Data protection

Thank you for your interest in our website.
The protection of your privacy and your personal data is very important to us.

This privacy policy describes how we, MEDiKURiER GmbH, Hofackerstrasse 71, 4132 Muttenz (hereinafter “MEDiKURiER”, “we” or “us”), as the operator of this website, process personal data.

Personal data is all information that relates to a specific or identifiable person.
This includes, for example, your name, your e-mail address, your home address, your telephone number or your date of birth.
The term “processing” includes any handling of personal data, regardless of the means and procedures used, in particular the collection, storage, use, modification, disclosure, archiving or destruction of personal data.

You can visit our websites and use many of our offers without having to tell us who you are.
However, some of our offers may require you to provide us with personal data.
Which personal data we collect from you depends on the specific offer or the respective interaction with us.
This privacy policy contains more detailed information on this.
If you decide not to provide the personal data requested by us, you may not be able to use certain offers or we may not be able to process your request.

1. changes

This privacy policy is not an exhaustive regulation.
It may be amended by us at any time by publication on this website.
The current version published on this website applies.

2. contact details

3. data processing in general

MEDiKURiER GmbH is the controller for the data processing described in this privacy policy.
Inquiries from supervisory authorities and data subjects can be sent by e-mail or post to

MEDiKURiER GmbH
Hofackerstrasse 71
4132 Muttenz
info@medikurier.ch

3.1 Purposes of data processing

We process personal data in order to offer and deliver products and services, for advertising and marketing (unless you object), to enable full access to our websites, to operate, improve and further develop them, to analyze the use of our websites and our offers, to detect, investigate and defend against attacks on our websites and our infrastructure, to communicate with you and to defend against and enforce legal claims.

These processing purposes are described in more detail or supplemented in section 4.

3.2 Legal basis for data processing

We process personal data in accordance with Swiss data protection law.
In addition, we process personal data – to the extent and insofar as the General Data Protection Regulation (GDPR) is applicable – on the basis of the following legal bases, which may supplement the legal bases listed in section 4:

  • Art. 6 para.
    1 lit.
    a GDPR serves as the legal basis for the processing of personal data for which we obtain the consent of the data subject.
  • Art. 6 para.
    1 lit.
    b GDPR serves as the legal basis for the necessary processing of personal data for the performance of a contract with the data subject and for the implementation of corresponding pre-contractual measures.
  • Art. 6 para.
    1 lit.
    c GDPR serves as the legal basis for the necessary processing of personal data to fulfill a legal obligation to which we are subject under any applicable law of the EU or under any applicable law of an EEA state.
  • Art. 6 para.
    1 lit.
    d GDPR serves as the legal basis for the necessary processing of personal data in order to protect the vital interests of the data subject or another natural person.

Art. 6 para.
1 lit.
f GDPR serves as the legal basis for the necessary processing of personal data in order to protect the legitimate interests of us or third parties, unless the fundamental freedoms and rights and interests of the data subject prevail.
Legitimate interests are, in particular, our business interest in being able to provide, analyze and further develop our websites, advertising and marketing, the sale of goods and provision of services, information security, defense and enforcement of legal claims and compliance with Swiss law.

3.3 Disclosure of personal data to third parties

As part of our business activities and the processing or purposes described in this privacy policy, we will – where permitted – transfer personal data to third parties or disclose personal data to these third parties.
These third parties, who may process this data for us or for their own purposes or who may take note of it in the course of their work for us, include in particular

  • (IT) service providers and processors used by us (this includes, for example, the providers of website hosting, newsletter delivery, analysis, social media, map and web fonts services mentioned in section 4.
  • Credit institutions for payment processing;
  • persons authorized by us (e.g. employees commissioned with the processing);
  • other recipients with your permission or if this is necessary to enforce our rights, in particular to enforce claims arising from the contractual relationship with you.

Third parties may be located in Switzerland or abroad.
As a matter of principle, we only transfer personal data abroad

  • to countries of the European Union or the European Economic Area,
  • to countries which, according to the Federal Data Protection Commissioner or the European Commission, have an adequate level of data protection, which may also be the case on the basis of Privacy Shield self-certification, or
  • to countries for which we have provided appropriate safeguards, in particular by ensuring an adequate level of protection by means of standard contractual clauses of the European Commission (which can be downloaded here ) or by means of recognized Binding Corporate Rules.
    You can request a copy of such contractual guarantees via our contact details.
    However, we reserve the right to redact such copies for reasons of confidentiality or to provide only excerpts.

We can also base our transfer abroad on legal exceptions, which include in particular your consent, the execution of a contract with you, important reasons of public interest, the assertion, exercise or defense of legal claims or the protection of vital interests.

3.4 Duration of storage of personal data

We process personal data for the duration required to achieve the respective purposes.
In addition, we process or store personal data in order to comply with statutory retention and documentation obligations or if our legitimate business interests require this (in particular for the assertion, exercise or defense of legal claims).

Personal data will be deleted or anonymized as soon as they are no longer required for the purposes of processing or storage specified in this privacy policy.

3.5 Data security

We take appropriate technical and organizational security measures to protect the personal data we process, in particular against manipulation, partial or complete loss or unauthorized access by third parties.
Our websites are accessed using transport encryption (SSL/TLS).

3.6 Rights of data subjects

If this is provided for in the applicable data protection law and the corresponding requirements are met, you may be entitled to the following rights vis-à-vis us with regard to the personal data concerning you:

  1. A right to confirmation as to whether your personal data is being processed by us and, if so, a right to information about this personal data and its processing.
  2. A right to rectification or erasure of your personal data.
  3. A right to restriction of processing.
  4. A right to object to the processing.
  5. A right to portability of the personal data provided by you.
  6. The right to withdraw consent at any time.
    The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
    If you withdraw your consent, it may not be possible for us to conclude a contract with you or to fulfill any existing contract.
    This may lead to premature termination of the contract or cost consequences.
  7. A right to lodge a complaint with the competent supervisory authority.
    The supervisory authority for data protection in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC; https://www.edoeb.admin.ch).

Please use the contact details listed in section 2 to contact us regarding your rights.
We reserve the right to assert any grounds for refusal or exceptional circumstances to which we are legally entitled.
For identification purposes, we may also request additional information from you (e.g. a copy of a valid ID).

4. data processing in connection with our websites

4.1 Provision and operation of the websites

When you visit one of our websites, a range of general information is transmitted from your browser to the website hosting server and stored in log files each time you visit the website.

For example, your Internet Protocol address (IP address), the date and time of your visit, the referring website and the website you are visiting, your browser, operating system and Internet service provider, certain cookies (see also section 4.6), location data and other similar information that serves to avert danger in the event of attacks on our information technology systems are recorded.

The purpose of processing this general information is to,
(a) to correctly display our website and its content and offers to you and to ensure data traffic
(b) to optimize our website, content and offers,
(c) to ensure the long-term stability and security of our websites and systems, and
(d) to enable the investigation, defense and prosecution of cyber attacks, spam and other unlawful acts in relation to our websites and systems and to enforce claims in this regard.
This is our legitimate interest in processing within the meaning of Art. 6 para.
1 lit.
f GDPR.

For the hosting of the website, we may use the services of third parties in Switzerland and abroad who carry out the above-mentioned processing on our behalf.

Our websites are currently hosted exclusively by Swiss hosting providers and on servers in Switzerland.

4.2 Contact forms and making contact

On our websites, we offer you the option of contacting us using contact forms or the contact details provided.
When contacting us using the contact form, you will be asked to enter all the necessary information that we need to process the contact and communicate with you.
Without this required information, we will not be able to communicate with you.
We store and process the information that you enter yourself in the input masks or otherwise provide to us.
If you contact us by e-mail, we store the information transmitted with the e-mail.
To combat misuse, in particular identity theft and spam, we also store your IP address and the time and date of your contact.

If you use contact forms on our websites, these are encrypted.
If you contact us by e-mail or enter your e-mail address in the contact form, you agree that we can also communicate with you by e-mail.
Please note that our e-mail messages are not encrypted.

By contacting us, you consent to the processing of your personal data for the purpose of communicating with you and dealing with any concerns you may have.
Your contact constitutes a legal basis for processing within the meaning of Art. 6 para.
1 lit.
a GDPR.
In communicating with you, dealing with any concerns you may have and combating abuse, we also have a legitimate interest in processing within the meaning of Art. 6 para.
1 lit.
f GDPR.
If the contact is aimed at the conclusion of a contract, Art. 6 para.
1 lit.
b GDPR constitutes an additional legal basis for processing.

4.3 Cookies

We use so-called “cookies” on our websites.
Cookies are small text files that are stored by your browser on your computer or mobile device.
They are used to collect certain information while you navigate a website and to retrieve it during your current browser session or on future visits.
Cookies make it possible to recognize the browser you are using or to temporarily store the entries you have made.
Cookies also help us to make our website more user-friendly, effective and secure.

We distinguish between so-called “first party cookies”, which are set by us, and so-called “third party cookies”, which are set by third parties, such as web analysis services or social networks.
We also distinguish between “session cookies” and “persistent cookies” according to the duration of their existence.
Session cookies store information that is used during your current browser session.
They are automatically deleted when you close your browser.
Persistent cookies are only deleted after a certain period of time or remain stored on your end device until you delete them.
Persistent cookies make it possible, for example, to recognize your browser on your next visit, to support the completion of forms, to save your user settings or to display advertising and offers tailored to you.
We then differentiate between necessary cookies and non-essential cookies.
Necessary cookies are required to make our websites and the functions contained therein (such as web stores) available.
This is our legitimate interest in processing within the meaning of Art. 6 para.
1 lit.
f GDPR.
Most of our first party cookies are necessary session cookies.
Third party cookies are non-essential persistent cookies.

When you access our websites, you will be informed about the use of cookies.
You have the option of agreeing to the use of all cookies or allowing only necessary cookies and thus rejecting the use of persistent third-party cookies.
Your consent constitutes a legal basis for processing within the meaning of Art. 6 para.
1 lit.
a GDPR.
Please note that third-party cookies only become active after you have given your consent to the use of all cookies.
You can also set your browser to prevent the setting of cookies and thus permanently object to the setting of cookies.
You can then delete cookies that have already been set in your browser.
As a rule, you can also configure your browser so that you are informed about the setting of cookies.

If you deactivate cookies in your browser or only agree to the use of necessary cookies, this may restrict the functionality of our websites.
However, with a few exceptions, the content of our websites can generally be accessed.

4.4 Google Maps

Google Maps is used for embedding maps.
The services of Google Inc.
use cookies and the information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.
Further information can be found in Google’s privacy policy.

4.5 Web fonts

Some of our websites use so-called web fonts.
Web fonts enable a uniform display of fonts on our websites without the corresponding fonts having to be installed on your end device.
This constitutes our legitimate interest in processing within the meaning of Art. 6 para.
1 lit.
f GDPR.

We use web fonts provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). When you access our websites, your browser connects to Google’s servers and loads the required web fonts into your browser cache. In doing so, Google becomes aware that one of our websites has been accessed via your IP address.

If your browser does not support web fonts, a standard font from your computer will be displayed instead.
Further information about Google Web Fonts and data processing by Google can be found at https://developers.google.com/fonts/faq and at www.google.com/privacypolicy.html.

4.6 Google reCAPTCHA

We use “Google reCAPTCHA” (hereinafter referred to as “reCAPTCHA”) on our websites. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).

The purpose of reCAPTCHA is to check whether data is entered on our websites (e.g. in a contact form) by a human or by an automated program.
For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics.
This analysis begins automatically as soon as the website visitor enters the website.
For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent on the website by the website visitor or mouse movements made by the user).
The data collected during the analysis is forwarded to Google.

The reCAPTCHA analyses run completely in the background.
Website visitors are not informed that an analysis is taking place.

Data processing is carried out on the basis of Art. 6 para.
1 lit.
f GDPR.
The website operator has a legitimate interest in protecting its website from abusive automated spying and SPAM.

Further information on Google reCAPTCHA and Google’s privacy policy can be found in the following links: Google Privacy and Google reCAPTCHA.

4.7 Font Awesome

For uniform presentation, our website uses icons provided by Fonticons, Inc.
are provided.
When you call up a page, your browser loads the required icons into your browser cache in order to display icons correctly.

For this purpose, the browser you are using must connect to the servers of Fonticons, Inc.
servers.
As a result, Fonticons, Inc.
becomes aware that our website has been accessed via your IP address.
The use of Font Awesome is in the interest of a uniform and appealing presentation of our online offers.
This constitutes a legitimate interest within the meaning of Art. 6 para.
1 lit. f GDPR represent.

If your browser does not support Font Awesome, a standard font will be used by your computer. Further information about Font Awesome can be found at https://fontawesome.com/help and in the privacy policy of Fonticons, Inc.: https://fontawesome.com/privacy.

5. content and links to other websites

We endeavor to ensure that the information on our websites is correct, but we do not assume any obligation to ensure this, nor do we guarantee that the content is complete, correct and up-to-date and/or that the websites or their content will remain accessible. Our websites contain links to other websites. We accept no responsibility for the content of linked websites or for their data protection standards. To the extent permitted by law, we disclaim all liability to you or any third party for any loss or damage arising from the use of, or inability to use, or reliance on any content on our websites or any external websites and content that links to or is linked or otherwise referred to from our websites.