Privacy notice

Privacy Notice

The responsible entity in terms of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

Process Management System S.à.r.L
Astrid Tran - Glück
Adera 1
3280 Murten

Phone: +41 79 413 02 04
Email: astrid.glueck@pmsystem.ch
WebSite: https://pmsystem. ch/

General notice

Based on Article 13 of the Swiss Federal Constitution and the SwissFederal Act on Data Protection (FADP), every person has the right to protection of their privacy and protection against misuse of their personal data. The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection provisions and this privacy statement.

In cooperation with our hosting providers, we strive to protect the databases as well as possible against unauthorized access, loss, misuse or deletion.

We point out that the data transmission on the Internet (eg communication by e-mail) security gaps. A gapless protection of data against access by third parties is not possible.

By using this website you agree to the collection, processing and use of data according to the following description. In principle, this website can be visited without registration. Data such as pages accessed or names of files accessed, date and time are stored on the server for statistical purposes without this data being directly related to your person. Personal data, in particular name, address or e-mail address are collected as far as possible on a voluntary basis. Without your consent, the data will not be disclosed to third parties.

Processing of personal data

Personal data is any information that relates to an identified or identifiable person. A data subject is a person about whom personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used, in particular the storage, disclosure, procurement, deletion, storage, modification, destruction and use of personal data.

We process personal data in accordance with Swiss data protection law. In addition, we process - to the extent and insofar as the EU-GDPR is applicable - personal data in accordance with the following legal basis in connection with Art. 6 para. 1 GDPR:

• Consent (Art. 6 para. 1 p. 1 lit. a. GDPR) - The data subject has given his consent to the processing of personal data concerning him for a specific purpose or purposes.
• Contractual performance and pre-contractual requests (Art. 6 para. 1 p. 1 lit. b. GDPR) - The processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures taken at the request of the data subject.
• Legal obligation (Art. 6 para. 1 p. 1 lit. c. GDPR) - Processing is necessary for compliance with a legal obligation to which the controller is subject.
• Protection of vital interests (Art. 6 para. 1 p. 1 lit. d. GDPR) - The processing is necessary to protect the vital interests of the data subject or another natural person.
• Regulatory Interests (Art. 6 para. 1 p. 1 lit. f. GDPR) - The processing is necessary to protect the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject, which require the protection of personal data, override.
• Application procedure as a pre-contractual or. contractual relationship (Art. 9 para. 2 lit. b GDPR) - Insofar as special categories of personal data within the meaning of Art. 9 para. 1 GDPR (e.g. health data, such as severely disabled status or ethnic origin) are requested from applicants in the context of the application procedure, so that the controller or the data subject can exercise the rights conferred on him or If the data controller or the data subject requests data from job applicants (e.g., health data, such as severely disabled persons or ethnic origin) so that the data controller or the data subject can exercise his or her rights under employment law and social security law and fulfill his or her obligations in this regard, the data is processed in accordance with Art. 9 (2) b). GDPR, in the case of the protection of vital interests of the applicants or other persons pursuant to Art. 9 para. 2 lit. c. GDPR or for the purposes of preventive health care or occupational medicine, for the assessment of the employee's ability to work, for medical diagnosis, care or treatment in the health or social sector or for the management of systems and services in the health or social sector pursuant to Art. 9 para. 2 lit. h. GDPR. In the case of a communication of special categories of data based on voluntary consent, their processing is based on Art. 9 para 2 lit. a. GDPR.

We process personal data for that duration, which is required for the respective purpose or purposes. In the case of longer lasting storage obligations due to legal and other obligations to which we are subject, we restrict the processing accordingly.

Relevant legal basis

According to Art. 13 GDPR, we inform you of the legal basis of our data processing. If the legal basis is not mentioned in the privacy statement, the following applies: The legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 GDPR, the legal basis for processing for the performance of our services and implementation of contractual measures as well as answering inquiries is Art. 6 (1) lit. b GDPR, the legal basis for processing to fulfill our legal obligations is Art. 6 (1) lit. c GDPR, and the legal basis for processing to protect our legitimate interests is Art. 6 (1) lit. f GDPR. In the event that vital interests of the data subject or another natural person make processing of personal data necessary, Art. 6 (1) lit. d GDPR serves as the legal basis.

Security Measures

We make security measures in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing; We shall implement appropriate technical and organizational measures to ensure a level of protection appropriate to the risk, taking into account the state of the art and the nature, scope, context and purposes of the processing as well as the various probabilities of occurrence and the level of risk to the rights and freedoms of natural persons.

The measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as the access, input, transfer, safeguarding of availability and their separation. We have also established procedures to ensure the exercise of data subjects' rights, the safeguarding of data, and responses to threats to data. Furthermore, we already take the protection of personal data into account in the development and selection of hardware, software and processes in accordance with the principle of data protection, through technology design and through data protection-friendly default settings.

Communication of personal data

In the course of our processing of personal data, the data may be communicated to other bodies, companies, legally independent organizational units or persons or disclosed to them. The recipients of this data may include, for example, service providers commissioned with IT tasks or providers of services and content that are integrated into a website. In such cases, we comply with the legal requirements and, in particular, conclude appropriate contracts or agreements that serve to protect your data with the recipients of your data.

Data processing in third countries

If we process data in a third country (ie, outside the European Union (EU), the European Economic Area (EEA)) or the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, bodies or companies, this is done only in accordance with the legal requirements.

Subject to explicit consent or contractually or legally required Übmittlung, we process the data only in third countries with a recognized level of data protection, contractual obligation by so-called standard protection clauses of the EU Commission, in the presence of certifications or binding internal data protection rules (Art. 44 to 49 GDPR, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de).

Data protection declaration for cookies

This website uses cookies. Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user's computer. A cookie is primarily used to store information üabout a user during or after his visit within an online offer. The stored information may include, for example, the language settings on a website, the login status, a shopping cart or the place where a video was watched. To the term cookies, we further include other technologies that perform the same functions as cookies (e.g., when user information is stored using pseudonymous online identifiers, also referred to as "user IDs")

The following cookie types and functions are distinguished:

• Temporäre cookies (also: Session cookies): Temporary cookies are deleted at the latest after a user has left an online offer and closed his browser.
• Permanent cookies: Permanent cookies remain stored even after the browser is closed. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. Likewise, the interests of users used for reach measurement or marketing purposes can be stored in such a cookie.
• First-party cookies: First-party cookies are set by ourselves.
• Third-party cookies (also: third-party cookies): Third-party cookies are mainly used by advertisers (so-called third parties) to process user information.
• Necessary (also: essential or absolutely necessary) cookies: Cookies can be absolutely necessary for the operation of a website (eg to store logins or other user input or for security reasons).
• Statistics, marketing and personalization cookies: Furthermore, cookies are usually also used in the context of range measurement and when the interests of a user or his behavior (eg viewing certain content, use of functions, etc.) on individual web pages are stored in a user profile. Such profiles are used, for example, to show users content that matches their potential interests. This process is also referred to as "tracking", i.e., tracking the potential interests of users. Insofar as we use cookies or "tracking" technologies, we will inform you separately in our privacy statement or in the context of obtaining consent.

Notes on legal basis: The legal basis on which we process your personal data using cookies depends on whether we ask you for consent. If this is the case and you consent to the use of cookies, the legal basis for the processing of your data is the declared consent. Otherwise, the data processed with the help of cookies is processed on the basis of our legitimate interests (e.g. in a business operation of our online offer and its improvement) or, if the use of cookies is necessary to fulfill our contractual obligations.

Storage period: Unless we provide you with explicit information about the storage period of permanent cookies (e.g. in the context of a so-called cookie opt-in), please assume that the storage period can be up to two years.

General information on revocation and objection (opt-out): Regardless of whether the processing is based on consent or legal permission, you have the option at any time to revoke any consent you have given or to object to the processing of your data by cookie technologies (collectively referred to as "opt-out"). You can initially declare your objection by means of your browser settings, e.g. by deactivating the use of cookies (whereby this may also restrict the functionality of our online offer). An objection to the use of cookies for online marketing purposes can also be declared by means of a variety of services, especially in the case of tracking, über the websites https://optout.aboutads.info and https://www.youronlinechoices.com/. In addition, you canönt receive further objection instructions in the context of the information on the service providers and cookies used.

Processing of cookie data on the basis of consent: We use a cookie consent management procedure, in the context of which the consent of users to the use of cookies, or the processing and providers mentioned in the cookie consent management procedure can be obtained and managed and revoked by users. The declaration of consent is stored in order to avoid having to repeat the request and to be able to prove the consent in accordance with the legal obligation. The storage can take place on the server side and/or in a cookie (so-called opt-in cookie, or with the help of comparable technologies), in order to be able to assign the consent to a user or their device. Subject to individual information on the providers of cookie management services, the following information applies: The duration of the storage of consent can be up to two years. Here, a pseudonymous user identifier is formed and stored with the time of consent, information on the scope of consent (e.g. which categories of cookies and/or service providers) as well as the browser, system and end device used.

• Types of data processed: Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
• Data subjects: Users (e.g. website visitors, users of online services).
• Legal basis: Consent (Art. 6 para 1 p. 1 lit. a. GDPR), Legitimate Interests (Art. 6 para 1 p. 1 lit. f. GDPR).

Data protection declaration for SSL/TLS encryption

This website uses SSL/TLS encryption for reasons of security and to protect the transmission of confidential content, such as the requests you send to us as site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.

Privacy Notice for Server Log Files

The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically sends to us. These are:

• Browser type and browser version
• Used operating system
• Referrer URL
• Host name of the accessing computer
• Time of server request

This data can not be assigned to specific persons. A Zusammenführung of these data with other data sources is not made. We reserve the right to review this data subsequently, if we become aware of concrete indications of illegal use.

Third Party Services

This website may use Google Maps for embedding maps, Google Invisible reCAPTCHA for protection against bots and spam and YouTube for embedding videos.

These services of the American Google LLC use, among other things, cookies and as a result, data is transmitted to Google in the U.S. übübertragen, although we assume that in this context no personal tracking takes place solely through the use of our website.

Google is committed to ensuring adequate data protection in accordance with the U.S.-European and U.S.-Swiss Privacy Shield.

Further information can be found in the privacy statement of Google.

Rights of data subjects

Right to confirmation

Every data subject has the right to request confirmation from the operator of the website as to whether personal data relating to data subjects are being processed. If you wish to exercise this right of confirmation, you may contact the data protection officer at any time.

Right of access

Any person with personal data affected by the processing has the right to obtain from the operator of this website, at any time and free of charge, information about the personal data stored about him or her and a copy of this information. Furthermore, if necessary über the following information can be provided:

• the purposes of processing
• the categories of personal data processed
• the recipients to whom the personal data have been or will be disclosed
• if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for;
• the existence of a right to rectify or erase the personal data concerning him or her or to object to processing by the controller
• the existence of a right of appeal to a supervisory authority
• if the personal data are not collected from the data subject: All available information about the origin of the data

Furthermore, the data subject has a right to information about whether personal data have been transmitted to a third country or to an international organization. If this is the case, the data subject also has the right to obtain information about the appropriate guarantees in connection with the transfer.

If you wish to exercise this right to information, you can contact our data protection officer at any time.

Right to rectification

Every person affected by the processing of personal data has the right to demand the immediate rectification of inaccurate personal data concerning them. Furthermore, the data subject has the right, taking into account the purposes of the processing, to request the completion of incomplete personal data - also by means of a supplementary explanation.

If you wish to exercise this right of rectification, you may contact our data protection officer at any time.

Right to erasure (right to be forgotten)

Any person concerned by the processing of personal data has the right to obtain from the controller of this website the erasure without delay of personal data concerning him or her, where one of the following reasons applies and insofar as the processing is not necessary:

• The personal data have been collected or otherwise processed for purposes for which they are no longer necessary
• The data subject withdraws the consent on which the processing was based and there is no other legal basis for the processing
• The data subject provides no further information for reasons related to his or her particular circumstances;
• The data subject objects to processing on grounds relating to his or her particular situation and there are no overriding legitimate grounds for the processing, or the data subject objects to processing in the case of direct marketing and related profiling
• The personal data have been processed unlawfully; processed unlawfully
• The processing of personal data is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject
• The personal data have been collected in relation to information society services provided directly to a child

If one of the above-mentioned reasons applies