We value your privacy and use cookies to analyze traffic and enhance your experience. Learn more in our Privacy Policy

Vayron Logo

Privacy Policy

Last Updated: July, 2025

Vayron AG ("we", "us", "our") is committed to protecting your privacy and ensuring that your personal data is processed in accordance with the Swiss Federal Act on Data Protection (nFADP) and the European General Data Protection Regulation (GDPR).

1. Controller

Vayron AG
Maneggstrasse 33
8041 Zurich
Switzerland
Email: privacy@vayron.ch

2. Scope

This Policy applies to all personal data you submit to, or which we collect from, your use of https://www.vayron.ch/ (the "Site") and any associated services or mobile applications.

3. Personal Data We Collect

Category Examples Source
Identity & Contact Data Name, email address, message You (contact forms)
Technical & Usage Data IP address, browser type, device information, pages visited, time stamps Automatically via cookies & analytics
Preferences & Consent Choices Cookie consent settings (analytics, marketing) You (cookie banner/modal)
Marketing Data IP address, pages viewed, interactions (via HubSpot) HubSpot scripts (on consent)

4. Purposes & Legal Bases

Purpose Personal Data Legal Basis
Strictly Necessary Functionality Consent preferences (localStorage) Legitimate interest (ensuring site functionality)
Analytics & Performance Technical & usage data Your consent (Art 6 (1)(a) GDPR)
Marketing & Lead Generation Identity, contact, technical Your consent (Art 6 (1)(a) GDPR)
Contact Form Processing & Follow-up Identity & contact data Performance of contract (Art 6 (1)(b) GDPR) or legitimate interest to respond to inquiries

5. Cookies & Tracking Technologies

Our Site uses the following categories of cookies and similar technologies:

  • Strictly Necessary
    Purpose: Enable core functionality (e.g. consent banner display, preventing repeated prompts).
    Legal Basis: Legitimate interest.
    Retention: Session or up to 1 year (localStorage).
  • Analytics (Google Analytics, disabled until you consent)
    Purpose: Measure and improve website performance, analyze traffic.
    Legal Basis: Your consent (Art 6 (1)(a) GDPR).
    Provider: Google Ireland Limited.
    Data Transfers: Data stored in EU; Google may transfer to US under Standard Contractual Clauses.
  • Marketing (HubSpot, disabled until you consent)
    Purpose: Lead capture, marketing automation, personalized communications.
    Legal Basis: Your consent (Art 6 (1)(a) GDPR).
    Provider: HubSpot, Inc. (EU data region).

6. Third-Party Processors

We engage the following processors, all bound by nFADP & GDPR-compliant data-processing agreements:

  • Google Analytics (performance analytics)
  • HubSpot (marketing automation & lead management)
  • Hosting provider (web infrastructure and backups)
  • Email service provider (transactional messages)

7. International Transfers

Where data is transferred outside Switzerland or the EEA (e.g., to HubSpot in the US), we rely on:

  • Adequacy decisions (Switzerland ↔ EU)
  • Standard Contractual Clauses approved by the European Commission

to ensure an adequate level of protection.

8. Data Retention

Data Category Retention Period
Contact form submissions 5 years from last contact
Analytics & usage logs 26 months (Google Analytics default)
Cookie consent records 1 year

After these periods, data is securely deleted or aggregated in anonymized form.

9. Your Rights

Under GDPR and Swiss law, you have the right to:

  • Access: Request a copy of your personal data.
  • Rectification: Correct inaccurate or incomplete data.
  • Erasure ("Right to be Forgotten"): Delete data where no legitimate basis remains.
  • Restriction: Temporarily limit processing.
  • Portability: Receive your data in a structured, machine-readable format.
  • Object: Challenge processing based on legitimate interests or marketing.
  • Withdraw Consent: At any time, without affecting prior processing.

To exercise any right, email privacy@vayron.ch.

10. Security Measures

We implement appropriate technical and organizational measures, including:

  • HTTPS/TLS encryption
  • Regular security assessments
  • Access controls and logging
  • Data minimization and pseudonymization where feasible

11. Updates to This Policy

We may update this Policy to reflect changes in regulations or our practices. The "Last Updated" date will indicate when changes were made. Please review periodically.

Back to Vayron