Data Protection Regulations

Dear customer,

These data protection regulations provide an overview of what personal data is collected by Ringier AG (hereinafter ‘Ringier’ or ‘we’) and the companies affiliated with Ringier (hereinafter ‘Ringier Group’), how this personal data is processed, and to whom it may be disclosed. It also explains what rights you have under data protection laws and how you can exercise these rights.

By using a website or mobile application operated by Ringier or a Ringier-affiliated company, you agree that your personal as well as non-personal data may be processed according to the terms in these data protection regulations and accept the following data protection regulations.

Please review these data protection regulations at regular intervals so that you are always informed about how your personal data is being used and can exercise your rights.

What you need to know about us:

1. Who is Ringier?

We are required by law to notify you regarding the issue of ownership rights over collected data. The owner of the data collection is Ringier AG, Brühlstrasse 5, 4800 Zofingen, Switzerland.

Ringier is a diversified media group operating in 18 countries with about 6,900 employees. Founded in 1833, Ringier manages leading brands in print, TV, radio, online and mobile media and runs successful print, entertainment and internet businesses. Throughout its more than 180-year history, Ringier has always stood for innovation, individuality and independence, as well as freedom of expression and diversity of information. Ringier is a Swiss family-owned business with head offices in Zurich.

Find out more about Ringier here: http://www.ringier.ch/en/about-ringier-1

2. Who belongs to the Ringier Group?

The Ringier Group includes the Ringier-affiliated companies located in Switzerland. These include, for example, the following Ringier subsidiaries: Geschenkidee.ch GmbH, DeinDeal AG, Swissprinters AG, Scout24, JobCloud AG, Ringier Axel Springer Schweiz AG and several others.

If you would like to find out more about the Ringier-affiliated companies and other holdings of Ringier in Europe, Asia and Africa, click here: http://www.ringier.ch/en/participations-europe

3. What is the nature of the Ringier Group’s operations?

Today, Ringier manages leading brands in print, TV, radio, online and mobile media and runs successful print, entertainment and internet businesses. The Ringier Group produces Blick, Sonntagsblick, Schweizer Illustrierte, Landliebe, Handelszeitung, der Beobachter, le Temps, and others. The complete portfolio is listed here: http://www.ringier.ch/en/portfolio

4. What data does Ringier and companies affiliated with the Ringier Group generally process?

Essentially, there are two categories of data that are processed when you contact us: personal data (4.1) and non-personal data (4.2).

4.1 What is personal data and what is the definition of “processing”?

Personal data refers to any information relating to you and that reveals something about you as an individual, such as your first name and surname, postal address, email address, date of birth, phone number and similar information.

Information that cannot be associated with you, i.e. with your identity as an individual, is non-personal data.

Processing encompasses any handling of your personal data, for example, the entry, collection, anonymisation, saving, management, use, transfer, disclosure or erasure of your personal data.

4.1.1 How do we process your personal data and what is the legal basis for doing so?

Your trust in us when it comes to protecting your personal data and your privacy is important to us, which is why we want you to know that:

We adhere to the basic principles set out in data protection laws effective in Switzerland and, where applicable, the European Union. This means that we are transparent concerning which of your personal data we process and how. We only process personal data that we have obtained by legal means and, when required, with a legal basis for doing so. A legal basis may take the form of a contract, your consent, a law or a public interest that allows us to process data, or a legitimate interest on our part.

We will notify you whenever we process your personal data. If we no longer need your personal data and are no longer legally required to retain it, or you no longer want us to keep and process it, then we will cease to do so.

Your rights in relation to your personal data and how you can exercise these rights are explained later in Section 5.

4.1.2. What personal data does Ringier process, and when and why does it do so (purpose)?

Essentially, we process your personal data each time you contact us. In the case of Ringier products, for example, this happens when you:

• purchase a subscription for a product (newspaper or e-paper) and enter a contract with us for that reason or when you already have a subscription;
• participate in a competition, contest, draw, crossword puzzle (online, via SMS or entry form);
• have signed up for an email newsletter;
• receive advertising about our media products and services (direct marketing);
• register online so that you can comment on content in newspaper articles;

a) Subscription for Ringier products (newspaper or e-paper)

If you want a subscription and have entered into a contract with us for that reason, we collect the following personal data from you along with your order:

• Gender (Mr/Ms)
• First name
• Surname
• Address, including house number, postal code and place of residence
• Phone number (landline and mobile number)
• Email address
• Payment information

We process this personal data for the duration of the subscription for the following purposes:

• to fulfil and handle contractual and legal obligations (e.g. newspaper delivery);
• to manage and maintain the customer relationship (e.g. change of address);
• to verify access authorisation and administration of the user account (if available);
• to issue invoices.

If you select an online payment option such as a credit card when purchasing a subscription, payment will be processed using the online payment system of the respective provider. In such cases, personal data and payment details are processed directly by the provider of the respective payment system. We are not privy to nor do we save your payment details. Please note the data protection regulations of the respective online payment system provider in such cases.

In order to provide you with additional offers on products and services from the Ringier Group, we also process personal data in the following ways:

• for marketing purposes, i.e. we advertise additional products from the Ringier Group by post, phone, email or SMS (see Section 2 above). You have the option to object to this processing at any time (see Section 5.5.).

b) Competitions, contests, draws, crossword puzzles

If you participate in a competition, contest or draw via an entry form or online, or if you solve our crossword puzzle and send in the answer, we normally collect the following personal data:

• Gender (Mr/Ms)
• First name
• Surname
• Address, including house number, postal code and place of residence
• Phone number (landline or mobile number)
• Email address

We process this personal data for the following purposes:

• to draw the winner;
• to announce who the winner is

In order to provide you with additional offers on products and services from the Ringier Group, we also process personal data in the following ways:

• to develop and manage the relationship with you;
• for marketing purposes, i.e. we advertise additional products from the Ringier Group by post, phone, email or SMS (see Section 2 above). You have the option to object to this processing at any time (see Section 5.5.).

c) Email newsletter

If you have agreed to let us use your email address for advertising purposes, we will send you newsletters at regular intervals to inform you about the Ringier Group’s additional offers and services.

You can object to the processing of your email address at any time by clicking the unsubscribe link found at the bottom of each newsletter.

d) Advertising about our media products and services (direct marketing)

In order to provide you with additional offers on products and services from the Ringier Group, we and the companies belonging to the Ringier Group also process your personal data for marketing purposes. This means that we advertise additional products and services from the Ringier Group by post, phone, email or SMS.

For the purposes of customer acquisition, we also obtain personal data (addresses) from publicly available as well as professional third-party sources.

You always have the option to object to the processing of your personal data for these purposes in general or for a specific product or service (see Section 5.5.).

e) Online registration for comments function

When you register to use the comments function on a Ringier website, we collect the following personal data:

• First name
• Surname
• User name
• Gender
• Email address
• Address, including house number, postal code, place of residence, and country
• Phone number (landline and mobile number)

We process this personal data for the following purposes:

• to fulfil and carry out legal obligations;
• to verify access authorisations and administration of the user account.

In order to provide you with additional offers on products and services from the Ringier Group, we also process the personal data mentioned above:

• to develop and manage the relationship with you;
• for marketing purposes, i.e. we advertise additional products from the Ringier Group by post, phone, email or SMS (see Section 2 above). You have the option to object to this processing at any time (see Section 5.5.).

All content that you have uploaded using the comments feature is publicly visible and can be reused for editorial purposes, e.g. published as a letter to the editor.

Further information on the processing of your personal data can be found on the websites for the respective products.

4.1.3 Disclosure of personal data to third parties

All personal data collected when you contact Ringier is shared within the Ringier Group and can be processed for the purposes mentioned above, in particular for marketing purposes. You have the option to object to this transferring and processing at any time (see Section 5.5.).

Your personal data can also be shared with third parties that are not part of the Ringier Group and who provide technical or organisational services on behalf of Ringier or companies belonging to the Ringier Group and that we require for the purposes mentioned above or to carry out their general business activities. Examples include hosting partners, printers or supplier organisations. These service providers are contractually bound to process your personal data exclusively on our behalf and as instructed by us, and to guarantee that the appropriate technical or organisational security measures are in place to guarantee your personal data is protected.

These service providers are primarily located in Switzerland and in the European Union, both of which have reasonable personal data protections in place. If a service provider is located in a country that does not ensure a level of personal data protection comparable with that found in Switzerland, we enter contractual agreements with these providers to ensure compliance with Swiss standards of data protection. In doing so, we use the EU standard contractual clauses: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/model-contracts-transfer-personal-data-third-countries_en. If the company in question is certified under the Swiss-US Privacy Shield agreement, this means that they have entered into a standard contract.

When you post comments on an article on a website or in a mobile application and log into a Ringier user account via Facebook or Twitter, you are also agreeing to the publication of your surname and first name and potentially your place of residence (as provided by you in your user account, Facebook account or Twitter account) together with your comments. Your comments, including personal data, can be further shared on third-party websites and indexed by search engines.

Your personal data shall not otherwise be passed on, transmitted or sold to third parties outside the Ringier Group unless required to manage a contract that you have concluded with Ringier or a company belonging to the Ringier Group, or unless you have expressly consented to it.

This notwithstanding, Ringier may disclose personal data for legal reasons; for example, to law enforcement agencies for the purpose of prosecuting and detecting illegal activities or to tax authorities.

4.2 Non-personal data

When you contact us, our websites and applications use various technologies provided by us and by third parties to collect non-personal data.

4.2.1 What constitutes non-personal data and why do we process it?

Non-personal data is information that cannot be traced back to your identity. As a matter of principle, we do not combine this data with your personal data, meaning that this data is anonymous to us.

We collect and process this data so that we can continually improve our products and services and tailor them to your needs, to identify trends as well as to generate and evaluate statistics about the usage of our digital products and services. This data is also used to provide you with a positive advertising experience. That is to say, it is our basic assumption that you appreciate our informative and entertaining media products and are also willing to pay for them. Our products and services are therefore either financed through paying users (subscribers) or advertising. This is why you will find advertising both in our print media and especially in our free online products.

You have the option at any time to opt out of the processing of non-personal data. The procedure for doing so is explained in Section 4.3. The following sections also include links for disabling certain technologies.

4.2.2 What technologies do we use and why?

We use the following technologies:

a) Cookies

We use our own as well as third-party cookies on our websites and in our mobile applications. A cookie is a small text file that is saved on your device when you visit one of our websites.

Cookies fall into two categories: session cookies and permanent cookies.

Session cookies can be used to track the websites you visit and to save your user options. A session cookie is only saved for the duration of your site visit, i.e. a single web session. This means that when you close your web browser, the session is ended and the cookie is deleted.

Permanent cookies can be used along with other items in order to identify you again the next time you visit our website and, for example, to detect your reading preferences. A permanent cookie is saved for a longer duration than a single session.

Cookies can also be divided into functional and non-functional cookies. Ringier uses both functional as well as non-functional cookies on its websites.

Functional cookies are required to offer the functions used on our websites or services. Non-functional cookies are not necessarily required for the functionality of the websites. This type of cookie is used to collect and analyse data about how websites or mobile applications are used (language preference, duration of a single user session, etc.) so that we can improve your reading and advertising experience. Such cookies include the following:

In order to provide you with tailored direct marketing and therefore to reduce unnecessary advertising and tailor our products and services to your interests, the following cookies are used to analyse your behaviour, for example:

We use our own cookie technology to collect non-personal data on our websites and in our mobile applications. This data is not combined with your personal data. We do not create any personal profiles or carry out any profiling as defined by data protection laws.

We use this data to analyse our users’ behaviour in relation to our individual products and services, to identify interest groups that are not tied to any specific individual and to better tailor advertising and content to these interest groups. You can object to the data processing just described by clicking here.

The cookie technology provided by Admeira AG is used to collect anonymous web tracking data on Ringier’s websites and in its mobile applications. Your IP address is also shared with Swisscom (Switzerland) AG. If you are a Swisscom (Switzerland) AG customer, this provider may, in certain cases, pass on your anonymised personal data in encrypted form to Admeira AG for advertising purposes.

You can object to the aforementioned data processing by clicking on the following link: http://www.admeira.ch/optout. Detailed information on this can be found here (DE/FR/IT): http://www.admeira.ch/datenschutz. Swisscom customers also have the option to control how Swisscom (Switzerland) AG (Customer Center) processes their data.

You can also configure your browser so that it blocks cookies in general (see Section 4.3).

Our websites also employ technology from nugg.ad AG (www.nugg.ad) to collect data for the purpose of controlling display advertising. To do so, nugg.ad uses cookies to record how frequently you use certain parts of particular websites. These cookies are saved in the browser on your device (e.g. PC, laptop, smartphone, etc.) and expire after a maximum of 26 weeks. The technology provided by nugg.ad can also use the raw data about your Internet use across multiple websites in order to make rough estimations about which advertising is most likely to interest you.

If you are interested in receiving website advertising tailored to your interests with the technology provided by nugg.ad AG, you may give your consent (opt-in: http://ad-choicesiehenuggad.net) for the continued interest-based analysis of your user behaviour. When you give your consent, this opt-in cookie is also saved in the browser on your device for a period of one year. If nugg.ad has already saved information in browser cookies on your device in the past, the opt-in cookie will have the following effect: by giving your consent, you extend the validity of the existing nugg.ad cookies for a total of one year (from the moment at which cookie was set). The information saved in the cookies prior to the opt-in will therefore be kept after you have given your consent and consequently deleted after the cookie has expired, i.e. after a maximum of one year.

You can prevent nugg.ad from collecting metrics at any time by exercising your right to object (link for opt-out cookie: https://www.adition.com/en/privacy/). If you have already given your consent, you may also withdraw it any time, effective from then on. An opt-out is saved in a browser cookie on your device, is valid for 10 years, is named ‘nuggstopp’ and is set by ‘nuggad.net’.

Website advertisements displayed on the basis of metrics collected with nugg.ad technology are indicated with a pictogram. Clicking on this pictogram will redirect you to the page http://ad-choicesiehenuggad.net. This page will provide you with further information on the data protection practices of nugg.ad and you can use the My Topic Monitor https://mtm.nuggad.net/ to see which of your interests have been ascertained from your browsing history.

Our websites also use Google Analytics, which is a web analytics service provided by Google Inc (1600 Amphitheatre Parkway Mountain View, CA 94043, USA). Use includes its ‘Universal Analytics’ set of features. When a user is logged into a Google service, this makes it possible to associate data, sessions and interactions across multiple devices with a pseudonymous user ID so that a user’s activities can be analysed across multiple devices. Google Analytics cookies. The non-personal information generated by the cookies about your use of our website is generally sent to and stored on a Google a server located in the USA. The IP addresses are anonymised first, however. The anonymised IP address sent by your browser for the purposes of Google Analytics is not combined with other Google data. Google uses this information on our behalf to analyse how you use our websites, to generate reports on website activities, and to provide us with additional services associated with the use of the website and the Internet. More detailed information on the terms of use and data protection can be found here: https://toolsiehegoogle.com/dlpage/gaoptout/. You can also prevent cookies from being saved by configuring your browser software accordingly (see Section 4.3).

A list of the tracking tools we use can be found here.

b) Log files

When using websites or mobile applications, the web servers record non-personal usage data in what are known as log files. Log files provide information about your IP address, the operating system you are using, the web pages you visit, browser type and version, date, time, and the requested file. This information is required for technical purposes in order to correctly provide the website content you have requested and are generated whenever a person uses the Internet. This anonymous data is saved separately from any personal data you provide and therefore cannot be traced back to your identity.

We evaluate this non-personal data for statistical purposes in order to optimise our website and the technology used to operate it, to identify trends, as well as to improve offers and products and/or to tailor it to your needs in the best way possible.

c) Third-party website elements, e.g. plugins

Elements from third-party providers (e.g. social networks such as Facebook, Twitter, Google+ and YouTube) may be used on our websites or in our mobile applications. If you click on an element from a third-party provider (e.g. the Like plugin from Facebook), a connection to the servers of that third-party provider may be established automatically. This may result in the transmission of information about your visit to our websites or a mobile application to the third-party provider. In some cases, it may be possible to associate this data with your user account with the third-party provider (e.g. your Facebook or Twitter account). Furthermore, the third-party provider may share personal data (surname, first name and email address) from your Ringier user account, insofar as you have authorised the third-party provider to carry out this function. Information about the collection and use of your data by third-party providers can be found in the data protection information of the relevant third-party provider.

4.3 How can I disable cookies?

a) Cookie settings

By using our websites and applications, you agree to the processing of your personal data in the manner described and for the aforementioned purposes. However, you can control and/or delete cookies at any time using the opt-out links listed above.

Most web browsers are set to automatically accept cookies. It is up to you, however, to configure your browser so that it rejects cookies as a rule by selecting the ‘do not accept cookies’ setting in your browser or so that it prompts you to accept cookies whenever you visit a website.

You also have the option to delete cookies stored on your computer or mobile device by using the function provided for this purpose in your browser. Remember that you will have to disable or delete the cookies on all of your devices.

Please note that deleting cookies in the browser will also cause an opt-out cookie, such as the one from Admeira, to be deleted. This means that if you want to keep an opt-out cookie enabled and have deleted all cookies, you must enable the opt-out cookie again when you revisit the website. Otherwise, you will be identified as a new user and the collection of your data will resume. Please also be aware that you will have to disable the cookies on all of your devices.

If you choose one of the options described, you may not be able to fully use all of functions of this website. Please note that there is no option to opt out of general advertising on our websites or in our applications.

5. What are your rights with respect to your personal data?

Your personal data belongs to you. You therefore have the right to control what happens with your personal data and are permitted to find out at any time how your personal data is being handled.

Under the EU General Data Protection Regulation, you have the following rights:

5.1. Right of access

Under the EU General Data Protection Regulation, you are entitled to information, free of charge, concerning which of your personal data, if any, is being processed. Your request for information must be sent to us in writing along with a copy of your proof of identity.

You may scan this and send it to us by email (datenschutz@ringier.ch) or by post to the following address: Ringier AG, Kundenkontakt Center, Brühlstrasse 5, 4800 Zofingen.

5.2 Right to rectification of your personal data

Under the data protection law, you are entitled to the rectification of your personal data at any time if you find that the personal data that we are processing contains any errors.

If you would like to have corrections made to your personal data, send an email to us at datenschutz@ringier.ch or a letter to the following address: Ringier AG, Kundenkontakt Center, Brühlstrasse 5, 4800 Zofingen. Do not forget to include a copy of your proof of identity.

5.3 Right to erasure of your personal data

If the processing of your personal data is no longer necessary because, for example, you no longer have a contractual relationship with Ringier or you have withdrawn your consent to the processing of your personal data, you are entitled to request the erasure of your data. We will erase your personal data, provided that we are not otherwise obliged to retain your personal data, for example to comply with statutory data retention obligations.

You may request the erasure of your data by sending us an email to datenschutz@ringier.ch or a letter by post to Ringier AG, Kundenkontakt Center, Brühlstrasse 5, 4800 Zofingen. Please include a copy of your proof of your identity along with your erasure request.

5.4 Right to restriction of processing of your personal data

You have the right at any time to restrict the processing of your personal data, provided that we are not otherwise obliged to retain your personal data, for example to comply with any statutory data retention requirements.

If you would like to restrict the processing of your personal data, send an email to datenschutz@ringier.ch or a letter to the following address: Ringier AG, Kundenkontakt Center, Brühlstrasse 5, 4800 Zofingen. Do not forget to include a copy of your proof of identity.

5.5 Right to object and withdraw your consent

If you have granted us your consent to the processing of your personal data, you have the right at any time to withdraw or refuse your consent. If personal data is processed for marketing and advertising purposes, you can withdraw the consent to processing for these purposes in general or for specific products or services.

You also have the option at any time to object to receiving advertising and to the processing of your personal data for marketing and advertising purposes if we do so on the basis of our legitimate interests in continually improving our range of products and services. In this case, personal data will no longer be collected or processed for this purpose in the future.

You can exercise your right to object by sending an email to datenschutz@ringier.ch or a letter to Ringier AG, Kundenkontakt Center, Brühlstrasse 5, 4800 Zofingen. Do not forget to include a copy of your proof of identity.

Section 4.3 contains the relevant details regarding the objection to processing of non-personal data. Please note that there is no option to object to general advertising on our websites. Such advertising falls into the same category as the advertising you would also find in a print newspaper or magazine.

5.6 How you can protect your children

We all need to work together to ensure that future generations become responsible citizens of the digital world.

Because children are less cognisant of the risks and consequences of the processing of their personal data and are unlikely to know their rights in this regard, special protections should be in place when it comes to their personal data. In particular, this of course applies to the use of such personal data for advertising purposes, which is why you will also find the relevant age limits in our terms of use as well as information about the legal age of consent.

Information and tips on using media can be found here (DE/FR/IT): https://www.jugendundmedien.ch/de/home.html.

6. Data security

Ringier operates secure data networks which meet the relevant technical standards. All necessary and reasonable technical and organisational precautions are taken to protect your data against loss, destruction, falsification, manipulation and unauthorised access.

Although Ringier has taken every necessary step to prevent data from being disclosed through data transfer errors and/or unauthorised access by third parties, it cannot accept any liability for such unwanted incidents.

7. Who can you contact?

There are various ways to contact us:

If you have a legal question regarding data protection, you can send an email to datenschutz@ringier.ch. You may also write to our data protection officer: Ringier AG, Datenschutz, Dufourstrasse 23, 8008 Zurich.

If you have a question regarding your subscription or other customer relationship with us, please send an email to kundenservice@ringier.ch or a letter to Ringier AG, Kundenkontakt Center, Brühlstrasse 5, 4800 Zofingen. You can also reach our Customer Contact Centre by calling +41 (0)848 880 850.

8. Legal basis

When processing your personal data, we observe the Swiss Federal Act on Data Protection along with its regulations and – where applicable – the General Data Protection Regulation of the European Union (GDPR).

9. Changes to and acceptance of these data protection regulations

Ringier modifies these data protection regulations as appropriate according to new or changing requirements. The latest version of this data privacy statement can always be found in the appropriate place.

The data protection regulations in their latest amended versions shall apply. By continuing to use Ringier’s website or mobile applications, the user agrees to the current data protection regulations in their most recently amended versions.

 

Version: 23 May 2018