Privacy Policy

Anatec AG
Last updated: March 02, 2025

We are delighted that you have shown interest in Anatec AG. Data protection is a high priority for us. This privacy policy outlines how we collect, process, and protect your personal data in accordance with the Swiss Federal Act on Data Protection (FADP) and, where applicable to EU data subjects, the General Data Protection Regulation (GDPR). While our website can generally be used without providing personal data, certain services may require processing such data. If no legal basis exists for processing, we will obtain your consent.

This policy informs you about the nature, scope, and purpose of the personal data we process and your rights as a data subject.

1. Data Controller

The data controller is:
Sven Lienhard, Anatec AG
Sumpfstrasse 7
6312 Steinhausen
Switzerland
Phone: +41 41 748 32 32
Email: info@anatec.ch
Website: www.anatec.ch

2. Overview of Processing

This section summarizes the types of data processed, purposes, and affected individuals:

• Types of Data Processed: Inventory data (e.g., name, address), payment data (e.g., bank details), contact data (e.g., email, phone), content data (e.g., form inputs), contract data (e.g., terms), usage data (e.g., page views), meta/communication/procedural data (e.g., IP addresses), log data (e.g., access logs).

• Categories of Data Subjects: Service recipients and clients, prospects, communication partners, users, business and contractual partners.

• Purposes of Processing: Provision of contractual services, communication, security measures, office and organizational procedures, feedback, online service provision, user-friendliness, IT infrastructure, business processes.

3. Cookies and Tracking Technologies

Our website uses cookies and Google Tag Manager to enhance functionality and analyze usage:

• Cookies: Small text files stored on your device to recognize returning users and optimize services (e.g., saving preferences). Cookies include a unique ID for identification.

• Google Tag Manager: Manages tags (e.g., tracking codes) on our site, enabling analytics and marketing functions.

• Google Analytics Cookies: Tracks website traffic and user behavior with IP anonymization (“_anonymizeIp”).

You can disable cookies or tracking via your browser settings, though this may limit functionality. See Section 10 for opt-out details.

4. Collection of General Data and Information

When you visit our website, we collect general data (e.g., browser type, IP address, access time, referrer URL) in server log files to deliver content, optimize services, ensure IT security, and support law enforcement in case of cyberattacks. This data is anonymized unless legally required.

5. Business Services

We process data of contractual and business partners (e.g., clients, prospects) to fulfill contractual obligations, communicate, and manage business processes. This includes:

• Providing agreed services, updates, and remedies.

• Safeguarding our rights and organizing operations.

• Protecting against misuse via security measures.

Data includes inventory data, payment data, contact data, and contract data. We disclose data to third parties (e.g., IT providers, banks) only as necessary, under legal agreements.

6. Legal Basis for Processing

Under the FADP (Art. 6), processing is conducted in good faith, lawfully, and proportionately for specific purposes comprehensible to you. Under GDPR (Art. 6(1), where applicable): consent (a), contract performance (b), legal obligation (c), vital interests (d), legitimate interests (f) balanced against your rights.

7. Data Subject Rights

Under the FADP and, if applicable, GDPR, you have:

• Right to Information: Confirm processing and access details (FADP Art. 25; GDPR Art. 15).

• Right to Rectification: Correct inaccurate data (FADP Art. 32; GDPR Art. 16).

• Right to Deletion: Request erasure if unlawful or unnecessary (FADP Art. 32; GDPR Art. 17).

• Right to Data Portability: Receive data in a common format (GDPR Art. 20; FADP implied).

• Right to Object: Oppose processing (FADP Art. 30; GDPR Art. 21).

Contact: info@anatec.ch.

8. Security Measures

We implement technical and organizational measures (e.g., TLS/SSL encryption via HTTPS, access controls, data separation) to protect data confidentiality, integrity, and availability, considering risks and costs. Procedures ensure rights exercise, data deletion, and breach response, per FADP Art. 8 and GDPR Art. 32.

9. Data Transfers

Data may be transferred abroad (e.g., USA via Google Analytics) under FADP Art. 16 and GDPR Art. 44-46 with safeguards like Standard Contractual Clauses or Data Privacy Framework (DPF) certification (see www.dataprivacyframework.gov). Exceptions include consent or contract execution.

10. Third-Party Tools: Google Tag Manager and Analytics

• Google Tag Manager: Manages tracking tags (Google Ireland Limited, Dublin, Ireland).

• Google Analytics: Analyzes usage with anonymized IPs, transferred to Google LLC (USA) under DPF or SCCs.

• Opt-Out: Google Analytics Opt-Out or disable cookies.

• More info: Google Privacy, Analytics Terms.

11. Data Retention and Deletion

Data is deleted when its purpose ends or consents are revoked, unless required by law:

• 10 years for books, records, and invoices (Art. 958f OR).

• 10 years for claims (Art. 127 OR), or 5 years for specific claims (Art. 128 OR).

• Log files: 30 days maximum, then anonymized.

12. Supervisory Authority

For Switzerland:
FDPIC
Feldeggweg 1
3003 Bern
www.edoeb.admin.ch
For EU: Contact your local authority.

13. Changes and Updates

We may update this policy. Please verify contact details before use, as they may change.