Data protection declaration
We process personal data (data which directly or indirectly identifies natural persons) which we receive from you or third parties involved within the scope of the client relationship or which we collect ourselves. Battegay Dürr AG, Heuberg 7, 4051 Basel, is responsible for the processing of personal data described in this data protection statement.
You or the persons concerned provide us with some of the personal data yourself when you or they contact us by e-mail or telephone and request our services. This includes, for example, name and contact details as well as information about the role of the data subject in the company or organisation for which you or the respective contact persons work or on whose behalf you or they contact us. We also process personal data that we receive in our correspondence with third parties (namely counterparties, authorities and courts and their employees or other contact persons) in the context of the client relationship (e.g. name, contact details, date of birth, details of employment, income situation, family circumstances or state of health). We also collect some personal data ourselves, e.g. from public registers or websites.
We process the above-mentioned types of personal data primarily in order to provide, document and invoice our legal services.
We also process the contact details of clients or their employees or other contact persons for marketing purposes in order to inform them about publications, events, news, services or products that may be of interest.
In order to achieve the purposes described in this privacy policy, it may be necessary for us to share personal data with the following categories of recipients: External service providers, counterparties and their legal representatives, business partners with whom we may need to co-ordinate the provision of legal services, and public authorities and courts.
We process personal data in our area of responsibility in Switzerland. We may also transfer the personal data on a case-by-case basis to recipients (namely counterparties or authorities) who process the personal data in other countries, including countries that do not guarantee a level of data protection comparable to Swiss law. We will do the latter based on consent and only in cases where this is necessary to fulfil a contract or to enforce legal claims.
We only store personal data for as long as this is necessary to process the mandate relationship, for as long as there is a legal obligation to retain and document the data or for as long as we have an overriding private or public interest in doing so. We take reasonable and appropriate precautions to protect personal data from loss, unauthorised modification or unauthorised access by third parties. If you provide us with personal data through a third party (e.g. your employees or other contacts), it is up to you to inform them in a general way about the processing by legal service providers (such as us) or other external service providers (e.g. in a privacy policy for employees).
We would like to point out that we use external IT service providers and cloud providers with servers in Switzerland as part of our mandate. We then use certain IT services and means of communication which may be associated with data security risks (e.g. e-mail, video conferences). It is your responsibility to inform us of your wish to take special security measures.
We have a legitimate interest in processing personal data for the purposes stated. Some processing is also necessary so that we can fulfil our contractual obligations towards you or our legal obligations (e.g. retention obligations).
In particular, data subjects have the right to obtain information about the personal data stored about them and the purpose of the data processing, the right to have their personal data corrected, deleted or restricted, the right to object to the processing, the right to seek redress from a competent supervisory authority and the right to data transfer/transferability. However, please note that conditions and exceptions apply to these rights. To the extent permitted or required by law, we may refuse requests to exercise these rights. For example, we may or must retain or otherwise process personal data despite a request to delete the personal data or restrict processing for legal reasons.
No consent to the data protection declaration is required from the client, their employees or other contact persons. The data protection statement is merely information about the nature, scope and purpose of the use of personal data by Battegay Dürr AG. Battegay Dürr AG reserves the right to unilaterally change the content of the aforementioned data protection declaration at any time and without notice.
If you have any questions or if you or your employees or other contact persons would like to exercise your or their data protection rights, please contact us at info@bdlegal.ch or write to Battegay Dürr AG, Heuberg 7, Postfach 242, CH-4051 Basel.