Privacy policy
Last update on 21 June 2024
Transparent handling of personal data is very important to us. This privacy policy provides information on what personal data we collect, for what purpose and to whom we pass it on. We regularly review and update this privacy policy to ensure the highest level of transparency.
General personal data
We process your general personal data. Personal data is any type of information that relates to an identifiable natural person. The natural person is identifiable if conclusions can be drawn about the identity of the person from the available information.
Example: Your name, IP address and home address are personal data.
Transferred data
You often provide us with your personal data yourself. Whenever you enter your personal data and transmit it to us, it is deemed to have been provided to us. The transmission of data to us is basically voluntary, but in some cases it is mandatory in order to be able to use our offers.
Example: You enter your data in a contact form or sign up for a newsletter.
Data collected
When you use our services, we sometimes collect their data without your active participation. This data is usually data about your device and data about user behavior.
Example: We collect data about the operating system of the device you used to access our website.
Data transfer
We share your personal data with companies that can decide for themselves how to use the data. Most often, this is done because it is necessary to comply with legal requirements, when an outstanding debt is transferred to a collection agency, or when to detect fraudulent activity.
Example: A legal requirement obliges us to pass on your data to an authority.
What services we use
We use Google reCAPTCHA on our website, a service of the provider Google Ireland Ltd, Google Building Gordon House, Barrow St, Dublin 4, Ireland with headquarters at Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, both together “Google”.
What data do we process?
Google reCAPTCHA is a verification service for websites to distinguish human users from bots. In particular, the following information can be collected:
- IP address
- Technical information such as browser, operating system or screen resolution
- Interactions with the captcha
The IP address is anonymised by Google reCAPTCHA so that a personal reference is no longer possible. When a visitor visits our website for the first time, Google reCAPTCHA can generate an identifier to recognise the visitor when they visit the website again.
For what purpose do we process the data?
The IP address is processed in order to analyse the visitor’s rough location and to prevent any suspicious activity, namely to detect IP addresses associated with spam or other unwanted behaviour. The technical information is processed so that the captcha can be adapted to the device or browser and to detect deviations from normal usage behaviour. The interactions with the captcha are processed to record behavioural patterns in order to distinguish human behaviour from automated bots. The aim of Google reCAPTCHA is to protect input forms from bots and spam, while at the same time enabling reliable human input. The data collected is not used to identify you personally.
Auf welcher Rechtsgrundlage verarbeiten wir die Daten?
Die Rechtsgrundlage für die Verarbeitung ist Ihre Einwilligung nach Art. 6 Abs. 1 lit a DSGVO.
Who do we pass the data on to?
The transfer of data by us is governed by our statements on data transfer. As Google is a transnational company, your data may be transferred by Google to anywhere in the world. In particular, it may be transferred to Google’s headquarters in the USA. A country in which the legislation does not guarantee adequate data protection.
reCAPTCHA | https://www.google.com
We use Google reCAPTCHA on our website, a service of the provider Google Ireland Ltd, Google Building Gordon House, Barrow St, Dublin 4, Ireland with headquarters at Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, both together “Google”.
What data do we process?
Google reCAPTCHA is a verification service for websites to distinguish human users from bots. In particular, the following information can be collected:
- IP address
- Technical information such as browser, operating system or screen resolution
- Interactions with the captcha
The IP address is anonymised by Google reCAPTCHA so that a personal reference is no longer possible. When a visitor visits our website for the first time, Google reCAPTCHA can generate an identifier to recognise the visitor when they visit the website again.
For what purpose do we process the data?
The IP address is processed in order to analyse the visitor’s rough location and to prevent any suspicious activity, namely to detect IP addresses associated with spam or other unwanted behaviour. The technical information is processed so that the captcha can be adapted to the device or browser and to detect deviations from normal usage behaviour. The interactions with the captcha are processed to record behavioural patterns in order to distinguish human behaviour from automated bots. The aim of Google reCAPTCHA is to protect input forms from bots and spam, while at the same time enabling reliable human input. The data collected is not used to identify you personally.
Auf welcher Rechtsgrundlage verarbeiten wir die Daten?
Die Rechtsgrundlage für die Verarbeitung ist Ihre Einwilligung nach Art. 6 Abs. 1 lit a DSGVO.
Who do we pass the data on to?
The transfer of data by us is governed by our statements on data transfer. As Google is a transnational company, your data may be transferred by Google to anywhere in the world. In particular, it may be transferred to Google’s headquarters in the USA. A country in which the legislation does not guarantee adequate data protection.
Google Analytics | https://google.com/analytics
We use Google Analytics on our website, a service provided by Google Ireland Ltd., Google Building Gordon House, Barrow St, Dublin 4, Ireland, with headquarters at Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, both together referred to as “Google”.
What data do we process?
Google Analytics is a website analysis service that collects information about website usage. In particular, the following information may be collected:
- IP address
- Technical information such as browser, operating system or screen resolution
- Interactions on the website
- Duration of visit
- Time and date of the website visit
- Referrer URL
The IP address is anonymized by Google Analytics so that it can no longer be linked to a person. When a visitor visits our website for the first time, Google Analytics can generate an identifier to recognize the visitor when they visit the website again. If you are logged in with your Google account, data processing can also take place across devices.
For what purpose do we process the data?
Your IP address is used to determine your approximate location. From the information obtained from this, we can measure the relevance of our offers in different regions. We also use the IP address to determine where website visitors came to our website from. The technical information is processed so that the website can be displayed satisfactorily on every device. The interactions, duration, time and date are collected so that we can use this data to evaluate and optimize our marketing campaigns and offers. We can also use this data to determine how visitors interact with our website, i.e. which content is popular with which visitors. The referrer URL is processed for the purpose of measuring the effectiveness and analyzing various marketing channels.
On what legal basis do we process the data?
The legal basis for the processing is your consent in accordance with Art. 6 (1) lit a GDPR.
Who do we share the data with?
The transfer of data by us is governed by our statements on data transfer. Since Google is a transnational company, your data may be transferred by Google all over the world. In particular, it may be transferred to Google’s headquarters in the USA – a country where the legislation does not guarantee adequate data protection.
Privacy Policy
Last update on 21 June 2024
1. What do we do?
2. What do we inform about?
3. Definition of terms
4. Contact
5. Data security
6. Rights of data subjects
7. General principles
8. Individual data processing operations
9. Does our privacy policy always remain the same?
What do we do?
LFV Luftfahrt-Versicherungslösungen AG (Bahnhofstrasse 24, 8001 Zürich) operates the website www.lfv-ag.ch (hereinafter referred to as “we”).
The protection of your personal data is very important to us. In this privacy policy, we provide you with transparent and comprehensible information about what data we collect via our website and how we handle it.
What do we inform about?
- Who is responsible for data processing;
- What data is collected;
- The purpose for which this data is collected;
- The legal basis on which we collect this data;
- To whom we pass on this data;
- How you can object to data processing;
- What rights you have and how you can assert them.
Definition of terms
What is personal data?
Personal data is all information that relates to an identified or identifiable natural person. This includes, for example, name, address, date of birth, e-mail address or telephone number as well as the IP ad-dress. Personal data also includes data about personal preferences such as leisure activities or memberships.
What are special categories of personal data?
Special categories of personal data are:
- Data on religious, ideological, political or trade union views or activities;
- Data relating to health, privacy, racial or ethnic origin, sex life and sexual orientation;
- Data on administrative or criminal prosecutions and sanctions, as well as data on social assistance measures;
- Genetic data and biometric data that uniquely identify a person.
If necessary and if you disclose this data to us yourself, we may process data belonging to a special category of personal data. In this case, their processing is subject to stricter confidentiality.
What is the processing of personal data?
Processing is any handling of personal data, regardless of the means and procedures used, in particular the procurement, storage, retention, use, modification, disclosure, archiving, erasure or destruction of personal data.
What is the disclosure of personal data?
This is the transmission or making available of personal data, e.g. publication or disclosure to a third party.
Contact
If you have any questions or concerns about the protection of your data by us, you can contact our data protection officer:
Nadia Riccardi
nadia.riccardi@lfv-ag.ch
Data security
We will keep your data secure and take all reasonable steps to protect your data from loss, access, misuse or alteration.
Our contractual partners and employees who have access to your data are obliged to comply with data protection regulations. In some cases, it will be necessary for us to pass on your enquiries to our affiliated companies as part of order processing. Your data will also be treated confidentially in these cases.
Within our website, we use the SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser.
Rights of data subjects
Right to information
You can request information about the data we have stored about you at any time. Please send your request for information together with credible proof of identity to nadia.riccardi@lfv-ag.ch.
The information will be provided in writing or in another form, including electronically if necessary. If you so request, we can also provide you with the information verbally, provided that you can prove your identity in another form. If you submit the request for information electronically, we will provide the information in a standard electronic format, unless you specify otherwise.
As a rule, information is provided free of charge. If additional copies are requested, a reasonable fee may be charged.
The right to obtain a copy of the processed data must not adversely affect the rights and freedoms of other persons.
In the event of manifestly unfounded or excessive requests for information, we reserve the right to re-fuse to provide information within the limits of the law or to charge an appropriate fee.
The processing of your application is subject to the statutory deadline of one month. Due to the complexity and high number of requests, we may extend this period by a further two months if necessary. You will be informed of the extension within one month of submitting the request for information. You will also be informed of the reasons for the extension.
Cancellation and rectification
You have the option of requesting the deletion, correction or completion of your data at any time, provided that there are no statutory retention obligations or a legal authorisation requirement to the contrary.
Please note that the exercise of your rights may be in conflict with contractual agreements and may have corresponding effects on the execution of the contract (e.g. premature cancellation of the contract or cost consequences).
Restriction of processing
You also have the right to request a restriction of processing if you dispute the accuracy of this data, the processing is unlawful, the data is no longer required or you have objected to the processing.
If the processing of the data is restricted, it may only be stored. Further processing may only take place with your consent, for the establishment, exercise or defence of legal claims, for the protection of the rights of another person or for reasons of important public interest. You will be notified if the restriction is lifted.
Right to data portability
You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from us to which the personal data have been provided, where the processing is based on consent pursuant to point (a) of Article 6(1) or point (a) of Article 9(2) GDPR or on a contract pursuant to point (b) of Article 6(1) GDPR and the processing is carried out by automated means. You also have the right to request that the personal data be transmitted directly by us to another controller, insofar as this is technically feasible.
Right of objection
If you have given your consent to the processing of your data, you can revoke this at any time. Such a revocation affects the permissibility of the processing of your personal data after you have expressed your objection to us.
Insofar as we base the processing of your personal data on the balancing of interests, you can object to the processing. This is the case if, in particular, the processing is not necessary for the fulfilment of a contract with you, which is described by us in the following description of the functions. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the situation and will either discontinue or adapt the data processing or show you our compelling reasons worthy of protection on the ba-sis of which we will continue the processing.
You can object to the processing of your personal data for advertising and data analysis purposes at any time. You can contact us about your objection to advertising using the contact details provided in this privacy policy.
Right of appeal
You also have the right to complain to a data protection supervisory authority about the processing of your personal data by us.
General principles
What data do we process from you and from whom do we receive this data?
First and foremost, we process personal data that you transmit to us or that we collect when operating our website. We may also receive personal data about you from third parties. This may include the following categories:
- Personal master data (name, address, date of birth, etc.);
- Contact details (mobile phone number, e-mail address, etc.);
- Financial data (e.g. account details);
- Online identifiers (e.g. cookie identifiers, IP addresses);
This data can come from the following sources:
- Information from publicly accessible sources (e.g. media, Internet);
- Information from public registers (e.g. commercial register, debt collection register, land register);
- Information in connection with official or legal proceedings;
- Information regarding your professional functions and activities (e.g. professional networks);
- Information about you in correspondence and meetings with third parties;
- Credit information (insofar as we process personal transactions with you);
- Information about you that people from your environment give us so that we can conclude or process contracts with you;
- Data in connection with the use of the website.
Under what conditions do we process your data?
We process your data in accordance with the applicable data protection laws, in particular the GDPR. The processing is carried out for the purposes specified in this privacy policy. We pay attention to transparency and proportionality.
The processing of your data is lawful as long as a GDPR authorisation is fulfilled. The following are possible grounds for authorisation:
- Your consent (Art. 6 para. 1 lit. a GDPR);
- The fulfilment of a contract or pre-contractual measures (Art. 6 para. 1 lit. b GDPR);
- The fulfilment of legal obligations to which we are subject (Art. 6 para. 1 lit. c GDPR);
- The protection of vital interests of the data subject or another natural person (Art. 6 para. 1 lit. d GDPR);
- The performance of a task carried out in the public interest or in the exercise of official authority vested in the controller (Art. 6 para. 1 lit. e GDPR);
- Our legitimate interests, provided that your interests do not outweigh ours (Art. 6 para. 1 lit. f GDPR).
It may be necessary for you to provide us with certain personal data so that we can fulfil our contractual obligations. Without such data, we are normally unable to fulfil a contract.
Under normal circumstances, the website cannot be used if certain information to secure data traffic, such as your IP address, is not disclosed.
In which cases can we pass on your data to third parties?
a. Principle
We may need to use the services of third parties or affiliated companies and commission them to process your data (so-called processors). The categories of recipients are as follows:
- Accounting, fiduciary and auditing company;
- Consultancy firms (legal advice, taxes, etc.);
- IT service provider (web hosting, support, cloud services, website design, etc.);
- Payment service provider;
- Provider of tracking, conversion and advertising services.
We ensure that these third parties and our affiliated companies comply with the requirements of data protection and treat your personal data confidentially.
We may also be obliged to disclose your personal data to authorities.
b. Passing on to partners and co-operation companies
We sometimes work together with different companies and partners who place their offers on our web-site. It is recognisable to you that this is a third-party offer (marked as “advertising”).
If you take advantage of such an offer, we will transfer your personal data to the relevant partner or co-operation company (e.g. name, function, communication, etc.) whose offer you wish to take advantage of. These partners and co-operation companies are independently responsible for the personal data they receive. Once the data has been transmitted, the data protection provisions of the respective part-ner apply.
c. Transfer abroad
Under certain circumstances, your personal data may be transferred to companies abroad as part of order processing. These companies are obliged to protect data to the same extent as we are. The transfer may take place worldwide.
If the level of data protection does not correspond to that of the EEA area, we carry out a prior risk assessment and contractually ensure that the same level of protection is guaranteed as in the EEA area (e.g. by means of the standard contractual clauses of the EU Commission or other legally prescribed measures). If our risk assessment is negative, we will take additional technical measures to protect your data. You can access the EU Commission’s standard contractual clauses at the following link.
How long do we store your data?
We only store personal data for as long as is necessary to fulfil the individual purposes for which the da-ta was collected.
We store contract data for longer, as we are obliged to do so by law. In particular, we must store business communications, concluded contracts and accounting documents for up to 10 years. If we no longer need such data from you to provide the services, the data will be restricted for further processing and we will only use it for accounting and tax purposes.
Individual data processing operations
Provision of the website and creation of log files
If you merely visit www.lfv-ag.ch, i.e. if you do not register or otherwise disclose information, only the data that your browser automatically transmits to our server will be collected. The data is technically necessary for the operation of the website.
What data do we process?
The following data in particular is processed for the provision of the website and the creation of log files:
- Name of the internet service provider
- IP address
- Technical information such as browser, operating system or screen resolution
- the date and time of access
- Referrer URL
This data cannot be assigned to a specific person and is not merged with other data sources.
For what purpose do we process the data?
The log files are processed in order to guarantee the functionality of the website and to ensure the security of our information technology systems.
On what basis do we process the data?
The legal basis for this data processing is our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR. Our legitimate interests are set out in the purpose of the data processing.
Who do we pass the data on to?
The forwarding of data by us is based on our statements on data forwarding.
How can you prevent data processing?
The data is only stored for as long as is necessary to fulfil the purpose for which it was collected. Accordingly, the data is deleted at the end of each session. The storage of log files is absolutely necessary for the operation of the website; you therefore have no option to object to this unless you do not visit our website.
Contact us
You can contact us in several ways. If you contact us and provide personal data, we will process your data. This refers to any verbal, written or other form of contact with us.
What data do we process? When you contact us, we process any data that you provide to us. This includes in particular:
- Name
- E-mail address
- Content and timing of their contact
- Contact details
It may happen that you have to provide certain mandatory data in order to contact us, for example when contacting us via a contact form or if you request a callback.
For what purpose do we process the data?
The purpose for which we use the data is determined by the nature of the contact. However, we never use the data for unforeseeable or unexpected purposes. The most common purposes are communication and feedback, customer service and the processing of business enquiries.
On what basis do we process the data?
The legal basis for this data processing is our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR. Our legitimate interests are set out in the purpose of the data processing.
Who do we share the data with?
The forwarding of data by us is governed by our statements on data forwarding. If the purpose of your contact requires us to pass on your data to third parties, we will pass on the data to the extent necessary.
How can you prevent data processing?
Insofar as you contact us, data processing cannot be prevented. Consequently, you must refrain from contacting us if you do not want your data to be processed.
Applications
You have the opportunity to apply for a job with us. We attach great importance to confidentiality in the application process and handle your data responsibly.
What data do we process?
We process the data that you have disclosed to us when submitting your application. This data includes in particular
• Name • Address • E-mail address • Telephone number • Application documents
This also includes any information that you share with us in a possible job interview or outside your application documents. We may also collect data from third parties, namely references. The term “application data” is used below as an umbrella term for this data.
For what purpose do we process the data?
When selecting our employees, it is very important for us to be able to process the application data so that we can get a complete picture of the people who apply to us. Only on the basis of the application data are we able to determine the suitability of an applicant. The data is used exclusively for this pur-pose and is only passed on to those employees who are involved in the application process. If your application is accepted, your application documents will be forwarded to the employees responsible for your employment.
On what basis do we process the data?
The legal basis for this data processing is your consent in accordance with Art. 6 para. 1 lit. a GDPR. By sending us your application documents, you give us your consent to process your application data for the above-mentioned purpose.
Who do we pass the data on to?
We treat your application documents confidentially. Furthermore, our statements on data transfer apply to the transfer of data.
How can you prevent data processing?
We only process your data to the extent described above if you apply to us. As an application process cannot be carried out without the necessary data processing, your only option to prevent data processing is not to apply.
Cookies
Our website uses cookies. Cookies are text files that are stored on the operating system of your device with the help of the browser when you visit our website. Cookies do not cause any damage to your computer and do not contain viruses. Some cookies are technically necessary for the website to function. Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them or their expiry date.
For what purpose do we process the data?
We use cookies so that we can use the data collected to make our website more user-friendly, effective and secure. In particular, we use cookies to save your preferences (e.g. language and location set-tings), to ensure the fast provision and attractive presentation of website content (e.g. through the use of fonts and content delivery networks) and to analyse the use of this website for statistical evaluation and continuous improvement (usually using third-party cookies). The purposes for which we use the (technically unnecessary) cookies in detail can be found in the following explanations in this privacy pol-icy.
On what legal basis do we process the data?
The legal basis for this processing is your consent in accordance with Art. 6 para. 1 lit. a GDPR. Insofar as technically necessary cookies are concerned, our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR forms the legal basis.
Who do we pass the data on to?
The forwarding of data by us is governed by our statements on data forwarding. In addition, the follow-ing information on individual data processing in this privacy policy must be observed.
How can you prevent data processing?
A cookie banner is displayed when the website is accessed. Cookies that require your consent in accordance with Art. 6 para. 1 lit. a GDPR are only activated if you give your consent. If you refuse con-sent, no data will be collected by the cookies requiring consent.
You cannot prevent the collection of data by cookies, which we use on the basis of our legitimate inter-est in accordance with Art. 6 para. 1 lit. f GDPR, by using the cookie banner. These cookies, which are technically necessary for the operation of the website, are stored on your computer. You can delete them completely or deactivate or restrict their transmission by changing the settings in your browser. If you deactivate these cookies, you may no longer be able to use all functions of the website to their full extent.
Instructions for the most common browsers can be found here:
For cookies that are used to measure success and reach or for advertising, a general objection (“opt-out”) is possible for numerous services via the Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance) or Your Online Choices (European Interactive Digital Advertising Alliance, EDAA)
Tracking pixel
We may use tracking pixels on our website or in our emails. Tracking pixels are also known as web beacons. Tracking pixels are small, usually invisible images that are automatically retrieved when you visit our website or open our emails.
What data do we process?
Counting pixels can be used to collect the same data as log files. In addition, movement profiles of the entire session can be collected. In particular, tracking pixels are used by third parties whose services we use. Detailed information about these third-party services is provided below in this statement.
For what purpose do we process the data? Tracking pixels are used by various tracking services to analyse the use of this website and for statistical evaluation and continuous improvement. Tracking pixels can also be used for email tracking.
On what legal basis do we process the data?
The legal basis for the dissemination is your consent in accordance with Art. 6 para. 1 lit a GDPR.
Who do we pass the data on to?
The transfer of data by us is based on our statements on data transfer. Please also note the information in this privacy policy on the individual tracking services.
How can you prevent data processing? To prevent data processing using tracking pixels, you can install suitable browser extensions such as uBlockOrigin and block external graphics in your e-mail programme or by not giving your consent for processing.
reCAPTCHA
We use Google reCAPTCHA on our website, a service of the provider Google Ireland Ltd, Google Building Gordon House, Barrow St, Dublin 4, Ireland with headquarters at Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, both together “Google”.
What data do we process?
Google reCAPTCHA is a verification service for websites to distinguish human users from bots. In particular, the following information can be collected:
- IP address
- Technical information such as browser, operating system or screen resolution
- Interactions with the captcha
The IP address is anonymised by Google reCAPTCHA so that a personal reference is no longer possible. When a visitor visits our website for the first time, Google reCAPTCHA can generate an identifier to recognise the visitor when they visit the website again.
For what purpose do we process the data?
The IP address is processed in order to analyse the visitor’s rough location and to prevent any suspicious activity, namely to detect IP addresses associated with spam or other unwanted behaviour. The technical information is processed so that the captcha can be adapted to the device or browser and to detect deviations from normal usage behaviour. The interactions with the captcha are processed to record behavioural patterns in order to distinguish human behaviour from automated bots. The aim of Google reCAPTCHA is to protect input forms from bots and spam, while at the same time enabling reliable human input. The data collected is not used to identify you personally.
Auf welcher Rechtsgrundlage verarbeiten wir die Daten?
Die Rechtsgrundlage für die Verarbeitung ist Ihre Einwilligung nach Art. 6 Abs. 1 lit a DSGVO.
Who do we pass the data on to?
The transfer of data by us is governed by our statements on data transfer. As Google is a transnational company, your data may be transferred by Google to anywhere in the world. In particular, it may be transferred to Google’s headquarters in the USA. A country in which the legislation does not guarantee adequate data protection.
Will our privacy policy always remain the same?
We may change this privacy policy at any time. The changes will be published on https://lfv-ag.com/ . You will not be informed separately.