Contact us

GENERAL DATA PROTECTION DECLARATION

This General Data Protection Declaration aims to inform you about the processing of your personal data carried out within the framework of using our services, browsing our website, subscribing to our newsletter, etc. Depending on the circumstances, we may need to provide you with specific data protection declarations to supplement this general declaration.

The data controller is:

INv3nt sàrl

c/o Lorille Alger

Clos-Belmont 4,

1208 Geneva, Switzerland

Responsible person:

Lorille Alger

+41 76 775 21 49

contact@inv3nt.ch

1.    Which data are collected

We collect the following data directly from you:

  •  Identity (first name, last name, date of birth, gender). This data is retained for 10 years after the end of the contractual relationship for legal purposes or as evidence until applicable prescription periods expire.
  • Contact details (postal address, email address, phone number). This data is retained for 10 years after the end of the contractual relationship for legal purposes or as evidence until applicable prescription periods expire.
  • Billing (invoice amounts and due dates, reminders, proof of payment). This data is retained for 10 years after the end of each accounting year, in compliance with Art. 958f of the Swiss Code of Obligations.
  • Correspondence (email exchanges, telephone notes, postal mail). This data is retained for 10 years after the end of the contractual relationship for legal purposes or as evidence until applicable prescription periods expire.
  • Technical data (IP address, MAC address, timestamps). This data is retained for 12 months after its collection for technical reasons and for the security of our IT systems, etc.

We also collect the following data from third parties:

  • Demographics (income category, number of people in the household). This data is purchased from Swiss companies active in direct marketing. It is retained as long as you do not withdraw your consent to data processing for marketing purposes or object to processing based on our legitimate interest.
  • Financial situation (credit score). This data is purchased from Swiss companies specializing in creditworthiness evaluation. It is retained as evidence throughout the contractual relationship, but no longer than 5 years after its collection, etc.

2.    For what purposes?

We collect these data for the following reasons:

  • To enter into and perform contractual relationships in accordance with the provisions of the contracts;
  • To communicate with you via appropriate communication channels to address your questions about our services, provide support, and log claims and complaints;
  • To share your data with our contractual partners for them to contact you, provided you give prior consent;
  • To improve our services, products, and business activities through market research and satisfaction surveys;
  • To plan our business activities;
  • To ensure our activities comply with applicable laws and internal regulations;
  • To analyze risks, detect misuse, implement security measures, and monitor their effectiveness;
  • To address your questions and requests related to data protection, particularly when you exercise your rights under the law;
  • To manage our infrastructure, website, and applications;
  • To manage business affairs and risks;
  • For corporate transactions (mergers, acquisitions);
  • For public relations and publications;
  • For training and instructions;
  • To combat crime and fraud.

3.    Disclosure to third parties

In the context of the contractual relationship and other purposes mentioned above, we may disclose your data to the following recipients:

  • Contractual partners: We work with partners to deliver services outlined in the contracts with you. We only share data necessary for them to provide their services.
  • Service providers: We work with various providers to implement data processing and carry out specific activities. These include IT providers, address verification services, debt collection agencies, transportation companies, financial service providers (banks, insurers, payment intermediaries, online payment services).
  • Authorities: When legally required, authorized, or for the protection of our interests, we share data with Swiss or foreign authorities.

When data is disclosed to subcontractors, we verify their compliance with security and necessity requirements. For independent data controllers, such as authorities, such checks or restrictions may not apply.

4.    Data transfer abroad

We may collaborate with service providers and partners located outside Switzerland. Data transfers are only carried out when necessary for the purposes mentioned in section 2 and in compliance with applicable legal frameworks.

We prioritize retaining data within Switzerland or in countries offering adequate protection levels, such as the EEA. Where this is not possible, we ensure partners comply with EU Standard Contractual Clauses and additional safeguards.

5.    Data retention period

We process your personal data as long as required for each purpose, including legal obligations and our self-imposed retention periods for corporate governance, documentation, and evidence preservation. After these periods, data is anonymized or destroyed.

Specific retention periods have been indicated in section 1 above for each category of personal data. However, these periods may be extended for technical reasons when the data in question is stored on our long-term back-up system. In such cases, we take all security measures to restrict access to backups to a very limited number of people, and to limit data processing to simple storage. We also undertake to irretrievably destroy the data in the backups as soon as technically possible.

6.    Data protection

We implement technical, organizational, and legal measures to ensure the security and confidentiality of your data, tailored to the risks associated with processing and the sensitivity of the data.

7.    Your data protection right

You have the right to:

  • Request information and a copy of your processed personal data;
  • Request correction or completion of incorrect or incomplete data;
  • Request deletion of your data unless a legal basis or legitimate interest requires its retention;
  • Limit the processing of your data;
  • Withdraw consent at any time;
  • Object to data processing for promotional purposes;
  • Request data portability in a suitable format;
  • Contest automated decisions and request human review;
  • File a complaint with a supervisory authority if you disagree with our data handling practices.

We will inform you of any conditions or restrictions that may apply to the exercise of your rights.

You can exercise your rights by contacting us directly (see section 1 above). We reserve the right to request additional data to identify you, in particular by means of a copy of a valid official identity document. To make it easier to process your request, we would also ask you to state precisely which right(s) you wish to assert, and to what extent.

To reduce paper waste when you request a copy of your personal data, we will make them available to you in digital format. In addition, please note that under applicable legal provisions, we may ask you for a fair financial contribution (CHF 300 maximum) if your request involves disproportionate effort. You will be informed of this in advance to enable you to take a position.

8.    Legal basis

This declaration complies with the new Swiss Data Protection Law (nLPD) and the EU General Data Protection Regulation (GDPR).

This declaration may be updated at any time. The version published on our website is the most recent version and is authoritative.

Most of the processing operations we carry out are strictly necessary for the conclusion, performance and settlement of contracts with you. Without such processing, we cannot guarantee the services we undertake to provide under the contracts. Other processing operations are based on our legitimate interests or those of third parties. This applies in particular to processing for marketing, security, statistical and market research purposes. The same applies to the defense of our legal interests and the management of disputes, in particular those that do not have a contractual basis.

Some processing operations may be required by Swiss or foreign law. If they are not directly imposed by law, they will be based on our legitimate interest in complying with the legal provisions applicable to us.

Your consent will also be used as a basis when necessary (for certain processing operations for marketing purposes). In such cases, we will specifically inform you of the processing operations requiring your consent, and you will remain free to decide whether or not to give it. We will tell you what the consequences are if you refuse to give your consent. When you give your consent, you remain free to withdraw it at any time, without justification and in a simple manner. Withdrawal is valid for the future and does not retroactively affect any processing carried out up to the time of withdrawal. The processing to which the withdrawal of consent relates will cease immediately, unless it can be continued on another legal basis (e.g. our legitimate interest in the processing of your personal data).

Last updated: 26/12/2024