Data security

Privacy policy

Privacy policy Freienhof Thun AG
October 2023

The use of the Internet pages of the Freienhof Thun AG is possible without any indication of personal data; however, if a data subject wants to use special enterprise services via our website, processing of personal data could become necessary. However, if a person concerned wishes to make use of special services of our company via our website, it may be necessary to process personal data. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the consent of the data subject.

As a Swiss company without branches abroad, we are obliged to comply with the applicable data protection regulations and laws of Switzerland. In order to also enable customers from the European Union (EU) to use our services, we also comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“General Data Protection Regulation”, hereinafter “GDPR”). The legal basis for data processing is Art. 6 para. 1 lit. f GDPR

More responsible
Data protection officer

Definitions of terms

The data protection declaration of the Freienhof Thun AG is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our privacy policy should be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance.

We use the following terms, among others, in this Privacy Policy:

Personal data
Person concerned
Limitation of processing
Controller or
Controller responsible for the processing
Contract processor


We use cookies on various pages. Cookies are used exclusively to make visiting our website more attractive and to enable the use of certain functions. We do not use cookies to create user profiles or to analyse user behaviour. Cookies are small text files that are stored on your computer. Most of the cookies we use are deleted from your hard drive at the end of the browser session (so-called session cookies). In addition, we offer the option of storing certain cookies for longer, optionally and on a voluntary basis, in order to further enhance the user experience. Cookies can also be blocked in the browser. However, we would like to point out that if cookies are blocked, parts of our website may no longer function correctly or at all. The legal basis for the use of cookies is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the described purposes and interests for which cookies are necessary. Cookies or their content are not merged with other data sources.

Collection of general data and information

The website of the Freienhof Thun AG collects a series of general data and information when a data subject or automated system calls up the website. This general data and information is stored in the server log files. The (1) browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system accesses our website (so-called referrer), (4) the sub-websites which are accessed via an accessing system on our website can be recorded, (5) the date and time of access to the website, (6) an internet protocol address (IP address), (7) the internet service provider of the accessing system and (8) other similar data and information used for security purposes in the event of attacks on our information technology systems.

When using these general data and information, the Freienhof Thun AG does not draw any conclusions about the data subject. Rather, this information is needed to (1) deliver the content of our website correctly, (2) optimise the content of our website as well as its advertisement, (3) ensure the long-term viability of our information technology systems and website technology, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack. Therefore, the Freienhof Thun AG analyses anonymously collected data and information statistically, with the aim of increasing the data protection and data security of our enterprise, and to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.

Order and contact forms on our website

For questions of any kind, including support enquiries and orders for our services, we offer you the opportunity to contact us using the forms provided on the website. In addition to the actual message, it is necessary to provide at least your name and a valid e-mail address so that we know what kind of information you want from us, who the enquiry is from and so that we can answer it. Further information may be provided voluntarily or, depending on the form (order form), may be necessary in order to process your enquiry in your interest. Data processing for these purposes is carried out in accordance with Art. 6 para. 1 GDPR on the basis of your voluntary consent. The personal data collected by us for the use of the contact forms will only be used to process your enquiry. In order to process your enquiry, it may be necessary for data to be transferred to third parties. Whether, to whom, under what circumstances and data are transmitted to third parties can be seen from the following information:


Duration of storage and deletion of data

In order to be able to fulfil offers and contractually agreed services within the defined framework, data will be stored for as long as a business relationship exists between you and Freienhof Thun AG, unless otherwise stipulated by law for the storage of the processed data. Unless otherwise defined, a business relationship begins when you register for an offer from Freienhof Thun AG and ends when you or Freienhof Thun AG cancels it. The deletion of data can be requested by you in the context of your business relationship with Freienhof Thun AG on the basis of the rights of data subjects. For legal reasons, the right to erasure of data only extends to the data collected by Freienhof Thun AG or at the instigation of Freienhof Thun AG or the data that you have collected. Data that is sent to us outside of a business relationship or outside of the use of one of our offers will be deleted within the scope of the rights of the data subject, provided that they do not contradict applicable law. Freienhof Thun AG reserves the right to charge you for the costs of deletions requested by you on the basis of data subject rights and which exceed a reasonable and proportionate level at a cost rate customary in the industry.

Rights of affected parties

You have the right:

In accordance with Art. 15 GDPR
In accordance with Art. 16 GDPR
In accordance with Art. 17 GDPR
In accordance with Art. 18 GDPR
In accordance with Art. 20 GDPR
In accordance with Art. 7 para. 3 GDPR
In accordance with Art. 77 GDPR

Right of objection

If your personal data is processed on the basis of legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, provided that there are reasons for this arising from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right to object, which will be implemented by us without specifying a particular situation.

If you would like to exercise your right of cancellation or objection, simply send an e-mail to:

Data security

We use the widespread SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser when you visit our website. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can recognise whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the status bar of your browser.


Up-to-dateness and amendment of this data protection declaration

This privacy policy is valid from 7 April 2023. Should individual parts of this agreement be invalid, this shall not affect the validity of the remainder of the agreement. It may become necessary to amend this privacy policy as a result of the further development of our website and services or due to changes in legal or official requirements. You can access and print out the current privacy policy at any time on the website at

Handling of personal data

Personal data is all information that can be used to identify you personally and that can be traced back to you – for example, your name, e-mail address and telephone number. Under no circumstances do we pass on personal data to third parties without your consent.

Access data / log files

We, or our hosting provider, collect data on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. GDPR. GDPR, we collect data about every access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider. Data whose further storage is required for evidence purposes are excluded from deletion until the respective incident has been finally clarified.

Privacy policy for Akismet

Unsere Website verwendet die Software Akismet von Automattic Inc.Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, United States of America, USA. Akismet ist ein Service, der die Website gegen Spamnachrichten als Kommentare unter Blogposts, Inhaltsseiten und weiteren Inhaltstypen schützt. Akismet ermittelt zum Zweck der Prüfung, ob ein Kommentar als Spam einzustufen ist, die Eingabedaten des Webseitenbenutzers sowie technische Informationen wie IP-Adresse, Aufenthaltsland, Browser, Bildschirmauflösung und damit zusammenhängende Angaben. Diese werden zur autoamtischen Prüfung in die USA, wo die Server des Dienstes stehen, übertragen. Die Daten werden gemäss den Datenschutzrichtlinien von Automattic Inc. verarbeitet, weiterverarbeitet, geteilt und gelöscht. Die Datenschutzerklärung von Automattic Inc. ist unter folgendem Link zu findenOur website uses the Akismet software from Automattic Inc.Automattic Inc, 60 29th Street #343, San Francisco, CA 94110, United States of America, USA. Akismet is a service that protects the website against spam messages as comments under blog posts, content pages and other content types. For the purpose of checking whether a comment is to be classified as spam, Akismet determines the input data of the website user as well as technical information such as IP address, country of residence, browser, screen resolution and related information. This data is transferred to the USA, where the service’s servers are located, for automatic checking. The data is processed, further processed, shared and deleted in accordance with the data protection guidelines of Automattic Inc. The privacy policy of Automattic Inc. can be found at the following link:

Privacy policy for Google Analytics

The data controller has integrated the Google Analytics component (with anonymisation function) on this website. Google Analytics is a web analytics service. Web analysis is the collection, collation and evaluation of data about the behaviour of visitors to websites. Among other things, a web analysis service collects data about the website from which a data subject came to a website (so-called referrer), which subpages of the website were accessed or how often and for how long a subpage was viewed. Web analysis is mainly used to optimise a website and for the cost-benefit analysis of internet advertising.


Privacy policy for Instagram

Functions and content of the Instagram service, offered by Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA, may be integrated into our online offering. This may include, for example, content such as images, videos or texts and buttons with which users can express their liking of the content, subscribe to the authors of the content or subscribe to our posts. If the users are members of the Instagram platform, Instagram can assign the access to the above-mentioned content and functions to the users’ profiles there. Instagram privacy policy:

Newsletter and newsletter tracking

On the website of the Freienhof Thun AG, users are given the opportunity to subscribe to our enterprise’s newsletter. The input mask used for this purpose determines what personal data are transmitted to the controller when the newsletter is ordered.


Online application /
application procedure

The data controller collects and processes the personal data of applicants for the purpose of handling the application process. Processing may also be carried out electronically. This is particularly the case if an applicant submits relevant application documents to the controller by electronic means, for example by email or via a web form on the website. If the controller concludes an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the controller does not conclude an employment contract with the applicant, the application documents will be automatically deleted two months after notification of the rejection decision, unless deletion conflicts with any other legitimate interests of the controller. Other legitimate interest in this sense is, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).