We are very pleased that you are interested in our company. The protection of personal data is an important concern for us. The use of the website of Huba Control AG (hereinafter: "Huba Control") is generally possible without providing any personal data, unless you supply us with such data voluntarily (e.g. by requesting an offer, registering) or have given your consent, or unless the relevant legal provisions regarding the protection of your data allow it.
We are strongly dedicated to the responsible handling of your personal data. As a consequence, we consider it as a matter of course to comply with the Swiss Federal Data Protection Act, the associated Ordinance and other applicable data protection regulations, in particular the EU General Data Protection Regulation (GDPR).
In this data protection declaration, we inform you about the most important aspects of data processing at Huba Control and about the data protection rights to which you are entitled to. This privacy statement covers both online and offline personal data collection, including those received from various sources such as suppliers, business partners, websites, third party social networks and events.
The responsible party in terms of data protection law is the:
Huba Control AG
Phone: +41 56 436 82 00
1.1 Data protection consultant
The contact details of our data protection consultant:
Swiss Infosec AG
Phone: +41 41 984 12 12
2 General information about data processing
In the following, we inform you in a brief form about our personal data processing, the purposes and legal basis of our processing, third parties to whom we disclose personal data and the duration of the data processing. You will also find further information, in particular on data processing when you visit our website.
2.1 Personal data processed as part of our operations
Huba Control is mainly operating in the business-to-business (B2B). Various personal data are also processed in the B2B area, for example when contacting us for an online quotation. The personal data we process include the following personal data:
that we receive in the course of our business relationships from customers, prospective customers, interested parties, service providers, suppliers, business partners or other persons involved in the business relationships
which we receive from job applicants
which we are legally or contractually obliged to be collected
which we collect during the use of our website
which we receive from public authorities and other third parties (address dealers, credit reference agencies)
We furthermore collect contact data from many of the above-mentioned persons and the data arising in the process of the related communication. Particularly in the case of interested parties, service providers, suppliers and other business partners and/or their respective contact persons, we also collect information on their function, information on the previous relationship with these persons, information on creditworthiness, communication, information on business transactions, enquiries, offers, terms and conditions and contracts, etc.
Depending on the nature of the relationship, we may process personal data of you as:
Contact and communication data such as surname, first name, address, e-mail address, telephone number;
Contract data such as contract type, contract content, type of products and services, consumer groups, consumer types, forecast data, applicable terms and conditions, contract start date, contract term, invoice data;
Financial data such as account information, payment information, payment history, creditworthiness;
Marginal data from telecommunications traffic such as telephone number, value-added service numbers, date, time and duration of the connection, type of connection, location data, IP address, device identification numbers such as MAC address;
Interaction and usage data: Correspondence, preferences and target group information, type of end device, device settings, operating system, software, information from enforcement of rights;
Website information: IP address, cookie information, browser settings, frequency of visits to the website, duration of visits to the website, search terms, clicks on content, origin internet site.
2.2 Legal basis of processing and purposes of processing
In general, we rely on the following legal bases in connection with the processing of your personal data:
your consent, which you can withdraw at any time (for example, for processing during the application process or in connection with cookies on our website)
the entry into or performance of a contract with you or your intention to do so (for example, if you submit a job application or fill in an offer form)
An assessment of interests (e.g. to ensure information security), which you can object to under certain circumstances
A legal obligation (e.g. for us to record accounting-relevant documents), which may also be taken into account in the context of an assessment of interests
We use the collected personal data mainly in order to conclude and process contracts with our customers and business partners.
We also rely on the processing of personal data for the purchase of products and services from our suppliers and subcontractors. If you work for a customer or business partner, your personal data may also be concerned.
In addition, we also process personal data about you and other persons, where permitted and where it appears to be appropriate, for the following purposes in which we (and sometimes also third parties) have a purpose driven, justified interest:
Offering and development of our products, services and website and other platforms on which we are represented. This may include the storage, processing and communication of personal data and communication to our globally active subsidiaries
Communication and processing of enquiries (e.g. e-mail, telephone, offer forms, job applications, media enquiries)
Advertising and marketing insofar as you have agreed/not objected to the use of your data (if we send you advertising from as an existing customer, you can object to this at any time, we will then put you on a blocking list to prevent further advertising mailings)
Cooperation with business partners such as suppliers, commercial customers of goods and services, as well as service providers (for example IT service providers)
Customer relationship management, such as customer information, customer satisfaction and customer loyalty
Administration and accounting
Market research, media monitoring
Enforcement of legal claims and defence in connection with legal disputes and official processes
Prevention and investigation of criminal offences and other misconduct (e.g. conduct of internal investigations)
warranties of our company, in particular our IT, our website and other platforms
As far as you have given us consent to process your personal data for certain purposes, we process your personal data within the scope of and based on this consent, unless we have another legal basis which is necessary. Consent given can be withdrawn at any time, but this will not affect any data processing that has already taken place. You can send us a withdrawal by e-mail or by post to the (e-mail) address mentioned in section 1.1.
2.3 Third parties we are disclosing personal data
We also disclose personal data to third parties within the scope of our business activities and for the above-mentioned purposes, insofar as this is permitted and appropriate, either because they process it for us (commissioned data processing) or because they want to use it for their own purposes (data disclosure). This concerns in particular:
Service providers, including order handler
External third parties such as tax advisors, lawyers, management consultants, recruiters / head-hunters
Logistics services for the delivery of goods
Business information and debt collection services
IT service providers (e.g. web hosting providers, email delivery service providers, online tools)
Bank institutions and payment service providers
Government offices and courts
The recipients are partly domestic, but also partly abroad. If we transfer data to a country where there is no adequate legal level of data protection, we require that the recipient takes appropriate measures to protect personal data (e.g. by means of the agreement of so-called EU standard clauses, find current version here other arrangements or based on reasons of justification).
2.4 Duration of data processing
We process personal data if it is necessary for the fulfilment of our contractual obligations or otherwise for the purposes pursued with the processing, for example for the duration of the entire business relationship (from the initiation, processing to the termination of a contract) as well as beyond that in accordance with the statutory retention and documentation obligations. In this context, it is possible that personal data will be retained for the time during which claims can be asserted against us and insofar as we are otherwise legally obliged to do so or legitimate interests require this (e.g. for evidence and documentation purposes). As soon as your personal data is no longer required for the above-mentioned purposes, it will generally be deleted or anonymised.
3 Visit of our website
You can generally use our website without providing any information about yourself. This does not apply to areas and services that require your name, address or other personal data, e.g. when you apply for a job with us.
In addition, you can contact us on a at any time by e-mail and/or telephone. The corresponding data will be processed and stored for the relevant purpose.
3.1 Server Logfiles
During your visit to our website, our servers temporarily store each access in a log file, the so-called server log files.
For example, your IP address, the date and time of your visit, the name of the file accessed, the access status (done, partially done, not done, etc.), the web browser and operating system used, as well as other similar information that serves to avert danger in the event of any attack on our information technology systems.
The purpose of processing this information is to illustrate our website and its content and offers correctly and to ensure data traffic, to optimise our website, content and offers, to ensure the stability and security of our website and systems on a permanent basis and to enable the clarification, defence and prosecution of cyber attacks, spam and other unlawful acts in relation to our website and systems and to enforce claims in this respect and thus on the basis of our legitimate interests.
We delete your personal data as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of our website, the removal takes place when the respective session has ended.
For the hosting of the website, we may use the services of third parties in Switzerland and abroad who process the above-mentioned data on our behalf. Currently, our websites are hosted exclusively by Swiss or EU hosting providers on their servers.
On our website, you have the possibility to contact us by e-mail or by phone. If you contact us by e-mail, we process the information provided in the e-mail, such as your e-mail address, the subject of the contact and your message for the purpose of processing your enquiry, handling it and in the event of follow-up questions. This information is stored by us and will not be passed on to unauthorised third parties without your consent. Of course, this also applies to requests that you send to us by post.
We may use your name and email address to send you messages, updates, invitations to events and other information by email. In any case, we will first ask for your authorisation to do so, unless we have already received your contact details in connection with our services.
You can withdraw your consent to this data processing at any time. Please send your withdrawal to the (e-mail) address mentioned in point 1.1 and we will check your request. In such a case, your contact will not be processed any further.
Your personal data will be deleted as soon as your request has been fulfilled. This is the case when the subject matter concerned has been conclusively clarified and the deletion does not conflict with any legal obligations to retain data.
3.3 Job applications
When applying for a job we process your personal data as part of the application process.
We may also actively contact persons who could become potential applicants or employees based on their professional background and qualifications ("active sourcing"), in particular via professional social networks such as Xing and LinkedIn. The purpose of this procedure is to recruit qualified personnel in a selective manner.
Your application data will only be stored, evaluated, processed or forwarded internally as part of your application. The processing is mainly done electronically.
Most of the used cookies are session cookies. These are automatically deleted when you log out or close the browser. Other cookies remain saved on your end device beyond the respective usage process and enable us or our partner companies (third-party cookies) to recognise your browser during your next visit. Insofar as other cookies (e.g. cookies to analyse your surfing behaviour) are saved, these are dealt with separately in this data protection statement.
If we ask you for consent to set certain cookies, you can withdraw this consent at any time. To do so, open our cookie banner and adjust your cookie settings accordingly.
3.5 Google services
On the basis of your consent, we use on our website various services of Google LLC, based in the USA, or if you have your habitual residence in the European Economic Area (EEA) or Switzerland, Google Ireland Ltd, based in Ireland ("Google"). Google LLC is always responsible for the processing of personal data when using "YouTube". We use the following Google services on our websites:
Google Tag Manager
More information on the services can be found below.
Google uses technologies such as cookies, web storage in the browser and tracking pixels that enable an analysis of your use of our website. The information generated by this about your use of our website may be transferred to a Google server in the USA or other countries and stored there. Information about the locations of Google's data centres can be found at here.
We use tools provided by Google, which Google has stated may process personal data in countries where Google or its subcontractor have facilities. Google promises in their «Data Processing Addendum for Products where Google is a Data Processor», to ensure an adequate level of data protection by relying on the EU standard contractual clauses. In addition, Google is certified according to the EU-U.S., or Swiss-U.S.-Privacy-Shield-agreement.
3.5.1 Google Tag Manager
Our website uses the Google Tag Manager. With the Google Tag Manager, website tags can be managed efficiently. Website tags are placeholders that are stored in the source code of the respective website to record, for example, the integration of frequently used website elements, such as code for web analytics services. The Google Tag Manager ensures that other tags are triggered, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager.
3.5.2 Google Analytics
For the purpose of analysing our website and its visitors as well as for marketing and advertising purposes, we use the web analytics service Google Analytics 4.
We use the User ID function. The User ID allows us to assign a unique, persistent ID to one or more sessions (and the activities within those sessions) and to analyse user behaviour across devices.
We use Google Signals to collect additional information in Google Analytics about users who have activated personalised ads (interests and demographics) and ads can be delivered to these users in cross-device remarketing campaigns.
With Google Analytics 4, the anonymisation of IP addresses is activated by default. This means that your IP address is shortened by Google within Switzerland or the EU/EEA before it is transmitted. Only in exceptional cases will the full IP address be transferred to a Google server and shortened there.
Google uses this information to evaluate your pseudonymous use of our website, to compile reports on website activity and to provide us with other services related to website and internet usage. The IP address transferred by your browser within the scope of Google Analytics will not be merged with other Google data according to Google. When you visit our website, your user behaviour is recorded in the form of events (such as page views, interaction with the website or your "click path") as well as other data such as your approximate location (country and city), technical information about your browser and the end devices you use or the referrer URL, i.e. via which website / advertising material you came to our website.
You can prevent the collection and transmission of the data generated by the cookie and related to your use of our website (incl. your IP address) to Google, as well as the processing of this data by Google, by selecting the appropriate settings on your browser Browser-Add-on to deactivate Google Analytics. If you wish to object to interest-based advertising by Google, you can use the settings and opt-out options provided by Google.
Your personal data will be deleted or anonymised after 14 months.
An overview of the data use in Google Analytics and the measures taken by Google to protect your data can be found Google Analytics help.
3.5.3 Google Fonts
In order to display our content correctly and graphically appealing across browsers, we use script and font libraries on our website to display fonts. Google fonts are transferred to your browser's cache to avoid multiple loading. If your browser does not support Google Fonts or prevents access, our website content is displayed in a standard font.
Loading script or font libraries automatically triggers a connection to the operator of the library. It is theoretically possible - although it is currently unclear whether and for what purposes - that the operator, in this case Google, collects data.
We do not collect any personal data through the integration of Google fonts.
We use the services of the provider YouTube LLC, based in the USA ("YouTube"), a subsidiary of Google LLC, for the integration of videos on our website («Google»).
When you start a YouTube video on our website, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited. This information (including your IP address) may be transmitted to a Google server in the USA and saved there. If you are logged into your YouTube account at the same time, you enable YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account before visiting our website.
We use the so-called extended data protection mode of YouTube. According to YouTube, this mode ensures that YouTube does not store any data about you as a visitor to our website before you watch or play the video. However, the transfer of data to YouTube partners is not necessarily excluded by the extended data protection mode.
3.6 Social Media presence
We have social media profiles on LinkedIn, XING, Facebook, Instagram and YouTube.
The data you enter on our social media profiles is published by the social media platform and is not used or processed for any other purpose at any time. However, we reserve the right to delete content if this should be necessary. If needed, we will communicate with you via the social media platform. This is based on your and our legitimate interest in communicating with each other in this way.
Be aware that the operator of the social media platform uses web tracking methods. The web tracking, of which we have no influence, can also take place regardless of whether you are logged in or registered with the social media platform.
LinkedIn Corporation (USA)/LinkedIn Ireland Unlimited Company (Irland):
New Work SE (Deutschland):
YouTube LLC (USA):
Meta Platforms Inc. (USA)/Meta Platforms Ireland Ltd. (Irland):
Meta Platforms Inc. (USA)/Meta Platforms Ireland Ltd. (Irland):
3.7 Links to websites of third parties
Some links on this website lead to third-party websites. These are no longer under the control of Huba Control. Huba Control therefore accepts no responsibility whatsoever for the accuracy, completeness and legality of the content contained therein and links to other websites, nor for any offers, products and services contained therein. The use of linked websites is at the user's own risk.
4 Data security
We take technical and organisational security precautions to protect your personal data against manipulation, loss, destruction or against access by unauthorised persons.
Our security measures are continuously improved in accordance with technological developments.
Our employees and the service our service providers are obliged to maintain confidentiality and to comply with the provisions of data protection law. Furthermore, they are only granted access to your personal data to the extent necessary.
5 Your rights
You are basically entitled to the rights of information, correction, deletion, restriction, data portability, objection to processing and revocation of consent with regard to your personal data.
Please note, that we reserve the right to enforce the restrictions provided for by law, for example if we are obliged to retain or process certain data, have an overriding interest in doing so (insofar as we are entitled to rely on this) or need it to enforce claims.
Please note that the use of these rights may conflict with contractual agreements and may have consequences such as the prior termination of the contract or cost consequences. We will inform you in advance if this is not already contractually regulated.
If you believe that the processing of your personal data violates data protection law or that your data protection rights have in some way been violated, you can also complain to the competent supervisory authority. In Switzerland, this is the Federal Data Protection and Information Commissioner.
The use of your data protection rights usually requires that you clearly prove your identity (e.g. by means of a copy of your ID card, where your identity is otherwise not clear or cannot be verified). To exercise your rights, please contact us at the (e-mail) address specified in section 1.1.