PRIVACY STATEMENT

PRIVACY STATEMENT 

In accordance with data protection laws, specifically the EU General Data Protection Regulation (GDPR):

Alpha Brands & Asset AG
 Arnold Schmidt
 Staatsstrasse 44
 9463 Oberriet
 magicprints.studio@gmail.com

General Note
 According to Article 13 of the Swiss Federal Constitution and the Federal Data Protection Act (DSG), everyone has the right to the protection of their privacy and the protection of their personal data from misuse. The operators of the site take the protection of your personal data seriously. We treat your personal data confidentially and in accordance with data protection laws and this privacy statement.

In cooperation with our hosting service providers, we take all necessary measures to protect our databases from unauthorized access, data loss, misuse, or falsification. However, please note that data transmission over the internet (e.g., via email communication) may have security gaps. Full protection of data against access by third parties is not possible.

By using this website, you consent to the collection, processing, and use of data as described in this statement. This website can be visited without registration. In this case, data such as visited pages, the names of downloaded files, the date and time, are stored on the server for statistical purposes, without directly linking these data to your identity. Personal data – particularly name, address, or email address – are only collected on a voluntary basis. Data will not be passed on to third parties without your explicit consent.

Processing of Personal Data
 Personal data refers to all information relating to an identified or identifiable person. The data subject is the person whose data is being processed. Data processing includes any activity involving personal data, irrespective of the methods and procedures used, including storing, publishing, acquiring, deleting, backing up, modifying, destroying, or using the data.

During data processing, we comply with Swiss data protection regulations. Additionally, if the EU General Data Protection Regulation (GDPR) is applicable, personal data will be processed according to the following legal bases in accordance with Article 6(1) of the GDPR:

  • Consent (GDPR 6(1)(a)): The data subject has consented to the processing of their personal data for one or more specific purposes.

  • Contract performance and pre-contractual measures (GDPR 6(1)(b)): The processing is necessary for the performance of a contract to which the data subject is a party or to take steps at the request of the data subject prior to entering into a contract.

  • Legal obligation (GDPR 6(1)(c)): The processing is necessary for compliance with a legal obligation to which the controller is subject.

  • Vital interests (GDPR 6(1)(d)): The processing is necessary to protect the vital interests of the data subject or another individual.

  • Legitimate interests (GDPR 6(1)(f)): The processing is necessary for the purposes of the legitimate interests pursued by the controller or a third party, provided that the data subject's rights and freedoms do not override those interests.

Data Retention Period
 We process personal data only for as long as is necessary to fulfill the purposes for which the data was collected. If legal or other obligations require longer retention periods, we will limit the data processing accordingly.

Relevant Legal Bases
 In accordance with Article 13 of the GDPR, we inform you about the legal basis for our data processing. If the privacy statement does not specify the legal basis, the following are applicable:

  • Consent: GDPR 6(1)(a), 7.

  • Contract performance: GDPR 6(1)(b).

  • Legal obligations: GDPR 6(1)(c).

  • Legitimate interests: GDPR 6(1)(f).

Security Measures
 In accordance with data protection regulations, we have implemented technical and organizational measures to ensure the security of the data, proportionate to the risks. These include ensuring the confidentiality, integrity, and availability of data, controlling physical and electronic access to data, and documenting data processing procedures.

Transfer of Personal Data
 In the course of data processing, personal data may be transferred to other organizations, companies, or third parties. These may include IT service providers or content integration providers for the website. In such cases, we conclude separate agreements to ensure data protection, in compliance with data protection laws.

Data Processing in Third Countries
 If data is processed outside the European Union (EU) or European Economic Area (EEA) or transferred to third parties located in such countries, this will only take place in accordance with applicable legal requirements.

Except for explicit consent, contractual or legal obligations, data will only be processed in third countries if the country has an adequate level of data protection (e.g., through the adoption of standard contractual clauses approved by the EU Commission, certificates, or internal data protection rules in accordance with GDPR Articles 44–49).

Cookie Policy
 This website uses cookies. Cookies are text files that contain data about visited websites or domains, which are stored on the user's computer by the browser. The primary purpose of cookies is to store user information during or after their visit to the website.

Types of Cookies:

  • Temporary cookies: Automatically deleted when the user closes their browser.

  • Permanent cookies: Remain after the browser is closed, e.g., to store login status or preferred content.

  • Necessary cookies: Essential for the operation of the website (e.g., for security or storing user logins).

  • Statistical and marketing cookies: Used to analyze user interest and behavior, for example, for personalizing content.

Legal Basis for Cookie Use
 The legal basis for using cookies is your consent (GDPR 6(1)(a)) or legitimate interests (GDPR 6(1)(f)).

SSL/TLS Encryption
 This website uses SSL/TLS encryption to protect confidential information, such as data sent via forms. The encrypted connection is indicated by "https://" and a lock icon in the browser’s address bar. SSL/TLS encryption prevents third parties from reading data transmitted by you.

Third-Party Services
 This website may use third-party services, such as:

  • Google Maps: For integrating maps.

  • Google reCAPTCHA: For protection against automated bots.

  • YouTube: For embedding videos.

These providers may use cookies and transmit data to the USA. Google, for instance, ensures data protection in accordance with the US–EU and US–Swiss Privacy Shield Frameworks.

Contact Form Data Protection
 If you send a message via the contact form, the data you provide will be stored to process the message and for further communication. These data will not be shared with third parties without your consent.

Newsletter Data Protection
 If you subscribe to the newsletter on the website, we require an email address and information to verify that you are the owner of the email address and consent to receiving the newsletter. We do not collect additional data. This information will only be used to send the requested information and will not be shared with third parties.

You can withdraw your consent at any time by unsubscribing through the "Unsubscribe" link in the newsletter.

Comments Function Privacy
 When writing a comment on this website, we store the time of the comment, your email address, and, if not submitted anonymously, the username you provide.

IP Address Storage
 The comments function stores IP addresses to take necessary actions in case of legal violations (e.g., offensive content or propaganda).

Subscription to Comments
 Users can subscribe to comments. They will receive a confirmation email to verify they own the email address. This subscription can be canceled anytime via a link in the informational emails.

Rights of Data Subjects
 According to data protection laws, data subjects have the following rights:

  • Right to confirmation: The data subject has the right to ask for confirmation as to whether their personal data is being processed.

  • Right of access: The data subject can request free access to their stored personal data, including details such as the purpose of processing, categories of data, recipients, retention period, and the right to correction, deletion, restriction, or objection.

  • Right to rectification: The data subject can request correction of inaccurate personal data or completion of incomplete data.

  • Right to erasure ("right to be forgotten"): The data subject can request the deletion of personal data if the data is no longer needed, or if they withdraw consent.

  • Right to restriction of processing: The data subject can request the restriction of processing if the accuracy of the data is disputed.

  • Right to data portability: The data subject can request to receive their data in a machine-readable format or transfer it to another data controller.

  • Right to object: The data subject can object to the processing of personal data based on legitimate interests.

  • Right to withdraw consent: The data subject can withdraw consent for data processing at any time.

Advertising Emails
 The use of the contact information provided in the legal notice for sending unsolicited advertisements or information is expressly prohibited. The website operators reserve the right to take legal action if unsolicited advertising information (e.g., spam emails) is received.

Google Ads
 This website uses Google Conversion-Tracking. If you arrive on our website via a Google ad, Google Ads places a cookie on your computer for conversion tracking. The cookie expires after 30 days and is not suitable for personal identification.

Google reCAPTCHA
 We use Google reCAPTCHA to verify that forms are filled out by humans, not automated programs. The reCAPTCHA analyzes visitor behavior (e.g., IP address, time spent on the site) and sends this data to Google. This processing is based on legitimate interests (GDPR 6(1)(f)).

Google Analytics Privacy Statement
 This website uses Google Analytics, a web analytics service provided by Google Ireland Limited. Google Analytics processes data about website visits to improve services. IP addresses are anonymized and not linked to other data.

Google Tag Manager
 Google Tag Manager allows us to manage tags on our website, including Google Analytics integration. The Tag Manager does not collect personal data.

Facebook Privacy Statement
 This website uses Facebook features. Facebook processes data such as IP addresses or actions on the site in the USA. To prevent data processing by Facebook, log out of your Facebook account before visiting the site.

Instagram Privacy Statement
 The website includes Instagram features. If you are logged into Instagram, your activities on the website may be linked to your Instagram account.

LinkedIn Privacy Statement
 We use LinkedIn for marketing purposes. LinkedIn uses cookies to collect data, such as browsing habits. If you do not wish to be tracked by LinkedIn, use LinkedIn's privacy settings to disable tracking.

External Payment Providers
 Our website uses external payment providers such as PayPal, Stripe, Klarna, and other services. These providers may process data such as your name, bank details, and payment information according to their own privacy policies.

Continue with Online Store and Other Data Processing Sections?
 Online Store and E-Commerce Data Processing
 Customer data collected during purchases through our online store will be processed according to data protection laws (DSG, GDPR) to enable the selection, ordering, payment, and delivery of products and services.