Privacy policy

Introduction

Based on Article 13 of the Swiss Federal Constitution and the data protection provisions of the Swiss Confederation (Data Protection Act, DSG), every person is entitled to protection of their privacy and protection against misuse of their personal data. We comply with these provisions. Your personal data will be treated as strictly confidential and will not be sold to third parties, but may be passed on to third parties for processing in accordance with this data protection declaration.

Please read this privacy policy carefully, as it describes how and for what purpose your personal data is processed when you visit this website.

Who is responsible for my data

Certifaction AG is the data controller responsible for the processing of your personal data on this website. If you have any further questions about the processing of personal data or wish to exercise your right to information, please contact us at the following address:

Certifaction AG, Limmatquai 120, 8001 Zurich, Switzerland

In certain cases, another company may also be responsible for data processing, for example if personal data is passed on to CRIF AG and Intrum AG for the issue of the CreditTrust certificate. In these cases, these companies also act as data controllers.

Which data is processed

The following data is stored when you access our website: IP address, date, time, first name, surname, address and date of birth. With the exception of the IP address, date and time, all personal data is automatically deleted after 72 hours.

Full information on each type of personal data processed is explained in the relevant sections of this privacy policy.

Personal data may be provided voluntarily by the user or, in the case of usage data, collected automatically when this website is used.

Unless otherwise stated, the provision of all data requested by this website is mandatory. If the user refuses to provide the data, this may result in this website being unable to provide its services to the user. In cases where this website expressly states that the provision of personal data is voluntary, users may choose not to provide this data without any consequences for the availability or functionality of the service.

Users who are unclear about which personal data is mandatory can contact the data controller.

Users are responsible for all third-party personal data obtained, published or shared through this website and confirm that they have obtained consent to the transfer of any third-party personal data to this website.

We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) may be subject to security vulnerabilities. Complete protection of data against access by third parties is not possible.

Processing methods and purposes

We process user data in a proper manner and take appropriate security measures to prevent unauthorised access and the unauthorised forwarding, modification or destruction of data.

Data processing is carried out using computers or IT-based systems in accordance with organisational procedures and practices that are specifically geared to the stated purposes. In addition to the Data Controller, other parties may operate this website and therefore have access to the data, either internally (personnel management, sales, marketing, legal department, system administrators) or externally (such as providers of technical services, delivery companies, hosting providers, IT companies or communication agencies), appointed by the Data Controller where necessary. A current list of these parties can be requested from the controller at any time.

Cookies

Some of the Internet pages use so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies are used to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognise your browser on your next visit.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.

The cookies may also be those of third-party providers.

Local Storage

We use "HTML5 Local Storage" to recognise multiple use by the same user and to store temporary application data on your computer. Local storage is a technology with which your browser stores data on your computer or mobile device. We use this technology to make navigation and use of our website as user-friendly as possible. We also need this technology to identify you.

Your first name, surname and address are stored in local storage. The local storage is deleted after 72 hours (the next time you visit the website) or when the process is completed.

You can prevent the use of "HTML5 Local Storage" by selecting the appropriate settings in your browser. However, we would like to point out that deactivating local storage may limit the functionality of this website.

Third parties cannot access the data stored in Local Storage. It will not be passed on to third parties and will not be used for advertising purposes.

Hosting Provider & Server-LogFiles

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

• IP address
• Browser type and browser version
• Operating system used
• Referrer URL
• Host name of the accessing computer
• Time of the server enquiry

This data cannot be directly assigned to specific persons. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of unlawful use.

This data and all data on this website is stored by Google Cloud, whose privacy policy can be found here.

SSL-Encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as the enquiries you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL encryption is activated, the data you send to us cannot be read by third parties.

Contact forms

If you send us enquiries via contact forms, your details from the enquiry form, including the contact details you provide there, may be stored by our partners Intrum AG and CRIF AG for the purpose of processing the enquiry and in the event of follow-up questions.

goCaution

If you express an interest in rental guarantee insurance during the CreditTrust ordering process, your personal data (first name, surname, address, e-mail address and date of birth) will be forwarded to goCaution AG, Wangenstrasse 86a, 3018 Bern (goCaution). The goCaution privacy policy can be found here.

Datatrans

We use the Datatrans e-payment platform to offer you various payment options. All common payment methods can be processed via the Datatrans e-payment platform interface. The provider of Datatrans is Datatrans AG in Zurich. Datatrans fulfils the current security standards, in particular the Payment Card Industry Data Security Standard (PCI DSS). The Datatrans privacy policy can be found here.

CRIF AG

In order to issue a CreditTrust certificate, your personal data (first name, surname, address and date of birth) will be forwarded to CRIF AG, Hagenholzstrasse 81, 8050 Zurich (CRIF). The CRIF privacy policy can be found here.

IDNow

We use the IDNow service to authenticate you. Your ID card is recorded via the camera or uploaded and forwarded to IDNow. The first name, surname, address and date of birth are used for the identification process. You can find the IDNow privacy policy here.

Intrum AG

In order to issue a CreditTrust certificate, your personal data (first name, surname, address and date of birth) will be forwarded to Intrum AG, Eschenstrasse 12, 8603 Schwerzenbach (Intrum). The Intrum privacy policy can be found here.

Google Maps

CreditTrust uses Google Maps from Google. User information is already transmitted to Google when pages with integrated Google Maps are accessed. Detailed information on the scope and purpose of data collection and processing can be found in the Google Maps terms of use, which is linked on the map section presented, as well as in Google's privacy policy (see above under "Google Analytics"). To deactivate Google Maps, you can switch off the JavaScript application in your browser. The terms of use of Google Maps can be found under "Terms of use of Google Maps".

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider is Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.

Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, your IP address will first be truncated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area.

Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. Google will use this information for the purpose of analysing your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. Google observes the data protection provisions of the "US Privacy Shield" and is registered with the "US Privacy Shield" programme. You can find more information in Google's privacy policy (https://policies.google.com).

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.

Right to information, rectification, erasure, blocking

You have the right to receive information free of charge at any time about your stored personal data, its origin, recipients and the purpose of data processing, as well as the right to request the correction, blocking or deletion of this data. You can contact us at any time if you have further questions on the subject of data protection.

Changes to this privacy policy

We reserve the right to make changes to this privacy policy at any time. Users are therefore advised to visit this page regularly and to check the date of the last change indicated at the bottom of the page.

Last update: 28 June 2021