We, Creative Glass MHS AG, take data protection very seriously. Your personal data will be treated confidentially and in accordance with the legal provisions (General Data Protection Regulations (GDPR)) of the EU as well as the Swiss Data Protection Law (DSG).
Please be assured that we are working towards compliance and are continually assessing our security protocols and data storage policies.
We hereby inform you about our data processing methods in order that you decide whether we may process your personal data.
The use of our website and services is generally possible without providing personal data. If the processing of personal data (e.g. name, address, e-mail address or telephone number) is necessary, this is done, as far as possible, on a voluntary basis. Your data will never be passed on to third parties without your express consent.
We have undertaken many technical measures for processing personal data via this website in order to guarantee the most complete protection possible. However, we would like to expressly point out that there may be security gaps when transferring data over the Internet. Absolute data protection is not possible when using the Internet/World Wide Web. We cannot accept responsibility for any unauthorised access or loss of personal data that is beyond our control.
1. Data Processing Controller
Creative Glass MHS AG
Tel: +41 44 908 11 55
Web: www.creative-glass.com , sowie www.creativeglassshop.ch, www.creativeceramics.eu und www.colorlinepaints.com
Commercial Register of the Canton of Zurich
Registered Companyname: Creative Glass MHS AG
2. Purpose of data processing
· Your personal data is required to process a contract / purchase with you (e.g. name and address for goods delivery)
· In order to fulfil legal obligations where the processing of your personal data is necessary
· If you have given us your express consent
3. Data acquisition
Your personal data is collected whenever we have contact with you. Here is a non-exhaustive list of examples of the circumstances under which we collect your data:
· When visiting our shop or premises
· When purchasing our goods or services, both online and in the store
· Participation in courses, seminars and information events
· Making customer service enquiries
· Subscription to our newsletters, mailings or other advertising
· Communication with us or third parties via our websites, internet platforms, social networks, etc.
· Communication with us via telephone, fax, e-mail, WhatsApp, SMS, voice messages, picture messages, video messages
· Use / connection of our provided WLAN in the shop
4. Data retention period
We will retain your personal information for as long as we deem necessary or appropriate to comply with applicable laws, or as long as it is necessary for the purposes for which it was collected. We will delete your personal data as soon as it is no longer required and in any case after expiry of the legally prescribed maximum retention period.
We use permanent cookies to recognize your browser on your next visit (e.g. stay logged in) as well as session cookies. These are automatically deleted at the end of your visit.
You can also use our websites (restrictedly) without cookies. Browsers are automatically set to allow cookies. You can also deactivate the setting of cookies and delete cookies that have already been set using the appropriate settings in your browser. You will find further information in the help function of your browser.
6. Server log files
When you access our websites, the following data is stored in server log files. IP address, date, time, information about browser and operating system, referrer URL, host name and visited websites. We use this data to compile anonymous statistics in order to identify trends and to adapt the technology of our websites accordingly.
This data cannot be assigned to a person and is not compared with other data. In case of a concrete suspicion of illegal use of our services, we reserve the right to check these log files.
7. Customer account in the online shop
In order to place orders in our online shop, the customer must open an account with password protection. In this account you can view an overview of your active and completed orders and make changes of address.
8. Orders and requests for quotations
In the context of order and quotation processing, we store the following personal data in our ERP system:
· Surname, first name, company name
· E-mail address and telephone number
· IP address (for orders via our online shop)
The data necessary for the delivery of the goods and order processing will be passed on to third party service providers. Your data will be deleted as soon as it is no longer required or legally prohibited.
9. Contact form
If you make an enquiry via the website contact form, your details from the contact form will be saved for further processing and answering your enquiry. Your data will not be passed on to third parties without your consent.
We will only send newsletters, e-mails and other electronic notifications containing advertising information (hereinafter referred to as the newsletter) with your express consent. You can register for the newsletter on our websites or receive an invitation to subscribe to the newsletter as a new customer. For this we require a valid e-mail address and optionally your name. In order to verify that you are the owner of the e-mail address provided and agree to subscribe and receive the newsletter, you will receive a confirmation e-mail (double opt-in procedure). In order to comply with the legal requirements, the login time and the IP address are stored. Changes to your data are also logged on Campaign Monitor.
You can revoke your consent to the storage and use of the data at any time. You will find the “Unsubscribe” button at the end of the newsletter. After logging off your data will be deleted except for your e-mail address. The e-mail address remains necessary to store it in a blacklist and is only used to ensure that you will not receive any further newsletters.
a. Shipping service “Campaign Monitor Pty Ltd.”.
We send our newsletters with the Australian mail order service “Campaign Monitor” in Level 38, 201 Elizabeth Street, Sydney NSW 2000, Australia. (www.campaignmonitor.com)
Your data collected as part of the newsletter mailing will be stored on Campaign Monitor’s servers in the EU, Australia and the USA. Campaign Monitor needs this information to be able to send and evaluate the newsletters on our behalf. Campaign Monitor will not use your data to contact you directly or pass them on to third parties, but may use data to optimise its own services.
We have been working with Campaign Monitor for many years and trust in their data security. Campaign Monitor is certified according to ISO 27001 and declares to comply with the EU data protection regulations according to the GDPR as of May 25, 2018. In addition to their data protection agreements, we have concluded a “Data Protection Addendum” with Campaign Monitor. In this contract Campaign Monitor undertakes to protect your data and not to pass it on to third parties.
b. Newsletter tracking
The newsletters contain a so-called “web-beacon”, i.e. a pixel-sized file that is retrieved from the Campaign Monitor server when the newsletter is opened. As part of this retrieval, technical information such as information about the browser and your system, as well as your IP address and time of retrieval is collected. This information is used to improve the technical performance of services based on their specifications or the target groups and their reading habits, based on their retrieval locations (which can be determined using the IP address) or access times.
Statistical surveys also include determining if the newsletters will be opened, when they will be opened and which links will be clicked. For technical reasons, this information can be assigned to the individual newsletter recipients, but it is neither our intention nor that of Campaign Monitor to observe individual users. Rather, the evaluations serve to better align the information and offers in our newsletter with the individual interests of the respective recipient. The web beacon will be deleted when you delete the newsletter.
To prevent the use of the web beacon in our newsletter, please set your mail program so that no HTML is displayed in messages, if this is not already the case by default.
11. Right to information, cancellation and objection
12. Google Analytics
We use the “Google Analytics” web analysis service, offers from Google Inc. 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA to continuously optimize our websites. In this context, pseudonymous user profiles are created and cookies are used.
We use the suffix “_gat._anonymizeIP” for Google Analytics which serves to shorten the IP address of the website visitor and thus to make it anonymous.
Google uses this information to evaluate your use of the website and compile reports for the website operators. This information may also be disclosed to third parties where required to do so by law or where such third parties process such data on Google’s behalf. The data collected by Google Analytics (IP address) is not combined with other data from Google.
You can prevent the setting of cookies in your browser, as already described under point 3 of this data protection declaration. If necessary, not all functions of our websites can then be used. By using our websites, you consent to the processing of data about you by Google in the manner described above.
13. Integration of third-party services and content
a. Google Inc Services
i. Google Fonts
External fonts from Google Inc. are integrated via server call at Google.
ii. Google Maps
We use the map service of Google Inc. for our map and directions.
iii. YouTube videos
Videos on the YouTube platform from Google Inc. are partially integrated into our site.
14. SSL Encryption
For security reasons and to protect the transmission of sensitive content (e.g. requests via contact form), we use SSL encryption. Active encryption prevents data transmitted to us from being read by third parties.
You can see from the lock icon (green padlock next to the address bar in most browsers) that the connection is secure.
15. Payment methods
In our webshop we only store the data you provide. Payment transactions are not saved. We pass on your data required for payment processing to the credit institutions commissioned by us.
When processing payments with credit cards and PayPal, a secure SSL connection to SIX Payment Services AG or PayPal is established to protect your data. We do not store any information or data concerning the payment process in our systems.
For access to the servers of SIX Payment Services AG or PayPal, the respective provisions of these company’s Terms and Conditions apply.
PayPal and WorldPay require some information such as your name, address or telephone number in order to process the purchase contracts concluded between the parties. This data will be sent to PayPal/SIX Payment Services AG or you will enter it in a special input mask. Basically, the buyer data transmitted to them corresponds to the data you entered in the order process.
PayPal and WorldPay transmit your data to credit agencies in order to obtain credit information for assessing the liability risk. A detailed description of the forwarding of data to third parties can be found in their respective Privacy Policies. Further information can be found here:
A card payment device is available for payment transactions in our shop. No payment-related data is stored with us.
For payment transactions in our shop or on the phone, we can make a manual booking with your credit cards at your request. This data is used for single use and destroyed handwritten notes in the shredder. If you submit your card details via e-mail to us, this is at your own risk and contrary to our recommendation.
Mai 2018, Volketswil, Switzerland