Privacy Policy

We hereby inform you, in accordance with the legal requirements of data protection law (in particular according to the new BDSG and the European General Data Protection Regulation “GDPR”), about the type, scope and purpose of the processing of personal data by our company. This privacy policy also applies to our websites and social media profiles. For the definitions of terms such as “personal data” or “processing”, please refer to Art. 4 GDPR.

Name and Contact Details of the Controller The controller (hereinafter referred to as the “controller”) within the meaning of Art. 4 No. 7 GDPR is:

Switzerland Green Energy GmbH Christian Preinfalk Uttigenstraße 30 CH-3600 THUN E-mail address: info@sgreeneng.eu

Data Protection Officer Bodo Oepen Paulstraße 91 DE-52353 Düren bodo.oepen@it24web.net

Types of Data, Purposes of Processing and Categories of Data Subjects Below we inform you about the type, scope and purpose of the collection, processing and use of personal data.

1. Types of data we process

  • Usage data (access times, visited websites, etc.)
  • Inventory data (name, address, etc.)
  • Contact data (telephone number, e-mail, fax, etc.)
  • Payment data (bank details, account data, payment history, etc.)
  • Contract data (subject matter of the contract, term, etc.)
  • Content data (text entries, videos, photos, etc.)
  • Communication data (IP address, etc.)

2. Purposes of processing pursuant to Art. 13 para. 1 c) GDPR

  • Execution of contracts
  • Purposes of evidence / securing evidence
  • Technical and economic optimization of the website
  • Facilitating access to the website
  • Fulfillment of contractual obligations
  • Contact in the event of legal objections by third parties
  • Fulfillment of statutory retention obligations
  • Optimization and statistical evaluation of our services
  • Improving user experience
  • User-friendly design of the website
  • Marketing / sales / advertising
  • Creation of statistics
  • Prevention of SPAM and abuse
  • Customer service and customer care
  • Processing of contact requests
  • Provision of websites with functions and content
  • Security measures
  • Uninterrupted and secure operation of our website

3. Categories of data subjects pursuant to Art. 13 para. 1 e) GDPR Visitors/users of the website, customers, interested parties. The data subjects are collectively referred to as “users”.

Legal Bases for the Processing of Personal Data Below we inform you about the legal bases for the processing of personal data:

  1. If we have obtained your consent for the processing of personal data, Art. 6 para. 1 sentence 1 lit. a) GDPR serves as the legal basis.
  2. If the processing is necessary for the performance of a contract or for the implementation of pre-contractual measures taken at your request, Art. 6 para. 1 sentence 1 lit. b) GDPR serves as the legal basis.
  3. If the processing is necessary for compliance with a legal obligation to which we are subject (e.g. statutory retention obligations), Art. 6 para. 1 sentence 1 lit. c) GDPR serves as the legal basis.
  4. If the processing is necessary to protect the vital interests of the data subject or of another natural person, Art. 6 para. 1 sentence 1 lit. d) GDPR serves as the legal basis.
  5. If the processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject, Art. 6 para. 1 sentence 1 lit. f) GDPR serves as the legal basis.

Disclosure of Personal Data to Third Parties and Processors We generally do not disclose data to third parties without your consent. If this does occur, the disclosure is based on the legal bases mentioned above, e.g. when data is passed on to online payment providers for the performance of a contract or due to a court order or a statutory obligation to disclose data for the purposes of criminal prosecution, danger prevention or the enforcement of intellectual property rights.

We also use processors (external service providers, e.g. for hosting our websites and databases) to process your data. If data is passed on to processors within the framework of a data processing agreement, this is always done in accordance with Art. 28 GDPR. We carefully select our processors, monitor them regularly and have secured a right to issue instructions regarding the data. In addition, the processors must have taken appropriate technical and organizational measures and comply with the data protection regulations pursuant to the new BDSG and the GDPR.

Data Transfer to Third Countries The adoption of the European General Data Protection Regulation (GDPR) has created a uniform basis for data protection in Europe. Your data is therefore primarily processed by companies to which the GDPR applies. If processing is nevertheless carried out by third-party services outside the European Union or the European Economic Area, these must meet the special requirements of Art. 44 et seq. GDPR. This means that processing takes place on the basis of special guarantees, such as an officially recognized adequacy decision by the EU Commission or compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).

Insofar as we obtain your explicit consent for the transfer of data to the USA pursuant to Art. 49 para. 1 sentence 1 lit. a) GDPR due to the invalidity of the so-called “Privacy Shield”, we point out the risk of secret access by US authorities and the use of the data for surveillance purposes, possibly without legal remedies for EU citizens.

Deletion of Data and Storage Period Unless otherwise stated in this privacy policy, your personal data will be deleted or blocked as soon as the consent granted for processing is revoked by you or the purpose for storage ceases to apply or the data are no longer required for the purpose, unless their further storage is required for evidence purposes or statutory retention obligations prevent deletion. These include, for example, commercial retention obligations for business letters pursuant to § 257 para. 1 HGB (6 years) and tax retention obligations pursuant to § 147 para. 1 AO for documents (10 years). Once the prescribed retention period has expired, your data will be blocked or deleted, unless storage is still required for the conclusion or performance of a contract.

Existence of Automated Decision-Making We do not use automated decision-making or profiling.

Provision of the Website and Creation of Log Files

  1. If you use our website purely for informational purposes (i.e. no registration and no other transmission of information), we only collect the personal data that your browser transmits to our server. When you view our website, we collect the following data: • IP address; • Internet service provider of the user; • Date and time of access; • Browser type; • Language and browser version; • Content of the request; • Time zone; • Access status/HTTP status code; • Data volume; • Websites from which the request originates; • Operating system. These data are not stored together with other personal data relating to you.
  2. These data serve the purpose of providing you with a user-friendly, functional and secure delivery of our website with functions and content as well as their optimization and statistical evaluation.
  3. The legal basis for this is our legitimate interest in data processing pursuant to Art. 6 para. 1 sentence 1 lit. f) GDPR, which is also reflected in the purposes stated above.
  4. For security reasons, we store these data in server log files for a period of 30 days. After this period, they are automatically deleted unless we need to retain them for evidence purposes in the event of attacks on the server infrastructure or other legal violations.

Cookies

  1. We use so-called cookies when you visit our website. Cookies are small text files that your internet browser stores and saves on your computer. When you visit our website again, these cookies provide information in order to automatically recognize you. Cookies also include so-called “user IDs”, where user information is stored by means of pseudonymized profiles. When you visit our website, we inform you by means of a notice on our privacy policy about the use of cookies for the purposes mentioned above and how you can object to this or prevent their storage (“opt-out”). The following types of cookies are distinguished: • Necessary, essential cookies: Essential cookies are required for the operation of the website in order to enable certain functions such as logins, shopping cart or user input (e.g. regarding the language of the website). • Session cookies: Session cookies are required to recognize multiple uses of an offer by the same user (e.g. if you have logged in to determine your login status). When you visit our site again, these cookies provide information in order to automatically recognize you. The information obtained in this way is used to optimize our offers and to enable you easier access to our site. When you close the browser or log out, the session cookies are deleted. • Persistent cookies: These cookies remain stored even after the browser is closed. They are used for storing logins, reach measurement and marketing purposes. They are automatically deleted after a specified period, which may vary depending on the cookie. You can delete cookies at any time in the security settings of your browser.
  2. Third-party cookies (in particular from advertisers): You can configure your browser settings according to your wishes and, for example, refuse the acceptance of third-party cookies or all cookies. However, we would like to point out that you may then not be able to use all functions of this website. For more information on these cookies, please refer to the respective privacy policies of the third-party providers.
  3. Data categories: User data, cookie, user ID (including visited pages, device information, access times and IP addresses).
  4. Purposes of processing: The information obtained in this way serves the purpose of technically and economically optimizing our web offers and enabling you easier and secure access to our website.
  5. Legal bases: If we process your personal data with the help of cookies on the basis of your consent (“opt-in”), Art. 6 para. 1 sentence 1 lit. a) GDPR is the legal basis. Otherwise, we have a legitimate interest in the effective functionality, improvement and economic operation of the website, so that in this case Art. 6 para. 1 sentence 1 lit. f) GDPR is the legal basis. In addition, Art. 6 para. 1 sentence 1 lit. b) GDPR is the legal basis if the cookies are set for the initiation of a contract, e.g. in the case of orders.
  6. Storage period / deletion: The data are deleted as soon as they are no longer required to achieve the purpose for which they were collected. In the case of data collected to provide the website, this is the case when the respective session has ended. Otherwise, cookies are stored on your computer and transmitted from there to our site. As a user, you therefore have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are disabled for our website, it may no longer be possible to use all functions of the website to their full extent. Here you will find information on deleting cookies in the respective browsers: Chrome: https://support.google.com/chrome/answer/95647 Safari: https://support.apple.com/de-at/guide/safari/sfri11471/mac Internet Explorer: https://support.microsoft.com/de-at/help/17442/windows-internet-explorer-delete-manage-cookies Microsoft Edge: https://support.microsoft.com/de-at/help/4027947/windows-delete-cookies Firefox: https://support.mozilla.org/de/kb/cookies-und-website-daten-in-firefox-loschen
  7. Objection and “opt-out”: You can generally prevent the storage of cookies on your hard drive independently of consent or legal permission by selecting “do not accept cookies” in your browser settings. However, this may result in a functional restriction of our offers. You can object to the use of cookies by third parties for advertising purposes via an “opt-out” on this American website or this European website.

Use of Blog Functions / Comments

  1. You can post public comments in our blog, which contains articles on topics of our website. You can use a pseudonym instead of your real name. Your contribution will then be published under the pseudonym. Providing an e-mail address is mandatory; all other information is voluntary.
  2. When you post a comment, we store your IP address together with the date and time, which we delete after 30 days. The storage serves the legitimate interest of defending against claims by third parties in the event that you publish illegal or untrue content. We store your e-mail address for the purpose of contacting you if third parties legally object to your comments.
  3. The legal bases are Art. 6 para. 1 sentence 1 lit. b) and f) GDPR.
  4. We do not check your comments before publication. In the event of objections by third parties, we reserve the right to delete your comments. We do not pass on the data to third parties unless this is necessary to pursue our claims or there is a legal obligation (Art. 6 para. 1 sentence 1 lit. c) GDPR).
  5. The data are deleted as soon as they are no longer required to achieve the purpose for which they were collected or to perform the contract, because the contract has been terminated.

Contact via Contact Form / E-Mail / Fax / Post

  1. When you contact us via the contact form, fax, post or e-mail, your details will be processed for the purpose of handling the contact request.
  2. The legal basis for the processing of the data is Art. 6 para. 1 sentence 1 lit. a) GDPR if you have given your consent. The legal basis for the processing of data transmitted in the course of a contact request or e-mail, letter or fax is Art. 6 para. 1 sentence 1 lit. f) GDPR. The controller has a legitimate interest in processing and storing the data in order to be able to answer user inquiries, for evidence purposes in the event of liability and, if necessary, to comply with statutory retention obligations for business letters. If the contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 para. 1 sentence 1 lit. b) GDPR.
  3. We may store your details and contact request in our Customer Relationship Management system (“CRM system”) or a comparable system.
  4. The data are deleted as soon as they are no longer required to achieve the purpose for which they were collected. For the personal data from the contact form input mask and those sent by e-mail, this is the case when the respective conversation with you has ended. The conversation is deemed to have ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified. Inquiries from users who have an account or contract with us are stored until the end of two years after termination of the contract. In the case of statutory archiving obligations, deletion takes place after expiry: end of commercial (6 years) and tax (10 years) retention obligations.
  5. You have the right to withdraw your consent to the processing of personal data at any time pursuant to Art. 6 para. 1 sentence 1 lit. a) GDPR. If you contact us by e-mail, you can object to the storage of the personal data at any time.

Contact by Telephone

  1. When you contact us by telephone, your telephone number is processed for the purpose of handling and processing the contact request and is temporarily stored or displayed in the RAM/cache of the telephone device/display. The storage is carried out for liability and security reasons in order to be able to provide evidence of the call and for economic reasons in order to enable a callback. In the case of unauthorized advertising calls, we block the numbers.
  2. The legal basis for the processing of the telephone number is Art. 6 para. 1 sentence 1 lit. f) GDPR. If the contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b) GDPR.
  3. The device cache stores calls for 30 days and successively overwrites or deletes old data; when the device is disposed of, all data are deleted and the memory may be destroyed. Blocked telephone numbers are checked annually for the necessity of blocking.
  4. You can prevent the display of the telephone number by calling with a suppressed telephone number.

YouTube Videos

  1. We have integrated YouTube videos from youtube.com on our website using the embedded function so that they can be called up directly on our website. YouTube belongs to Google Ireland Limited, register no.: 368047, Gordon House, Barrow Street, Dublin 4, Ireland.
  2. Data category and description of data processing: Usage data (e.g. visited website, content and access times). We have embedded the videos in the so-called “extended data protection mode” without cookies being used to record user behavior in order to personalize video playback. Instead, video recommendations are based on the currently played video. Videos played in extended data protection mode in an embedded player do not affect which videos are recommended to you on YouTube. When you start a video (click on the video), you consent to YouTube tracking the information that you have accessed the corresponding subpage or the video on our website and using this data for advertising purposes.
  3. Purpose of processing: Provision of a user-friendly offer, optimization and improvement of our content.
  4. Legal bases: If you have given your consent to the processing of your personal data by the third-party provider “etracker” (“opt-in”), Art. 6 para. 1 sentence 1 lit. a) GDPR is the legal basis. In addition, our legitimate interest in data processing pursuant to Art. 6 para. 1 sentence 1 lit. f) GDPR, which lies in the purposes stated above, is the legal basis. For services provided in connection with a contract, tracking and analysis of user behavior is carried out pursuant to Art. 6 para. 1 sentence 1 lit. b) GDPR in order to be able to offer optimized services for the fulfillment of the contract purpose with the information obtained.
  5. Data transfer/recipient category: Third-party provider in the USA. The data obtained are transferred to the USA and stored there. This also takes place without a Google user account. If you are logged into your Google account, Google may assign the above data to your account. If you do not wish this, you must log out of your Google account. Google creates user profiles from such data and uses these data for the purposes of advertising, market research or optimization of its websites.
  6. Storage period: Cookies up to 2 years or until deletion of the cookies by you as the user.
  7. Objection: You have the right to object to the creation of user profiles vis-à-vis Google. Please contact Google directly using the privacy policy listed below. You can exercise an opt-out objection with regard to advertising cookies in your Google account here: https://adssettings.google.com/authenticated.
  8. Further information on the use of Google cookies and their advertising technologies, storage period, anonymization, location data, functionality and your rights can be found in the YouTube terms of use at https://www.youtube.com/t/terms and in Google’s privacy policy for advertising at https://policies.google.com/technologies/ads. Google’s general privacy policy: https://policies.google.com/privacy.

Social Media Plug-ins

  1. We use social media plug-ins from social networks on our website. We use the so-called “two-click solution” Shariff from c’t / heise.de: https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html; service provider: Heise Medien GmbH & Co. KG, Karl-Wiechert-Allee 10, 30625 Hannover, Germany; privacy policy: https://www.heise.de/Datenschutzerklaerung-der-Heise-Medien-GmbH-Co-KG-4860.html.
  2. Data category and description of data processing: Usage data, content data, inventory data. When our website is accessed, no personal data are transmitted to the third-party providers of the social plug-ins by “Shariff”. In addition to the logo or brand of the social network, you will find a slider with which you can activate the plug-in by clicking. This activation constitutes your consent in the form that the respective provider of the social network receives the information that you have accessed our website and your personal data are transmitted to the plug-in provider and stored there. These are so-called third-party cookies. With some providers such as Facebook and XING, your IP address is anonymized immediately after collection according to their information. The plug-in provider stores the data collected about the user as usage profiles. You can revoke your consent at any time by deactivating the slider.
  3. Purpose of data processing: Improvement and optimization of our website; increasing our awareness via social networks; possibility of interaction with you and users among themselves via social networks; advertising, analysis and/or needs-based design of the website.
  4. Legal bases: The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. f) GDPR, which lies in the purposes stated above. Insofar as you have given us or the controller of the social network consent to the processing of your personal data, Art. 6 para. 1 sentence 1 lit. a) in conjunction with Art. 7 GDPR is the legal basis. For pre-contractual inquiries or the use of your personal data for the performance of a contract, Art. 6 para. 1 sentence 1 lit. b) GDPR is the legal basis.
  5. Data transfer/recipient category: Social network.
  6. Used social networks and objection: With regard to the purpose and scope of data collection and processing, please refer to the respective privacy policies of the social networks. You will also find information there on your rights and setting options for the protection of your personal data. You have the right to object to the creation of these user profiles, whereby you can exercise these rights by contacting the respective plug-in provider directly.

Facebook

  1. We have integrated plug-ins from the social network Facebook.com (EU seat: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) on our website within the framework of the so-called “two-click solution” by Shariff. You can recognize these by the Facebook logo “f” or the addition “Like”, “Gefällt mir” or “Share”.
  2. As soon as you voluntarily activate the Facebook plug-in, a connection is established from your browser to the Facebook servers. Facebook receives the information, including your IP address, that you have accessed our website and transmits this information to Facebook servers in the USA, where it is stored. If you are logged into your Facebook account, Facebook may assign this information to your account. When using the functions of the plug-in, e.g. pressing the “Like” button, this information is also transmitted from your browser to the Facebook servers in the USA and stored there and displayed in your Facebook profile and possibly to your friends.
  3. The purpose and scope of data collection and the further processing and use of the data by Facebook as well as your rights in this regard and setting options for the protection of your privacy can be found in Facebook’s privacy policy: https://www.facebook.com/about/privacy/. Data collection when using the “Like” button: https://www.facebook.com/help/186325668085084. You can manage and object to your settings regarding the use of your profile data for advertising purposes on Facebook here: https://www.facebook.com/ads/preferences/.
  4. If you log out of Facebook and delete your cookies before visiting our website, no data about your visit to our website will be assigned to your Facebook profile when the plug-in is activated.
  5. Joint processing agreement for personal data on Facebook pages (Art. 26 GDPR): https://www.facebook.com/legal/terms/page_controller_addendum Privacy policy for Facebook pages: https://www.facebook.com/legal/terms/information_about_page_insights_data.

Instagram

  1. We have integrated plug-ins from the social network Instagram (service provider: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) on our website within the framework of the so-called “two-click solution” by Shariff. You can recognize these by the Instagram logo in the form of a square camera.
  2. If you voluntarily activate the plug-in, a connection is established from your browser to the Instagram servers. Instagram receives the information, including your IP address, that you have visited our site and transmits the information to Instagram servers in the USA, where it is stored. If you are logged into your Instagram account, Instagram may assign this information to your account and you can click the Instagram button to share and save the content of our pages on your Instagram account and, if applicable, display it to your friends there. We have no knowledge of the exact content of the transmitted data, its use and storage period by Instagram.
  3. If you log out of Instagram and delete your cookies before visiting our website, no data about your visit to our website will be assigned to your Instagram profile when the plug-in is activated.
  4. You can find further information in Instagram’s privacy policy/opt-out at https://help.instagram.com/519522125107875, objection: https://help.instagram.com/contact/186020218683230; joint processing agreement for personal data on Instagram pages (Art. 26 GDPR): https://www.facebook.com/legal/terms/page_controller_addendum.

Rights of the Data Subject

  1. Objection or revocation of the processing of your data Insofar as the processing is based on your consent pursuant to Art. 6 para. 1 sentence 1 lit. a), Art. 7 GDPR, you have the right to revoke your consent at any time. The legality of the processing carried out on the basis of the consent until revocation remains unaffected. Insofar as we base the processing of your personal data on the balancing of interests pursuant to Art. 6 para. 1 sentence 1 lit. f) GDPR, you can object to the processing. This is the case in particular if the processing is not necessary for the performance of a contract with you, which we explain in the following description of the functions. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as carried out by us. In the event of your justified objection, we will examine the situation and will either stop or adjust the data processing or show you our compelling legitimate grounds on the basis of which we will continue the processing. You can object to the processing of your personal data for the purposes of advertising and data analysis at any time. You can exercise the right to object free of charge. You can inform us of your advertising objection using the following contact details:
  2. Switzerland Green Energy GmbH Uttigenstraße 30 CH-3600 THUN
  3. Right to information You have the right to information about the personal data concerning you that we have stored pursuant to Art. 15 GDPR. This includes in particular information about the purposes of processing, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the origin of your data if they were not collected directly from you.
  4. Right to rectification You have the right to rectification of inaccurate or completion of correct data pursuant to Art. 16 GDPR.
  5. Right to erasure You have the right to erasure of the data concerning you that we have stored pursuant to Art. 17 GDPR, unless statutory or contractual retention periods or other statutory obligations or rights to further storage prevent this.
  6. Right to restriction You have the right to request the restriction of the processing of your personal data if one of the conditions in Art. 18 para. 1 lit. a) to d) GDPR is met: • If you contest the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data; • the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead; • the controller no longer needs the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defense of legal claims, or • you have objected to processing pursuant to Art. 21 para. 1 GDPR and it is not yet clear whether the legitimate grounds of the controller override your grounds.
  7. Right to data portability You have the right to data portability pursuant to Art. 20 GDPR, which means that you can receive the personal data concerning you that we have stored in a structured, commonly used and machine-readable format or request that they be transmitted to another controller.
  8. Right to lodge a complaint You have the right to lodge a complaint with a supervisory authority. As a rule, you can contact the supervisory authority in particular in the member state of your habitual residence, place of work or place of the alleged infringement.

Data Security In order to protect all personal data transmitted to us and to ensure that the data protection regulations are complied with by us and our external service providers, we have taken appropriate technical and organizational security measures. For this reason, among other things, all data are transmitted between your browser and our server in encrypted form via a secure SSL connection.

Status: 03.08.2022 Source: here read

© {2026} Switzerland Green Energy GmbH