box Deliveries: We temporarily only delivered throughout Switzerland

Privacy and Data Protection

Privacy Policy

Contents

Introduction

This Privacy Policy informs you about the nature, scope, and purpose of the processing of personal data (hereinafter referred to as “data”) within our online offering and the websites, functions, and content associated with it, as well as external online presences (e.g. social media profiles) (collectively referred to as the “online offering”). With regard to the terminology used, such as “processing” or “controller”, we refer to Article 4 of the GDPR.

Controller

Daniel Haberthür / sibannac GmbH, visionofhemp.ch
Güterstrasse 138
4053 Basel, Switzerland

Email: info@visionofhemp.ch
Managing Directors / Authorized Signatories: Daniel Haberthür, Xavier Karrer
Legal Notice: Imprint
Data Protection Officer: oli@sibannac.net

Types of Processed Data

  • Inventory data (e.g. names, addresses)
  • Contact data (e.g. email addresses, phone numbers)
  • Content data (e.g. text entries, photographs, videos)
  • Usage data (e.g. visited websites, interest in content, access times)
  • Meta/communication data (e.g. device information, IP addresses)

Categories of Data Subjects

Visitors and users of the online offering (hereinafter collectively referred to as “users”).

Purpose of Processing

  • Provision of the online offering, its functions, and content
  • Responding to contact requests and communication with users
  • Security measures
  • Reach measurement / marketing

Definitions

Personal data means any information relating to an identified or identifiable natural person.

Processing means any operation or set of operations performed on personal data.

Pseudonymization means the processing of personal data in such a manner that the data can no longer be attributed to a specific person without additional information.

Profiling means any form of automated processing of personal data to evaluate personal aspects.

Controller means the entity that determines the purposes and means of processing.

Processor means an entity that processes personal data on behalf of the controller.

Relevant Legal Bases

In accordance with Article 13 of the GDPR, we inform you of the legal bases of our data processing. Unless otherwise stated, the following apply: consent (Art. 6(1)(a), Art. 7 GDPR), contract performance / pre-contractual inquiries (Art. 6(1)(b) GDPR), legal obligation (Art. 6(1)(c) GDPR), legitimate interests (Art. 6(1)(f) GDPR), vital interests (Art. 6(1)(d) GDPR).

Security Measures

In accordance with Article 32 GDPR, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk (e.g. access controls, integrity and availability measures, procedures for exercising data subject rights).

Cooperation with Processors and Third Parties

Disclosure or transfer of data takes place only on the basis of a legal permission, your consent, a legal obligation, or our legitimate interests. Processors are engaged on the basis of Article 28 GDPR.

Transfers to Third Countries

Processing in third countries only takes place if the requirements of Articles 44 et seq. GDPR are met (e.g. adequacy decision or standard contractual clauses).

Rights of Data Subjects

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR) / restriction (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
  • Right to withdraw consent (Art. 7(3) GDPR)
  • Right to object to processing, in particular direct marketing (Art. 21 GDPR)

Cookies and Right to Object to Direct Marketing

Cookies are small files stored on users’ devices. There are temporary (“session”) cookies and permanent (“persistent”) cookies. Cookies may store, among other things, shopping cart or login status.

If you do not wish to use cookies, you can disable them in your browser settings. Cookies already stored can also be deleted there. Disabling cookies may limit functionality.

A general opt-out for online marketing cookies is available at: aboutads.info/choices or youronlinechoices.com.

Deletion of Data

Data is deleted or restricted in accordance with Articles 17 and 18 GDPR as soon as it is no longer required for its intended purpose and no statutory retention obligations apply. (Details according to your text.)

Data Backups

We create a daily external backup of our entire website, including content and customer data. Backups are automatically deleted after 7 days and are used exclusively for recovery in the event of a failure.

Order Processing in the Online Shop and Customer Account

We process customer data as part of order processing for selection, ordering, payment, and delivery/performance. Processed data includes inventory, communication, contract, and payment data.

Session cookies store shopping cart contents, permanent cookies store login status. Data is archived in accordance with legal requirements and deleted after expiration.

IP address and time of user actions may be stored to protect against misuse; IP addresses are anonymized or deleted after a maximum of 7 days.

External Payment Service Providers

We use external payment service providers. The privacy policies of the respective providers apply:

Purchase on Invoice, Credit Check

We do not conduct credit checks ourselves. A credit check is carried out by Swissbilling after address confirmation on the Swissbilling website. Further information: Swissbilling Terms and Swissbilling Privacy Policy.

Online Presence on Social Media

We maintain online presences on social networks to communicate with customers and interested parties. Data may be processed outside the EU. Details and opt-out links:

Integration of Third-Party Services and Content

We integrate third-party services (e.g. videos, maps, fonts). This may require the user’s IP address. Privacy policies:

Use of Social Plugins

We use social plugins (e.g. Facebook). When accessing a page containing a plugin, a direct connection to the provider’s servers may be established. To avoid this, please log out of the respective service and delete your cookies or block third-party cookies in your browser settings.

Further information: Facebook Plugins and Facebook Privacy Policy .