PRIVACY POLICY

We are delighted to welcome you to our website chugarden.com and appreciate your interest in our company.

Protecting your personal data, such as your date of birth, name, telephone number, address, etc., is of utmost importance to us.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect when you visit our website. Our data protection practices comply with the legal provisions of the Swiss Federal Data Protection Act (DSG). The following privacy policy fulfills the information obligations under the DSG, as outlined in Articles 19 ff.


Data Controller
The data controller, as defined in Art. 5 letter j of the DSG, is the private individual or federal body who decides on the purpose and means of processing.

For our website, the data controller is:
Chu GmbH
Mary Ann Capitani-Chu
Seftigenstrasse 47
3007 Bern
Switzerland
E-Mail: info@chugarden.com
Tel.: +41 31 372 86 86

PROVISION OF THE WEBSITE AND CREATION OF LOGFILES

Upon each visit to our website, our system automatically collects data and information from the accessing device (e.g., computer, mobile phone, tablet, etc.).

What personal data is collected and to what extent is it processed?
(1) Information about the browser type and version used;
(2) The operating system of the accessing device;
(3) Hostname of the accessing computer;
(4) The IP address of the accessing device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) accessed on our website;
(7) Websites from which the user's system accessed our website (referrer tracking);
(8) Notification of whether the access was successful;
(9) Amount of data transmitted

These data are stored in the log files of our system. Storage of this data along with personal data of specific users does not occur, thus individual website visitors are not identified

Legal basis for processing personal data
Processing of personal data is carried out in accordance with the principles of legality (Art. 6 para. 1 DSG) and good faith (Art. 6 para. 2 DSG or Art. 2 ZGB).

Purpose of data processing
The temporary (automated) storage of data is necessary for the operation of a website visit to enable delivery of the website. The storage and processing of personal data also serve to maintain the compatibility of our website for as many visitors as possible, and for combating misuse and troubleshooting. It is necessary to log the technical data of the accessing computer in order to react as early as possible to display errors, attacks on our IT systems, and/or errors in the functionality of our website. Additionally, the data serve us to optimize the website and to ensure the general security of our information technology systems.

Duration of storage
The deletion of the aforementioned technical data occurs as soon as they are no longer needed to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.

Restriction, objection, correction, and deletion options
You can request correction or deletion of the data at any time. Your rights and how to assert them can be found in the lower section of this privacy policy.

SPECIAL FEATURES OF THE WEBSITE

Our website offers you various functions, the use of which involves the collection, processing, and storage of personal data by us. Below, we explain what happens with this data:

Appointment Booking Form
  • Scope of processing personal data
    The data entered by you in our reservation request form.

  • Legal basis for processing personal data
    Processing of personal data is carried out in accordance with the principles of legality (Art. 6 para. 1 DSG) and good faith (Art. 6 para. 2 DSG or Art. 2 ZGB).

  • Purpose of data processing
    The data collected via our reservation request form will only be used for processing reservation requests received through the reservation request form.

  • Duration of storage
    Your reservation will be deleted by us immediately after 12 months from the scheduled date, provided that no legal retention obligations exist. We reserve the right to delete without giving reasons and without prior or subsequent notification.

  • Restriction, objection, correction, and deletion options
    You can request correction or deletion of the data at any time. Your rights and how to assert them can be found in the lower section of this privacy policy.

  • Necessity of providing personal data
    The use of our reservation request form is necessary if you want to book a reservation with us online. Certain mandatory information must be provided for online booking. If you do not complete the mandatory information in full, your reservation request may not be accepted or processed.

SHARING OF INFORMATION WITH THIRD PARTIES

The processing of personal data is carried out in accordance with the principles of legality (Art. 6 para. 1 DSG) and good faith (Art. 6 para. 2 DSG or Art. 2 ZGB).

The disclosure of information to third parties depends on the scope of the activities or offerings described below, either on our website or within our business model.

In general, we only retain your information for as long as necessary and treat it confidentially. Exceptions to this include the transfer of personal data to debt collection agencies, public authorities and bodies, as well as individuals who are entitled to such information due to legal provisions, court decisions, or official orders. Additionally, information may be transferred to authorities for the purpose of initiating legal proceedings or for law enforcement purposes if our legally protected rights are threatened.

STATISTICAL ANALYSIS OF VISITS TO THIS WEBSITE - WEB TRACKER

We collect, process, and store the following data when you access this website or individual files on the website: IP address, website from which the file was accessed, name of the file, date and time of access, amount of data transferred, and success message of the access (so-called web log). We use this access data exclusively in a non-personalized form for the continuous improvement of our internet offering and for statistical purposes.

The processing of any personal data is carried out in accordance with the principles of legality (Art. 6 para. 1 DSG) and good faith (Art. 6 para. 2 DSG or Art. 2 ZGB). In addition, we use the following web trackers to evaluate visits to this website:

Gstatic
We use the Gstatic service on our website provided by Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, Email: support-deutschland@google.com, Website: www.google.com. According to the assessment of Swiss authorities, processing takes place in secure third countries. You can find the list of states from Switzerland as well as further information at the following link: www.edoeb.admin.ch. www.edoeb.admin.ch.

The legal basis for the transmission of personal data is your consent in accordance with Art. 6 para. 6 DSG or Art. 31 para. 1 DSG, which you have given on our website.

Gstatic is a background service used by Google to retrieve static content, reduce bandwidth usage, and preload required catalog files. The service specifically loads background data for Google Fonts and Google Maps.

As part of data processing, personal data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. You can access the provider's certification under the EU-US Data Privacy Framework at www.dataprivacyframework.gov 

You can revoke the processing of your data at any time. Further information on revoking your consent can be found either in the consent itself or at the end of this privacy policy.

For further information on how the transmitted data is handled, please refer to the provider's privacy policy at policies.google.com.

The provider also offers an opt-out option at support.google.com

INTEGRATION OF EXTERNAL WEB SERVICES AND PROCESSING OF DATA OUTSIDE THE EU

On our website, we use active content from external providers, so-called web services. By accessing our website, these external providers may receive personal information about your visit to our website. Processing of data outside of Switzerland may be possible. You can prevent this by installing an appropriate browser plugin or disabling scripts in your browser. This may result in functional limitations on websites you visit.

We use the following external web services:

Google Cloud APIs
We use the Google Cloud APIs service provided by Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, Email: support-deutschland@google.com, Website: www.google.com, on our website. According to the assessment of Swiss authorities, processing takes place in secure third countries. You can find the list of states from Switzerland as well as further information at the following link: www.edoeb.admin.ch.

The legal basis for the transmission of personal data is your consent in accordance with Art. 6 para. 6 DSG or Art. 31 para. 1 DSG, which you have given on our website.

We use Google APIs to load additional Google services on the website. Google APIs are a collection of interfaces for communication between various Google services used on your website. The service is used in particular to display Google Fonts fonts and to provide the Google Maps map.

For processing, the service or we collect the following data: IP address.

If the service is active on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the necessary data. As part of data processing, personal data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, Google may also transmit and process information from other Google services to provide background services for displaying and processing data of the services provided by Google. This may also involve data transfer to Google services such as Google Cloud, Google Maps, Google Ads, and Google Fonts in accordance with Google's privacy policy. You can access the provider's certification under the EU-US Data Privacy Framework at www.dataprivacyframework.gov 

You can revoke the processing of your data at any time. Further information on revoking your consent can be found either in the consent itself or at the end of this privacy policy.

For further information on how the transmitted data is handled, please refer to the provider's privacy policy at policies.google.com. The provider also offers an opt-out option at support.google.com zusätzlich eine Opt-Out Möglichkeit an.

Google Fonts
We use the Google Fonts service provided by Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, Email: support-deutschland@google.com, Website: www.google.com. According to the assessment of Swiss authorities, processing takes place in secure third countries. You can find the list of states from Switzerland as well as further information at the following link: www.edoeb.admin.ch.

The legal basis for the transmission of personal data is your consent in accordance with Art. 6 para. 6 DSG or Art. 31 para. 1 DSG, which you have given on our website.

We use the Google Fonts service to include attractive fonts on our site to display our website in a visually better version to you. The service may also be used on our website when other Google services that require Google Fonts fonts are loaded on our website. This is the case, for example, if our website uses Google services that require Google Fonts for execution.

For processing, the service or we collect the following data: font data, visitor's IP address, statistics on font usage, and other data from Google services related to our website.

If the service is active on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the necessary data. As part of data processing, personal data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, Google may also transmit and process information from other Google services to provide background services for displaying and processing data of the services provided by Google. This may also involve data transfer to Google services such as Google APIs, Google Cloud, and Google Ads in accordance with Google's privacy policy. You can access the provider's certification under the EU-US Data Privacy Framework at www.dataprivacyframework.gov abrufen.

You can revoke the processing of your data at any time. Further information on revoking your consent can be found either in the consent itself or at the end of this privacy policy.

For further information on how the transmitted data is handled, please refer to the provider's privacy policy at policies.google.com. The provider also offers an opt-out option at support.google.com zusätzlich eine Opt-Out Möglichkeit an.

Legally ok Legal Text Snippet and Modules
We use the Legally ok Legal Text Snippet and Modules service provided by Legally ok GmbH, Schochenmühlestrasse 6, 6340 Baar, Switzerland, Email: hello@legally-ok.com, Website: www.legally-ok.com on our website. Processing takes place exclusively in Switzerland in accordance with the applicable data protection legislation there.

The legal basis for the transmission and processing is Art. 31 para. 1 DSG. The use of the service helps us to comply with our legal obligations.

With the help of the service, the contents of our legal texts are loaded on our website. Through the integration on our site, the current legal texts are loaded. Through this integration, additional technical modules may also be loaded with regard to the legal texts or legally necessary elements.

For information on your rights regarding the processing, please refer to the end of this privacy policy.

For further information on how the transmitted data is handled, please refer to the provider's privacy policy at www.legally-ok.com.

DATA SECURITY AND DATE PROTECTION, COMMUNICATION VIA EMAIL

Your personal data is protected during collection, storage, and processing by technical and organizational measures, ensuring that they are not accessible to third parties. However, please note that complete data security cannot be guaranteed during unencrypted communication via email to our IT systems. Therefore, for highly confidential information, we recommend encrypted communication or postal delivery.

DURATION OF THE STORAGE OF DATA AND RIGHTS OF THE DATA SUBJECT

Duration of Data Storage
We only store personal data to the extent and for as long as necessary to fulfill the purposes for which the personal data was collected, as we have a legitimate overriding interest in retention, or as required by law.

Right to Information
You have the right to request confirmation as to whether we process personal data about you. If this is the case, you have the right to information about the information specified in Articles 25 ff. DPA, to the extent that the information cannot be refused, restricted, or postponed by the data collector (cf. Articles 26 f. DPA). We are also happy to provide you with a copy of the data.

Right to Correction
You have the right under Article 32 (1) DPA to demand that incorrectly stored personal data (such as address, name, etc.) be corrected, provided that there is no legal obligation to the contrary. You can also request the completion of the data stored by us at any time. Such adjustments will be made promptly.

Right to Erasure
You have the right for us to delete the personal data collected about you if:
  • the data is no longer needed;
  • the legal basis for processing has been completely removed due to the revocation of your consent;
  • there are no legitimate reasons for processing anymore;
  • your data is being processed unlawfully;
  • a legal obligation requires it.

This right does not exist if:
  • processing is necessary to exercise the right to freedom of expression and information;
  • your data was collected based on a legal obligation;
  • processing is necessary for reasons of public interest;
  • the data is necessary for the assertion, exercise, or defense of legal claims.

Right to Withdraw Consent
If you have given us explicit consent to process your personal data (Art. 6 para. 6 DPA and Art. 31 para. 1 DPA), you can revoke this consent at any time. Please note that the lawfulness of the processing carried out based on the consent until the revocation is not affected thereby. Information for which we are legally obliged to retain will be deleted after the expiry of the deadline.

How to Exercise Your Rights?
You can exercise your rights at any time by contacting the following contact details:
Chu GmbH
Seftigenstrasse 47
3007 Bern
Switzerland

E-Mail: info@chugarden.com
Tel.: +41 31 372 86 86

Right to Data Portability
Upon request, we will provide you with the following data:
  • Data collected on the basis of consent (Art. 31 para. 1 DPA);
  • Data we have received from you as part of existing contracts (Art. 31 para. 2 letter a DPA);
  • Data that has been processed as part of an automated process.
We will transfer the personal data directly to a responsible party chosen by you, to the extent technically feasible. Please note that we are not permitted or only permitted to transfer data that interferes with overriding interests of third parties according to Art. 26 para. 1 letter b DPA.

Notifications to the FDPIC and Possibility of Complaint
Pursuant to Art. 49 DPA, affected persons can submit a report to the supervisory authority if there are sufficient indications that data processing may violate data protection regulations. The supervisory authority for data protection in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC).

For further information, please refer to the FDPIC's contact form. .

If you suspect that your data is being processed unlawfully on our site, you can initiate a judicial clarification of the issue pursuant to Art. 32 DPA. As a rule, a complaint under Art. 28 ff. Swiss Civil Code should be filed for this purpose. If you are affected by data processing by federal authorities, the procedure is governed by Art. 41 DPA. In this case, too, you can contact the FDPIC (see note on the contact form above).