Privacy Policy

1. Introduction

MAZE2 SA ("we", "us", or "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website maze2.ch or use our services.

This policy is compliant with the Swiss Federal Act on Data Protection (FADP/DSG) and, where applicable, the EU General Data Protection Regulation (GDPR).

2. Data Controller

The data controller responsible for your personal data is:

3. Personal Data We Collect

We may collect and process the following categories of personal data:

3.1 Information You Provide

• Contact Information: Name, email address, company name, and phone number when you submit our contact form or communicate with us.
• Project Information: Details about your project requirements and business needs.
• Communication Data: Records of correspondence when you contact us.

3.2 Automatically Collected Information

• Technical Data: IP address, browser type and version, operating system, device information.
• Usage Data: Pages visited, time spent on pages, navigation patterns, referring website.
• Cookie Data: Information collected through cookies and similar technologies (see Section 8).

4. Purpose and Legal Basis for Processing

We process your personal data for the following purposes and legal bases:

5. Data Sharing and Disclosure

We do not sell your personal data. We may share your information with:

• Service Providers: Third-party vendors who assist us in operating our website and conducting our business (e.g., hosting providers, email services), bound by confidentiality agreements.
• Professional Advisors: Lawyers, accountants, and other professional advisors as necessary.
• Legal Requirements: When required by law, court order, or governmental authority.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, with appropriate confidentiality protections.

6. International Data Transfers

Your personal data may be transferred to and processed in countries outside Switzerland and the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses approved by the European Commission
• Transfers to countries with adequate data protection levels as recognized by Switzerland and the EU
• Other legally approved transfer mechanisms

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

• Contact form submissions: 2 years from last contact, unless a business relationship is established
• Client project data: Duration of the business relationship plus 10 years (Swiss statutory retention period)
• Website analytics: 26 months
• Legal and compliance records: As required by applicable law

8. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience. Cookies are small text files stored on your device.

Types of Cookies We Use:

• Essential Cookies: Necessary for the website to function properly. Cannot be disabled.
• Analytics Cookies: Help us understand how visitors interact with our website.
• Functional Cookies: Remember your preferences and settings.

You can control cookies through your browser settings. Note that disabling certain cookies may affect website functionality.

9. Your Rights

Under Swiss data protection law and, where applicable, GDPR, you have the following rights:

• Right of Access: Request information about your personal data we process.
• Right to Rectification: Request correction of inaccurate or incomplete data.
• Right to Erasure: Request deletion of your personal data under certain circumstances.
• Right to Restrict Processing: Request limitation of processing under certain circumstances.
• Right to Data Portability: Receive your data in a structured, commonly used format.
• Right to Object: Object to processing based on legitimate interests.
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.

To exercise these rights, please contact us at contact@maze2.ch. We will respond within 30 days.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction, including:

• SSL/TLS encryption for data transmission
• Secure hosting infrastructure
• Access controls and authentication measures
• Regular security assessments
• Employee confidentiality obligations

11. Third-Party Links

Our website may contain links to third-party websites (e.g., LinkedIn, GitHub). We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

12. Children's Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on our website with a new "Last updated" date. We encourage you to review this policy periodically.

14. Supervisory Authority

If you have concerns about our data processing practices, you have the right to lodge a complaint with the competent supervisory authority:

15. Contact Us

For any questions or concerns about this Privacy Policy or our data practices, please contact us: