Privacy policy

In this Privacy Policy, we—Kathrin Michel Negotiation Excellence (hereinafter “we”, “us” or “our”)—explain how we collect and otherwise process personal data. This is not an exhaustive description; other privacy policies or general terms and conditions, participation conditions, and similar documents may govern specific circumstances. Personal data refers to all information relating to an identified or identifiable individual.

If you provide us with personal data of other individuals (e.g. family members, data of colleagues), please ensure that these individuals are aware of this Privacy Policy and only provide us with their personal data if you are permitted to do so and if such data is correct.

This Privacy Policy is designed to meet the requirements of the EU General Data Protection Regulation (“GDPR”), the Swiss Federal Act on Data Protection (“FADP”) and the revised Swiss Federal Act on Data Protection (“revFADP”). Whether and to what extent these laws apply depends on the individual case.

1. Controller / Data Protection Officer / Representative

The controller for the data processing activities described herein (unless otherwise specified in an individual case) is:

Kathrin Michel GmbH

Phone: +41 76 778 10 81
Email: info@kathrinmichel.ch

If you have any data protection concerns, you may contact us at the address listed above.

2. Collection and Processing of Personal Data

We primarily process the personal data we receive in the context of our business relationship with our customers and other business partners, or that we collect from users in the operation of our websites, apps, and other applications.

Where permitted, we also obtain data from publicly accessible sources (e.g. debt enforcement registers, land registers, commercial registers, press, internet) or receive such data from other companies, authorities, or third parties.

In addition to the data you provide directly, categories of personal data we receive from third parties may include information from public registers, information in connection with legal and administrative proceedings, data relating to your professional role and activities, correspondence and meeting records with third parties, credit checks (when conducting transactions directly with you), information provided by your acquaintances (e.g. family, advisors, legal representatives), compliance data (e.g. anti-money laundering, export restrictions), and usage data from our website (e.g. IP address, MAC address, device details, cookies, timestamps, pages visited, functions used, referring websites, location data).

3. Purpose of Data Processing and Legal Grounds

We primarily use collected personal data to fulfill our contractual obligations to customers and business partners, including purchasing products and services from suppliers and subcontractors, and to comply with legal obligations domestically and abroad.

If you work for one of our customers or business partners, your personal data may also be affected.

We may also process personal data for the following purposes, where we (and sometimes third parties) have a legitimate interest:

  • Providing and developing our services, products, websites, apps, and other platforms
  • Communication with third parties and handling their inquiries (e.g. job applications, media inquiries)
  • Market research, media monitoring
  • Advertising and marketing (including event organization), unless you object to the use of your data
  • Direct marketing and customer acquisition based on publicly available data
  • Enforcement of legal claims and defense in legal disputes or proceedings
  • Crime prevention and investigations (e.g. internal investigations, data analytics)
  • Ensuring operations and security of IT, websites, and platforms
  • Video surveillance, access control, visitor lists, and similar safety measures
  • Corporate transactions (e.g. sale or purchase of business units) and related data transfers

Where you have given consent (e.g. for newsletters or background checks), we process data based on that consent. You may withdraw your consent at any time, though this does not affect processing that occurred before the withdrawal.

4. Cookies / Tracking and Other Technologies

We typically use “cookies” and similar technologies on our websites to identify your browser or device. A cookie is a small file that is stored on your computer or mobile device when you visit our website.

We use both session cookies (deleted after your session) and persistent cookies (stored longer, e.g. to remember preferences). You can configure your browser to reject cookies or delete them early. Blocking cookies may limit website functionality (e.g. language settings, shopping cart).

We also include tracking elements in newsletters and marketing emails to determine whether and when you open them. You can block these in your email client.

By using our website or consenting to receive marketing emails, you agree to the use of these technologies.

We use Google Analytics or similar services to analyze website use (non-personally). IP addresses are anonymized before transmission. Google does not receive personal data from us. However, if you are registered with the provider, they may link usage data to your account. These activities are the provider’s responsibility under their privacy policies.

We may also use social media plug-ins (e.g. Facebook, Twitter, YouTube, Pinterest, Instagram). These are inactive by default. If you activate them, the provider may collect data about your visit to our site. We receive no personal data from these providers.

5. Data Disclosure and Transfers Abroad

In the course of our business activities and in line with the purposes mentioned in section 3, we may disclose personal data to third parties. This includes:

  • Our service providers (including processors)
  • Dealers, suppliers, subcontractors, and business partners
  • Customers
  • Authorities and courts (domestic and foreign)
  • Media and the public (e.g. website visitors, social media users)
  • Competitors, industry organizations, associations
  • Potential buyers in corporate transactions
  • Other companies within our group
  • Parties in legal proceedings

Recipients may be located in Switzerland or anywhere in the world. You must assume that your data could be transferred to countries with inadequate data protection laws (e.g. the U.S.).

In such cases, we require the recipient to comply with applicable privacy laws (e.g. using EU Standard Contractual Clauses: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj), unless another legal exemption applies.

6. Retention Period for Personal Data

We store your personal data as long as necessary for contractual obligations or legal purposes. This includes the duration of the business relationship and beyond, in accordance with retention and documentation obligations.

Data may be stored longer if legal claims are possible or legitimate business interests require it (e.g. evidence purposes).

Once data is no longer required, it is deleted or anonymized where possible. Operational data (e.g. system logs) is typically retained for 12 months or less.

7. Data Security

We take appropriate technical and organizational measures to protect your personal data, including internal policies, training, IT and network security solutions, access controls, encryption, and pseudonymization.

8. Obligation to Provide Personal Data

You must provide the personal data necessary to enter and maintain a business relationship and meet contractual obligations. Without such data, we cannot enter into or fulfill contracts with you (or the party you represent).

Certain website functionalities also require minimal data (e.g. IP address).

9. Profiling

We may partially use automated processing (profiling) to evaluate personal aspects, e.g. for targeted communication and marketing.

We generally do not use fully automated decision-making (as defined in Art. 22 GDPR). If we do, we will inform you separately as required.

10. Rights of the Data Subject

You have rights under applicable data protection laws, including the right to access, rectify, delete, restrict processing, object (especially to direct marketing), and request data portability.

We may invoke legal exceptions (e.g. legal retention, overriding interest, legal claims). If fees apply, we will notify you in advance.

You may withdraw consent at any time (see section 3). Please note that exercising your rights may conflict with contractual terms, possibly resulting in contract termination or costs.

Proof of identity may be required (e.g. a copy of your ID). To exercise your rights, contact us as per section 1.

You also have the right to file a complaint with a supervisory authority. The competent authority in Switzerland is the Federal Data Protection and Information Commissioner (https://www.edoeb.admin.ch).

11. Changes

We may update this Privacy Policy at any time without notice. The current version is published on our website. If the policy is part of an agreement with you, we will inform you of any updates via email or other appropriate means.