Privacy policy

With this privacy policy , we provide information on what personal data we process, for what purpose, how and where, in particular in connection with our www.nicolediem.ch-Website and our other services. This privacy policy also provides information about the rights of persons whose data we process.

Individual or additional offers and services may be subject to special, supplementary or additional data protection declarations and other legal documents such as general terms and conditions, terms of use or conditions of participation.

1. contact addresses

Responsibility for the processing of personal data:

NICOLE DIEM BRILLENMODEN AG
NICOLE DIEM BRILLENMODEN AG
Bergstrasse 121
8704 Herrliberg

info@nicolediem.ch

We point out if there are other controllers for the processing of personal data in individual cases.

2. processing of personal data

2.1 Terms

Personal data means any information relating to an identified or identifiable person. A data subject is a person about whom personal data is processed. Processing comprises any handling of personal data, irrespective of the means and procedures used, in particular the storage, disclosure, procurement, collection, erasure, storage, modification, destruction and use of personal data.

2.2 Legal basis

We process personal data in accordance with Swiss data protection law, in particular the Federal Act on Data Protection (FADP) and the Ordinance to the Federal Act on Data Protection (OFADP).

2.3 Type, scope and purpose

We process the personal datarequired by in order to provide our website in a permanent, user-friendly, secure and reliable manner. Such personal data may fall into the categories of inventory and contact data, browser and device data, content data, meta or marginal data and usage data, location data, sales, contract and payment data.

We process personal data for the duration required for the respective purpose(s) or by law. Personal data whose processing is no longer required will be anonymized or deleted. Persons whose data we process have in principle a right to erasure.

We process personal data in principle only with the consent of the data subject, unless the processing is permitted for other legal reasons, for example to fulfill a contract with the data subject and for corresponding pre-contractual measures, to protect our overriding legitimate interests, because the processing is evident from the circumstances or after prior information.

In this context, we process in particular information that a data subject provides to usvoluntarily and by themselves when contacting us - for example by post, email, contact form, social media or telephone - or when registering for a user account . We may store such information in an address book or with comparable tools, for example. If you transmit personal data to us via third parties, you are obliged to guarantee data protection vis-à-vis such third parties and to ensure the accuracy of such personal data.

We also process personal data that we receive from third parties, obtain from publicly accessible sources or collect when providing our services, if and to the extent that such processing is permitted for legal reasons.

Personal data from applications are only processed if they are required for the assessment of suitability for an employment relationship or for the subsequent execution of an employment contract. The personal data required to carry out an application procedure is derived from the information requested or provided, for example as part of a job advertisement. Applicants have the opportunity to voluntarily provide further information for their respective applications.

2.4 Processing of personal data by third parties, including abroad

We may have personal data processed by commissioned third parties or process it jointly with third parties or with the help of third parties or transmit it to third parties. Such third parties are, in particular, providers whose services we use. We also guarantee appropriate data protection for such third parties.

Such third parties are generally located in Switzerland and the European Economic Area (EEA). However, such third parties may also be located in other countries and territories on earth and elsewhere in the universe, provided that their data protection law guarantees adequate data protection according to assessment by the Federal Data Protection and Information Commissioner (FDPIC), or if adequate data protection is guaranteed for other reasons, such as through a corresponding contractual agreement, in particular on the basis of standard contractual clauses, or through corresponding certification. Exceptionally, such a third party may be located in a country without adequate data protection, provided that the requirements under data protection law, such as the express consent of the data subject, are met.

3. rights of data subjects

Data subjects whose personal data we process have rights under Swiss data protection law. These include the right to information and the right to rectification, erasure or blocking of the processed personal data.

Data subjects whose personal data we process have the right to lodge a complaint with a competent supervisory authority. The supervisory authority for data protection in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC).

4. data security

We take appropriate and suitable technical and organizational measures to ensure data protection and, in particular, data security. However, despite such measures, the processing of personal data on the Internet can always have security gaps. We therefore cannot guarantee absolute data security.

Our online services are accessed using transport encryption (SSL / TLS, in particular with the Hypertext Transfer Protocol Secure, abbreviated to HTTPS). Most browsers indicate transport encryption with a padlock in the address bar.

Access to our online offering is subject to mass surveillance without cause or suspicion and other surveillance by security authorities in Switzerland, the European Union (EU), the United States of America (USA) and other countries - as is in principle every use of the internet. We cannot directly influence the corresponding processing of personal data by secret services, police forces and other security authorities.

5. use of the website

5.1 Cookies

We may use cookies for our website. Cookies - both our own cookies (first-party cookies) and cookies from third parties whose services we use (third-party cookies) - are data that are stored in your browser. Such stored data need not be limited to traditional cookies in text form. Cookies cannot execute programs or transmit malware such as Trojans and viruses.

When you visit our website, cookies can be stored temporarily in your browser as "session cookies" or for a certain period of time as so-called permanent cookies. "Session cookies" are automatically deleted when you close your browser. Permanent cookies have a specific storage period. In particular, they make it possible to recognize your browser the next time you visit our website and thus, for example, to measure the reach of our website. Permanent cookies can also be used for online marketing, for example.

You can completely or partially deactivate and delete cookies in your browser settings at any time. Without cookies, our website may no longer be fully available. We actively request your express consent for the use of cookies, if and to the extent necessary.

For cookies that are used to measure success and reach or for advertising, a general objection ("opt-out") is possible for numerous services via the Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance) or Your Online Choices (European Interactive Digital Advertising Alliance, EDAA).

5.2 Server log files

We may collect the following information for each access to our website, provided that this information is transmitted by your browser to our server infrastructure or can be determined by our web server: Date and time including time zone, Internet Protocol (IP) address, access status (HTTP status code), operating system including user interface and version, browser including language and version, individual sub-page of our website accessed including amount of data transferred, last website accessed in the same browser window (referrer).

We store such information, which may also constitute personal data, in server log files. The information is required in order to provide our online services in a permanent, user-friendly and reliable manner and to ensure data security and thus in particular the protection of personal data - also by third parties or with the help of third parties.

5.3 Tracking pixels

We may use tracking pixels on our website. Tracking pixels are also known as web beacons. Tracking pixels - including those from third parties whose services we use - are small, usually invisible images that are automatically retrieved when you visit our website. Tracking pixels can be used to collect the same information as server log files.

6. notifications and messages

We send notifications and communications such as newsletters by e-mail and via other communication channels such as instant messaging.

6.1 Measuring success and reach

Notifications and messages may contain web links or tracking pixels that record whether an individual message has been opened and which web links have been clicked on. Such web links and tracking pixels can also record the use of notifications and messages on a personal basis. We require this statistical recording of usage for measuring success and reach in order to be able to offer notifications and messages in an effective, user-friendly, permanent, secure and reliable manner based on the needs and reading habits of the recipients.

6.2 Consent and objection

You mustalways expressly consent to using your email address and your other contact addresses, unless the use is permitted for other legal reasons. For any consent to receive emails, we use the "double opt-in" procedure wherever possible, i.e. you will receive an email with a web link that you must click on to confirm, so that no misuse by unauthorized third parties can occur. We may log such consents, including the Internet Protocol (IP) address and the date and time, for reasons of proof and security.

You can unsubscribe from at any time from notifications and communications such as newsletters. By unsubscribing, you can object in particular to the statistical recording of usage for measuring success and reach. Notifications and communications that are absolutely necessary for our offer remain reserved.

7. social media

We are present on social media platforms and other online platforms in order to communicate with interested parties and provide information about our services. Personal data may also be processed outside Switzerland and the European Economic Area (EEA).

The General Terms and Conditions (GTC) and terms of use as well as data protection declarations and other provisions of the individual operators of such online platforms also apply. These provisions provide information in particular about the rights of data subjects, including in particular the right to information.

8. success and reach measurement

We use services and programs to determine how our online offering is used. In this context, we can, for example, measure the success and reach of our online offering and the effect of third-party links to our website. We can also, for example, test and compare how different versions of our online offering or parts of our online offering are used ("A/B test" method). Based on the results of the success and reach measurement, we can in particular correct errors, strengthen particularly popular content or make improvements to our online offering.

When using services and programs to measure success and reach, the Internet Protocol (IP) addresses of individual users must be stored. IP addresses aregenerally shortened at in order to comply with the principle of data minimization and to improve the data protection of visitors to our website through the corresponding pseudonymization ("IP masking").

When using services and programs to measure success and reach, cookies may be used and user profiles may be created. User profiles include, for example, the pages visited or content viewed on our website, information on the size of the screen or browser window and the - at least approximate - location. In principle, user profiles are only created in pseudonymized form. We do not use user profiles to identify individual visitors to our website. Individual services with which you are registered as a user may be able to assign the use of our online offering to your profile with the respective service, whereby you usually have to give your prior consent to this assignment.

We use in particular:

• Google Analytics: Performance and reach measurement; Service provider: Google LLC (USA) / Google Ireland Limited (Ireland) for users in the European Economic Area (EEA) and Switzerland; data protection information: Measurement also across different browsers and devices (cross-device tracking) as well as with pseudonymized Internet Protocol (IP) addresses, which are only transmitted in full to Google in the USAin exceptional cases , "Privacy and security principles", privacy policy, "Guide to data protection in Google products" (including Google Analytics), "How we use data from websites or apps on or in which our services are used" (information from Google), "How Google uses cookies", "Browser add-on to deactivate Google Analytics", "Personalized advertising" (activation / deactivation / settings).
• Google Tag Manager: Integration and management of services for measuring success and reach as well as other services from Google and third parties; provider: Google LLC (USA) / Google Ireland Limited (Ireland) for users in the European Economic Area (EEA) and Switzerland; information on data protection can be found in connection with the integrated and managed services.
• Hotjar: Recording of user behavior; Service provider: Hotjar Ltd. (Malta); Privacy Policy: Recording without reference to individual website visitors, for example with regard to movements and clicks with a mouse or other input option, Privacy and Hotjar ("Your Privacy & Hotjar"), Privacy Policy, Cookie Information ("Hotjar Cookie Information"), Objection to collection by Hotjar ("Do Not Track: Do you want to tell Hotjar not to collect your data?".

9. services of third parties

We use third-party services in order to provide our website in a permanent, user-friendly, secure and reliable manner. Such services are also used to embed content in our website. Such services - for example hosting and storage services, video services and payment services - require your Internet Protocol (IP) address, as otherwise such services cannot transmit the corresponding content. Such services may be located outside Switzerland and the European Economic Area (EEA), provided that adequate data protection is guaranteed.

For their own security-related, statistical and technical purposes, third parties whose services we use may also process data in connection with our offer and from other sources - including cookies, log files and tracking pixels - in aggregated, anonymized or pseudonymized form.

9.1 Digital infrastructure

We use third-party services in order to be able to use the digital infrastructure required for our offering. These include, for example, hosting and storage services from specialized providers.

9.2 Social media functions and social media content

We use third-party services and plugins to embed functions and content from social media platforms and to enable the sharing of content on social media platforms and in other ways.

We use in particular:

• Facebook (social plugins): Embedding Facebook functions and Facebook content, for example "Like" or "Share"; Provider: Facebook Inc (USA) / Facebook Ireland Ltd (Ireland); Privacy Policy: Privacy Policy.
• Instagram platform: Embedding Instagram content; Service provider: Facebook Inc. (USA) / Facebook Ireland Ltd. (Ireland); Privacy Policy: Privacy Policy (Instagram), Privacy Policy (Facebook).

9.3 Audiovisual media

We use third-party services to enable the direct playback of audiovisual media such as music or videos on our website.

We use in particular:

• YouTube: Videos; Service provider: Google LLC (USA) / Google Ireland Limited (Ireland) for users in the European Economic Area (EEA) and Switzerland; Information on data protection: "Privacy and security principles", Privacy policy, "Guide to data protection in Google products" (including YouTube), "How Google uses cookies", "Personalized advertising" (activation / deactivation / settings).

9.4 Payments

We use payment service providers to process our customers' payments securely and reliably. The terms and conditions of the respective payment service providers, such as general terms and conditions or data protection declarations, apply to processing.

We use in particular:

• PayPal (including Braintree): Processing of payments; Service provider: PayPal (Europe) S.à.r.l. et Cie, S.C.A (Luxembourg) / PayPal Pte. Ltd (Singapore); Privacy Policy: Privacy Policy, "Statement on Cookies and Tracking Technologies".
• PostFinance: E-payment solutions; Service provider: PostFinance AG (Switzerland); Information on data protection: "Legal information and accessibility", "Data protection" (including "Privacy policy").
• POWERPAY: Processing of payments in Switzerland ("purchase on account"); Service provider: MF Group AG (Switzerland); Information on data protection: Privacy policy, POWERPAY website including FAQ also with answers to data protection questions, General terms and conditions for payment on account including data protection provisions, General terms and conditions for credit account agreement including data protection provisions.
• SIX Payment Services (including Saferpay): Processing of payments; providers: SIX Payment Services AG (Switzerland) / SIX Payment Services (Europe) S.A. (Luxembourg) / SIX Payment Services (Germany) GmbH (Germany) / SIX Payment Services (Europe) S.A. (Luxembourg), Branch Office Austria; Data protection information: Privacy Policy, "Customer information on data protection".
• TWINT: Processing of payments in Switzerland; Service provider: TWINT AG (Switzerland); Information on data protection: "Data protection for TWINT apps", "Privacy policy website", "General terms and conditions for the use of TWINT" including section "Data protection".

9.5 Advertising

We use the option of displaying targeted advertising for our website on third parties such as social media platforms and search engines.

With such advertising, we would like to reach in particular people who are interested in our offer or already use our offer(remarketing and targeting). For this purpose, we may transmit corresponding - possibly also personal - data to third parties that enable such advertising. We can also determine whether our advertising is successful, i.e. in particular whether it leads to visits to our website (conversion tracking).

Third parties with whom we advertise and where you are logged in as a user may be able to assign the use of our offer to your profile there.

We use in particular:

• Facebook Ads: Social media advertising; Service provider: Facebook Inc. (USA) / Facebook Ireland Ltd. (Ireland); Data protection provisions: Remarketing and targeting in particular with the Facebook pixel and Custom Audiences including Lookalike Audiences, Privacy Policy, "Advertising preferences" (registration as user required).
• Google Ads: Search engine advertising; Service provider: Google LLC (USA) / Google Ireland Limited (Ireland) for users in the European Economic Area (EEA) and Switzerland; Privacy Policy: Advertising based on search queries, among other things, using various domain names - in particular doubleclick.net, googleadservices.com and googlesyndication.com - are used for Google Ads, "Privacy and Security Principles", Privacy Policy, "Guide to Privacy in Google Products" (including Google Ads), "How we use data from websites or apps where our services are used" (information from Google), "How Google uses cookies", "Personalized advertising" (activation / deactivation / settings).
• Instagram Ads: Social media advertising; Service provider: Facebook Inc. (USA) / Facebook Ireland Ltd. (Ireland); Data protection provisions: Remarketing and targeting in particular with Facebook Pixel and Custom Audiences including Lookalike Audiences, Privacy Policy (Instagram), Privacy Policy (Facebook), "Advertising Preferences" (Instagram) (registration as user required), "Advertising Preferences" (Facebook) (registration as user required).

10. extensions for the website

We use extensions for our website in order to be able to use additional functions.

11. final provisions

We have created this data protection declaration with the data protection generator from Datenschutzpartner .

We may amend and supplement this privacy policy at any time. We will inform you of such amendments and additions in an appropriate form, in particular by publishing the current privacy policy on our website.

12 Klarna privacy policy

"In order to offer you Klarna's payment methods, we may pass on your personal data in the form of contact and order details to Klarna during checkout so that Klarna can assess whether you are eligible for their payment methods and can match these payment methods to you. Your submitted personal data will beprocessedin accordance with Klarna's own privacy policy."