Privacy Policy

1. Introduction and Scope

This privacy policy informs you about the collection, processing and use of your personal data by Weblio | Web Design & Hosting and about your rights as a data subject. The privacy policy applies to all services of Weblio | Web Design & Hosting, including our website, customer portal and all related services.

2. Data Controller

3. Legal Basis for Data Processing

We process your data on the following legal bases:

• Consent (Art. 6 para. 1 lit. a GDPR): When you have given us your explicit consent
• Contract Performance (Art. 6 para. 1 lit. b GDPR): For the provision of our web design and hosting services
• Legitimate Interest (Art. 6 para. 1 lit. f GDPR): To improve our services and IT security
• Legal Obligation (Art. 6 para. 1 lit. c GDPR): To fulfill legal retention and reporting obligations

4. Collected Data and Purposes

4.1 Automatically Collected Data

The following data is automatically collected each time you visit our website:

• IP address
• Browser type and version
• Operating system
• Referrer URL
• Date and time of access
• Amount of data transferred

Purpose: IT security, error diagnosis, website performance optimization

4.2 Contact Form

When using our contact form, we collect:

• Name
• Email address
• Phone number (optional)
• Message content

Purpose: Processing your inquiries and communication

4.3 Customer Portal (Google OAuth)

When logging in via Google OAuth, we process:

• Google ID
• Name (provided by Google)
• Email address (provided by Google)
• Profile picture (if shared)

Purpose: Authentication, access to customer portal

4.4 Support System

In the support ticket system, we process:

• Ticket content and messages
• Ticket category and priority
• Processing history
• File attachments (if uploaded)

Purpose: Customer support, problem resolution, service improvement

4.5 Business Data

For our business relationship, we process:

• Project data and progress
• Invoice information
• Quote data
• Payment information

Purpose: Contract fulfillment, accounting, legal retention requirements

5. Cookies and Tracking

Our website uses only technically necessary cookies for the functionality of the site and your login status. We deliberately do not use tracking cookies, advertising cookies or analytics tools like Google Analytics.

Cookies used:

• Session Cookie: For your login to the customer portal
• Language Setting: To save your preferred language
• CSRF Token: For protection against Cross-Site-Request-Forgery

6. Third Parties and International Transfer

6.1 Google OAuth

For login we use Google OAuth. Data is transferred to Google LLC (USA). Google is certified under the EU-US Data Privacy Framework.

6.2 Hosting Partners

We work with various hosting providers but prefer Swiss and EU providers for maximum data protection. All partners are contractually obligated to comply with data protection regulations.

7. Storage Duration

• Contact inquiries: 2 years after last contact
• Customer portal data: Until account deletion
• Support tickets: 3 years after completion
• Invoice data: 10 years (legal retention requirement)
• Project data: 5 years after project completion
• Server logs: 90 days

8. Your Rights

You have the following rights regarding your data:

Contact for data protection inquiries:
E-Mail: info@weblio.eu
Processing time: 30 days

9. Data Security

We implement technical and organizational measures to protect your data:

• SSL encryption for all data transfers
• Secure password policies
• Regular security updates
• Restricted access to personal data
• Regular encrypted backups

10. Changes to the Privacy Policy

We reserve the right to update this privacy policy as needed. We will notify you of significant changes by email or announce them on our website.