This privacy policy explains how we process personal data in connection with our website www.muessig.ch and other online services.
Differing or additional privacy policies may apply for certain products and services. Other legal documents such as Terms & Conditions (T&C), Conditions of Use or Conditions of Participation may also apply.
Our online content is subject to Swiss data protection law and all applicable foreign data protection law, in particular, EU law and the General Data Protection Regulation (GDPR). The EU acknowledges that Swiss data protection law ensures an adequate level of data protection.
Responsible for our online content:
Müssig AG
Buchenhölzlistrasse 8
8580 Amriswil
Müssig’s data protection officer is available as a contact for data subjects and supervisory authorities for queries relating to data protection:
Moritz Müssig
Müssig AG
Buchenhölzlistrasse 8
8580 Amriswil
Personal data means any information relating to an identified or identifiable person. A data subject is a person whose personal data is processed. Processing means any use of personal data, regardless of the means and procedures used, and in particular storing, disclosure, collection, recording, deleting, saving, changing, erasing
We process personal data in accordance with Swiss data protection law, in particular the Swiss Federal Act on Data Protection (DSG) and the Swiss Ordinance to the Federal Act on Data Protection (VDSG).
To the extent that the General Data Protection Regulation (GDPR) applies, we process personal data in accordance with at least one of the following legal bases:
We process the personal data necessary to providing our online services at all times in a user-friendly, secure and reliable form. This personal data may fall into the categories of inventory and contact data, content data, metadata or peripheral data, usage data, location data, contract data or payment data.
We process the personal data for the duration that this is necessary for the purpose(s) or required by law. Personal data that no longer needs to be processed is anonymised or deleted.
We only process personal data subject to consent from the data subject, unless the processing is permissible on other legal grounds, for example for the performance of a contract with the data subject and in order to take steps before entering into a contract, in order to protect our predominant legitimate interests, or when the processing can be understood from the situation or prior information.
In this context, we process data provided freely and independently by the data subject when they establish contact – e.g. by letter, email, through our contact form, social media, or by telephone – or register for a user account. We may, for example, store this data in address book or similar tool. If you provide personal data to us via third parties, you undertake to ensure the data protection in relation to these third parties and for the correctness of the data you provide.
We furthermore process personal data that we receive from third parties, obtain from publicly accessible sources or collect through our online services, provided this is permitted by law.
We may commission third parties, e.g. project managers, to process personal data; we may process the data jointly with third parties or with the aid of third parties, and we may disclose the data to third parties. These third parties are typically providers who services we use. We continue to ensure an adequate level of data protection for all data we submit to third parties.
In general, these third parties will be located in Switzerland or the European Economic Area (EEA), which includes the European Union (EU) and the Principality of Liechtenstein. However, some third parties may be located in other countries, providing their data protection law ensures an adequate level of data protection according to the assessment of the Federal Data Protection and Information Commissioner (EDÖB) and, if and to the extent that the General Data Protection Regulation (GDPR) applies, the assessment of the European Commission, or when an adequate level of data protection is ensured on another basis, e.g. a suitable contractual agreement, in particular on the basis of standard contractual clauses, or through appropriate certification. If the third party is located in the United States of America (USA), an adequate level of data protection can be guaranteed through Privacy Shield certification. In exceptional cases, a third party may be located in a country without an adequate level of data protection, providing the requirements of data protection law have been met, e.g., express consent from the data protection.
Data subjects whose personal data we process have certain rights according to Swiss data protection law. These include the right of access and the right to rectification, erasure or blocking of the personal data that has been processed.
Data subjects whose personal data we process may, if and to the extent that the General Data Protection Regulation (GDPR) applies, request (at no cost) a confirmation of whether we are processing their personal data, and if so, they have the right to information about how their personal data is processed, to restrict the processing of their personal data, to assert their right to data portability and to rectification, erasure (“Right to be forgotten”), blocking or completion of their personal data.
If and to the extent that the General Data Protection Regulation (GDPR) applies, data subjects whose personal data we process may at any time withdraw their consent with immediate effect or object to the processing of their personal data.
Data subjects whose personal data we process have the right to lodge a complaint with a supervisory authority. The supervisory authority for data protection in Switzerland is the Federal Data Protection and Information Commissioner (EDÖB).
We take adequate and appropriate technical and organisational measures to ensure data protection and in particular data security. Despite these measures, there is always a risk of security holes when data is processed via the Internet. This means that we are not able to guarantee absolute security of your data.
Access to our online services is provided with transport encryption (SSL/TLS with HTTPS).
Access to our online services is, like any Internet use, subject to mass surveillance – with no requirement for grounds or reason for suspicion – and surveillance by security authorities in Switzerland, the European Union (EU), the United States of America (USA) and other countries. We cannot exert any direct influence on data processing in connection with this surveillance by intelligence services, police departments and other security services.
We may use cookies on our website including cookies from third parties whose services we use (third-party cookies). Cookies are small pieces of text data stored by your browser. Cookies cannot execute programs or transmit malware such as Trojans or viruses.
When you visit our website, your web browser may store our cookies temporarily as “session cookies” or for a longer period as “permanent cookies”. Session cookies are automatically deleted when you close your browser. Permanent cookies are able to recognise your browser when you return to our website. One use for this is to help us analyse the reach of our website. Permanent cookies may also be used for online marketing.
You can disable some or all cookies, or delete your cookies, through your browser settings at any time. However, if you disable cookies, not all of our online functionality will be available. We request your consent for the use of cookies where necessary.
A general opt-out is available for numerous services that use cookies for performance measurement, reach analysis and advertising. You can opt-out from these via the Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance) or Your Online Choices (European Interactive Digital Advertising Alliance, EDAA).
We may record the following information about accesses to our website, providing your browser sends the information to our servers or our webserver is able to determine it: date and time/timezone; Internet Protocol (IP) address; access status (HTTP status code); operating system including user interface and version; browser including language and version; page on our website accessed and volume of data transmitted; previous website accessed by this browser window (referrer).
We save this information, which may include personal data, in our server log files. This information is necessary for us to provide our online services at all times in a user-friendly and reliable form and to ensure security and therefore protection of personal data – including by or with the help of third parties.
We may use tracking pixels (sometimes also called “web beacons”) on our website. These are small images which are requested when our website is visited. Tracking pixels may log the same data as we record in our server log files.
We use third-party services in order to ensure we can provide our online services at all times in a user-friendly, secure and reliable form. We also use these services to embed content in our online services. These third-party services (e.g. hosting and storage services, video services and payment services) require your Internet Protocol (IP) address, since they cannot otherwise send the necessary content. These services may be located outside Switzerland and the European Economic Area (EEA), which includes the European Union (EU) and the Principality of Liechtenstein, providing it is possible to ensure an adequate level of data protection.
Third parties who services we use may process data stored in relation to our online services or aggregated, anonymised or pseudonymised from other sources (e.g. cookies, log files and tracking pixels) for their own security, analytical or technical purposes. This data will not be used to directly identify data subjects in connection with our online services.
6.1.1 Instagram
We make use on our website of the ability to embed functionality and content from Instagram. For example, we may display images published on Instagram within our website. Cookies are used as part of this functionality.
Instagram is provided by Facebook Ireland Ltd in Ireland, otherwise by the American provider Facebook Inc. If you are logged in to Instagram or other Facebook services, Facebook can link your activity on our website to your profile. You can find more information about the type, extent and purpose of the data processing in Instagram’s data policy.
6.1.2 LinkedIn
We make use on our website of the ability to embed functionality and content via plugins from LinkedIn. For example, we can provide LinkedIn’s “Share” function on our website. Cookies are used as part of this functionality. You can find more information on LinkedIn’s plugins page.
These plugins are provided by the unlimited company LinkedIn Ireland in Ireland, otherwise by the American corporation LinkedIn. If you are logged in to LinkedIn, LinkedIn can link your activity on our website to your profile. You can find more information about the type, extent and purpose of the data process in LinkedIn’s Privacy Policy, Cookie policy and on LinkedIn’s Data protection portal. You can also opt-out of personalised ads
6.1.3 Pinterest
We make use on our website of the ability to embed functionality and content from Pinterest. For example, we can display images or pins published on Pinterest within our website. Cookies are used as part of this functionality.
Pinterest is provided by Pinterest Europe Ltd in Ireland, otherwise by the American provider Pinterest Inc. If you are logged in to Pinterest, Pinterest can link your activity on our website to your profile. You can find more information about the type, extent and purpose of the data processing in Pinterest’s privacy policy.
We use Google Maps to embed maps in our website. Cookies are used as part of this functionality. Google Maps is a service provided by the American company Google LLC. The Irish provider Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland. You can find more information about the type, extent and purpose of the data processing in Google’s Privacy and Security Principles and Privacy Policy, in the Google Product Privacy Guide (including Google Maps), information about How Google Uses Information from Sites or Apps that use Google Services and information about How Google Uses Cookies. You can also opt-out of personalised ads.
We use YouTube to embed video in our website. Cookies are used as part of this functionality. YouTube is a service provided by the American company Google LLC. The Irish provider Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland. You can find more information about the type, extent and purpose of the data processing in Google’s Privacy and Security Principles and Privacy Policy, in the Google Product Privacy Guide (including YouTube), information about How Google Uses Information from Sites or Apps that use Google Services and information about How Google Uses Cookies. You can also opt-out of personalised ads.
We use MyFonts (by Monotype) to embed certain fonts in our website. Cookies are used as part of this functionality. This is a service provided by the American company Monotype Imaging Holdings Inc., a company specialising in designing digital fonts. You can find more information about the type, extent and purpose of the data processing in Monotype’s Privacy Policy and its Web Font Tracking Privacy Policy.
6.5.1 Google Analytics
We use Google Analytics to analyse how our website is used – for example, to measure the reach of our website and assess the success of third-party links to our website. Google Analytics is a service provided by the American provider Google LLC. The Irish provider Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland.
Google attempts to track the individual users of our website even when they switch between browsers or devices (cross-device tracking). Cookies are used as part of this functionality. Your Internet Protocol (IP) address is necessary for Google Analytics, but will never be aggregated with other Google data.
We always anonymise your Internet Protocol (IP) address before it is analysed by Google, so that your complete IP address will never be transmitted to Google in the USA.
You can find more information about the type, extent and purpose of the data processing in Google’s Privacy and Security Principles and Privacy Policy, in the Google Product Privacy Guide (including Google Analytics), information about How Google Uses Information from Sites or Apps that use Google Services and information about How Google Uses Cookies. You can also use the Google Analytics Opt-out Browser Add-on or opt-out of personalised ads.
6.5.2 Google Tag Manager
We use Google Tag Manager to incorporate analytics services, Google ads and third-party ads in our website and to manage these services. This is a service provided by the American provider Google LLC. The Irish provider Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland. No cookies are used for this functionality. However, cookies may be used in connection with the services linked to and managed by Google Tag Manager. This privacy policy informs you about how such services process your personal data.
This privacy policy was drawn up using the Datenschutzpartner privacy policy generator provided by the Swiss company Papiertiger GmbH.
We may update or extend this privacy policy at any time. We will provide information in a suitable format about any such updates or additions; specifically, by publishing the currently valid privacy policy on our website.