Data privacy

The responsible handling of your personal data is a central a central concern for us. In this privacy policy for the website, we describe how and why we process personal data.

Who we are

We are swiss smile Schweiz AG, with registered office at Bahnhofstrasse 110, 8001 Zurich, Switzerland, registered in the Commercial Register of the Canton of Zurich under the number CHE- 112.965.784, and Bellevue Zahnärzte AG, with registered office at Theaterstrasse 14, 8001 Zurich, Switzerland, registered in the Commercial Register of the Canton of Zurich under the number CHE- 449.666. 975, and Zahnmedizinisches Zentrum Zürich Nord AG, with its registered office at Herzogenmühlestrasse 14, 8051 Zurich, Switzerland, registered in the Commercial Register of the Canton of Zurich under the number CHE-108.440.461, and Prophylaxe Zentrum Zürich AG, with its registered office at Herzogenmühlestrasse 14, 8051 Zurich, Switzerland, registered in the Commercial Register of the Canton of Zurich under the number CHE-108.281.949, and ZahnCity AG, with registered office at Freischützgasse 1, 8004 Zurich, Switzerland, registered in the Commercial Register of the Canton of Zurich under the number CHE-155.220.847; and Praxis am Pilatusplatz AG, with registered office at Pilatusstrasse 39, 6003 Lucerne, Switzerland, registered in the Commercial Register of the Canton of Lucerne under the number CHE-113. 680.373, and Zahnarztpraxis Dr Beat R. Widmer AG, with registered office at Tramstrasse 11, 5034 Suhr, Switzerland, registered in the commercial register of the Canton of Aargau under the number CHE-379.342. 614, and Klinik am Dorfplatz AG, with registered office at Engelgasse 2474, 9053 Teufen, Switzerland, registered in the commercial register of the Canton of Appenzell Ausserrhoden under the number CHE-108.319.730, and Praxisgemeinschaft Wolfbach AG, with registered office at Wolfbachstrasse 1, 8032 Zurich, registered in the commercial register of the Canton of Zurich under the number CHE-460. 997.038, and Perfect Smile Ragaz AG, with registered office at Hans-Albrecht-Strasse, 7310 Bad Ragaz, registered in the commercial register of the Canton of St. Gallen under the number CHE-112.736.841 ("swiss smile", "we", "us").

When you visit our website www.swiss-smile.com (the "website"), personal data is collected, recorded, disclosed or otherwise processed. In accordance with applicable data protection laws, we must be named as the controller of the personal data processed by us.

We know that protecting your privacy is important

The protection of your privacy and your personal data in accordance with the applicable data protection legislation and in particular the Federal Act on Data Protection ("FADP") and the General Data Protection Regulation ("GDPR") is important to us.

In this privacy policy for our website (this "Privacy Policy"), we describe how your personal data is collected in connection with your visit to our website, how and for what purposes we use your personal data and to whom we may disclose your personal data. This Privacy Policy also provides you with information about your rights in connection with the processing of your personal data. You should therefore read this privacy policy very carefully.

From time to time we need to amend this privacy policy. The current version of our privacy policy is always available on our website at www.swiss-smile.com/en/terms-of-use/. We advise you to check this privacy policy regularly. We will provide you with the current version of this privacy policy on request.

Please note: By using our website and providing us with your personal data, you acknowledge that your personal data will be processed as described in this Privacy Policy.

Note: The above does not constitute "consent" to the processing of your personal data. Unless expressly stated otherwise, we will not rely on the legal ground of consent to process your personal data.

From whom do we collect personal data?

As part of our services, we may collect personal data relating to visitors to the website and to persons who make an appointment themselves using our website. The same applies in the case of registration for an appointment by third parties.

How do we collect your personal data?

We may collect information about you in various ways when you visit our website:

automatically as soon as you visit our website, for example when data is automatically collected by our IT systems when you visit the website;
directly to you when you visit our website, which may include information you provide to us using the contact forms available on the website;
in other ways, for example by means of cookies.

What personal data do we collect and for what purposes do we use it?

We collect the following information about you and use it for the following purposes:

Personal data:	Purposes:
Your contact details (name, address, telephone number, e-mail address or other contact details)	Appointment booking, appointment reminders, registration, issuing invoices, newsletters and/or e-mail marketing.
Your IP address and your surfing behaviour	Improvement and optimisation of our website.
Technical data (e.g. internet browser, operating system or time of page view), which relate to you	To ensure the error-free provision of our website and for analysis analysis purposes.

We process the data marked with an asterisk in order to provide a service to our customers. For the other processing operations, we rely on the protection of our legitimate interests.

To whom do we transfer your personal data?

Within the scope of the purposes listed above, we may disclose your personal data to service providers with whom we work (e.g. IT service providers or marketing agencies). Your personal data may also be disclosed to other group companies and owners for analysis purposes.

To ensure the protection, secrecy and confidentiality of your personal data, we will, where necessary, ensure that appropriate contractual safeguards are in place when we disclose your personal data to a third party. For example, we will enter into data processing agreements with the relevant third parties (to agree restrictions on the use of your personal data and obligations regarding the protection and security of your personal data). Service providers may only process the data for predetermined purposes, i.e. not for their own purposes.

The third parties to whom we disclose your personal data as described above are generally based in Switzerland or in countries within the European Economic Area ("EEA"). Exceptionally, they may also be located in countries outside the EEA and Switzerland, where a lower level of data protection prevails than in the EEA and Switzerland. In such cases, it must be ensured in accordance with the applicable data protection legislation that adequate measures are taken to ensure appropriate protection of your personal data.
In particular, we will enter into standard data protection clauses with the relevant third parties, which have been drawn up and recognised by the European Commission and the Federal Data Protection and Information Commissioner ("FDPIC") (further information and a copy of these clauses can be found at edoeb.admin.ch/edoeb/en/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html). If necessary, your consent will be obtained.

Your personal data and/or personal profile will not be rented or sold to third parties.

How long do we store your personal data?

Your personal data will not be stored for longer than is necessary for the purposes for which it is processed (we refer to the purposes listed above under Title 5). We will only store your personal data for longer if we are legally obliged to do so or if it is necessary to defend our interests in the context of a legal dispute (in or out of court). After that, your personal data will generally be deleted or anonymised.

How do we protect your personal data?

With regard to the risks we have identified, we will take appropriate administrative, technical and organisational measures to ensure adequate security of your personal data. We protect the personal data that is transmitted, stored or otherwise processed against destruction, loss and alteration, as well as against unauthorised disclosure and unauthorised access. In particular, we have converted the website to the HTTPS (Hypertext Transfer Protocol Secure) protocol. These measures are based on international standards and are regularly reviewed and adapted where necessary.

We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.

We also ensure that the personal data we process is correct and up to date. For this reason, we ask you to inform us of any changes to your personal data (such as your contact details) so that we can send you reminders and invoices, for example.

What rights do you have and how can you exercise them?

You can assert the following rights at any time and free of charge within the framework of the applicable data protection law:

Information and access to your personal data;
Correction of your personal data;
Erasure of your personal data ("right to be forgotten");
Restriction of the processing of your personal data;
Objection to the processing of your personal data;
Data portability, i.e. to receive your personal data in a structured, commonly used and machine-readable format and to transmit this data to another company.

To find out more about these rights and their conditions of applicability, in particular regarding the right to object, please read the appendix.

Finally, you have the right to lodge a complaint with the competent supervisory authority (in Switzerland, the FDPIC - Federal Data Protection and Information Commissioner, Feldeggweg 1, 3005 Bern, Switzerland) in connection with the processing of your personal data undertaken by us.

Use of cookies and social network plug-ins

We use cookies and social network plug-ins on our website. Some are essential for the functioning of our website, others serve to make the user experience on our website better, faster and more secure.

Cookies are small files that your browser stores on your computer or mobile device. We use the following cookies on our website:

Name of the cookie	Type of cookies	Purpose of the cookie
CSRF security cookie ZaWin Cookie	Necessary / technical cookies	These cookies are essential for the functioning of our website and enable you to use certain parts of it. For example, they allow you to navigate between different parts of the website, fill in forms, use the online appointment booking facility, etc. If you reject these cookies, certain parts of the website will not function or will not function optimally.
Google Analytics Google DoubleClick	Analytical cookies	These cookies allow us to recognise visitors to our website, count the number of visitors and analyse the way they navigate. This allows us to improve user navigation and ensure that visitors find what they need more quickly and easily.
Google Experiments / AB-TestingHotjar Analytics ClickDimenions CRM Analytics	Performance cookies	These cookies collect information about how visitors use our website. They help us to understand how visitors interact with our website, why certain error messages appear, and they allow us to try out new features. We use this information to improve the user experience of our website.

Languages Cookie Cookie Consent

Functional cookies

These cookies simplify the functioning of our website, make visiting our website more pleasant and ensure that you have a personalised browsing experience. For example, these cookies can remember your language preference.

Meta Pixel (formerly Facebook Pixel) / Google Analytics target groups / Ad Words Remarketing

Targeting / Tracking / Advertising

Our website uses targeting cookies to track visitor statistics and to send you personalised messages, adverts and advertisements.

adverts and advertisements.

We also use social network plug-ins. These allow us to recognise you based on your profile on social networks and to import certain data (such as your identification and contact details or your profile picture). They also enable us to use the "share buttons" of social networks (LinkedIn, Twitter, Facebook, etc.). You can find more information on this in the privacy policy of your social network provider. If you do not wish to be connected to your profile on the social networks, we ask you to log out before using our website.

How can you manage / delete these cookies?

All common browsers offer the option of managing the cookies that have been installed on your computer or mobile device.

If you do not want the website to install cookies on your computer/mobile device, you can easily restrict or prevent the installation by adjusting the settings on your browser or mobile device. In addition, you can adjust the settings of your mobile device or browser so that you receive a notification each time a cookie is installed on your computer or mobile device. This allows you to decide whether or not you wish to accept these cookies.

Please note that certain parts of our website may no longer function properly and that you will no longer be able to enjoy an optimal user experience if you reject certain of the cookies we use.

Contact

If you have any questions, comments or complaints in connection with this Privacy Policy or with the processing of your personal data carried out by us, you can contact us by post at swiss smile Schweiz AG, Bahnhofstrasse 110, CH-8001 Zurich or by e-mail at datenschutz@swiss-smile.com and/or by telephone +41 43 300 10 01.

Last updated 20 August 2023

Appendix

Right to information and right of access to your personal data

You can request more information about our data processing and the personal data that we hold about you at any time. You can submit your request for information in writing, enclosing a copy of your identity card or passport, to the address listed under "Contact" (Section 12).

Right to rectification of inaccurate data and completion of incomplete data

If your personal data is incorrect or incomplete, you have the right to request that this data be corrected or completed without delay.

Right to erasure of your personal data ('right to be forgotten')

You may request that we delete (part of) your personal data:

if they are no longer necessary for the purposes for which they were collected or otherwise processed;
if the processing was based on your consent and you have withdrawn it;
if you have other legitimate reasons for objecting to the processing of your personal data;
if we process your personal data unlawfully; or
if the deletion of your personal data is necessary to fulfil one of our legal obligations.

Please note that we may refuse erasure in some cases, namely: (i) to exercise the right to freedom of expression and information; (ii) to comply with a legal obligation; or (iii) for the establishment, exercise or defence of legal claims.

Right to restriction of processing

You may request that we (temporarily) restrict the processing of your personal data:

if you have contested the accuracy of your personal data, for a period enabling us to verify the accuracy of that data;
if the processing is unlawful and you refuse the erasure of your personal data and instead request the restriction of the use of this data;
if we no longer need the personal data for the purposes of the processing, but you need this data for the establishment, exercise or defence of legal claims; or
if you have lodged an objection to the processing, as long as it is not yet clear whether our legitimate reasons outweigh yours or not.

Right of objection (free of charge)

Under certain circumstances, you may object to the processing of your personal data if such processing is based on our "legitimate interest". If your objection is legitimate, we will no longer process your personal data unless we have overriding legitimate interests in the data processing or the processing is necessary.

If we process your personal data for direct marketing purposes, you may object to the data processing or withdraw your consent at any time. You also have the right not to be subject to profiling for direct marketing purposes.

Right to data portability

In some cases, you have the right to receive all your personal data in a structured, commonly used and machine-readable format and to transmit this data to another controller. You have this right if:

the processing is based on consent or on the performance of a contract; and
the processing is carried out using automated procedures.