Last updated on: 17.04.2024

We place great importance on transparency in handling personal data. This privacy policy provides information about what personal data we collect, for what purpose, and to whom we disclose it. To ensure high transparency, this privacy policy is regularly reviewed and updated.

1. Services We Use

  • Matomo Analytics
  • YouTube
  • Gravatar
  • WordPress

2. Contact Information

For questions or concerns about the protection of your data by us, you can reach us anytime via email at . Responsible for the data processing carried out via this website is:

Fabian Berg
Möserwies 44
9050 Appenzell

Data Protection Officer:

3. General Principles

3.1 What data do we collect from you and from whom do we receive this data

Primarily, we process personal data that you provide to us or that we collect while operating our website. Under certain circumstances, we may also receive personal data about you from third parties. These may include the following categories:

  • Personal master data (name, address, date of birth, etc.);
  • Contact details (mobile number, email address, etc.);
  • Financial data (e.g., account information);
  • Online identifiers (e.g., cookie identifier, IP addresses);
  • Location and traffic data;
  • Audio and visual recordings;
  • Special categories of data (e.g., biometric data or information about your health).

3.2 Under what conditions do we process your data?

We treat your data confidentially and in accordance with the purposes set out in this privacy policy. We ensure transparent and proportionate processing.

If, exceptionally, we are unable to adhere to these principles, data processing may still be lawful because a justification exists. Justification may include:

  • Your consent;
  • Performance of a contract or pre-contractual measures;
  • Our legitimate interests, provided that your interests do not override.

3.3 How can you revoke your consent?

If you have given us consent to process your personal data for specific purposes, we will process your data within the scope of this consent unless we have another justification.

You have the option to revoke your consent at any time by sending an email to the address specified in the imprint. Data processing already carried out is not affected by this.

3.4 In what cases can we disclose your data to third parties?

a. Principle

We may need to use the services of third parties or affiliated companies and entrust them with the processing of your data (so-called data processors). Categories of recipients include:

  • Accounting, fiduciary and auditing firms;
  • Consulting firms (legal advice, taxes, etc.);
  • IT service providers (web hosting, support, cloud services, website design, etc.);
  • Payment service providers;
  • Providers of tracking, conversion, and advertising services.

We ensure that these third parties and our affiliated companies comply with data protection requirements and treat your personal data confidentially.

We may also be obliged to disclose your personal data to authorities under certain circumstances.

b. Visiting our social media channels

We may have embedded links to our social media channels on our website. This is visible to you (typically through corresponding icons). Clicking on the icons will redirect you to our social media channels.

In this case, the social media providers will be informed that you are accessing their platform from our website. The social media providers may use the data collected for their own purposes. We would like to point out that we do not have knowledge of the content of the transmitted data or its use by the operators.

c. Transfer abroad

As part of order processing, your personal data may be transferred to companies abroad. These companies are subject to the same data protection requirements as we are. The transfer can take place worldwide.

If the level of data protection does not correspond to that of Switzerland, we carry out a prior risk assessment and ensure by contract that the same level of protection is guaranteed as in Switzerland (e.g., by means of the new standard contractual clauses of the EU Commission or other legally prescribed measures). If our risk assessment is negative, we take additional technical measures to protect your data. You can access the standard contractual clauses of the EU Commission at the following link.

3.5 How long do we keep your data?

We only store personal data for as long as necessary to fulfill the specific purposes for which the data was collected.

Data stored during your visit to our website is retained for twelve months. An exception applies to analysis and tracking data, which may be retained for a longer period.

We store contract data for a longer period as we are legally obligated to do so. In particular, we must retain business communication, concluded contracts, and booking receipts for up to 10 years. If we no longer need such data from you to perform the services, the data will be blocked, and we will only use it for invoicing and tax purposes.

3.6 How do we protect your data?

We will securely store your data and take all reasonable measures to protect your data from loss, unauthorized access, misuse, or alteration.

Our contractual partners and employees who have access to your data are obliged to comply with data protection regulations. In some cases, it will be necessary for us to pass on your inquiries to affiliated companies. Even in these cases, your data will be treated confidentially.

Within our website, we use the SSL (Secure Socket Layer) protocol in connection with the highest level of encryption supported by your browser.

3.7 What rights do you have?

a. Right to information

You have the right to request information about the data we store about you at any time. We ask you to send your request for information together with proof of identity to

You also have the right to receive your data in a common file format if we process your data automatically and if:

  • You have consented to the processing of this data;
  • You have disclosed data in connection with the conclusion or execution of a contract.

We may restrict or refuse to provide information or data disclosure if it conflicts with our legal obligations, legitimate interests, or the interests of a third party.

Processing your request is subject to the statutory processing period of 30 days. However, we may extend this period due to a high volume of requests, legal or technical reasons, or if we need further details from you. You will be informed in a timely manner, at least in text form, about the extension of the deadline.

b. Deletion and correction

You have the right to request the deletion or correction of your data at any time. We may reject the request if legal provisions oblige us to retain or not modify the data or if there is a permissible reason contrary to your request.

Please note that exercising your rights may conflict with contractual agreements and may have corresponding effects on contract performance (e.g., early termination of the contract or cost consequences).

c. Legal recourse

If you are affected by the processing of personal data, you have the right to enforce your rights in court or to file a complaint with the competent supervisory authority. The competent supervisory authority in Switzerland is the Federal Data Protection and Information Commissioner:

3.8 Changes to the privacy policy

We reserve the right to change this privacy policy at any time. Changes will be published on , and you will not be notified separately.

4. Individual data processing operations

4.1 Provision of the website and creation of log files

What information do we receive and how do we use it?

By visiting , certain data is automatically stored for purposes of system administration, for statistical or security purposes, or for tracking purposes, on our servers or on servers of services and products we obtain and/or install. This includes:

  • Your Internet service provider's name;
  • Your IP address (under certain circumstances);
  • The version of your browser software;
  • The operating system of the computer accessing the URL;
  • The date and time of access;
  • The website from which you access the URL;
  • The search terms you used to find the URL.

Why are we allowed to process this data?

This data cannot be attributed to any specific person, and it is not merged with other data sources. Log file storage is done to ensure the functionality of the website and to ensure the security of our information technology systems. This constitutes our legitimate interest.

How can you prevent data collection?

The data is only stored for as long as necessary to achieve the purpose of its collection. Accordingly, the data is deleted after each session ends. Log file storage is essential for the operation of the website, so you have no option to object to it.

4.2 Matomo Analytics

We use the service "Matomo Analytics" on our website, provided by InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand. Matomo is an open-source software that enables detailed web analytics while placing a high value on protecting users' privacy.

With the help of Matomo Analytics, we can analyze the behavior of our visitors to continuously improve the user experience and content of our website. This includes information about which website a visitor comes from, which areas of our site they visit, and how often and for how long they view these areas.

Matomo Analytics uses cookies to enable analysis of user behavior. These cookies collect information in anonymized form, including the number of website visitors, where visitors came from, and which pages they visited. As privacy is highly valued at Matomo, IP addresses are anonymized before storage.

One of the main reasons for using Matomo Analytics is privacy. Unlike other analytics tools, data is not shared with third parties.

4.3 YouTube

Videos from YouTube, a platform operated by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"), are embedded on our website. When viewing the videos or clicking the play button, data, including your IP address and information about the browser you are using, is transmitted to and stored on Google servers. This data is used to provide the video, monitor performance, and improve the user experience.

If you are logged into your YouTube account, you allow YouTube to directly associate your browsing behavior with your personal profile. You can prevent this by logging out of your YouTube account.

4.4 Gravatar

We use the Gravatar service on our website, provided by Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, USA. Gravatar allows users to use a globally recognized profile picture associated with their email address.

If you leave comments or posts on our website using the email address associated with a Gravatar account, your Gravatar image may be displayed alongside your comment or post. Your email address is sent to Gravatar to check if a profile picture is associated with it. The email address is transmitted encrypted and not displayed publicly.

4.5 WordPress

Our website is based on the WordPress platform, a content management system developed by Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, USA. WordPress allows us to create, manage, and publish content.

When using our website based on WordPress, various data, including your IP address, date and time of access, and information about the browser you are using, may be collected and stored. This data is primarily used for administrative purposes and to ensure the smooth operation of the website.

Some WordPress features, such as comments or contact forms, may collect additional personal data when used.

BrainBox Generators

BrainBox Generators is a service of BrainBox Solutions GmbH to detect all data protection-relevant services on a website and to help, among other things, in creating the privacy policy. No personal data is collected or processed in this process.