Protection of your private sphere
The Baloise Group takes great care to protect your privacy when processing your personal data. The Baloise Group processes your personal data in compliance with the Swiss Data Protection Act and the European General Data Protection Regulation (EU-GDPR) and in accordance with the following principles:
Privacy is an important issue for Baloise in the light of the rapid, progressive digitalisation of the globe. Baloise undertakes to process your personal data in strict confidentiality and in compliance with the latest laws on data protection. Protecting your privacy and data against unauthorised third-party access, loss or misuse is a top priority for us.
2. Body responsible and contact details
The body responsible for the data processing described here is:
Baloise Insurance Ltd, Aeschengraben 21, 4002 Basel, firstname.lastname@example.org (hereinafter "Baloise" or "we").
If you have any questions, please contact our data protection officer, Heinrich Zittel (lic. iur.), at email@example.com. He is also available to receive information requests, suggestions and complaints.
3. Use and transmission of personal data for specific purposes only
Your data is used only for the purpose that is specified when it is collected, for which you have given your consent or that is required by law. We oblige our employees to maintain confidentiality, observe data protection law and – in the case of banking services – to maintain banking secrecy.
4. Handling personal data
Personal data comprises all information relating to identified or identifiable natural persons. A natural person is deemed to be identifiable if they can be identified directly or indirectly, particularly by means of assignment to a characteristic, e.g. their name, email address, or telephone number. Data on an individual’s predilections such as hobbies or club memberships as well as preferences regarding other websites also counts as personal data. Data that is anonymised or aggregated and can no longer be used to identify a particular person is not deemed to be personal data. “Processing” refers to any handling of your data, regardless of the means and procedures used, including, in particular, the acquisition, retention, use, alteration, disclosure, archiving or destruction of the data.
5. Server logfiles
Baloise uses server logfiles to capture data about your visit to the website. This access data includes:
name of the website you accessed,
the date and time of your visit,
the volume of data transferred,
notification of successful access,
your browser type and version,
your operating system,
the referrer URL (the previous page visited),
the IP address and the requesting provider.
Baloise uses this logged data for analytical purposes only to ensure the operation and security of our IT systems, and to optimise the website within the meaning of Art. 6 (1) (f) GDPR in order to provide you with a secure and trouble-free user experience at all times. Baloise does, however, reserve the right to verify logged data subsequently, should it have concrete grounds to suspect that the website has been used unlawfully. The server logfiles are deleted after a period of 30 days.
6. Contact form and email
The legal basis for the processing of your data when you contact us by email is Art. 6 (1) (f) GDPR. We only process your personal data in order to process your enquiry. This is where our required legitimate interest in processing the data lies. If the aim of the email contact is to enter into a contract, Art. 6 (1) (b) GDPR provides an additional legal basis for processing the data.
On the Baloise websites you have the option to subscribe to our newsletter. If you do so, the data you provide (title, last name, first name and email address) is transmitted to us from the data entry screen. We then send you a confirmation email to verify your consent (double opt-in process). The legal basis for this processing of your data is Art. 6 (1) (a) GDPR. The data transferred by you in connection with the newsletter registration may be relayed for individual targeted advertising within the Group companies.
You have the right to revoke your consent at any time. If you no longer wish to receive our newsletter you may unsubscribe via the link provided in each issue of the newsletter. If consent is withdrawn, this will not affect the legality of the processing carried out based on the consent up until the date of its withdrawal.
We would also like to make you aware that you can adjust cookies on an individual basis in your browser settings. However, blocking all cookies there may result in this and other websites no longer being displayed correctly.
If you want a comprehensive and up-to-date overview of all third-party access to your internet browser, we recommend that you install a browser plugin created for this purpose. You can also configure your computer to issue a warning whenever a cookie is sent. Alternatively, you may elect to disable all cookies. To do this, you can change the browser settings in any browser you use and on any device you use. Each browser is slightly different in its handling of these settings. You should therefore consult the Help menu in your browser to find out how to change your cookie settings. If you disable cookies, the result may be that you do not have access to numerous applications that make the sites and apps more efficient and that some of our services no longer work for you.
9. Integration of third-party services and content
Our website content consists, to some extent, of third-party content such as YouTube videos, maps from Google Maps, RSS feeds or images from other websites. This always requires that the providers of such content (hereinafter referred to as “third-party providers”) identify your IP address. Without this IP address, the third-party providers cannot send the content to your browser. We only integrate this content into our website to provide you with useful information, or to make a process easier for you without additional data processing. The legal basis for this data processing can be found in Art. 6 (1) (f) GDPR. Our legitimate interest lies in the fact that we are able to offer you this content as a service. In addition, certain services are only activated as described above when you actively select them. In these cases data processing is based on Art. 6 (1) (a) GDPR. If you do not want this content, you can select the appropriate settings in your browser settings. We make every effort to use content from providers that use the IP address only for the delivery of such content. However, we cannot influence whether or not third-party providers use the IP address for statistical purposes, for example. We undertake to notify users if we become aware of any such usage.
10. Analysis of use behaviour and other services
10.1. Google Analytics and Tag Manager
The following data may be stored and analysed anonymously and exclusively for statistical purposes:
the pages visited and the sequence in which they are accessed,
the operating system and browser used,
the date and time of the page views,
the address of the website visited directly beforehand, if your visit has been made via a direct link to us from there, and
information about the origin.
10.2. Google Places API
On certain websites we use Google Places API to make it easier for our users to perform place-related searches and to fill in address details automatically. The data that is collected through a search using Google Places API is subject to Google’s terms and conditions of use. Google processes data on the user’s use of Places. Please click here for further information.
10.3. Google AdWords Conversion Tracking and Google Remarketing
We use Google AdWords Conversion Tracking and Google Remarketing for advertising purposes.
10.4. DoubleClick by Google
11. Social media and advertising
11.1. Facebook remarketing / retargeting
12. Consent / revocation of consent regarding data collection and storage
By using this website, you agree to the processing of the data collected about you in the manner described and for the stated purposes.
Regarding the revocation of consent to data collection and storage, please refer to your rights under clause 15 below and the deactivation possibilities listed for the individual services or in general for browser settings in clause 8 above.
13. Data security
Please note that the internet is a global, open network. When you transmit data over the internet, you always do so at your own risk.
Any personal data transmitted by you is protected by means of state-of-the-art encryption mechanisms using the latest security standards (Secure Socket Layer). Despite comprehensive technical and organisational security measures being taken, data may be lost, intercepted by unauthorised persons and/or manipulated. Baloise has implemented appropriate technical and organisational security measures to prevent such occurrences within the Baloise systems. Your computer, however, is beyond the reach of the Baloise IT security measures. It is therefore your responsibility, as user, to obtain information about the necessary security precautions and to take appropriate measures. Baloise is under no circumstances liable for any damage that may result from loss or manipulation of data.
14. Secure Socket Layer (SSL)
Secure Socket Layer (SSL) is a protocol for enabling secure data transmission via the internet. Most browsers support this procedure. SSL uses the public key method, in which data encrypted using a publicly accessible key can only be decrypted using a specific private key. Most browsers use a key or padlock symbol at the top of the screen to indicate whether the current connection is secure or not.
15. Your rights
If you wish to receive information about your personal data that is processed by us, you can do so by submitting to us your written request for information with an enclosed copy of your identity card or passport.
You may request that we rectify inaccurate data or complete data that are incomplete, or you can rectify or complete this yourself, to a certain extent, in the customer portal at any time.
You may also demand the deletion of your data, provided we are not required or authorised by applicable law or regulations to retain your data.
You have the right to request the restriction of the processing of your data, pursuant to the statutory requirements. In this case, apart from storage thereof and subject to the assertion of legal rights, we will not process your data further.
In all cases in which the data processing is based on your consent, you have the right to revoke this at any time. If consent is withdrawn, this will not affect the legality of the processing carried out based on the consent up until the date of its withdrawal. You may adjust your cookie settings to suit your requirements in our Cookie Preference Centre at any time.
In addition, you have the right to make a complaint to the responsible data protection supervisory authority.
You have the right to receive your data from Baloise in a structured, commonly used and machine-readable format, provided your data is processed using automated procedures and this processing is based on your consent or a contract.
You may communicate your objection to the processing of your data as legitimately undertaken by us on the basis of Art. 6 para. 1 (f) GDPR.
You can submit your requests to our data protection officer at firstname.lastname@example.org.
If we process your data for a purpose other than that for which the data was collected, we will inform you in advance about this other purpose in an appropriate manner.