At Vereign we respect your personal data. Naturally, our data protection practice complies with applicable law including but not limited to the General Data Protection Regulations (GDPR) of the European Union.
I. Name and Contact Details of the Controller
6300 Zug, Switzerland
For questions in regards to this data protection policy or other concerns in this subject area, you may contact our data protection team directly via: firstname.lastname@example.org
II. General Information on Data Processing
Corporate Principles and Commitment
As a matter of principle, we collect and use personal data as much as is necessary to provide our services requested by you (see Art. 6 para. 1 Lit. b GDPR). An exception applies where a contractual basis is not apparent and therefore the processing of personal data can only be authorised via your explicit consent (see Art. 6 para. 1 Lit. a GDPR). In such a situation we will explain to you the exact purposes and consequences of the concerned data processing and of course you may at any time retrieve your consent given to us. In no event will we sell your personal data to any third party for any business or political agenda.
Data erasure and storage period
Your personal data will be erased, as soon as the purpose of storing the data ceases to apply. However, please note there may be explicit legal obligations of our company in line with EU GDPR, to keep your personal data stored (or at least recoverable) for a certain retention period, even after the original purpose of storing your data ceases to apply (see Art. 6 para. 1 Lit. c GDPR). In such a case, the data will be erased if a storage period stipulated by the aforementioned rules expires.
III. Collection and Processing of Personal Data on this Website
The collection and processing of your personal data on this website shall be limited to the extent necessary to fulfil the apparent purposes of this website.
These purposes are to inform you about our projects and to maintain the website (see below no. 1 and 2). Besides that you may choose to explicitly contact us and asks us to keep you informed about further developments and events, related to our outlined projects (see below no.3).
IP-Addresses and Webserver Log Files
In order to allow for the requested website to be displayed in your browser, we need to temporarily store and process your IP address. The legal basis for this temporal storage of personal data is Art. 6 para. 1 Lit. f of the GDPR or Art 6 Abs. 1 lit e GDPR.
Also, every time our internet pages are accessed, information transmitted from your browser is automatically saved in anonymised webserver log files. This information includes:
– the exact pages you accessed in our URL(s)
– date and time of your request
– the name of your provider,
– your browser type,
– your operating system,
– your anonymised IP address
We will use this non-personal data exclusively to safeguard the functionality of the website. Such log files are highly relevant for optimising our website and to safeguard the security of our information technology systems.
Cookies and the Matomo web analysis service
We use “cookies” on our internet pages. Cookies are text files stored on your computer that help increase the ease of use, efficacy and safety of our internet service.
In the cookies we use, we store:
- Anonymised user IP
- Date and time of access
- Screen resolution
- User’s time zone
- Files downloaded and clicked on
- Links to external domains (outlink)
- Page generation speed (how long did it take until the visited page was displayed)
- Visitor location: country, region, city (geolocation)
- Browser language
- User’s browser type
First and foremost the temporary storage of this data in so called “session cookies” is technically mandatory in order to allow to display the requested website in your Browser accurately.
Additionally, we will assess the data stored by the cookies on your machine using “Matomo” web analysis software to constantly improve our internet site. For this purpose, usage information generated by cookies is transferred to our server and stored for usage-analysis purposes. Your IP address is already stored in the cookie simply in an anonymised form only, and it is only recorded in this form by our web analysis software so that you remain anonymous as a user in the context of the analysis.
Matomo Cookie Preference
Contact forms like “count me in” button
We are providing you with the opportunity to get in touch with our team and you may send us a respective email, asking us to keep you informed about our projects and related events and other announcements. In particular we offer you a “count me in” button, which provides your chosen mail client with our contact email address email@example.com. In case you explain to us in such an email, you would like to participate in our projects or at least you would like to be informed about further developments, events and other news, we will include your provided email address, in an email list we use in case of the purposes just outlined above.
After you gave us your contact details (/email address), you may at any time retract your consent and object to any further usage of your emails address for the mentioned purposes. In order exercise such a right to object future usage of your email address, please just write us another email to firstname.lastname@example.org and we will delete your email address from our list without undue delay.
IV. Data Processors
The recording, processing and use of personal data is primarily carried out by us as well as our subsidiary Vereign Labs Ltd. (a Bulgarian company, having its registered office address at 152 “Sixth September” street, 3rd floor, office 3.6 В, Plovdiv 4000, Bulgaria). However, for specific tasks we also have contracted external service providers.
V. Rights of the data subject
If your personal data is processed by us, then you are a “data subject” within the meaning of the GDPR. You have the following rights vis-à-vis us as the data controller:
Right of access: You may request information about your data processed by us, in particular about the purposes of processing, the category of personal data, the categories of recipients to whom the data have been or will be disclosed by us, the envisioned period of storage, the existence of a right of rectification, erasure, restriction of processing or objection to it, the existence of a right to lodge a complaint, where your data are collected from (if these are not collected by us), and the existence of automated decision-making, including profiling.
Right to rectification: You have the right to demand without undue delay the rectification of inaccurate personal data stored by us as well as to have incomplete personal data stored by us completed.
Right to erasure: You have the right to demand that personal data stored by us be erased as long as the processing of this data is not necessary to fulfil a legal obligation, for reasons of public interest, or for the establishment, exercise or defence of legal claims.
Right to block data: You have the right to demand that your personal data be blocked. Data that is blocked will not be deleted from our databases, but they will not be processed as long as the block is in effect.
Right to data portability: You have the right to receive your personal data in a structured, commonly used and machine-readable format or to demand that it be transmitted to another controller.
Right to object: Consent given to process your personal data can be revoked at any time. As a result of this, we will no longer be permitted to continue processing data based on this consent in the future.
Right to lodge a complaint: You have the right to lodge a complaint with any competent supervisory authority.
In order to exercise your rights as a data subject, please contact our Data Protection Team (email@example.com) or send an email or postal mail to our contact details as indicated under clause I above.
In case you exercise your rights in accordance with the GDPR towards us, we will not charge any fees. However, a reasonable fee may be charged if your inquiry is demonstrably abusive improper or if you make a repeated inquiry without relevant justification.
We may need to collect information on you that will enable us to clearly identify you as a data subject. In doing so, we will endeavour not to complicate or even hinder your request. Rather, we want to make sure that none of your personal data falls into the hands of unauthorised persons.
We have implemented extensive security provisions and measures to protect personal data stored by us from unauthorised access, misuse, altering, misappropriation, destruction and loss.
However, in case you choose to communicate with us via an insufficiently encrypted communication channel, we would like to point out that such insufficiently encrypted data transfer via the internet cannot provide any guarantee that access to your data by third parties is averted. Complete protection of your data during unencrypted transfer from your system to our server is not possible in technical terms.
Our webpage may contain hyperlinks, which will lead you to internet sites from other companies. This Data Privacy Statement does not apply to these linked internet sites belonging to other companies.
Amendment of this Data Privacy Statement
It may be necessary to adapt our Data Protection Statement to changing framework conditions of a factual and legal nature. The Data Privacy Statement published on our pages is kept up to date.
As of: June 2018