This Privacy Policy explains how PatchCore.dev collects, processes, and uses personal data, as well as the purposes behind these actions. Safeguarding customer information has always been a top priority for us, and we are committed to continually improving our practices to ensure even greater protection of personal data.
PatchCore.dev values the trust of its customers. Data protection and security are therefore central concerns for us. The responsible handling of personal data is essential to our approach. If you have any questions, please contact us at [email protected].
We process personal data for various reasons and for various purposes. Your personal data will almost always be processed when you interact with us or we interact with you, for example when you order something from us. It is also important for us to be able to tailor our offering to your individual needs. Therefore, when you create a customer account, register for another of our services, or navigate our websites, we also process behavioral and (where applicable) transactional data and make assumptions about your preferences based on it. This enables us, for example, to send you custom special offers or offers that are likely to be of interest to you.
Your personal data may be shared with our service providers and partners. As a rule, personal data is processed on our behalf and in accordance with our instructions; however, certain partners also process personal data on their own responsibility or jointly with us.
We ensure your data is protected with security measures that are proportional to the associated risks. To safeguard your personal information from unauthorized access, we implement comprehensive security protocols. These measures are continually updated and adapted to reflect the latest industry standards.
If you have any questions about our processing of your personal data, please feel free to contact us at [email protected].
The protection of personal data is a matter of trust, and your trust is important to us. In this Privacy Policy, we inform you how and why we collect, process, and use your personal data.
In this Privacy Policy, you will learn, among other things:
We have based this privacy policy on both the Swiss Data Protection Act and the European Union’s General Data Protection Regulation (GDPR). The GDPR has established itself globally as a standard for rigorous data protection. However, whether and to what extent the GDPR applies depends on each individual case.
According to data protection law, responsibility for data processing lies with the company that determines whether such processing is to take place, for what purposes it is to take place and how it is to be configured. PatchCore.dev ("we" or "us") is generally responsible for data processing under this Privacy Policy.
This privacy policy applies to all persons whose data we process (hereinafter referred to as “you”), regardless of which channel you use to contact us (e.g. in an online shop, on a website, in an app, in a branch, by telephone, via a social network, at an event, etc.). It applies to the processing of personal data that has already been collected and personal data that will be collected in the future.
Our data processing activities may, in particular, affect the following categories of persons if we process their personal data:
“Personal data” constitute information that can be associated with a specific person. We process various categories of such personal data. The key categories are set out below for your orientation. However, we may also process other personal data in individual cases.
Master data includes fundamental information about you, such as your salutation, name, contact details, and date of birth. We collect master data, in particular, when you create a customer account or place an order as a guest on PatchCore.dev. We also collect master data if, for example, you take part in a competition or prize draw, or register for a newsletter. We additionally collect master data about contacts and representatives of contractual partners, organizations, and authorities.
Examples of master data include:
Under certain circumstances, you can also register for individual online offers via the login of a third-party provider (e.g. Apple, Google, or Facebook). In this case, we receive access to certain data saved with the provider in question, for example your username and e-mail address, the scope of which you can normally determine. Information in this regard can be found in the privacy policy of the provider concerned.
Contract data is personal data that arises in connection with the conclusion or execution of the contract, e.g. information on the conclusion of the contract, claims and receivables acquired or information on customer satisfaction. We conclude contracts primarily with customers, business partners and job applicants. If you accept offers from us based on a contract, e.g. if you purchase products or make use of services, we will often also gather behavioral and transactional data.
Contract data includes details:
If you contact us or we contact you, for example when you contact a customer service, or when you write to us, or call us, we process the exchanged communication contents and information about the type, time, and place of communication. In certain situations, we may also ask you to provide proof of identity.
Examples of communication data are:
Telephone conversations and video conferences with us may be recorded; we will inform you of this at the start of each conversation. If you do not want us to record such conversations, you may terminate the conversation at any time and contact us in another manner (e.g. by e-mail).
When you shop with us, make use of our offers and infrastructure, or procure our services, we frequently collect data about this usage. This occurs, for example, if you purchase something from us in an online store, or if you use our websites and apps. If you are acting on behalf of a third party, this personal data may also pertain to that third party (e.g., your family members if you make purchases on their behalf).
Examples of transactional and behavioral data include the following information if available to us as personal data:
You can also use some of our offers anonymously. For example, in countries where we operate a store network, you can shop at our stores without registering. However, on our websites and apps, transactional and behavioral data may also be assigned to your profile even if you are not logged in at the time you visit the website or make use of the app.
We wish to tailor our offers and services to our customers as effectively as possible. We therefore also process data about your interests and preferences. To do so, we may combine transactional and behavioral data with other data and analyze such data on a personal and non-personal basis. This enables us to draw conclusions about characteristics, preferences, and likely behavior, such as your affinity for specific products and services.
In particular, we may create segments (permanently or case-related), that is, groups of persons displaying similarities with regard to specific characteristics. Preference data may be used either personally (e.g. in order to show you advertising that is relevant to you) or on a non-personal basis (e.g. for market research or product development purposes).
The processing described can also be called "profiling" in technical language.
When you make use of our websites, apps, Wi-Fi networks, or other electronic services, we collect certain technical data such as your IP address or device ID. Technical data also include the protocols in which we record the use of our systems (log files). In some cases, we may also assign a unique code number (an ID) to your end device (tablet, PC, smartphone, etc.), for example by using cookies or similar technologies, in order to be able to recognize it.
Technical data can in particular also be used to collect behavior data, that is, details about your use of websites and mobile apps. However, we are usually unable to derive who you are from technical data unless you create a customer account or register for other offers, for example. In this case, we can link technical data with master data, and thus with your person.
Technical data include:
You often disclose personal data to us yourself, for instance when sending us data or communicating with us. Master, contract, and communication data in particular are generally something you disclose to us yourself. You are in many cases also responsible for disclosing preference data to us.
For example, you provide us with personal data yourself in the following cases:
The provision of personal data is largely voluntary, which means that you are not generally obliged to disclose your personal data to us. However, we do have to collect and process the personal data that are required for processing contractual relationships and fulfilling associated obligations or that are prescribed by law, such as mandatory master and contract data, as we would otherwise be unable to conclude or continue the contract in question.
If you send us data about other persons (e.g. family members), we assume that you are authorized to do so and that this data is correct. Please also make sure that these other persons have been informed about this privacy policy.
We may also collect personal data about you ourselves or automatically, such as when you shop with us, make use of our offers, or procure our services. This is often behavioral and transactional data, as well as technical data (e.g., the time at which you visit our website).
For example, we independently collect personal data about you in the following cases:
We may also derive personal data from personal data already available to us, for example by analyzing transactional and behavioral data. Such derived personal data frequently comprise preference data.
For example, we can analyze the transaction and behavior data collected during purchases in our online shops and, on this basis, make assumptions about your personal interests, preferences, affinities, and habits. This enables us, for instance, to tailor our offers and information to your individual needs and interests. For example, this enables us to send you an individual selection of offers relevant for you.
We wish to remain in contact with you and address your individual requirements. We therefore process personal data for the communication with you, in order to answer inquiries and for customer care, for instance. In particular, we make use of communication and master data for this, as well as contract data if the communication concerns a contract. We may also personalize the content and time of dispatch of messages on the basis of behavior, transaction, preference, and other data.
The purpose of communication particularly comprises:
We wish to offer you the best possible service. We therefore process personal data in connection with the initiation, administration, and processing of contractual relationships, for instance to dispatch an order, provide a service, deliver goods or services, build up our communities, run a loyalty or bonus program, or host a prize draw. Contract processing also includes any agreed personalization of services. For this purpose, we make use of master data, contract data, communication data, transactional and behavioral data, and preference data in particular.
The purpose of contract processing generally comprises everything that is necessary or appropriate for concluding, executing, and, where applicable, enforcing a contract.
For example, this includes processing in order to:
We wish to present you with attractive offers. We therefore process personal data for relationship management and marketing purposes, for example in order to send you written and electronic messages and offers and carry out marketing campaigns.
Messages and offers may also be personalized in order to – as far as possible – only send you information that is likely to be of interest to you. For this purpose, we in particular make use of master data, contract data, communication data, transaction data, behavior data, and preference data, but also image and sound recordings.
Examples include the following messages and offers:
You can refuse contacts for marketing purposes at any time. For newsletters and other electronic messages, you can generally opt out of the corresponding service from your customer account or via an unsubscribe link included in the message.
The personalization of our messages enables us to tailor information to your individual needs and interests, and to only present you with offers that are likely to be relevant for you.
We aim to improve our offers continuously and make them more attractive for you. We therefore process personal data for market research and product development purposes. To do so, we particularly process master, behavior, transaction, and preference data, as well as communication data and information from customer surveys, other surveys and studies, and further information, for example from the media, the Internet, and other public sources. As far as possible, we make use of pseudonymized or anonymized information for these purposes.
Market research and product development in particular include:
We wish to guarantee your and our security and prevent misuse. We therefore also process personal data for security purposes, to guarantee IT security, to prevent theft, fraud, and misuse, and for evidentiary purposes.
Examples of the purpose of security and prevention include:
We wish to lay the foundations for compliance with statutory requirements. We therefore also process personal data in order to comply with legal obligations and to prevent and detect infringements. Examples of this include receiving and processing complaints and other messages, complying with court and administrative orders, measures for detecting and investigating misuse as well as the legally required retention of metadata from telecommunications traffic. This can apply to all the personal data categories listed in Section 4.
Compliance with statutory requirements particularly includes
All such cases may concern Swiss law or foreign regulations to which we are subject, as well as self-regulations, industry and other standards, our own corporate governance, or official directives.
We wish to be able to enforce our claims and to defend ourselves against the claims of others. We therefore also process personal data for the protection of rights, for instance in order to enforce claims judicially, before or out of court, and before authorities in Switzerland and abroad, or to defend ourselves against claims. Depending on the situation, we process different categories of personal data, such as contact data and details of events that have led to or could lead to a dispute.
The purpose of the protection of rights in particular includes:
Depending on the purpose of the data processing, our processing of personal data is based on different legal grounds. In particular, we may process personal data if
In particular, we have a legitimate interest in processing for the purposes set out in Section 6 above and the disclosure of data in accordance with Section 8 and the associated objectives. The legitimate interests in each case include our own interests and the interests of third parties.
Examples of these legitimate interests include interests in connection with:
For example, this may include the following disclosures of data:
We may disclose your personal data to companies outside the PatchCore.dev if we make use of their services. These service providers generally process personal data on our behalf as so-called “contract processors”. Our contract processors are obliged to only process personal data in accordance with our instructions and to take suitable measures to ensure data security. Certain service providers are also responsible jointly with us or independently (e.g. collection agencies). We ensure through the selection of service providers and suitable contractual agreements that data protection is upheld during the entire processing of your personal data.
Examples include services in the following areas:
It is also possible that we may disclose personal data to other third parties for their own purposes, for example if you have granted your consent or we are legally obliged or authorized to share such information. In such cases, the data recipient is legally responsible as the controller of the data.
Examples of such cases include the following:
As a matter of principle, we are not subject to any professional duty of confidentiality (such as banking or medical secrecy). Please inform us in individual cases if you believe that specific personal data is subject to a duty of confidentiality so that we can review your concerns.
We process and store personal data mostly in Switzerland. In certain cases, however, we may also disclose personal data to service providers and other recipients Section 8 who are located outside Switzerland or who process personal data outside this area (in principle in any country in the world). The countries in question may not have laws that protect your personal data to the same extent as in Switzerland. If we transfer your personal data to such a country, we will ensure the protection of your personal data in an appropriate manner.
One means of ensuring adequate data protection is, for example, to conclude data transfer agreements with the recipients of your personal data in third countries that ensure the required level of data protection. This includes agreements that have been approved, issued, or recognized by the Swiss Federal Data Protection and Information Commissioner, known as standard contractual clauses. Data may also be transferred to countries without adequate protection in exceptional cases, for example if consent is granted, in connection with legal proceedings abroad, or if transfer is necessary for the processing of an agreement.
Certain types of personal data are considered under data protection law to be sensitive, such as details about health and biometric features. Depending on the circumstances, the categories of personal data listed in Section 4 may also comprise such sensitive personal data. However, we generally only process sensitive personal data if this is necessary for the provision of a service, if you have voluntarily disclosed this data to us, or have consented to such processing. We may also process sensitive personal data if this is necessary for the protection of rights or compliance with Swiss or foreign legal provisions, if the data concerned have clearly been publicly disclosed by the person in question, or if the applicable law otherwise permits its processing.
“Profiling” refers to a procedure during which personal data is processed on an automated basis in order to analyze personal aspects or make predictions, e.g. the analysis of personal interests, preferences, affinities, and habits or the prediction of likely behavior. Profiling can be used in particular to derive preference data (further details about this can be found in Section 4.5).
Profiling is a common procedure, e.g. it occurs in the context of the automated processing
Profiling helps us to
We conduct profiling in connection with our online shops, for example, by analyzing your shopping behavior and assigning specific interests to you based on it. These interests may be created permanently or on a case-related basis and may relate, for example, to a reason for purchasing. For example, this profiling allows us to send you relevant product suggestions in the form of a newsletter.
Profiling also takes place in connection with your customer account, for instance when we analyze your usage and shopping behavior in our online shops and on our websites and apps in order to offer you an individual user experience and send you offers tailored to your interests.
In order to improve the quality of our analyses and predictions, we may also combine personal data that originates from different sources as the basis of our profiling. Self-learning algorithms (specific routines in computer programs) can also be used.
In certain cases, you also have the right to object to profiling, as described in Section 14.
We take appropriate technical and organizational security measures in order to safeguard your personal data, protect you against unauthorized or unlawful processing activities, and to address the risk of loss, unintentional changes, inadvertent disclosure, or unauthorized access. However, like all companies, we cannot completely rule out data security infringements; certain residual risks are unavoidable.
Security risks of a technical nature include the encryption and pseudonymization of data, record keeping, access restrictions, and the storage of data backups. Security measures of an organizational nature include instructions issued to our employees, training programs, and audits. We also require our contract processors to take appropriate technical and organizational security measures.
We process and store your personal data
In certain cases, we will also ask for your consent if we want to store your personal data for longer periods (e.g. for job applications that we wish to keep on file). At the end of the periods specified, we will erase or anonymize your personal data.
For example, we adhere to the following retention periods, although we may deviate from them in individual cases:
You have the right to object to data processing particularly if we process your personal data on the basis of a legitimate interest and the other applicable requirements are met. You can also object to data processing in connection with direct advertising (e.g. advertising e-mails) at any time. This also applies to profiling, to the extent that it relates to direct advertising.
Provided the applicable conditions are met and there are no applicable statutory exceptions, you also have the following rights:
Please note that these rights may be restricted or excluded in individual cases, e.g. if there are doubts about the identity or if this is necessary to protect other persons, to safeguard interests worthy of protection or to comply with legal obligations.
You can furthermore unsubscribe from newsletters and other advertising e-mails by clicking on the corresponding link at the end of the e-mail. You may also contact us under Section 15 if you wish to exercise any of your rights or have questions about the processing of your personal data.
In addition, you are free to lodge a complaint with a competent supervisory authority if you believe that the processing of your personal data may be in breach of applicable law.
This privacy policy may be updated over time, particularly if we modify our data processing practices or if new legal requirements apply. The version of the privacy policy in effect at the time the relevant data processing activity begins will generally apply.
Last modification: 01.09.2025