Privacy Policy

The privacy policy of iMATRIX GmbH, Cheerstrasse 13e, 6014 Lucerne, Switzerland (hereinafter "imatrix. ch") applies to all users whose personal data is processed by imatrix. ch. This includes customers who have concluded a service agreement with iMATRIX GmbH, their employees, and website visitors. This privacy policy may also apply to other contractual partners on a contractual basis.

iMATRIX GmbH is responsible for the secure and responsible handling of its customers' personal information. We ensure that data is protected and that the Swiss Federal Act on Data Protection (FADP/DSG) is complied with for data of Swiss customers and the EU General Data Protection Regulation (GDPR) is complied with for data of customers from the EU.

Customers have the right to withdraw their consent to this privacy policy at any time with effect for the future. In accordance with Article 13 of the Swiss Federal Constitution and applicable data protection provisions, individuals are entitled to the protection of their privacy and personal data. The operators of these pages consider the protection of your personal data to be extremely important.

We treat your personal data confidentially and in accordance with statutory data protection requirements and this privacy policy. Together with our hosting providers, we work to protect databases as effectively as possible against unauthorized access, loss, misuse, or manipulation. Please note that data transmission over the internet may involve security risks, for example when communicating by email or contact form.

Complete protection of data against access by third parties is not possible.

The controller responsible for data processing is: iMATRIX GmbH Cheerstrasse 13e 6014 Lucerne Switzerland For data protection questions, the data protection officer of iMATRIX GmbH is available.

The processing of data by imatrix. ch is subject to the applicable legal provisions in force at the relevant time. The processing of data of customers from Switzerland is carried out in accordance with Swiss data protection law. The processing of data of customers from Switzerland is governed exclusively by Swiss law, in particular the Federal Act on Data Protection (FADP/DSG, SR 235.

1) and the corresponding ordinance (SR 235. 11). The EU General Data Protection Regulation (GDPR) does not apply. However, the GDPR may apply in expressly designated sections of this privacy policy and in special circumstances where it is mandatory for data of Swiss customers. The processing of personal data of customers from the EU is subject to the provisions of the EU General Data Protection Regulation (GDPR).

In addition to applicable Swiss law, the processing of personal data of customers from the EU is also subject to Regulation (EU) 2016/679. Further provisions for customers from the EU can be found in section 13.

When visiting the website outside the protected login area, general technical visit information is automatically collected. This includes the IP address of the device used, which is anonymized by Google so that it cannot be assigned to the customer. Google uses the method "_anonymizeIp()" for this purpose. Information about browser type, internet service provider, and operating system is also collected.

When using imatrix. ch (with login) During the trial access period and the paid use of imatrix. ch in the login area, all customer data entered or submitted during the registration and usage process is stored. This includes registration, orders, completing online forms, participating in surveys or competitions, and communicating with the provider via social media, blogs, or other interactive media.

As a rule, personal data such as name, address, and email address as well as the settings required for the respective service are collected. Further information on data processing and its purposes can be found in the data processing agreement. By providing the data, the customer consents to the processing, use, and disclosure of personal data for the purposes described in this privacy policy.

Data exchange with third parties / processors The customer may share data with third parties, such as employees or partners, either directly or within imatrix. ch. By granting access rights, the customer agrees that imatrix. ch may make all customer data available to third parties (for example employees or partners) or enable access to it.

The customer always retains full control over third-party access rights to their data and may restrict or refuse access at any time.

The provider implements technical and organizational security measures in accordance with recognized market standards to protect stored personal data against accidental, unlawful, or unauthorized manipulation, deletion, alteration, access, disclosure, use, or partial or complete loss. The provider's servers are located in Switzerland. Connections to the servers are made via SSL encryption.

The provider regularly backs up customer data to prevent data loss even in extreme cases. The requirements of the FADP and, where applicable, the GDPR are complied with at all times. Security measures are continuously adapted and improved in line with technological developments. The provider assumes no liability for the loss of data or for third-party knowledge or use of such data.

The provider cannot guarantee the security of data transmission over the internet. In particular, there is a risk of third-party access when data is transmitted by email. Access is, however, provided via HTTPS. If expressly requested, the customer may choose two-factor authentication at any time.

imatrix. ch uses the data collected to continuously improve products and services, manage access to applications, information, and products, maintain the business relationship with customers, monitor and improve performance, detect, prevent, or investigate unlawful activities, and provide customers with offers, information, or marketing material relating to potentially relevant products or services.

For these purposes, the data may also be disclosed to partner companies, service providers, selected third parties, institutions, and/or government authorities entitled by law. If personal data is processed or stored in countries that do not ensure an adequate level of data protection compared with Swiss data protection law, imatrix.

ch contractually ensures that processors comply with the relevant provisions of Swiss data protection law and, where applicable, the GDPR for data of EU customers. imatrix.

ch commissions data protection-compliant service providers within the EU or Switzerland for certain processes and services, in particular in the areas of IT services, payment processing, printing services, billing, debt collection, consulting, sales, and marketing.

Personal data means any information relating to an identified or identifiable natural person. A data subject is a person whose personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used. This includes, in particular, storage, disclosure, collection, deletion, retention, modification, destruction, and use of personal data.

We process personal data in accordance with Swiss data protection law. Where the EU GDPR is applicable, we also process personal data in accordance with Article 6(1) GDPR and the corresponding legal bases. In general, we process your data for the following purposes: To fulfill and handle obligations laid down in a contract or by law.

To inform you about updates or changes to our offers or events, as well as adjustments to our terms and conditions, privacy policies, and requirements concerning how you may advertise on our portals and websites. To verify your access authorization and manage your user account (where applicable). To prevent fraud and misuse. To develop and maintain customer relationships. For marketing purposes of imatrix.

ch, including newsletters, telephone outreach, online advertising, SMS, and push notifications, as well as market research, analyses, surveys, and statistical purposes. To tailor offers to your needs and improve them. To analyze user behavior. Below, we provide detailed information about which data is processed within the scope of our offers, for what purpose it is processed, and which legal basis applies. 6.

1 Access to our offers If you use our offers without providing additional information, general technical visit data is automatically collected and stored in log files.

Cookies help to make visits to the imatrix. ch website easier, more pleasant, and more meaningful. Cookies are information files that are automatically stored by the web browser on the computer's hard drive when the customer visits the imatrix. ch website and uses services. Customers can manage their browser's security settings and thereby block or disable cookies.

However, this may mean that certain services of imatrix. ch can no longer be used in full. Tracking and analytics tools / social media Various technical systems are used to measure and evaluate the use of the digital offers of imatrix. ch, primarily from third-party providers such as Google Analytics. These measurements may be carried out anonymously or personally.

There is a possibility that the data collected may be passed on by imatrix. ch or the third-party providers of such technical systems to third parties in Switzerland or abroad. The best-known and most frequently used analytics tool is Google Analytics, a service provided by Google Inc.

The data collected may in principle be transmitted to a Google server in the USA or to another location determined by Google and stored there. The imatrix. ch website uses Google Analytics, a web analytics service of Google Inc., based in the USA (1600 Amphitheatre Parkway, Mountain View, CA 94043). Google Analytics uses cookies, text files stored on the customer's computer that enable analysis of website use.

The information generated by the cookies about website use (including the IP address, which is anonymized by Google before storage) is transmitted to a Google server in the USA or another location determined by Google and stored there.

Profiling refers to the automated process of analyzing or predicting certain personal aspects or behavior based on personal data. This allows customers to receive more individualized support and advice and enables offers to be better tailored to their individual needs.

"Automated individual decisions" are decisions taken entirely by automated means, without relevant human involvement, which may have adverse legal or similarly significant effects on the customer. iMATRIX GmbH does not generally carry out automated individual decision-making. If imatrix. ch does make automated individual decisions in specific cases, customers will be informed separately.

In such a case, the customer has the option of having the decision reviewed manually by an employee of imatrix. ch.

To subscribe to the newsletter offered by imatrix. ch, imatrix. ch requires the customer's email address and further information enabling verification that the provided email address is correct and that the customer has consented to receive the newsletter (double opt-in procedure). Through the newsletter, the customer receives regular recommendations and offers that may be of interest.

For this purpose, personal data concerning customer usage behavior on the website, within iMATRIX GmbH, and in relation to the newsletter (for example opening the newsletter and clicking on web URL links) is collected and processed. imatrix. ch analyzes this data for statistical purposes in order to better tailor newsletter content to customer interests.

The processing of the personal data entered by the customer when subscribing to the newsletter is based on the customer's consent, which may be revoked at any time for the future. Revocation can be made using the "unsubscribe" link in the newsletter. The personal data collected is used for designing content and sending the newsletter. imatrix.

ch stores the personal data provided by the customer for newsletter registration until the customer unsubscribes from the newsletter.

imatrix. ch stores and processes the personal data collected from customers for as long as the customer uses the service. It should be noted that the contractual relationship between iMATRIX GmbH and the customer is generally long-term in nature. After termination of the contractual relationship, imatrix. ch is generally not obliged to retain the customer's data.

Data that is no longer required is therefore regularly deleted. However, certain data may continue to be retained due to legal requirements or for internal purposes.

The imatrix. ch website contains links to third-party websites that are not under the control or responsibility of imatrix. ch. iMATRIX GmbH accepts no responsibility for the content and privacy practices of such websites.

In accordance with the GDPR and the corresponding provisions of Swiss data protection law, the following rights apply where the statutory requirements are met: The right to deletion of data (based on Art. 17 GDPR). The right to rectification of inaccurate data (based on Art. 5 para. 2 FADP/DSG or Art. 16 GDPR). The right to information about personal data (based on Art. 8 FADP/DSG or Art. 15 GDPR).

The right to object to the processing of data (based on Art. 21 GDPR). The right to restriction of processing (based on Art. 18 GDPR). The right to data portability (based on Art. 20 GDPR). Please note that these rights may be subject to limitations and may be supplemented by national data protection law or other statutory provisions. Where the customer is asked for consent in connection with the services of imatrix.

ch, the customer may grant such consent by activating the corresponding checkbox. iMATRIX GmbH is entitled to collect, process, use, and disclose the customer's personal data in accordance with that consent. The customer may withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.

The withdrawal may be sent in writing to the address listed in the legal notice of imatrix. ch. Please note, however, that withdrawing consent may result in restrictions on access to certain services and functions.

These provisions apply exclusively to customers from the EU and do not apply to customers from Switzerland. Legal bases of processing Processing for the purposes stated above is carried out on the basis of the GDPR for the performance of a contract. The subject matter of the contract includes the services described above. Data processing to protect the legitimate interests of imatrix.

ch is also carried out in accordance with the methods described above for product and service improvement, performance monitoring and optimization, and the detection, prevention, or clarification of unlawful activities. Data processing to fulfill legal obligations under the GDPR includes, in particular, the processing of master data.

If the customer believes that the purposes mentioned are not covered by the stated legal bases, the customer may request that personal data no longer be processed for specific purposes (opt-out). Such an opt-out does not affect the further use of imatrix. ch services unless such use necessarily requires the relevant data processing. The customer may submit an opt-out in writing to the imatrix.

ch address stated in this document.

14. 1. iMATRIX GmbH provides security measures to prevent the loss, misuse, or unauthorized alteration of information and personal data. 14. 2. The customer is aware that transmissions over the internet are not secure. Once iMATRIX GmbH has received the transmitted information, it protects it appropriately within its systems.

iMATRIX GmbH reserves the right to amend this privacy policy at any time within the scope of the statutory provisions.

The content available on this website is for information purposes only and does not constitute legal advice in particular. Any liability for possible damages arising from the use of the website or the information available on it is excluded. In particular, we accept no liability for the timeliness, completeness, and accuracy of the content.

Right to lodge a complaint with a supervisory authority If the customer believes that their personal data is being processed in accordance with the GDPR, they have the right under Article 77 GDPR to lodge a complaint with a competent supervisory authority. iMATRIX GmbH is available to the customer to address questions and concerns before such a complaint is submitted.

The customer may contact iMATRIX GmbH in writing or by email.