Skip to Content

Privacy Policy

We are pleased about your visit to our website www.ontronix.com  and your interest in our company, our products and services. The protection of your personal data, such as date of birth, name, phone number, address, etc., is very important to us.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect from you when you visit our website.

Our data protection practices comply with the legal regulations of the Swiss Federal Act on Data Protection (FADP) and the EU General Data Protection Regulation (GDPR).

The following privacy policy serves to fulfill the information obligations arising from the Federal Data Protection Act (FDPA) and the General Data Protection Regulation (GDPR). These can be found, for example, in Articles 19 et seq. of the FDPA and Articles 13 et seq. of the GDPR.
We would like to point out that our website may contain links from third parties to which our privacy policy does not extend.


1. Owner, Responsible Party

The controller within the meaning of Art. 5 letter j FADP or Art. 4 No. 7 GDPR is the person who, alone or jointly with others, decides on the purposes and means of processing personal data. The controller pursuant to Article 4 No. 7 GDPR is also the recipient of the personal data within the meaning of Article 4 No. 9 GDPR. Any third-party recipients will be identified separately.


With regard to our website, the owner or responsible party is:

 ONTRONIX AG

Weinfelderstrasse 82

9542 Münchwilen TG

Switzerland

Email info@ontronix.com

Phone ​​+41 58 521 41 41

The contact details of the Swiss supervisory authority:

Federal Data Protection and Information Commissioner

Feldeggweg 1

3003 Bern

Switzerland

Phone ​+41 58 462 43 95

https://www.edoeb.admin.ch/en/contact-2

Please check the internet for information about your country-specific regulatory authority.


2. Provision of the Website and Creation of Log Files

Each time our website is accessed, our system automatically collects data and information from the accessing device (e.g., computer, mobile phone, tablet).


2.1 Collection and Processing of Personal Data

(1) Information about browser type and version used;

(2) Operating system of the accessing device;

(3) Hostname of the accessing computer;

(4) IP address of the accessing device;

(5) Date and time of access;

(6) Websites and resources (images, files, other page content) accessed on our website;

(7) Websites from which the user's system accessed our website (referrer tracking);

(8) Notification of whether the access was successful;

(9) Amount of data transferred

This data is stored in our system's log files. The data is not stored together with the personal data of any specific user, so individual website visitors cannot be identified.


2.2 Legal Basis for the Processing of Personal Data

The processing of personal data is carried out in accordance with the principle of lawfulness (Art. 6 para. 1 FADP) and the principle of good faith (Art. 6 para. 2 FADP or Art. 2 CC) as well as Art. 6 para. 1 lit. f GDPR (legitimate interest).


2.3 Purpose of Data Processing

The temporary, automated storage of data is necessary for the operation of a website visit in order to enable the delivery of the website. The storage and processing of personal data also serves to maintain the compatibility of our website for as many visitors as possible, to combat misuse and to eliminate malfunctions.

For this purpose, it is necessary to log the technical data of the requesting computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. Furthermore, the data help us to optimize the website and to generally ensure the security of our information technology systems.


2.4 Storage Duration

The aforementioned technical data will be deleted as soon as they are no longer needed to ensure the compatibility of the website, but no later than 3 months after accessing our website.


2.5 Right to Restrict, Object, Rectify and Erasing of Data

You can request the restriction of processing pursuant to Art. 18 GDPR or object to processing pursuant to Art. 21 GDPR at any time, as well as request rectification or erasure of the data pursuant to Art. 16 or 17 GDPR. You can find information about your rights and how to exercise them in the section below this privacy policy.


3. Special Features of the Website

Our website offers various features that involve the collection, processing, and storage of your personal data. Below, we explain what happens to this data:


4. Contact Form(s)

4.1 Collection of Personal Data

We collect the data you enter into the contact form.


4.2 Legal Basis for the Processing of Personal Data

The processing of personal data is carried out in accordance with the principle of lawfulness (Art. 6 para. 1 FADP) and the principle of good faith (Art. 6 para. 2 FADP or Art. 2 SCC) as well as Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent by clear affirmative action or behavior or explicit consent).


4.3 Purpose of Data Processing

We use the data collected via our contact form only for processing the specific contact request received through the form. Please note that we may send you emails to the provided address to process your contact request. This is a confirmation that your request has been correctly forwarded to us. However, sending this confirmation is only for your information and not mandatory for us.


4.4 Duration of Storage

After your request has been processed, the collected data will be deleted immediately, unless statutory retention periods apply.


4.5 Right to Restrict, Object to, Rectify Processing and to Erase Data

You may request the restriction of processing pursuant to Art. 18 GDPR or object to processing pursuant to Art. 21 GDPR at any time, as well as request rectification or erasure of data pursuant to Art. 16 or 17 GDPR. You can find information about your rights and how to exercise them in the section below this privacy policy.


4.6 Necessity of Providing Personal Data

The use of the contact forms is voluntary. You are not obliged to contact us via the contact form; you also can use the other contact options listed on our website.

If you wish to use our contact form, you must fill in the fields marked as mandatory. If you do not fill in the necessary information in the contact form, you will either not be able to submit the request, or we will not be able to process your request due to missing information.


5. Legal Basis for the Processing of Personal Data

The processing of personal data is carried out in accordance with the principle of lawfulness (Art. 6 para. 1 GDPR) and the principle of good faith (Art. 6 para. 2 FADP or Art. 2 SCC) as well as Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a (consent by clear affirmative action or behavior or explicit consent).


5.1 Requirements for Data Processing

We process your personal data in good faith and for the purposes set out in this privacy policy. We ensure transparent and proportionate data processing. Should exceptionally these principles not be adhered to, data processing may still be lawful if a corresponding justification exists. Such justifications include, in particular:

  • ​your consent;
  • the performance of a contract or pre-contractual measures;
  • the fulfillment of legal obligations;
  • our legitimate interests, provided that your interests or fundamental rights and freedoms do not override them;

You may be required to provide us with certain personal data so that we can enter into a business relationship with you or fulfill a contract. Without this data, the execution or processing of a contract is generally not possible.

The use of our website may also be restricted if certain technically required data (e.g. your IP address) cannot be processed, as this is necessary for the provision and security of the website.


5.2 Retention Period for Personal Data

We only store personal data for as long as necessary to fulfill the individual purposes for which the data was collected. We store contract data for longer periods because we are legally obligated to do so. In particular, we are required to retain business correspondence, signed contracts, and booking confirmations for up to 10 years.

Insofar as we no longer need your data to provide the services, the data will be restricted from further processing, and we will only use it for accounting and tax purposes.


5.3 Right to Restrict, Object to, Rectify Processing and to Erase Data

You may request the restriction of processing pursuant to Art. 18 GDPR or object to processing pursuant to Art. 21 GDPR at any time, as well as request rectification or erasure of data pursuant to Art. 16 or 17 GDPR.

You can find information about your rights and how to exercise them in the section below this privacy policy.


6. Disclosure of Information to Third Parties

The processing of personal data is carried out in accordance with the principle of lawfulness (Art. 6 para. 1 FADP) and the principle of good faith (Art. 6 para. 2 FADP or Art. 2 SCC).

The disclosure of information to third parties depends on the scope of activities or services described below on our website or our business model. As a matter of principle, we treat your personal data confidentially, processing and storing it only for as long as is necessary for the respective purposes.

Personal data will only be disclosed to the extent necessary, in particular to the following categories of recipients:

  • Public bodies and authorities;
  • Debt collection agencies;
  • Accounting, trust, and auditing firms;
  • Consulting firms (e.g., legal and tax advisors);
  • IT service providers (e.g., web hosting, support, cloud services, website design);
  • Payment service providers (only with your prior consent);
  • Providers of tracking, analytics, conversion, and advertising services;
  • Other third parties, if required by law or necessary to enforce or defend our rights.

Under certain circumstances, we are obliged to disclose your personal data to third parties if they are entitled to do so due to legal provisions, court decisions or official orders. Furthermore, data may be disclosed to authorities if this is necessary for the initiation or conduct of legal proceedings or for the purposes of criminal prosecution, in particular if our legally protected rights are affected.


7. Data Security and Privacy, Email Communication

Your personal data is protected by technical and organizational measures during collection, storage and processing so that it is not accessible to third parties. We cannot guarantee the complete data security of unencrypted communication via email; for highly confidential information, we recommend encrypted communication or postal mail.

Our employees who have access to your data are obligated to comply with data protection regulations. In some cases, it will be necessary to forward your information to affiliated companies as part of order processing. Even in these cases, your data will be treated confidentially.


8. Duration of Data Storage and Rights of the Data Subject

8.1 Duration of Storage

We only store personal data for as long as is necessary to fulfill the purposes for which the personal data was collected, as long as we have a legitimate interest in storing it, or as long as we are legally obligated to do so.


8.2 Right to Information

You have the right to request confirmation as to whether we process personal data concerning you. If this is the case, you have the right to information about the data specified in Sections 25 et seq. of the Federal Act on Data Protection (FADP) or Article 15(1) of the GDPR, provided that the data controller cannot refuse, restrict, or postpone providing this information (see Articles 26 et seq. FADP or Article 15(4) GDPR). We will gladly provide you with a copy of the data.


8.3 Claim for Rectification

Pursuant to Article 32 Paragraph 1 of the FADP or Article 16 of the GDPR, you have the right to request that incorrectly stored personal data (such as address, name, etc.) be corrected, provided that this claim is not contrary to any legal obligation. You can also request that the data we have stored about you be completed at any time. The necessary adjustments will be made immediately.


8.4 Right to delete

In accordance with Article 17 Paragraph 1 GDPR, we will delete the personal data collected about you if:

  • the data is no longer needed;
  • the legal basis for processing has ceased to exist due to the withdrawal of your consent;
  • there are no longer any legitimate grounds for processing;
  • your data is being processed unlawfully;
  • a legal obligation requires it.

The right does not exist according to Art. 17 para. 3 GDPR if:

  • processing is necessary for exercising the right to freedom of expression and information;
  • your data has been collected on the basis of a legal obligation;
  • processing is necessary for reasons of public interest;
  • the data is required for the establishment, exercise, or defense of legal claims.
8.5 Right to Restrict Processing

According to Article 18 Paragraph 1 GDPR, you have the right in certain cases to request the restriction of the processing of your personal data.

This is the case when:

  • the accuracy of your personal data is contested;;
  • the processing is unlawful, and you do not consent to its erasure;
  • the data is no longer needed for the processing purpose, but is required for the establishment, exercise or defense of legal claims;
  • an objection to the processing has been lodged pursuant to Article 21(1) GDPR, and it is still unclear which interests prevail.
8.6 Right of Withdrawal

If you have given us your explicit consent to process your personal data (Art. 6 and Art. 31 FADP as well as Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a GDPR), you can revoke this consent at any time with effect for the future.

Please note that the lawfulness of data processing carried out before your withdrawal of consent remains unaffected. Personal data for which there is a legal obligation to retain it will be deleted after the respective retention periods have expired.


8.7 Right to Object

Pursuant to Article 21 GDPR, you have the right to object at any time to the processing of personal data concerning you which is based on Article 6(1)(f) GDPR (in the context of a legitimate interest). If you have given us your explicit consent to process your personal data (Art. 6 para. 6 FADP and Art. 31 para. 1 FADP), you can revoke this consent at any time.

Please note that the lawfulness of the processing carried out on the basis of the consent until its withdrawal remains unaffected. You are only entitled to this right if special circumstances preclude storage and processing. Data that we are legally obligated to retain will be deleted after the retention period expires.


9. Google Analytics

We use Google Analytics on our website, a web analytics service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, with headquarters of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as "Google").


9.1 Data we Process

Google Analytics is a web analytics service that allows us to analyze and evaluate the use of our website.

In particular, the following information may be collected and processed:

  • IP address;
  • technical information such as browser type, operating system, or screen resolution;
  • usage behavior on the website (e.g., interactions, pages visited);
  • duration of visit;
  • time of access (date and time);
  • referrer URL (previously visited website).

The IP address is typically shortened or anonymized within Google Analytics, so that direct identification of individuals is no longer possible.

When you first visit our website, Google Analytics may generate a unique identifier (e.g., a cookie ID) to recognize your browser on subsequent visits.

If you are logged into your Google account, Google may link the collected data across multiple devices.


9.2 Purpose of Data Processing

Your IP address is used to determine your approximate location. This information allows us to analyze the relevance of our offers in different regions. We also use IP addresses to track which websites visitors come from when they arrive at our website.

Technical information, such as browser type, operating system, and screen resolution, is processed to ensure our website displays correctly on different devices. Interactions, visit duration, date and time of visits are recorded to evaluate and optimize marketing campaigns and offers.

Furthermore, this data allows us to analyze user behavior on our website, such as which content is particularly popular with which visitors. The processing of the referrer URL serves to measure the effectiveness and analyze the various marketing channels.


9.3 Data Transfer

Your data will be shared with Google in accordance with the data sharing policy described above. Since Google is an international company, your data may be transferred by Google to countries outside the European Economic Area (EEA). In particular, data may be transferred to the USA, where data protection laws do not guarantee the same level of protection as in the EU or Switzerland.

However, Google has implemented appropriate measures to ensure the protection of your data, such as standard contractual clauses and other technical and organizational safeguards.


10. Google Fonts

10.1 Use of Google Web Fonts

We use Google Web Fonts on our website to ensure consistent font display. When you visit one of our pages, your browser automatically loads the necessary fonts into its cache via the Google Fonts API so that text and fonts can be displayed correctly.


10.2 Information and its Use

When you visit our website, your browser connects to Google's servers to load the necessary fonts. This allows Google to know that our website was accessed via your IP address. If your browser does not support web fonts, text will be displayed using a default font on your device. We use Google Web Fonts based on our legitimate interest (Art. 6 para. 1 lit. f GDPR) in ensuring a consistent and visually appealing presentation of our online content.

For more information about Google Web Fonts, please see Google's official FAQs: https://developers.google.com/fonts/faq.


11. Social Media

On our website, you'll find icons that link to our profiles on various social media platforms, including X (formerly Twitter) and LinkedIn.

We are active on these platforms to communicate with customers, prospects and users, and to provide information about our products, services and news.

Content you submit, such as comments, videos, images, or links, will be published by the respective social media platform. We do not process or use this content further, but we reserve the right to delete it if necessary. We may use social media platforms to communicate with you or share your content, provided this serves the purpose of informing and communicating with customers.

Clicking on the social media icons on our website may transmit personal data to the respective platforms.


The responsible platform operators and their privacy policies are:

  • Instagram: Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Irland – Privacy Policy
  • X (formerly Twitter): X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA – Privacy Policy

Please note that the processing of this data is carried out exclusively by the respective platform operators. We have no influence over this.


12. Your Rights

12.1 Right to Data Portability

According to Article 20 of the GDPR, you have the right to receive the personal data concerning you from us in a structured, commonly used and machine-readable format. The data can be transmitted either directly to you or to a designated representative, provided this is technically feasible.

Upon request, we will provide you with the following data in particular:

  • Data collected based on your consent (Art. 31 para. 1 FADP and Art. 6 para. 1 lit. a GDPR); 
  • Data we have received from you in connection with existing contracts (Art. 31 para. 2 lit. a FADP, Art. 6 para. 1 lit. b GDPR and Art. 9 para. 2 lit. a GDPR); 
  • Data processed using automated procedures.

Please note that personal data whose transmission would adversely affect the overriding interests of third parties may only be transmitted to a limited extent or not at all in accordance with Art. 26 para. 1 lit. b FADP or Art. 20 para. 4 GDPR.


12.2 Notifications to the FDPIC and the Possibility of Legal Action

The supervisory authority for data protection in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC).

According to Art. 49 of the Data Protection Act, data subjects may file a complaint with the FDPIC if there are indications that data processing violates data protection regulations.

Further information and the contact form can be found here: https://www.edoeb.admin.ch/en/contact-2.


If you suspect that your data is being processed unlawfully on our website, you can seek legal clarification in accordance with Art. 32 of the GDPR. This is usually done by filing a lawsuit pursuant to Art. 28 et seq. of the Swiss Civil Code. If your data is being processed by federal bodies, the procedure is governed by Article 41 of the Data Protection Act. In this case, you can also contact the FDPIC (see above).


12.3 Right to Lodge a Complaint with the Supervisory Authority

If you suspect that your personal data is being processed unlawfully on our website, you can seek legal clarification at any time. Furthermore, you have all other legal options available.  Regardless of the above, you have the right to lodge a complaint with a supervisory authority pursuant to Article 77(1) GDPR.

The right to lodge a complaint under Article 77 GDPR can be exercised in the EU member state where you live, work, or where the alleged infringement occurred. You can choose the competent supervisory authority accordingly. The supervisory authority to which the complaint is submitted will inform you about the status and outcome of your submission. You will also be informed of the possibility of a judicial remedy pursuant to Article 78 GDPR.


13. Technical and Organizational Security Measures

We implement appropriate technical and organizational measures to protect the personal data we process from accidental or intentional manipulation, loss, destruction or unauthorized access, in accordance with the current state of the art. These security measures are continuously reviewed and adapted to technological advancements.

Despite these measures, we assume no liability for data loss or unauthorized access or use by third parties.


14. Changes to this Privacy Policy

We may change this privacy policy at any time. Changes will be published on our website www.ontronix.com . You will not be notified separately of any changes. Therefore, please regularly check the latest version of our privacy policy.

This Privacy Policy is available in German and English. In case of discrepancies, the German version shall prevail.


Last updated on 15. April 2026