Zum Inhalt springen
image decription Broschüre
herunterladen

Privacy Policy

 

1. Controller for Data Processing

The controller responsible for processing your personal data (hereinafter “Controller”) is:

Chrono Immobilien AG
Hinterbergstrasse 18
6312 Steinhausen

You can contact us at any time regarding data protection matters via our contact form or through any other communication channels.

2. General Information

With this privacy policy, the Controller informs you which personal data is processed, how, where and for what purpose, both in connection with the Controller’s services and products and with respect to the website.

The Controller only processes personal data lawfully and in compliance with the Swiss Federal Act on Data Protection (FADP) and—where applicable—the European General Data Protection Regulation (GDPR). In this context, the Controller always implements the necessary technical and organisational security measures to protect users’ personal data.

Through the project website presented by the Controller (hereinafter “Website”), the building project or marketing object is presented in detail. In principle, visiting or using the Website is possible without providing personal data. However, during a user’s visit to the Website, the Controller will necessarily collect and process certain technical data that is required for the operation of the Website. With this privacy policy, the Controller informs users about the type, scope and purpose of the collected and processed data, as well as about their legally entitled rights.

3. Categories of Data

Primarily, personal data is processed as part of the marketing process. Consequently, personal data is collected from prospective buyers and tenants as far as it is required for the marketing or rental process or for concluding sales and rental contracts. By providing personal data, the data subjects (typically prospective buyers or tenants) consent to the data processing. In the marketing or rental process, personal data may also be obtained from third parties, such as from credit reports. Affected persons will be informed appropriately in the rental process about the source of such obtained personal data.

In principle, it is also possible that the Controller processes additional data within the framework of legal requirements:

  • Email address, first name, last name, title, address, telephone number, age, gender, nationality, account information, payment information, payment history.
  • Property data; participation in events and webinars; data obtained from users through use of certain services offered on our Website (e.g., contact enquiries, newsletter mailings, tenders, webinars, and market price determination of real estate).
  • User account information such as username, password, user account number.
  • Contract data such as contract content, type of products and services, applicable terms and conditions, contract start, contract duration.
  • Personal data transmitted by the data subject’s internet browser each time they access the website and stored in log files. This data includes: IP address of the accessing computer; name of the accessed page; date, time, duration and frequency of access; URL from which the user accessed the page; amount of data transferred; status code for successful access; session ID number; cookie information; browser settings; search terms; shopping cart contents; clicks on content; referring internet page.

4. Purpose of Processing and Legal Basis

The Controller processes personal data only lawfully. Data processing takes place for the following purposes, with the respective legal basis indicated in parentheses:

  • Fulfilment and performance of contractual or legal obligations, in particular to combat fraud and misuse (contract performance and legitimate interest in preventing damage and complying with Swiss legal requirements).
  • Debt collection (legitimate interest in enforcing owed payments and complying with Swiss legal requirements).
  • Verification of access rights and management of user accounts (legitimate interest in customer satisfaction, competitiveness and compliance with Swiss legal requirements).
  • Development and maintenance of the customer relationship (legitimate interest in customer satisfaction and competitiveness).
  • Communication and information about updates or changes to our offers or events, as well as about adjustments to our terms and conditions, privacy policies, and our specifications for how you are permitted to list on our portals and websites (legitimate interest in customer satisfaction, competitiveness and compliance with Swiss legal requirements).
  • Marketing purposes by us and third parties, namely all promotional measures including newsletters, telephone, online advertising, SMS and push notifications for market research, conducting analyses and surveys, as well as for statistical purposes (legitimate interest in carrying out marketing measures).
  • Evaluation of user behaviour to design and improve offerings (legitimate interest in customer satisfaction and competitiveness).
  • Initiation of contractual relationships with third parties (legitimate interest in competitiveness).

The legal basis for processing purely visitor data of the website is the pursuit of a legitimate interest of the Controller (Art. 31(1) FADP / Art. 6(1)(f) GDPR). This interest primarily consists of ensuring a secure and functional website, as well as the integrity, confidentiality and availability of the data processed via the website. Furthermore, the Controller has a legitimate interest in efficient usage and quality analysis of website operations.

5. Contractual Relationship

Within the framework of a contractual relationship, we in particular process the following personal data:

Customer data and data for managing the customer relationship, such as first name, last name, address, telephone number, contact persons, position and title, associated company, industry, any cross-connections, background information from public sources (e.g., the commercial register), referring persons, content of enquiries and contracts, as well as other information related to the business relationship.

In particular, in connection with the services to be provided under the contractual relationship, we process property, financial and contact data transmitted by the customer. This is often also possible through third parties engaged for this purpose (see Section 7), based on respective agreements.

Furthermore, within the contractual relationship, we process data such as communications with the customer, authorities, and third parties; consulting documentation; information that we create in the course of the contract; information entrusted to us by parties involved in the contractual relationship; performance and billing data such as details of the services provided and billed, invoice data, performance records, invoices, payments, bank details, etc.

In addition, other information, for example in connection with newsletters, event participation, and further information provided to the Controller by your customers, is processed.

6. Contact Form

You have the option to contact the Controller via the published email address or the contact form and, in particular, to express your interest in properties or to apply for properties. The personal data voluntarily submitted in this way will be stored automatically and processed for the purpose of contacting you.

The processing of data entered into the contact form or transmitted by email is therefore carried out solely on the basis of your consent. There is a legitimate interest in data processing (Art. 6(1)(a) GDPR). You can withdraw this consent at any time. A simple email notification (e.g., to datenschutz@markstein.ch) is sufficient for this. The lawfulness of the data processing carried out up to the point of withdrawal remains unaffected by the withdrawal.

The data you enter in the contact form will remain with us until you request deletion, withdraw your consent to storage, or the purpose for data storage ceases to apply (e.g., after your enquiry has been fully processed). Mandatory legal provisions—especially retention periods—remain unaffected.

7. Cooperation with Third Parties

In the course of the marketing or rental process, we cooperate with various external partners, in particular the companies of the Markstein Group as marketers. These service providers act as data processors under the FADP and the GDPR. Disclosure of personal data to such service providers takes place for the purpose of fulfilling the marketing or rental process.

By reason of the consent granted by the data subject as part of the real estate search profile within the marketing or rental process, the Controller is entitled to forward the collected data of interested parties (e.g., contact details, interest in dwelling sizes, maximum gross rent, etc.) to the companies of the Markstein Group for advertising and other comparable data processing. Such data processing need not be related to the respective real estate project of the Controller. This processing may continue beyond the duration of the respective real estate project.

The companies of the Markstein Group may use contact data or other data to inform the interested parties of similar or other offers directly by Markstein AG and to send newsletters, event invitations or similar communications in accordance with the provisions on the real estate search profile. For details, please refer to the Markstein Group’s privacy policy at www.markstein.ch/datenschutz.

Data subjects may unsubscribe from these services at any time and request deletion of their data.

8. Processing of Personal Data by Third Parties, Including Abroad

Data may be processed by contracted third parties or jointly with third parties, as well as processed or transmitted with the help of third parties. This includes, on the one hand, third parties whose services are used by the Controller (e.g., a cloud or CRM provider) and, on the other hand, third parties who process data jointly responsible or as independent controllers.

Such third parties are generally located in Switzerland and in the European Economic Area (EEA), but the Controller emphasises that data, in addition to being stored in Switzerland, may be exported to all countries, parts of the world, and possibly even to outer space, provided that an adequate level of data protection is ensured.

In countries where the law does not guarantee adequate data protection, data will only be transferred if data protection is ensured by other means, for example due to appropriate guarantees or certifications. Exceptionally, we may export personal data to countries without adequate or appropriate data protection if the special data protection requirements are met, for example explicit consent or a direct relationship with the conclusion or performance of a contract.

In the context of operating the Website, the Controller also uses certain technology service providers. Some of these have their registered office outside the EEA. In such cases, the Controller ensures that data transfers are subject to adequate safeguards. In particular, it is guaranteed that providers based in the USA are Privacy Shield certified. Otherwise, the Controller concludes standard contractual clauses recognised by the Swiss Federal Data Protection and Information Commissioner or approved by the EU Commission with these service providers (Art. 16 et seq. FADP / Art. 44 et seq. GDPR).

9. Retention Period

With regard to pure visitors of the website, the data processed in this context is stored as long as it is required for the proper display of the website. Personal data collected via the contact form will generally be stored only until the user’s query has been processed and the matter has been conclusively resolved. Afterwards, the processed personal data will be deleted. In general, further storage may occur in individual cases if required by law.

10. Use of Cookies, Tracking and Analytics Tools, as well as Plug-Ins and Other Third-Party Integrations

10.1 Cookies

The Controller uses cookies on its Website. Cookies play an important role in improving the user experience on our web pages. They make your visit easier, more pleasant, and more efficient by, for example, saving your settings and presenting you with personalised advertising. Cookies are small files that your web browser stores on the hard drive of your computer as soon as you visit our Website. Although our digital services can also be used without cookies, some features may be restricted without them.

By using our Website, cookies may capture information such as your IP address, visited pages, browser type, date, time, and similar data. This data normally does not allow us to directly identify you, unless you are logged into your user account.

Our cookies help us recognise you on repeat visits without identifying you personally—they recognise your device or browser. They also allow us to determine which pages or offers are accessed and how often, which areas are particularly popular, and how our web pages are used in general. Moreover, cookies facilitate navigation on our Website, allow access to protected areas, and save your preferences. They help us improve our services and make them safer and more efficient. In addition, we use cookies to present advertising that may correspond to your interests.

Our cookies also support the selection of online advertising tailored to your interests, thereby preventing the display of uninteresting advertisements. You have the choice whether you wish to receive targeted advertising or not.

Most web browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored or so that you are informed about new cookies. You also have the option of deleting cookies via your browser. Most of our cookies are temporary session cookies that are automatically deleted after the browser is closed. However, there are also permanent cookies that remain stored on your device after the browser session has ended.

Our web pages may also integrate third-party cookies that allow you to share content or inform others that you have accessed or commented on our content. The use of these cookies by third parties is subject to their privacy policies and is beyond our control. We recommend that you read the respective providers’ privacy policies to understand how their cookies function.

10.2 Plug-Ins and Other Third-Party Integrations

Our online services integrate various functionalities and systems of external providers, including but not limited to social media plug-ins such as Facebook, LinkedIn, YouTube and Twitter.

If you have an account with one of these providers, it may be possible for those providers to track and analyse your interactions with our online services. In this process, additional personal data such as your IP address, browser settings, and other relevant information may be transmitted to these external providers and stored there. When using a social login service, such as Facebook Connect, these providers may provide us with personal information such as your name, email address, and profile picture that they have stored about you. We have no influence on the collection and use of your personal data by these third parties and accept no responsibility or liability for it. Further details can be found in the linked information and in the privacy policies of the respective third-party providers.

10.3 Tracking and Analytics Tools

10.3.1 Google Analytics

The Controller uses Google Analytics on its Website, a web analytics service provided by Google (operator: Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). Web analytics captures data about users’ or visitors’ behaviour on websites, particularly from which website a user was referred, which subpages of a website are accessed, as well as the frequency and duration of the user’s visit. Google Analytics uses cookies stored on the user’s computer to enable the analysis and use of the website. Information generated by these cookies and other personal data, such as the IP address, may in principle be transmitted to a Google server in the USA. Users can generally block the use of cookies by setting their browser accordingly. However, this may lead to a limitation of the website’s functionality.

Further information on the collection, processing and use of personal data by Google can be found at https://policies.google.com/privacy.

10.3.2 Google Maps

The Controller uses Google Maps on its Website, an online map service provided by Google, for which Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is responsible within the European region. When using this service, data is stored, including the search terms entered, your IP address, as well as latitude and longitude coordinates. When using the route planner function, the entered start address is additionally stored. However, this data storage takes place on Google Maps’ own web pages. We can only inform you about this but have no influence on it. Since we have embedded Google Maps into our Website, Google sets at least one cookie (name: NID) in your browser. This cookie stores information about your user behaviour.

The information generated by the cookie about your use of this Website (including your IP address) may be transmitted to a Google server in the USA and stored there.

Further information on the collection, processing and use of personal data by Google can be found at https://policies.google.com/privacy.

10.3.3 Hyperlinks

The Controller may place so-called hyperlinks to other providers’ websites on its Website. By clicking on such a hyperlink, the user is redirected directly to the respective provider’s website. The Controller has no influence over whether this provider complies with the applicable data protection regulations. The Controller therefore cannot assume any responsibility for this. For information on the collection, processing and and storage of personal data, the user should contact the respective provider or controller of that website directly.

11. Electronic Communication

The transmission of information by electronic means (e.g., by email or via collaboration platforms) is generally associated with risks—particularly the risk of unauthorised third parties gaining knowledge of or manipulating the information, or of misdelivery. Such risks can be reduced by encrypted transmission, e.g., by encrypting email attachments or using a delivery platform with appropriate encryption.

Unless you object to unencrypted communication, the Controller assumes that, despite being aware of the risks, you at least tacitly authorise unencrypted communication.

The same applies to video conferences; the following system is used: Microsoft Teams. The provider’s terms of use and privacy conditions apply; you can find them at https://privacy.microsoft.com/de-de/privacystatement and https://www.microsoft.com/de-CH/servicesagreement/.

12. E-Newsletter and Postal Advertising

For users who register for the Controller’s newsletter, the data required for this purpose or otherwise communicated will be used to regularly send the Controller’s email newsletter based on consent (Art. 31(1) FADP / Art. 6(1)(a) GDPR).

Unsubscribing from the newsletter is possible at any time and can be done either by sending a message to the contact option described above or via a link provided in the newsletter. After unsubscribing, the email address will be deleted, unless the affected users have expressly consented to further use of their data or the Controller has reserved the right for further permitted data use that was disclosed in this policy.

In addition, the Controller reserves the right to use your first and last name as well as your postal address for its own advertising purposes, for example to send interesting offers and product information by post. This serves to preserve the Controller’s legitimate interest in advertising communication to its customers (pursuant to Art. 31(1) and (2) FADP / Art. 6(1)(f) GDPR).

Affected users can object to the storage and use of their data for these purposes at any time by sending a message to the contact option described above.

It is also noted here that third parties who receive personal data in accordance with this privacy policy—for example the Markstein Group—may use this data for email newsletters and postal advertising (see Section 7 above).

13. Rights of Data Subjects

Data subjects have the right to obtain information about the processing of their personal data (Art. 25–27 FADP / Art. 15 GDPR). Under the applicable legal provisions, they have the right to rectification, erasure or restriction of processing (Art. 32(1) and (2) FADP / Art. 16, 17 and 18 GDPR) and, where applicable, to change or withdraw their consent to data processing at any time. Furthermore, data subjects have the right to object to processing within the scope of legal requirements (Art. 32(2)(a) and (b) FADP / Art. 21 GDPR). Finally, under Art. 28(2)–(3) and Art. 29 FADP / Art. 20 GDPR, data subjects are entitled to receive their personal data in a structured, commonly used and machine-readable format and to have these data transmitted to another controller without hindrance by the Controller. Users who believe that the processing of their personal data by the Controller violates the GDPR and/or applicable national data protection legislation have the right to lodge a complaint with the supervisory authority in the Member State of their residence or place of the alleged infringement.

14. Final Provisions

The Controller may amend and supplement this privacy policy at any time. Any such amendments and supplements will be communicated in an appropriate manner, in particular by publishing the currently valid privacy policy on the Website.

This privacy policy was last updated on 16 April 2025.

Zurück nach oben