Privacy Policy

This privacy policy complies with the requirements of the EU General Data Protection Regulation (GDPR) and the Swiss Federal Act on Data Protection (nFADP).

1. Data Controller

Responsible for data processing:
BanioBits Software Development and IT Solutions
Stefan Studhalter
Kürsiacherweg 10
3203 Mühleberg
Switzerland
Email: hello@baniobits.ch
UID: CHE-430.822.150

2. General Information

Protecting your personal data is important to us. This privacy policy informs you in accordance with Art. 13 and 14 GDPR as well as Art. 19 nFADP about the type, scope, and purposes of the collection and use of personal data as well as your rights as a data subject.

3. Applicable Data Protection Laws

This privacy policy is governed by:

• EU General Data Protection Regulation (GDPR) - Regulation (EU) 2016/679
• Swiss Federal Act on Data Protection (nFADP) - FADP 235.1
• Other applicable national data protection provisions of EU member states

4. Collection and Processing of Personal Data

a) Automatic Data Collection When Visiting the Website

When visiting our website, the following data is automatically collected:

• IP address (anonymized after 24 hours)
• Date and time of access
• Pages and files accessed
• Amount of data transferred
• Browser type and version
• Operating system
• Referrer URL (source page)
• Device type and screen resolution

Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest)
Purpose: Ensuring functionality, security, and optimization of the website
Retention: 7 days, then automatic deletion

b) Web Analytics (Umami)

We use Umami Analytics to analyze website usage. Umami is a privacy-friendly, GDPR-compliant alternative to Google Analytics.

Data processed: Anonymized usage statistics without personal reference
Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest)
Privacy: No cookies, no tracking of individuals, GDPR-compliant
Location: EU servers (Germany)

c) Contact Form and Email Communication

When contacting us via email or contact form, we process the following data:

• Name (optional)
• Email address
• Message content
• Time of contact
• IP address (for spam protection)

Legal basis: Art. 6 para. 1 lit. b GDPR (contract initiation) or Art. 6 para. 1 lit. f GDPR (legitimate interest)
Purpose: Processing your inquiry, communication
Retention: 3 years after completion of correspondence

5. Data Sharing and Transfer

a) Hosting Service Providers

Our website is hosted by external hosting providers. These process data exclusively on our behalf.

Legal basis: Art. 28 GDPR (data processing agreement)
Location: European Union
Guarantees: EU Standard Contractual Clauses, GDPR compliance

b) Other Data Transfers

Data is only shared with third parties:

• With your explicit consent (Art. 6 para. 1 lit. a GDPR)
• To fulfill legal obligations (Art. 6 para. 1 lit. c GDPR)
• To protect vital interests (Art. 6 para. 1 lit. d GDPR)
• For legal disputes (Art. 6 para. 1 lit. f GDPR)

c) Third Country Transfers

Your data is processed primarily within the EU/EEA. Should transfers to third countries be necessary in exceptional cases, these only occur with an adequacy decision from the EU Commission or with appropriate safeguards (Art. 44-49 GDPR).

6. Cookies and Similar Technologies

We deliberately use minimal cookies and similar technologies:

a) Technically Necessary Cookies

• Session cookies: Required for website functionality
• Language settings: To store your preferred language

Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest)
Retention: End of browser session

b) Analytics (Cookie-Free)

Our analytics tool (Umami) works without cookies and does not collect personal data.

c) Cookie Management

You can manage cookies in your browser settings at any time:

• Block all cookies
• Delete cookies after session ends
• Exclude specific websites from cookies

Note: Disabling technically necessary cookies may impair website functionality.

7. Your Rights as a Data Subject

Under GDPR and nFADP, you have the following rights:

a) Right of Access (Art. 15 GDPR, Art. 25 nFADP)

You have the right to request information about the personal data stored about you.

b) Right to Rectification (Art. 16 GDPR, Art. 32 nFADP)

You have the right to request correction of inaccurate or incomplete data.

c) Right to Erasure (Art. 17 GDPR, Art. 32 nFADP)

You have the right to deletion of your data, provided there is no reason for continued storage.

d) Right to Restriction of Processing (Art. 18 GDPR)

You have the right to request restriction of processing of your data.

e) Right to Object (Art. 21 GDPR, Art. 30 nFADP)

You have the right to object to the processing of your data at any time.

f) Data Portability (Art. 20 GDPR, Art. 28 nFADP)

You have the right to receive your data in a structured format.

g) Withdrawal of Consent (Art. 7 para. 3 GDPR)

If you have given consent, you can withdraw it at any time with effect for the future.

Contact for exercising your rights:
Email: hello@baniobits.ch
Response time: We will respond to your request within 30 days.

8. Right to Lodge a Complaint

You have the right to lodge a complaint with a data protection supervisory authority:

For Switzerland:
Federal Data Protection and Information Commissioner (FDPIC)
Feldeggweg 1, 3003 Bern
www.edoeb.admin.ch

For EU citizens:
Competent data protection authority of your EU country of residence
Overview of EU Data Protection Authorities

9. Data Security

We implement technical and organizational measures to protect your data:

• SSL/TLS encryption for all data transmissions
• Regular security updates
• Access control and user authentication
• Regular backups and recovery procedures
• Employee training in data protection

10. Minors

Our website is not directed at persons under 16 years of age. We do not knowingly collect personal data from minors under 16 years of age. If we become aware that such data has been collected, we will delete it immediately.

11. Automated Decision-Making

We do not use automated decision-making including profiling pursuant to Art. 22 GDPR.

12. Changes to This Privacy Policy

We reserve the right to update this privacy policy as needed to adapt it to changed legal situations or business processes. The latest version is always available on our website. We will inform you accordingly of material changes.

Last updated: 8/23/2025
Version: 2.0 (GDPR/nFADP compliant)