Privacy
The following data protection declaration provides you with information about your data that we process in connection with the use of the website (https://www.water.day) and the functions, modules and components that can be accessed via them.
A. Summary – Data protection declaration for water.day - a brand of evolutionplan AG
1. What data is processed when the website is accessed?
When you access our websites, the IP address is stored by the web server for the duration of the visit. We are not able to draw any conclusions about you from the IP address.
2. Are cookies used on the website?
Our websites use session cookies, performance cookies and analysis cookies. You can find detailed information about how they work, how to delete these cookies or how to prevent them from being stored in general in the “Cookie and opt-out notices” section.
3. Do we pass on your data to third parties?
We do not pass on your data to third parties. However, we use functions from external service providers as part of our website. However, we have concluded the corresponding data protection contracts for these cases and, on the basis of the technical and organizational measures, we have ensured that these service providers use the necessary data security measures to protect your data from loss and unauthorized access at all times. Some of these service providers are also based in the USA, although, without exception, they all guarantee an appropriate level of data protection by complying with the requirements of the Privacy Shield.
4. Who can you contact if you have questions?
If you have any questions about data protection, please contact privacy@water.day.
B. Detailed data protection declaration for water.day – a brand of evolutionplan AG
1. Scope and subject of the data protection declaration
The subject of this data protection declaration is to provide information about what personal data we collect via the website, available at https://water.day, and for what purpose we process it. Insofar as links are provided to other pages, we have neither influence nor control over the linked content and the data protection provisions in place there. We recommend checking the data protection declarations on the linked websites to determine whether and to what extent personal data is collected, processed, used or made available to third parties.
For reasons of better readability, the differentiated use of various linguistic forms is dispensed with. All personal designations apply equally to all genders male/female/diverse.
2. Important definitions and terms
First of all, you will find a selection of some legal definitions that may be helpful for you to understand the data protection declaration. The full text of the General Data Protection Regulation (GDPR), including further definitions and definitions, can be found at the following link.
Personal data:
Any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
Processing:
Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
Controller:
Means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
Recipient:
Means a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not it is a third party. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;
Third party:
This is a natural or legal person, public authority, agency or other body, other than the data subject, the controller, the processor and the persons who, under the direct authority of the controller or the processor, are authorized to process the personal data.
3. Data controller`s contact details
evolutionplan AG
Neustadtstrasse 8a
CH-6003 Lucerne
Switzerland
4. Data protection contact details
E-Mail: privacy@water.day
5. Log files
When you visit our website, we collect access data and store it in a log file. This access data also includes the IP address. In addition, the name of the website accessed, the file accessed, the date and time of access, the amount of data transferred and a message about successful access, the browser type and version, the operating system, the referrer URL (the previously visited page) and the requesting provider are stored in the log file.
In addition, so-called cookies are stored on your end device (laptop, tablet, smartphone or PC) when you access our website.
Personal data:
IP address, cookie identifier
Purpose of data processing:
We collect the log file data, including the IP address, to ensure a smooth connection to the website and to enable users to use our website conveniently. In addition, the log file is used to evaluate system security and stability as well as for administrative purposes.
We use cookies to make our website and the services we offer more user-friendly. Cookies allow us to determine whether a user has already visited a particular page on our website. The cookie ID also provides us with information about user behavior or search queries, enabling us to tailor our services to the user's interests on future visits.
Interest in data processing:
The log file data, including the IP address, are used solely for the technical and design optimization of the website and to secure our systems (e.g. in the event of an attack on our IT or a security incident). We cannot establish any personal reference from the data in the log file, including the IP address, when you access our website. This can only be the case if you are simultaneously logged into our customer portal. In this case, we can directly assign the IP address to you. With the help of the cookie identifier, we learn whether and to what extent you have already visited our websites and when you returned to them.
Recipients:
We do not pass on the aforementioned data to third parties. Our website is operated and hosted by the following service providers, which is why these providers have access to the IP address, at least in theory:
Provider:
Details/information on data protection/Privacy Shield
Webflow, Inc.
398 11th Street, 2nd Floor
San Francisco,
CA 94103
https://webflow.com/legal/privacy
Duration of data storage:
The IP address will be deleted two (2) months after collection.
Legal basis
Art. 6 (1) f) DSGVO
Provision mandatory or required:
The provision of the aforementioned personal data is not required by law or contract. However, without the IP address and cookie identifier, the service and functionality of the website may not be guaranteed or may be restricted.
6. Web and user analysis
So-called tracking tools are used on the website, which, among other things, also make use of cookies and process the IP address. Tracking tools typically examine where visitors come from, which areas of a website are visited and how often and for how long which sub-pages and categories are viewed. This allows us to determine, for example, which search terms and websites the user has entered in order to ensure a needs-based design and the continuous optimization of our website.
Purpose of data processing:
Advertising tracking tools and the associated advertising circuit enable us, for example, to earn money. In addition, we can use user behavior to determine which areas of our website may be of particular interest to visitors. This also makes it possible to display targeted advertising. The ads are displayed to match the thematic orientation of a website and the associated search behavior of the user. These advertising tracking tools can examine where visitors come from, which areas of a website they visit, and how often and for how long which sub-pages and categories are viewed. This makes it possible, for example, to determine which search terms and websites the user has entered in order to display the corresponding advertisement.
Interest in data processing:
With the help of tracking tools, we can tailor our offer more specifically to our customers, visitors and interested parties.
Provision mandatory or required:
The provision of the aforementioned personal data is neither legally nor contractually required.
Profiling:
We use PostHog as our website/app analytics software and consent management tool. We collect data about website visitors based on cookies. The collected information may include a visitor’s IP address, operating system, browser ID, browsing activity and other information. See the scope of data collected by PostHog.
We calculate metrics like bounce rate, page views, sessions and the like to understand how our website/app is used. We may also create visitors’ profiles based on browsing history to analyze visitor behavior, show personalized content and run online campaigns.
PostHog does not send the data about you to any other sub-processors or third parties and does not use it for its own purposes. For more, read PostHog privacy policy.
7. Email marketing and Social media
We operate with an email marketing solution and several social networks to interact with potential or existing customers, to exchange ideas with interested parties and users, or to advertise offers and services. This includes the following providers:
Provider / Contact details / Information
Peaberry Software Inc. d/b/a Customer.io
9450 SW Gemini Dr., Suite 43920, Beaverton, Oregon 97008-7105
https://customer.io/legal/privacy-policy
https://customer.io/legal/security
Meta Platforms Inc.
(Facebook and Instagram)
Meta Ireland 6 Serpentine Ave, Dublin, D04 H0C9, Ireland
https://www.meta.com/jp/legal/privacy-policy/
TikTok Inc.
Attn: Privacy Policy Inquiry, 5800 Bristol Parkway, Suite 100, Culver City, CA 90230
https://www.tiktok.com/legal/page/us/privacy-policy/en
Google/YouTube
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
https://policies.google.com/privacy
X (Twitter)
Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA
LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
Privacy Shield
Please note that when interacting via the aforementioned media, data may also be processed outside the European Union, although providers certified under the Privacy Shield have undertaken to comply with EU data protection standards.
Furthermore, user data is generally processed for market research and advertising purposes. For example, user profiles can be created based on user behavior and the resulting interests of users. The user profiles can in turn be used to place advertisements inside and outside the platforms that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the users' computers, in which the usage behavior and the interests of the users are stored. Furthermore, data can also be stored in the user profiles independently of the devices used by the users (in particular if the users are members of the respective platforms and are logged in to them).
8. Social media buttons
We fulfill the wish of many users: to be able to share articles on our website quickly and easily in social networks such as Facebook/Instagram, TikTok, Twitter or Google+. With our social buttons, we have created the possibility to use these services while still protecting your privacy.
Normally, these social plugins cause every visitor to a page to be immediately recorded by these services with their IP address and their further activities on the Internet to be logged. This happens even if the user does not click on one of the buttons. Our social media buttons only establish direct contact between the social network and the visitor when the latter actively clicks on the share button. If the user is already logged into a social network, this happens without another window for Facebook/Instagram, TikTok and Google+. On Twitter, a pop-up window appears in which you can still edit the text of the tweet. This means that users can post content on social networks without these networks being able to create complete surfing profiles.
9. Facebook fan page / Profiles on Instagram and TikTok
We have no influence over the data that Facebook, Instagram, and TikTok process on their own responsibility in accordance with their respective terms of use and terms of service. We would like to point out that when you visit our fan page (Facebook), profile (Instagram), or profile (TikTok), data about your usage behavior is transferred from these platforms and our pages/profiles to the respective platform companies. Facebook, Instagram, and TikTok themselves process the aforementioned information in order to create more detailed statistics and for their own market research and advertising purposes, over which we have no influence. You can find more information on this in the respective privacy policies of Facebook, Instagram, and TikTok.
If we have personal data about you in the course of operating our fan page or profiles on these platforms, you have the rights mentioned in this data protection declaration. If you wish to assert any further rights against Facebook, Instagram, or TikTok, you can contact the respective platform directly. Each platform is aware of the details of the technical operation of our pages/profiles and the associated data processing, as well as the specific purposes of the data processing, and can implement appropriate measures if you exercise your rights.
10. Contact form
Personal data:
Title, first name, last name, function, company, telephone, e-mail and message
Purpose of data processing:
We use your contact form data, including the request itself, only to answer your requests, to communicate with you and to prepare offers.
Duration of data storage:
Duration of processing and handling of the request or until we are requested to delete it. You can revoke your consent to data processing at any time without affecting the legality of the processing carried out on the basis of your consent up to the point of revocation.
Legal basis:
Art. 6 para. 1 a) DSGVO
Provision mandatory or required:
The provision of the aforementioned personal data is not required by law or contract. However, it is not possible to process the request without this information.
11. Data security
We maintain up-to-date technical measures to ensure data security, in particular to protect your personal data from risks during data transfers and from third parties gaining knowledge of it. These are continuously adapted and checked according to the current state of the art. To ensure the confidentiality and integrity of the data you provide on our website, this data is transmitted via “https” and Transport Layer Security (TLS).
12. Your rights
You have the right to request confirmation from us at any time as to whether we are processing your personal data and the right to information about this personal data. In addition, you have the right to correct, delete and restrict data processing, as well as the right to object to the processing of personal data at any time, or to revoke your consent to data processing at any time or to request data transfer.
Please send all requests for information, requests for disclosure, revocations or objections to data processing by e-mail to privacy@water.day. In addition, you have the right to complain to a regulatory authority in the event of data protection violations.
13. Right of objection
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based, inter alia, on Article 6(1) lit. a) or f) DSGVO, including profiling based on those provisions. We will stop processing your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.
If you wish to exercise your right to object, simply send an e-mail to privacy@water.day.
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (a) or (f) of Article 6(1) DSGVO, including profiling based on those provisions. We will stop processing your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.
If you wish to exercise your right to object, simply send an e-mail to privacy@water.day.
