This privacy policy tells you what personal information we (Swissprime Technologies AG) collect when you visit and use the website www.entrygo.schueco.com (the “website”), and when you use one of the DCS EntryGo products, services or applications (such as our mobile application, collectively referred to as “the Services” for simplicity), how personal data is used, under what circumstances it is shared with third parties and how You can withdraw your consent to the use of your data.

As the person responsible, Swissprime Technologies AG carefully ensures that the legal provisions in accordance with the high standards of the Federal Act on Data Protection (DSG), the Ordinance on the Federal Act on Data Protection (DSV), the Federal Telecommunications Act (FMG) and others are met. You can contact us as follows:

Swissprime Technologies AG
Seestrasse 129
8810 Horgen
switzerland
hello@swissprime-tech.com

Changes to the privacy policy

We are entitled to change or supplement this privacy policy at any time. Therefore, we will notify you via email or other appropriate electronic systems (to the addresses provided in your account), otherwise via the Service, or by posting an updated version of this Privacy Policy on the website. We encourage you to check this page regularly for the latest information about our privacy practices. Any changes to this Privacy Policy will be effective when we post the new terms and/or implement the new changes in the service.

‍

‍

1. COLLECTION OF YOUR PERSONAL DATA

Setting up an account: To use DCS EntryGo, you'll need to download our mobile app and set up an account. During this process, we ask you for your first and last name, email address, password, and other personal information such as images (optional) in order to provide the service and comply with appropriate security requirements. With the same details, you can log in to the DCS EntryGo website.

Mobile phone information: When you download the app and during the registration process (setting up the service account), we receive information about your mobile phone, such as the brand and model and name of your phone (e.g. MyName iPhone 14), the OS version you are using, the language settings, and a token that allows us to send push notifications to your mobile phone.

Purchase information: When you purchase DCS EntryGo service plans on our website, we ask you to provide your name, email address, billing address, country and address, VAT number (if available), company name, credit card information, or bank account information, and any other information required to complete the transaction. Your name, company name, email address, and billing address are saved.

Swissprime Technologies AG does not store your credit card or bank account information. Our credit card and bank account processing service provider (www.stripe.com) treats your information in accordance with required standards and stores full payment information from you when an order is placed. For more information, visit https://stripe.com/us/terms.

Please note that by purchasing a DCS EntryGo plan, you have agreed to transfer your personal information, including your credit card or bank account information, to Stripe Payment Services Europe Ltd. The consent also covers data transmission to Stripe Inc., based in California, USA. Stripe Inc. is certified under the US-Swiss Data Privacy Framework.

You can refuse to provide this information at any time, but doing so may limit or block our ability to provide you with the Services.

Operation of readers and applications: We record the personal information listed below that relates to setting up, operating, and improving our service, your application, and your DCS EntryGo readers (“readers”), including reader status, IP address, logs of people using the reader, name, email address, phone number, IP address of people you invite, and the type of access you have given them (limited or permanent access, etc.). We also record the people you have invited as a guest so that your readers can use a guest account. We store this data together with your personal information and other information about your use of our service, such as phone number, email address, usage status, time stamp, usage via appropriate interfaces, battery or GPS location (optional), etc. We use this information to enable you (and us) to operate and monitor your readers and our service.

As a reader owner, you can access your account at any time and see how your readers are using yourself and by anyone you invite.

Each user can view their own readers' usage.

Webhook services and DCS EntryGo API: At your discretion, you can enable webhooks to receive notifications about what's happening to your readers. A webhook (also known as a web callback or HTTP push API) is a way for an app to provide other applications with real-time information. A webhook delivers data to other applications as soon as it occurs, i.e. you receive the data immediately.

You can also connect third-party tools via the DCS EntryGo API.

For example, you can set up messages when one of your readers is served via the service. If you opt for webhook services or use DCS EntryGo API, you agree to the transfer of your personal data to the relevant service provider (such as Zapier or others).

communications: When you contact us, we will receive the relevant contact information from you as well as information that you provide to us.

‍

‍

2. WEBSITE VISITORS AND APP USAGE

2.1 DATA THAT WE COLLECT VIA THE WEBSITE AND/OR THROUGH THE USE OF THE APP

cookies: Like many other websites, we collect certain information through the use of “cookies,” which are small text files that are stored by your browser when you access our services. We (and our third-party analytics providers, such as Google Analytics) may use both session cookies and persistent cookies to recognize that you've signed in to the Services and to tell us how and when you interact with our Services. We may also use cookies to monitor the overall usage and routing of web traffic on our Services and to customize and improve our Services. Unlike persistent cookies, session cookies are deleted when you log out of the Services and close your browser.

Although most browsers automatically accept cookies, you can change your browser options to no longer automatically accept cookies or to ask you before accepting cookies. However, please note that if you do not accept cookies, you may not be able to access all parts or features of the Services.

The “Remember login” function only works if you set your browser to accept permanent cookies. By doing so, you agree to such use of cookies in general and to the collection of personal information that can be reused the next time you activate the site.

The following cookies are used on our website www.entrygo.schueco.com, portal.entrygo.schueco.com and id.entrygo.schueco.com:

Cookie name | purpose

.aspNetCore.AntiForgery.* | Security
ArraFinity | Infrastructure
ArraffinitySameSite | Infrastructure

.AspNetCore.Identity.Application | Security
identity.twoFactorRememberMe | Security
EntryGo.CurrentOrganizationId | Security
ai_session | Telemetry
ai_user | Telemetry

__stripe_mid | Stripe Mechant ID, Fraud Prevention

__stripe_sid | Stripe Mechant ID, Fraud Prevention

identity.twoFactorRememberMe | Security

EntryGo.CurrentOrganizationId | Security

_ga | Google Analytics

_ga_01jqgD9pnd | Google Analytics

‍

Log data: Our servers automatically record certain information about how a person uses our services (we call this information “log data”) for both account holders (subscribers) and non-account holders. Log data may include personal information, such as a user's Internet Protocol (IP address) address, location, device and browser type, device operating system, the pages or features of our services that a user has viewed and the time spent on those pages or features, the number of times the services are used by a user, search terms, the features and links on our services that a user clicks on or uses has, and other statistics. We use this information to manage the Services, and we analyze this information to improve and expand the Services by expanding their features and functionality and tailoring them to the needs and preferences of our users.

Google Firebase: We use Google Firebase to measure your use of the app to improve the service.

We only transfer masked personal data, i.e. anonymized data. As a result, neither Google nor we can identify anyone based on this data. In addition, Google only provides aggregated and anonymized data.

For more information, please see Google Analytics' privacy policy here https://support.google.com/analytics/answer/6004245?hl=de.

Google Analytics: We also use Google Analytics on our website www.entrygo.schueco.com and portal.entrygo.schueco.com to obtain data about traffic to and use of our website and to optimize it. To do this, the Google Analytics service sends cookies to your device, which contain information about your browser and operating system, the pages you have previously visited (referrer URL), the date and time of your visit, and more, and transmits this information to Google's servers in the USA, where it is stored. As a result, neither Google Analytics nor we can identify anyone from this data. In addition, Google Analytics only provides aggregated and anonymized data.

For more information, please see Google Analytics' privacy policy here https://support.google.com/analytics/answer/6004245?hl=de.

If you don't want your data analyzed, click here to learn how to disable Google Analytics https://tools.google.com/dlpage/gaoptout?hl=de.

Microsoft Azure Application Insights: We use Application Insights a web analytics service from Microsoft Corporation (“Microsoft”) on our website portal.entrygo.schueco.com to monitor application performance, ensure application security, and identify causes of application problems.

Further information from Microsoft on data protection and Azure can be found at: https://privacy.microsoft.com/de-de/privacystatement.

‍

‍

3. PROCESSING PURPOSES

When using DCS EntryGo or other contact options, we process personal data from you and other persons, as far as permitted and as appropriate to us, also for the following purposes, in which we (and sometimes also third parties) have a legitimate interest in accordance with the purpose:

• Preparation and conclusion of contracts
• offering and developing our offerings, services and websites;
• advertising and marketing (including holding events), insofar as you have agreed to the use of your data;
• asserting legal claims and defending in connection with legal disputes and regulatory proceedings;
• prevention and investigation of crimes and other misconduct (e.g. carrying out internal investigations, data analyses to combat fraud);
• warranties relating to the operation of DCS EntryGo;

If you have given us consent to process your personal data for specific purposes (for example when you register to receive a promotion), we process your personal data within the scope of and based on this consent, unless we have another legal basis and we need one. A given consent can be withdrawn at any time, but this has no effect on data processing that has already been carried out.

‍

‍

4. GUEST ACCESS

As part of our services, you can give others (“guests”) permanent or limited permission to access your readers — for example, to control your reader. You're responsible for all uses of your account, so be sure to secure this information and only give access to people you trust.

We will only access this information with your express consent. We will only save information from contacts that you add as a guest.

A guest can register for our services and download the app. In doing so, we will also collect personal information about the guests you invite to give them access to your reader and service. All of this data (including data about the use of the service) is subject to this Privacy Policy and is used and disclosed as set forth in this statement.

Guests should be aware that the person (s) granting/granting access to a particular reader is/are able to obtain information about the guest's use of the reader and our service and may revoke or restrict access rights at their discretion and without notice.

All guests must expressly consent to such use and disclosure as users of the service. If you are a guest and do not agree to such use, you should not consent to use the service.

‍

‍

5. DATA COLLECTION ON SOCIAL MEDIA

We can operate pages and other online presences on social networks and other platforms operated by third parties (“fan pages”, “channels”, “profiles”, etc.) and collect the data about you described in Section 1 and below. We receive this data from you and the platforms when you contact us via our online presence (e.g. when you communicate with us, comment on our content, or visit our presence). At the same time, the platforms evaluate your use of our online presence and link this data with other data about you known to the platforms (e.g. about your behavior and preferences). They also process this data for their own purposes on their own responsibility, in particular for marketing and market research purposes (e.g. to personalize advertising) and to control their platforms (e.g. what content they show you).

We receive data about you when you communicate with us via online presences or view our content on the relevant platforms, visit or are active in our online presences (e.g. publish content, make comments). These platforms also collect technical data, registration data, communication data, behavioral and preference data from or about you. These platforms regularly statistically evaluate the way you interact with us, how they use our online presence, our content or other parts of the platform (what you view, comment on, “like”, share, etc.) and link this data with further information about you (e.g. information about age and gender and other demographic information). In this way, they also create profiles about you and statistics on the use of our online presences. They use this data and profiles to display our or other advertising and other content on the platform in a personalized way and to control the behavior of the platform, but also for market and user research and to provide us and others with information about you and the use of our online presence. We can partially control the evaluations that these platforms produce regarding the use of our online presences.

We process this data for the purposes described in Section 3, in particular for communication, marketing purposes (including advertising on these platforms) and market research. We can redistribute content published by you yourself (e.g. comments on an announcement) ourselves (e.g. in our advertising on the platform or elsewhere). We or the operators of the platforms can also delete or restrict content from or about you in accordance with the usage guidelines (e.g. inappropriate comments).

For more information on the processing carried out by platform operators, please refer to the platforms' privacy policies. There you can also find out in which countries they process their data, what information, deletion and other data subject rights you have and how you can exercise them or obtain further information. We currently use the following platforms:

facebook: We run a fan page on Facebook. For users from Europe, the responsible body for operating the platform is Facebook Ireland Ltd., Dublin, Ireland. Their privacy policy is available at www.facebook.com/policy.

LinkedIn: We run a company profile on LinkedIn. For users from Europe, the responsible body for operating the platform is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. Their privacy policy is available at https://de.linkedin.com/legal/privacy-policy? retrievable.

X (formerly Twitter): We operate a company profile on X. The responsible body for operating the platform for users from Europe is Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin Ireland. Their privacy policy is available at https://x.com/de/privacy.

Because of the platforms, some of your data is transferred to the USA. Detailed information can be found in the platforms' privacy policies.

There is joint responsibility with the following platform operators:

• Facebook: https://en-gb.facebook.com/legal/terms/page_controller_addendum
• LinkedIn: https://legal.linkedin.com/pages-joint-controller-addendum

The platform operators and we are jointly responsible for the web tracking methods used by the platform operator. Web tracking can also take place regardless of whether you are logged in or registered with the platform. Unfortunately, we can barely influence the platform's web tracking methods. For example, we cannot switch this off.

The legal basis for web tracking methods is your consent. Further information about the recipients or categories of recipients as well as the storage period and the criteria for determining the storage period can be found in the privacy policies of the platform operators

‍

‍

6. NEWSLETTER AND OTHER INFORMATION

Because you submit your email address through our services, we may use this information to send you messages about DCS EntryGo related services and products. For this purpose, we may work with one or more service providers to manage these messages. Swissprime Technologies AG ensures that these service providers comply with all legal requirements when processing your data.

Promotions will only be sent to you if you have subscribed and agreed to them (opt-in).

You have the option to unsubscribe from marketing-related emails by clicking on the “unsubscribe link” in each such email. In some of our communications, we use tracking means, such as a “click-through URL,” which links to content on the website. We track this data to measure the effectiveness of our customer communications.

You hereby agree to the use of your data for newsletter services.

‍

‍

7. TRANSFER TO THIRD PARTIES

As part of our business activities and for the purposes set out in Section 3, we also disclose it to third parties, as far as permitted and appears appropriate to us, either because they process them for us or because they want to use them for their own purposes. This concerns in particular the following positions:

• service providers from us (external, such as payment providers), including contract processors (such as IT providers);
• subcontractors and other business partners;
• At most, domestic and foreign authorities, official offices or courts;
• other parties in potential or actual legal proceedings;

all together “recipients.”

Some of these recipients are domestically located, but may be anywhere on earth. In particular, you must expect your data to be transferred to all countries where our service providers are located.

If a recipient is in a country without adequate legal data protection, we contractually oblige the recipient to comply with applicable data protection (for this purpose, we use the current standard contractual clauses of the European Commission with the necessary additions to the DSG, unless he is already subject to a legally recognized set of rules to ensure data protection and we cannot rely on an exception provision. An exception may apply, in particular, to legal proceedings abroad, but also in cases of overriding public interests or when the execution of a contract requires such disclosure, if you have given your consent or if it concerns data made generally available by you and which you have not objected to the processing of.

‍

‍

8. LINKS TO OTHER WEBSITES AND SERVICES

The Services may include links to other websites or services. The fact that we link to a website or service does not mean that we are affiliated with that third party, or that we authorize it. We have no control over third-party websites or services. Other websites and services follow different rules regarding the use or disclosure of the potentially personal information that you submit to them. We recommend that you read the privacy policies or statements of the other websites you visit and the services you use.

‍

‍

9. CHANGE OR DELETE YOUR DATA

All DCS EntryGo users can have their personal information reviewed, updated, corrected, or deleted in their registration profile by logging into their account and changing the “user settings” associated with their account. Deleting your information may limit our ability to provide you with the Services. If you ask us to completely delete all of this information, your account will be deactivated and you may lose access to the service and use of the DCS EntryGo devices. You can also contact us at support@entrygo.schueco.com if you have any questions or concerns. We will take steps to change or delete your information as quickly as possible, but some data may remain in archived/backed up copies for our records or as otherwise required by law.

‍

‍

10. PLACE OF STORAGE AND DURATION

Our servers for data storage are located in Western Europe. We use the latest technologies to securely store your data. All communication between your mobile device and device, and between the mobile device and the cloud itself, is encrypted for sensitive data.

However, no method of transmission over the Internet or method of electronic storage is 100% secure. As a result, we cannot guarantee absolute security.

We process and store your personal data as long as it is necessary to fulfill our contractual and legal obligations or otherwise for the purposes for which the processing was carried out, i.e. for the duration of the entire business relationship (from initiation, processing to termination of a contract) and also in accordance with legal storage and documentation requirements.

As soon as your personal data is no longer required for the purposes mentioned above, it will be deleted or anonymized as far as possible.

‍

‍

11. RIGHTS OF THE PERSON CONCERNED

Within the framework of the data protection law applicable to you and to the extent provided therein, you have the right to information, correction, deletion, the right to restrict data processing and otherwise to object to our data processing, in particular that for direct marketing purposes, profiling for direct marketing and other legitimate interests in processing as well as to disclose certain personal data for transfer to another location (so-called data portability).

You can withdraw your consent to the collection and storage of your data at any time by stopping using the service and deleting your account.

Please note, however, that we reserve the right to assert the restrictions provided for by law on our part, for example if we are required to store or process certain data, have an overriding interest in doing so (insofar as we may rely on them) or need them to assert claims. If you incur any costs, we will inform you in advance.

Please note that the exercise of these rights may conflict with contractual agreements and this may have consequences such as early termination of the contract or cost consequences. In this case, we will inform you in advance where this is not already contractually agreed.

Exercising such rights usually requires that you clearly prove your identity. Please address your concerns to:

Swissprime Technologies AG
Seestrasse 129
8810 Horgen
switzerland
hello@swissprime-tech.com

Every data subject also has the right to enforce their claims in court or to lodge a complaint with the competent data protection authority. The competent data protection authority in Switzerland is the Federal Data Protection and Information Commissioner (http://www.edoeb.admin.ch).

‍

‍

12. APPLICABLE LAW AND JURISDICTION

This privacy policy is governed exclusively by Switzerland's substantive law, to the exclusion of the United Nations Convention on Contracts for the International Sale of Goods of April 11, 1980 (Vienna Convention) and the conflict of law provisions of the Federal Act on International Private Law.

The exclusive place of jurisdiction is the courts at the headquarters of Swissprime Technologies AG, Switzerland.

February 2025