Every operator with a homepage that stores personal data is affected, which is often more common than we think. Personal data, such as names and e-mail or IP addresses, is usually stored when visitors from the EU visit your homepage. This data could be stored by your website for statistical analysis that runs in the background, for instance.
It is important to know, clearly identify and explicitly gain consent to where and how your homepage collects personal visitor information and how it is stored and used. Furthermore, the data must be made accessible and it must be possible to change or delete it at the request of the customer. Swisscom cannot provide you with legal advice or support in implementing the GDPR guidelines. If you need this, we recommend that you obtain legal advice from a specialist in data protection law through the Swiss Bar Association.
In principle, yes. Visitors should be able to decide which cookies (usually divided into ‘necessary’, ‘statistical’ and ‘advertising’ cookies) they want to accept. The necessary cookies are required to be able to display the homepage correctly. As a homepage operator, it is mandatory to be aware of the cookies used and request the consent of visitors in a pop-up or banner (opt-in).
As a matter of principle, personal data from your users and customers should be sent to and from your website using SSL encryption. Activating a permanent SSL encryption and only making your homepage available to users via HTTPS:// is therefore advisable. You can now access free SSL encryption providers, such as ‘Let's encrypt’. Find out more about the necessity and benefits of homepage encryption here.
Yes, there has been an imprint obligation in Switzerland under the Swiss Act on Unfair Competition (UWG) since 2012, which is completely separate from GDPR Add an imprint to your homepage if you have not done so already. If you need additional help creating an imprint, we recommend you use an online imprint generator. You can find more useful information in this article.
Personal data is “all information relating to an identified or identifiable person” (according to Swiss federal law). Examples of personal data:
The moment you open a homepage, there it is again, the ‘Accept Cookies’ pop-up. Whilst it may have become something of a general irritant in our online lives, there’s good reason for it. The new General Data Protection Regulation (GDPR) came into force in the EU in May 2018. You can read about points to consider on this topic and how to ensure you meet the GDPR standard in the following article.
Please let us know your request in writing at any time.