Foundation Diet and Health

The best perspective for your health

The best perspective for your health

The best perspective for your health

The best perspective for your health

Data protection

Print

Privacy policy according to guidelines and regulations of the data protection basic regulation DSGVO of the EU:

The following privacy policy applies to the use of our online offer www.diet-health.info (hereinafter referred to as "Website" or "us").

We attach great importance to privacy. The collection and processing of your personal data takes place in compliance with the applicable data protection regulations, in particular the Basic Data Protection Regulation (GDPR) of the EU.

Responsible

Responsible for the collection, processing and use of your personal data within the meaning of Art. 4 No. 7 GDPR

Foundation Health and Nutrition Switzerland
Ernst Erb (Pres.)
Haltenriedstrasse 20
6045 Meggen, Switzerland

If you wish to object to the collection, processing or use of your data by us in accordance with this Privacy Policy as a whole or for individual measures, you can address your objection to the person responsible.

You can save and print this privacy policy at any time.

General purposes of processing

We use the following personal information for the purpose of operating the website and for our own analysis, e.g. through Google Analytics: cookies and IP. The analyzes are without names or data (IP) that would suggest persons. We can assign activities to registered members, but do not pass on such data.

What data we use and why

Theoretically, a hoster can always hold traffic, but he has no names to link to and is legally bound.

Hosting

Our hoster has made the commitment to keep our application and data only in Switzerland and to send them in encrypted form, which you can recognize at https: //.

The hosting services we use to provide the following services: infrastructure and platform services, computing capacity, storage and database services, security and technical maintenance services we use to operate the site.

In doing so, we or our hosting service provider processes inventory data, contact data, content data, contract data, usage data, meta and communication data of guests (website visitors) and members of our website based on our legitimate interests in an efficient and secure provision of our website in accordance with Art. 6 Para. 1 p. 1 f) GDPR in conjunction with i Art. 28 GDPR.

Access data

As usually every server system does, our system also collects information when you use this website. It automatically collects information about user behavior and interaction with us and registers data about your computer or mobile device - but not personally with you! We collect, store and use data about every access to our website (so-called server log files). Access data includes:

  • Name and URL of the retrieved file
  • Date and time of retrieval
  • transferred amount of data
  • Message about successful retrieval (HTTP response code)
  • Browser type and browser version
  • operating system
  • Referer URL (i.e. the previously visited page)
  • Websites that are accessed by the user's system through our website
  • Internet service provider of the user
  • IP address and the requesting provider

We use this log data without assignment to you or other profiling for statistical evaluations for the purpose of operation, security and optimization of our website, but also for the anonymous recording of the number of visitors to our website (traffic) and the extent and nature of Use of our website and services.

Should we once offer advertising, we could count on Clicks for billing purposes and communicate them without personal information or IP to the appropriate cooperation partner. Based on this information, we can provide location-based content, analyze traffic, troubleshoot and improve our services.

This also includes our legitimate interest in accordance with Art. 6 (1) sentence 1 f) of the DSGVO.

We reserve the right to retrospectively review the log data if, on the basis of concrete evidence, there is a legitimate suspicion of unlawful use. We store IP addresses in the logfiles if this is necessary for security purposes or for the provision of services or the billing of a service. We store IP addresses even if we have a specific suspicion of a crime in connection with the use of our website. We also save for logged in members the date of your last visit (for example, when registering, logging in, clicking links etc.).

Cookies

Like any Internet server, our system uses so-called session cookies to handle the traffic at all. A session cookie is a small text file that servers send when they visit a website and cache your system on your hard disk. The file contains a so-called session ID. Only then can different requests from your browser be assigned to the common session. Session cookies are deleted at the end of a session or when you close your browser.

In addition there are the so-called permanent (persistent) cookies. These are also small text files that put servers on your device. Depending on your preference, they will remain on your device and allow you to recognize your browser the next time you visit. This is the only way to offer a page in a user-friendly way - and deliver the selected language.

Our legitimate interest in the use of cookies in accordance with Article 6 paragraph 1 sentence 1 f) of the GDPR is to make our website more user-friendly, effective and secure.

The cookies store about the following data and information:

  • Log-in information
  • language settings
  • entered search terms
  • Information about the number of visits to our website and use of individual functions of our website.

By activating the cookie it gets an identification number. An assignment of your personal data to this identification number can not be established by our system. Your name, your IP address or similar data that would allow us to associate the cookie with you, we do not store in the cookie. Based on the cookie technology, we only receive pseudonymous information, for example, which pages a user has visited.

You can set your browser so that your system informs you in advance about the setting of cookies. So you decide whether in individual cases or in general on the acceptance of cookies. If not accepted, the functionality of the website is limited.

Each browser differs in the way it manages the cookie settings. This is described in the Help menu of each browser, which explains how to change your cookie settings. These can be found for the respective browser under the following links:

  • Chrome ™: http://support.google.com/chrome/bin/answer.py?hl=en&hlrm=en&answer=95647
  • Firefox ™ https://support.mozilla.org/en/kb/cookies-allow-and-recognize
  • Internet Explorer ™: http://windows.microsoft.com/en-US/windows-vista/Block-or-allow-cookies
  • Safari ™: https://support.apple.com/kb/ph21411?locale=en_US
  • Opera ™: http://help.opera.com/Windows/10.20/en/cookies.html

Data to fulfill our contractual obligations

For members only, we have personal information that we need to fulfill our contractual obligations, such as name, address, e-mail address. The collection of this data is required for membership.

The deletion of the data takes place after expiry of the warranty periods and legal retention periods. Any data associated with a user account (see below) will in any case be retained for the time this account is maintained.

The legal basis for the processing of this data is Art. 6 (1) sentence 1 b) GDPR, because this data is needed so that we can fulfill our contractual obligations to you.

Member account and employees

You can create a member account (user account) on our website. If you wish this, we need the personal data requested during the login. Employees anyway need a user account in order to be able to act at all. When logging in later, the system only needs your dial-in data, including the password you have selected.

For the re-registration, we collect master data (e.g., name, address), communication data (e.g., e-mail address), and dial-in data (user name or e-mail address and password).

In order to ensure your proper registration and to prevent unauthorized sign-ups by third parties, you will receive an activation link by email after your registration in order to activate your account. Only after registration has been completed, we will permanently store the data transmitted by you in our system.

You can have a once created user account deleted by us at any time for free. A text message to the contact details referred to in point 1 is sufficient. So that we do not receive SPAM, you will find our email address for this on your member profile sheet. At your request we delete your stored personal data as far as we do not have to save due to legal storage requirements. Your uploads will remain and we will leave them in public, including a personal photo. You accept that in advance in the terms of admission. Reason: The whole website consists only of content uploaded by members!

We can reach members directly via email, but we do not pass on any email addresses and send a maximum of three emails per year as member information if you do not request a newsletter. We are entitled to irretrievably delete all user data stored during the term of the contract.

The legal basis for the processing of this data is your consent in accordance with Art. 6 (1) sentence 1 a) GDPR.

Newsletter

To register for a (possibly future) newsletter, we call the guest membership - with more one-sons than one guest - we need the data requested in the registration process. Minimum is an email address. The registration for the newsletter is logged. After registering, you will receive a message on the specified email address in which our system asks you to confirm the registration ("Double Opt-in"). This is necessary so that third parties can not register with their email address.

You can always revoke your consent to receive the newsletter and thus unsubscribe from the newsletter.

We only save the registration details as long as we need them for the newsletter. The logging of the application and the shipping address are stored as long as there was an interest in the proof of the originally given consent, as a rule these are the limitation periods for civil claims.

Legal basis for sending the newsletter is your consent acc. Art. 6 (1) sentence 1 a) in conjunction with Art. 7 DSGVO in conjunction with § 7 (2) no. 3 UWG. The legal basis for logging the application is our legitimate interest in proving that we are shipping with your order.

Of course, you will find an unsubscribe link in every newsletter.

E-mail contact

When you contact us (eg via contact form or e-mail), we process your details for the processing of the request as well as for the case that follow-up questions arise.

If the data processing takes place for the execution of pre-contractual measures, which take place at your request, or, if you are already our customer, for the execution of the contract, the legal basis for this data processing is Art. 6 (1) p. 1 b) GDPR.

We process further personal data only if you consent to it (Article 6 (1) sentence 1 a) GDPR) or we have a legitimate interest in the processing of your data (Article 6 (1) sentence 1 f) GDPR) , A legitimate interest lies z. For example, responding to your email.

Google Analytics

We use Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called "cookies", text files that our program stores on your computer. This allows an analysis of the use of the website. The information generated by the cookie about the use of this website by the site visitors usually go to a Google server in the US and are stored there.

This also includes our legitimate interest in accordance with Art. 6 (1) sentence 1 f) of the DSGVO.

Google has submitted to the Privacy Shield Agreement between the European Union and the United States and certified. As a result, Google agrees to comply with the standards and regulations of European data protection law. Further information can be found in the following linked entry: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.

We have activated IP anonymization on this website (anonymizeIp). This will shorten Google's IP address for users within Member States of the European Union or other parties to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and the reduction will take place there. Google uses this abridged information in our order to evaluate the use of the website.

The IP address provided by Google Analytics as part of Google Analytics does not expressly aggregate Google with other Google data. You can prevent the storage of cookies by a corresponding setting of your browser software; However, please be aware that if you do this you may not be able to use the full functionality of this website.

In addition, you can prevent the transmission of the data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading the browser plug-in available under the following link and install: http://tools.google.com/dlpage/gaoptout?hl=en.

As an alternative to the browser plug-in or within browsers on mobile devices, you can click on the following link to set an opt-out cookie that will prevent Google Analytics from entering this site in the future (this opt-out cookie only works in this browser and only for this domain, delete the cookies in your browser, you must click this link again): [deactivate Google Analytics]

Google advertising

We reserve the right to place Google Ads (adSense) in order for the Foundation to fund web activities.

Google Double Click is an offer from Google LLC. (Www.google.de).
Google LLC is headquartered in the US and is certified under the EU-US Privacy Shield. A current certificate can be viewed here. Under the agreement between the US and the European Commission, the latter has established an appropriate level of data protection for companies certified under the Privacy Shield.

You can disable the DoubleClick cookie through this link. In addition, you can inform yourself about the setting of cookies and make adjustments to the Digital Advertising Alliance. Finally, you can set your browser so that you are informed about the setting of cookies and individually decide on their acceptance or exclude the acceptance of cookies for specific cases or in general. Failure to accept cookies may limit the functionality of our website.

Social Media PlugIns

We reserve the right to display social plug-ins from Facebook, Twitter and / or Google+ using the Shariff solution. This is also called social buttons of social networks.

This serves to safeguard our legitimate interests, which predominate in the context of a weighing up of interests, in the optimal marketing of our offer pursuant to Art. 6 (1) sentence 1 lit. f DSGVO. To increase the protection of your data when visiting our website, these buttons are not fully integrated as plugins, but only by using an HTML link in the page. This integration ensures that when you visit a page of our website that contains such buttons, there is no connection to the servers of the provider of the respective social network.

If you click on one of the buttons, a new window of your browser opens and calls up the page of the respective service provider on which you can enter (for example, after entering your login data). press the Like or Share button.

Purpose and extent of the data collection and the further processing and use of the data by the providers on their pages as well as a contact option and your related rights and settings options to protect your privacy, please refer to the privacy policy of the provider.

http://www.facebook.com/policy.php
https://twitter.com/privacy
http://www.google.com/intl/de/+/policy/+1button.html

Youtube Video Plugins

We offer videos from YouTube. This is called "embedden". This content is provided by Google LLC ("Provider").
Youtube belongs to Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google").

For videos from Youtube that are included on our site, the advanced privacy setting is enabled. This means that YouTube does not collect information from web site visitors unless they are playing the video. The integration of the videos serves the preservation of our legitimate interests, which predominate in the context of a weighing up of interests, in an optimal marketing of our offer in accordance with Art. 6 (1) sentence 1 lit. f DSGVO.

For the purpose and scope of the data collection and the further processing and use of the data by the providers as well as their rights in this regard and setting options for the protection of your privacy, please refer to the privacy policy of Google

 www.google.com/intl/de/+/policy/+1button.html.

Google Fonts

We incorporate fonts ("Google Fonts") from Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection: www.google.com/policies/privacy. Opt-Out: https://adssettings.google.com/authenticated.

Google ReCaptcha

We bind the bots detection (SPAM) function, e.g. when entering into online forms ("ReCaptcha") of the provider Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection: www.google.com/policies/privacy. Opt-Out:https://adssettings.google.com/authenticated.

Storage time

Unless specifically stated, we store personal data only as long as necessary to fulfill the purposes pursued.

In some cases, the legislator provides for the retention of personal data, for example in tax or commercial law. In these cases, we will only store data for these legal purposes, but will not process them otherwise and delete them after expiration of the legal retention period.

Your rights as a person affected by the data processing

Under applicable law, you have various rights to your personal information. If you would like to assert these rights, please send your request to the address specified in section 1 by mail, clearly identifying your name.

Below is an overview of your rights.

Right to confirmation and information

You have the right to clear information about the processing of your personal data. The member profile sheet is used for this purpose, on which your stored personal data plus your activities are logged and can be viewed by you at any time. You can also change, delete or supplement your personal data (except name, first name and state) at any time.

Automated decision-making including profiling according to Art. 22 para. 1 and 4 GDPR does not take place.

Should we have to transfer personal data to a third country or to an international organization, you have the right to be informed about the appropriate guarantees in accordance with Art. 46 GDPR in connection with the transfer.

Right to rectification

You have the right to demand that we correct and, if necessary, complete your personal data.

In detail:

You have the right to demand that we correct your incorrect personal data. Taking into account the purposes of processing, you have the right to request the completion of incomplete personal data, including by means of a supplementary statement.

Right to cancellation ("right to be forgotten")

In a number of cases, we are required to delete your personal information.

In detail:

According to Art. 17 (1) GDPR, you have the right to request that you delete personal data concerning you without delay and we are obliged to delete your personal data immediately, if one of the following reasons applies:

The personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
They revoke their consent, on which the processing was based on Art. 6 (1) sentence 1 a) GDPR or Art. 9 (2) (a) GDPR, and there is no other legal basis for the processing.
In accordance with Art. 21 (1) GDPR, you object to the processing and there are no prior justifiable grounds for processing, or you object to the processing in accordance with Art. 21 (2) GDPR.
The personal data was processed unlawfully.
The deletion of personal data is necessary to fulfill a legal obligation under Union or national law.
The personal data we collected in relation to information society services offered pursuant to Art. 8 para. 1 GDPR.
If we have made the personal data public and if we are obliged to delete it pursuant to Art. 17 (1) GDPR, we shall take appropriate measures, including technical ones, for data controllers who are responsible for the personal data, taking into account the available technology and the implementation costs Process Data, informing you that you have requested deletion of any links to such personal information or copies or replications of such Personal Information.

Right to restrict processing

In a number of cases, you have the right to ask us to restrict the processing of your personal data.

In detail:

You have the right to request that we restrict processing if one of the following conditions is met:

  1. if you dispute the accuracy of the personal data concerning you for a period of time that allows us to verify the accuracy of the personal data;
  2. the processing is unlawful and you refused to delete the personal data and instead have requested that the use of the personal data be restricted;
  3. we no longer need the personal data for the purposes of processing, but you need the data to assert, exercise, or defend legal claims; or
  4. you object to the processing pursuant to Art. 21 Section 1 GDPR and it has not yet been established whether the legitimate reasons of the Foundation outweigh your own reasons.

Right to data transfer

You have the right to receive, transmit, or have us transmit machine-readable personal data concerning you.

Specifics:

You have the right to receive the personal data concerning you that you have provided to us in a structured, common, and machine-readable format. In addition, you have the right to communicate this data to another person responsible without being hindered by us, provided that

  1. the processing is based on a consent pursuent to Art. 6 Section 1 sentence 1a) GDPR or Art. 9 Section 2a) GDPR, or on a contract pursuant to Art. 6 Section 1 sentence 1b) GDPR and
  2. processing is carried out using automated procedures.

Right of objection

You also have the right to object to a legitimate processing of your personal data by us if this is based on your particular situation and our interests in the processing do not outweigh.

In detail:

You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data on the basis of Art. 6 Section 1 sentence 1e) or f) GDPR; this also applies to profiling based on these provisions. We will no longer process your personal data unless we can prove compelling grounds for processing worthy of protection that outweigh your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims.

In the event that we should ever engage in direct advertising, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is connected with such direct advertising. We include this passage only because we are required to do so, but we do not plan to conduct any direct advertising, unless the Foundation could not financially survive without it.

You have the right, for reasons related to your particular situation, to object the processing of your personal data for scientific or historical research or statistical purposes pursuant to Art. 89 Section 1 GDPR, unless the processing is necessary for the performance of a task in the public interest.

Automated decisions in individual cases including profiling

You have the right not to be subject to any decision based solely on automated processing — including profiling — that has any legal effect on you or significantly affects you in a similar manner.

There is no automated decision-making on the basis of the personal data collected.

Right to revoke consent under data protection law

You have the right to revoke your consent to the processing of personal data at any time.

Right of appeal to a supervisory authority

You have the right to appeal to a supervisory authority, in particular, in the member state where you are living, at your place of work, or at the place where the alleged infringement occurred, if you consider that the processing of your personal data is unlawful.

Data security

We make every effort to ensure the security of your data within the framework of the applicable data protection laws and technical possibilities.

Our systems transmit your personal data encrypted. This also applies to the member login. We use the SSL (Secure Socket Layer) coding system, but would point out that data transmission over the Internet (e.g., email communication) can have security gaps. It is not possible to protect such data completely against access by third parties.

To secure your data, we maintain technical and organizational security measures in accordance with Art. 32 GDPR, which we continually adapt to the state of the art.

Furthermore, we do not guarantee that our services will be available at certain times as we cannot rule out disruptions, interruptions, or failures. The servers we use are backed up regularly and carefully.

Disclosure of data to third parties

In principle, we use your personal data only within our company.

If and to the extent that we involve third parties in the fulfillment of contracts (such as logistics service providers), these partners receive personal data only to the extent to which is necessary for the corresponding service.

In the event that we outsource certain parts of our data processing (order processing), we contractually require processors to use personal data only in accordance with the requirements of data protection laws and to protect the rights of the person concerned.

A data transfer to places or persons outside Switzerland or the EU apart from the case mentioned in this declaration in section 4 does not take place and is not planned.

PayPal

An exception here are possible payments to us by PayPal. The transmission of personal data to this company only takes place within the framework of the necessity to fulfill the contract.

In addition, PayPal offers the option of processing virtual payments via credit cards if a user does not have a PayPal account. A PayPal account is managed via an email address, which is why there is no classic account number. PayPal makes it possible to trigger online payments to third parties or to receive payments. PayPal also acts as a trustee and offers buyer protection services.

 Pay Pal’s European operating company is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22–24 Boulevard Royal, 2449 Luxembourg, Luxembourg. 
You can view Pay Pal’s current Privacy Statement by going to https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_DE

If you make a payment via PayPal, the system automatically transmits your data to PayPal. By selecting this payment option, you consent to the transmission of personal data necessary for the processing of the payment.

The personal data transmitted to PayPal usually includes the following: first name, last name, address, email address, IP address, telephone number, and cell phone number, as well as any other data necessary for payment processing.

Data protection officer

If you have any questions or concerns about data protection, please contact our data protection officer:

Foundation Diet and Health
Ernst Erb (President)
Haltenriedstrasse 20
6045 Meggen, Switzerland

Print