This Privacy Policy explains how swiss-chocolate.org (“the Website”) collects, uses, and protects personal data in accordance with the EU General Data Protection Regulation (GDPR) and the revised Swiss Federal Act on Data Protection (revDSG).
1) Data controller
The data controller responsible for data processing on this Website is:
Swiss-chocolate.org
Switzerland
Contact: Contact page
2) What data we collect
a) Server log data
When you access this Website, the hosting provider may automatically collect technical information, including:
- IP address
- browser type and version
- operating system
- referrer URL
- date and time of access
This data is processed to ensure technical stability, security, and proper delivery of the Website.
b) Contact submissions
If you contact us via the contact form, we collect the information you voluntarily provide (e.g., name, email address, message content). This data is used solely to respond to your inquiry.
c) Cookies
This Website may use technically necessary cookies required for core functionality (e.g., session handling, security).
If analytics, tracking, or additional cookies are implemented in the future, users will be informed and — where legally required — asked for consent.
3) Legal basis for processing (GDPR)
Under GDPR, personal data is processed based on:
- Legitimate interests (Art. 6(1)(f) GDPR) — for website security and technical operation.
- Consent (Art. 6(1)(a) GDPR) — where required for optional services.
- Pre-contractual communication (Art. 6(1)(b) GDPR) — when responding to inquiries.
4) Legal basis under Swiss law (revDSG)
Data processing is carried out in accordance with the revised Swiss Federal Act on Data Protection (revDSG), based on lawful and transparent processing principles.
5) Data storage and retention
Personal data is retained only as long as necessary for the purpose for which it was collected, or as required by applicable legal obligations.
6) Data sharing
Personal data is not sold or rented. Data may be shared with:
- hosting providers or technical service providers necessary for operating the Website,
- authorities where required by law.
7) International data transfers
If data is transferred outside Switzerland or the European Economic Area (EEA), such transfer will occur only where appropriate safeguards are in place in accordance with GDPR and Swiss data protection law.
8) Your rights (GDPR & revDSG)
You have the right to:
- request access to your personal data,
- request correction of inaccurate data,
- request deletion of your data where legally permissible,
- restrict processing under certain conditions,
- object to processing based on legitimate interest,
- lodge a complaint with a competent supervisory authority.
In Switzerland, the supervisory authority is the Federal Data Protection and Information Commissioner (FDPIC).
9) Data security
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction.
10) Changes to this Privacy Policy
We may update this Privacy Policy to reflect legal, technical, or operational changes. The current version published on this page is authoritative.
For questions regarding data protection, please use our
Contact page.