top of page

Privacy Policy

Data Privacy Policy
Last updated: January, 2024

1. Responsible Body

Connect AI Group GmbH is the responsible body in terms of data protection law for the collection, processing, and use of your personal data by Connect AI. Please direct any questions regarding this statement or concerns regarding data protection to the following address:

Connect AI Group GmbH

Lagerstrasse 93
8004 Zürich

Switzerland

 

2. Scope of Application

This privacy policy applies to personal data of the following natural persons:

Customers and users of Connect AI or Connect AI Group GmbH who are natural persons. All other natural persons who are in contact with Connect AI or Connect AI Group GmbH, e.g. representatives and employees of legal entities, suppliers, visitors to our website, who contact us via the website or the contact form there, etc.

 

Until the data protection declaration and/or the legal situation changes, this information also applies to legal entities, insofar as the Swiss Federal Act on Data Protection (FADP) is applicable.

Connect AI processes personal data in accordance with the legal regulations, if and insofar as the respective regulations are applicable.

3. Used Sources and Data

Connect AI collects your personal data when you contact us as a user or customer. In addition, we also process your data when you contact Connect AI as a supplier, service provider, or in other functions. In addition, we process personal data in the course of our other business activities. In addition, we process personal data that we legitimately obtain in connection with the provision of our services from publicly accessible sources (e.g. purchase of address data/foreign addresses for mail order campaigns, etc.).

We furthermore process such data that is generated in the course of using our website or such data that is provided by you there (e.g. in the course of communicating with our agent or by filling out the web form).

Subject of data protection is personal data. This is all information relating to an identified or identifiable person (cf. Art. 4 No. 1 GDPR) or respectively a determined or determinable person (Art. 3 lit. a FADP).

 

Relevant personal data are e.g. personal details (including surname, first name, date of birth, address, email), telephone number, account number, etc. In addition, order data, data from the fulfilment of our contractual obligations, advertising and sales data, documentation data, and other data comparable to the categories mentioned can also be personal data.

 

We only process personal data if there is a legal basis for this or if you have given us your consent, for example when ordering online.

4. Purpose of Processing


We process personal data for the following processing purposes:

a) To fulfil contractual obligations/provide our services
 

Connect AI stores and processes your personal data for the purpose of fulfilling contractual obligations and to provide our corresponding digital services. In doing so, we process the personal data that you have voluntarily provided us with for the purpose of performing our contractual obligations and for the provision of the associated digital services.

Furthermore, Connect AI stores and processes personal data also for the provision, administration, and implementation of customer and user communication by mail, telephone, and via electronic means of communication. In addition, data processing is carried out for the implementation of pre-contractual measures (e.g. the preparation of a service offer), which are carried out upon request.

 

b) As part of the assessment of different interests


As far as required, we process your data beyond the actual fulfilment of the contract in order to protect so-called legitimate interests of ourselves or third parties. Examples of this are:

- Advertising or market and opinion research, unless you have objected to the use of your data

- Assertion of legal claims and defense in legal disputes

- Ensuring IT security and IT operation

- Analysis of the Internet traffic on our website and the use of the bot on our website ensuring the highest possible functionality and usability of the bot by using Messenger services and the necessary interface software, improving the functionality of our website

- Prevention and investigation of criminal offenses

- Measures for business management and further development of services and products

 

c) Based on your consent

If you have authorized us to process personal data for specific purposes, the legitimacy of these processing operations is based on your consent. A granted consent can be revoked at any time. The revocation of consent does not affect the legitimacy of the data processed until revocation.

d) Due to legal requirements or public interest


Data may also be processed or forwarded if this is required by law or in the public interest.

e) Specific purpose and change of purpose of data processing


The collected data will only be processed for the declared purpose respectively. Processing of your personal data for purposes other than those described will only take place if a legal directive permits this or if you have consented to the changed purpose of the data processing. In the event of data processing for purposes other than those for which the data was originally collected, we will inform you of this purpose before the new processing operation takes place and provide you with all other relevant information.

5. Confidentiality/Security

All collected, processed, and stored personal data is treated confidentially by Connect AI Group GmbH and their employees. The data transmitted by you will be stored as follows: physical data will be processed and stored in Switzerland & Europe, electronic data of customers and users will be stored by Google Cloud. Furthermore, we use an online CRM (HubSpot), which among other things stores data in the United States of America and is Privacy-Shield certified. In doing so, we ensure compliance with Swiss and European data protection requirements by using so-called standard contract clauses of the EU Commission.

The data is stored with the utmost care and protected from access by third parties. Only those employees have access to your data who need it to perform their duties.

The data you enter by email or via the website form is transmitted without encryption. It cannot therefore be excluded that data may be lost or accessed by third parties in transit. The online transmission of personal data is therefore at your own risk.

6. Who Will Get My Data?

At Connect AI Group GmbH, only those employees who need access to your data to fulfil our contractual and legal obligations are granted access. All data that is subject to confidentiality will be treated accordingly.

Personal data will be passed on exclusively and in compliance with the legal requirements, for instance if there is a sufficient legal basis for it, e.g. the purpose of fulfilling the contract, a legitimate interest, or your consent. In addition, data may be transferred to other responsible parties provided that we are obliged to do so by law or by an enforceable official or court order.

Service providers employed by us may also receive data, subject to the legal requirements for data transfer, if they maintain the corresponding confidentiality. These are, among others, companies in the categories IT services, telecommunications, (legal) consulting, sales and marketing as well as interface service providers in the field of communication via messengers of various third-party providers such as WhatsApp (messenger services). Prior to the use of Messenger by third-party providers and the interface service providers required

for this purpose, a corresponding notification is made in the chatbot, and the user's consent (approval) is requested.

We have carefully selected these service providers and oblige them to handle and secure the data stored with them carefully. All service providers are also obliged by us to maintain confidentiality and to comply with legal requirements.

We may also pass on personal data to recipients based outside Switzerland, the EU, or the EEA in so-called third states. In the event of such a transfer, we will ensure in advance that the recipient either has an adequate level of data protection or has your consent for the transfer.

7. Data Retention Periods:


We keep your data as long as needed for contracts or legal requirements. Afterward, data is deleted unless legally required or for legal defenses. Data might be retained for tax obligations (usually ten years) or statutory limitation periods (up to 10 years).

8. Your Data Rights:


You have the right to access, correct, or delete your personal information. Contact us for inquiries regarding your data.

According to Swiss data laws or GDPR:
- Right to know about your personal data processing.
- Right to correct inaccurate data.
- Right to request data correction, completion, or deletion if unnecessary or unlawfully processed.
- Right to request processing limits.
- Right to data portability (GDPR).
- Right to file complaints with relevant authorities.
- Right to withdraw consent for future processing.

9. Cookies and Tracking

We use cookies and similar technologies to enhance user experience. You can manage cookie preferences in your browser settings.

10. Changes to the Policy


We reserve the right to update this policy. Please review periodically for any changes.

 


11. Contact Us


If you have questions or concerns regarding our data privacy practices, please contact us.

bottom of page