1. processing of personal data
2. Data Source
You or the data subjects provide us with some of the personal data yourself when you or they contact us via email, social media (e.g. LinkedIn), online contact form or telephone and request or services. This includes, for example, name, telephone number and contact details as well as information about the role of the data subject at the company or organization for which you or the respective contact persons work or on whose behalf you or they contact us. We also process personal data that we receive in our correspondence with third parties (namely clients, counterparties, authorities and courts and their employees or other contact persons) as part of the client relationship (e.g. name, contact details, date of birth, details of employment, income situation, family circumstances or state of health). We also collect some personal data ourselves, e.g. from public registers or websites.
3. Processing Purpose
We process the types of personal data mentioned above:
a. ) primarily in order to provide, document and invoice our legal services.
b. ) for marketing purposes (using any means of communication such as email, social media, post or telephone) to provide information about publications, events, news, services or products that may be of interest (e.g. with a newsletter).
4. Passing On
5. Processing Location
We process personal data in our area of responsibility mainly in Switzerland and in the EU/EEA. However, we process the data worldwide if this is required by the client relationship. However, we may transfer the personal data to recipients (namely clients, counterparties or authorities) who in turn process the personal data in other countries, including those that do not guarantee a level of data protection comparable to Swiss law. We will do the latter based on consent or standard contractual clauses, or if it is necessary to fulfill a contract or to enforce legal claims.
As the service is stored in a Swiss data center, the strict data protection regulations of Switzerland apply. You can object to the statistical recording by Matomo at any time by adjusting the corresponding settings in your browser.
6.7 On our website we use Adobe Font, a font service from Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA. By integrating Adobe Font, fonts are loaded from Adobe servers each time you access our website from your device, which provides Adobe with information that our website has been accessed from your IP address.
The use of Adobe Font is in the interest of a uniform and appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.
Adobe has submitted to the EU-US Privacy Shield, which guarantees that the level of data protection in the USA corresponds to European standards.
7. Job Application
If you apply for a job with us, we obtain and process the relevant data for the purpose of reviewing the application, carrying out the application process and, in the case of successful applications, for the preparation and conclusion of a corresponding contract. In addition to your contact details and the information from the corresponding communication, we also process the data contained in your application documents and the data that we can additionally obtain about you, e.g. from job-related social networks, the Internet, the media and from references, if you consent to us obtaining references.
8. Duration of data storage and data backup
We only store personal data for as long as is necessary to process the client relationship, for as long as there is a legal obligation to retain and document data or for as long as we have an overriding private or public interest in doing so. We take proportionate and reasonable precautions to protect personal data from Ioss, unauthorized modifaction or unauthorized access by third parties. If you provide us with personal data via a third party (e.g. via your employees or other contact persons), it is up to you to inform them in a general manner about the processing by legal service providers (such as us) or other external service providers (e.g. in a data protection declaration for employees).
9. External services
We would like to point out that we use external IT service providers and cloud providers with servers in Switzerland to manage our mandate. We then use certain IT services and means of communication that may be associated with data security risks (e.g. e-mail, video conferencing). It is your responsibility to inform us if you require special security measures.
10. Interest in processing
We have a legitimate interest in the processing of personal data corresponding to the purposes mentioned. Some processing is also necessary so that we can fulfill our contractual obligations towards you or our legal obligations (e.g. retention obligations).
11. Attorney-client privilege
The attorney-client privilege remains unaffected. Insofar as data is concerned that is subject to attorney-client privilege, it will only be passed on to third parties in consultation with you.
12. Your rights
In particular, data subjects have the right to information about the personal data stored about them and the purpose of data processing, the right to rectification and erasure or restriction of processing of their personal data, the right to object to processing, the right to seek a judical remedy from a competent supervisory authority and the right to data portability/transferability. Please note, however, that conditions and exceptions apply to these rights, To the extent permitted or required by law, we may refuse requests to exercise these rights. For example, we may or must retain or otherwise continue to process the personal data despite a request to erase the personal data or restrict processing for legal reasons. If you are in the EEA, you also have the right to lodge a complaint with the data protection supervisory authority in your country. A list of authorities in the EEA can be found here: https://edpb.europa.eu/about-edpb/board/members_de.
13. No consent
Should the EU General Data Protection Regulation (GDPR) exceptionally apply to certain data processing operations, the following also applies exclusively for the purposes of the GDPR and the data processing operations subject to it. We base the processing of your personal data in particular on the fact that:
a. ) it is necessary for the initiation and conclusion of contracts and their administration and enforcement (Art. 6 para. 1 lit. b GDPR;
b. ) it is necessary for the purposes of the legitimate interests pursued by us or by third parties, namely for communication with you or third parties, to operate our website, to improve our electronic offers and registration for certain offers and services, for security purposes, for compliance with Swiss law and internal regulations for our risk management and corporate governance and for other purposes such as training and education, administration, evidence and quality assurance, organization, implementation and follow-up of events and for the protection of other legitimate interests (Art. 6 para. 1 lit. f GDPR);
c. ) it is required or permitted by law on the basis of our mandate or our position under the law of the EEA or a member state (Art. 6 para. 1 lit. c GDPR);
d. ) you have consented to the processing separately, e.g. via a corresponding declaration on our website (Art. 6 para. 1 lit. a and Art. 9 para. 2 lit. a GDPR).
If you have any questions or if you or your employees or other contact persons wish to exercise your or their rights as data subjects under data protection law, please contact us via