top of page

Privacy Policy

according to EU Regulation 2016/679 – GDPR (EU) and nFADP (CH).

This page describes how to manage the site in relation to the processing of personal data of the users.

Straintest LLC, whose registered office is in Hagenholzstrasse 62, 8050 Zürich (CH) and VAT number CHE-205.568.160 MWST (under the term "Controller"), as data controller, informs you, pursuant to new Act on Federal Data Protection (nFADP) and EU Regulation no. 2016/679 (later abbreviated to "GDPR") that your data will be processed in the following ways and for the following purposes:

 

A. Object of the Processing

The Controller processes personal identification data (such as name and surname, telephone number, e-mail address - later we will refer to them with the terms "personal data" or even "data") that you have communicated.

 

B. Purpose of the treatment

Your personal data will be used:

  1. Without your express consent, as indicated in article 6 letter. b), e) GDPR (and in article 31 letter a. ,b., d., e. nFADP), for the following Service Purposes:

    • To conclude the contracts for the services of the Controller;

    • To fulfill the pre-contractual, contractual and tax obligations deriving from the existing obligations between the parties;

    • To fulfill the obligations established by law, by a regulation, by community legislation or by an order of the Authority (such as for anti-money laundering);

    • To exercise the rights of the Controller, for example the right to defense in court;

  2. Only with your specific and distinct consent (article 7 GDPR), for the following Marketing Purposes:

    • To send via e-mail, mail and/or sms and/or telephone contacts, newsletters, commercial communications and/or advertising material on products or services offered by the Controller and detection of the degree of satisfaction on the quality of the services;

    • To send via e-mail, mail and/or sms and/or telephone contacts commercial and/or promotional communications of third parties.

​

C. Processing methods

The processing of your personal data is carried out by the operations indicated in article 4 n. 2) GDPR (article 5 letter d. nFADP) and more precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, limitation, communication, cancellation and destruction of data.

Your personal data are processed either in paper form and/or automated form.

The Data Controller will process the personal data for the time necessary to fulfill the aforementioned purposes and in any case for no more than 10 years from the termination of the relationship between the parties and no later than 2 years from the collection of data for the Marketing Purposes.

​

D. Data Access

Your data may be made accessible, for the purposes referred to in point B., to employees and collaborators of the Data Controller, in their capacity as persons in charge and/or internal processing managers and/or system administrators.

​

E. Communication of data

No data deriving from the web service (therefore navigation data specified above and cookies) is communicated or spread (save communication to judicial or police bodies if necessary).

Without the need for express consent, see article 6 lit. b) and c) GDPR, the Data Controller may communicate your data for the purposes referred to in point B.1 to Supervisory Bodies, Judicial Authorities, insurance companies for the provision of insurance services, as well as to all parties to whom the communication is mandatory by law for the completion of the aforementioned purposes. These subjects will treat the data in their capacity as independent data controllers.

​

F. Data transfer

Personal data are stored on servers located in Eschborner Landstraße 100, 60489 Frankfurt am Main, Germany, within the European Union.

​

G. Nature of the provision of data and consequences of refusal

The provision of data for the purposes referred to in point B.1 is mandatory. In their absence, we can not guarantee the Services of point B.1.

The provision of data for the purposes referred to in point B.2 (marketing purposes) is optional. You can therefore decide not to give any data or to deny, at a later date, the right to process data previously provided: in this case, you will not receive newsletters, commercial communications and advertising material related to the Services offered by the Owner. However, you will continue to be entitled to the Services referred to in point B.1.

​

H. Rights of the interested party

As an interested party, you have rights as per articles 15-21 GDPR (articles 25 and 32 nFADP), i.e. right of access, right of rectification, right to cancellation ("right to be forgotten"), right of limitation of processing, right to data portability, right of opposition, as well as the right to complaint to the Authority as in articles 25–27 nFADP.

It should be noted that the right of opposition of the interested party for direct marketing purposes through automated methods extends to the traditional ones and that in any case the possibility remains for the interested party to exercise the right of opposition even partially. Therefore, the interested party can decide to receive only communications using traditional methods or only automated communications or none of the two types of communication.

​

I. How to exercise rights

You can at any time address the rights by sending an e-mail to info@straintest.co.

​

L. Proposal for a complaint

The interested party has the right to lodge a complaint with the Supervisory Authority of the receiving State.

​

M. Automated decision-making processes

The Data Controller does not process treatments consisting of automated decision-making processes.

​

O. Owner, manager and agents

The Data Controller is a Straintest LLC, whose registered office is in Hagenholzstrasse 62, 8050 Zürich (CH).

The updated list of data processors and data processors is kept at the registered office of the Data Controller.

 

 

Last update: 06.18.2024

bottom of page