Data Protection Declaration

Responsible individual

Name/Company.: Mondaine Watch Ltd.
Street number: Etzelstrasse 27
Postcode, City, Region: 8808 Pfäffikon SZ
Commercial register number: CH-020.3.917.982-4
Managing director: Bernd Stadlwieser
Telephone number: 0800 020 2070
Email address: datenschutz@mondaine.ch

Data protection officer

Email address: datenschutz@mondaine.ch

EU Data protection officer

Name: VGS Datenschutzpartner UG
Postcode, Location: 20457 Hamburg, Deutschland
Email address: info@datenschutzpartner.eu
Website: https://datenschutzpartner.eu/

1. Data protection and data security

Mondaine Watch Ltd. (hereinafter Mondaine or we) attaches great importance to the privacy of your customers and takes the protection of personal data very seriously. In the following data protection declaration we will explain to you how we process your personal data.

1.1. This data protection declaration explains to you the type, scope and purpose of the processing of personal data within our online offering and the associated websites, functions and contents (hereinafter jointly referred to as "online offering" or "website"). This privacy policy applies regardless of the domains, systems, platforms and devices (e.g. desktop or mobile) through which the online offering is accessed.

1.2. For the terms used, such as "personal data" or the "processing" of this data, we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

1.3. The term "user" covers all categories of data subjects. These include our business partners, customers, interested parties and other visitors to our online offering. The terms used, such as "user", are to be understood as gender-neutral.

1.4. Use of personal data

Personal data:

  • Name
  • City, country
  • Email address(es)

Usage specific information:

  • IP address of your devices
  • Usage data generated by your use of the websites (such as frequency and duration of visits, time and date of visit, preferred preferences, search terms and results, etc.)

1.5. Mondaine processes the personal data of users only in compliance with the relevant data protection regulations. This means that user data will only be processed if legal permission has been obtained. This means in particular that user consent is to be given if data processing is required by law or is necessary for the provision of our contractual services (e.g. the processing of orders) and online services, as well as for processing on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation and security of our online services within the meaning of Art. 6 Para. 1 lit f. GDPR, in particular for reach measurement, creation of profiles for advertising and marketing purposes, collection of access data and use of third-party services).

2. Security measures

2.1. We take the latest organisational, contractual and technical security measures in order to ensure that the provisions of data protection laws are observed, thus protecting the data we process against accidental or intentional manipulation, loss, destruction or access by unauthorised persons.

2.2. The security measures include in particular the encrypted transmission of data between your browser and our server.

3. Disclosure of data to third parties and third-party providers

3.1. Data will only be passed on to third parties if required by law. We only pass on user data to third parties if, for example, this is necessary for contractual purposes on the basis of Art. 6 para. 1 lit. b) GDPR or on the basis of legitimate interests pursuant to Art. 6 para. 1 lit. f. GDPR on the economic and effective operation of our business operations..

3.2. If we use subcontractors to provide our services, we will take appropriate legal precautions as well as appropriate technical and organisational measures to ensure the protection of personal data in accordance with the relevant statutory provisions..

3.3. If content, tools or other means from other providers (hereinafter jointly referred to as "third party providers") are used in the context of this data protection declaration and their named registered office is in a third country, it is to be assumed that data is transferred to the countries in which the third party providers have their registered office. Third countries are countries in which the GDPR is not directly applicable law, i.e. in principle countries outside the EU or the
European Economic Area. The transfer of data to third countries takes place either if an appropriate level of data protection, user consent or other legal permission is available.

4. Establishment of contact

4.1. When contacting us (via contact form or e-mail), the user's details will be used in order to process and conclude the contact request in accordance with Art. 6 para. 1 lit. b) GDPR.

4.2. User information may be stored in our Customer Relationship Management System ("CRM System") or comparable inquiry organisation.

5. Comments and contributions

5.1. If users leave comments or other contributions, their IP addresses will be saved for 7 days on the basis of our legitimate interests within the meaning of Art. 6 para. 1 letter f. GDPR. This takes place for our safety if someone leaves illegal contents in comments and contributions (insults, forbidden political propaganda, etc.). In such a case we ourselves can be prosecuted for the comment or contribution and therefore have an in interest in the identity of the author.

6. Collection of access data and log files

6.1. On the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. GDPR, we gather data on each access to the server on which this service is located (so-called server log files). Access data includes the name of the accessed website, file, date and time of access, transferred data volume, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.

6.2. Log file information is stored for a maximum of seven days for security reasons (e.g. to investigate misuse or fraud) and then deleted. Data whose further storage is required for evidentiary purposes are excluded from deletion until the respective incident has been definitively clarified.

7. Cookies & range measurement

7.1. Cookies are information that is transferred from our web server or third party web servers to the user's web browser and stored there for later retrieval. Cookies can be small files or other types of information storage.

7.2. We use "session cookies" that are only stored on our website for the duration of your current visit (e.g. to enable the storage of your login status or the shopping basket function and thus the use of our online offering at all). A randomly generated unique identification number, a so-called session ID, is stored in a session cookie. A cookie also contains information about its origin and the storage period. These cookies cannot store any other data. Session cookies are deleted when you have finished using our online offering and log out or close your browser, for example.

7.3. If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Stored cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to the functional restriction of this online offering.

8. Rights of users

8.1. Users have the right, upon request and free of charge, to obtain information about the personal data that Mondaine has stored about them.

8.2. In addition, users have the right to correct inaccurate data, to limit the processing and deletion of their personal data, if applicable, as well as to assert their rights to data portability and, in the event of the assumption of unlawful data processing, to file a complaint with the competent supervisory authority.

8.3. Users may also revoke their consent, fundamentally and with effect for the future.

9. Deletion of data

9.1. The data stored by us will be deleted as soon as it is no longer required for its intended purpose and there are no legal storage obligations preventing deletion. If the user's data is not deleted because it is necessary for other and legally permissible purposes, its processing is restricted. This means that the data is blocked and not processed for other purposes. This applies, for example, to user data that must be retained for commercial or tax reasons.

9.2. In accordance with statutory requirements, records shall be kept for 6 years in accordance with § 257 (1) HGB (trading books, inventories, opening balance sheets, annual financial statements, commercial letters, accounting documents, etc.) and for 10 years in accordance with § 147 (1) AO (books, records, management reports, accounting documents, commercial and business letters, documents relevant to taxation, etc.).

10. Right of objection

Users can object to the future processing of their personal data in accordance with legal requirements at any time. The objection may be lodged in particular against processing for direct marketing purposes.

11. Changes to the data protection declaration

11.1. We reserve the right to change the data protection declaration in order to adapt it to changed legal situations or in the event of changes to the service or data processing. However, this only applies with regard to declarations on data processing. If user consent is required, or if parts of the data protection declaration contain provisions regarding the contractual relationship with users, the changes will only be made with the users' agreement.

Updated: 02.05.2018