Updated on 25th of April 2025
Transparent handling of personal data is very important to us. This data protection statement provides information on what personal data we collect, for what purpose and to whom we pass it on. We regularly review and update this privacy policy to ensure the highest level of transparency.
If you have any questions or concerns about our protection of your data, you can always reach us by email at datenschutz@circlin.ch. Responsible for data processing done through this website is:
Mares Systems
c/o Filip Mares
Steinmatt 4
6404 Greppen
Switzerland
This website can generally be used without entering personal data. Even if, we only process personal data that you provide to us or that we collect when operating our website.
We process your data in good faith and for the purposes set out in this privacy policy. In doing so, we ensure transparent and proportionate processing.
If, in exceptional cases, we are unable to comply with these principles, the data processing may still be lawful because there is a justification. A justification reason may be in particular:
If you have given us consent to process your personal data for specific purposes, we will process your data within the scope of this consent unless we have another justification.
You can revoke your consent at any time. Data processing that has already taken place is not affected by this.
We may need to rely on the services of third parties or affiliates and engage them to process your data (known as processors). Categories of recipients are namely:
We ensure that these third parties and our affiliates comply with the requirements of data protection and treat your personal data confidentially.
We may also be required to disclose your personal information to government authorities.
We have embedded links to our social media channels on our website. This is apparent to you in each case (typically via corresponding icons). If you click on the icons, you will be redirected to our social media channels, or provided the option to share our content on the respective platform.
Under certain circumstances, your personal data may be transferred to companies abroad in the course of order processing. These companies are obligated to data protection to the same extent as we are. The transfer may take place worldwide.
If the level of data protection does not correspond to that in Switzerland, we carry out a prior risk assessment and ensure contractually that the same level of protection is guaranteed as in Switzerland (for example, by means of the new standard contractual clauses of the EU Commission or other legally prescribed measures). If our risk assessment is negative, we take additional technical measures to protect your data. You can access the EU Commission's standard contractual clauses at the following link.
We store personal data only for as long as is necessary to fulfill the individual purposes for which the data was collected.
Data that we store when you visit our website is kept for twelve months. An exception is made for analysis and tracking data, which may be kept longer.
We store contract data for longer, as we are obliged to do so by legal regulations. In particular, we must retain business communications, concluded contracts and accounting records for up to 10 years. As far as we no longer need such data from you to perform the services, the data will be blocked and we will only use it for accounting and tax purposes.
We will keep your information secure and take all reasonable steps to protect your information from loss, access, misuse or alteration.
Our contractual partners and employees who have access to your data are obliged to comply with data protection regulations. In some cases, it will be necessary for us to pass on your requests to companies affiliated with us. In these cases, too, your data will be treated confidentially.
Within our website, we use the SSL (Secure Socket Layer) procedure in conjunction with the highest encryption level supported by your browser.
You can request information about the data we have stored about you at any time. We ask you to send your request for information together with proof of identity to datenschutz@circlin.ch .
You also have the right to receive your data in a common file format if we process your data automatically and if:
We may restrict or refuse to provide information or data if this conflicts with our legal obligations, our own legitimate interests, public interests or the interests of a third party.
The processing of your request is subject to the statutory processing period of 30 days. However, we may extend this period due to a high volume of requests, for legal or technical reasons, or because we need more detailed information from you. You will be informed of the extension of the deadline in good time, at least in text form.
You have the option of requesting the deletion or correction of your data at any time. We may reject the request if statutory provisions oblige us to store the data for a longer period or to retain it unchanged or if your request conflicts with a legal requirement.
Please note that exercising your rights may be in conflict with contractual agreements and may have corresponding effects on the performance of the contract (e.g. premature termination of the contract or cost consequences).
If you are affected by the processing of personal data, you have the right to enforce your rights in court or to file a complaint with the competent supervisory authority. The competent supervisory authority in Switzerland is the Federal Data Protection and Information Commissioner - https://www.edoeb.admin.ch.
We may change this privacy policy at any time and without prior notice. The current version published on this website applies. You will not be informed separately of changes.
By visiting this website, certain data is automatically stored on our servers or on servers of services and products that we obtain and/or have installed, for purposes of system administration, for statistical or backup purposes or for tracking purposes. These are:
This data cannot be assigned to a specific person and there is no merging of this data with other data sources. The log files are stored in order to guarantee the functionality of the website and to ensure the security of our information technology systems. This is our legitimate interest.
The data is only stored for as long as is necessary to achieve the purpose for which it was collected. Accordingly, the data is deleted after the end of each session. The storage of the log files is mandatory for the operation of the website, you therefore have no possibility to object.
Our website and its infrastructure are hosted on various services provided by Amazon Web Services (AWS), offered by Amazon Web Services, Inc., 410 Terry Avenue North, Seattle, WA 98109-5210, USA.
We use AWS Amplify and CloudFront for hosting our frontend, and AWS Lambda, DynamoDB, and SES for our backend services. This means that your visit to our website is processed through AWS servers. The data associated with your visit to our website is transmitted to AWS. This is necessary so that your browser request can be processed successfully. This data includes:
Depending on the server location, this data may be transferred to the USA. We have concluded a data processing agreement with AWS. In addition, AWS is certified under the EU-US data protection agreement and is therefore obliged to comply with EU data protection regulations.
For more information about privacy, please see AWS's privacy policy.
We use Google Analytics, a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Google Analytics helps us understand how visitors interact with our website by collecting and analyzing usage data. This allows us to improve our website and provide a better user experience.
The data collected by Google Analytics includes:
This data may be transferred to the USA. Google Analytics uses cookies to track your session on our website. The data collected is stored on Google's servers.
We have configured Google Analytics to anonymize IP addresses and have implemented measures to ensure compliance with data protection regulations. You can opt out of Google Analytics tracking by using the consent management options provided by Usercentrics on our website.
For more information about privacy in relation to Google Analytics, please see Google's privacy policy.
Our website uses Usercentrics, a Consent Management Platform (CMP) provided by Usercentrics GmbH, Rosental 4, 80331 Munich, Germany.
Usercentrics helps us obtain, manage, and document user consent for various data processing activities on our website, in compliance with data protection regulations like GDPR.
When you visit our website, Usercentrics stores a cookie in your browser to remember your consent preferences. This ensures that we don't need to ask for your consent every time you visit our website. The data collected by Usercentrics includes:
Change your privacy settings here.
For more information about privacy in relation to Usercentrics, please see Usercentrics' privacy policy.
We use ZeroBounce, an email validation service provided by Hertza, LLC DBA ZeroBounce, 10 E Yanonali St, Santa Barbara, CA 93101, USA.
ZeroBounce helps us validate email addresses to ensure they are legitimate and deliverable. When you provide your email address on our website, we may pass it to ZeroBounce for validation. This helps us maintain a high-quality email database and reduces the risk of sending emails to invalid addresses.
The data shared with ZeroBounce includes:
This data may be transferred to the USA. We have appropriate data processing agreements in place with ZeroBounce to ensure the protection of your data.
For more information about privacy in relation to ZeroBounce, please see ZeroBounce's privacy policy.
We use Spamhaus, a threat intelligence service provided by The Spamhaus Project Ltd, London, UK, and Spamhaus Technology Ltd, Geneva, Switzerland.
Spamhaus helps us check IP addresses that connect to our service to identify potential security threats, spam sources, or malicious actors. This helps us protect our services and legitimate users from abuse.
The data shared with Spamhaus includes:
This check happens in real-time and helps us maintain the security and integrity of our services. No personal data beyond the IP address is shared with Spamhaus.
For more information about privacy in relation to Spamhaus, please see Spamhaus's privacy policy.
Google Fonts is a service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Fonts is an online service that allows users to embed high-quality fonts on their websites.
We use Google Fonts to integrate certain fonts on our website. This allows us to ensure a consistent and responsive design that helps improve the user experience.
To provide the fonts, Google Fonts may collect information such as the visitor's IP address, browser type and version, and other information about the website visit. This data may be transferred to the USA.
For more information about privacy in relation to Google Fonts, please see Google's privacy policy.