With this Privacy Policy, we inform you about the processing of personal data in connection with our activities and operations, including our website under the domain name www.liom.com. In particular, we provide information on why, how, and where we process which personal data. We also inform about the rights of individuals whose data we process.
For specific or additional activities and operations, we may publish further privacy policies or other privacy-related information.
We are subject to Swiss data protection law as well as any applicable foreign data protection laws, in particular those of the European Union (EU) under the European General Data Protection Regulation (GDPR).
On July 26, 2000, the European Commission recognized that Swiss data protection law ensures adequate data protection. This adequacy decision was confirmed by the European Commission in its report on January 15, 2024.
Responsible for processing personal data:
Daniel Perotti
Talstrasse 35
8808 Pfäffikon
In individual cases, third parties may be responsible for processing personal data, or joint responsibility with third parties may exist.
Data Subject: A natural person whose personal data we process.
Personal Data: Any information relating to an identified or identifiable natural person.
Special Categories of Personal Data: Data concerning trade union membership, political, religious, or philosophical beliefs and activities, health data, intimate sphere, ethnic or racial origin, genetic data, biometric data that uniquely identify a natural person, data on criminal and administrative sanctions or proceedings, and social assistance measures.
Processing: Any handling of personal data, regardless of the methods and procedures used, including but not limited to querying, matching, adapting, archiving, storing, reading, disclosing, acquiring, collecting, deleting, organizing, structuring, storing, modifying, distributing, linking, destroying, and using personal data.
European Economic Area (EEA): Member states of the European Union (EU) as well as Liechtenstein, Iceland, and Norway.
We process personal data in accordance with Swiss data protection law, in particular the Federal Act on Data Protection (FADP) and the Data Protection Ordinance (DPO).
If and to the extent the European General Data Protection Regulation (GDPR) applies, we process personal data based on at least one of the following legal bases:
The European General Data Protection Regulation (GDPR) refers to the processing of personal data as the processing of personal data and the processing of particularly sensitive personal data as the processing of special categories of personal data (Art. 9 GDPR).
We process the personal data that is necessary to conduct our activities and operations continuously, user-friendly, securely, and reliably. The processed personal data may particularly include browser and device data, content data, communication data, metadata, usage data, master data, including inventory and contact data, location data, transaction data, contract data, and payment data.
We also process personal data obtained from third parties, public sources, or collected in the course of our activities and operations, provided such processing is legally permissible.
We process personal data as necessary with the consent of the data subjects. In many cases, we may process personal data without consent, for example, to fulfill legal obligations or safeguard overriding interests. We may also request consent from data subjects even if it is not legally required.
We process personal data for the duration necessary for the respective purpose. We anonymize or delete personal data, particularly based on legal retention and limitation periods.
We may disclose personal data to third parties, have it processed by third parties, or process it jointly with third parties. Such third parties primarily include specialized service providers whose services we use.
We may disclose personal data, for example, to banks and other financial service providers, authorities, educational and research institutions, consultants and lawyers, interest groups, IT service providers, cooperation partners, credit agencies, logistics and shipping companies, marketing and advertising agencies, media, organizations and associations, social institutions, telecommunications companies, and insurance providers.
We process personal data to communicate with individuals as well as authorities, organizations, and companies. In particular, we process data provided by a data subject when contacting us, for example, via postal mail or email. We may store such data in an address book or similar tools.
Third parties who transmit data about other persons to us are required to independently ensure the data protection of those affected. In particular, they must ensure that such data is accurate and that it may be transmitted.
We process personal data of applicants to the extent necessary to assess their suitability for an employment relationship or for the subsequent execution of an employment contract. The required personal data results primarily from the requested information, for example, as part of a job advertisement. We may publish job advertisements with the help of suitable third parties, such as in electronic and print media or on job portals and recruitment platforms.
We also process personal data voluntarily provided or published by applicants, particularly as part of cover letters, resumes, other application documents, and online profiles.
If and to the extent the General Data Protection Regulation (GDPR) applies, we process personal data of applicants in accordance with Art. 9(2)(b) GDPR.
We take appropriate technical and organizational measures to ensure data security appropriate to the respective risk. With our measures, we particularly ensure the confidentiality, availability, traceability, and integrity of the processed personal data, although absolute data security cannot be guaranteed.
Access to our website and other online presence is secured through transport encryption (SSL / TLS, particularly using Hypertext Transfer Protocol Secure, abbreviated as HTTPS). Most browsers warn against visiting websites without transport encryption.
Our digital communication – like any digital communication – is subject to mass surveillance without cause or suspicion by security authorities in Switzerland, the rest of Europe, the United States (USA), and other countries. We have no direct influence over the corresponding processing of personal data by intelligence agencies, law enforcement, and other security authorities. We also cannot rule out the possibility that a data subject may be specifically monitored.
We process personal data primarily in Switzerland and the European Economic Area (EEA). However, we may also export or transfer personal data to other countries, particularly for processing or having it processed there.
We may export personal data to all countries on Earth and elsewhere in the universe, provided that the respective jurisdiction ensures adequate data protection in accordance with the decision of the Swiss Federal Council and – if and to the extent the General Data Protection Regulation (GDPR) applies – also in accordance with the decision of the European Commission.
We may transfer personal data to countries that do not provide adequate data protection, provided that data protection is ensured through other means, particularly based on standard contractual clauses or other suitable safeguards. In exceptional cases, we may export personal data to countries without adequate or appropriate data protection if the specific data protection requirements are met, such as the explicit consent of the data subjects or a direct connection to the conclusion or execution of a contract. Upon request, we are happy to provide data subjects with information about any safeguards in place or provide a copy of such safeguards.
We grant data subjects all rights provided under the applicable data protection law. In particular, data subjects have the following rights:
We may defer, limit, or deny the exercise of data subject rights to the extent legally permissible. We may also inform data subjects of any conditions they must fulfill to exercise their data protection rights. For example, we may deny access to information in whole or in part by referring to confidentiality obligations, overriding interests, or the protection of other persons. Similarly, we may refuse to delete personal data, particularly due to legal retention obligations.
In exceptional cases, we may impose costs for the exercise of rights. We will inform data subjects in advance about any potential costs.
We are obligated to take appropriate measures to verify the identity of data subjects requesting access or asserting other rights. Data subjects are required to cooperate in this verification process.
Data subjects have the right to assert their data protection claims through legal proceedings or to file a complaint with a data protection supervisory authority.
The data protection supervisory authority for private entities and federal agencies in Switzerland is the Swiss Federal Data Protection and Information Commissioner (FDPIC).
European data protection supervisory authorities are organized as members of the European Data Protection Board (EDPB). In some European Economic Area (EEA) member states, data protection supervisory authorities are structured federally, particularly in Germany.
We may use cookies. Cookies – both our own (first-party cookies) and those from third parties whose services we use (third-party cookies) – are data stored in the browser. Such stored data is not necessarily limited to traditional cookies in text format.
Cookies may be stored temporarily in the browser as “session cookies” or for a specific period as so-called persistent cookies. “Session cookies” are automatically deleted when the browser is closed. Persistent cookies have a specific storage duration. Cookies enable a browser to be recognized on a subsequent visit to our website and, for example, allow us to measure the reach of our website. Persistent cookies may also be used for online marketing purposes.
Cookies can be deactivated or deleted entirely or partially in the browser settings at any time. Without cookies, our website may no longer be fully available. We actively request explicit consent for the use of cookies where necessary.
For cookies used for performance and reach measurement or advertising, a general opt-out is available for numerous services through AdChoices (Digital Advertising Alliance of Canada), the Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance), or Your Online Choices (European Interactive Digital Advertising Alliance, EDAA).
For each access to our website and other online presence, we may log at least the following information, provided it is transmitted to our digital infrastructure: date and time, including time zone, IP address, access status (HTTP status code), operating system, including user interface and version, browser, including language and version, individual subpages accessed on our website, including the amount of data transferred, and the last webpage accessed in the same browser window (referer or referrer).
We log such information, which may also constitute personal data, in log files. This data is necessary to ensure the long-term, user-friendly, and reliable availability of our online presence. Additionally, this information is required to guarantee data security – either directly by us or with the help of third parties.
We may integrate tracking pixels into our online presence. Tracking pixels, also known as web beacons, are typically small, invisible images or JavaScript scripts that are automatically retrieved when accessing our online presence. Tracking pixels – including those from third-party service providers we use – can collect at least the same information as log files.
Notifications and communications may contain web links or tracking pixels that record whether a specific communication has been opened and which web links were clicked. Such web links and tracking pixels can also track the usage of notifications and communications on an individual basis. We require this statistical data collection for performance and reach measurement to tailor notifications and communications to the needs and reading habits of recipients effectively, user-friendly, securely, and reliably over the long term.
In principle, you must explicitly consent to the use of your email address and other contact details unless its use is legally permissible for other reasons. If required, we may use the “double opt-in” procedure to obtain consent. In this case, you will receive a message with instructions for double confirmation. We may log obtained consent, including the IP address and timestamp, for verification and security purposes.
You may generally object to receiving notifications and communications, such as newsletters, at any time. By objecting, you may also simultaneously opt out of statistical tracking related to performance and reach measurement. Necessary notifications and communications related to our activities and operations remain unaffected.
We are present on social media platforms and other online platforms to communicate with interested individuals and provide information about our activities and operations. In connection with such platforms, personal data may also be processed outside Switzerland and the European Economic Area (EEA).
The general terms and conditions (GTC), terms of use, privacy policies, and other regulations of the respective platform operators also apply. These regulations particularly inform data subjects about their rights directly with the respective platform, such as the right to access information.
We use services from specialized third parties to conduct our activities and operations in a continuous, user-friendly, secure, and reliable manner. Such services allow us to integrate functions and content into our website. When embedding such content, the utilized services may, for technical reasons, temporarily capture at least the IP addresses of users.
For necessary security-related, statistical, and technical purposes, third parties whose services we use may process data related to our activities and operations in an aggregated, anonymized, or pseudonymized manner. This may include performance or usage data required to provide the respective service.
We specifically use:
We use services from specialized third parties to access the necessary digital infrastructure in connection with our activities and operations. These include, for example, hosting and storage services from selected providers.
In particular, we use:
We use services from third parties to embed maps into our website.
In particular, we use:
We use extensions for our website to enable additional functionalities. We may use selected services from suitable providers or implement such extensions on our own digital infrastructure.
In particular, we use:
We aim to measure the success and reach of our activities and operations. In this context, we may also assess the impact of third-party references or examine how different parts or versions of our online offerings are used (“A/B testing”). Based on the results of performance and reach measurement, we can fix errors, strengthen popular content, or implement improvements.
For performance and reach measurement, the IP addresses of individual users are usually collected. IP addresses are generally shortened (“IP masking”) to follow the principle of data minimization through appropriate pseudonymization.
Cookies may be used in performance and reach measurement, and user profiles may be created. These user profiles may include, for example, the specific pages visited or content viewed on our website, screen or browser window size, and – at least approximate – location. Generally, any created user profiles are strictly pseudonymized and not used to identify individual users. Certain third-party services, where users are logged in, may link the usage of our online offerings to the user’s account or profile on the respective service.
In particular, we use:
We created this privacy policy using the Privacy Policy Generator from Datenschutzpartner .
We may update this privacy policy at any time. We will inform about updates in an appropriate manner, particularly by publishing the latest version of the privacy policy on our website.