interest in storing the data (e.g. in order to enforce legal claims, or to ensure IT security) and for as long as data is subject to a statutory retention obligation (for certain data, for example, there is a ten-year retention period that we must comply with). We destroy or anonymize your personal data after the storage or processing period has expired, provided that no legal or contractual obligations prohibit this.
8. Legal basis according to the GDPR for the data processing.
As the case may be, data processing is only permitted if the applicable law specifically allows it. This does not apply under Swiss data protection law, but it does apply under the European GDPR to the extent that it applies. In this case, we base the processing of your personal data on the following legal bases:
9.Data subject rights
You have certain rights under applicable data protection law so that you can obtain further information about and act on our data processing. These are in particular the following rights:
If you assert your data subject rights, we must verify your identity (this is done, for example, by providing a copy of your ID). The listed data subject rights are then subject to legal requirements and restrictions. This means that the exercise of rights is not always possible in full. For example, we still need to process your personal data in order to fulfill an order with you, to protect our own interests worthy of protection or to meet legal obligations. Insofar as it is legally permissible (e.g. to protect the privacy of third parties as well as to protect our own interests worthy of protection, such as the existence of business secrets), we may restrict or refuse to allow you to exercise your rights. It should also be mentioned that you also have the option of taking your concerns to the competent data protection authority.
10. Status of the privacy policy
This Privacy Policy is up to date and dated 08/31/2023.