Privacy policy

1. General information
2. Person responsible
3. Information on data processing
4. Individual data processing operations

The privacy policy explains how and for what purpose we collect, process and use personal data. We regularly make modifications to further strengthen the protection of our customers' personal data. The security of your personal data is very important to us.

1. general information

The controller operates the website bedrock.rush.surf (hereinafter referred to as "we"). On this website, you can obtain information about our organization, use our online services and contact us.

The privacy policy published on this website at the time of use applies to the use of the website. In the case of an ongoing contractual relationship between us, a separate order data processing agreement may apply as a matter of priority. If you wish to enter into special contractual agreements with us regarding data protection in relation to the products and services we offer, please contact us separately at the address given in point 2 below.

In this privacy policy, we inform you in a transparent and comprehensible manner about which personal data we process on this website and in the initiation or execution of an ongoing contract with you and how we handle it.

2. responsible person

Responsible for data processing is:

VIRIdiVITA GmbH
Linthstrasse 42
8856 Tuggen
Phone: +41 55 465 65 46
E-Mail: info@viridivita.ch

If you have any questions or concerns about data protection, you can contact us at any time at this address.

3. information on data processing

3.1 What data we collect and process

We mainly process personal data that you provide to us (e.g. via a contact form or concerning a contractual relationship) or that we collect in the course of operating our website. For details on the technical collection and use of data by cookies, analysis tools and third-party plug-ins, please refer to the description under point 4 below. We may also receive personal data about you from third parties.

Data processing may concern the following categories:

• Personal master data (e.g. name, address, date of birth, etc.);
• Contact details, including any details of a customer, contractual partner or employer (e.g. e-mail address, telephone number, etc.);
• Financial data (e.g. account details, payment details, etc.);
• Orders concerning you that we receive from third parties (e.g. if we are to deliver something to you or do something for you)
• Documents relating to you, powers of attorney, extracts from state registers (e.g. HR), creditworthiness information, references, recommendations/references to you from third parties
• Your social media/online activities, any image and sound recordings or publications in which you appear
• Automatically/technically collected data, such as online identification (e.g. cookies, IP addresses, device identification numbers) - see details in point 4 Individual data processing operations

3.2 Principles for the processing of your personal data

We process your data in accordance with the legal requirements for the purposes set out in this privacy policy or in accordance with our contractual agreements. In doing so, we ensure transparent and proportionate processing.

3.3 Purposes of the processing

We use your data exclusively for the purposes described in this privacy policy or contractually agreed purposes, namely to market and provide products or services, to process your inquiries, for communication and in connection with a contractual relationship. Some of the data is collected to ensure that the website is provided without errors. The data created when using the website can also be used to analyse your user behaviour in order to continuously improve and personalize our offer and the user experience.

Details on the technical collection, storage and use of data through services used, cookies, analysis tools and plug-ins from third-party providers under point 4.

3.4 Disclosure to third parties

In some cases, we use the services of affiliated companies, business partners or other third parties who process your data partly on our behalf (e.g. for delivery, payment processing and accounting, or service providers/IT providers, see details in point 4 Individual data processing operations) and partly on their own responsibility (e.g. banks, tax offices and insurance companies). We contractually ensure that these commissioned third parties, business partners and affiliated companies comply with the applicable data protection requirements. In some cases, we are also obliged to pass on your data to authorities, offices, financial institutions, insurance companies and credit agencies.

3.5 Data processing in Switzerland and abroad

We work with providers in Switzerland and abroad to provide our services and thus to process your personal data. The global offering enables us to use the best possible and most reliable services. Other countries may have different data protection standards compared to Switzerland. In this case, we agree contractual measures with our service providers to ensure an appropriate level of data protection (e.g. the EU standard contractual clauses approved by the EDOEB or other appropriate measures).

The individual data processing procedures are described in detail in point 4 below.

3.6 How long we store your data

We only store personal data to the extent and for as long as is necessary to fulfill the respective purposes for which the data was collected, for which we are legally obliged to store it or in which we have a legitimate overriding interest.

3.7 How we protect your data

We will store your data securely and take appropriate technical and organizational measures to protect your data from loss, access, misuse or alteration. However, we would like to point out that data transmission over the Internet (as well as communication by e-mail) may be subject to security vulnerabilities. Complete protection of data against access by third parties is unfortunately not possible.

Our contractual partners and employees with access to your data are obliged to comply with data protection regulations. Your data will also be treated confidentially in these cases. Data that you enter on this website (e.g. orders or inquiries) is transmitted in encrypted form (SSL or TLS encryption).

3.8 Your rights in relation to your data

You have the right to receive information about the personal data we process about you at any time. You have the right to correct your personal data and, if necessary, to object to the processing or deletion of your personal data.

If our processing is based on your consent, you also have the right to withdraw your consent to the processing of your data at any time in the future. Where the GDPR is applicable and we are processing for the performance of a contract or based on your consent, you also have the right to receive a copy of the personal data for transfer to a third party.

Please note that exceptions or restrictions apply to these rights. In particular, we may need to continue to process and store your personal data in order to fulfill a contract with you, to protect our own legitimate interests such as the assertion, exercise or defense of legal claims, or to comply with legal obligations. To the extent permitted by law, in particular to protect the rights and freedoms of other data subjects and to protect our legitimate interests (e.g. confidentiality and security interests as well as the consideration of our operational resources and possibilities), we may therefore also reject your data protection-related requests, e.g. requests for information and deletion, or only comply with them to a limited extent.

In any case, you also have the right to lodge a complaint with the competent Swiss supervisory authority at any time: http://www.edoeb.admin.ch.

4. individual data processing operations

4.1 When visiting our website

When you visit this website, certain data is automatically stored on our servers or on servers of services and products that we use and/or have installed. This is done for the purposes of system administration, for statistical or backup purposes or for tracking purposes.

4.1.1 Hosting: What information is collected automatically?

Our hosting partner automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are

• Referrer URL (referring website from which you visit URL);
• Name of your internet service provider;
• Your IP address;
• Information about the device, operating system and browser used to access a URL;
• the date and time of access;
• Keywords (search terms entered) that led to a click on our website.

This data cannot be assigned to a specific person and is not merged with other data sources. The log files are stored to ensure the functionality and security of the website and the server infrastructure. This is our legitimate interest.

You will find a link to the data protection provisions of our hosting partner under point 4.5.

4.1.2 Website services from external servers: What information is collected automatically?

On our website, we use technologies, functions and content that are integrated and provided directly by the servers of external providers (e.g. a digital map, fonts, ReCaptcha, videos or image CDN). If you access this content via our website, the providers will be informed that our website has been accessed via your IP address.

The use of these services is in the interest of a uniform, appealing and user-friendly presentation of our online offers as well as technical optimization.

4.1.3 Website Analytics: What information is collected automatically?

We use analysis services to evaluate the use of our website and to obtain information for the purpose of optimizing our offer. The analysis services use cookies to evaluate your use of the website, to create reports on the activities of users on the website and to provide us with other services associated with the use of the website and applications. We have a legitimate interest in this.

The providers of the web analysis services only store the information collected via cookies in anonymized form and process it in aggregated form. This does not apply to agreements that you have made directly with external advertising providers, e.g. if you have an account with such an advertising provider (e.g. a Google account) and have consented to ad personalization there by linking visitor data to your account.

Further information
Analysis services used: Point 4.5
Cookies on this website: Point 4.6

4.2 Communication

4.2.1 E-mail: What data we collect and process

If you communicate with us by e-mail, the following data will be collected and processed:

• E-mail address;
• Content, subject, attachments, date and time of your e-mail;
• Information about the sender (e.g. name, telephone number, address, IP of the mail server).

Your data will be stored for the purpose of processing the request and any follow-up questions. Pre-contractual measures or our legitimate interests in processing the request serve as justification.

External service providers / IT providers involved can be found under 4.5.

4.2.2 Contact form / website chat: What data we collect and process

If you contact us via the contact form, the following data will be collected and processed:

• E-mail address;
• Specified contact details (e.g. name, telephone number, address);
• Contents (completed fields), uploaded files if applicable;
• Date, time, IP address if applicable.

External service providers / IT providers involved can be found under 4.5.

Your data will be stored for the purpose of processing the request and any follow-up questions. Pre-contractual measures or our legitimate interests in processing the request serve as justification.

4.2.3 Communication via external platforms

We are present on social media platforms and other online platforms in order to communicate with interested parties and provide information about our activities and operations.

If you transmit data to us via external platforms, such as social media, or communication apps, such as WhatsApp, or interact with our content, the General Terms and Conditions (GTC), terms of use, data protection declarations and other provisions of the respective providers and operators of the respective platforms primarily apply. In particular, these provisions provide information about the rights of data subjects directly vis-à-vis the respective platform, including, for example, the right to information.

For organizational reasons, communication via such platforms may involve other external service providers / IT providers or be merged via them (see 4.5).

4.2.4 E-mail marketing

If you send us your personal data yourself for the purpose of automated e-mails (e.g. newsletters or user journeys), we will process your data until you withdraw your consent or until the purpose of the processing has been fulfilled and there are no other legal grounds for continuing to store it. You will find a link to unsubscribe from automated e-mails at the end of each of these e-mails.

Wherever possible, we use the "double opt-in" procedure to obtain consent, i.e. you will receive an e-mail with a web link that you must click on to confirm. We may log such consents, including the Internet Protocol (IP) address, date and time, for reasons of proof and security.

To measure success and reach, we record which of these emails are opened and which web links are clicked on. We have a legitimate interest in measuring success and optimizing our marketing content.

External service providers / IT providers involved can be found under 4.5.

4.3 Organization and order fulfillment

We use web-based applications for order fulfilment and organization to process inquiries and in contractual relationships. This means that some of your data is stored on the servers of the providers of these applications. Your data is processed exclusively by us or on our behalf.

• Management of customer data
• Accounting
• Project management
• Saving data (images, texts, tables, etc.)

4.4 Marketing and tracking

4.4.1 Targeting

If possible, we only want to show our offer to people who might be interested in it. To do this, we use the targeting options offered by companies such as Google, Meta and Microsoft. For example, Instagram users are shown suitable advertising according to their personal profile with the Meta Group. This form of targeting is only possible in groups; specific individuals cannot be addressed. You can deactivate personalized advertising in your profile settings on the respective platform. The data protection and terms of use of the respective website or platform primarily apply.

4.4.2 When you interact with our ads

If you interact with our advertisements on other websites or platforms, we receive anonymized information in aggregated form for statistical evaluation of the success of our advertising measures. If necessary, the operators of the platforms allow us to create our own target groups for marketing purposes based on such interactions (with our content). We can then display targeted, paid content to these so-called custom audiences via the respective platform.

The members of such custom audiences are not visible to us and statistical data cannot be assigned by us to specific persons, provided that no type of communication (e.g. through messages, comments or likes) takes place. The data protection and usage provisions of the respective website or platform primarily apply.

4.4.3 When you click on our ads

If you click on an advertisement and reach our website as a result, certain data from the platform, such as information about the campaign, advertisement or name of the custom audience, can be assigned to your visit to our website.

This data is merged anonymously with the analysis data in accordance with 4.1.3 and evaluated in aggregated form.

4.4.4 Tracking by external advertising providers on this website

In order to assess the success of an advertising campaign, it is crucial to classify certain behavior or events as a success. This form of tracking is carried out using cookies and/or tracking pixels (also known as web beacons). External advertising providers receive data about your visit to our website. This includes your IP address, information about your browser and device as well as information about your individual surfing and reading behavior on our website. If you have a profile on these platforms, such information may be assigned to it. Further information can be found in the privacy policy of the respective provider.

The advertising providers with whom we share this data can be found under 4.5.

This measure will only be carried out if you have consented to our marketing measures. You can revoke this consent at any time in our Consent Manager. You can find more information on this under 4.6 Cookies.

4.5 Service provider / IT provider

We use the following service providers / IT providers / sub-processors:

4.6 Cookies

What are cookies and how do they work?
Our website uses cookies. Cookies are files that are stored in your browser when you visit a website. Such data need not be limited to classic cookies in text form. These may be cookies with our domain (first-party cookies) or cookies from third parties (third-party cookies) whose services we use.

What information do we collect and how do we use it?
Temporary cookies (so-called session cookies) are automatically deleted when the browser is closed. Permanent cookies are stored for a specific period of time. Such cookies make it possible to recognize a browser when it is visited again. Such cookies can be used to save settings, for analysis purposes and for online marketing.

How you can prevent cookies
Cookies can be completely or partially deactivated and deleted at any time in the browser settings. Deactivating cookies may lead to a visual or functional impairment of our website.

Further information on the cookies we use can be found in the cookie statement.