As of: March 17, 2025
Thank you for your interest in the services of zettatec GmbH. We take the protection of your personal data very seriously and strive to protect your privacy. This privacy policy explains how we collect, use, disclose and protect your personal data.
1. Data Controller under Data Protection Laws
zettatec GmbH
Zenzachweg 12
Phone: +41 61 589 69 00
email: info@storagecenter.ch
Website: https://storagecenter.ch
2. Data Collected and Purposes of Processing
2.1 When Visiting the Website
Technical data: IP address, browser type/version, operating system, referrer URL, access time.
Purpose: Secure operation of the website, error analysis, performance improvement.
Legal basis: Legitimate interest (Art. 6 para. 1 lit. f GDPR) or Art. 31 Swiss FADP.
2.2 Contact Form/Email
Data: Name, email, phone number, message.
Purpose: Processing your inquiry.
Legal basis: Contract performance or pre-contractual measures (Art. 6 para. 1 lit. b GDPR).
2.3 Cookies and Tracking
Cookies: Necessary (e.g. session cookies), functional (e.g. language settings) and analytics cookies (e.g. Google Analytics).
Tracking tools: Google Analytics (with IP anonymization), social media plugins (e.g. Facebook, LinkedIn), reCAPTCHA.
Purpose: Analysis of user behavior, marketing optimization, security against bots.
Legal basis: Your consent (Art. 6 para. 1 lit. a GDPR) or legitimate interest.
2.4 Registration and Payment Data
When you register for our services, we collect information such as your name, email address and contact details.
Purpose: Provision of our service and invoicing.
Legal basis: Your consent (Art. 6 para. 1 lit. a GDPR) or legitimate interest.
2.5 Usage Data
We collect information about your interaction with our services, including files you upload, times and duration of your use, and your IP address.
Purpose: Provision of our service, IT baseline protection.
Legal basis: Your consent (Art. 6 para. 1 lit. a GDPR) or legitimate interest.
3. Technologies Used and Third Parties
3.1 Google Analytics
Provider: Google Ireland Ltd.
Data: Usage data, anonymized IP.
Privacy: https://policies.google.com/privacy.
Opt-Out: Browser add-on at https://tools.google.com/dlpage/gaoptout.
3.2 Google Fonts and Font Awesome
Provider: Google Ireland Ltd.
Data: IP address, font caching.
Provider: Google LLC, Fonticons Inc.
3.3 JQuery CDN
Provider: jQuery Foundation.
Data: IP address.
Provider: jQuery Foundation.
4. Data Disclosure
Data will only be disclosed to third parties if required by law or if you have given your consent.
5. Data Retention Periods
Contact data: Until your inquiry has been fully processed.
Log files: 365 days.
Cookies: See cookie table below.
6. Your Rights
Access, rectification, erasure: You can request access to, correction or deletion of your data.
Objection: You can object to data processing based on legitimate interest.
Data portability: Right to data portability.
Withdraw consent: For tracking and marketing at any time.
Right to lodge a complaint: With the supervisory authority (in Switzerland: Federal Data Protection and Information Commissioner).
Contact us at info@storagecenter.ch to exercise your rights.
7. Cookies in Detail
storageportal_session - Storagecenter customer portal. Retention period until logout.
remember_web_* - Laravel php framework. Retention period until logout
_ga - Google Analytics, retention period 30 days
_gcl_au - Google Adsense, retention period 30 days
8. Security Measures
8.1 Technical Security Measures
Encryption: All data transfers between your browser and our server are SSL/TLS encrypted (recognizable by "https://" in the URL and the lock symbol in the browser bar).
Sensitive data (e.g. login information) is additionally secured with modern encryption algorithms (e.g. AES-256).
Firewalls & Intrusion Detection: Use of Next-Generation Firewalls (NGFW) and Web Application Firewalls (WAF) to protect against hacker attacks, DDoS attacks and SQL injection.
Real-time monitoring SIEM to detect and block suspicious activities.
Regular Updates: Automatic security patches for servers and plugins to close known vulnerabilities.
Penetration tests and security scans by external service providers to identify risks.
8.2 Organizational Security Measures
Access Restrictions: Two-factor authentication (2FA) for administrative access.
Role-based permissions: Only authorized employees have access to personal data - and only to the extent necessary.
Data Minimization: Only data that is strictly necessary for the specific purpose (e.g. processing inquiries) is collected. Anonymization/pseudonymization of usage data (e.g. in Google Analytics).
Emergency Planning: Backup strategy: Daily backups of all critical data on separate, password-protected systems. Disaster recovery plan for quick restoration of the website in case of cyber attacks or hardware failures.
8.3 Training & Compliance
Employee Awareness: Regular training on handling personal data and recognizing phishing attacks.
Transparency in Security Incidents: In case of a data breach, we will inform you and the relevant authorities (within 72 hours according to Art. 33 GDPR) immediately.
8.4 External Certifications
Our infrastructure partners (IWB Datacenter) are ISO 27001 certified and meet the requirements of the Swiss FADP. Server locations are exclusively in Switzerland to ensure data sovereignty.
9. Changes to this Privacy Policy
We reserve the right to update this privacy policy. Please check our privacy policy regularly for updates.
10. Contact
If you have questions or concerns about the processing of your data or wish to exercise your data protection rights, please contact us at zettatec GmbH, Zenzachweg 12, 4451 Wintersingen.