Legal
Last update: 24. February 2025
The company informs users about personal data processing types, purposes, and scope. This policy covers all personal data handling by q_alizer across websites, mobile applications, and social media presences.
Q alizer AG
Dominique Schuwey
Ruessenstrasse 6
6340 Baar
Authorised Representatives: Fabio Oro, Beat Seeliger
Email: info@q-alizer.com
Under GDPR, processing relies on these foundations:
Swiss data protection law (Federal Data Protection Act/DSG) applies additionally when processing Swiss citizen data.
The organization implements technical and organizational safeguards aligned with legal requirements and technological standards. These include:
Data may be transferred to service providers, IT contractors, and content providers. Recipients are bound through contracts ensuring data protection compliance.
Processing outside the EU/EEA occurs only with:
Data deletion follows statutory requirements once processing purposes conclude. Where retention is legally mandated (tax archiving, legal claims), processing becomes restricted to those specific purposes. Retention periods generally extend 4 years post-warranty, or 10 years for tax documentation.
Cookies require prior user consent except when strictly necessary for requested services. Users receive clear notification and revocation options.
Temporary (Session) Cookies: Deleted upon browser closure
Permanent Cookies: Stored up to two years unless explicitly specified otherwise
Contractual and business partner data (customers, prospects) undergoes processing within contractual relationships and communications for the following purposes:
Third-party sharing occurs only for stated purposes or legal compliance. Recipients include telecommunications providers, banks, tax advisors, and payment processors.
Processed Data Types: Names, addresses, bank details, invoices, payment history, emails, telephone numbers, contract terms
Legal Basis: Contract performance (Article 6(1)(b)); Legal compliance (Article 6(1)(c)); Legitimate interests (Article 6(1)(f) GDPR)
The organization uses web hosting providers managing servers for secure, efficient service delivery. Infrastructure includes computing capacity, storage, database services, and security maintenance.
Server log files capture web page and file names accessed, access dates and times, data volumes transferred, browser and operating system types, referrer URLs, and IP addresses.
Retention: Maximum 30 days before deletion or anonymization, except evidence-related data retained until incident resolution.
User contact information undergoes processing to respond to inquiries. Processing serves contractual fulfillment or pre-contractual requests, and otherwise operates under legitimate interest in maintaining relationships.
Processed Data Types: Names, addresses, emails, phone numbers, submitted content
Legal Basis: Contract performance (Article 6(1)(b)); Legitimate interests (Article 6(1)(f) GDPR)
The organization employs internet-accessible software (SaaS) for document storage, calendar management, email delivery, spreadsheets, presentations, content exchange, website hosting, and video conferencing. Personal data including master records, contact information, process data, contracts, and metadata undergo processing and storage on provider servers.
Legal Basis: User consent (Article 6(1)(a)); Contract performance (Article 6(1)(b)); Legitimate interests (Article 6(1)(f) GDPR)
Functional elements and content (graphics, videos, maps) obtained from third-party servers require IP address processing for delivery. Third parties may employ pixel tags for statistical or marketing evaluation.
The organization integrates Google Fonts for uniform browser presentation, operating under legitimate interest in secure, maintenance-free font usage.
Service Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy Policy: policies.google.com/privacy
The organization reviews and updates this policy as processing practices evolve. Users receive notification when changes require cooperation or individual attention.
Under GDPR (Articles 15–21), data subjects possess:
The natural or legal person determining processing purposes and means, acting alone or jointly.
Any information identifying or potentially identifying a natural person, including names, identification numbers, location data, online identifiers, or factors specific to physical, physiological, genetic, mental, economic, cultural, or social identity.
Comprehensive data handling including collection, evaluation, storage, transmission, or deletion.