Important information on data protection

Status: August 2023

For us, Doetsch Grether AG, the protection and security of your personal data, as well as compliance with data protection regulations, is important. In the following, we inform you about which data is collected in the course of using our website and how we use it. We treat personal data as strictly confidential and do not pass it on or sell it to third parties. In close cooperation with our hosting provider, we make every effort to protect the databases from unauthorised access, loss, misuse or falsification.

In this privacy statement, we provide information about what personal data we process in connection with our activities and operations, including our website, and how we handle it.

Basic

Doetsch Grether's services are geared towards Switzerland. Likewise, our websites are aimed at people in Switzerland. Persons residing abroad may visit our websites, but are not our target audience. We are subject to Swiss data protection law, in particular the Federal Data Protection Act (hereinafter DSG).

Individual activities may additionally be subject to the General Terms and Conditions (GTC), specific conditions of use or participation or other legal documents. Personal data is information that can be used to discover your identity. We collect, process and use your personal data as described in this privacy policy and in compliance with the legal data protection requirements. When you simply visit our website, i.e. if you do not contact us by e-mail or telephone, we only collect the personal data that your browser transmits to our server.

Server log files

During the connection of your browser with our websites, data is exchanged between your browser and our website hoster. This information is absolutely necessary for establishing the IP connection, does not allow any conclusions to be drawn about you personally and is not evaluated by us. Our website hoster is legally obliged to store this information (log files) for six months. After this period, they are deleted.

Purpose of the collection, processing and use of personal data

The purpose of this and other websites is primarily to provide information about our company and our products and services. If you wish to view one of our websites https://www.doetschgrether.ch, https://vitahealthcare.ch, https://www.tigerbalm.ch, https://www.sulgan.ch, https://www.pernaton.ch, https://www.omega-life.ch, https://www.neo-angin.ch, https://www.mum-deo.ch, https://www.diasporal.ch,  https://www.liberol.ch, https://www.grethers.ch,  https://www.ceylor.ch, https://www.bi-oil.com, https://www.basica.com, we collect the following data which is technically necessary for us to display these websites to you and to ensure their stability and security:

- Date and time of the call of our website
- The accessed files (texts, graphics, photos, videos, etc.)
- The HTTP status of the request (file found, file not found).
- The browser you use, the browser version and the browser settings
- The operating system you are using and its version
- The amount of data transmitted
- The requesting IP address

Our product websites refer to shops of our product customers or sales partners by means of backlinks. We do not register any purchase information and refer to the data protection provisions of the respective product shops.

The legal basis for processing your personal data is our legitimate interest. Our legitimate interest is to ensure the functionality of our website and in this context, of course, to respond to your enquiries. Your data will not be passed on to third parties unless we are legally obliged to do so (e.g. in the case of a request from an authority or court) or you have given us your consent to do so. We only use your data for the purpose for which you have provided it to us.

Your data will be deleted as soon as it is no longer required to fulfil the purpose for which it was collected (after the end of your visit to our website or when processing your enquiry by e-mail/mail/telephone) and the deletion is not contrary to any statutory retention obligations.

Cookies

We use cookies to make the websites more user-friendly. Cookies are data that the visited website or its server stores in your computer via the browser, e.g. in order to recognise it later. Unless you have already expressly consented to the use of cookies, by using the website without deactivating cookies you consent to the processing of the data collected about you by cookies. In principle, this website can also be used without accepting cookies, although individual functionalities may then be restricted.

On our websites and mobile applications, we set session cookies as well as temporary and permanent cookies. So-called session cookies are automatically deleted from your computer or mobile device after the end of a browser session. Temporary or permanent cookies remain stored on your computer or mobile device for a longer period or indefinitely after the end of a browser session and make it possible, for example, for you to be recognised on a future visit to our websites and for your preferred settings to be adopted.

Most internet browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or a message always appears when you receive a new cookie. On the following pages you will find explanations of how you can configure the processing of cookies in the most common browsers:

Deactivating cookies may mean that you cannot use all the functions of our websites.

You can view and delete the cookies stored on your computer and control and prevent the setting of cookies via the settings of your Internet browser. You can obtain more information on this from the manufacturer or in the help function of your Internet browser.

Automated decision making or profiling

We do not use automated decision-making as defined by Swiss data protection legislation. Should we use this in individual cases in the future, we will inform you of this separately, insofar as this is required by law.

Contact form

Should you provide your contact details on the website (e.g. name, address, e-mail address, telephone number), we will use these, among other things, to contact you by telephone, e-mail or letter post and for the identifiable and stated purposes. When you send the form, your IP address and the date and time of sending are also stored. This information is used to prevent misuse of our contact form.

Newsletter subscription

Doetsch Grether processes personal data that you disclose to us in connection with a newsletter subscription for the marketing purposes indicated on the relevant website. As part of the registration process, your consent to send newsletters to the specified address is obtained. The only mandatory information is the e-mail address to be supplied.

If you have purchased products or services via our website and have provided your e-mail address, this may subsequently be used by us to send newsletters. In such a case, only direct advertising for our own similar goods or services will be sent via the newsletter. Your data will be stored until the newsletter subscription is terminated and will be used for analytical purposes. (e.g. through pixel tracking). For this purpose, we analyse, for example, which newsletter you open or which link you click in it and link this to stored data and information, e.g. about your interests and preferences. If users do not want their data to be processed as described, they should unsubscribe from the newsletter. A link to unsubscribe is included in every newsletter email. In addition, you can contact us at the address below.

With the service provider Mailchimp used, data may be transferred to and processed in the USA. Security measures are taken in accordance with applicable legal requirements to ensure adequate protection for all personal data transferred from Switzerland, the United Kingdom or the EEA to the United States.

Mailchimp: Communication platform. Service provider: The Rocket Science Group, LLC (Atlanta, USA), subsidiary of Intuit Inc. (USA) Information on data transmission: https://mailchimp.com/de/help/mailchimp-european-data-transfers/. General declaration on data protection: https://www.intuit.com/privacy/statement/#5._General_Information

Adverse drug reactions (ADRs)

If you experience an adverse drug reaction after taking one of our medicinal products, you can report this to your doctor or pharmacist or directly to the Swiss Agency for Therapeutic Products Swissmedic https://nebenwirkung-melden.swissmedic.admin.ch/. Please observe Swissmedic's data protection regulations if you wish to report side effects.

Apply and contact us by e-mail

We can be contacted via our website (job advertisement) and the e-mail address provided as a link. In this case, your personal data transmitted with the enquiry (in any case first and last name and e-mail address) as well as your message will be stored. Optionally, you can provide further information such as contact details, company name, etc. in the respective fields or checkboxes.

The processing of this personal data serves us to process the contact and your request. The legal basis for the processing of this data, which is transmitted in the course of sending an enquiry, is a legitimate interest of us as the responsible party in communicating with the users of our website. If the request is aimed at the conclusion of a contract, the additional legal basis is the fulfilment of a contract or pre-contractual measures for this).

The above-mentioned data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. For personal data sent by e-mail or the contact form, this is the case when the respective conversation with the user has ended. The conversation is terminated if it can be inferred from the circumstances that the relevant facts have been conclusively clarified and no contractual relationship results from it.

Cloud services

We use software services accessible to us and our customers via the Internet and running on their providers' servers (so-called "cloud services", also referred to as "software as a service") for the following purposes: document storage and management, calendar management, sending e-mails, spreadsheets and presentations, exchanging documents, content and information with specific recipients or publishing web pages, forms or other content and information, as well as chats and participation in audio and video conferences.

In this context, personal data may be processed and stored on the servers of the providers, insofar as these are part of communication processes with us or are otherwise processed by us as set out in the context of this privacy policy. This data may include, in particular, master data and contact data of users, data on transactions, contracts, other processes and their contents. The cloud service providers also process usage data and metadata used by them for security purposes and service optimisation. If we use the cloud services to provide forms or other documents and content to other users or publicly accessible websites, the providers may store cookies on the users' devices for the purposes of web analysis or to remember the users' settings (e.g. in the case of media control).

Microsoft: Cloud storage services; Service provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399 USA; website: https://microsoft.com/de-de ; privacy policy: https://privacy.microsoft.com/de-de/privacystatement, security information: https://www.microsoft.com/de-de/trustcenter. The most common Azure services such as computers (virtual machines), databases and web services are now available in Microsoft Cloud Switzerland and are also stored in Switzerland.

Social media

We are present on various social networks to communicate with interested individuals. If you also use these networks, your data may be processed in countries such as the USA, where the legal basis in terms of data protection may be weaker than in Switzerland or the European Economic Area (EEA). Furthermore, user data is usually processed for market research and advertising purposes. For example, profiles can be created based on user behaviour.

We recommend that you log out of social media apps and online accounts before visiting other websites. Otherwise, your surfing behaviour will be recorded by the providers of these services and assigned to your profile. Without prior logout, these providers also record your visit to our websites, even if there is no integration on them. We refer to the data protection declarations and information of the operators of the corresponding networks. Requests for information and concerns about data subject rights are most effectively directed to the providers. Only they have access to the data and can take direct measures and provide information.

Facebook: Social network. Service provider: Meta Platforms Inc, (Palo Alto, USA). Facebook data policy and further information regarding the handling of personal data: https://www.facebook.com/policy, https://www.facebook.com/legal/terms/information_about_page_insights_data.

Instagram: Social network. Service provider: Meta Platforms Inc, (Palo Alto, USA) Instagram Privacy Policy:  https//help.instagram.com/155833707900388  

Pinterest: Social network. Service provider: Pinterest Europe Ltd (Dublin, Ireland), parent company: Pinterest Inc. (San Francisco, USA). Privacy policy: https://policy.pinterest.com/de/privacy-policy ; Privacy settings: https://www.pinterest.com/settings/privacy/

Twitter/X: Social network. Service provider: X Corp (Dublin, Ireland). Parent company: X Corp. (San Francisco, USA). Privacy policy: https://twitter.com/de/privacy, (settings) https://twitter.com/settings/account/personalization.

Vimeo: social network and video platform. Service provider: Vimeo Inc, (New York, USA). Privacy policy: https://vimeo.com/privacy  

YouTube: Social network and video platform. Service provider: Google Ireland Limited, (Dublin, Ireland). Parent company: Google LLC (Mountain View, USA). Privacy policy: https://policies.google.com/privacy ; Opt-out: https://adssettings.google.com/authenticated.

LinkedIn: Our websites use the "share function" of the LinkedIn network. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. If you click on the LinkedIn "Share" button (plug-in), you will be redirected to your user account in a separate browser window, provided you are logged in to your LinkedIn user account, and can share the electronic publication stored on our website by adding a comment. The plug-in establishes a direct connection between your browser and the LinkedIn server. LinkedIn thereby receives the information that you have visited our website with your IP address. In addition, it is then possible for LinkedIn to assign your visit to our website to you and your user account. We would like to point out that we have no knowledge of the content of the transmitted (personal) data or its use by LinkedIn. You can find more information on this in LinkedIn's privacy policy at: https://www.linkedin.com/legal/privacy-policy. If you do not want LinkedIn to be able to associate your visit to our pages with your account, please log out of your LinkedIn account.

Google Analytics

We use Google Analytics, a web analytics service provided by Google Inc, USA ("Google"), to collect usage and movement data from our websites. The information generated by Google Analytics cookies about your use of this website is generally transmitted to a Google server in the USA and processed there. However, in the event that IP anonymisation is activated on this website, your IP address will be truncated beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by installing the browser plug-in available at http://tools.google.com/dlpage/gaoptout?hl=de.

More information on terms of use and data protection: https://www.google.de/intl/de/policies/.  We also use Google Analytics to analyse data from AdWords and the Double-Click-Cookie for statistical purposes. If you do not want this to happen, you can deactivate it via the Ads Preferences Manager at http://www.google.com/settings/ads/onweb/?hl=de.

Google AdWords: Our website uses Google conversion tracking. If you have reached our website via an ad placed by Google, a cookie is set on your computer by Google Adwords. The conversion tracking cookie is set when a user clicks on an ad placed by Google. These cookies lose their validity after 30 days. Clients learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information with which users can be personally identified.

Google Remarketing / Retargeting: Our website uses the functions of Google Analytics Remarketing in conjunction with the cross-device functions of Google AdWords and Google DoubleClick. With these functions, interest-related, personalised advertising messages that have been adapted to you depending on your previous usage and surfing behaviour on one end device (e.g. mobile phone) can also be displayed on another of your end devices (e.g. tablet or PC). For this purpose, the web and app browsing history is linked to your Google account.

To support this feature, Google Analytics collects google-authenticated IDs of users, which are temporarily linked to Google Analytics data. This allows to define and create target groups for cross-device ad advertising.

The use of remarketing technologies is for marketing purposes. You can object to cross-device remarketing/targeting by deactivating personalised advertising in your Google account https://www.google.com/settings/ads/onweb/.

Further information and the data protection provisions in Google's data protection declaration: https://www.google.com/policies/technologies/ads/.

Security

We have taken various technical and organisational measures to ensure that the data we collect and process is protected against unauthorised access, loss, destruction or manipulation. Legal data protection requirements are of course complied with. However, we would like to point out that no data transmission via the Internet is one hundred percent secure; in particular, there is a risk of access by third parties when data is transmitted by e-mail. As a consequence, we cannot guarantee complete protection of the data and information you transmit via our website.

Furthermore, we ensure that our personal data is stored in the cloud with providers who are also active in Switzerland and store our data at least in Europe. We use Office 365 from Microsoft https://privacy.microsoft.com/de- en/privacystatement.

Data security

To increase data security, Doetsch Grether takes appropriate security measures. These are, for example, the protection of certain areas of the website by SSL encryption or with passwords as well as the restriction of access to personal data to employees and contractors of ours who need to know the data in order to be able to process this data in accordance with its purpose. However, you should bear in mind that no internet transmission is ever 100% secure or error-free. Emails in particular can be insecure. Unauthorised third parties may be able to access data you send over the internet. This can result in this data being made accessible to third parties, being disclosed, having its content changed or being lost, or in other problems. Even if the sender and recipient are located in the same country, data sent via the Internet may leave the respective country and be forwarded to a country in which less stringent data protection requirements apply than in the country in which you are domiciled. Doetsch Grether expressly points out that data transmission over the Internet is subject to security vulnerabilities and that protection against access by third parties cannot always be guaranteed. We are not responsible or liable for the security of your data while it is being transmitted to us via the Internet.

Data transfer / disclosure to third parties

We are entitled to transfer your data, within the scope of the purpose for which it was collected, to affiliated companies as well as their and our own agents and third-party service providers within or outside the country in which you reside or from which the data was transmitted; so that these third-party service providers use your data as Doetsch Grether is permitted to do. They are also obliged to comply with data protection. Your data will only be passed on in any other way if this is legally permissible or you have given us your consent to do so, or if Doetsch Grether is obliged to do so as a result of applicable laws, government orders or a decision by an authority or court.

Links to other websites

For your convenience, this website may contain links to other websites, in particular to our respective partners. This privacy policy does not apply to those other websites. We recommend that you read the respective data protection notices to obtain information on data collection and data processing.

Your rights

You have the possibility to exercise the following rights with regard to your personal data:

The right to information
Information on the origin, disclosure, purpose of collection and use, the planned duration of storage and the type of processing of those data relating to your person.

The right to rectification
Correction, shortening or completion of those data concerning your person which you cannot correct yourself.

The right to erasure
Deletion or blocking of those data concerning your person that you cannot delete yourself.

The right to restrict processing
Restriction with regard to the duration of use and the subject matter of the data relating to you, including revocation of authorisations already granted. See also the section "Objection to data processing for the future".

The right to data transmission
Release of those data concerning your person in machine-readable form.

Where we are unable to allocate requests for information, correction, deletion, restriction of processing and data transfer beyond doubt, we reserve the right to assure ourselves of the identity of the person making the request and to demand copies of meaningful documents such as ID cards or certifications.

Right to complain
If you are of the opinion that your rights to information are not being adequately fulfilled or that your
your personal data is not being processed in accordance with the law, you can
you can lodge a complaint with the competent supervisory authority. In Switzerland, this authority is
the Federal Data Protection and Information Commissioner (FDPIC). 

Final

Accessing websites and online shops as well as sending and receiving emails is never absolutely secure. In addition, numerous security agencies and secret services monitor the use of the internet and collect information that is not related to a concrete suspicion or crime.

Contact

If you have any questions about data protection on our website, would like to request information or request the deletion of your data, please contact our contact person for data protection law by sending an e-mail to datenschutz@doetschgrether.ch or writing to the following address:

DOETSCH GRETHER AG
Data Protection Officer
Sternengasse 17
CH-4051 Basel / Switzerland

Tel. +41 61 287 34 11
Fax +41 61 287 34 13

datenschutz@doetschgrether.ch

Changes to the data protection notice

This privacy policy may be updated from time to time as we continue to develop and improve our services. To this end, the latest version will be published on our website.

 

Last updated: 30 August 2023