Data protection
Privacy Policy of vanmabeauty.ch
For information about the personal data, the purpose and the parties to whom this data is shared, contact the owner.
Provider and Responsible
VanMa Beauty GmbH
Stockenstrasse 47
8802 Kilchberg Switzerland
E-mail address of the provider: vanusa@vanmabeauty.ch
Types of Data Collected
The owner does not provide a list of the personal data collected.
Full details of each type of Personal Data processed are provided in the designated sections of this Privacy Policy or selectively through explanatory texts displayed prior to data collection.
Personal Data may be provided voluntarily by the User or, in the case of Usage Data, collected automatically when using this Application.
Unless otherwise specified, all Data requested by this Application is mandatory. If the user refuses to provide the data, this may result in this application not being able to provide its services to the user. In cases where this Application expressly states that the provision of personal data is voluntary, users may choose not to provide this data without any consequences for the availability or the functionality of the service.
Users who are unsure about which personal data is mandatory can contact the provider.
Any use of cookies - or other tracking tools - by this Application or third-party service providers employed by this Application is for the purpose of providing the service requested by the user and for any other purpose specified in this document and, if applicable available, described in the Cookie Policy.
Users are responsible for any third-party Personal Information obtained, published or shared through this Application and confirm that they have obtained consent from any third party to submit any Personal Information to this Application.
Type and place of data processing
processing methods
The provider processes the user data in an orderly manner and takes appropriate security measures to prevent unauthorized access and unauthorized transmission, modification or destruction of data.
The data processing is carried out using computers or IT-based systems according to organizational procedures and procedures that are specific to the purposes indicated. In addition to the person responsible, other persons could also be internal (human resources, sales, marketing, legal department, system administrators) or external - and in the case where necessary, appointed by the person responsible as processors (such as providers of technical services, delivery companies, hosting providers, IT companies or communication agencies) – operate this application and thus have access to the data. An up-to-date list of these parties may be requested from the provider at any time.
Legal bases of processing
The provider may only process personal data of users if one of the following points applies:
Users have given their consent for one or more specific purposes. Note: Some legislations may allow the provider to process personal data until the user objects to such processing (“opt-out”), without having to rely on consent or any other of the following legal bases. However, this does not apply if the processing of personal data is subject to European data protection law;
the collection of data is necessary for the fulfillment of a contract with the user and/or for pre-contractual measures arising from it;
the processing is necessary for compliance with a legal obligation to which the provider is subject;
the processing is related to a task that is carried out in the public interest or in the exercise of official powers that have been delegated to the provider;
the processing is necessary to protect the legitimate interests of the provider or a third party.
In any case, the provider will be happy to provide information about the specific legal basis on which the processing is based, in particular whether the provision of personal data is a legal or contractual obligation or a prerequisite for the conclusion of a contract.
Location
The data is processed at the provider's branch and at all other locations where the bodies involved in data processing are located.
Depending on the location of the users, data transfers may involve the transfer of the user's data to a country other than their own. To find out more about the place of processing of the data transmitted, users can consult the section detailing the processing of personal data.
Users also have the right to inquire about the legal basis for data transfers to a country outside the European Union or to an international organization governed by international law or established by two or more countries, such as the UN, as well as the provider's security measures taken to protect their data.
If such a transfer takes place, the User can learn more about it by reviewing the relevant sections of this document or by contacting the Provider using the information provided in the contact section.
storage duration
Personal data is processed and stored for as long as the purpose for which it was collected requires.
Therefore:
Personal data collected for the purpose of fulfilling a contract concluded between the provider and the user will be stored until the contract has been completely fulfilled.
Personal data collected to protect the legitimate interests of the provider will be kept for as long as necessary to fulfill these purposes. Users can obtain more detailed information about the legitimate interests of the provider in the relevant sections of this document or by contacting the provider.
In addition, the provider is permitted to store personal data for a longer period of time if the user has consented to such processing, as long as the consent is not revoked. In addition, the provider may be obliged to store personal data for a longer period of time if this is necessary to fulfill a legal obligation or by order of an authority.
After the retention period has expired, personal data will be deleted. Therefore, the right to information, the right to erasure, the right to rectification and the right to data portability cannot be asserted after the retention period has expired
The rights of users
Users can exercise certain rights in relation to their data processed by the provider.
In particular, users have the right to do the following:
Revoke consent at any time. If the user has previously consented to the processing of personal data, he can revoke his own consent at any time.
Object to the processing of your data. The user has the right to object to the processing of their data if the processing is based on a legal basis other than consent. More information on this is provided below.
receive information about their data. The user has the right to find out whether the data is being processed by the provider, to obtain information about individual aspects of the processing and to receive a copy of the data.
Have it checked and corrected. The user has the right to verify the accuracy of their data and to request that they be updated or corrected.
Request restriction of the processing of your data. Users have the right to restrict the processing of their data under certain circumstances. In this case, the provider will not process the data for any purpose other than storage.
Request deletion or other removal of the personal data. Under certain circumstances, users have the right to request the deletion of their data from the provider.
Receive your data and have it transferred to another person in charge. The user has the right to receive their data in a structured, common and machine-readable format and, if technically possible, to have it transmitted to another person responsible without hindrance. This provision applies if the data is processed by automated means and the processing is based on the user's consent, on a contract to which the user is a party or on pre-contractual obligations.
Give a complaint. Users have the right to lodge a complaint with the competent supervisory authority.
The rights of users
If personal data is processed in the public interest, in the exercise of an official authority conferred on the provider or to protect the legitimate interests of the provider, the user can object to this processing by providing a justification that relates to his or her particular situation.
Users are informed that they can object to the processing of personal data for direct marketing at any time without giving reasons. Users can find out whether the provider processes personal data for direct marketing purposes in the relevant sections of this document.
How the rights can be exercised
All requests to exercise User rights can be directed to the Provider using the contact details provided in this document. Applications can be exercised free of charge and will be processed by the provider as early as possible, at the latest within one month.
More information about the collection and processing of data
Legal Actions
In addition to the information set out in this Privacy Policy, this Application may provide the User with additional contextual information related to specific Services or to the collection and processing of Personal Data upon request.
System Logs and Maintenance
For operation and maintenance purposes, this Application and third-party services may collect files that record the interaction that takes place through this Application (system logs) or use other personally identifiable information (e.g. IP address) for this purpose.
Information not included in this privacy policy
Further information about the collection or processing of personal data can be requested from the provider at any time using the contact details listed.
How Do Not Track requests are handled
This Application does not support Do Not Track requests from web browsers.
Information on whether integrated third-party services support the do not track protocol can be found in the data protection declaration of the respective service.
Changes to this Privacy Policy
The provider reserves the right to make changes to this data protection declaration at any time by informing users on this page and, if applicable, via this application and/or - as far as technically and legally possible - by sending a message via the contact details of the users available to the provider. Users are therefore advised to visit this page regularly and in particular to check the date of the last change given at the bottom of the page.
Insofar as changes affect data use based on the user's consent, the provider will - if necessary - obtain a new consent.
Last update: 1 September 2022