Privacy Policy

1. Data controller

The data controller responsible for processing personal data on this website is:

brückenbauer GmbH
Dachsweg 12
3075 Rüfenacht BE
Switzerland
Email: kontakt@brueckenbauer-gmbh.ch

2. Scope of this policy

This policy applies to all personal data we process about you when you visit our website at brueckenbauer-gmbh.ch, contact us by email or LinkedIn, request a discovery call, or engage us as a client.

3. What data we collect

3.1 Information you provide directly

• Name, company, role, email address, country
• Information you include in your message or enquiry
• Content of subsequent communications (email, calls, video meetings)
• If you become a client: details required for KYC, contracting and invoicing

3.2 Information collected automatically

• Server log data (IP address, browser type, time of visit, pages viewed)
• No third-party tracking cookies are used on this site

4. Why we process your data (legal basis)

We process personal data on the following legal bases:

• Contract performance — to respond to your enquiry, prepare a proposal, deliver our services, invoice you (Art. 6(1)(b) GDPR / Art. 31(2)(a) revFADP)
• Legitimate interest — to run our business, secure our website, communicate with you (Art. 6(1)(f) GDPR / Art. 31(1) revFADP)
• Legal obligation — to meet our compliance, accounting and tax duties (Art. 6(1)(c) GDPR)
• Consent — only where you have explicitly given it (Art. 6(1)(a) GDPR / Art. 31(1) revFADP)

5. How long we keep your data

• General enquiries with no follow-up: deleted within 12 months
• Active client relationships: for the duration of the contract plus 10 years (Swiss accounting law)
• Marketing list (only with consent): until you withdraw consent
• Server logs: 30 days

6. Who we share your data with

We share personal data only when necessary, with categories of recipients including:

• Our strategic alliance partner TSARA Group — only when an engagement actively requires TSARA's involvement (e.g. Türkiye / MENA / Asia execution), and only with your prior knowledge
• Service providers — email hosting, accounting software, IT infrastructure (Switzerland or EU/EEA only)
• Authorities — where legally required (tax, audit, court order)

We do not sell personal data. We do not transfer personal data to third parties for marketing without your explicit consent.

7. International data transfers

Where personal data is transferred outside Switzerland or the EU/EEA (for example to support engagements involving TSARA Group's Singapore or Indonesia operations), we ensure appropriate safeguards are in place — including EU Standard Contractual Clauses, FDPIC-recognised mechanisms, or your explicit consent.

8. Your rights

Under revFADP and GDPR you have the right to:

• Access your personal data and receive a copy
• Correct inaccurate or incomplete data
• Request deletion ("right to be forgotten")
• Restrict processing
• Data portability (receive your data in a structured format)
• Object to processing based on legitimate interest
• Withdraw consent at any time (where processing is based on consent)
• Lodge a complaint with a supervisory authority — in Switzerland the FDPIC; in the EU your local data-protection authority

To exercise these rights, write to kontakt@brueckenbauer-gmbh.ch. We respond within 30 days.

9. Cookies

This website uses only strictly necessary cookies required for technical operation. No third-party analytics, advertising or tracking cookies are set without your explicit consent.

10. Security

We apply reasonable organisational and technical measures to protect personal data — including encrypted transport (HTTPS), access controls, and confidentiality obligations on all team members and service providers.

11. Changes to this policy

We may update this policy from time to time. Material changes will be announced on this page. The version date at the top of this document indicates when the policy was last updated.