Privacy Policy of Perfect Media GmbH

In this privacy policy, we, Perfect Media GmbH, we or us, explain how we collect and otherwise process personal data. This is not an exhaustive description; other privacy policies or general terms and conditions, participation conditions, and similar documents may govern specific matters. Personal data refers to all information relating to an identified or identifiable person.
This privacy policy is designed to comply with the requirements of the EU General Data Protection Regulation (GDPR), the Swiss Data Protection Act (DPA), and the revised Swiss Data Protection Act (revDPA). However, whether and to what extent these laws apply depends on the individual case.
  1. 1. Controller / Data Protection Officer / Representative
    The entity responsible for the data processing described here is: Perfect Media GmbH, Sennweidstr. 39, 6312 Steinhausen. If you have data protection concerns, you can send them to the following email address: info@perfectmedia.ch or by post to the above address.
  2. 2. Collection and Processing of Personal Data
    We primarily process the personal data that we receive from our customers and other business partners as part of our business relationship or that we collect from users when operating our websites, apps, and other applications. In addition to the data you provide directly, the categories of personal data we receive from third parties include address, potential interests, and other socio-demographic data (for marketing), data related to the use of the website (e.g., IP address, MAC address of the smartphone or computer, device and settings information, cookies, date and time of visit, pages and content accessed, used functions, referring website, location data).
  3. 3. Purposes of Data Processing and Legal Basis
    We primarily use the personal data we collect to fulfill our tasks related to the website and to comply with our legal obligations domestically and internationally. Additionally, we process personal data—where permitted and deemed appropriate—for the following purposes, which are in our (and sometimes third parties') legitimate interest: ⎯ Providing and improving our offerings, services, websites, apps, and other platforms; ⎯ Communicating with third parties and handling their inquiries (e.g., job applications, media inquiries); ⎯ Evaluating and optimizing procedures for needs analysis and direct customer outreach, including gathering data from publicly accessible sources for customer acquisition; ⎯ Advertising and marketing (including events), provided you have not objected to the use of your data (you may opt out of marketing communications at any time, and we will add you to a do-not-contact list); ⎯ Market and opinion research, media monitoring; ⎯ Asserting legal claims and defending against legal disputes and government proceedings; ⎯ Ensuring our operations, especially IT, websites, apps, and other platforms. If you have given us consent to process your personal data for specific purposes (e.g., signing up for newsletters or conducting background checks), we process your data based on that consent, unless another legal basis exists. You can withdraw your consent at any time, but this does not affect data processing that has already occurred.
  4. 4. Cookies / Tracking and Other Technologies Related to Website Use
    We typically use "cookies" and similar technologies on our websites to identify your browser or device. A cookie is a small file that is sent to your computer or automatically stored on your computer or mobile device by the web browser you use when visiting our website [or installing the app]. When you return to the site [or use the app], we can recognize you—even if we do not know who you are. In addition to session cookies, which are deleted after your visit, we may use persistent cookies to store user preferences and other information over time (e.g., two years). You can configure your browser to reject cookies, allow them only during a session, or delete them early. Most browsers accept cookies by default. We use persistent cookies to store user settings (e.g., language, auto-login), understand how users interact with our content, and display personalized offers and ads. Blocking cookies may impair some functionalities (e.g., language selection, shopping cart, checkout). By using our websites and consenting to receive newsletters and marketing emails, you agree to the use of these technologies. If you do not agree, adjust your browser or email client settings accordingly. We may also use Google Analytics or similar services on our websites. This is a third-party service that may be located anywhere in the world (Google Analytics is provided by Google Ireland, which relies on Google LLC in the USA as a processor—together "Google", www.google.com). This allows us to measure and analyze website usage (not on a personal basis). These services also use persistent cookies. We've configured them so that visitor IP addresses are anonymized in Europe before being transferred to the USA. We have disabled "data sharing" and "signals". While we believe the information shared with Google is not personal data, Google might use it for its own purposes, including profiling and linking to user accounts. If you are registered with Google, it may identify you. Data processing by Google is then governed by their privacy policy. We only receive anonymized statistics from them.
  5. 5. Data Disclosure and Transfers Abroad
    In connection with our business activities and the purposes described in section 3, we may disclose data to third parties where permitted and deemed appropriate. These include: ⎯ Our service providers, including processors (e.g., IT providers); ⎯ Subcontractors and business partners; ⎯ Customers; ⎯ Domestic and foreign authorities, agencies, or courts; ⎯ Other parties in actual or potential legal proceedings; ⎯ Other companies within the Perfect Media Group; collectively referred to as recipients. Some recipients are in Switzerland, while others may be worldwide. Expect transfers to countries where the Perfect Media Group is represented through affiliates, branches, or offices, and to countries in Europe and the USA where our providers are located (e.g., Microsoft, Amazon). If a recipient is in a country without adequate data protection laws, we contractually require them to adhere to applicable protections (using the revised EU Standard Contractual Clauses: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj), unless another legal framework applies or we can rely on an exception (e.g., legal proceedings abroad, overriding public interest, your consent, or publicly available data not objected to).
  6. 6. Retention Period for Personal Data
    We process and store your personal data as long as necessary for our contractual and legal obligations or the purposes of processing—e.g., for the entire duration of the business relationship (from initiation to termination of a contract) and beyond, according to legal retention and documentation obligations. Personal data may be retained as long as claims can be asserted against our company and if we are otherwise legally required or have legitimate business interests (e.g., for evidence or documentation). Once data is no longer needed, it is deleted or anonymized as far as possible. Operational data (e.g., system logs) usually has a shorter retention period of twelve months or less.
  7. 7. Data Security
    We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access and misuse, such as IT and network security solutions, access controls and restrictions, encryption of data carriers and transmissions, pseudonymization, and monitoring.
  8. 8. Obligation to Provide Personal Data
    As part of our business relationship, you must provide the personal data necessary to establish and conduct the relationship and fulfill related contractual obligations (you generally are not legally required to do so). Without this data, we are usually unable to enter into or execute a contract with you (or the entity or person you represent). The website cannot be used if certain data (e.g., IP address) required for data traffic cannot be disclosed.
  9. 9. Profiling
    We partially use automated processing of your personal data to evaluate certain personal aspects (profiling). We use profiling in particular to inform and advise you about products in a targeted manner. We use evaluation tools that enable tailored communication and advertising, including market and opinion research.
  10. 10. Rights of the Data Subject
    Under applicable data protection law (e.g., GDPR), you have the right to access, rectification, erasure, restriction of processing, and objection to our processing, especially for direct marketing, profiling for direct advertising, and other legitimate interests , as well as the right to data portability. Note that we may apply legal restrictions, e.g., if we are obliged to retain or process data, have overriding interests (where permitted), or need the data to assert claims. We will inform you of any costs. Consent withdrawal was explained in section 3. Note that exercising your rights may conflict with contractual agreements and may result in early termination or cost implications. We will inform you in such cases unless already contractually agreed. You must normally prove your identity to exercise these rights (e.g., with a copy of an ID if unclear). You can contact us as per section 1.
    Every affected person also has the right to enforce claims in court or lodge a complaint with the competent data protection authority. In Switzerland, this is the Federal Data Protection and Information Commissioner (http://www.edoeb.admin.ch).
  11. 11. Changes
    We may amend this privacy policy at any time without prior notice. The current version published on our website applies. If this privacy policy is part of an agreement with you, we will notify you of any updates via email or other appropriate means.