General terms and conditions

Privacy policy

PhytoVero Privacy Policy (Version 1.1 / November 13, 2018)

In this privacy statement, we, PhytoVero GmbH (hereinafter referred to as PhytoVero, we or us), explain how we collect and otherwise process personal data. This is not an exhaustive description; other data protection declarations may regulate specific issues. Personal data is understood to be all information that relates to an identified or identifiable person.

This privacy policy is aligned with the EU General Data Protection Regulation (GDPR). Although the GDPR is a European Union (EU) regulation, it is relevant to us. The Swiss Data Protection Act (DPA) is heavily influenced by EU law, and companies outside the European Union or the European Economic Area (EEA) must comply with the DPA under certain circumstances. Therefore, we have aligned this privacy statement with their standard.

  1. Responsible

Responsible for the data processing we describe here is PhytoVero GmbH, unless otherwise stated in the individual case. If you have any data protection concerns, you can send them to us at the following contact address: PhytoVero GmbH, Wangenstrasse 51, 3018 Bern

  1. Collection and processing of personal data

We primarily process personal data that we receive from our customers and other business partners in the course of our business relationships with them and other persons involved in these relationships, or that we collect from their users in the course of operating our websites, online store and other applications.

Insofar as this is permitted, appropriate, ethically justifiable and absolutely necessary, in special cases we also take certain data from publicly accessible sources (e.g. debt collection registers, land registers, commercial registers, press, Internet) or receive such data from our clients and their employees, from authorities, (arbitration) courts and other third parties (such as business and contractual partners of our clients). In addition to the data about you that you give us directly, the categories of personal data that we receive about you from third parties include, in particular, information from public registers, creditworthiness information (insofar as we conduct business with you personally), information about you that people close to you (family, advisors, legal representatives, etc.) give us so that we can conclude or process contracts with you or involve you (e.g. references, your address for deliveries, powers of attorney).) so that we can conclude or process contracts with you or involving you (e.g. references, your address for deliveries, powers of attorney), information on compliance with legal requirements such as anti-money laundering and export restrictions, information from banks, insurance companies, sales and other contractual partners of ours on the use or provision of services by you (e.g. payments made, purchases made, etc.).(e.g. payments made, purchases made), personal data from the media and the Internet (where this is appropriate in a specific case, e.g. as part of an application, press review, marketing|sales, etc.), your addresses and, where applicable, interests and other socio-demographic data (for marketing), data in connection with the use of the website (e.g. IP address, MAC address of the user’s computer, etc.).e.g. IP address, MAC address of the smartphone or computer, details of your device and settings, cookies, date and time of visit, pages and content accessed, functions used, referring website, location details).

  1. Purposes of data processing and legal basis

We use the personal data we collect primarily to enter into and perform our contracts with our customers and business partners, in particular to provide services to our customers and to purchase products and services from our suppliers, and to comply with our legal obligations in Switzerland and abroad. If you work for such a customer or business partner, your personal data may also be affected in this capacity.

In addition, we also process personal data about you and other individuals, as permitted and as we deem appropriate, for the following purposes in which we (and sometimes third parties) have a legitimate interest consistent with the purpose:

Offer and further development of our offers, services and websites, and other platforms on which we are present; communication with third parties and processing of their inquiries (e.g. applications, media inquiries); advertising and marketing (including implementation of events), provided you have not objected to the use of your data (if we send you advertising as an existing customer of ours, you can object to this at any time, we will then put you on a blacklist against further advertising mailings); market and opinion research, media monitoring;

Guarantees of our operations, in particular IT, our websites and other platforms;

Insofar as you have given us consent to process your personal data for certain purposes (for example, when you register to receive newsletters (PhytoVero Newsletter), we process your personal data within the scope of and based on this consent, insofar as we have no other legal basis and we require such a basis. Consent given can be revoked at any time, but this has no effect on data processing that has already taken place.

  1. Cookies | Tracking and other technologies related to the use of our website

We typically use “cookies” and similar technologies on our websites, as specified by the provider, which can be used to identify your browser or device. A cookie is a small file that is sent to your computer or automatically stored on your computer or mobile device by the web browser you are using when you visit our website. If you visit this website again, we can recognize you this way, even if we do not know who you are. In addition to cookies that are only used during a session and deleted after your website visit (“session cookies”), cookies can also be used to store user settings and other information for a certain period of time (e.g. two years) (“permanent cookies”). However, you can set your browser to reject cookies, save them for one session only, or otherwise delete them prematurely. Most browsers are preset to accept cookies. We use persistent cookies so that we can better understand how you use our offers and content. If you block cookies, certain functionalities (such as voice dialing) may no longer work.

We sometimes use Google Analytics or comparable services on our websites. This is a service provided by third parties that may be located in any country in the world (in the case of Google Analytics, it is Google LLC in the USA,, which allows us to measure and evaluate the use of the website (non-personal). Permanent cookies set by the service provider are also used for this purpose. The service provider does not receive any personal data from us (and does not retain any IP addresses), but may track your use of the website, combine this information with data from other websites you have visited that are also tracked by the service provider, and use this knowledge for its own purposes (e.g., directing advertising). As far as you have registered with the service provider yourself, the service provider also knows you. The processing of your personal data by the service provider will then be the responsibility of the service provider in accordance with its data protection provisions. The service provider only tells us how our respective website is used (no information about you personally).

  1. Data sharing and data transfer at home and abroad

We do not give any data to third parties !

  1. Duration of the retention of personal data

We process and store your personal data as long as it is necessary for the fulfillment of our contractual and legal obligations or otherwise the purposes pursued with the processing, i.e. for example for the duration of the entire business relationship (from the initiation, processing to the termination of a contract or purchase) as well as beyond that in accordance with the statutory retention and documentation obligations. As soon as your personal data is no longer required for the aforementioned purposes, it will be deleted or anonymized as a matter of principle and as far as possible. For operational data (e.g., system logs, logs), shorter retention periods of twelve months or less generally apply.

  1. Data security

Together with our provider (Hostpoint), we take appropriate technical and organizational security measures to protect your personal data from unauthorized access and misuse, such as the issuance of directives, training, IT and network security solutions, access controls and restrictions, encryption of data carriers and transmissions, pseudonymization, controls.

  1. Obligation to provide personal data

Within the scope of our business relationship, you must provide those personal data that are necessary for the establishment and implementation of a business relationship and the fulfillment of the associated contractual obligations (you generally do not have a legal obligation to provide us with data). Without this data, we will generally not be able to conclude a contract/purchase with you or process it. Also, the website cannot be used if certain information to secure the traffic (such as IP address) is not disclosed.

  1. Rights of the data subject

Within the scope of the data protection law applicable to you and insofar as provided therein (such as in the case of the GDPR), you have the right to information, correction, deletion, the right to restrict data processing and otherwise to object to our data processing, as well as to the surrender of certain personal data for the purpose of transfer to another entity (so-called data portability). Please note, however, that we reserve the right to assert the restrictions provided for by law on our part, for example if we are obliged to retain or process certain data, have an overriding interest in doing so (insofar as we are entitled to rely on this) or require it for the assertion of claims. If there are any costs for you, we will inform you in advance. We have already explained the possibility of revoking your consent in sec. 3 informed. Note that exercising these rights may conflict with contractual agreements and may have consequences such as early termination of the contract or cost consequences. We will inform you in advance if this is not already contractually regulated.

The exercise of such rights usually requires that you clearly prove your identity (e.g. by means of a copy of your ID card, where your identity is otherwise not clear or cannot be verified). To exercise your rights, you can contact us at the address given in section 1.

In addition, every data subject has the right to enforce his or her claims in court or to file a complaint with the competent data protection authority. The competent data protection authority in Switzerland is the Federal Data Protection and Information Commissioner(

  1. Changes

We may amend this privacy policy at any time without notice. The current version published on our website applies. To the extent that the Privacy Policy is part of an agreement with you, if we update it, we will notify you of the change by email or other appropriate means.