Last update: 28.08.2023
The Privacy Statement describes how and why I collect, process, and use personal data. The responsible handling of data has always been a significant concern for me. I continuously make adjustments to enhance the protection of my customers‘ personal data. Safeguarding your personal data is of great importance to me.
Data I Collect:
— General Personal Data:
I process your general personal data, which includes any information related to an identifiable natural person. A natural person is considered identifiable if the available information allows conclusions to be drawn about their identity.
Example: Your name, IP address, and home address are considered personal data.
— Provided Data:
You often provide me with your personal data yourself. Whenever you enter and submit your personal data to me, it is considered provided data. The transmission of data to me is generally voluntary, but in some cases, it may be necessary to access my services.
Example: You enter your data in a contact form or sign up for a newsletter.
— Collected Data:
When you use my services, I may collect some of your data without your active involvement. This data usually includes information about your device and user behavior.
Example: I collect data about the operating system of the device you used to access my website.
— Product Development:
I strive to improve my offerings continuously. For this purpose, I use your personal data for the development and enhancement of my products and services.
Example: I collect data about visitor behavior on the website to constantly improve user-friendliness.
— Data Sharing:
I may share your personal data with companies that have the autonomy to decide how they use the data. This is often done to comply with legal requirements, transfer an open claim to a debt collection agency, or detect fraudulent activities.
Example: A legal requirement obligates me to share your data with an authority.
— Worldwide Data Processing:
I collaborate with providers from around the world to process your personal data. This enables me to benefit from global offerings and access the best and most reliable services. However, the country to which the data is exported may not have the same data protection standard as Switzerland.
Example: I use the services of a cloud provider like Google, which is based in the USA.
1. What Do I Do?
Joel Burri — Branding, Design & Illustration located at Hohlstrasse 440A in 8048 Zurich operates the website joelburri.ch (hereinafter referred to as “I” or “me”). On this website, you can learn about my studio, use my online services, and get in touch with me. Safeguarding your personal data is of great importance to me. In this Privacy Statement, I inform you transparently and comprehensibly about the data I collect through my website and how I handle it.
2. I inform you about:
- The data collected on joelburri.ch
- Under which conditions I process your data and for what purpose
- How long I retain your data
- When sharing data with third parties is permissible
- How I process your data (individual data processing operations)
- When and how you can object to data processing
- Your rights and how to exercise them
3. Definitions:
— 3.1 What Are Personal Data?
Personal data includes any information relating to a specific or identifiable natural person. This includes, for example, name, address, date of birth, email address, or phone number. Data about personal preferences, such as hobbies or memberships, also fall under personal data.
— 3.2 What Are Particularly Sensitive Personal Data?
Data on religious, ideological, political, or trade union views or activities; data on health, and, where applicable, information on administrative or criminal prosecutions and sanctions, as well as data on social assistance measures, are considered particularly sensitive personal data. If necessary and appropriate, I may collect and process particularly sensitive personal data. In such cases, their processing is subject to stricter confidentiality.
— 3.3 What Is the Processing of Personal Data?
Processing means any handling of personal data, irrespective of the means and procedures used, in particular the collection, storage, retention, use, modification, disclosure, archiving, deletion, or destruction of data.
— 3.4 What Is the Disclosure of Personal Data?
This refers to the transmission or making accessible of personal data, for example, publishing or disclosing it to a third party.
4. How Can You Contact Me?
If you have any questions or concerns regarding the protection of your data by me, you can always contact me via email at . The responsible party for the data processing carried out through this website is:
Joel Yannic Burri
Hohlstrasse 440A
8048 Zurich
5. Will My Privacy Statement Always Remain the Same?
I may change this Privacy Statement at any time. The changes will be published on joelburri.ch, and you will not be separately informed.
6. General Principles:
— 6.1 What Data Do I Collect from You, and Who Provides Me with This Data?
Primarily, I process personal data that you provide to me or that I collect while operating my website. In some cases, I may also receive personal data about you from third parties. The categories may include:
- Personal master data (name, address, date of birth, etc.)
- Contact data (mobile number, email address, etc.)
- Financial data (e.g., account information)
- Online identifiers (e.g., cookie identifiers, IP addresses)
- Location and traffic data
- Audio and visual recordings
- Particularly sensitive data (e.g., biometric data or health-related information)
— 6.2 Under What Conditions Do I Process Your Data?
I process your data in good faith and for the purposes defined in this Privacy Statement. I ensure transparent and proportionate data processing. If, exceptionally, I cannot adhere to these principles, data processing may still be lawful if there is a legal basis. Such legal basis may include:
- Your consent
- The performance of a contract or pre-contractual measures
- My legitimate interests, provided that your interests do not outweigh them
— 6.3 How Can You Revoke Your Consent?
If you have given consent for the processing of your personal data for specific purposes, I will process your data based on that consent, unless another legal basis applies. You can revoke your consent at any time by sending an email to the address specified in the imprint. Revoking your consent will not affect any data processing that has already taken place.
— 6.4 In Which Cases Can I Share Your Data with Third Parties?
— General Principle
I may be required to use the services of third parties or affiliated companies and have them process your data. I ensure, by contract, that these third parties and affiliated companies comply with data protection requirements. Additionally, I may be obliged to disclose your data to authorities. I will only share your personal data if:
- You have consented to it
- It is necessary for contract performance or pre-contractual measures and the enforcement of my rights
- There is a legal obligation to do so
- I have a legitimate interest, provided your opposing interests do not outweigh mine
- International Data Transfer
In the course of data processing, your personal data may be transferred to companies abroad for processing purposes. These companies are subject to the same data protection obligations as I am. The transfer may take place worldwide. If the level of data protection in the destination country does not match that of the EEA area, I will conduct a risk assessment beforehand and ensure, by contract, that the same level of protection is guaranteed as in the EEA area (e.g., by using the EU Commission’s standard contractual clauses or other legally mandated measures). If my risk assessment is negative, I will implement additional technical measures to protect your data. You can access the EU Commission’s standard contractual clauses here.
— 6.5 How Long Do I Retain Your Data?
I only store personal data as long as necessary to fulfill the specific purposes for which the data was collected. Data stored during your visit to my website will be retained for twelve months. An exception applies to analysis and tracking data, which may be retained for a longer period. Contractual data will be stored for a longer period due to legal requirements. For instance, I must retain business communication, concluded contracts, and booking receipts for up to 10 years. Once such data is no longer needed to provide the services, it will be blocked and used only for invoicing and tax purposes.
— 6.6 How Do I Protect Your Data?
I will securely store your data and take all reasonable measures to protect it from loss, unauthorized access, misuse, or alteration. My contractual partners with access to your data are obligated to comply with data protection regulations. In some cases, I may need to forward your inquiries to affiliated companies. In such cases, your data will also be treated confidentially. Within my website, I use the SSL (Secure Socket Layer) protocol in connection with the highest encryption level supported by your browser.
— 6.7 What Rights Do You Have?
— 6.7.1 Right to Information:
You have the right to request information about the data I store about you at any time. Please send your request together with proof of identity to . You also have the right to receive your data in a common file format if I process your data automatically, and you have given consent for such processing, or if you have provided the data in connection with the conclusion or execution of a contract. I may restrict or deny the provision of information or data if it conflicts with my legal obligations, legitimate interests, or the interests of third parties. The processing of your request is subject to the statutory processing period of 30 days. However, I may extend this period due to a high volume of requests, legal or technical reasons, or if I require further information from you. You will be informed about any extension in writing in a timely manner.
— 6.7.2 Deletion and Correction:
You have the right to request the deletion or correction of your data at any time. I may reject the request whether legal regulations require me to retain or not alter the data, or if there is a permissible reason that contradicts your request. Please note that exercising your rights may conflict with contractual agreements and may have corresponding effects on contract fulfillment (e.g., early contract termination or cost implications).
— 6.7.3 Legal Remedies:
If you are affected by the processing of personal data, you have the right to enforce your rights in court or file a complaint with the competent supervisory authority. The competent supervisory authority in Switzerland is the Federal Data Protection and Public Access Commissioner.
7. Individual Data Processing Operations and Their Purpose:
— 7.1 Provision of the Website and Creation of Log Files:
— What Information Do I Receive, and How Do I Use It?
When you visit joelburri.ch, certain data is automatically stored on my servers or servers of services and products that I use and/or have installed for the purposes of system administration, statistics, backup, or tracking. This data includes:
- The name of your internet service provider
- Your IP address (under certain circumstances)
- The version of your browser software
- The operating system of the device used to access the URL
- The date and time of access
- The website from which you accessed the URL
- The search terms you used to find the URL
- Why Am I Allowed to Process This Data?
I primarily use the personal data collected by me to enter into and fulfill contracts with my customers and business partners, especially within the scope of design projects from my customers and the procurement of products and services from my suppliers. Additionally, I use this data to comply with my legal obligations both domestically and internationally. If you are acting on behalf of such a customer or business partner, your personal data might also be affected in this capacity.
Furthermore, I process personal data from you and other individuals, as far as permitted and as seems appropriate to me, particularly for the following purposes, in which I (and sometimes third parties) have a legitimate interest corresponding to the purpose:
- Offering and improving my services, offerings, website, and other platforms where I am present
- Communication with third parties and handling their inquiries (e.g., job applications, media inquiries)
- Examination and optimization of procedures for needs analysis in order to directly address customers, as well as the collection of personal data from publicly accessible sources for customer acquisition
- Advertising and marketing (including event organization), unless you have objected to the use of your data (if I send you advertisements as an existing customer, you can object at any time, and I will then add you to a suppression list against further advertising mailings)
- Market and opinion research, media monitoring
- Assertion of legal claims and defense in connection with legal disputes and official proceedings
- Prevention and investigation of criminal offenses and other misconduct (e.g., conducting internal investigations, data analysis for fraud prevention)
- Ensuring the operation of my business, especially IT, my websites, apps, and other platforms
— Why Am I Allowed to Process This Data?
This data cannot be attributed to any specific individual, and it is not combined with other data sources. The storage of log files is necessary to ensure the functionality of the website and the security of my information technology systems. This is my legitimate interest.
— How Can You Prevent Data Collection?
The data is stored only for the period necessary to achieve the purpose of its collection. Accordingly, the data is deleted after the end of each session. The storage of log files is essential for the operation of the website; therefore, you cannot object to this.
— 7.2 Tracking Pixels:
I may use tracking pixels on my website. Tracking pixels are also known as web beacons. Tracking pixels, including those from third parties whose services I use, are small, usually invisible images that are automatically retrieved when you visit my website. Tracking pixels can collect the same information as server log files. I use them for the same purposes as log files, and you cannot prevent data collection.
— 7.3 Evaluations:
Some of your personal data is automatically processed for the purpose of evaluating certain personal aspects. Such evaluations are primarily used to provide you with targeted information and advice on certain services or products and to conduct appropriate advertising measures, including market and opinion research.
— 7.4 Contact:
— Email:
— What Information Do I Receive, and How Do I Use It?
You have the option to contact me via email. When you contact me via email, the following data is processed:
- Email address
- Content, subject, and date of your email
- Contact information provided by you (e.g., name, possibly phone number, address)
- Why Am I Allowed to Process This Data?
Your information is stored to process the inquiry and to follow up on any subsequent questions. The legal basis for this processing includes pre-contractual measures and my legitimate interests in addressing your inquiry.
— Security Notice:
I inform you that emails can be read or altered during transmission by unauthorized third parties. Emails can be rejected by the spam filter if they are identified as spam due to certain characteristics.
— 7.5 Success and Reach Measurement:
— How Does Success and Reach Measurement Work?
My notifications and messages may contain web links or counting pixels that track whether a specific message was opened and which web links were clicked. Such web links and counting pixels may also capture personal data regarding the use of notifications and messages.
— Why Am I Allowed to Process This Data?
I need this statistical data collection for the success and reach measurement to offer notifications and messages effectively, user-friendly, securely, and reliably based on the needs and reading habits of the recipients, including market and opinion research.
— 7.6 Cookies:
— How Do Cookies Work?
My website uses cookies. Cookies are data records that are stored on your device’s operating system through the browser when you access my website. Cookies do not cause any damage to your computer and do not contain viruses.
— What Information Do I Receive, and How Do I Use It?
Most of the cookies I use are so-called “session cookies”. They are automatically deleted after your visit. Other cookies remain stored on your device until you delete them. These cookies enable me to recognize your browser on your next visit, allowing me to save certain settings (such as language preferences or location information) so that you do not have to enter them again when you revisit the website.
— Why Am I Allowed to Use Cookies?
I use cookies to make my website more user-friendly, effective, and secure. The use of cookies and the processing of data related to it are based on my legitimate interests in achieving the mentioned purposes.
— How Can You Prevent Data Collection via Cookies?
The cookies are stored on your computer, and you have full control over their use. You can delete them completely or deactivate or restrict their transmission by changing the settings in your browser. If you deactivate cookies for my website, some functions of the website may not be fully available.
— 7.7 Google Web Fonts:
— How Does Google Web Fonts Work?
I use web fonts on my website to display fonts uniformly, which are provided, among others, by Google. When you access one of my pages, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.
— What Information Do You Share with Me, and How Is It Used?
Your browser establishes a connection to Google’s servers, allowing Google to learn that my website was accessed via your IP address. If your browser does not support web fonts, a default font will be used on your computer.
— Why Am I Allowed to Use Google Web Fonts?
The use of Google Web Fonts is in the interest of a consistent and appealing presentation of my online offers. For more information about Google Web Fonts, see the Google Web Fonts FAQs.
8. What Else Needs To Be Considered:
I do not assume that the EU General Data Protection Regulation (“GDPR”) is applicable in my case. However, if this were to exceptionally apply to certain data processing activities, then solely for the purposes of the GDPR and the data processing activities falling under it, the following Section 8 also applies.
I base the processing of your personal data particularly on the grounds that:
- It is necessary as described in Section 6 and 7 for the initiation and fulfillment of contracts, as well as their administration and enforcement (Article 6(1)(b) of the GDPR).
- It is necessary for the legitimate interests pursued by me or by third parties, as described in Sections 6 and 7, particularly for communication with you or third parties, operating my website, improving my electronic offerings, registering for specific offers and services, security purposes, compliance with Swiss law and internal regulations for risk management and corporate governance, and for other purposes such as training and education, administration, evidence and quality assurance, organization, execution, and follow-up of events, and safeguarding further legitimate interests as outlined in Sections 6/7 (Article 6(1)(f) of the GDPR).
- It is legally required or permitted based on my mandate or position under the law of the EEA or a member state (Article 6(1)© of the GDPR), or it is necessary to protect your vital interests or those of other natural persons (Article 6(1)(d) of the GDPR).
- You have separately consented to the processing, for example, through an appropriate declaration on my website (Article 6(1)(a) and Article 9(2)(a) of the GDPR).