1. Liability
Although Swiss Export Risk Insurance SERV takes every care to ensure that the information it publishes is correct, it cannot guarantee that this information is correct, accurate, up-to-date, reliable or complete.
In particular, SERV provides general information about SERV itself, its products and its services on its website (www.serv-ch.com/en/). This information does not constitute and is no substitute for personalised advice. SERV expressly reserves the right to modify or delete some or all content at any time and without notice.
SERV disclaims all liability for claims for tangible or intangible damages arising from accessing, using or failing to use published information, or from misusing the connection or from technical failures.
2. Links and references
Links and references to third-party websites lie outside the scope of SERV’s responsibility. Any information and services provided on linked websites are solely the third party’s responsibility. Users access and use such websites at their own risk. SERV has no influence whatsoever over the design, content and offerings of any linked website.
3. Copyright
The information contained on SERV’s website is made available to the public. Unless otherwise stated, SERV exclusively owns the copyright and any and all other rights to the content, images, photos or other files located on SERV websites. Downloading or copying content, images, photos or other files does not transfer any rights with respect to the content. The copyright holders’ prior written consent must be obtained before reproducing any elements.
4. Use of the SERV logo
The SERV logo (including font) may not be used or reproduced without the written consent of SERV.
Data protection policy
1. General information, scope
We are committed to protecting your privacy and the data you entrust to us.
Under Article 13 of the Swiss Federal Constitution and the provisions of Swiss data protection law, every person has the right to privacy and the right to be protected against the misuse of their personal data. SERV complies with these provisions.
In this data protection policy we provide you with information on how we process your personal data when you visit our website or use our online services, or, in very general terms, when we provide services or carry out any other activities for you. We also inform you about the rights of persons whose data we process.
Individual or additional activities may be governed by other data protection policies, information or legal documents such as general terms and conditions or terms of use (especially in relation to the SERV application portal).
SERV is primarily subject to Swiss data protection law. Personal data is processed in accordance with the data protection requirements for federal bodies. Foreign data protection legislation may also apply, however, in particular that of the European Union (EU General Data Protection Regu-lation, GDPR).
2. Data protection responsibility, contact details
As a federal body entrusted with public duties, SERV is responsible for processing personal data.
If you have any questions about data protection or this policy, you can reach our data protection officer at any time by email or post at the following address:
Swiss Export Risk Insurance SERV
Data protection
Genferstrasse 6
8002 Zurich
datenschutz@serv-ch.com
3. Collection and processing of personal data
3.1 Principles
We primarily process personal data that we require and receive in the course of enforcing the Swiss Export Risk Insurance Act (SERVG) and its associated ordinance (SERV-V). In particular, this includes personal data relating to our clients, business partners and other parties in connec-tion with insurance and guarantee business and associated activities.
We may also process personal data that we receive in connection with our general information services, training courses and other events (including client acquisition, marketing, etc.). We may also obtain such data from publicly accessible sources (e.g. internet, Commercial Register, media).
Certain data is also collected whenever you visit our website. In addition, you have the option of entering data at various points on our website.
We process personal data confidentially and with due care, and only to the extent required to fulfil the purposes described in this data protection policy and in accordance with the applicable legal provisions. We only store personal data to the extent and for the duration that is necessary for us to provide our services or as stipulated by law.
3.2 Purpose of data processing in the context of insurance business
The documents and data that you submit or send in connection with an insurance or guarantee transaction are used to assess and process applications and corresponding requests.
In this regard, SERV creates additional transparency for its clients as part of its obligations to maintain official secrecy and protect data. In addition to a provision on ‘official secrecy and data protection’ in the General Terms and Conditions for all insurance products, we have also published an information sheet on our website. This information sheet sets out the legal basis for the protection of information sent to SERV, along with the possible reasons why it might be shared with third parties. Based on this information sheet, you give us your consent to disclose protected information (where necessary) for the scenarios described therein.
To combat bribery, information about gifts, invitations and other benefits (type and description, value in CHF, reason, date) from clients and business partners (including their name and address) are also processed to ensure transparency and check compliance internally. This data may be shared with external bodies or the supervisory authority for auditing purposes.
3.3 General contact, forms, SERV application portal
We process personal data that data subjects voluntarily send to us themselves when contacting us (especially via post, email, telephone, contact form, social media) or in connection with the SERV application portal, to the extent that this is necessary to achieve the processing purpose or fulfil SERV’s mandate.
We may store personal data in an address book, customer relationship management (CRM) system or similar resources. If you send us data about other people, you are obliged to ensure data protection in respect of those people and also to make sure that the personal data provided to us is correct.
3.4 Receipt of newsletter and project information
If you have registered for the newsletter and project information on our website and given your consent to receive these communications in the automated confirmation email that is subsequently sent out (double opt-in), we will add your contact details to the corresponding mailing list. This data is used solely for the purpose of distributing our newsletter and project information.
We may also send our customers information and updates about SERV if they have not registered (e.g. in the form of the newsletter). If you no longer wish to receive these communications, you can unsubscribe at any time by sending an email to info@serv-ch.com, or in the newsletter itself.
We use GetResponse SA in Poland to send and manage the newsletter. This tool enables us to analyse and measure our distribution performance. For example, we can see how many recipients have opened the newsletter. This is necessary to enable us to tailor our newsletter content more closely to the needs of our recipients and thereby fulfil our legal mandate to provide information about existing insurance options to the best of our ability. If you do not wish to consent to this, please unsubscribe from the newsletter. A corresponding link can also be found in the footer of every newsletter and in the confirmation email that you receive after registering for the first time.
3.5 Conference calls and video meetings
We use Microsoft Teams to hold telephone calls, conference calls, video meetings and training sessions (‘online meetings’). The following data is processed in this context: username; general information about service preferences; information about the device and the network/internet connection of every user, e.g. IP address(es), MAC address, other device identifiers (UDID); device type; type and version of operating system; client version; information about the use of or other interactions with Microsoft Teams (usage information); other information that the user uploads, provides or creates while using the service; and metadata that is used in the maintenance of the service provided. Other personal data that is normally shared when using collaborative tools may also be shared between SERV and the participants, such as chat messages, images, files, audio/video recordings, contact details and metadata that is used for the maintenance of the service. If you participate in an online meeting without registering, only the minimum data required will be processed. You can find further information about how data is processed by Microsoft Teams in its privacy policy.
3.6 Application data
We publish job vacancies on our website. When you apply for one of these positions, the data protection provisions stated there apply.
4. Cookies, tracking and other technology related to the use of the SERV website
4.1 Cookies
We use cookies and similar technology on our website. In particular, this allows us to make our website more attractive and enable or improve the use of certain functions.
A cookie is a small text file that is automatically sent to and used by the web browser on your computer or mobile device when you visit our website. This allows us to recognise you when you next visit our website, although we will not be aware of your identity. In addition to cookies that are only used during a session and then deleted again after you leave the website (session cookies), cookies can also be used that store user information and other data over a certain period (permanent cookies). However, you can configure your browser to block cookies, only store them for a session, or delete them after a certain amount of time. Most browsers are configured to accept cookies by default.
Essential cookies are needed for the website to function properly and cannot be disabled in your systems. As a rule, these cookies are only set in response to actions you take that constitute a service request, such as configuring your privacy preferences, logging in, or filling out forms. You can configure your browser to block them or notify you about them, but please note that some parts of the website may not work properly or at all if you block them. These cookies do not store any personal data.
4.2 Storage for web analytics purposes/server log files/performance and coverage measurement
When you access our website, we may use services and programs to determine how the site or our online services are being used.
In general, no personal data is stored when you access our site. We only record non-personal usage data that allows us to track trends and thus improve our services (log files). Usage data is not associated with personal data. The only exception is if you contact us voluntarily. When you register your email address, it is added to a separate database that is not associated with the anonymous log files. You can cancel your registration again at any time.
In particular, we use Google Analytics, a web analytics service provided by Alphabet Inc. and Google Ireland Ltd., which is integrated via Google Tag Manager.
Google Analytics employs anonymised data that enables us to measure and analyse how our website is used. The service provider also places permanent cookies on your computer for this purpose. The service provider does not receive any personal data from us, nor does it store any IP addresses. However, it may track your use of the website, combine this information with data from other websites that you have visited and that are also tracked by the service provider, and use the findings for its own purposes (e.g. targeted advertising). If you have registered with the service provider yourself, the service provider will know your identity. The service provider is then responsible for processing your personal data in accordance with its data protection provisions. The service provider will only share with us information on how our website is used (no personal data about you).
Further information can be found here: https://marketingplatform.google.com/about/analytics/terms/us/
You can deactivate Google Analytics via the following link: https://tools.google.com/dlpage/gaoptout?hl=en
We also use Google Ads, a service provided by Alphabet Inc. and Google Ireland Ltd., which is also integrated via Google Tag Manager and sets cookies. Using a randomly generated user ID, Google can recognise the user across different websites and domains and deliver personalised advertising.
For further information, see: https://policies.google.com/privacy?hl=en-GB
5. Content and third-party terms of use
Articles on our website may contain content from third-party providers (e.g. videos, images, posts, etc.) When content from other websites is embedded, it behaves as if the visitor had visited the other website directly. These websites may collect data about you, use cookies, embed additional third-party tracking services and monitor your interaction with the embedded content, including your interaction with the embedded content if you have an account and are logged in to that website.
The third-party providers are
- Google Maps, provider: Google LLC, USA
Privacy policy: https://policies.google.com/privacy?hl=en-GB - YouTube, provider Google Ireland Limited, Ireland
Privacy policy: https://policies.google.com/privacy?hl=en-GB - Vimeo, provider: Vimeo.com, Inc., USA
Information about data protection and cookies can be found here: https://vimeo.com/privacy and https://vimeo.com/cookie_policy
Please also note that we assume no liability for the content of linked websites (e.g. LinkedIn, Xing, Vimeo, Google Maps, etc.). These can usually be identified by the corresponding symbols/logos. If a link takes you to the website of a third-party provider, then its terms of use and data protection provisions shall apply.
6. Transfer of personal data to third parties
Your personal data will not be shared with, sold to or otherwise transferred to third parties unless this is necessary for the purpose of performing the contract or fulfilling our legal obligations.
SERV may use third parties to process personal data, process it in conjunction with third parties or, if necessary, transfer it to them. Such third parties are mainly specialist providers whose services we use. These are based in Switzerland and EU countries.
We may also transfer personal data to third parties where we are obliged to do so on the basis of legal provisions or an enforceable official or court order.
7. Retention and storage of personal data
We process and store your personal data for as long as we need it to fulfil our contractual and legal obligations or otherwise fulfil the processing purposes. This means, for example, that we may store it for the duration of the business relationship (from initial contact through to completion), and also beyond this in accordance with our legal retention and documentation obligations. Personal data may also be stored for the period during which claims may be asserted against SERV, and for as long as we are otherwise obliged or authorised to store it or need to do so in order to serve other legitimate business interests (e.g. for evidence or documentation purposes).
8. Data security
We implement appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or total loss, destruction or unauthorised access and/or misuse by third parties. The security measures conform to the latest technical standards.
For security reasons, we use encrypted data communication based on TLS or SSL encryption when you visit our website or the SERV application portal. You can recognise an encrypted connection by the fact that the address bar in the browser changes from http:// to https:// and a padlock symbol is displayed in it. When TLS or SSL encryption are activated, data that is transferred to us cannot be read by third parties.
9. Rights of data subjects
As a data subject, you have certain rights in relation to the personal data about you that we process.
In particular, you have the right to know whether we are processing your personal data, and if so what data (‘right to be informed’). You can send your request to the address provided in Section 2.
You have the right to lodge a complaint with the responsible data protection authority. If the controller is based in Switzerland, this is the Federal Data Protection and Information Commissioner (FDPIC) (https://www.edoeb.admin.ch/edoeb/en/home.html).