Contatto

Privacy Policy

Please see our policies below.

Data Privacy Declaration

Last update: 24.07.2025

Protecting your personal data is of key importance to us. Ensuring transparency and traceability relating to the collection, processing and use of your personal data is very important. With this data privacy declaration, we would like to provide you with comprehensive information regarding the data we process, to what extent it is done, for what reasons, to whom your data may be passed on and what rights you have as a data subject under the Federal Act on Data Protection.

Table of contents

1. Responsible party and contact details

Responsible for the collection, processing and use of your personal data within the meaning of the Federal Act on Data Protection is:

Smart Parking AG
Dammstrasse 19
6300 Zug

Data privacy officer:
Rainer Artelt
rainer.artelt@smartparking.com

2. Scope of the privacy declaration

This data privacy declaration applies to all information and data collected, processed or used in connection with your use of our website smartparking.ch and all associated online services. It applies equally to all technologies and procedures that we use to provide you with our services.

3. Legal basis for data processing

As a matter of principle, personal data will only be processed if one of the following legal bases is fulfilled in accordance with the nDSG, and according to any other applicable provisions:

  • Consent: If you have provided your explicit consent (e.g. newsletter subscription or cookie settings), the processing is based on this consent.

  • Contract fulfilment or pre-contractual measures: Your data is processed so as to conclude or execute a contract with you (e.g. registration, purchase processing, service provision).

  • Legal obligations: Where we are legally obliged to process or store certain data (e.g. accounting and tax documents), the processing is based on this obligation.

  • Overriding legitimate interests: In selected cases, we process your data to protect our legitimate interests (e.g. IT security, prevention of misuse, further development of our offerings), provided that there are no overriding interests on your part that are worthy of protection.

4. Categories and origin of the personal data processed

In the course of your interactions with us, we collect various types of personal data. Here, in particular:

  • Personal master data: Name, email address, postal address, telephone number, date of birth, etc., if you provide us with this information, for example via a contact form, registration or purchase process.

  • Usage data: IP address, browser type, operating system, device type, etc. This data is collected automatically when you visit our websites.

  • Communication data: Content that you send us via email, contact form or chat (e.g. support requests, feedback).

  • Location data: Roughly-stored location data (country, region), insofar as we collect it technically (e.g. via the IP address) or you consciously provide it to us.

  • Special personal data: If you voluntarily provide us with special categories of data (Art. 5 lit. c nDSG) – e.g. health data, biometric or genetic data – we will treat this data as strictly confidential and only process it if we have your express consent or if there is a legal basis for doing so.

Origin of the data:

  • Direct collection from you: We receive most data directly from you (e.g. when you register, place an order or contact us).

  • Automatic collection: For technical reasons, we automatically collect certain usage data when you visit our website (see above).

  • Third-party sources: If you provide us with data via external services (e.g. for payment transactions via a bank or when using external authentication services), or if we obtain it from publicly accessible directories, we will indicate the source accordingly and only process what is necessary for the respective purpose.

If we do not collect data directly from you, it may come from the following sources:

  • Public registers: commercial registers, Swiss company directories, professional associations.

  • External service providers: address brokers, environmental portals, social media profiles (e.g. LinkedIn), if you have deliberately made this data publicly available.

  • Cooperation partners: partner companies that provide us with data in connection with joint products or services, provided that you have already given your consent or there is another legal basis.

5. Purposes of data processing

We process your personal data for the following purposes:

  • Provision and operation of the website and online services
    Display of content, response to enquiries, navigation on the website.
    Ensuring the availability and functionality of our IT systems.

  • Customer management and support
    Adding, updating and maintaining contact details in our system.
    Processing your support or service requests.
    Processing contracts, orders, payments, delivery of goods or services.

  • Marketing and communication
    Sending newsletters, offers and promotional emails (only with prior consent).
    Information about new products, promotions and events.
    Statistical evaluation and performance review of marketing campaigns, if expressly approved by you.

  • Analysis of user behaviour and web analytics
    Collection of anonymised usage statistics to continuously improve our online offering and make it more user-friendly.
    Technical monitoring and logging of accesses to detect and prevent misuse or attacks.

  • IT security and system administration
    Protection of our IT infrastructure and the data we process against unauthorised access, loss, destruction or manipulation.
    Performing backups, updates and security checks.

Fulfilment of legal obligations
Storage of business-related documents (e.g. invoices, contract documents) in accordance with commercial and tax law regulations
Notifications to authorities (e.g. tax authorities, law enforcement agencies) – as required by law.

6. Services and technologies used

6.1 Server log files

On our website, we maintain server log files in which technical connection data is automatically logged when our pages are accessed.

Data collected
The following information is stored as part of log file recording:

  • IP address of your device

  • Date and time of the request

  • URL accessed and referrer (previous page)

  • Browser type, operating system and device data (user agent)

  • Access status or HTTP status code

  • Amount of data transferred

Purpose of processing
We use log file data solely to

  • ensure the operation and availability of our servers,

  • detect and rectify technical errors (e.g. faulty page views),

  • identify and ward off attacks or unauthorised access attempts

Legal basis
The collection of this technical data is necessary for the secure and trouble-free operation of our website. We base this on our overriding legitimate interest in maintaining a functional IT infrastructure.

Opt out option

Opting out is not possible here, as log file collection is technically necessary in order to provide and protect our services.

6.2 Cookies

We use cookies and similar technologies on our website to enable its operation and to provide certain functions.

Data collected
Depending on the cookie category, the following data is collected and stored:

  • Session cookies: Temporary identifiers that identify end devices during a browser session.

  • Persistent cookies: Long-term identifiers to recognise repeat visits.

  • Functional cookies: Settings such as language selection or layout preferences.

  • Security cookies: Tokens or hash values to secure login sessions.

Purpose of processing

  • Technically necessary cookies: Essential for the operation of shopping baskets, login sessions and load balancing.

  • Functional cookies: Store your preferences to improve the user experience.

  • Security cookies: Protect against manipulation and CSRF attacks.

Legal basis
Cookies that are necessary for the operation of the website are based on our overriding legitimate interest in a functional IT infrastructure. Functional and security cookies are also included.

Data recipients and third-country transfers
Depending on the service used, information collected via cookies may be passed on to internal departments and external service providers. For details on recipients and possible transfers abroad, please refer to Section 7 “Data recipients and categories of recipients” and Section 8 “Transfer to third countries” of this data privacy declaration.

Opt out option
You can prevent or restrict the setting of cookies via your browser settings. Please note that some functions of the website will then no longer be fully usable.

6.3 Google Analytics

We use Google Analytics from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) to analyse the behaviour of visitors to our website and to continuously improve our online offering.

Data collected
As soon as you use our website, your browser transmits the following information to Google Analytics, among other things:

  • Anonymised IP address (shortened by IP masking)

  • Date and time of your visit

  • Sub-pages visited and length of stay

  • Device type, browser type and operating system

  • Referrer

  • Interactions on the page (e.g. clicks, form submissions)

Purpose of processing
The data is used exclusively to

  • evaluate user behaviour,

  • measure the performance of individual pages,

  • identify sources of error and breakpoints,

  • and further develop our offering in a user-friendly and targeted manner.

Legal basis
We base the processing on our overriding legitimate interest in analysing and optimising our website. Separate consent via a cookie banner is not mandatory in Switzerland; however, you can prevent the setting of analysis cookies at any time via your browser.

Data transfer and transfer to third countries
Google processes the data as a data processor on our behalf. For details on recipients and transfers to countries outside Switzerland, please refer to Section 7 “Data recipients and categories of recipients” and Section 8 “Transfer to third countries” of this data privacy declaration.

Opt out options

  • Browser settings: Deactivate analysis cookies in your cookie settings.

  • Google opt out add-on: Install the browser add-on to deactivate Google Analytics at https://tools.google.com/dlpage/gaoptout

  • Incognito /privacy mode: In your browser's private mode, cookies are automatically deleted when you close the window.

7. Data recipients and categories of recipients

Your personal data will only be passed on if this is necessary to achieve the purposes stated in section 5 or if you have expressly consented to this. Possible recipients are:

  • Internal positions: Our employees in the areas of IT, marketing, customer service, accounting and management – only to the extent that they need the data for their tasks.

  • External service providers: We use specialist companies or freelancers to support us in providing our services, e.g.:

    • Hosting and server providers: Operation of the website, databases

    • Email and newsletter service providers

    • Payment service providers and banks: Credit card processing, payment control,

    • IT support, system administration, developers

    • External tax consultants, auditors, lawyers (to the extent necessary)

    • Logistics and shipping service providers (for physical goods deliveries)

    • Tracking, conversion and advertising service providers

  • Public authorities: If we are legally obliged to disclose certain data to public authorities (e.g. in the case of tax audits or criminal proceedings), we will only disclose the minimum amount of data required.

Other recipients: In exceptional cases and only with your express consent or on a legal basis (e.g. in the event of the sale or merger of the company), your data may be transferred to third parties. In such cases, we will inform you in a timely and transparent manner about the change of recipients.

8. Transfer to third countries

In the course of order processing, your personal data may be transferred to recipients abroad. Such recipients (e.g. hosting providers, payment gateways or external support service providers) are contractually bound to data privacy in the same way as we are.

Transfers to countries that do not have a level of data privacy equivalent to Swiss law are only possible if we have carried out a risk assessment in advance and agreed on appropriate safeguards. This is done in particular by:

  • Contractual guarantees:
    We rely on protection instruments recognised by the Federal Data Protection and Information Commissioner (FDPIC), e.g. the standard contractual clauses of the European Commission or comparable agreements approved by the FDPIC.

  • Additional technical and organisational measures:
    If our risk assessment concludes that there is still a risk to your personal rights, we will implement additional encryption, pseudonymisation or other measures to guarantee an appropriate level of data privacy.

9. Storage period and deletion

We only retain personal data for as long as is necessary for the respective processing purpose.

Contract documents, on the other hand, are subject to legal retention periods. As such, they are stored for longer. In particular, we are required to retain business correspondence, concluded contracts and supporting documents for invoicing for up to ten years (Art. 958f OR, MWSTG). As soon as this data is no longer necessary for the provision of our services, we restrict its use and only use it for accounting and tax purposes.

10. Rights of data subjects

As a data subject, you have various rights under the nDSG that you can assert against the controller. Below, you will find an overview of your key rights and the relevant legal basis:

  1. Right to information
    You may ask at any time whether or not we process your personal data. You also have the right to obtain information about what data this is, for what purpose we collect it, where we obtain it from, to whom we may pass it on, and how long we store it.

  2. Right to rectification and supplementation
    If the personal data we process is incomplete or incorrect, you may request that it be rectified or supplemented. Should we conclude that a correction is necessary, we will correct your data immediately.

  3. Right to deletion and restriction of processing

    • Deletion:
      You may request the deletion of your data if
      a) the data is no longer required for the purposes for which it was collected,
      b) you withdraw your consent and there is no other legal basis,
      c) the data has been processed unlawfully, or
      d) we are no longer legally obliged to retain it.
      In these cases, we will delete your data unless there are compelling legal reasons for further storage (e.g. tax law retention obligations).

    • Restriction:
      You may request a restriction on processing if
      a) you dispute the accuracy of your data and we are verifying its accuracy,
      b) the processing is unlawful and you request restriction instead of deletion,
      c) we no longer need your data for the original purposes, but you still need it to assert, exercise or defend legal claims, or
      d) you have objected to the processing and it is not yet clear whether your or our legitimate interests prevail.
      In such cases, we will block the relevant data until the situation has been clarified and only use it to defend against legal claims or for other permissible purposes.

  4. Right to object
    If we process your data on the basis of a legitimate interest, you can object to this processing at any time. We will then verify whether we have compelling legitimate grounds for further processing; otherwise, we will cease processing. An objection to processing for advertising purposes (direct marketing) is possible at any time, without having to provide reasons.

  5. Right to data portability
    You have the right to receive the personal data concerning you that we process on the basis of your consent, or for the performance of a contract, in a structured, commonly used and machine-readable format or to request its transfer to another responsible entity, where technically feasible.

  6. Right of withdrawal of consent
    If you have given us your consent to process certain data (e.g. for cookies, tracking or marketing measures), you can withdraw this consent at any time with future effect without giving reasons. The lawfulness of the processing carried out until the revocation remains unaffected.

  7. Right of appeal to the Federal Data Protection and Information Commissioner (FDPIC)
    If you believe that your rights have been violated under the nDSG, you can lodge a complaint with the FDPIC.

Procedure for asserting your rights
To exercise your rights as a data subject, please contact our data privacy office by email:

Email: rainer.artelt@smartparking.com

We will usually respond to your enquiry at the latest within 30 days. If your enquiry is complex or we would need an extension, we will let you know and explain why.

11. Information on legal obligations to provide data

The provision of certain data is necessary for the performance of a contract or to comply with legal obligations. If you do not provide the required data, we cannot rule out the following consequences:

  • No registration or conclusion of a contract with us.

  • Delays in processing your enquiries or orders.

  • Refusal to provide certain services.

In each form or during the conclusion of the contract, we indicate separately which data is mandatory and which can be provided voluntarily.

12. Data security

We store your personal data securely and take all appropriate technical and organisational measures to protect it from loss, unauthorised access, misuse or alteration. Our employees and all service providers and contractual partners who have access to your data are contractually bound to confidentiality and compliance with the applicable data privacy regulations. Where necessary for order processing, we may forward selected enquiries to affiliated or external companies; in these cases, too, your data will be treated as strictly confidential.

When you visit our website, we use the SSL/TLS procedure with the highest level of encryption supported by your browser. This protects all data you transmit to us from access by third parties during transport. Please note that despite all security measures, data transmission over the Internet may be subject to security vulnerabilities over which we have no control. Therefore, to ensure maximum security, please protect your access data, use up-to-date software and log out after each session.

13. Changes to the data privacy declaration

We may amend this data privacy declaration at any time. The current version will be published here on our website; the date of the last update can be found at the beginning of the document.

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.