(As of December 9, 2025)

Christian Hansen | Strategische Kommunikation GmbH

Ahornstrasse 17

4055 Basel

Switzerland

UID: CHE-243.308.200

1. Responsible

I, Christian Hansen, Ahornstrasse 17, CH 4055 Basel, Switzerland Email: ch[at]christianhansen.ch, am the controller responsible for the processing of personal data on this website in accordance with Art. 4 No. 7 GDPR.

2. Data protection officer

According to § 38 BDSG (Federal Data Protection Act), no data protection officer is required as fewer than 20 people are regularly entrusted with data processing.

3. Hosting and server logs

The site is hosted by Hostinger International Ltd. (Lithuania). Hostinger creates server-side log files (IP address, date/time, URL accessed, referrer, browser and operating system information) to detect attacks and ensure stability. The legal basis is Art. 6 (1) lit. f GDPR (legitimate interest). The log data is automatically deleted after 30 days at the latest, and encrypted backups containing the same information are deleted after 90 days at the latest. A data processing agreement has been concluded with Hostinger in accordance with Art. 28 GDPR.

4. Cookies and local storage

The website only uses one technically necessary entry:

pll_language – stores your language selection, duration one year, legal basis Art. 6 para. 1 lit. f.

Non-essential cookies (e.g., Google Analytics) are only set once you agree to them in the consent banner. You can revoke your consent there at any time with effect for the future.

5. Fonts

Two commercially licensed fonts are delivered exclusively locally from our own server. The system is configured so that no requests to Google Fonts are planned. However, if browser extensions or fallback mechanisms still establish a connection to fonts.gstatic.com, Google LLC, USA, will process your IP address. The legal basis for this is Art. 6 (1) (f) (legitimate interest); protection via the EU standard contractual clauses.

6. Contact

When you contact us by email or form, your name, email address, and message will be processed in order to respond to your request. The legal basis is Art. 6 (1) (b) GDPR (pre-contractual measures) or (f) (general inquiries). I will delete the data no later than six months after the end of the communication, unless there is a legal obligation to retain it.

7. Planned but currently deactivated services

Google Analytics 4 – Reach measurement and statistics; currently not active. As soon as the service goes live, it will only be integrated after you have given your express consent (Art. 6 (1) (a)) and this privacy policy will be updated. Data could then be transferred to the USA; protection via standard contractual clauses.

8. Data transfers to third countries

Personal data will only be transferred to the USA if a Google Fonts fallback or – if activated in the future – Google Analytics is triggered. The basis for this is the EU standard contractual clauses.

9. Your rights

You have the right to information (Art. 15), correction (Art. 16), deletion (Art. 17), restriction of processing (Art. 18), data portability (Art. 20), and objection to certain processing (Art. 21 GDPR) at any time. Please write to me informally using the contact details above.

10. Right to lodge a complaint

You can also contact the competent supervisory authority if you believe that your data is being processed unlawfully. I would be happy and grateful if you would let me know beforehand so that I have the opportunity to correct any omissions.

11. Data security

The site uses TLS encryption (https). Servers, CMS, and plug-ins are regularly updated, and firewalls and access controls are used. Backups are encrypted and deleted after 90 days at the latest.

12. Storage and deletion periods

Server log files: 30 days (backups 90 days)

Contact requests: six months after last response

Tax and accounting documents: ten years (legal obligation)

All other personal data: immediately, as soon as the purpose no longer applies and there is no obligation to retain the data.

13. Changes to this statement

This privacy policy will be amended as soon as technical processes, services used, or legal requirements change. The current version can be found on this page at any time.

Use of the exali seal

1. Description and scope of data processing

This site uses an integration of the liability seal of Exali AG. The graphic element of the seal is downloaded from the servers of Exali AG. Due to the technical design of the Internet, your IP address is processed for this purpose in order to transfer the graphic to your browser.

When you click on this seal, you leave our site and are redirected to the servers of Exali AG.

For more information, please refer to Exali's privacy policy: https://www.exali.ch/datenschutzerklaerung/#Verwendung/Einbindung%20des%20exali.ch-Haftpflicht-Siegels

2. Legal basis for data processing

The legal basis for data processing is Art. 6 (1) lit. f) GDPR (legitimate interest).

3. Purpose of data processing

The purpose of data processing is to provide visually appealing proof of the legally required information on professional liability in accordance with § 2 (11) DL-InfoV.

4. Legitimate interest

Our legitimate interest in data processing arises from the purpose of offering an appealing online service and fulfilling our information obligations in a visually appealing manner.