Policy
This policy published by standing ovation ag, Neunbrunnenstrasse 50, 8050 Zurich, Switzerland, provides information about data protection procedures when collecting, storing, and processing personal data. The policy applies to all services and benefits offered and operated by us in connection with our website standingovation.ch. Under the Swiss Data Protection Act (FADP), all natural persons have a right to protection of their privacy and protection from misuse of their personal data. We comply with those provisions.
Various terms are used in this privacy policy as understood in the FADP. These include the following terms: personal data, high-risk profiling, breach of data security, privacy by design, privacy by default, and sensitive personal data. Article 5 of the FADP explains these terms. This privacy policy relates to visitors to the website, interested parties, customers, and applicants.
Data controller
Claudia Gambini, COO
standing ovation ag
Neunbrunnenstrasse 50
8050 Zurich, Switzerland
Office: +41 43 355 70 90
Email: hello@standingovation.ch
Data processing
We process various categories of data about you. The most important categories are technical data, communication data, master data, registration data, contract data, behavioral and preference data, and other data.
You make much of this data known to us yourself (e.g., via forms, as part of communication with us, in connection with contracts, when using the website). You are not obliged to do so, subject to specific cases, e.g., in the context of mandatory protection policies (statutory obligations). If you enter into contracts with us or wish to make use of services, you must also make data available to us, in particular master data, contract data, and registration data, as part of your contractual obligation under the relevant contract. Use of the website makes the processing of technical data unavoidable. If you would like to obtain access to certain systems or buildings, you must provide us with your registration data. In the case of behavioral and preference data, you have the fundamental option of objecting or not granting consent, however.
Where permissible, we also source data from publicly accessible sources (e.g., debt collection registers, land registers, commercial registers, the media or the internet, including social media) or receive data from other companies within our association, from government agencies, and other third parties (such as credit bureaus, list brokers, contracting parties, and internet analytics services).
When you use our website, certain usage data is automatically transmitted via your internet browser by means of server log files. This includes:
- hostname of the accessing computer (IP address)
- date and time of access
- referrer URL
- browser type and version
- operating system
- browser request and information usually transferred
This usage data forms the basis for statistical and anonymous analyses, allowing us to recognize trends and use them to improve our offerings accordingly. This data cannot be attributed to specific people. Nor is this data merged with other data sources. We reserve the right to review the data retrospectively if concrete evidence of illegal use becomes known to us.
Personal data is defined as all details that relate to an identified or identifiable natural person. This data includes name, address, email address, title, telephone number, and user behavior. What data is processed in particular, and the way in which it is used, mainly depend on the services used. Personal data is treated as strictly confidential and is neither passed on nor sold to third parties.
As a rule, it is possible to use our website without providing personal data. Where personal data is collected on our web pages, this always occurs on a voluntary basis where possible. This data is not passed on to third parties without your express consent. Please be advised that data transfer on the internet (e.g. when communicating via email) can be subject to security gaps. Complete protection of data from access by third parties is not possible.
Purposes of data processing
Where you have given us your consent to the processing of personal data for specific purposes, in particular in order to establish contact (e.g., via our contact form or by email for the processing and handling of the inquiry), the lawfulness of the processing is based on your consent. You can withdraw consent you previously granted at any time. Please note that the withdrawal of consent only applies for the future. Processing that occurred before the withdrawal of consent remains unaffected. The withdrawal of consent can be addressed to the contact details named above.
When you establish contact with us (by contact form or email), your details are processed, along with any consent granted to process the contact inquiry and handle it and to carry out precontractual measures. We use the customer management system HubSpot, 25 First Street, Cambridge, MA 02141, USA, to enable us to process inquiries from interested parties quickly and efficiently. Further information is available in HubSpot’s privacy policy.
If you establish contact with us in order to apply for an internal position or freelance work, we process your data in order to review your suitability for the position (or, if applicable, other openings in our company) or to review a project and to carry out the recruitment process. Your application data is viewed by the personnel department after your application is received. Suitable applications are then forwarded to the team leader responsible for the vacancy or the project. A decision is made there about how to proceed. Within the company, fundamentally only those persons who require access to your data in order to carry out our recruitment process properly can access it.
Processing by contract processors
We collaborate with service providers and other parties we contract with within Switzerland and abroad, who process data about you in joint responsibility with us or who obtain data about you from us on their own responsibility.
Your data is only passed on to third parties in the context of statutory obligations on the basis of Article 9 of the FADP. Access to your data is granted to those employees of our company who require that access in order to fulfill our contractual and statutory obligations. Contract processors commissioned by us can also receive data for the above-named purposes. The latter are companies in the areas of IT services, logistics, print services, telecommunications, advice and consultancy, and also sales and marketing. Where we use contract processors to deliver our services, we take adequate legal precautions and appropriate technical and organizational measures to ensure the protection of personal data in accordance with the applicable legal requirements.
All these recipients can, in turn, engage third parties, meaning that your data may also become accessible to the latter. We can restrict processing by certain third parties (e.g., IT providers), but not by those other third parties (e.g., government agencies, banks).
Privacy by design and privacy by default are ensured. The principles of data processing are already taken into account when planning and designing applications.
Your rights: Access, erasure, blocking
You have the right, at any time, to free access to your stored personal data, information about its origin and recipients, and the purpose of data processing as well as the right to rectification, blocking, or erasure of that data. For this purpose and for any other queries relating to personal data, please use the contact details provided above at any time.
Retention period for your personal data
We process your data for as long as is required by the purposes of our processing, the statutory retention periods, and our legitimate interests in processing for documentation and evidential purposes, or if storage is due to technical reasons. If not precluded by legal or contractual obligations, we erase or anonymize your data after the expiration of the storage or processing period as part of our standard procedures.
Cookies
In some cases, web pages use cookies. Cookies do not damage your computer and do not contain any viruses. Cookies serve to make our offerings more user-friendly, more effective, and more secure. Cookies are small text files which are stored on your computer and saved by your browser. Please note that data that is exchanged over the internet is often routed via third countries. This means that your data may also be sent to another country, even if the sender and recipient are located in the same country.
Most of the cookies used by us are session cookies. They are automatically deleted after your visit ends. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognize your browser the next time you visit.
You can configure your browser so that you are informed about cookies being set and only allow cookies in individual cases, exclude the acceptance of cookies in certain cases or in general, and activate automatic deletion of cookies when you close your browser. If you disable cookies, the functionality of this website may be limited.
Use of Google Analytics 4
This website uses functions of the web analytics service Google Analytics 4. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Analytics 4 uses cookies. These are text files that are stored on your computer and enable analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.
No exact geo-location data is made available in Analytics. Instead, the following metadata is derived from IP addresses: city (and the derived latitude and longitude of the city), continent, country, region, subcontinent (and the ID-based counterparts). For accesses originating in the EU, IP address data is used solely for geo-location data derivation before being immediately deleted. It is not logged, it is not accessible, nor is it used for any additional use cases. Google will use this information on behalf of standing ovation ag to analyze the use of the website, compile reports about website activities, and provide additional services to the website operator connected with website and internet usage. All IP addresses that are collected from users in the EU are deleted in Analytics before they are recorded via EU domains and servers.
You can prevent the storage of cookies through an appropriate setting in your browser software; however, please note that in this case you may not be able to make full use of all the functions on this website. Furthermore, you can prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by loading and installing the browser plugin available at this link.
Contact form
If you send us inquiries using the contact form, your information from the inquiry form, including the contact details you stated there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. We do not pass on this data without your consent.
Newsletter
If you would like to subscribe to the newsletter offered on the website, we need an email address from you as well as low-risk data that allow us to verify that you are the owner of the email address provided and agree to receive the newsletter. We use this data solely in order to send the requested information, and do not pass it on to third parties. Data that is considered particularly high risk pursuant to Article 5 FADP, and which is classified as «profiling» (performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements) is not collected.
You can withdraw, at any time, the consent you granted to store the data and the email address and to use them to send the newsletter, for example via the «Unsubscribe» link in the newsletter.
Social media
We are represented on social networks and platforms so that we can also communicate with you there and can inform you about our services. Usage profiles can be created from usage behavior and the interests that they reveal. These usage profiles can in turn be used to, say, serve advertising within and outside the platforms that is intended to correspond to the user’s interests. For that purpose, cookies in which the usage behavior and the interests of users are stored may be stored on users’ computers. Additional data can also be stored in those usage profiles, in particular if users are members of the respective platforms and have logged in. We draw your attention to the fact that when this happens your data may also be processed outside the European Union and is processed there as a rule for market research and advertising purposes. For information about the respective processing and the respective options for objection, please see the following websites, for which links are provided below.
Privacy policies of the providers:
- Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland), Facebook pages on the basis of an agreement on the joint processing of personal data – Privacy policy, Opt-out, Usage-based online advertising and online data protection, Privacy Shield.
- Google/YouTube (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) – Privacy policy, Opt-Out, Privacy Shield.
- Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Privacy policy and Opt-Out.
- LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland) – Privacy policy, Opt-Out, Privacy Shield.
- Vimeo (Vimeo, Inc., 555 West 18th Street, New York, New York 10011, USA, privacy@vimeo.com) – Privacy policy.
Additional services
In the context of our interest in an optimal online presence, the services of third parties are used on our website. The following third-party providers are used on our website:
- Facebook: Buttons of the social network Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA, are integrated into our web pages. You can recognize the Facebook buttons by the Facebook logo or the Share button on our website. We do not use the Like button for privacy reasons. There is an overview of the Facebook buttons and plugins here. If you visit our web pages, initially no personal data is passed on to Facebook as a rule. It is only when the Share button is clicked that a connection is established between your browser and the Facebook server. If the Share button is used, Facebook automatically receives the information that you have visited us with your IP address. If you are logged in to your Facebook account, you can link the contents of our site to your Facebook profile. This enables Facebook to attribute your visit to our web pages to your user account. Please be advised that we, as the provider of the web pages, do not obtain any knowledge of the content of the transmitted data and its use by Facebook. Further information on this topic is available in the Facebook privacy policy. If you do not want Facebook to be able to attribute the visit to our web pages to your Facebook user account, do not click the Share button and please log out of your Facebook user account.
- LinkedIn: «Share with LinkedIn Plugins» by LinkedIn may be used on our website; these are operated by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. LinkedIn erhält Informationen über Ihre Besuche und Interaktionen mit unserer Website, wenn Sie mit Ihrem Profil eingeloggt sind. Further information on this topic is available in the LinkedIn privacy policy.
- Instagram: Social plugins by Instagram may be used on our website; these are operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA. The plugins are identified by an Instagram logo, for example in the form of an Instagram camera. If you visit a page on our website that contains such a plugin, your browser establishes a direct connection to Instagram’s servers. Please see Instagram’s privacy policy for information about the purpose, scope, and additional processing and use of data by Instagram as well as your relevant rights and configuration options for the protection of your privacy.
- Vimeo: To integrate videos, we use the services of third-party provider Vimeo LLC, with registered office at 555 West 18th Street, New York, New York 10011, USA. If you visit one of our web pages that has been provided with a Vimeo plugin, a connection to Vimeo’s servers is established. In the process, the Vimeo server is informed of which of our pages you have visited, and your IP address is transmitted. This also occurs if you are not logged into Vimeo or you do not have an account with Vimeo. The information collected by Vimeo is transmitted to the Vimeo server in the USA. If you are logged into your Vimeo account, you enable Vimeo to attribute your browsing behavior directly to your personal profile. You can prevent this by logging out of your Vimeo account. You can find further information on handling of user data in Vimeo’s privacy policy.
- HubSpot: We have integrated HubSpot forms on our pages. If you fill out the form and click «Send», your personal data is sent to HubSpot. We use the customer management system HubSpot, 25 First Street, Cambridge, MA 02141, USA, to enable us to process inquiries from interested parties quickly and efficiently. Further information is available in the HubSpot privacy policy.
Objection, advertising emails
The use of contact data provided as part of the required publishing details to send advertising and information material not explicitly requested is hereby objected to. standing ovation ag expressly reserves the right to take legal action in the event of unsolicited receipt of advertising information, e.g., in spam emails.
Data security and breaches of privacy
We take adequate security measures in order to ensure the confidentiality, integrity, and availability of your personal data, to protect it against unauthorized or unlawful processing, and to reduce the dangers of loss, unintentional alteration, unwanted disclosure, or unauthorized access.
Any and all breaches of data protection are notified to the FDPIC (Federal Data Protection and Information Commissioner) as quickly as possible.
Amendment of privacy policy
This privacy policy does not form part of a contract with you. We may amend this privacy policy at any time. The version published on this website is the respective current version.
Most recent update: 09.18.2023