DATA PROTECTION & PRIVACY POLICY

Gigant Swiss Consulting AG

1. Introduction

It is a major concern for Gigant Swiss Consulting AG, Aeschenplatz 6, CH-4052 Basel (hereinafter «us» or «we» or «our»), that your personal data is treated in a responsible manner and in compliance with legal requirements. This Privacy Policy describes the way we process your personal information when you visit our website or when you use services via our website.

We are the controller regarding the processing of your personal data. You may contact us as follows:

Gigant Swiss Consulting AG
Aeschenplatz 6, CH-4052 Basel
+41 44 493 90 90
info@gigant-swiss.ch

By using our online services, you agree with this Privacy Policy and approve of our processing of your personal data, taking into consideration the applicable data protection laws and the following stipulations.

2. Data Processing by us

2.1. Visiting our Website

When visiting our website, we collect the following data:

– IP-address
– Browser
– Type of device
– Operating system
– Date and time of website visit
– Content of the visited website
The purpose of the data processing is the provision of the website for website visitors and website security.

If and insofar the GDPR is applicable, the legal basis of the processing are:

We process website usage data for the above-mentioned purpose only as long as this is necessary to provide you with the website content in a secure manner.

2.2. Data Processing for Service Provision / Registration on our Website

In connection with your use of our services and your registration on our website, we process your personal data, such as:

– Contact and identification data
– Personal details
– Financial data
We process your personal data to the extent necessary to manage the customer relationship, provide our services, process orders and contracts, to safeguard our rights, for billing, to answer questions, address concerns, provide support with technical issues and evaluate, improve and develop our services and functions.

If and insofar the GDPR is applicable, the legal basis of the processing are:

– Provision of website and website services: Art. 6 (1) letter b GDPR (execution of a contract)
– Website security: Our legitimate interest in providing website visitors with a functioning and technically secure website (Art. 6 (1) letter f GDPR)
We only transfer your personal data to third parties to the extent that this is necessary for the aforementioned purposes or to fulfil legal obligations or with your consent (e.g. to parti - cipating telecommunication, transport and other auxiliary services as well as subcontract - ors, banks, tax and legal advisors, e-payment service providers or tax authorities).

When using our Services, you agree to the digital storing of your personal data and to the storing of your IP-address In order to prevent abuse and fraud.

In principle, personal data is deleted as soon as it is no longer necessary to achieve the purpose of its collection, subject to statutory retention or limitations periods.

2.3. Data Breach Notification

In case of a data breach, we will notify the competent supervisory authority without undue delay and, where feasible, not later than 72 hours after having become aware of it, as required by Art. 33 of the GDPR.

3. Cookies

Our website uses so-called cookies in some cases. Cookies are small text files that are stored on your computer and saved by your browser. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective and safe.

Most of the cookies we use are so-called "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognize your browser the next time you visit us.

You can set your browser to inform you about the setting of cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for certain cases or in general, and to activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.

If and insofar the GDPR is applicable, the legal basis of the processing is:

– Cookies that are required to provide certain functions are stored on the legal basis of Art. 6 (1) letter of GDPR. We have a legitimate interest in the storage of cookies for the technically error-free and optimised provision of our services. Insofar as other cookies are stored, these are treated separately in this Privacy Policy.

4. Your Rights

Provided the relevant legal requirements are met, you have the following rights:

– Access: You have the right to ask us for confirmation of whether we process any of your personal data and, if so, specific details thereof.
– Rectification: You have the right to have the personal data that we process corrected or completed.
– Deletion and Restricted Processing: In accordance with the statutory provisions, you have the right to demand that your personal data be deleted immediately, or alternatively, in accordance with the statutory provisions, to demand that the processing of the data be restricted, subject to statutory retention or limitations periods.
– Data Portability (if and insofar the GDPR is applicable): You have the right to receive the personal data provided by you in a structured, commonly used and machine readable format. You may also have such data transferred to another company without restrictions.
– Right to object (if and insofar the GDPR is applicable): You are entitled to object to the processing of your personal data, and you may ask us to stop processing your personal data. If you exercise your right to object, your personal data will no longer be processed by us. However, you have no right to object, if we have compelling legitimate reasons for processing the data that outweigh your interests or if the data is processed for the purpose of asserting, exercising or defending legal rights, or if it is necessary for the conclusion or performance of a contract.
– Withdrawal of consent: You have the right to withdraw your consent to processing of your personal data for the future, without affecting the lawfulness of processing based on consent before its withdrawal.
– Lodge a complaint with a supervisory authority (if and insofar the GDPR is applicable): You may file a complaint with the relevant supervisory authority, if you believe that your personal data has been processed in violation of the GDPR.

5. Deletion of Personal Data

The data processed by us will be deleted in accordance with the statutory provisions as soon as their consent permitted for processing is revoked or other permissions cease to apply (e.g. if the purpose for which the data was processed ceases to apply or it is not necessary for the purpose).

Unless the data is deleted because it is required for other and legally permissible purposes, its processing is limited to these purposes. This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for reasons of commercial or tax law or that must be stored for the assertion, exercise or defence of legal claims or to protect the rights of another natural or legal person.

Further information on the deletion of personal data can also be provided in the individual data protection notes of this Privacy Policy.

6. Changes to this Privacy Policy

We reserve the right to change this Privacy Policy at any time. The version published on our website is the valid version.