Skip to Content

Privacy Policy

Privacy Policy
of T-ArtSoft GmbH

Version of 08.02.2025

In this privacy policy, we, T-ArtSoft GmbH, explain how we collect and otherwise process personal data. This is not a comprehensive description; other privacy policies [or general terms and conditions, participation terms, and similar documents] may regulate specific matters. Personal data refers to all information that relates to an identified or identifiable person.

If you provide us with personal data of other individuals (e.g. family members, data from colleagues), please ensure that these individuals are aware of this privacy policy and only share their personal data with us if you are permitted to do so and if this personal data is accurate.

This privacy policy is designed to meet the requirements of the EU General Data Protection Regulation ("GDPR"), the Swiss Data Protection Act ("DPA"), and the revised Swiss Data Protection Act ("revDPA"). However, whether and to what extent these laws are applicable depends on the individual case.

  1. Responsible / Data Protection Officer / Representative
    The entity responsible for the data processing described here is T-ArtSoft GmbH. If you have any data protection concerns, you can communicate them to us at the following contact address:
    T-ArtSoft GmbH
    Lussistrasse 15
    8536 Hüttwilen
    Switzerland
    Email: info@t-artsoft.com

  2. Collection and Processing of Personal Data
    We primarily process the personal data that we receive from our customers and other business partners, as well as from other involved parties, in the context of our business relationship, or that we collect from users while operating our websites, apps, and other applications.
    Where permitted, we also obtain certain data from publicly accessible sources (e.g. debt collection registers, land registers, commercial registers, press, internet) or receive such data from other companies within T-ArtSoft GmbH, from authorities, and other third parties. In addition to the data you provide us directly, the categories of personal data we receive from third parties about you include, in particular, information from public registers, information we learn in connection with administrative and judicial proceedings, information related to your professional roles and activities (so that we can, for example, conduct business with your employer with your assistance), information about you in correspondence and meetings with third parties, credit information (to the extent we conduct business with you personally), information about you provided to us by individuals in your environment (family, advisors, legal representatives, etc.) so that we can conclude or execute contracts with you or involving you (e.g. references, your delivery address, powers of attorney, information regarding compliance with legal requirements such as anti-money laundering and export restrictions, information from banks, insurance companies, sales and other contractual partners regarding the use or provision of services by you (e.g. payments made, purchases made), information from media and the internet about you (where relevant in the specific case, e.g. in the context of an application, press review, marketing/sales, etc.), your addresses and possibly interests and other sociodemographic data (for marketing), data related to the use of the website (e.g. IP address, MAC address of the smartphone or computer, information about your device and settings, cookies, date and time of visit, pages and content accessed, functions used, referring website, location data).

  3. Purposes of Data Processing and Legal Bases
    We primarily use the personal data we collect to conclude and execute our contracts with our customers and business partners, particularly in the context of collaborating with our customers and purchasing products and services from our suppliers and subcontractors, as well as to fulfil our legal obligations both domestically and abroad. If you are acting on behalf of such a customer or business partner, you may also be affected in this capacity with your personal data.
    Furthermore, we process personal data about you and other individuals, as far as permitted and deemed appropriate, for the following purposes, in which we (and sometimes third parties) have a legitimate interest corresponding to the purpose:
    • Provision and further development of our offerings, services, and websites, apps, and other platforms on which we are present;
    • Communication with third parties and handling their inquiries (e.g. applications, media inquiries);
    • Examination and optimisation of methods for needs analysis for the purpose of direct customer engagement, as well as the collection of personal data from publicly accessible sources for the purpose of customer acquisition;
    • Advertising and marketing (including the organisation of events), insofar as you have not objected to the use of your data (if we send you advertising as an existing customer, you can object to this at any time, and we will then place you on a suppression list against further advertising communications);
    • Market and opinion research, media monitoring;
    • Assertion of legal claims and defence in connection with legal disputes and administrative proceedings;
    • Prevention and investigation of criminal offences and other misconduct (e.g. conducting internal investigations, data analyses for fraud prevention);
    • Warranties of our operations, particularly in IT, our websites, apps, and other platforms;
    • Video surveillance to uphold the right of residence and other measures for IT, building and asset security, as well as the protection of our employees and other individuals, and our owned or entrusted assets (such as access controls, visitor lists, network and email scanners, telephone recordings);
    • Purchase and sale of business areas, companies or parts of companies and other corporate legal transactions, and in connection with this, the transfer of personal data as well as measures for business management and to the extent necessary for compliance with legal and regulatory obligations as well as internal regulations of T-ArtSoft GmbH.
    As far as you have given us consent to process your personal data for specific purposes (for example, when you sign up to receive newsletters or undergo a background check), we will process your personal data within the scope of and based on this consent, unless we have another legal basis and require one. Consent given can be revoked at any time, although this will not affect any data processing that has already taken place.

  4. Cookies / Tracking and other technologies related to the use of our website​
    We use Matomo to analyse user behaviour on our website. The analysis is carried out without the use of cookies, unless you have consented to this. All data is processed anonymously and stored on our own servers.
    Additionally, we use Cloudflare Turnstile, provided by Cloudflare, Inc. (101 Townsend St, San Francisco, CA 94107, USA), to protect our website from spam and automated access. Cloudflare Turnstile analyses various technical information, including your IP address, browser and device characteristics, as well as your usage behaviour (e.g. mouse movements or scrolling behaviour). This processing is based on our legitimate interest (Art. 6 para. 1 lit. f GDPR) in protecting our website from spam and abusive use.
    Cloudflare stores and processes this data on servers worldwide, including in the USA. The transfer is based on the Standard Contractual Clauses of the European Commission to ensure an adequate level of data protection. For more information on data processing by Cloudflare, please refer to Cloudflare's privacy policy: https://www.cloudflare.com/privacypolicy/

    https://www.cloudflare.com/privacypolicy/

  5. Data sharing and data transmission abroad
    In the context of our business activities and the purposes according to Section 3, as far as permitted and deemed appropriate, we also disclose data to third parties, whether because they process it on our behalf or because they wish to use it for their own purposes. This particularly concerns the following entities:
    • Service providers of ours (within T-ArtSoft GmbH as well as externally, such as banks, insurance companies), including contractors (such as IT providers);
    • Traders, suppliers, subcontractors and other business partners;
    • Customers;
    • domestic and foreign authorities, offices or courts;
    • Media;
    • Public, including visitors to websites and social media;
    • Competitors, industry organisations, associations, organisations and other bodies;
    • Acquirers or interested parties in the acquisition of business areas, companies or other parts of T-ArtSoft GmbH;
    • other parties in possible or actual legal proceedings;
    • Other companies of T-ArtSoft GmbH;
    all common recipients. These recipients are partly domestic but can be located anywhere in the world. You must particularly expect the transmission of your data to all countries where T-ArtSoft GmbH is represented by group companies, branches, or other offices, as well as to other countries in Europe and the USA, where the service providers we use are located (such as Cloudflare, Microsoft, HETZNER, CONTABO, netcup).
    If a recipient is in a country without adequate legal data protection, we contractually oblige the recipient to comply with the applicable data protection (for this, we use the revised standard contractual clauses of the European Commission, which are here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj? are accessible), provided that it is not already subject to a legally recognised framework for ensuring data protection and we cannot rely on an exception provision. An exception may apply in particular in legal proceedings abroad, but also in cases of overriding public interest or when a contract execution requires such disclosure, if you have consented or if it concerns data made publicly available by you, the processing of which you have not objected to.

  6. Duration of the retention of personal data
    We process and store your personal data as long as it is necessary for the fulfilment of our contractual and legal obligations or otherwise for the purposes pursued by the processing, i.e. for example for the duration of the entire business relationship (from initiation, processing to the termination of a contract) and beyond in accordance with the statutory retention and documentation obligations. It is possible that personal data may be retained for the period during which claims can be made against our company and as far as we are otherwise legally obliged to do so or legitimate business interests require it (e.g. for evidential and documentation purposes). Once your personal data is no longer required for the aforementioned purposes, it will generally be deleted or anonymised as far as possible. For operational data (e.g. system logs, logs), generally shorter retention periods of twelve months or less apply.

  7. Data Security
    We take appropriate technical and organisational security measures to protect your personal data from unauthorised access and misuse, such as the issuance of instructions, training, IT and network security solutions, access controls and restrictions, encryption of data carriers and transmissions, pseudonymisation, and controls..

  8. Obligation to Provide Personal Data
    As part of our business relationship, you must provide the personal data that is necessary for the establishment and execution of a business relationship and for the fulfilment of the associated contractual obligations (you generally do not have a legal obligation to provide us with data). Without this data, we will generally not be able to enter into a contract with you (or the entity or person you represent) or to process it. The website also cannot be used if certain information necessary for ensuring data traffic (such as IP address) is not disclosed..

  9. Rights of the Data Subject
    You have the right to access, rectification, erasure, the right to restrict processing of your data, and the right to object to our data processing under the applicable data protection law (such as in the case of the GDPR), as far as provided therein, particularly regarding direct marketing purposes, profiling conducted for direct advertising, and other legitimate interests in processing, as well as the right to request the transfer of certain personal data to another entity (so-called data portability). Please note that we reserve the right to assert the legally provided limitations, for example, if we are obliged to retain or process certain data, have a legitimate interest in doing so (as far as we are allowed to invoke this), or need them for the assertion of claims. If any costs are incurred for you, we will inform you in advance. We have already informed you about the possibility of withdrawing your consent in Section 3. Please be aware that exercising these rights may conflict with contractual agreements and may have consequences such as early termination of the contract or cost implications. In such cases, we will inform you in advance where this is not already contractually regulated.
    The exercise of such rights generally requires you to clearly prove your identity (e.g., by providing a copy of your ID if your identity is not otherwise clear or verifiable). To assert your rights, you can contact us at the address provided in Section 1.
    Every data subject also has the right to enforce their claims in court or to file a complaint with the competent data protection authority. The competent data protection authority in Switzerland is the Federal Data Protection and Information Commissioner. (http://www.edoeb.admin.ch).

  10. Changes
    We may amend this privacy policy at any time without prior notice. The current version published on our website shall apply. If the privacy policy is part of an agreement with you, we will inform you of any updates regarding the changes via email or other suitable means..