Privacy policy

Last updated May 29, 2024

Transparent handling of personal data is very important to us. This privacy policy provides information on what personal data we collect, for what purpose and to whom we pass it on. We regularly review and update this privacy policy to ensure maximum transparency.


1. what data we collect

1.1 General personal data

We process your general personal data. Personal data is any type of information relating to an identifiable natural person. The natural person is identifiable if conclusions can be drawn about the identity of the person from the available information.
Example: Your name, IP address and home address are personal data.

1.2 Data provided

You often provide us with your personal data yourself. Whenever you enter your personal data and transmit it to us, it is deemed to have been provided to us. The transmission of data to us is generally voluntary, but is sometimes absolutely necessary in order to be able to use our services.
Example: You enter your data in a contact form or register for a newsletter

1.3 Data collected

When you use our services, we sometimes collect your data without your active participation being required. This data is usually data about your device and data about user behavior.
Example: We collect data about the operating system of the device you used to access our website.

1.4 Product development

We strive to continuously improve our offer. For this purpose, we use your personal data for the development and improvement of our products and services.
Example: We collect data about visitor behavior on the website in order to constantly improve user-friendliness.

1.5 Data transfer

We pass on your personal data to companies that can decide for themselves how they use the data. This is usually done because it is necessary to comply with legal regulations, when an outstanding debt is transferred to a debt collection agency or to detect fraudulent activity.
Example: A legal regulation obliges us to pass on your data to an authority.

1.6 Worldwide

We work with providers from all over the world to process your personal data. This allows us to benefit from a global offering and access the best and most reliable services. The country to which the data is exported may not have the same data protection standard as Switzerland.
Example: We use the services of a cloud provider such as Google, which is based in the USA.

2. which services we use

2.1 Youtube

YouTube is an internet portal for websites to embed videos. In particular, the following information can be recorded:

  • IP address
  • Technical information such as browser, operating system or screen resolution
  • Interactions with the video

The IP address is anonymized by YouTube so that a personal reference is no longer possible. If you have a Google account and are logged in, YouTube can also process your data across devices.

2.2 Google Web Fonts

The browser you are using establishes a connection to Google’s servers. This gives Google knowledge that our website has been accessed via your IP address. If your browser does not support web fonts, a standard font will be used by your computer.

2.3 Google Analytics

3. what do we do?

echo charlie (Bahnhofplatz 7, 7000 Chur) operates the website (hereinafter referred to as “we” or “us”). On this website you can find out about our organization, use our online services and get in touch with us.

The protection of your personal data is very important to us. In this privacy policy, we inform you transparently and comprehensibly about what data we collect via our website and how we handle it.

4. what do we inform about?

  • Who is responsible for data processing;
  • What data is collected;
  • The purpose for which this data is collected;
  • To whom we pass on this data;
  • How you can object to data processing;
  • What rights you have and how you can assert them.

5. definitions of terms

5.1 What is personal data?

Personal data (synonymous with the term “personal data”) is any information relating to an identified or identifiable natural person. This includes, for example, name, address, date of birth, e-mail address or telephone number as well as the IP address. Data about personal preferences such as leisure activities or memberships also count as personal data.

5.2 What are special categories of personal data?

Special categories of personal data (synonymous with the term “particularly sensitive data”) are:

  • Data on religious, ideological, political or trade union views or activities;
  • Data relating to health, privacy, racial or ethnic origin, sex life and sexual orientation;
  • Data on administrative or criminal prosecutions and sanctions, as well as data on social assistance measures;
  • Genetic data and biometric data that uniquely identify a person.

If necessary and if you disclose this data to us yourself, we may process data belonging to a special category of personal data. In this case, their processing is subject to stricter confidentiality.

5.3 What is the processing of personal data?

Processing (synonymous with the term “editing”) is any handling of personal data, regardless of the means and procedures used, in particular the procurement, storage, retention, use, modification, disclosure, archiving, deletion or destruction of personal data.

5.4 What is the disclosure of personal data?

This is the transmission or making available of personal data, e.g. the publication or disclosure to a third party.

6. contact

If you have any questions or concerns about the protection of your data by us, you can contact our data protection officer:

Luca Golland
echo charlie GmbH
Bahnhofplatz 7
7000 Chur

7. data security

We will keep your data secure and take all reasonable steps to protect your data from loss, access, misuse or alteration.

Our contractual partners and employees who have access to your data are obliged to comply with data protection regulations. In some cases, it will be necessary for us to pass on your requests to companies affiliated with us as part of order processing. Your data will also be treated confidentially in these cases.

Within our website, we use the SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser.

8. rights of data subjects

8.1 Right to information
You can request information about the data we have stored about you at any time. Please send your request for information together with credible proof of identity to The information is provided in writing or in another form, if necessary also electronically. If you so request, we can also provide you with the information verbally, provided that you can prove your identity in another form. If you submit the request for information electronically, we will provide the information in a common electronic format, unless you specify otherwise. The information is generally free of charge. If additional copies are requested, a reasonable fee may be charged. The right to obtain a copy of the processed data must not adversely affect the rights and freedoms of other persons. In the event of manifestly unfounded or excessive requests for information, we reserve the right to refuse to provide the information within the limits of the law or to charge an appropriate fee. The processing of your application is subject to the statutory period of 30 days. Due to the complexity and high number of requests, we may extend this period by a further two months if necessary. You will be informed of the extension of the deadline within one month of submitting the request for information. You will also be informed of the reasons for the extension.
8.2 Deletion and correction
You have the option of requesting the deletion, correction or completion of your data at any time, provided that there are no statutory retention obligations or legal permissions to the contrary. Please note that the exercise of your rights may be in conflict with contractual agreements and may have corresponding effects on the execution of the contract (e.g. premature termination of the contract or cost consequences).
8.3 Restriction of processing
You also have the right to request a restriction of processing if you dispute the accuracy of this data, the processing is unlawful, the data is no longer required or you have objected to the processing. If the processing of the data is restricted, it may only be stored. Any further processing may only take place with your consent, for the establishment, exercise or defense of legal claims, for the protection of the rights of another person or for reasons of important public interest. You will be notified if the restriction is lifted.
8.4 Right to data output and transfer
You have the right to receive your data in a commonly used file format or (if technically feasible) to have it transmitted to a third party if we process your data automatically, and if:
  • you have given your consent to the processing of this data; or
  • you have disclosed data in connection with the conclusion or processing of a contract.
8.5 Right of objection
You have the right to object to the processing of your personal data at any time for reasons arising from your particular situation. profiling which is based on our legitimate interests. This right also applies to processing for the purpose of direct marketing.
8.6 Legal process
If you are affected by the processing of personal data, you have the right to enforce your rights in court or to lodge a complaint with the competent supervisory authority. The competent supervisory authority in Switzerland is the Federal Data Protection and Information Commissioner.

9. data processing in general

9.1 What data do we process from you and from whom do we receive this data?

First and foremost, we process personal data that you transmit to us or that we collect when operating our website. We may also receive personal data about you from third parties. These can be the following categories:

  • Personal master data (name, address, date of birth, etc.);
  • Contact details (cell phone number, e-mail address, etc.);
  • Financial data (e.g. account details);
  • Online identifiers (e.g. cookie identifiers, IP addresses);

This data can come from the following sources:

  • Information from publicly accessible sources (e.g. media, Internet);
  • Information from public registers (e.g. commercial register, debt collection register, land register);
  • Information in connection with official or legal proceedings;
  • Information regarding your professional functions and activities (e.g. professional networks);
  • Information about you in correspondence and meetings with third parties;
  • Credit information (insofar as we process personal transactions with you);
  • Information about you that people from your environment give us so that we can conclude or process contracts with you;
  • Data in connection with the use of the website.
9.2 Under what conditions do we process your data?

We process your data in good faith and in accordance with the purposes set out in this privacy policy. We pay attention to transparent and proportionate processing.

If, in exceptional cases, we are unable to comply with these principles, the data processing may still be lawful because there is a justification. One possible justification is the following:

  • Your consent;
  • the performance of a contract or pre-contractual measures;
  • the fulfillment of legal requirements;
  • our legitimate interests, unless your interests prevail.

You may be required to provide us with certain personal data so that we can establish business relationships with each other. Without such data, we are normally unable to process a contract. Under normal circumstances, the website cannot be used if certain information to secure data traffic, such as your IP address, is not disclosed.

9.3 How can you withdraw your consent?

If you have given us your consent to process your personal data for specific purposes, we will process your data within the scope of this consent, unless we have another justification or another permission is granted.

You can revoke your consent for the future at any time by sending an e-mail to the address given in the legal notice. Data processing that has already taken place is not affected by the revocation and remains valid.

9.4 In which cases do we pass on your data to third parties?

a. Principle
We may need to use the services of third parties or affiliated companies and commission them to process your data (so-called processors). Categories of recipients are named:

  • Accounting, fiduciary and auditing company;
  • Consulting companies (legal advice, taxes, etc.);
  • IT service provider (web hosting, support, cloud services, website design, etc.);
  • payment service providers (only with your prior consent);
  • Provider of tracking, conversion and advertising services.

We ensure that data is only passed on with your express consent, provided that this does not involve commissioned data processing. We also ensure that these third parties and our affiliated companies comply with data protection requirements and treat your personal data confidentially. We may also be obliged to disclose your personal data to authorities.

b. Passing on to partners and cooperation companies
We work in part with various companies and partners who place their offers on our website. It is recognizable for you that it is a third party offer (marked as “advertising”).

If you take advantage of such an offer, we will transfer your personal data to the relevant partner or cooperation company (e.g. name, function, communication, etc.) whose offer you wish to take advantage of, provided that you have expressly consented to this in advance. These partners and cooperation companies are independently responsible for the personal data they receive. Once the data has been transmitted, the data protection provisions of the respective partner apply.

c. Transfer abroad
Under certain circumstances, your personal data may be transferred to companies abroad as part of order processing. These companies are obliged to protect data to the same extent as we are. The transmission can take place worldwide.

If the level of data protection does not correspond to that in Switzerland, we carry out a prior risk assessment and contractually ensure that the same level of protection is guaranteed as in Switzerland (e.g. by means of the new standard contractual clauses of the EU Commission or other legally prescribed measures). If our risk assessment is negative, we will take additional technical measures to protect your data. You can access the EU Commission’s standard contractual clauses at the following link.

9.5 How long do we store your data?

We only store personal data for as long as is necessary to fulfill the individual purposes for which the data was collected.

We store contract data for longer, as we are obliged to do so by law. In particular, we must store business communications, concluded contracts and accounting documents for up to 10 years. If we no longer require such data from you to perform the services, the data will be restricted for further processing and we will only use it for accounting and tax purposes.

10. data processing

10.1 Provision of the website and creation of log files

If you merely visit, i.e. if you do not register or otherwise disclose information, only the data that your browser automatically transmits to our server will be collected. The data is technically necessary for the operation of the website.

What data do we process?
The following data in particular is processed for the provision of the website and the creation of log files:

  • Name of the internet service provider
  • IP address
  • Technical information such as browser, operating system or screen resolution
  • the date and time of access
  • Referrer URL

This data cannot be assigned to a specific person and is not merged with other data sources.

For what purpose do we process the data?

The log files are processed in order to guarantee the functionality of the website and to ensure the security of our information technology systems.

Who do we pass the data on to?

The forwarding of data by us is based on our statements on data forwarding.

How can you prevent data processing?

The data is only stored for as long as is necessary to achieve the purpose for which it was collected. Accordingly, the data is deleted at the end of each session. The storage of log files is absolutely necessary for the operation of the website; you therefore have no option to object to this unless you do not visit our website.

10.2 Cookies

Our website uses cookies. Cookies are text files that are stored on the operating system of your device with the help of the browser when you visit our website. Cookies do not damage your computer and do not contain viruses. Some cookies are technically necessary for the website to function. Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them or until they expire.

For what purpose do we process the data?

We use cookies so that we can use the data collected to make our website more user-friendly, effective and secure. In particular, we use cookies to store your preferences (e.g. language and location settings), to ensure the fast provision and attractive presentation of website content (e.g. through the use of fonts and content delivery networks) and to analyze the use of this website for statistical evaluation and continuous improvement (usually using third-party cookies). The purposes for which we use the (technically unnecessary) cookies in detail can be found in the following explanations in this privacy policy.

Who do we pass the data on to?

The forwarding of data by us is based on our statements on data forwarding. In addition, the following information on individual data processing in this privacy policy must be observed.

How can you prevent data processing?

Cookies are stored on your computer. You can delete them completely or deactivate or restrict the transmission by changing the settings in your browser. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website to their full extent.

Instructions for the most common browsers can be found here:

  • For Chrome from Google
  • For Safari from Apple
  • For Edge from Microsoft
  • For Firefox from Mozilla

For cookies that are used to measure success and reach or for advertising, a general opt-out is possible for numerous services via the Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance) or Your Online Choices (European Interactive Digital Advertising Alliance, EDAA).

11. will our privacy policy always remain the same?

We may change this privacy policy at any time. The changes will be published on You will not be informed separately.