Data protection

Our processing of our users’ personal data is limited to the data required to provide a functioning website and our content and services. The processing of personal data of our users only takes place for the purposes listed below and if there is a legal basis (in the sense of the GDPR). Only such personal data are collected that are actually necessary for the implementation and processing of our tasks and services or that you have made available to us voluntarily.

I. NAME AND ADDRESS OF THE RESPONSIBLE

National Spiritual Assembly of the Bahá’ís of Switzerland
Dufourstrasse 13
CH-3005 Bern
Switzerland

info@bahai.ch
+41 31 352 10 20

II. DESCRIPTION AND SCOPE OF DATA PROCESSING

1. DELIVERY OF WEBSITE

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer.

The following data is collected here:

  • Date and time of access
  • The IP address of the user
  • Information about the browser type and version used

We store this information for a maximum period of 30 days. The storage takes place for reasons of data security in order to guarantee the stability and operational security of our system.

2. WEB ANALYSIS

We analyze the use of our website with the web analysis tool Matomo (data protection declaration can be found at https://matomo.org/privacy-policy/). For this purpose, however, the automatically collected IP addresses are anonymized before the evaluation. All analyzes created are therefore based on anonymized data sets and there is no personal evaluation. The web analysis serves exclusively to optimize the website in terms of user-friendliness and the provision of useful information about our services. This data is not merged with other personal data sources or passed on to third parties.

In addition to the data mentioned, Matomo also uses so-called “cookies” (see below).

The legal basis for the temporary storage of the data and the log files is Article 6 (1) (f) GDPR.

There is no personal evaluation. The analyzes are based on anonymized data sets.

3. COOKIES

We use cookies on our website to make our offer user-friendly. Cookies are small files that your browser creates automatically and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our site. The cookies remain stored until you delete them. This enables us to recognize your browser again on your next visit.

If you do not want this, you can set up your browser so that it informs you about the setting of cookies and you allow them in individual cases. However, we would like to point out that deactivation means that you cannot use all the functions of our website.

The legal basis for the data processed by cookies is Article 6 (1) (f) GDPR.

4. REAL COOKIE BANNER

This website uses Real Cookie Banner, which sets a technically necessary cookie to save your cookie consent.

Real Cookie Banner does not process any personal data.

The Real Cookie Banner cookie stores the consent you gave when you entered the website. If you would like to revoke this consent, simply delete the cookie in your browser. If you re-enter/reload the website, you will be asked again for your cookie consent.

5. GOOGLE WEB FONTS

This site uses so-called web fonts provided by Google for the uniform display of fonts. The Google Fonts are installed locally. There is no connection to Google servers.

6. CONTACT VIA ONLINE FORM & EMAIL

If you fill out a contact, voucher order or registration form or send us an e-mail or other electronic message, your details will only be used to process the request and any further questions related to it, and will only be used as part of the request.

The legal basis for processing your request is Article 6 (1) (a) or (b) GDPR.

We will delete your personal data after completing your request.

7. MEMBERS AREA

baha’i switzerland members have access to the password-protected member area. For this purpose, the e-mail, the user name and a password are recorded and saved.

8. WORDFENCE

This site uses the WordPress plugin WordFence for security purposes. The provider is Defiant, Inc., 800 5th Ave Ste 4100, Seattle, WA 98104, USA. The plugin protects the website from attempts by third parties to gain unauthorized access to the website and thereby access personal data, to embed malware on the website or to carry out other illegal activities.

In order to use the WordFence security plugin, it is necessary to save your IP address. However, for your protection and according to our configuration, this information is not transmitted to the Defiant server in the USA.

Defiant has applied for EU-US Privacy Shield certification (as of June 6, 2018). The “Privacy Shield” is an agreement between the European Union (EU) and the USA, which is intended to ensure compliance with European data protection standards in the USA.

WordFence is used to increase the security of this website and thus also to ensure the safety of website users. This represents a legitimate interest within the meaning of Article 6 (1) (f) GDPR.

More information on handling user data can be found at https://www.wordfence.com/blog/2018/05/wordfence-is-gdpr-compliant/ and in Defiant’s privacy policy: https://www.wordfence.com/ privacy-policy/

9. HOSTING

This website is hosted by an external service provider (cyon GmbH, Brunngässlein 12, CH – 4052 Basel). The personal data collected on this website is stored on the host’s servers. This can be v. a. IP addresses, contact requests, meta and communication data, contract data, contact data, names, website access and other data generated via a website.

The hoster is used for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 Para. 1 lit. b DSGVO) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 Para 1 lit. f GDPR).

Our hoster will only process your data to the extent that this is necessary to fulfill its performance obligations and will follow our instructions in relation to this data.

Conclusion of a contract for order processing

In order to ensure data protection-compliant processing, we have concluded an order processing contract with our hoster.

III. DATA SECURITY

Within the website visit, we use the widespread TLS procedure in connection with the highest level of encryption supported by your browser. You can tell whether an individual page of our website is transmitted in encrypted form by the closed representation of the key or lock symbol in the address bar of your browser.

In addition, we use other suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

IV. YOUR RIGHTS (DATA SUBJECT RIGHTS)

You have the right to request information about your personal data processed by us. In particular, you can obtain information about the processing purposes, the categories of personal data, the categories of recipients to whom your data was or will be disclosed, the planned storage period, the existence of a right to correction, deletion, restriction of processing or objection, data transfer, the origin of your data, if they were not collected from us, and about the existence of automated decision-making including profiling.

You also have the right to revoke any consent you may have given to the use of your personal data at any time.

You can assert your stated rights with us at any time using the contact address provided.

If you believe that the processing of your personal data by us contradicts the applicable data protection regulations, you have the option of complaining to the data protection authority of the Principality of Liechtenstein.

Cookie Consent Banner by Real Cookie Banner