Data Controller & DPO/CPD

Assos of Switzerland GmbH
Via Bresce, 1, San Pietro di Stabio, Canton Ticino, CH-6854 (Switzerland).
Email: privacypolicy@assos.com
Phone: +41 91 641 78 78
Email DPO: dpo@assos.com

Type of data processed

The personal data provided - or otherwise acquired in accordance with the legal and contractual provisions in force - inherent to, connected with and/or instrumental to the contractual relationship with the Data Controller, will be processed in accordance with the Federal Act on Data Protection (nLPD) and General Data Protection Regulation (GDPR) confidentiality obligations.

In particular, we will process:
Personal data: a) Company name; b) Tax Regulation Number; c) Personal identification data (name, surname, e-mail contact); d) Shipping Address; e) Billing Address; f) Additional e-mail contact for the invoicing; g) Name of other contacts and related e-mail addresses; h) Primary currency; i) Payment terms.
Data subjects: natural persons whose data is subject to processing.
Processing: any operation concerning personal data, regardless of the means and procedures adopted, namely, the collection, storage, use, review, communication, archiving or destruction of data.
Communication: i.e. making personal data accessible, for example by allowing access, transmission or publication.
Information will be synchronised with the Salesforce corporate CRM, where it will be used for the purposes indicated in the section below.

Purpose of processing and legal basis

Data Recipients

We may share your personal information with employees and/or personnel acting under the authority of the Data Controller (duly instructed to do so), as well as third parties bound to Data Controller by contractual relationship, for the purpose of fulfilling contractual obligations and fulfilling one or more of the aforementioned processing purposes. These third parties will process the data provided as independent data controllers or processors. Specifically, we may share the personal data collected with the following categories of recipients: a) subjects who provide services for the maintenance of the computer system used by Data Controller and telecommunications networks (including tools and e-mail); b) consultancy and assistance firms or companies {e.g., trustees); c) authorities responsible for compliance with legal obligations and/or provisions of public bodies, upon request; d) if personal data will be archived outside European Economic Area (EEA), the Data Controller will ask additional info about the respect of security warranties.

Data Subjects’ Rights

You have a number of rights in relation to your Data Protection Information Notice, which can be summarised in broad terms as follows:
(i) Right of access. You have the right to confirm with us whether your personal data is processed, and if it is, to request access to that personal data including the categories of personal data processed, the purpose of the processing and the recipients or categories of recipients. We do have to take into account the interests of others though, so this is not an absolute right, and if you want to request more than one copy we may charge a fee.
(ii) Right to rectification. You may have the right to rectify inaccurate or incomplete personal data concerning you.
(iii) Right to erasure (right to be forgotten). You may have the right to ask us to erase personal data concerning you.
(iv) Right to restriction of processing. In limited circumstances, you may have the right to request that we restrict processing of your personal data, however where we process data for the Processing Purposes we think that we have a legitimate interest in processing that day which may override a request that you make.
(v) Right to data portability. You may have the right to receive personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and you may have the right to transmit that data to another entity.
(vi) request the prohibition of specific processing of personal data and specific communication of personal data to third parties or the deletion or destruction of specific personal data;
(vii) if neither the correctness nor the inaccuracy of the personal data can be proved, request that a note be added to indicate the objection;
(viii) request that the rectification, destruction, blocking, especially communication to third parties, in addition to the note on the objection or ruling be communicated to third parties or published;
(ix) have the processing of personal data declared unlawful.

If you would like to exercise any of those rights, please:
• contact us using our Contact details below
• let Us have enough information to identify you
• let Us have proof of your identity and address, and
• let Us know the information to which your request relates.

Without prejudice to any other administrative or jurisdictional recourse, if he considers that the processing of his data violates the provisions of the DPA, he has the right to lodge a complaint with the Federal Data Protection and Transparency Authority (IFPDT).

How to contact the Data Controller / DPO-CPD

Assos of Switzerland GmbH
Via Bresce, 1, San Pietro di Stabio, Canton Ticino, CH-6854 (Switzerland).
All questions, comments and requests regarding this Privacy Notice should be addressed to privacypolicy@assos.com and tel. +41 91 641 78 78

The DPO (Data Protection Officer) has been appointed. All questions, comments and requests regarding any data protection issue should be addressed to: dpo@assos.com

Change to this Information notice

The Data Controller may change, modify, add or remove any part of this Privacy Policy at any time, unless it is necessary to obtain your consent where required. In order to facilitate the verification of any changes, the notice will contain an indication of the date on which the notice was updated.

Update Date: 08/11/2024