Legal Stuff

Privacy Policy for Swissalgo

Last Updated: January 17, 2025

1. Introduction

Swissalgo (“we”, “our”, “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and safeguard your information when you visit our website swissalgo.ch (the “Site”) or use our services.

This policy complies with the EU General Data Protection Regulation (GDPR), the Swiss Federal Act on Data Protection (FADP), and the California Consumer Privacy Act (CCPA).

Data Controller: Swissalgo Based in Lugano, Switzerland Email: hello@swissalgo.ch

2. Information We Collect

2.1 Information You Provide Directly

When you contact us or engage our services, we may collect:

• Full name
• Email address
• Phone number (if provided)
• Company name (if applicable)
• Project requirements and specifications
• Trading strategy details (as necessary for project completion)
• Payment information (processed through third-party payment processors)
• Any other information you voluntarily provide in communications

2.2 Information Collected Automatically

When you visit our Site, we may automatically collect:

• IP address
• Browser type and version
• Operating system
• Device type (desktop, mobile, tablet)
• Pages visited and navigation paths
• Time and date of visit
• Time spent on pages
• Referring website or source
• Geographic location (country and city level only)
• Language preferences

2.3 Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience. See our Cookie Policy for detailed information.

3. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

3.1 Consent: When you submit contact forms, subscribe to communications, or accept cookies.

3.2 Contract Performance: When providing services you have requested or engaged.

3.3 Legitimate Interests: For website analytics, security, fraud prevention, and business improvement, where such interests do not override your privacy rights.

3.4 Legal Obligation: When required to comply with applicable laws and regulations.

4. How We Use Your Information

We use your personal data for the following purposes:

4.1 Service Delivery

• Respond to inquiries and contact form submissions
• Provide Pine Script development services
• Communicate about project progress, deliverables, and timelines
• Provide technical support and maintenance
• Process payments and invoices

4.2 Business Operations

• Improve our website functionality and user experience
• Analyze website traffic and usage patterns
• Conduct internal research and analytics
• Maintain security and prevent fraud
• Backup and disaster recovery

4.3 Communications

• Send service-related notifications
• Respond to your questions and requests
• Send project updates and delivery notifications
• Provide customer support

4.4 Legal Compliance

• Comply with legal obligations and regulations
• Protect our legal rights and prevent misuse
• Enforce our Terms of Service
• Respond to legal requests and prevent harm

5. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data to third parties. We may share your information only in the following circumstances:

5.1 Service Providers

We may share data with trusted third-party service providers who assist in operating our business:

• Email service providers (for contact form submissions and communications)
• Website hosting providers (currently Cloudways or Hostinger)
• Payment processors (for handling transactions)
• Analytics services (such as Google Analytics, if implemented)
• Live chat services (such as Tawk.to, if implemented)

These providers are contractually obligated to protect your data and use it only for specified purposes.

5.2 Legal Requirements

We may disclose your information when required by law or in good faith belief that such action is necessary to:

• Comply with legal process or court orders
• Enforce our Terms of Service
• Protect the rights, property, or safety of Swissalgo, our clients, or the public
• Prevent fraud, security breaches, or illegal activity
• Respond to government or regulatory requests

5.3 Business Transfers

In the event of a merger, acquisition, sale of assets, or bankruptcy, your personal data may be transferred to the successor entity, subject to the same privacy protections.

5.4 With Your Consent

We may share your information for any other purpose with your explicit consent.

6. International Data Transfers

Our website hosting and some service providers may be located outside of Switzerland or the European Economic Area (EEA). When we transfer your data internationally, we ensure appropriate safeguards are in place:

6.1 Standard Contractual Clauses (SCCs) approved by the European Commission 6.2 Adequacy decisions recognizing equivalent data protection 6.3 Service providers’ compliance with GDPR and international privacy frameworks

If you are in the EU/EEA, your data may be transferred to countries that do not provide the same level of data protection. We ensure such transfers are lawful and protected.

7. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy or as required by law:

7.1 Contact form submissions and inquiries: 2 years from last contact 7.2 Client project data: Duration of project plus 3 years (for support and legal purposes) 7.3 Financial records: 7 years (as required by Swiss law) 7.4 Marketing communications: Until you unsubscribe or request deletion 7.5 Website analytics data: 26 months (if Google Analytics is used) 7.6 Chat logs: 12 months (if live chat service is implemented) 7.7 Legal and compliance records: As required by applicable law

After the retention period expires, we securely delete or anonymize your personal data.

You may request earlier deletion of your data at any time (see Section 10 for your rights).

8. Data Security

We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:

8.1 Technical Measures:

• SSL/TLS encryption for data transmission
• Secure HTTPS protocol for all website communications
• Encrypted storage of sensitive data
• Regular security updates and patches
• Firewall protection and intrusion detection
• Secure hosting infrastructure with DDoS protection

8.2 Organizational Measures:

• Access controls and authentication requirements
• Limited access to personal data on a need-to-know basis
• Regular security training and awareness
• Data backup and disaster recovery procedures
• Incident response and breach notification procedures

8.3 Limitations: While we strive to protect your personal data, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we continuously work to enhance our security measures.

9. Third-Party Links

Our Site may contain links to third-party websites, including:

• TradingView
• GitHub
• Social media platforms
• Payment processors
• Other relevant services

We are not responsible for the privacy practices of these third-party sites. We encourage you to review their privacy policies before providing any personal information.

10. Your Privacy Rights

10.1 Rights Under GDPR (EU/EEA Residents)

You have the following rights regarding your personal data:

Right to Access: Request a copy of the personal data we hold about you, including information about how it is processed.

Right to Rectification: Request correction of inaccurate or incomplete personal data.

Right to Erasure (“Right to be Forgotten”): Request deletion of your personal data when:

• It is no longer necessary for the purposes for which it was collected
• You withdraw consent and there is no other legal basis for processing
• You object to processing and there are no overriding legitimate grounds
• The data has been unlawfully processed
• Deletion is required to comply with legal obligations

Right to Restriction of Processing: Request limitation of processing when:

• You contest the accuracy of the data
• Processing is unlawful but you oppose deletion
• We no longer need the data but you need it for legal claims
• You have objected to processing pending verification

Right to Data Portability: Receive your personal data in a structured, commonly used, machine-readable format and transmit it to another controller.

Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent, without affecting the lawfulness of processing based on consent before withdrawal.

Right to Lodge a Complaint: File a complaint with your local supervisory authority if you believe your rights have been violated.

10.2 Rights Under CCPA (California Residents)

California residents have the following rights:

Right to Know: Request disclosure of:

• Categories of personal information collected
• Sources of personal information
• Business or commercial purpose for collecting information
• Categories of third parties with whom information is shared
• Specific pieces of personal information collected

Right to Delete: Request deletion of personal information we have collected, subject to certain exceptions.

Right to Opt-Out: Opt-out of the sale of personal information (Note: We do not sell personal information).

Right to Non-Discrimination: Receive equal service and pricing regardless of exercising privacy rights, though we may offer different prices or services if related to the value provided by your data.

Right to Correct: Request correction of inaccurate personal information.

Right to Limit Use of Sensitive Personal Information: Limit our use of sensitive personal information (if applicable).

10.3 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

Email: hello@swissalgo.ch Subject Line: Privacy Rights Request

Please include:

• Your full name and email address
• Specific right(s) you wish to exercise
• Details of your request
• Proof of identity (to prevent unauthorized access)

Response Timeline:

• GDPR requests: We will respond within 30 days
• CCPA requests: We will respond within 45 days
• Complex requests may require an extension, about which we will inform you

We will not discriminate against you for exercising your privacy rights.

11. Children’s Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect personal data from children under 16.

If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately at hello@swissalgo.ch. We will take steps to delete such information from our systems.

12. Marketing Communications

12.1 We may send you marketing communications about our services if:

• You have explicitly opted in to receive such communications
• You are an existing client and we are marketing similar services (soft opt-in)

12.2 You can opt-out of marketing communications at any time by:

• Clicking the “unsubscribe” link in any marketing email
• Contacting us at hello@swissalgo.ch with “Unsubscribe” in the subject line
• Adjusting your communication preferences (if account features are implemented)

12.3 Opting out of marketing does not affect service-related communications (transactional emails, project updates, support responses).

13. Automated Decision-Making and Profiling

We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you.

14. Do Not Track Signals

Our website respects Do Not Track (DNT) browser signals. When DNT is enabled, we will not load optional tracking or analytics cookies.

15. Changes to This Privacy Policy

15.1 We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations.

15.2 When we make material changes, we will:

• Update the “Last Updated” date at the top of this policy
• Notify you via email (if you have provided an email address)
• Display a prominent notice on our Site

15.3 We encourage you to review this policy periodically.

15.4 Continued use of our Site or services after changes indicates acceptance of the updated policy.

16. Contact Us and Data Protection Officer

For questions, concerns, or requests regarding this Privacy Policy or our data practices:

General Inquiries: Email: hello@swissalgo.ch Website: swissalgo.ch

Data Protection Inquiries: Email: hello@swissalgo.ch Subject: Data Protection Inquiry

We will respond to your inquiry within a reasonable timeframe, typically within 5 business days for general inquiries and as specified above for privacy rights requests.

17. Supervisory Authority

If you are located in Switzerland, you have the right to lodge a complaint with:

Federal Data Protection and Information Commissioner (FDPIC) Feldeggweg 1 CH-3003 Bern Switzerland Phone: +41 58 462 43 95 Website: https://www.edoeb.admin.ch

If you are located in the EU/EEA, you have the right to lodge a complaint with your local data protection authority.