Privacy policy

This privacy policy covers all data processing by all Rey companies. A list of Rey companies can be found on our homepage.

The respective company of the “Rey companies” mentioned in this text (Rey 360 Holding AG [UID: CHE-398.217.352], Rey Technology Holding AG [CHE-275.651.197], Rey Technology AG [UID: CHE-108.042.994], Rey Informatik AG [UID: CHE-115.251.959], Rey Immobilien AG [UID: CHE-398.018.189], iDIP Solution AG [UID: CHE-284.008.847]), unless expressly stated otherwise.

The main responsibility for data protection in relation to joint data processing lies with:

Rey Technology Holding AG
Rütihofstrasse 6
CH-8370 Sirnach
Switzerland

Data protection officer:
Rey Technology Holding AG
Michael Engler
Rütihofstrasse 6
CH-8370 Sirnach
Phone: +41 58 810 04 00
Email: datenschutz@noSpamrey-technology.com
Website: https://www.rey-technology.com 

 

The data controller responsible for the data processing described in this privacy policy by Rey GmbH in D-79106 Freiburg im Breisgau [HRB 703684] is: 

Rey GmbH
Waldkircher Straße 12a
D-79106 Freiburg im Breisgau
Germany

If individual processing operations are carried out jointly by both companies (e.g. via central IT systems or web platforms), joint responsibility exists in accordance with Art. 26 GDPR. In this case, a corresponding agreement on joint responsibility has been concluded, which regulates the distribution of tasks and your contact point. For inquiries in connection with such processing, you can contact both companies.

Data protection officer in accordance with Art. 37 ff. GDPR:
Rey GmbH
Christian Schmidt
Waldkircher Straße 12a
D-79106 Freiburg im Breisgau
Phone: +49 761 3896 40 00
Email: datenschutz@noSpamrey-technology.com
Website: https://www.rey-technology.com 

The data protection officer at Rey GmbH is available exclusively for inquiries relating to data processing by the German company.

Federal Data Protection and Information Commissioner (Switzerland):
EDÖB
Feldeggweg 1
CH - 3003 Bern
https://www.edoeb.admin.ch/edoeb/de/home.html 

EEA and UK:
A list of authorities in the EEA can be found here: https://edpb.europa.eu/about-edpb/board/members_de .

You can contact the UK supervisory authority here: https://ico.org.uk/global/contact-us/

General

The protection of your data and your privacy is of paramount importance to us. In close cooperation with our hosting providers, we strive to protect your data as best as possible against unauthorized access, loss, misuse, or falsification. Your security is important to us.

This privacy policy informs you about the nature, scope, and purpose of the collection, processing, and use of personal data by Rey companies in the course of their business activities.

This statement supplements any specific data protection information in contracts, forms, consents, or technical tools and is an integral part of our data protection concept in accordance with the Swiss Data Protection Act (DSG) and, where applicable, the EU General Data Protection Regulation (GDPR). If necessary, we will inform you in good time in writing about any additional processing activities not mentioned in this privacy policy. If you provide us with data about other persons, such as family members, work colleagues, etc., we assume that you are authorized to do so and that this data is correct.

If you provide us with data about other persons, such as family members, work colleagues, etc., we assume that you are authorized to do so and that this data is correct. By providing data about third parties, you confirm this. Please also ensure that these third parties have been informed of this privacy policy.

This policy applies regardless of the communication channel and covers all processing in Switzerland, the EU, and third countries where technical services are provided or centralized IT systems are operated.

Purpose and scope of data processing

Below, we inform you about the most important processing purposes—the list is not exhaustive:

  • Maintenance of master data: Master data refers to basic information that we require to establish and maintain our business relationships or for marketing and advertising purposes, including, in particular, your name, contact details, and information such as your role and function, your bank details, your date of birth, customer history, powers of attorney, signatory authorizations, and declarations of consent.

We obtain this data directly from you, from your organization, or from publicly available sources such as public registers or the Internet (websites, social media, etc.). In certain cases, we also process information about third parties (e.g., contact persons, employees) or particularly sensitive data (e.g., health data based on protection concepts) as part of master data.

We generally store this data for 10 years from the last relevant contact, but at least until the end of the contract. This period may be longer if necessary for reasons of evidence, to enforce or defend claims, or to comply with legal or contractual requirements (e.g., backups, archiving systems). For purely marketing and advertising contacts, the period is usually much shorter.

  • Contract data: Contract data includes all information arising in connection with the initiation, conclusion, execution, and termination of contracts. This includes, in particular, information on products, services to be provided or already provided, prices, terms, services, correspondence, invoices, payment data, performance records, feedback, and project-related information (e.g., documentation, protocols, specifications). Such data relates to business partners themselves or their contact persons