DE | EN
Gasser Partner

Privacy Policy

Data Privacy
at GASSER PARTNER Attorneys-at-Law

Here at GASSER PARTNER we make protecting your personal data our highest priority. We have a professional duty to ensure confidentiality so we are committed to the utmost secrecy in every aspect of our work. GASSER PARTNER processes your data in accordance with the statutory provisions of the European General Data Protection Regulation (GDPR), including the latest version of any national legislation.

This privacy policy, pursuant to Article 13 of the GDPR, is to inform you about the collection of personal data and to disclose the purposes for which such data is processed, and how you can exercise your rights under the GDPR.

Contact details of the data controller

GASSER PARTNER processes information and personal data relating to you. The data controller in the context of the GDPR is:

GASSER PARTNER Attorneys-at-Law
Feldkircher Strasse 31
Postfach 423
9494 Schaan
Liechtenstein
E-mail: datenschutz@gasserpartner.com
Telephone: [+423] 236 30 80

Contact details of the data protection officer

If you have any questions about this privacy policy or data protection at GASSER PARTNER Attorneys-at-Law, please contact:

GASSER PARTNER Attorneys-at-Law
René Saurer
Feldkircher Strasse 31
Postfach 423
9494 Schaan
Liechtenstein
E-mail: datenschutz@gasserpartner.com
Telephone: [+423] 236 30 80

 

 

Privacy Policy for Visitors to our Website
GASSER PARTNER Attorneys-at-Law

A. General

This Data Privacy Statement is to inform you about data processing on our website (www.gasserpartner.com). It will give you, as a visitor to our website, all the necessary information as to how, why and to what extent we obtain and use personal data from you. This Data Privacy Statement will also give you information on your rights and on data protection.

B. Collection, processing and use of personal data

1. Which categories of personal data are collected?

1.1 When you simply visit our website, i.e. if you do not transfer information to us in any other way, we might obtain the following data:

(a) IP address;

(b) Date and time of the request;

(c) Time zone difference to Greenwich Mean Time (GMT);

(d) Content of the request (specific page);

(e) Access status/http-status code;

(f) Quantity of data transferred in each case;

(g) Website from which the request originates;

(h) Browser;

(i) Operating system and its interface; and/or

(j) Language and version of the browser software.

1.2 In addition to simply visiting our website, we also give you the opportunity to contact us via e-mail or by other electronic forms of communication. For this purpose, we may also collect the following personal information:

(a) Name and contact details;

(b) Private and/or business address and/or

(c) E-mail address and telephone number.

2. How is that personal data collected?

2.1 We may collect your personal data, or you may provide it to us, by various means, from information:
(a) collected when you view or access our website (see Section C [Cookies, Matomo and File Downloads] below); and/or
(b) communicated by you to us by e-mail or other forms of electronic communication.

3. What are the grounds for processing your personal data and how do we use that personal data?

3.1 The processing of your personal data is in principle limited to the data required to provide a functional website as well as our content and services.
3.2 We use your personal data:
(a) to show you our website;
(b) tp ensure the stability and security of our website; and/or
(c) to process any e-mail inquiry from you.
3.3 We may process your personal data for any of the purposes set out above where one (or more) of the following legitimate processing grounds applies:
(a) processing is necessary to implement a contract with you;
(b) processing is necessary for us to comply with our legal obligations;
(c) processing is necessary for our legitimate interests unless those legitimate interests are overridden by your interests, fundamental rights or freedoms; and/or
(d) you have consented to the processing in question.

4. With whom may we share your data?

4.1 We may share your personal data with:
(a) third parties who provide us with technical support, such as our IT providers; and/or
(b) Third-party suppliers who help us to design our website to make it more attractive and functional (see Section C below [Cookies, Matomo and File Downloads]).

5. Will your data be transferred to third countries or to any international organization?

5.1 Should you visit our website or should you make contact via our website, your personal data might be transferred to recipients (see Section 4) in a third country.
5.2 Transfer of your personal data to recipients in a third country or an international organization will only take place if the following are ensured:
(a) the European Commission considers that the third country offers an appropriate level of protection (adequacy decision); and/or
(b) the recipient has signed a contract based on standard contractual clauses (SCC) confirmed by the European Commission obliging it to protect personal data.
5.3 Transfer of your personal data outside of the European Economic Area is made to Switzerland. The European Commission has determined a sufficient level of protection in an adequacy decision.

6. How long will we retain your personal data?

6.1 We store your personal data for reasons of data security in order to ensure the stability and functional security of our system and only for as long as is necessary to meet the aforementioned purposes.
6.2 Our IT provider stores your personal data when you make contact by e-mail. Should we form a business or client-attorney relationship with you, we will process and store your personal data for the term of your business or attorney-client relationship, in accordance with the general Data Privacy Statement.
6.3 If errors occur on the main page, the hosting provider stores them for 7 days in ‘error logs’ with the date, IP address, page and type of error.

C. Cookies, Matomo and File Downloads

Consent to use cookies for statistical purposes:

1. Cookies

1.1 Cookies are stored on your computer each time you use our website. Cookies are small text files that are stored on your hard disk in the browser you use and through which certain information flows to the place that sets the cookie (in this case, us). Cookies cannot run programs or infect your computer. They do not cause any damage and render our website more user-friendly and efficient.
1.2 Our website uses the following types of cookies, whose scope and operation are explained hereinafter:
- Transient cookies (see Section 1.3 below); and/or
- Persistent cookies (see Section 1.4 below).
1.3 Transient cookies are deleted automatically when you close your browser. These include session cookies. These store a so-called session ID, with which different browser requests can be assigned to the common session. This allows your computer to be recognized each time you return to our website. Session cookies are deleted when you log out or close your browser.
1.4 Persistent cookies are automatically deleted after a specified duration, which may differ depending on the cookie. For us, this is 90 days. You can delete the cookies at any time in your browser security settings.
1.5 The legal basis is consent according to Art. 6 Para. 1 lit. a of the GDPR and legitimate interest according to Art. 6 Para. 1 lit. f of the GDPR. For example, it is in our legitimate interest to improve our website and design it more user-friendly.
1.6 If you consent to the use of cookies, you may at any time revoke a consent given, by using the button above or object to the processing of your data using cookies. You can configure your browser settings according to your wishes and, for example, decline to accept third party cookies or all cookies. Please note that you may then not be able to use all functions of this website.

2. Matomo

2.1 On our website we use Matomo (www.matomo.org) a self-hosted open-source-software to evaluate the usage of our website.
2.2 Matomo uses cookies (see Section 1. [Cookies]) which will be stored on your computer. The containing information regarding website and internet usage can be processed and evaluated by us.
2.3 Matomo can process the following data:
(a) Anonymized IP adress (the last byte will be deleted);
(b) Time in local user's timezone;
(c) Date and time of the request;
(d) User ID;
(e) Pseudonymized location with low accuracy;
(f) Title of the page being viewed;
(g) URL of the page being viewed;
(h) URL from which the request originates;
(i) Browser;
(j) Operating system and its interface;
(k) Screen resolution;
(l) Language and version of the browser software;
(m) Files that were clicked and downloaded;
(n) Links to an outside website that were clicked; and/or
(o) User agent of the browser being used.
2.4 The legal basis is legitimate interest according to Art. 6 Para. 1 lit. f of the GDPR. For example, it is in our legitimate interest to improve our website usage.
2.5 We use your data exclusively for the improvement of our website.

3. File Downloads

3.1 We do not require you to provide any personal information in order for you to download files from our website.

D. External Links

Our website contains links to other sites. We do not accept any liability for external links, notwithstanding careful content monitoring, as we have no control over the content and operation of third-party websites.

E. Your Rights

You have the following rights regarding your personal data:

(a) Right to information;

(b) Right to rectification or deletion;

(c) Right to restriction of processing;

(d) Right to object to processing; and

(e) Right to data portability.

If you have consented to the processing of your data, you can revoke this at any time. The revocation can be sent informally to the address of GASSER PARTNER Attorneys-at-Law, Feldkircher Strasse 31, Postfach 423, 9494 Schaan, Liechtenstein or by e-mail to datenschutz@gasserpartner.com.
To the extent that we seek to balance all interests in the processing of your personal data, you have the right to object to its processing. This is the case notably if processing is not required for the implementation of a contract with you, instances of which we have described hereinafter. When you file an objection, please explain why you do not wish us to process your personal data. If your opposition is justified, we will examine the situation and either cease or adjust the data processing or provide you with our overriding legitimate reasons for continuing to process the data.
If you believe that the processing of your data infringes existing data protection laws or violates your data protection rights in any way, you have the right to complain to the supervisory authority. For Liechtenstein, this is:
The Data Protection Agency,
Städtle 38,
9490 Vaduz,
Liechtenstein.

F. Data Security

We have taken appropriate technical and organizational precautions to protect your data from unauthorized illegal or accidental access, processing, use, manipulation, loss or destruction.
Despite all our efforts, we cannot rule out the possibility that information you send us via the internet might be viewed and used by other people. Please note in particular that unencrypted e-mails sent over the internet are insufficiently protected against unauthorized access by third parties. We therefore recommend you send confidential information by post.

G. Automated Decision Making

We do not use fully- or semi-automated decision making. Our processing activities always depend on human intervention.
H. Current Version and Changes to the Privacy Policy
This Data Privacy Statement is the current version issued in February 2021.

In the event of any change in legislation or any service, product or user service, we will amend the Data Privacy Statement accordingly. Where the change also affects consent granted by you, changes will only be made after obtaining your prior consent.

Privacy Policy for Clients and Business Partners
GASSER PARTNER Attorneys-at-Law

A. General

This Data Protection Statement is to inform you about data processing if you enter into a business or attorney-client relationship with GASSER PARTNER. As a business partner or Client, you will receive in this Data Privacy Statement all the information you need as to how, why and the extent to which we collect and use personal data from you. It will also provide you with information on your rights and on data privacy.

B. Collection, processing and use of personal data

1. Which categories of personal data are collected?

1.1. We may collect the following categories of personal data about you:
(a) your name and contact information such as your home and/or business address, e-mail address and telephone number;
(b) identity and biographical information including your nationality, date of birth, tax status, passport details and country of domicile, your current employment and employment history, plus other information relevant to our provision of professional services;
(c) information regarding your financial situation such as income, expenditure, assets and liabilities, sources of wealth, your bank account details and other information necessary for processing payments and for fraud prevention purposes;
(d) to a limited degree, usage data relating to your viewing and accessing of our e-mail marketing materials, and your marketing preferences (see Section C [Newsletter] below).

2. How is that personal data collected?

2.1 We may collect your personal data, or you may provide it to us, by various means, from information:
(a) you provide to us when we meet;
(b) provided by our own organization, agents, advisers, intermediaries or custodians of your assets;
(c) communicated by you to us by telephone, post, e-mail or other forms of electronic communication;
(d) drawn from publicly available sources or from third parties, for example when we need to conduct background or due diligence checks (KYC) about you;
(e) collected when you view or access our website (see section C [Newsletters] below); and/or
(f) collected otherwise in the normal course of providing professional services.

3. What are the grounds for processing your personal data and how do we use that personal data?

3.1 We use your personal data:
(a) to provide you with a proposal in relation to the professional services we offer and for client engagement purposes (including carrying out background checks);
(b) to provide you with professional services (including legal research and associated advisory services);
(c) to manage our relationship with you (including billing and financial management) and for record-keeping purposes;
(d) any other purpose for which you provide us with your personal data;
(e) the purposes set out in Section C (Newsletters) below;
(f) to exercise and defend our legal rights;
(g) to comply with our legal and regulatory obligations, such as the Due Diligence Act (DDA) and other anti-money-laundering laws, data protection laws and tax reporting requirements, and/or to assist with investigations by the police and/or competent authorities (where such an investigation complies with the relevant laws) and to comply with court orders;
(h) to safeguard the security of our systems and communications; and/or
(i) for security purposes in general, and to ensure the safety of our employees and visitors.
3.2 We may process your personal data for any of the purposes set out above where one (or more) of the following legitimate processing grounds applies:
(a) processing is necessary to implement a contract with you;
(b) processing is necessary for us to comply with our legal obligations;
(c) processing is necessary for our legitimate interests (including business development, if you have not objected to the use of your data - see Section C (Newsletters) below - unless those legitimate interests are overridden by your interests, fundamental rights or freedoms; and/or
(d) you have consented to the processing in question.

4. With whom may we share your data?

4.1 We may share your personal data with:
(a) your organization;
(b) third parties we engage to assist in providing our professional services, such as lawyers, IT and accounting firms and other consultants, public relations advisers, translators and/or couriers;
(c) intermediaries to whom we introduce you;
(d) third party service providers who supply us with business services, such as the providers of anti-money-laundering services and background checks, for processing in accordance with our instructions;
(e) our banks and insurers, where appropriate;
(f) courts and other authorities, in connection with the enforcement of the defense of legal rights and the provision of our professional services.

5. Will your data be transferred to third countries or to any international organization?

5.1 Your personal data may be transferred to recipients (see Section 4) in a third country.
5.2 The transfer of your personal data to recipients in a third country or an international organization will only take place if the following guarantees are present:
(a) According to the European Commission the third country offers an appropriate level of protection (adequacy decision); and/or

(b) The recipient has signed a contract based on standard contractual clauses (SCCs) confirmed by the European Commission obliging it to protect personal data.

6. How long will we retain your personal data?

6.1. We will retain your personal data for as long as is necessary to fulfil the purposes set out in the Privacy Notice.
6.2. In many cases this will mean that we retain your personal data for the same period as we retain your files or a copy of your files. Usually this will not be less than 10 years from the date that the relevant matter ended.
6.3. Longer retention periods may be appropriate, for example to exercise or defend our legal rights. If there is no longer a legal reason for storing the data, we will delete personal data securely, or in some cases anonymize it.

C. Newsletters

We may use your contact details to send you (by post or electronically) newsletters, event invitations and other mail promoting our services. We do this on the basis of our legitimate interests or your consent (as appropriate to the communication in question). You can always unsubscribe from these mailings by contacting us at datenschutz@gasserpartner.com.

The legal basis is consent according to Art. 6 Para. 1 lit. a of the GDPR and legitimate interest according to Art. 6 Para. 1 lit. f of the GDPR. It is in our legitimate interest to inform you of changes to the law, current case law and our range of services.

D. Your Rights

You have the following rights regarding your personal data:

(a) Right to information;

(b) Right to rectification or deletion;

(c) Right to restriction of processing;

(d) Right to object to processing; and

(e) Right to data portability.

If you have consented to the processing of your data, you can revoke this at any time. The revocation can be sent informally to the address of GASSER PARTNER Attorneys-at-Law, Feldkircher Strasse 31, Postfach 423, 9494 Schaan, Liechtenstein or by e-mail to datenschutz@gasserpartner.com.
To the extent that we seek to balance all interests in the processing of your personal data, you have the right to object to its processing. This is the case notably if processing is not required for the implementation of a contract with you, instances of which we have described hereinafter. When you file an objection, please explain why you do not wish us to process your personal data. If your opposition is justified, we will examine the situation and either cease or adjust the data processing or provide you with our overriding legitimate reasons for continuing to process the data.
If you believe that the processing of your data infringes existing data protection laws or violates your data protection rights in any way, you have the right to complain to the supervisory authority. For Liechtenstein, this is:
The Data Protection Agency,
Städtle 38,
9490 Vaduz,
Liechtenstein.

E. Data Security

We have taken appropriate technical and organizational precautions to protect your data from unauthorized illegal or accidental access, processing, use, manipulation, loss or destruction.
Despite all our efforts, we cannot rule out the possibility that information you send us via the internet might be viewed and used by other people. Please note in particular that unencrypted e-mails sent over the internet are insufficiently protected against unauthorized access by third parties. We therefore recommend you send confidential information by post.

F. Automated Decision Making

We do not use fully- or semi-automated decision making. Our processing activities depend on human involvement.

G. Current Version and Changes to the Privacy Policy

This Data Privacy Statement is the current version issued in February 2021.

In the event of any change to legislation or a service, product or user service, we will amend the Data Privacy Statement accordingly. Where the amendment also concerns the consent granted by you, changes only take place after obtaining your prior consent.

Privacy Policy for Job Applicants
GASSER PARTNER Attorneys-at-Law

A. General

This Data Privacy Statement is to inform you how GASSER PARTNER processes your personal data when you apply for a job advertised by us or on spec. It will also provide you with information on your rights and on data security.
Should we enter into a service or employment relationship with you, we will continue to inform you in the context of the conclusion of the employment contract concerning the use of your data in the context of any employment relationship.

B. Collection, processing and use of personal data

1. Which categories of personal data are collected?

1.1 We may collect the following categories of personal data about you:
(a) Name, age, gender, nationality, date of birth, place of birth, civil status, passport details, hobbies, private and/or business address, e-mail address and telephone number, current employment and employment history, roles, working hours, memberships and private work;
(b) Image data (application photograph);
(c) Data in the application cover letter;
(d) Data in certificates, educational certificates and references and evidence of employment;
(e) Information from the job interview such as salary expectations, type of employment desired, date of entry;
(f) Information from correspondence during the application process;
(g) Results from test processes;
(h) Data on references; and/or
(i) Further relevant information on testing or forming a service or employment relationship.

2. How is that personal data collected?

2.1 We may collect your personal data, or you may provide it to us, by various means, from information:
(a) you tell us at interview;
(b) you tell us in your written application;
(c) you tell us during a telephone call or by e-mail or in any other form of electronic communication;
(d) in the public domain or which has been communicated to us by third parties; and/or
(e) that we might otherwise learn when evaluating or justifying an employment or service relationship.
2.2 If you view job offers via our website and apply using our e-mail address, we may also collect other data. You can obtain further information on this through our Data Privacy Statement for website visitors.

3. What are the grounds for processing your personal data and how do we use that personal data?

3.1 We will use your personal data:
(a) to verify and justify an employment or service relationship; and/or
(b) to contact you on account of your application.
3.2 We may process your personal data for any of the purposes set out above where one (or more) of the following legitimate processing grounds applies:
(a) processing is necessary to implement a contract with you;
(b) processing is necessary for us to comply with our legal obligations;
(c) processing is necessary for our legitimate interests unless those legitimate interests are overridden by your interests, fundamental rights or freedoms; and/or
(d) you have consented to the processing in question.

4. With whom may we share your data?

4.1 Your personal data may be shared with:
(a) Internal offices other than those responsible for the application process which need the data in the context of the application process, for example team-leading senior partners and partners; and/or
(b) our IT provider, for the electronic storage of your application records

5. Will your data be transferred to third counties or to an international organization?

Your personal data in connection with your application will not be transferred to countries outside the European Economic Area or any international organizations.

6. How long will we retain your personal data?

After completion of the application process, we will store your personal data for a further two months in order to be able to defend, substantiate or assert any legal claims. Should we employ you, we will process and store your personal data for the term of your employment contract, in accordance with the general Data Privacy Statement.

C. Your Rights

You have the following rights regarding your personal data:

(a) Right to information;

(b) Right to rectification or deletion;

(c) Right to restriction of processing;

(d) Right to object to processing; and

(e) Right to data portability.

If you have consented to the processing of your data, you can revoke this at any time. The revocation can be sent informally to the address of GASSER PARTNER Attorneys-at-Law, Feldkircher Strasse 31, Postfach 423, 9494 Schaan, Liechtenstein or by e-mail to datenschutz@gasserpartner.com.
To the extent that we seek to balance all interests in the processing of your personal data, you have the right to object to its processing. This is the case notably if the processing is not required for the implementation of a contract with you, instances of which we have described hereinafter. When you file an objection, please explain why you do not wish us to process your personal data. If your opposition is justified, we will examine the situation and either cease or adjust the data processing or provide you with our overriding legitimate reasons for continuing to process the data.
If you believe that the processing of your data infringes existing data protection laws or violates your data protection rights in any way, you have the right to complain to the supervisory authority. For Liechtenstein, this is:
The Data Protection Agency,
Städtle 38,
9490 Vaduz,
Liechtenstein.

D. Data Security

We have taken appropriate technical and organizational precautions to protect your data from unauthorized illegal or accidental access, processing, use, manipulation, loss or destruction.
Despite all our efforts, we cannot rule out the possibility that information you send us via the internet might be viewed and used by other people. Please note in particular that unencrypted e-mails sent over the internet are insufficiently protected against unauthorized access by third parties. We therefore recommend you send confidential information by post.

E. Automated Decision Making

We do not use fully- or semi-automated decision-making. Our processing activities always depend on human intervention.

F. Current Version and Changes to the Privacy Policy

The Data Privacy Statement is the current version issued in February 2021.

In the event of any change in the legal situation or any service, product or user service, we will amend the Data Privacy Statement accordingly. Where the amendment also affects the consent granted by you, amendments will only be made after obtaining your prior consent.