Privacy Statement
This privacy policy applies to Heitkamp Construction Swiss GmbH (hereinafter referred to as Heitkamp).
Why does Heitkamp have a privacy policy?
In order to carry out our work in the best possible way, it may be necessary to process your personal data. This applies to our customers, suppliers, employees, visitors to our website and business partners, as well as all other parties whose personal data we collect and/ or process.
This privacy policy explains which categories of personal data we process for which purposes, who has access to your data, how we store your data, with whom we share your data and what you can do yourself. We have the highest interest in maintaining your privacy and protecting your personal data.
Who is responsible for processing your personal data?
The responsible body for compliance with the Federal Data Protection Act (FADP) is:
Heitkamp Construction Swiss GmbH
Pilatusstrasse 2
6036 Dierikon
Switzerland
E-Mail: info@heitkamp-swiss.ch
Phone: +41 41 630 42 20
Contact details of the Data Protection Officer (DPO):
Heitkamp Construction Swiss GmbH
Data Protection Officer
Pilatusstrasse 2
6036 Dierikon
Switzerland
E-mail: datenschutz@heitkamp-swiss.ch
Phone: +41 41 630 42 20
What personal data do we process?
Heitkamp processes your personal data when you have a business relationship with us (as an employee, as a customer, as a supplier or as a partner) or when you visit our website.
Below you will find a list of which personal data we process (in whole or in part):
- Gender
- First and last name
- Birthday
- Marital status
- AHV number
- Nationality
- Bank account number (IBAN)
- Address
- E-mail address
- Phone number
- IP address
- Application documents
- Files on accidents and diseases
For what purposes does Heitkamp use your personal data?
The personal data will only be used for the purpose for which these data are needed or intended. The processing is carried out in good faith and, of course, proportionately. Below you will find a list of the purposes for which we use your personal data:
- Application procedure
- Wage payment
- Social security concerns
- Accounts receivable and accounts payable
- Contracting
- Obtaining offers
- Master data maintenance in the address book and ERP system
- Website statistics analysis
Under what conditions does Heitkamp process your personal data?
Heitkamp will only process your personal data if we have legitimate grounds for doing so. The lawful grounds for processing your personal data depend on the type of service used. We process data on the basis of the following legal grounds:
- Your consent
- The processing of your data is necessary for the performance of a contract or business relationship
- The processing of your data is necessary to comply with a legal obligation
- The processing of your data is necessary to protect you from serious risks to your health
Information Security
To protect your privacy and the confidentiality of your data, Heitkamp takes appropriate technical and organizational measures. Heitkamp's data security policy is based on the Code for Information Security (ISO27001 and ISO17799). This code describes the standards and the technical and organizational measures that are important for implementing an appropriate level of information security.
It provides assurance of compliance with data protection. We take security measures to prevent the misuse of and unauthorized access to personal data. Anyone who can access your personal data through Heitkamp is obligated to maintain confidentiality. The systems in which customer data are stored are only accessible to a select group of employees who need access to perform their duties.
Heitkamp takes the protection of your data seriously and takes appropriate measures to prevent misuse, loss, unauthorized access, unwanted disclosure and unauthorized modification. If you feel that your data is not well secured or if there is evidence of misuse, please contact our DPO. Heitkamp has taken the following technical measures to protect your personal data:
- Security software, such as virus scanner and firewall
- TLS (formerly SSL). We have sent your data over a secure internet connection. You can recognize this by the address line 'https' and the padlock in the address line
- DKIM, SPF, and DMARC are three Internet standards we use to prevent our emails from containing viruses, being spam, or being used to obtain personal information.
- DNSSEC is a security (in addition to Domain Name System (DNS)) for the conversion of a domain name (#company_website) to the corresponding IP address (server name); it is provided with a digital signature. You can verify this signature automatically. In this way, we prevent you from being redirected to a fake IP address.
Retention of personal data
Heitkamp will not retain your data for longer than is necessary for the purposes for which your data is processed and permitted by law. How long certain data is kept depends on the type of data and the purpose for which it is processed. The retention period may therefore be different for each purpose.
Disclosure of personal data to third parties
The processing of personal data may be entrusted to third parties, provided that the data is processed only as Heitkamp itself would be permitted to do, if this is necessary in the context of the execution of the contract and if no legal or contractual obligation of secrecy prohibits it. In particular, Heitkamp must ensure that the third party guarantees data security.
What do we do with your visitor data on our website?
On Heitkamp's website, visitor data is registered, such as accesses to the most frequently visited subpages. This data allows us to further optimize the layout of our website. It can also be used to place more targeted information on the website. This allows us to further improve our services. We also record how visitors navigate through the Heitkamp website.
What are cookies and which ones does Heitkamp use?
Cookies are small files that are placed on your computer and used by websites to ensure the function or correct display of pages. We use cookies to improve your user experience. We use the following types of cookies:
- Functional cookies - These cookies are necessary for the functioning of our website. They store your preferences and remember that you have visited the website before. For example, Google remembers your preference for search language. These types of cookies do not collect any personal data.
- Analytical cookies - These cookies allow us to collect statistics about our website, such as which pages are visited and for how long. In Google Analytics, for example, the number of visitors, the location of visitors and the browser used can be measured.
- Tracking Cookies - Tracking cookies allow for individual tracking on the website. By tracking visitors' behavior on our website, we can improve the experience on our website. Through our website, a cookie is set by the American company Google as part of its "Analytics" service. We use this service to track and receive reports about how visitors use our website. Google may pass this information on to third parties if Google is legally obliged to do so or if third parties process the information on Google's behalf. We have no influence over this.
On your first visit to the website, we will inform you about these cookies: By using our website, you agree to this. You can opt out of cookies by setting your internet browser to no longer store cookies. You can also delete all previously stored information via your browser settings.
What rights do you have?
When Heitkamp processes your personal data, you have certain rights, which are explained below:
- Right of access to your personal data
If you have a relationship with Heitkamp and would like to know whether personal data about you is being processed, you can exercise your right to information.
- Right to rectification
You have the right to correct data if it is inaccurate or incomplete. You also have the right to rectify the data if the data is not relevant to the way we process it or if we have processed your data in breach of legal requirements. We will inform third parties who receive your data about the correction, unless this is impossible or requires a disproportionate effort.
- Right to delete data
You have the right to request that we delete certain data. For example, if your data is no longer needed for the purposes for which we received it, if you object to the processing or if your data has been processed by us unlawfully. However, we cannot always delete all data, as we are or may be obliged to retain certain data from you.
- Right to restriction of processing
You also have the right to restrict the processing of your data. The right to restriction means that we may not (temporarily) process or modify your personal data, e.g. if you dispute the accuracy of the data, if you believe that the personal data is no longer necessary for the purposes for which it was collected, or if you believe that the processing of your personal data by Heitkamp is unlawful.
- Right to object
You may object to the processing of your personal data by Heitkamp if your personal data is used for purposes other than those for which you have given your consent, other than necessary for the performance of a contract, other than necessary for compliance with a legal obligation or one of the other legal bases.
- Right to data transmission
If you have provided us with your personal data, you have a right to data transfer in certain cases. This means that we will provide you with your data in a structured, standardized and machine-readable form if you so wish.
How can you exercise your rights?
If you wish to exercise your rights, you can contact the DPO of Heitkamp. Depending on the case, an identity card may be requested to verify your identity.
Control of the processing of personal data
If you believe that the provisions of this Privacy Policy and data protection law are not being complied with by us or are not being complied with sufficiently, you may report this to the DPO of Heitkamp.
If you suspect that we are processing your personal data in a way that violates data protection regulations, you have the right to report this to the Federal Data Protection and Information Commissioner (FDPIC), who will open an investigation if necessary.
Data protection breaches
If you suspect a data breach, you can report it to Heitkamp's DPO.
About this privacy policy
Heitkamp reserves the right to update this privacy policy at any time. The last change was made in December 2022. The current version can always be found on our website.
If you have any questions or comments about our privacy policy, please do not hesitate to contact us through the Heitkamp DPO.
Dierikon, December 2022
This privacy policy applies to Heitkamp Construction Swiss GmbH (hereinafter referred to as Heitkamp).
Why does Heitkamp have a privacy policy?
In order to carry out our work in the best possible way, it may be necessary to process your personal data. This applies to our customers, suppliers, employees, visitors to our website and business partners, as well as all other parties whose personal data we collect and/ or process.
This privacy policy explains which categories of personal data we process for which purposes, who has access to your data, how we store your data, with whom we share your data and what you can do yourself. We have the highest interest in maintaining your privacy and protecting your personal data.
Who is responsible for processing your personal data?
The responsible body for compliance with the Federal Data Protection Act (FADP) is:
Heitkamp Construction Swiss GmbH
Pilatusstrasse 2
6036 Dierikon
Switzerland
E-Mail: info@heitkamp-swiss.ch
Phone: +41 41 630 42 20
Contact details of the Data Protection Officer (DPO):
Heitkamp Construction Swiss GmbH
Data Protection Officer
Pilatusstrasse 2
6036 Dierikon
Switzerland
E-mail: datenschutz@heitkamp-swiss.ch
Phone: +41 41 630 42 20
What personal data do we process?
Heitkamp processes your personal data when you have a business relationship with us (as an employee, as a customer, as a supplier or as a partner) or when you visit our website.
Below you will find a list of which personal data we process (in whole or in part):
- Gender
- First and last name
- Birthday
- Marital status
- AHV number
- Nationality
- Bank account number (IBAN)
- Address
- E-mail address
- Phone number
- IP address
- Application documents
- Files on accidents and diseases
For what purposes does Heitkamp use your personal data?
The personal data will only be used for the purpose for which these data are needed or intended. The processing is carried out in good faith and, of course, proportionately. Below you will find a list of the purposes for which we use your personal data:
- Application procedure
- Wage payment
- Social security concerns
- Accounts receivable and accounts payable
- Contracting
- Obtaining offers
- Master data maintenance in the address book and ERP system
- Website statistics analysis
Under what conditions does Heitkamp process your personal data?
Heitkamp will only process your personal data if we have legitimate grounds for doing so. The lawful grounds for processing your personal data depend on the type of service used. We process data on the basis of the following legal grounds:
- Your consent
- The processing of your data is necessary for the performance of a contract or business relationship
- The processing of your data is necessary to comply with a legal obligation
- The processing of your data is necessary to protect you from serious risks to your health
Information Security
To protect your privacy and the confidentiality of your data, Heitkamp takes appropriate technical and organizational measures. Heitkamp's data security policy is based on the Code for Information Security (ISO27001 and ISO17799). This code describes the standards and the technical and organizational measures that are important for implementing an appropriate level of information security.
It provides assurance of compliance with data protection. We take security measures to prevent the misuse of and unauthorized access to personal data. Anyone who can access your personal data through Heitkamp is obligated to maintain confidentiality. The systems in which customer data are stored are only accessible to a select group of employees who need access to perform their duties.
Heitkamp takes the protection of your data seriously and takes appropriate measures to prevent misuse, loss, unauthorized access, unwanted disclosure and unauthorized modification. If you feel that your data is not well secured or if there is evidence of misuse, please contact our DPO. Heitkamp has taken the following technical measures to protect your personal data:
- Security software, such as virus scanner and firewall
- TLS (formerly SSL). We have sent your data over a secure internet connection. You can recognize this by the address line 'https' and the padlock in the address line
- DKIM, SPF, and DMARC are three Internet standards we use to prevent our emails from containing viruses, being spam, or being used to obtain personal information.
- DNSSEC is a security (in addition to Domain Name System (DNS)) for the conversion of a domain name (#company_website) to the corresponding IP address (server name); it is provided with a digital signature. You can verify this signature automatically. In this way, we prevent you from being redirected to a fake IP address.
Retention of personal data
Heitkamp will not retain your data for longer than is necessary for the purposes for which your data is processed and permitted by law. How long certain data is kept depends on the type of data and the purpose for which it is processed. The retention period may therefore be different for each purpose.
Disclosure of personal data to third parties
The processing of personal data may be entrusted to third parties, provided that the data is processed only as Heitkamp itself would be permitted to do, if this is necessary in the context of the execution of the contract and if no legal or contractual obligation of secrecy prohibits it. In particular, Heitkamp must ensure that the third party guarantees data security.
What do we do with your visitor data on our website?
On Heitkamp's website, visitor data is registered, such as accesses to the most frequently visited subpages. This data allows us to further optimize the layout of our website. It can also be used to place more targeted information on the website. This allows us to further improve our services. We also record how visitors navigate through the Heitkamp website.
What are cookies and which ones does Heitkamp use?
Cookies are small files that are placed on your computer and used by websites to ensure the function or correct display of pages. We use cookies to improve your user experience. We use the following types of cookies:
- Functional cookies - These cookies are necessary for the functioning of our website. They store your preferences and remember that you have visited the website before. For example, Google remembers your preference for search language. These types of cookies do not collect any personal data.
- Analytical cookies - These cookies allow us to collect statistics about our website, such as which pages are visited and for how long. In Google Analytics, for example, the number of visitors, the location of visitors and the browser used can be measured.
- Tracking Cookies - Tracking cookies allow for individual tracking on the website. By tracking visitors' behavior on our website, we can improve the experience on our website. Through our website, a cookie is set by the American company Google as part of its "Analytics" service. We use this service to track and receive reports about how visitors use our website. Google may pass this information on to third parties if Google is legally obliged to do so or if third parties process the information on Google's behalf. We have no influence over this.
On your first visit to the website, we will inform you about these cookies: By using our website, you agree to this. You can opt out of cookies by setting your internet browser to no longer store cookies. You can also delete all previously stored information via your browser settings.
What rights do you have?
When Heitkamp processes your personal data, you have certain rights, which are explained below:
- Right of access to your personal data
If you have a relationship with Heitkamp and would like to know whether personal data about you is being processed, you can exercise your right to information.
- Right to rectification
You have the right to correct data if it is inaccurate or incomplete. You also have the right to rectify the data if the data is not relevant to the way we process it or if we have processed your data in breach of legal requirements. We will inform third parties who receive your data about the correction, unless this is impossible or requires a disproportionate effort.
- Right to delete data
You have the right to request that we delete certain data. For example, if your data is no longer needed for the purposes for which we received it, if you object to the processing or if your data has been processed by us unlawfully. However, we cannot always delete all data, as we are or may be obliged to retain certain data from you.
- Right to restriction of processing
You also have the right to restrict the processing of your data. The right to restriction means that we may not (temporarily) process or modify your personal data, e.g. if you dispute the accuracy of the data, if you believe that the personal data is no longer necessary for the purposes for which it was collected, or if you believe that the processing of your personal data by Heitkamp is unlawful.
- Right to object
You may object to the processing of your personal data by Heitkamp if your personal data is used for purposes other than those for which you have given your consent, other than necessary for the performance of a contract, other than necessary for compliance with a legal obligation or one of the other legal bases.
- Right to data transmission
If you have provided us with your personal data, you have a right to data transfer in certain cases. This means that we will provide you with your data in a structured, standardized and machine-readable form if you so wish.
How can you exercise your rights?
If you wish to exercise your rights, you can contact the DPO of Heitkamp. Depending on the case, an identity card may be requested to verify your identity.
Control of the processing of personal data
If you believe that the provisions of this Privacy Policy and data protection law are not being complied with by us or are not being complied with sufficiently, you may report this to the DPO of Heitkamp.
If you suspect that we are processing your personal data in a way that violates data protection regulations, you have the right to report this to the Federal Data Protection and Information Commissioner (FDPIC), who will open an investigation if necessary.
Data protection breaches
If you suspect a data breach, you can report it to Heitkamp's DPO.
About this privacy policy
Heitkamp reserves the right to update this privacy policy at any time. The last change was made in December 2022. The current version can always be found on our website.
If you have any questions or comments about our privacy policy, please do not hesitate to contact us through the Heitkamp DPO.
Dierikon, December 2022