1. Controller and Scope
This Privacy Policy explains how DigitalHive GmbH (hereinafter “DigitalHive”, “we”, “us”, or “our”), a company registered and domiciled in Switzerland, processes personal data in connection with the website digitalhive.ch and the services we provide.
We process your personal data in compliance with the Swiss Federal Act on Data Protection (nFADP/DSG, in force since 1 September 2023), the associated Data Protection Ordinance (DPO/DSV), and — where applicable to individuals in the European Economic Area — the EU General Data Protection Regulation (GDPR).
DigitalHive GmbH
Zürich, Switzerland
Email: info@digitalhive.ch
2. Personal Data We Collect
We collect personal data only to the extent necessary to operate our website and deliver our services. The categories of data we collect depend on how you interact with us.
2.1 Data you provide to us
- Contact and enquiry data — name, email address, phone number, company name, project description, and any other details you include when you submit a contact form or request a consultation.
- Contractual data — billing address, company registration details, payment information, and project-related correspondence collected during the course of a client engagement.
- Communication data — content of emails, messages, or other communications you send us.
2.2 Data collected automatically
When you visit our website, certain technical data is collected automatically by our web server and analytics tools:
- IP address (anonymised where possible)
- Date, time, and duration of your visit
- Pages viewed and interactions (clicks, scrolls)
- Referring website or search engine
- Browser type and version, operating system, device type
- Screen resolution and language settings
3. Purposes and Legal Basis for Processing
We process your personal data for the following purposes:
| Purpose | Legal Basis |
|---|---|
| Responding to your enquiries and providing requested information | Pre-contractual measures / legitimate interest |
| Delivering contracted services (WordPress/WooCommerce development, consulting, hosting) | Performance of contract |
| Invoicing, accounting, and financial administration | Legal obligation / performance of contract |
| Analysing website usage to improve our services and user experience | Legitimate interest / consent (cookies) |
| Ensuring website security and preventing abuse | Legitimate interest |
| Complying with legal and regulatory obligations under Swiss law | Legal obligation |
4. Cookies and Tracking Technologies
Our website uses cookies and similar technologies. When you first visit our website, you can choose to accept or decline non-essential cookies via our cookie banner. For detailed information about the cookies we use, their purpose, and how to manage them, please see our Cookie Policy.
5. Third-Party Service Providers
We use the following third-party services to operate our website and business. These providers may process personal data on our behalf:
| Service | Provider | Purpose | Data Location |
|---|---|---|---|
| Google Analytics | Google LLC, USA | Website analytics (anonymised) | USA * |
| Cloudflare | Cloudflare Inc., USA | CDN, DDoS protection, Turnstile (CAPTCHA) | Global / USA * |
| Google Cloud Platform | Google LLC, USA | Website hosting | Europe (Zürich) |
| Google Fonts | Google LLC, USA | Web font delivery | Global * |
* Where data is transferred to the USA or other countries outside Switzerland/EEA, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) and/or the provider’s participation in recognised frameworks (e.g., EU-US Data Privacy Framework) in accordance with Art. 16-17 nFADP.
6. Data Sharing
We do not sell, trade, or rent your personal data to third parties. We may share your data in the following limited circumstances:
- Service providers — trusted partners who help us deliver our services (hosting, email, analytics) under contractual data processing agreements.
- Professional advisors — lawyers, accountants, and auditors where necessary for legitimate business purposes.
- Legal requirements — where required by Swiss law, court order, or a binding order from a Swiss authority (e.g., FDPIC).
- Business transfer — in the event of a merger, acquisition, or sale of assets, your data may be transferred to the successor entity.
7. Data Retention
We retain personal data only as long as necessary for the purposes described in this policy, or as required by Swiss law:
- Contact form submissions — 2 years from last interaction, unless a contractual relationship is established.
- Contractual and project data — 10 years after conclusion of the contract (Swiss commercial obligation, Art. 958f OR).
- Invoices and accounting records — 10 years (Art. 958f OR).
- Analytics data — 26 months (Google Analytics default retention).
- Server logs — 90 days.
After expiry of the retention period, data is securely deleted or anonymised.
8. Your Rights
Under the nFADP and, where applicable, the GDPR, you have the following rights regarding your personal data:
- Right of access (Art. 25 nFADP / Art. 15 GDPR) — You may request confirmation of whether we process your data and obtain a copy.
- Right to rectification (Art. 6 para. 5 nFADP / Art. 16 GDPR) — You may request correction of inaccurate or incomplete data.
- Right to erasure (Art. 17 GDPR) — You may request deletion of your data where there is no overriding legal basis for continued processing.
- Right to restrict processing (Art. 18 GDPR) — You may request restriction of processing in certain circumstances.
- Right to data portability (Art. 28 nFADP / Art. 20 GDPR) — You may request your data in a structured, commonly used, machine-readable format.
- Right to object (Art. 21 GDPR) — You may object to processing based on legitimate interests.
- Right to withdraw consent — Where processing is based on consent, you may withdraw it at any time without affecting prior processing.
To exercise any of these rights, please contact us at info@digitalhive.ch. We will respond within 30 days.
You also have the right to file a complaint with the Federal Data Protection and Information Commissioner (FDPIC) in Switzerland or, if applicable, a supervisory authority in the EU/EEA.
9. Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:
- SSL/TLS encryption for all data in transit
- Encrypted server storage and regular security updates
- Access controls and authentication for internal systems
- Regular backups stored in geographically separate locations
- Staff awareness of data protection obligations
10. Third-Party Links
Our website may contain links to external websites that are not operated by us. We have no control over the content or privacy practices of these third-party sites and accept no responsibility for them. We encourage you to review their privacy policies.
11. Children
Our services are directed at businesses and professionals. We do not knowingly collect personal data from individuals under the age of 16. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable law. The updated version will be published on this page with a new “Last updated” date. We encourage you to review this page periodically.
13. Contact
If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact us:
DigitalHive GmbH
Zürich, Switzerland
Email: info@digitalhive.ch