Skip to content

Privacy Policy

You can review and update your privacy settings at any time.

1. Purpose of this Privacy Policy

Every person has a legally protected right to privacy and protection against the misuse of their personal data. Personal data refers to all information relating to an identified or identifiable person. A data subject is a person whose personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used, in particular the storage, disclosure, acquisition, deletion, saving, modification, destruction, and use of personal data.

This Privacy Policy aims to inform the website user, hereinafter referred to as the “User [1]“, about the processing of their personal data on this website, in particular about the processing purposes, legal bases, the scope of processing, recipients, storage periods, and their rights. By using this website, the User agrees to the collection, processing, and use of data as described below.

2. Controller / Contact Information

The company listed in the website’s imprint with contact details is legally responsible or the controller within the meaning of data protection legislation for the processing of personal data on this website.

The User can contact the Controller in writing regarding data protection concerns via the following email address: info@mobadrive.ch

3. Purpose of Processing

This website serves to provide the User with information about the Controller and its activities and, if equipped with portal functionality, to exchange information with the Controller and conduct business via the internet. Unless explicitly stated otherwise, it is not intended to specifically collect personal data of the User (hereinafter “User Data”) and evaluate it for other purposes on a personal basis or pass it on to third parties.

4. Legal Bases

The processing of User Data in connection with this website is subject to the Swiss Data Protection Act (DSG). [2]

In the case of third-party services that process User Data outside Switzerland, foreign data protection laws may apply depending on the circumstances, specifically the EU GDPR in the EU/EEA area. This is mentioned accordingly in the descriptions of third-party services contained in this Privacy Policy.

5. Principles of Data Processing

User Data is processed by the Controller in accordance with, among others, the following legal principles:

  • Processing is carried out in good faith and must be proportionate;
  • Processing is carried out only for purposes identifiable to the User and only to the extent compatible with these purposes;
  • Data is destroyed or anonymized as soon as its processing is no longer necessary and as long as no legally provided exceptions exist;
  • Evidently incomplete or incorrect data is corrected or deleted;
  • User consents to data processing are only valid if given voluntarily after adequate information;
  • The principles of “Privacy by Design” and “Privacy by Default” are observed.

6. Scope of Data Processing

As a rule, the User can access all pages of this website without providing personal information.

Exceptions are website areas and services that require name, address, or other User Data for specific purposes, such as digital service portals accessible only via login. See below, User Account.

The Controller reserves the right to keep limited records of website usage for statistical purposes (e.g., to determine on which days there are particularly many accesses or which offers are used), whereby access data is stored in a log file that could be used to identify the User. Specifically, the following data is collected:

  • User’s IP address
  • Date and time of access
  • Name of the accessed file
  • Access status (successful, partially successful, not successful, etc.)
  • Page from which access occurred
  • Web browser used
  • Operating system used

This data is stored in the log files of the Controller’s IT system. This data is not stored together with other personal data of the User. The collection of this data by the system is necessary to enable the transmission of information from the website to the User’s device. In addition, this data serves the Controller to optimize the website, ensure system security, and prevent misuse (e.g., through automated mass queries, spam, etc.).

Due to the anonymization of the IP address, it is impossible to draw conclusions about specific users. The user-specific IP address is therefore not merged with other data, and a personalized evaluation is thus not possible or does not take place.

Access to User Data is only possible for a few individuals – specifically authorized by the Controller and contractually bound to confidentiality – who are involved in the technical support of the protected servers.

Contact Form

If the User sends inquiries to the Controller via the contact form, their details from the inquiry form, including the contact data provided therein, will be stored for the purpose of processing the inquiry and for follow-up questions. This data will not be passed on without the User’s consent.

Newsletter Data

If the User wishes to subscribe to the newsletter offered on the website, an email address and information that allows verification that they are the owner of the specified email address and agree to receive the newsletter will be collected. This data is used exclusively for sending the requested information and is not passed on to third parties. The User can revoke their consent to the storage of data, the email address, and its use for sending the newsletter at any time, for example, via the “unsubscribe link” in the newsletter.

Other Contractual Services

The Controller processes User Data as well as data of other contractual partners and interested parties, as well as other clients, customers, mandates, or contractual partners (uniformly referred to as “Contractual Partners”), in order to provide its contractual or pre-contractual services to them. The data processed, the type, scope, purpose, and necessity of its processing are determined by the underlying contractual relationship.

The processed data includes the master data of the Contractual Partners (e.g., names and addresses), contact data (e.g., email addresses and telephone numbers), and contract data (e.g., services used, contract content, contractual communication, names of contact persons) and payment data (e.g., bank details, payment history).

The Controller generally does not process particularly sensitive User Data, unless these are components of a commissioned or contractual processing.

The Controller processes data necessary for the establishment and fulfillment of contractual services and points out the necessity of providing information, if this is not evident to the contractual partners. Disclosure to external persons or companies only takes place if it is required within the framework of a contract. When processing data provided to the Controller within the framework of an order, the Controller acts in accordance with the instructions of the clients and legal requirements.

Administration, Financial Accounting, Office Organization, Contact Management

The Controller processes User Data within the scope of administrative tasks and the organization of its operations, financial accounting, and compliance with legal obligations, such as archiving. In doing so, it processes the same data that it processes within the scope of providing its contractual services. The processing affects users as well as other customers, interested parties, business partners, and website visitors. The purpose and interest in the processing lie in administration, financial accounting, office organization, archiving of data, i.e., tasks that serve to maintain business activities, perform tasks, and provide the Controller’s services. The Controller discloses or transmits data to the tax authorities, to consultants, such as tax advisors or auditors, as well as to other fee-collecting bodies and payment service providers.

Furthermore, based on its business interests, the Controller stores information about suppliers, organizers, and other business partners, e.g., for later contact. This predominantly company-related data is generally stored permanently for business interests.

7. Retention / Archiving

There is no general obligation for the Controller to retain User Data. It is primarily the User’s responsibility to keep relevant data available and, if necessary, to archive it.

The Controller deletes User Data as soon as its retention is no longer necessary for the fulfillment of the processing purpose, but at the latest after ten years, unless legal retention obligations or overriding interests of the Controller require longer retention.

The User Data collected in the context of online shop orders is stored by the Controller in its accounting systems after execution, invoicing, and payment of an order, as long as it is obliged to do so due to tax, commercial, or other regulations. As a rule, such data is retained for 10 years after the transaction, or 10 years after the last transaction for repeated transactions by the same user, due to legal regulations.

8. Confidentiality / Disclosure to Third Parties

Unless expressly mentioned in these data protection provisions, such as in the area of data processing by contractors or in the area of third-party services, or unless evidently intended for disclosure for a specific purpose, User Data will be treated confidentially and no User Data will be passed on to third parties or sold to third parties for their own purposes. Exceptions to this are legally mandatory disclosures to third parties, e.g., due to official or judicial orders.

9. Disclosure Abroad

The website data, including User Data, is stored and processed on protected servers in Switzerland or in EU/EEA countries. Unless explicitly stated otherwise in this Privacy Policy, particularly in the area of third-party services, no User Data is transferred to countries outside the EU/EEA.

Note regarding data transfers to the USA (United States of America)

The Controller points out that in cases where data is transferred to the USA, there is a risk of access by US authorities under US law. This occurs without differentiation, restriction, or exception based on the objectives pursued and without an objective criterion that would allow limiting the access of US authorities to the data and their subsequent use to very specific, strictly limited purposes that could justify the interference associated with accessing and using this data. Furthermore, we inform you that in the USA, there are no legal remedies for data subjects from Switzerland comparable to the situation under the DSG that would allow them to obtain access to the data concerned and to request its correction or deletion, or there is no effective judicial protection against general access rights of US authorities. We explicitly draw the User’s attention to this legal and factual situation to enable an appropriately informed decision regarding consent to the processing of their data in the USA.

10. Data Processing by Contractors

The Controller is entitled to have the User’s personal data processed by contractually bound external service providers or contractors. However, these must be legally or contractually obliged to comply with data protection law and confidentiality to the same extent as the Controller. They may not process User Data to a greater extent than the Controller itself would be allowed to do. The Controller is also obliged to regularly ensure that the commissioned data processors are able to guarantee data security.

11. Data Security (TOM)

To ensure data security, the Controller and its contractors use technical and organizational measures (TOM) according to the current state of the art. Upon request and provided that data security for other users is not jeopardized, the Controller will provide the User with more detailed information on the TOM taken.

For security reasons and to protect the transmission of confidential content, such as inquiries that the User sends to us as the site operator, this website uses SSL/TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

However, it cannot be guaranteed that information or personal data transmitted by the user via unencrypted online forms, emails, or FTP uploads could not be viewed or altered by unauthorized parties. Such transmission is generally at the User’s own risk and without any guarantee from the Controller.

12. Use of Cookies

This website uses cookies. These are small files stored on the User’s computer to track their website visit and their preferences apparent from using the website. Cookies show how users navigate the website and can also be used to save user settings between visits. Cookies are stored on the User’s device and transmitted by it to the website.

Some of the cookies used on the Controller’s website are so-called “session cookies”. They are automatically deleted after the User’s visit ends. Other cookies remain stored on the User’s device until they delete them. These cookies enable the Controller to recognize the User on their next visit. They contain an identification number with which the Controller can identify the query device (computer). This allows the Controller to improve its services when the User visits the website repeatedly. However, it is not possible to assign personal data to this identification number.

When accessing the website, the User is given the option via a pop-up display to consent to the use of cookies or to restrict or disable the use of cookies. The User can also set their web browser so that a warning appears on the screen before a cookie is stored, or that the creation of cookies is restricted or completely prevented. The User can also delete cookies retrospectively via their web browser or activate the automatic deletion of cookies when closing the browser. The User can find out how to make cookie settings via the help functions of their browser.

The User should note that if cookies are deactivated or deleted, it may be technically impossible to use all functions of the website to their full extent.

13. Use of Third-Party Services

Within the website, the Controller uses content or service offerings from third-party providers to integrate their content and services, such as videos or fonts, into the website (hereinafter uniformly referred to as “Content”). This always requires that the third-party providers of this content collect the User’s IP address, as they would not be able to send the content to their browser without the IP address. The IP address is therefore necessary for the display of the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. “Pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. Such information can also be stored in cookies on the User’s device and may include technical information about the browser and operating system, referring websites, visit time, and other details about the use of our online offering, and can also be linked to such information from other sources. Depending on the third-party service, other information about the User may also be collected, used for the third-party provider’s own purposes, and possibly processed abroad.

To the extent that the Controller uses the third-party services listed in the appendix on the website, the User agrees, by using the website, to the use of these services and the associated data processing by third parties, the use for the third parties’ own purposes, any associated disclosure abroad, and the associated terms of use and data protection provisions of third parties.

The User acknowledges in particular that the Controller cannot assume responsibility for the processing of personal data within the scope of such third-party services due to a lack of influence. The Controller endeavors to use only content whose respective providers use the IP address solely for the delivery of the content, but cannot guarantee this due to a lack of influence. Such third-party services and, consequently, the scope of User Data processing are constantly changing due to updates, bug fixes, new releases, or other program modifications. The corresponding descriptions of third-party services in this Privacy Policy therefore serve only as a general orientation for the User regarding the content and scope of data processing by such services and objection options (so-called opt-out). The Controller endeavors to update the descriptions regularly but cannot guarantee the up-to-date nature of the information at all times. It recommends that the User regularly inform themselves directly from the respective third-party service provider about the content of such services or the scope of the associated User Data processing.

The list in the appendix provides an overview of third-party providers and their content, along with links to their privacy policies, which contain further information on data processing and, in some cases already mentioned here, objection options (so-called opt-out).

14. User Rights

Subject to legally provided or contractually agreed exceptions, the User has the following rights regarding User Data:

  • The right to information about data processing (Art. 19 DSG)
  • The right of access (Art. 25 DSG)
  • The right to rectification of data (Art. 6 para. 5 DSG; 32 para. 1 DSG)
  • The right to erasure of data (“right to be forgotten”; Art. 6 para. 4 DSG; 32 para. 2 lit. c DSG)
  • The right to object and to restrict (“block”) or cease data processing (Art. 30 para. 2 lit. b; 32 para. 2 lit. a, b DSG)
  • The right to withdraw consent to data processing (Art. 30 para. 2 lit. b DSG)
  • The right to data portability (Art. 28 DSG)
  • The right to information in the case of automated individual decisions (Art. 21 DSG)

In the event of withdrawal of consent to the processing of User Data, requests for restriction of data processing, and requests for deletion of User Data, the User Data will be deleted by the Controller, unless legal retention obligations or overriding interests of the Controller prevent this. In particular, in this case, the Controller restricts the use of User Data to the legally required purposes. User Data required for order processing or for commercial purposes are not affected by this. In all these cases, the User accepts that no or only limited personalized services can be provided.

For questions regarding the processing of personal data or for other data protection concerns, the User can contact the Controller via the contact point specified above under the heading “Controller / Contact Information”. To prevent misuse, however, the Controller will only answer data protection inquiries in writing and upon presentation of proof of identity (copy of your passport or ID). Information is provided free of charge and usually within 30 days.

15. Competent Supervisory Authorities

The competent authority for data protection concerns regarding the processing of User Data by private individuals, insofar as persons in Switzerland are affected or the data is processed from Switzerland, is the Federal Data Protection and Information Commissioner (FDPIC). It can investigate violations of data protection regulations ex officio or upon notification and order that processing must be adjusted, interrupted, or terminated in whole or in part. Furthermore, it advises private individuals on data protection issues, provides affected persons with information on request about how they can exercise their rights, and can file a complaint with the competent law enforcement authority.

The contact details of the FDPIC can be found at https://www.edoeb.admin.ch.

16. Competent Supervisory Authorities

Unless mandatory law dictates otherwise, Swiss law alone is applicable, to the exclusion of international private law. The exclusive place of jurisdiction, apart from mandatory legal venues, is the Controller’s registered office.

Moser-Baer AG

January 2026