privacy policy
We protect your privacy and your private data. Our processing of personal data of our users is limited to those data that are necessary for the provision of a functional website as well as our contents and services. Pursuant to Article 13 of the Swiss Federal Constitution and the data protection provisions of the Confederation as amended from 1 September 2023 (revised Data Protection Act, hereinafter abbreviated to "DPA"), every person is entitled to protection of their privacy as well as protection against misuse of their personal data. We collect, process and use your personal data in accordance with the content of these data protection provisions and the applicable data protection regulations. The following data protection regulations govern which personal data we collect, process and use about you. We therefore ask you to read the following carefully.
1. Responsible
Daniela Campanile Your Personal Assistant
Daniela Campanile
Grundackerweg 90
CH-8965 Berikon
E-Mail: mail@danielacampanile.ch
2. Description and scope of data processing
2.1 Personal data within the meaning of these data protection provisions is any information relating to an identified or identifiable natural person (hereinafter “data subject”). This includes in particular your name, your e-mail address, your address and your telephone number as well as your credit card and account data.
2.2 Log files: Personal data also includes information about your use of our website. In this context, we collect personal data from you as follows: the anonymised IP address of the user, date and time of access including the time zone, type of request, customer information such as type and version, operating system of the user (device, OS version of the device), referrer information (i.e. the source of the access). This is done through the use of log files provided by the order processor, Multimedia Networks AG (Hoststar.ch) based in Kirchgasse 30, 3312 Fraubrunnen in Switzerland. There is a contract with Multimedia Networks AG for order processing. We store this data for a period of 7 days. We only store the server log files for longer in the event of attacks on our server infrastructure or other legal violations.
3. Other intended use
We use your personal data for the following purposes:
3.1 Customer service, order processing: We use your personal data for the purposes of carrying out communication including responding to your enquiries in the course of (pre)contractual relations.
3.2 Booking calendar: So that you can book an appointment directly via the website. For this purpose, your name, e-mail address and telephone number are processed in order to fulfil (pre)contractual obligations. The order processor simplybook.me from SimplyBook.me Ltd, based in 30, Gladstonos Street, P. Makedonas Court, Mezzanine Floor, 3041 Limassol, Cyprus, is used for booking. A contract for order processing exists. Please also note the cookies associated with Simplybook.me under 4. cookies.
3.3 Creating video messages using Loom: We may create video messages and instructions to communicate with customers. We use the provider Loom Inc. based at 140 2ND St FL 3 San Francisco, CA, 94105-3731, USA. We have a contract with this provider for order processing. We store videos until they are retrieved or for as long as the video is required.
3.4 Communication by email: We use the processor Microsoft Ireland Limited, based in South County Business Park, One Microsoft Place, Carmanhall And Leopardstown, Dublin, D18 P521, Ireland, to carry out communication by email. There is a contract with this processor for order processing in accordance with Art. 28 GDPR and standard contractual clauses. We will delete or anonymise all personal data that you provide to us in response to enquiries no later than 180 days after the final response to you. The retention period of 180 days is due to the fact that you may occasionally contact us again about the same matter after a reply and refer to the previous correspondence. Experience has shown that, as a rule, there are no more queries about our replies after 180 days. If a contract is concluded with you, our data protection information for business partners and customers applies.
3.5 Communication via video telephony: We use “Zoom” from Zoom Videocommunication Inc. based at 55 Almaden Blvd 6th Floor, San Jose, CA 95113, USA as well as Jitsi Meet from 8×8, INC based at 2125 O’Nel Drive San Jose, California 95131, USA to conduct video conferences, telephone conferences and online meetings. There is a contract for order processing; data transfer to the USA is based on standard contractual clauses.
You get access to the agreed appointments via a link provided by e-mail. The communication is encrypted end-to-end. By clicking on the link you can join my video room. Before joining, you can decide for yourself whether to activate the video or not. You are muted by default and must manually unblock your microphone if desired. When you turn on your camera and/or microphone, data from your microphone as well as your video camera will be processed during the meeting.
The following additional data may be processed depending on the type and scope of the specific use: Personal data (e.g. first and last name, e-mail address). Please note, however, that the name of “online meetings” as well as the date, time and duration of the “online meeting” may be stored locally in your browser. If you do not wish to continue viewing the data, you should delete your browser cache.
Furthermore, your personal data may be processed. This also depends specifically on your use, such as use of the chat or the whiteboard. I would like to explicitly draw your attention to the fact that any information you provide during the meeting will be processed at least for the duration of the meeting. We cannot rule out the possibility that personal data may also be routed via internet servers located outside Switzerland, the EU or the EEA. Standard contractual clauses exist with the providers.
In some countries, e.g. the USA, there is a risk that authorities may access the data for security and surveilance purposes without you being informed or having the right to appeal. We have agreed EU standard contractual clauses as the legal basis for data transfer. The above-mentioned providers necessarily receive knowledge of the above-mentioned data insofar as this is contractually regulated within the framework of our order processing contract. There are no other recipients.
Recipients: As a matter of principle, we do not pass on your data to third parties. Jitsi is technically hosted by Novatrend Services GmbH, based in Baar, Switzerland. There is an order processing contract for this. There are no other recipients.You are not obliged to communicate with us via Jitsi. Alternatively, you can also communicate by e-mail or telephone. We generally delete personal data when there is no need for further storage.
4. Principles of data processing
When processing data, we take into account the processing principles of legality, proportionality, purpose limitation, transparency – in particular the fulfilment of information obligations – and data security.
5. Information about cookies
5.1 We use cookies to facilitate and improve the use of our website. Cookies are small pieces of text information that can be stored on your computer or smartphone via the browser when you visit a website. This is used to recognise the website visitor. Cookies can also provide us with information about how you use our website so that we can continually improve the design of the website.
Cookies themselves do not contain any personal data about users, they only serve to uniquely identify what our customers find interesting and useful on our website. Specifically, the following cookies are set with your consent:
cookie: pll_l¬angua-ge
category: necessary
purpose: saving the language preference
storage time: 11 months
cookie: borlabs-cookie
category: necessary
porpose: Saves the settings of the visitors selected in the Cookie Box of Borlabs Cookie.
storage time: 1 year
provider: owner of this website
cookie: _ga <br>
category: statistics
purpose: Cookie from Google for website analyses. Generates statistical data on how the visitor uses the website.
storage time: 1 year 1 month
provider: Google Ireland Limited
cookie: _ga_*
category: statistics<br>
purpose: cookie from Google for website analyses. Generates statistical data on how visitors use the website.
storage time: 1 year 1 month
provider: Google Ireland Limited
cookie: sb_widget
category: statistics
purpose: remembers whether the user has minimised or closed chat boxes or pop-up messages on the website.
storage time: max. 1 minute
provider: SimplyBook.me Ltd.
cookie: sess_-user_¬publi-cv2_d-aniel-acamp-anile
category: necessary
purpose: Queue management, bot protection
storage time: max. 1 minute
provider: SimplyBook.me Ltd.
cookie: sb_to-ken_d-aniel-acamp-anile
category: necessary
purpose: Queue management, bot protection
storage time: max. 1 minute
provider: SimplyBook.me Ltd.
cookie: sb_li¬ne_to-ken_d-aniel-acamp-anile<br>
category: necessary
purpose: Queue management, bot protection
storage time: max. 1 minute
provider: SimplyBook.me Ltd.
5.2 Consent management via Borlabs
We use the cookie consent technology from Borlabs Cookies to obtain your consent under data protection law to the storage of certain cookies on your end device or to the use of certain technologies and to document this in a data protection-compliant manner. The provider of this technology is Borlabs – Benjamin A. Bornschein (“Borlabs”) based in Germany.
Borlabs uses a technically necessary cookie to store your data protection consent. The following information is stored in the Borlabs cookie
– Cookie duration
– Cookie version
– Domain and path of the WordPress website
– Consents
– UID (randomly generated ID, which according to Borlabs is not personally identifiable)
Data is not transferred to Borlabs.
Borlabs is used to obtain the legally required consent for the use of cookies. The legal basis for this is our legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR. Our legitimate interest lies in the legally compliant documentation and verifiability of consents (Art. 6 para. 1 lit. c) GDPR) to fulfil our accountability obligation pursuant to Art. 5 para. 2 GDPR.
6. Google Analytics
This website uses Google Analytics with your consent. This is a service provided by Google Ireland Limited (“Google”), a company incorporated and operated under the laws of Ireland (registration number: 368047) with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland and Google LLC (USA) (“Google”).
Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and enable an analysis of the use of the website by the user. The information acquired through the cookies about your usage behaviour of this website is usually transferred to a Google server in the USA and stored there. For the USA, there is an adequacy decision within the scope of the General Data Protection Regulation (GDPR), so that the data transfer can take place without further measures. You can view Google’s certification here. Within the scope of the Data Protection Act, data transfers to the USA are made on the basis of standard contractual clauses.
We have made the setting that your IP address is anonymised. The IP address anonymisation is carried out by Google, but within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there.
On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator.
The anonymised IP address transmitted by your browser as part of Google Analytics is linked to other data about you, such as search history, personal accounts, usage data from other devices and any other data Google may have about you.
You can view the cookies that are set in connection with Google Analytics in the list above.
You can revoke your consent at any time by making the corresponding settings directly via the cookie consent banner. The user and event data are deleted after 14 months. The “Reset user data on new activity” function is activated. This means that if you visit again before the retention period expires, your data will not be deleted.
7. Data Security
All information that you transmit to us is generally stored on servers within Switzerland/European Union. Unfortunately, the transmission of information via the Internet is not completely secure, which is why we cannot guarantee the security of data transmitted to our website via the Internet. However, we secure our website and other systems against loss, destruction, access, modification or distribution of your data by unauthorised persons by means of technical and organisational measures. In particular, we transmit your personal data in encrypted form. We use the SSL (Secure Socket Layer) [or TLS (Transport Layer Security)] coding system for this purpose.
8. Social media accounts
I operate the following social media presences:
LinkedIn: https://www.linkedin.com/in/danielacampanile/
Facebook: https://www.facebook.com/daniela.fritzsche
Instagram: https://www.instagram.com/daniela_pa_zurich/
Data processing by me:
a) Operation of the above-mentioned social media pages
The personal data entered on social media sites such as comments, videos, pictures, likes, public messages, etc. are published by the respective social media platform. I reserve the right to delete content if this should be necessary. If necessary, I share content on my site and contact you via the social media platform, e.g. via the messengers offered. The legal basis is the legitimate interest according to Art. 6 para. 1 lit. f) GDPR or Art. 32 para. 1 revGDR, which is in the interest of public relations and communication.
b) Page Insights
The social media platforms provide anonymised statistics and insights that help me gain knowledge about the types of actions people take on my site (called “page insights”). These page insights are created based on certain information about people who have visited my page.
The legal basis for this data processing is the legitimate interest according to Art. 6 para. 1 lit. f) GDPR or Art. 32 para. 1 revDSG, which is based on obtaining information about the actions as well as visitors to the pages.
This processing of personal data is carried out by the social media platform and me as a so-called jointly responsible party. In the event of joint responsibility, a separate agreement must be concluded.
LinkedIn: https://legal.linkedin.com/pages-joint-controller-addendum
Instagram & Facebook: https://www.facebook.com/legal/controller_addendum
If you wish to object to certain data processing over which I have control, please contact me using the contact details above.
Note: The provision of data is neither legally or contractually required nor necessary for the conclusion of a contract. You are not obliged to provide personal data. The consequence of not providing such data is that you will not be able to communicate or interact with me via my social media pages or participate in the competition. To contact me, please use my e-mail address.
Data processing by the operator of the social media platform:
There is also the operator of the social media platform itself. From a data protection point of view, this is also regarded as another controller who carries out his or her own data processing. This means that the operator is also its own data controller. However, I have only limited influence on the operator’s data processing. At the points where I can exert influence (e.g. through parameterisation), I work within the scope of my possibilities to ensure that the operator of the social media platform handles the data in a manner that complies with data protection law. In many places, however, I cannot influence the data processing by the operator of the social media platform and also do not know exactly what data the operator processes. The operator informs you about the processing of personal data in its own data protection information:
LinkedIn: https://de.linkedin.com/legal/privacy-policy
Instagram: https://help.instagram.com/155833707900388
Facebook: https://www.facebook.com/help/568137493302217
Note: The operator of the social media platform uses web tracking methods. The web tracking can also take place regardless of whether you are logged in or registered with the social media platform. As already explained, I can unfortunately hardly influence the web tracking methods of the social media platform. For example, I cannot switch this off. Please be aware: It cannot be ruled out that the provider of the social media platform uses your profile and behavioural data, for example to evaluate habits, personal relationships, preferences, etc. I have no influence on the processing of your data. I have no influence on the processing of your data by the provider of the social media platform.
9. No disclosure of your personal data
We do not disclose your personal data to third parties unless you have consented to the disclosure of data or we are entitled or obliged to disclose data due to legal provisions and/or official or judicial orders. This may involve, in particular, the disclosure of information for the purposes of criminal prosecution, the prevention of danger or the enforcement of intellectual property rights.
Within the scope of platform use, personal data is also processe on servers in third countries, such as the USA. There is no adequate level of data protection for the USA. The data transfer takes place on the basis of standard contractual clauses. In some countries (such as the USA), there is a risk that authorities may access the data for security and monitoring purposes without you being informed or havin the right to appeal.
10. Changes to this privacy policy
We reserve the right to change this privacy policy at any time with effect for the future. A current version is available on the website. Please visit the website regularly and inform yourself about the applicable data protection provisions.
11. Your rights
You have the right to request information about your personal data processed by us. In particular, you can request information about the personal data as such, the purpose of processing, the retention period or, if this is not possible, the criteria for determining this period, the origin of your data if it has not been collected from you, if applicable, the existence of an automated individual decision and, if applicable, the recipients or categories of recipients to whom personal data are disclosed.
You also have the right to revoke any consent you may have given to use your personal data at any time.
You can exercise your aforementioned rights at any time by contacting us at the contact address provided.
If you are of the opinion that the processing of your personal data by us is contrary to the applicable data protection provisions, you have the possibility to complain to the Federal Data Protection and Information Commissioner.
This data protection information is subject to the copyright of SCALELINE Datenschutz.
Status: 11.12.2023