Provider and responsible person

Mathias Buschor
Käsereistrasse 14
Berg, St.Gallen

Email address of the provider:

Types of data collected

Personal data that this application processes independently or by third parties includes: trackers; usage data; e-mail; universally unique identifier (UUID); data transmitted during the use of the service.

Full details of each type of personal data processed are provided in the designated sections of this Privacy Policy or selectively through explanatory texts displayed prior to data collection. Personal data may be provided voluntarily by the user or, in the case of usage data, may be collected automatically when this application is used. Unless otherwise specified, the provision of all data requested by this application is mandatory. If the user refuses to provide the data, this may result in this application being unable to provide its services to the user. In cases where this application expressly states that the provision of personal data is voluntary, users may choose not to provide such data without any consequences for the availability or functioning of the service. Users who are unclear about which personal data is mandatory may contact the provider. Any use of cookies - or other tracking tools - by this application or third-party service providers used by this application is for the purpose of providing the service requested by the user and any other purposes described in this document and, if any, in the Cookie Policy.

Users are responsible for all third party personal data obtained, disclosed or shared through this Application and acknowledge that they have obtained consent for the transfer of any third party personal data to this Application.

Type and place of data processing

Processing methods

The provider processes the user data in a proper manner and takes appropriate security measures to prevent unauthorized access and unauthorized forwarding, modification or destruction of data.

The data processing is carried out by means of computers or IT-based systems according to organizational procedures and procedures that focus specifically on the stated purposes. In addition to the controller, other persons internally (personnel administration, sales, marketing, legal department, system administrators) or externally - and in this case necessary, designated by the controller as processor (such as providers of technical services, delivery companies, hosting providers, IT companies or communication agencies) - could operate this application and thus have access to the data. An up-to-date list of these parties can be requested from the provider at any time.

Legal basis of the processing

The provider may process personal data of users only if one of the following applies:

  • Users have given their consent for one or more specific purposes. Note: In some jurisdictions, the provider may be permitted to process personal data until the user objects to such processing ("opt-out") without relying on consent or any other of the following legal bases. However, this does not apply if the processing of personal data is subject to European data protection law;

  • the collection of data is necessary for the performance of a contract with the user and/or for pre-contractual measures arising therefrom;

  • the processing is necessary for compliance with a legal obligation to which the provider is subject;

  • the processing is related to a task carried out in the public interest or in the exercise of official authority vested in the Provider;

  • the processing is necessary for the protection of the Provider's or a third party's legitimate interests.

In any case, the provider will be happy to provide information about the concrete legal basis on which the processing is based, in particular whether the provision of personal data is a legal or contractual obligation or a prerequisite for concluding a contract.


The data will be processed in the provider's branch and in all other places where the bodies involved in data processing are located.

Depending on the location of the users, data transfers may include the transfer of the user's data to a country other than their own. In order to learn more about the place of processing of the transmitted data, users can consult the section with the detailed information on the processing of personal data.

Users also have the right to be informed about the legal basis for the transfer of data to a country outside the European Union or to an international organization that is subject to international law or was founded by two or more countries, such as the UN, as well as about the security measures taken by the provider to protect their data.

If such a transmission takes place, the user can learn more about it by checking the corresponding sections of this document or by contacting the provider via the information provided in the contact part.

Storage period

Personal data will be processed and stored for as long as required by the purpose for which they were collected.


  • Personal data collected for the purpose of fulfilling a contract concluded between the provider and the user will be stored until this contract has been fully fulfilled.

  • Personal data collected to protect the legitimate interests of the provider will be kept for as long as it is necessary to fulfill these purposes. Users can obtain more detailed information about the legitimate interests of the provider in the corresponding sections of this document or by contacting the provider.

In addition, the provider is permitted to store personal data for a longer period of time if the user has consented to such processing as long as the consent is not revoked. In addition, the provider may be obliged to retain personal data for a longer period of time if this is necessary to fulfill a legal obligation or by order of an authority.

After the retention period has expired, personal data will be deleted. Therefore, the right to information, the right to deletion, the right to correction and the right to data portability cannot be asserted after the retention period has expired.

Purposes of the processing

Personal data about the user is collected so that the provider can provide the service and also comply with its legal obligations, respond to enforcement requests, protect his rights and interests (or those of the user or third parties), uncover malicious or fraudulent activities. In addition, data is collected for the following purposes: analytics, management of user databases, hosting and backend infrastructure, interaction with data collection platforms and other third parties and tag management.

Users can find more detailed information about these processing purposes and the personal data used for the respective purpose in the section "Detailed information on the processing of personal data" of this document.

Detailed information on the processing of personal data

Personal data is collected for the following purposes using the following services:

  • Analytics

  • Hosting and backend infrastructure

  • Interaction with data collection platforms and other third parties

  • Tag management

  • Management of user databases

Information on the rejection of interest-based advertising

In addition to any opt-out function provided by the services listed in this document, users can follow the instructions of YourOnlineChoices (EU), the Network Advertising Initiative (USA) and the Digital Advertising Alliance (USA), DAAC (Canada), DDAI (Japan) or other similar services. Such initiatives allow users to select their tracking settings for most advertising tools. The provider therefore recommends that users make use of these means in addition to the information provided in this document.

The Digital Advertising Alliance offers the AppChoices application to control interest-based advertising in mobile apps.

Users can also object to certain advertising functions via the corresponding device settings, e.g. B. via the device settings for advertising on mobile devices or via the general advertising settings.

The rights of users

Users can exercise certain rights in relation to their data processed by the provider.

In particular, users have the right to do the following:

  • Revoke the consent at any time. If the user has previously consented to the processing of personal data, he can revoke his own consent at any time.

  • Object to the processing of their data. The user has the right to object to the processing of his data if the processing is carried out on a legal basis other than consent. Further information is listed below.

  • Receive information regarding your data. The user has the right to know whether the data is processed by the provider, to receive information about individual aspects of processing and to receive a copy of the data.

  • Have it checked and corrected. The user has the right to check the accuracy of his data and to request its updating or correction.

  • Request restriction of the processing of their data. Users have the right to restrict the processing of their data in certain circumstances. In this case, the provider will not process the data for any purpose other than storage.

  • Request deletion or other removal of the personal data. In certain circumstances, users have the right to request the deletion of their data from the provider.

  • Receive your data and have it transferred to another person responsible. The user has the right to receive his data in a structured, common and machine-readable format and, if technically possible, to have it transmitted unhindered to another person responsible. This provision applies if the data is processed automatically and the processing is based on the consent of the user, on a contract in which the user is involved or on pre-contractual obligations.

  • File a complaint. Users have the right to lodge a complaint with the competent supervisory authority.

Details on the right to object to processing

If personal data are processed in the public interest, in the exercise of a sovereign authority conferred on the provider or in order to protect the legitimate interests of the provider, the user can object to this processing by giving a justification that relates to his particular situation.

Users are informed that they can object to the processing of personal data for direct marketing at any time without giving reasons. Whether the provider processes personal data for direct marketing purposes can be found in the corresponding sections of this document.

How the rights can be exercised

All requests for the exercise of user rights can be addressed to the provider via the contact details provided in this document. Applications can be made free of charge and will be processed by the provider as early as possible, at the latest within one month.

Further information on the collection and processing of data

Legal measures

The user's personal data may be processed by the provider for law enforcement purposes within or in preparation for judicial proceedings resulting from the fact that this application or the associated services have not been used properly.

The user declares to be aware that the provider could be obliged by the authorities to disclose personal data.

Further information about the user's personal data

In addition to the information listed in this privacy policy, this application may, upon request, provide the user with other contextual information relating to certain services or to the collection and processing of personal data.

System logs and maintenance

For operational and maintenance purposes, this application and third-party services may collect files that record the interaction taking place through this application (system logs), or use other personal data (e.g. IP address) for this purpose.

Information not included in this privacy policy

Further information on the collection or processing of personal data can be requested from the provider at any time via the contact details listed.

How "Do Not Track" requests are handled

This application does not support do not track requests from web browsers.

Users can find out whether integrated third-party services support the non-tracking protocol in the privacy policy of the respective service.

Changes to this data protection declaration

The provider reserves the right to make changes to this data protection declaration at any time by informing users on this page and, if necessary, about this application and/or - if technically and legally possible - by sending a message about the contact details of the users available to the provider. Users are therefore advised to visit this page regularly and in particular to check the date of the last change indicated at the bottom of the page.

If changes concern the use of data based on the user's consent, the provider will - if necessary - obtain a new consent.