The companies CONFIDA Holding Ltd., CONFIDA Immobilien AG and their subsidiary . wohn-loft Immobilien AG (available at: www.confida.li/en/real-estate/developments/main-contractorfull-service-general-contractor/) , CONFIDA Trust, Management and Tax Consulting Ltd, all domiciled at Kirchstrasse 3, LI-9490 Vaduz, (hereinafter "Companies") process information and personal data that refer to you (hereinafter "Data Subject"). Basically, such information is processed by the Companies in the context of existing or intended business relations, including the use of websites. The Companies seek the best possible protection of your personal data.
Controller within the meaning of the European Union's General Data Protection Regulation GDPR (hereinafter "GDPR") is CONFIDA Holding Ltd., Kirchstrasse 3, LI-9490 Vaduz. The Companies have appointed a joint Data Protection Officer (see item 14).
This Data Protection Policy (hereinafter "Policy") applies to the Companies. It describes the processing of personal data in connection with the provision of services by the Companies and their websites. The basis of this Policy is the GDPR, the Data Protection Act (DPA) and the relevant special statutory provisions.
The Companies reserve the right to adjust the Policy if necessary. In case of adjustments you should check if you agree to them.
The Companies reserve the right to adjust the Policy if necessary. In case of adjustments you should check if you agree to them.
Personal data is any information by which a natural person can be directly or indirectly identified. This includes, for example, name, address, e-mail address, telephone number, date of birth, age, gender and tax identification number. Sensitive data (a specially protected kind of data), such as health data or data related to criminal proceedings, is also included.
The Companies collect, process and use your personal data exclusively in accordance with the requirements of Art. 5 and Art. 6 GDPR (performance of a contract, legal obligation, vital interest or consent of the data subject).
Only that personal data is collected which is necessary for the performance and processing of our services or which is voluntarily provided by you.
The companies are subject to occupational confidentiality and secrecy requirements, which can be derived from data protection law, contract law or occupational secrecy regulations. When processing personal data, the Companies are bound by these requirements. Personal data is processed (i) for the performance of a contract, (ii) for compliance with our legal or regulatory duties, (iii) for the pursuit of our legitimate interests and (iv) for observing public-interest requirements (such as the prevention or detection of criminal offenses).
The Companies apply cookies to obtain information on how their websites are used. Cookies are small files stored on your computer that serve to store page information. Therefore, certain information doesn't need to be re-entered when visiting the websites again. Stored information can include language settings on a website, login status, a shopping basket, or the section where a video was viewed. This means that certain information does not have to be repeated when the website is visited again. You can prevent the application of cookies by adjusting your browser software and delete any cookies already set by a website of the Companies. By not taking these measures, you agree to the application of cookies when using the websites of the Companies.
On using the websites of the Companies, access data (e.g., log files, IP address, date and time of access, name of the accessed file, access status, top-level domain, web browser used, operating system used) are stored. The Companies use this data for statistical purposes and for technical evaluations, for the optimization of the server infrastructure, for the calculation of access frequencies and finally for drawing conclusions on how to improve usability and functions.
The following cookie types and functions are distinguished:
· Temporary cookies (also: session cookies): Temporary cookies are deleted at the latest after a user has left an online offer and closed his browser.
· Permanent cookies: Permanent cookies remain stored even after closing the browser. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. The interests of users who are used for range measurement or marketing purposes can also be stored in such a cookie.
· First-Party-Cookies: First-Party-Cookies are set by ourselves.
· Third party cookies: Third party cookies are mainly used by advertisers (so-called third parties) to process user information.
· Necessary (also: essential or absolutely necessary) cookies: Cookies may be absolutely necessary for the operation of a website (e.g. to store logins or other user inputs or for security reasons).
· Processed data types: Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
· Affected persons: Users (e.g. website visitors, users of online services).
· Legal basis: consent (Art. 6 para. 1 lit. a GDPR), legitimate interests (Art. 6 para. 1 lit. f. GDPR).
5.1 Google Analytics
Google Analytics, a service by Google LLC ("Google"), 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, may be used to analyze the data of the websites. The cookies, applied by Google Analytics for the analysis, do not contain personally identifiable information. Your IP address is truncated directly on your computer. Your IP address is transmitted to Google Analytics in this anonymous form. Google Analytics will therefore not be able to associate your IP address with other information held by Google Analytics. Data are only transmitted to third parties, if this is provided for by law.
You may object to the future application of cookies by Google Analytics at any time via the following opt-out link: Opt-out Google Analytics: https://support.google.com/analytics/answer/181881?hl=de.
In case of objecting to the application of cookies by Google Analytics, it is possible that you will not be able to fully use all functions of the websites. By waiving the objection (opt-out), you declare your consent to the processing of your data by Google Analytics in the manner described and for the purposes stated above.
If the collection and processing of personal data is necessary when using the websites of the Companies, such data is used for the purposes of authentication, the performance of pre-contractual clarifications, identifications and compliance checks and stored on a data carrier in Liechtenstein. Furthermore, data you enter in text or search fields on the websites of the Companies is processed and saved. This data is used only according to the purpose specified.
The websites of the Companies may be linked to the websites of other operators or to contents on the websites of other operators. The Companies have no influence on the websites of other operators (hereinafter "Third Party Websites") and therefore cannot assume responsibility or liability neither for the accuracy, completeness, up-to-date or legality of the content of Third Party Websites nor their data processing practices. Therefore, please also note the data protection policies of the respective Third Party Websites.
Data transmission on the Internet may be vulnerable. Therefore, absolute data protection (for example, against access by third parties) cannot be guaranteed.
5.2 Google Maps
On our website we use Google Maps to display our location and to create a route description. This is a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google".
By being certified according to the EU-US Privacy Shield, www.privacyshield.gov/participant , Google guarantees that the data protection requirements of the EU are also complied with, when processing data in the USA.
If you call up the Google Maps component integrated into our Internet presence, Google stores a cookie on your terminal device via your Internet browser. Your user settings and data are processed in order to display our location and to create a route description. We cannot rule out the possibility that Google may use servers in the USA.
The legal basis is Art. 6 Para. 1 lit. f) GDPR - legitimate interest in optimizing the functionality of our website.
The connection to Google established in this way enables Google to determine which website has sent your enquiry and to which IP address the route description is sent to.
If you do not agree with this processing, you have the option of preventing the installation of cookies by making the appropriate settings in your Internet browser. Details can be found above under "Cookies".
Google offers further information under policies.google.com/privacy, in particular on the possibilities of preventing the use of data.
6.1 Data protection provisions for the use of Facebook
On this website, the controller integrates Facebook components. Facebook is an enterprise and a social network.
A social network is a place for social meetings on the Internet, an online community, which usually permits users to communicate and interact with each other in a virtual space. A social network may serve as a platform for exchanging opinions and experiences or enable the Internet community to provide personal or business-related information. Facebook permits social network users to create private profiles, upload photos, and establish a network through friend requests.
The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, United States. If a person lives outside the United States or Canada, the controller is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Each visit to one of the webpages of this website, which is operated by the controller and into which a Facebook component (Facebook plug-in) is integrated, will automatically cause the web browser on the information technology system of the data subject to download display data of the installed component from Facebook. An overview of all Facebook plug-ins can be accessed on developers.facebook.com/docs/plugins/. In the course of this technical procedure Facebook obtains information on the specific web page of our website visited by the data subject.
If the data subject is simultaneously logged into Facebook, Facebook detects, on each visit to our website by the data subject and during the entire duration of its stay on our website, the specific webpage of our website visited by the data subject. This information is collected through the Facebook component and assigned by Facebook to the individual Facebook account of the data subject. If the data subject clicks one of the Facebook buttons integrated on our website, e.g. the "Like" button, or if the data subject submits a comment, Facebook assigns this information to the individual Facebook user account of the data subject and stores this personal data.
Facebook always obtains, through the Facebook component, information about a visit to our website by the data subject, if the data subject is simultaneously logged into Facebookk when visiting our website. This occurs regardless of whether the data subject clicks the Facebook component or not. If such a transmission of information to Facebook is not wanted, the data subject can prevent it by logging out of its Facebook account before calling our website.
The data protection guideline published by Facebook, which is available on facebook.com/about/privacy/, provides information about the collection, processing and use of personal data by Facebook. In addition, it explains which optional settings Facebook offers to protect the privacy of the data subject. In addition, various applications are available that permit to block data transmission to Facebook. Such applications can be used by the data subject to prevent data transmission to Facebook.
If the data subject clicks on one of the Facebook buttons integrated into our website, such as the "Like" button, or if the data subject comments, Facebook assigns this information to the data subject's personal Facebook user account and stores this personal data.
Facebook receives information through the Facebook component that the individual concerned has visited our website whenever the individual concerned is logged into Facebook at the same time as accessing our website, regardless of whether the individual concerned clicks on the Facebook component or not. If the data subject does not want this information to be transferred to Facebook in this way, he or she can prevent the transfer by logging out of his or her Facebook account before accessing our website.
Facebook's published data policy, which is available at de-de.facebook.com/about/privacy/, discloses the collection, processing and use of personal data by Facebook. It also explains what settings Facebook offers to protect the privacy of the person concerned. In addition, various applications are available that make it possible to suppress data transmission to Facebook. Such applications can be used by the data subject to suppress data transmission to Facebook.
6.2 Data protection provisions about the application and use of Twitter
On this website, the controller integrates components of Twitter. Twitter is a multilingual, publicly-accessible microblogging service on which users may publish and spread so-called ‘tweets,’ e.g. short messages, which are limited to 280 characters. These short messages are available for everyone, including those who are not logged on to Twitter. The tweets are also displayed to so-called followers of the respective user. Followers are other Twitter users who follow a user's tweets. Furthermore, Twitter allows you to address a wide audience via hashtags, links or retweets.
The operating company of Twitter is Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, UNITED STATES.
With each call-up to one of the individual pages of this Internet site, which is operated by the controller and on which a Twitter component (Twitter button) was integrated, the Internet browser on the information technology system of the data subject is automatically prompted to download a display of the corresponding Twitter component of Twitter. Further information about the Twitter buttons is available under about.twitter.com/de/resources/buttons. During the course of this technical procedure, Twitter gains knowledge of what specific sub-page of our website was visited by the data subject. The purpose of the integration of the Twitter component is a retransmission of the content of this website to allow our users to introduce this web page to the digital world and increase our visitor numbers.
If the data subject is logged in at the same time on Twitter, Twitter detects with every call-up to our website by the data subject and for the entire duration of their stay on our Internet site which specific sub-page of our Internet page was visited by the data subject. This information is collected through the Twitter component and associated with the respective Twitter account of the data subject. If the data subject clicks on one of the Twitter buttons integrated on our website, then Twitter assigns this information to the personal Twitter user account of the data subject and stores the personal data.
Twitter receives information via the Twitter component that the data subject has visited our website, provided that the data subject is logged in on Twitter at the time of the call-up to our website. This occurs regardless of whether the person clicks on the Twitter component or not. If such a transmission of information to Twitter is not desirable for the data subject, then he or she may prevent this by logging off from their Twitter account before a call-up to our website is made.
The applicable data protection provisions of Twitter may be accessed under twitter.com/privacy.
6.3 Data protection provisions about the application and use of YouTube
On this website, the controller integrates YouTube components. YouTube is an Internet video portal that permits video publishers to upload video clips and visitors to watch, assess and comment on these video clips free of charge. YouTube allows to publish all kinds of videos, so you can access both full movies or TV broadcasts and music videos, trailers, and videos made by users through the Internet portal.
The operating company of YouTube is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, UNITED STATES. YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, UNITED STATES.
Each visit to one of the webpages of this website, which is operated by the controller and on which a YouTube component (YouTube video) is integrated, will automatically cause the Internet browser on the subject's information technology system to to download display data of the installed YouTube component. Further information about YouTube may be obtained on www.youtube.com/yt/about/en/. During the course of this technical procedure, YouTube and Google obtain information on the specific webpage of our website visited by the data subject.
If the data subject is simultaneously logged into YouTube, YouTube detects, by calling a webpage with a YouTube video, what specific webpage of our website is visited by the data subject. This information is collected by YouTube and Google and assigned to the individual YouTube account of the data subject.
YouTube and Google will always receive information on the data subject's visit to our website through the YouTube component, if the data subject is simultaneously logged into YouTube when visiting our website; this occurs regardless of whether the person clicks a YouTube video or not. If such transmission of this information to YouTube and Google is not wanted, the data subject can prevent it by logging out of its YouTube account before calling our website.
YouTube's data protection provisions, available on www.google.com/intl/en/policies/privacy/, provide information about the collection, processing and use of personal data by YouTube and Google.
We include in our online offer functional and content elements that are obtained from the servers of their respective providers (hereinafter referred to as "third-party providers"). These may be, for example, graphics, videos or social media buttons as well as contributions (hereinafter uniformly referred to as "content").
The integration always assume that the third party providers of this content process the IP address of the user, since they could not send the content to their browser without the IP address. The IP address is therefore required for the presentation of these contents or functions. We make every effort to use only those contents whose respective providers only use the IP address to deliver the contents. Third party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. Pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user's device and may contain technical information on the browser and operating system, websites to be referred to, visiting times and other information on the use of our online services as well as may be linked to such information from other sources.
· Processed data types: Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, photographs, videos), inventory data (e.g. names, addresses).
· Affected persons: Users (e.g. website visitors, users of online services), communication partners.
· Legal basis: consent (Art. 6 para. 1 lit. a GDPR), legitimate interests (Art. 6 para. 1 lit. f. GDPR), fulfilment of contract and pre-contractual enquiries (Art. 6 para. 1 lit. b. GDPR).
7.1 Services and service providers used
· Facebook Social Plugins
· Google Fonts
In order to enable the display of certain fonts on our website, a connection to the Google server in the USA is established when our website is called up.
Through the connection to Google established when our website is accessed, Google can determine from which website your enquiry was sent and to which IP address the representation of the font is to be transmitted.
· Instagram Plugins and Buttons
· Font Awesome
We include a font of the provider Linotype GmbH, Werner-Reimers-Straße 2-4, 61352 Bad Homburg ("fonts.com"). The user's data will be used solely for the purpose of displaying the fonts in the user's browser. The integration takes place on the basis of our legitimate interests in a technically secure, maintenance-free and efficient use of fonts, their uniform presentation and taking into account possible licensing restrictions for their integration. With each call of this web page files are loaded by a "fonts.com" server for the representation of the texts in a certain font. Your IP address can be transferred to a server of "fonts.com" and stored in the usual weblog. The further processing of this information is incumbent on "fonts.com", the corresponding conditions and setting possibilities can be found in the data protection information www.monotype.com/legal/privacy-policy of "fonts.com".
7.2 Integration of third-party software, scripts or frameworks
We integrate into our online offer software which we retrieve from servers of other providers (e.g. function libraries which we use for the purpose of displaying or user-friendliness of our online offer). The respective providers collect the user's IP address and can process it for the purposes of transmitting the software to the user's browser and for security purposes as well as for the evaluation and optimization of their offer.
· Processed data types: Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, photographs, videos).
· Affected persons: Users (e.g. website visitors, users of online services), communication partners.
· Legal basis: consent (Art. 6 para. 1 sentence 1 lit. a GDPR), legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR).
The following third-party software, scripts or frameworks (e.g. jQuery, Typo3, Fancybox, PHP) are used:
We send newsletters, e-mails and other electronic notifications (hereinafter referred to as "newsletters") only with the consent of the recipient or a legal permission. If the contents of the newsletter are specifically described within the scope of registration, they are decisive for the consent of the user. In addition, our newsletters contain information about our services and us.
In order to subscribe to our newsletters, it is generally sufficient for you to enter your e-mail address. However, we may ask you to provide a name for the purpose of addressing us personally in the newsletter, or other information, if this is required for the purposes of the newsletter.
You can also subscribe to our free newsletter via the WhatsApp instant messaging service. WhatsApp is a service of WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, a subsidiary of WhatsApp Inc., 1601 Willow Road, Menlo Park, California 94025, USA, both hereinafter referred to as "WhatsApp". Some of the user data is processed on WhatsApp's servers in the USA, and is certified in accordance with the EU-US data protection shield („EU-US Privacy Shield“) https://www.privacyshield.gov/participant?id=a2zt0000000TSnwAAG&status=Active. WhatsApp guarantees, however, that the data protection requirements of the EU will also be complied with when processing data in the USA. In addition, WhatsApp offers further data protection information https://www.whatsapp.com/legal/#privacy-policy.
To receive our newsletter via WhatsApp, you need a WhatsApp user account. Details of what information WhatsApp collects when you register can be found in the above privacy statement.
Legal basis for the dispatch of the newsletter and the analysis is the consent in accordance with Art. 6 Para. 1 lit. a.) GDPR. You can block the receipt of the newsletter by making a setting in the WhatsApp software on your terminal device.
You may revoke your consent to receive the newsletter at any time with effect for the future in accordance with Art. 7 para. 3 GDPR. For this purpose, you only need to inform us of your revocation.
Advertising communication by post, fax or telephone
We process personal data for the purposes of advertising communication, which can take place via various channels such as e-mail, telephone, post or fax. In this context, we comply with legal requirements and obtain the necessary consent, unless communication is permitted by law.
Recipients have the right to revoke their consent at any time or to object to advertising communication at any time.
Following revocation or objection, we may store the data required to prove consent for up to two years on the basis of our legitimate interests before deleting them. The processing of this data is limited to the purpose of a possible defence against claims. An individual request for deletion is possible at any time, provided that the former existence of a consent is confirmed at the same time.
· Processed data type: Inventory data (e.g. names, addresses), contact data
(e.g. e-mail, telephone numbers).
· Affected person(s): Communication partner.
· Purpose of processing: direct marketing (e.g. E-Mail or postal way).
· Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a GDPR),
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR).
Video surveillance is carried out in order to safeguard the right of domicile and legitimate interests of us or third parties (Art. 6 Para. 1 f GDPR) in order to guarantee a necessary high standard of security.
The surveillance of the access to the buildings Kirchstrasse 1, Kirchstrasse 3, Kirchstrasse 7 and Heiligkreuz 6 by video surveillance is carried out on the purpose and basis of Art. 6 Para. 1 lit. f GDPR (legitimate interest) and serves to protect the right of domicile, property (buildings, material assets), the prevention and clarification of criminal offences (e.g. vandalism, burglary and theft) and personal protection (employees, customers and guests).
The video recordings shall only be used or passed on if this is necessary within the framework of possible criminal prosecution. In this case, the recipients are the responsible law enforcement authorities.
The stored video recordings are deleted after fourteen days.
Responsible for video surveillance:
Confida Holding AG
Tel: +423 235 83 83
Personal data collected as part of the business activities of the Companies is generally not disclosed to third parties.
In order to fulfill business assignments, it is however possible that your personal data is forwarded to third parties due to processing requirements or statutory provisions. Your personal data is forwarded according to the provisions of the GDPR.
Furthermore, we inform you that the Companies, as part of their business activities and in order to fulfill statutory due diligence requirements, may obtain information about you from third parties.
The Companies transmit your personal data only to countries to which the EU Commission attests an appropriate level of data protection. If the Companies submit your personal data to countries that do not have a reasonable, attested level of data protection, the Companies take steps to ensure that your personal data is protected by concluding an agreement with the recipients in those states on the basis of standard contractual clauses (2010/87 / EC ). and / or 2004/915 / EC ).
The Companies take appropriate technical and organizational measures to protect any personal data from loss, unauthorized access or misuse, both in terms of data processing and data storage and in relation to their internet presence.
Notwithstanding the data protection measures taken, you must be aware that data transmission on the Internet - this is true both for websites and e-mail services - involves uncontrolled and cross-border transmission. Even if the sender and the recipient are in the same country, cross-border data transmission may be involved. Therefore, the Companies cannot guarantee the confidentiality of data transmitted on the internet. When you disclose personal information on the internet, you must be aware that third parties may access, read, modify, falsify, monitor, destroy or misuse this information. Data transmission may also be delayed. Moreover, data may be lost during transmission. Furthermore, third parties may draw conclusions about existing business relationships. Therefore, the Companies cannot take responsibility for the security of your data while it is being transmitted on the internet and disclaim all liability for direct and indirect damage. For data protection and security reasons, you are advised to contact the Companies through other or secure means of communication.
The Companies' systems required for data processing are located in Liechtenstein. The data transmitted by you will be kept for at least six months and stored for as long as it is operationally necessary or required by law.
Right to Information
You have the right to request information about your personal data that is stored by the Companies. A request for information, together with proof of identity, must be sent in writing to the Data Protection Officer (see item 14).
Upon receipt of your request for information, you will be informed within the statutory period of 30 days. The information may be refused, restricted or postponed to the extent required by law or due to the prevailing interest of a third party or the company the request is addressed to.
The request for information may be combined with a request for rectification or erasure of data.
Right to Rectification or Erasure
You have the right to request, in writing and free of charge, the rectification or erasure of your personal data, insofar as these are incorrect or stored or processed without good reason. A reasoned request for rectification or erasure must be sent to the Data Protection Officer (see item 14), accompanied by a proof of identity.
Your request for rectification or erasure will be processed upon receipt within a reasonable time. Thereafter, the completion of your request for rectification or erasure will be confirmed to you.
Erasure may be prevented by legal regulations. In such a case, the Companies will process your personal data only to the extent necessary to comply with the statutory requirements.
Right of Objection or Cancellation
You have the right to object in writing, in whole or in part, to the processing of your personal data or to cancel your consent to the processing of such data. The objection or cancellation must be addressed in writing to the Data Protection Officer (see item 10).
The receipt of your objection or cancellation will be confirmed to you and thereafter the concerned data will be deleted.
To comply with an objection or cancellation may be contrary to statutory regulations. In such a case, the Companies will process your personal data only to the extent necessary to comply with the statutory requirements.
Right to Restriction
You have the right to restrict the processing of your personal data with regard to the transmission of such data to third parties. An application for restriction must be sent in writing to the Data Protection Officer (see item 14) accompanied by proof of identity.
The receipt of your application for restriction will be confirmed and your application will be completed within a reasonable time.
Such restriction may conflict with legal regulations. In such a case, the Companies will only transmit your personal data to third parties to the extent necessary to comply with the statutory requirements.
Right of Complaint
You have the right to file a complaint with the competent Liechtenstein supervisory authority. You may also contact another supervisory authority of an EU or EEA Member State, for example at your place of residence or work or at the place of the alleged infringement.
The contact details of the Data Protection Authority in Liechtenstein are as follows:
Liechtenstein Data Protection Authority
P.O. Box 684
Tel: +423 236 60 90
For questions about data protection and data processing, please contact the Data Protection Officer of the Companies in writing. You can contact our Data Protection Officer as follows:
CONFIDA Holding Ltd.
Data Protection Officer
Tel: +423 235 83 83