Privacy policy in accordance with the Swiss Data Protection Act (nDSG)
1. General
Thank you for your interest in our website. Protecting your privacy is very important to us at the GRO Foundation. We treat your personal data confidentially and in accordance with the legal provisions of the Swiss Data Protection Act (DSG) and this privacy policy.
2. Responsible body
GRO Foundation
Email: info@grofoundation.org
Heba Zahid-Shubbar
Data Protection Officer according to the regulations of TÜV Nord
The above-mentioned organisation is responsible within the meaning of the Swiss Data Protection Act (DSG).
If we process personal data jointly with other controllers or commission third parties, we will inform you separately.
3. Collection and storage of personal data and the nature and purpose of its use
When you visit our website www.grofoundation.org, the browser used on your device automatically sends information to our server and stores it temporarily in so-called log files.
The following information is recorded, among other things:
- IP address of the requesting device
- Date and time of access
- Name and URL of the file accessed
- Website from which access is made (referrer URL)
- Browser and operating system used
- Name of the access provider
This data is processed for the following purposes:
- Ensuring a smooth connection to the website
- Ensuring comfortable use
- Evaluation of system security and stability
- Administrative purposes (e.g. error analysis, maintenance)
Processing is based on our legitimate interest (Art. 31(1) GDPR) in maintaining and improving the functionality of our website. The data is deleted as soon as it is no longer required for the purpose for which it was collected.
4. Transfer of data
Personal data will only be transferred to third parties if:
- You have expressly consented to this
- This is necessary for the fulfilment of a contract
- We are legally obliged to do so
- We have an overriding legitimate interest (e.g. to enforce legal claims)
Data will only be transferred to third parties abroad if the country in question has adequate data protection in accordance with the Federal Council or if suitable protective measures (e.g. standard contractual clauses) are in place.
5. Rights of data subjects
You have the following rights under the Swiss Data Protection Act:
- Right to information about the personal data we process (Art. 25 DSG)
- Right to correction of inaccurate data
- Right to deletion or restriction of processing, provided there are no legal retention obligations
- Right to data disclosure or transfer (data portability, Art. 28 DSG)
- Right to object to certain data processing, in particular direct marketing
To exercise your rights, simply send an email to: info@grofoundation.org
If you believe that your rights have been violated, you can contact the Federal Data Protection and Information Commissioner (FDPIC) (www.edoeb.admin.ch).
6. Data security
We use appropriate technical and organisational measures to protect your data against manipulation, loss, destruction or unauthorised access. Our security measures are continuously adapted in line with technological developments.
7. Up-to-dateness and changes to this privacy policy
This privacy policy is currently valid (as of November 2025). Due to the further development of our website or changes in legal requirements, it may be necessary to adapt this policy. The current version is available at any time at New Federal Act on Data Protection (nFADP).
Optional addition (if EU data is processed):
If we process personal data of persons residing in an EU or EEA country, the provisions of the EU General Data Protection Regulation (GDPR) also apply. In this case, the legal basis is in particular Art. 6 (1) lit. b GDPR (performance of a contract) or lit. f GDPR (legitimate interest).