Privacy Policy

§ 1 Information on the collection of personal data and provider identification

  1. In the following, we provide information about the collection of personal data when using this website. Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses, user behavior.
  2. The controller in accordance with Art. 4 No. 7 of the EU General Data Protection Regulation (GDPR) PlayToKnow AG, Alte Landstrasse 55, 8802 Kilchberg, Schweiz, info@medtoday.ch (see our imprint).
  3. If we use commissioned service providers for individual features of our platform or if we would like to use your data for advertising purposes, we will inform you in detail about the respective processes below. In doing so, we also mention the defined criteria for the storage period.

§ 2 Rights, particularly with regard to information and revocation

  1. You have the following rights vis-à-vis us with regard to your personal data:
    • Right of access,
    • Right to rectification or erasure,
    • Right to restriction of processing,
    • Right to object to processing,
    • Right to data portability.
  2. If you have given your consent to the use of data, you can revoke it at any time. If the lawfulness of the processing is based on consent, it remains valid until the withdrawal is exercised.
  3. All requests for information, requests for information or objections to data processing should be sent by e-mail to info@medtoday.ch or to the address given in § 1 para. 2.
  4. You can ask us to delete your data at any time. In this case, there may be statutory retention periods that allow us to retain your data until the expiry of the period.
  5. If your data is incorrect, you have the right to ask us to correct it. We will comply with this request immediately.
  6. You have the right to receive your personal data provided to us from us, where technically feasible, in a readable format in order to provide it to another company (right to data portability).
  7. You have the right to submit a complaint with the supervisory authority responsible for you. 

§ 3 Data integrity

  1. We maintain up-to-date technical measures to ensure data security, particularly to protect your personal data from dangers during data transmissions and from third parties gaining knowledge. These are adapted to the current state of the art.

§ 4 Collection of personal data for informational use and contact

  1. If you use the website for informational purposes only, i.e. if you do not register or otherwise transmit information to us, we only collect the personal data that your browser transmits to our server. If you would like to view our website, we collect the following data, which are technically necessary for us to display our website to you and to ensure its stability and security (legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR):
    • IP address
    • Date and time of the request
    • Time zone difference relative to Greenwich Mean Time (GMT)
    • Content of the request (specific web page)
    • Access status/HTTP status code
    • amount of data transferred in each case
    • Website from which the request comes
    • Browser
    • Operating system and its interface
    • Language and version of the browser software
  2. When you contact us by e-mail or via the contact form, we will store your e-mail address, your name and, if you provide them, your telephone number or other information. The purpose of this storage is simply to contact you in order to answer your questions.
  3. The legal basis for the collection when contacting us is the consent that you have given by submitting the contact form (Art. 6 para. 1 sentence 1 lit. a GDPR).
  4. We will only use your data to the extent permitted by law for the purpose of advertising. In particular, we only use your e-mail address for direct marketing of our own similar goods or services. You can object to the use of your data for advertising purposes at any time in writing or in text form (e-mail to info@medtoday.ch). In doing so, we rely on your consent to the advertising of our products to our customers in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
  5. In addition to the aforementioned data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive, associated with the browser you are using, and through which certain information flows to the entity that sets the cookie (in this case by us). Cookies cannot run programs or transmit viruses to your computer. They serve to make the website more user-friendly and effective overall.

§ 5 Cookies

  1. We use cookies on our website. Such cookies are necessary to enable you to freely move around the website and use its features; this includes, but is not limited to, access to secure areas of the website. Cookies allow us to track who has visited the website(s) and to deduce how often certain web pages are visited, which parts of the site are particularly popular. Session cookies store information about your activities on our website.
  2. This website uses the following types of cookies, the scope and functionality of which are explained below:
    • Transient cookies (temporary use)
    • Persistent cookies (use for a limited time)
    • Third Party Cookies
  3. Transient cookies are automatically deleted when you close the browser. These include, in particular, session cookies. These store a so-called session ID, which can be used to assign various requests from your browser to the common session. This allows your computer to be recognized when you return to the site. The session cookies are deleted when you log out or close the browser.
  4. Persistent cookies are automatically deleted after a specified period of time, which may differ depending on the cookie. You can delete cookies at any time in the security settings of your browser.
  5. You can configure your browser settings according to your preferences and, for example, refuse to accept third-party cookies or all cookies. Please note that, if you choose to refuse cookies, you may not be able to use all features of this website.
  6. We use cookies to identify you for subsequent visits if you have an account on our website. Otherwise, you would have to log in again for each visit.
  7. The cookies used are described by us in the cookie banner.

§ 6 Disclosure of data for the maintenance of the website

  1. We will not share your personal information with third parties, unless we notify you of such disclosure.
  2. Our IT service providers have access to our stored data in order to correct errors and enable us to carry out the required technical and organizational measures. In doing so, we invoke our legitimate interest in securing our IT in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR or the fulfilment of legal obligations in accordance with Art. 6 para. 1 sentence 1 lit. c GDPR.
  3. The IT service provider(s) were carefully selected by us and commissioned in writing. They are bound by our instructions and are regularly checked by us. The service providers will not pass on this data to third parties.
  4. Your data will not be passed on outside the EU/EEA area.

§ 7 Use of our website

  1. In order to register to our events, you have to register by providing your e-mail address, your title, your first and last name. 
  2. If you use our platform, we will store your data required for the fulfilment of the contract until you permanently delete your access. Furthermore, we store the voluntary data you provide for the duration of your use of the platform, unless you delete it beforehand. You can manage and change all information in the protected customer area. The legal basis is Art. 6 para. 1 sentence 1 lit. a GDPR, i.e. your consent to the processing.
  3. If you use the portal, your data may become accessible to other participants of the portal in accordance with the contractual performance. Unregistered members will not receive any information about you.
  4. In order to prevent unauthorized access by third parties to your personal data, especially financial data, the connection is encrypted using TLS technology.
  5. If you have questions for our speakers during an event, you must provide your e-mail address in addition to the question. Your e-mail address will be stored so that questions that could not be answered during the event can still be answered by our speakers afterwards. The e-mail will be stored afterwards and will not be used for any other purpose. The legal basis for the processing is your consent in accordance with Art. 6 (1) (a) GDPR, i.e. your consent to the processing.

§ 8 Statistical evaluation of your data

  1. We also use the data you enter in your profile to be able to carry out statistical, anonymous evaluations. The aim is to question the interests of different disciplines (e.g. whether or not a gynaecologist is also interested in pathology). Furthermore, this also enables us to recognize "white spots" in the range (did we also reach out to doctors in Zug?).
  2. Additionally, for this purpose, the following of your voluntarily provided information will be used:
    • Title
    • Age
    • Address
    • Telephone number
    • Institute/Clinic
    • Position
    • Department
  3. If you provide the information, we will rely on your consent in accordance with Art. 6 (1) (a) GDPR for statistical evaluation. You can revoke this at any time with effect for the future, e.g. by sending us an e-mail to the address in the imprint.
  4. The information you provide voluntarily will be summarized in anonymous statistics that cannot be traced back to the individual person (cohort of 5, i.e. more than 5 data sets are always evaluated together).

§ 9 Social Media Plug-Ins

  1. We currently use the following social media plug-ins: LinkedIn. We use the so-called two-click solution. This means that when you visit our website, no personal data is initially passed on to the providers of the plug-ins. You can identify the provider of the plug-in by the mark on the box above its initial letter or logo. We give you the opportunity to communicate directly with the provider of the plug-in via the button. Only if you click on the marked field and thereby activate it, the plug-in provider will receive the information that you have accessed the corresponding website of our online platform. In addition, the data referred to in § 4 of this declaration will be transmitted. By activating the plug-in, your personal data will be transmitted to the respective plug-in provider and stored there (in the USA in the case of US providers). Since the plug-in provider collects data particularly via cookies, we recommend that you delete all cookies via your browser's security settings before clicking on the grayed-out box.
  2. We have no influence on the data collected and the data processing operations, nor are we aware of the full scope of the data collection, the purposes of the processing, and the storage periods. Neither do we have any information on the deletion of the collected data by the plug-in provider.
  3. The plug-in provider stores the data collected about you as user profiles and uses them for the purposes of advertising, market research and/or needs-based design of its website. Such an evaluation is carried out particularly (also for users not logged in) in order to display needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, but you have to contact the respective plug-in provider to exercise this right. Through the plug-ins, we offer you the opportunity to interact with the social networks and other users so that we can improve our platform and make it more interesting for you as a user. The legal basis for the use of the plug-ins is Art. 6 para. 1 sentence 1 lit. f GDPR.
  4. The data is passed on regardless of whether you have an account with the plug-in provider or are logged in. If you are logged in to the plug-in provider, your data collected by us will be directly assigned to your existing account with the plug-in provider. If you click on the activated button and, for example, link to the website, the plug-in provider also stores this information in your user account and communicates it publicly to your contacts. We recommend that you log out regularly after using a social network, but especially before activating the button, as this allows you to avoid being assigned to your profile with the plug-in provider.
  5. For further information on the purpose and scope of data collection and its processing by the plug-in provider see the privacy policies of these providers provided below. There you will also find further information about your rights in this regard and setting options to protect your privacy.
  6. Addresses of the respective plug-in providers and URL with their privacy notices:
    • LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA

§ 10 Social Media

  1. On our website, we provide links to various social media. However, these are only links to external websites of third-party social media providers and not plugins. Consequently, when you visit our website, no links are established and no personal data is transmitted to the third-party providers. If you click on the respective button, which is marked with the symbol of the provider, you will be redirected to the website of the respective provider. You are leaving our website at this moment. If you have any questions about the data collection of the third parties, please read the privacy policies maintained by the third parties. We refer to the following social media:
    • LinkedIn

§ 11 Newsletter

  1. With your consent, you can subscribe to our newsletter that we use to inform you about the current interesting offers on our platform. The advertised goods and services are named in the declaration of consent.
  2. For our newsletter subscriptions, we use the so-called double opt-in procedure. This means that after you register, we will send you an e-mail to the address provided, in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 24 hours, your information will be blocked and automatically deleted after one month. In addition, we store your IP addresses and the times of day of registration and confirmation. The purpose of the procedure is to be able to prove your registration and, if necessary, to clarify any possible misuse of your personal data. The legal basis for this is Art. 6 para. 1 sentence 1 lit. f GDPR.
  3. The only mandatory information for sending you the newsletter is your e-mail address. The provision of additional, separately marked data is voluntary and will be used in order to be able to address you personally. After your confirmation, we will store your e-mail address for the purpose of sending you the newsletter. The legal basis for this is Art. 6 para. 1 sentence 1 lit. a GDPR.
  4. You can revoke your consent to receive the newsletter at any time and unsubscribe from the newsletter. You can revoke your consent by clicking on the link provided in each newsletter e-mail, by sending an e-mail to info@medtoday.ch or by sending a message to the contact details given in the imprint.
  5. We would like to point out that we evaluate your user behaviour after sending out the newsletter. For this evaluation, the e-mails sent contain so-called web beacons, also known as tracking pixels. These are single-pixel image files that link to our website and thus enable us to evaluate your user behavior. This is done by collecting the data referred to in § 4 of this statement as well as web beacons that are assigned to your e-mail address and linked to its own ID. Links received in the newsletter also contain this ID. The data is collected exclusively in pseudonymized form, i.e. the IDs are not linked to your other personal data, thus excluding direct personal reference. The information collected in this way is stored by the newsletter provider on its server in France.
  6. You can object to this tracking at any time by clicking on the separate link provided in each email or by sending an e-mail to info@medtoday.ch.

§ 12 Service provider Brevo (formerly Sendinblue)

  1. This website uses Brevo to send newsletters. The provider is Brevo GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.
  2. Brevo is a service that, among other things, can be used to organize and analyze the sending of newsletters. The data you have entered for the purpose of subscribing to the newsletter (e-mail, name) will be stored on Brevo's servers in France.
  3. With the help of Brevo, we are able to analyze our newsletter campaigns. When you open an e-mail sent with Brevo, a file contained in the e-mail (so-called web beacon) connects to Brevo's servers. In this way, it can be determined whether a newsletter message has been opened and, if so, which links have been clicked. In addition, technical information is collected (e.g. time of access, IP address, browser type and operating system). This information cannot be assigned to the respective newsletter recipient. It is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better tailor future newsletters to the interests of the recipients.
  4. Brevo also allows us to divide ("cluster") newsletter recipients based on different categories. The recipients can be divided by age, gender or place of residence, for example. In this way, the newsletters can be better adapted to the respective target groups.
  5. For detailed information about Brevo's features, visit: https://www.brevo.com/features/email-marketing/
  6. The data you provide to us for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from Brevo's servers after you unsubscribe from the newsletter. Data that has been stored by us for other purposes (e.g. e-mail addresses for the member area) remains unaffected by this.
  7. The basis of use of Brevo is our legitimate interest in promoting and efficiently administering our consulting services, which in turn is based on the freedom of occupation and entrepreneurship pursuant to Art. 15 para. 1 and Art. 16 Charter. Since we inform you about this processing and no special data other than the e-mail address is transmitted, we base our processing on the legitimate interest that exists in this regard in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
  8. For more information, refer to Brevo's privacy policy at: https://www.brevo.com/legal/privacypolicy/

§ 13 Web Tracking - LinkedIn Analytics

  1. If you have given your consent, this website uses LinkedIn Analytics, a web analytics service provided by LinkedIn Corporation.
  2. LinkedIn uses so-called "cookies": text files that are stored on your computer and allow an analysis of how you use the website. The information generated by the cookie about how you use this website is usually transmitted to a LinkedIn server in the USA and stored there. On behalf of the operator of this website, LinkedIn will use this information to evaluate how you use the website, to compile reports on website activity and to provide the website operator with other services related to website activity and internet usage.
  3. The IP address transmitted by your browser as part of LinkedIn Analytics will not be merged with other LinkedIn data.
  4. You can prevent the storing of cookies by selecting the appropriate settings in your browser software; however, we would like to point out that in this case you may not be able to use all the features of this website to their full extent.
  5. We use LinkedIn Analytics to analyze how visitors of our website use it and thus to improve it on a regular basis. We can use the statistics obtained to improve our offer and make it more interesting for you as a user.
  6. For the exceptional cases in which personal data is transferred to the USA, LinkedIn has agreed by concluding so-called standard data protection clauses (SDK) in accordance with Art. 46 (2) (c) GDPR that a comparable level of data protection will be ensured when data is transferred to your third country.
  7. The legal basis for the use of LinkedIn Analytics is your consent, i.e. Art. 6 para. 1 sentence 1 lit. a GDPR.
  8. Third-Party Information: LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA Privacy Policy: http://www.linkedin.com/legal/privacy-policy

§ 14 Using Google Tag Manager:

  1. Google Tag Manager is a tool that allows marketers to manage website tags from one interface. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google").
  2. The Tag Manager tool itself (which implements the tags) is a cookieless domain and does not collect any personal data. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. In the case of a deactivation at the domain or cookie level, it will remain in place for all tracking tags implemented with Google Tag Manager. For more information, visit: https://www.google.de/analytics/terms/tag-manager/.
  3. The legal basis for the transfer of personal data to Google is your consent, i.e. Art. 6 para. 1 sentence 1 lit. a GDPR.
  4. The Google service processes your data outside the European Union and the European Economic Area to its parent company Google LLC. The transfer of personal data to a so-called third country requires compliance with the provisions of §§ 44 et seq. GDPR in order to guarantee the level of protection guaranteed in the EU. The transfer of personal data to the USA takes place on the basis of an adequacy decision for the EU-US Data Privacy Framework of 10.07.2023 of the EU Commission in accordance with Art. 45 (1) GDPR, the so-called EU-US Data Privacy Framework (DPF). Google LLC can only base the processing of personal data on Art. 45 (1) GDPR if it is registered in the list of participating organizations in accordance with Article 1 DPF (list available at: https://www.dataprivacyframework.gov/). Google LLC is registered in the list of participating companies. The registration includes personal data of employees (HR category). The present data processing may therefore be based on Art. 45. For more information, visit: https://privacy.google.com/businesses/compliance/#!#gdpr

§ 15 Web tracking - Google Analytics

  1. This website uses Google Analytics, a web analytics service provided by Google Ireland Limited ("Google"), if you have given your consent.
  2. Google Analytics uses so-called "cookies": text files that are stored on your computer and allow an analysis of how you use the website. The information generated by the cookie about how you use this website is usually transmitted to a Google LLC server in the USA and stored there. However, if IP anonymization is activated on this website, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google LLC server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate how you use the website, to compile reports on website activity and to provide the website operator with other services related to website activity and internet usage.
  3. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data held by Google.
  4. You can prevent the storing of cookies by selecting the appropriate settings in your browser software; however, we would like to point out that in this case you may not be able to use all the features of this website to their full extent. You can also prevent the collection of the data generated by the cookie and related to how you use the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
  5. This website uses Google Analytics with the extension "_anonymizeIp()". As a result, IP addresses are processed in an abbreviated manner, so that personal identification is excluded. Insofar as the data collected about you can be connected to you personally, this will be excluded immediately and the personal data will therefore be deleted immediately.
  6. We use Google Analytics to analyze how visitors of our website use it and thus improve it on a regular basis. We can use the statistics obtained to improve our offer and make it more interesting for you as a user.
  7. The Google service processes your data outside the European Union and the European Economic Area to its parent company Google LLC. The transfer of personal data to a so-called third country requires compliance with the provisions of §§ 44 et seq. GDPR in order to guarantee the level of protection guaranteed in the EU. The transfer of personal data to the USA takes place on the basis of an adequacy decision for the EU-US Data Privacy Framework of 10.07.2023 of the EU Commission in accordance with Art. 45 (1) GDPR, the so-called EU-US Data Privacy Framework (DPF). Google LLC can only base the processing of personal data on Art. 45 (1) GDPR if it is registered in the list of participating organizations in accordance with Article 1 DPF (list available at: https://www.dataprivacyframework.gov/). Google LLC is registered in the list of participating companies. The registration includes personal data of employees (HR category). The present data processing may therefore be based on Art. 45. For more information, visit: https://privacy.google.com/businesses/compliance/#!#gdpr
  8. Third-Party Information: Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Terms of Use: http://www.google.com/analytics/terms/de.html, Privacy Policy: https://policies.google.com/privacy?hl=de&gl=de.
  9. This website also uses Google Analytics for a cross-device analysis of visitor flows, which is carried out via a user ID. You can deactivate the cross-device analysis of your usage in your customer account under "My data", "personal data".

§ 17 Hosting: Amazon Web Services

  1. We use Amazon Web Services (AWS) to host our website. The provider is Amazon Web Services, Inc., 410 Terry Avenue North, Seattle WA 98109, United States. This means that our applications are accessed via the servers of Amazon Web Services, Inc.
  2. Amazon Web Services, Inc. ensures a comparable level of data protection when transferring data to the parent company in the USA by concluding so-called standard data protection clauses (SDK) in accordance with Art. 46 (2) GDPR. For more information, visit: https://aws.amazon.com/de/compliance/gdpr-center/

§ 18 Using jQuery

  1. Our website uses the Java script extension jQuery, which is loaded by the website code.jquery.com. To do this, program libraries are invoked from StackPath servers. The provider is The OpenJS Foundation, 1 Letterman Drive, Building D, Suite D4700, San Francisco, CA 94129, USA.
  2. When you visit a website, your browser loads the required program libraries into your browser cache. To do this, the browser you are using must connect to jQuery's servers located in the United States. The use of jQuery is in the interest of an optimized and appealing presentation of our platform. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 sentence 1 lit. f GDPR.
  3. jQuery ensures a comparable level of data protection when transferring data to the USA by concluding so-called standard data protection clauses (SDK) in accordance with Art. 46 (2) (c) GDPR.
  4. For more information about jQuery, visit www.jquery.com.

§ 19 Use of Cookiebot

  1. We use features of the provider Cookiebot on our website. Behind Cookiebot is Cybot A/S, Havnegade 39, 1058 Copenhagen, DK. Among other things, Cookiebot enables us to provide you with a comprehensive cookie notice (also known as a cookie banner or cookie notice). By using this feature, your data can be sent, stored, and processed by Cybot.
  2. We use Cookiebot to obtain your consent to the storage of certain cookies in your browser and to document them in compliance with data protection regulations. In addition, the technology behind Cookiebot scans, controls, and evaluates all cookies and tracking measures on this website.
  3. The data referred to in § 4 will be processed by Cookiebot. Furthermore, an encrypted, anonymous key is generated and stored, which stores a proof of consent (via a cookie).
  4. With regard to the use and storage of consent, we refer to Art. 6 (1) (c) GDPR, as we are legally obliged to be able to prove consent (Art. 5 (2) GDPR). The possibility to disable cookies is made possible by the so-called cookie banners. Obtaining consent when setting cookies is a requirement of § 15 para. 3 TMG in conjunction with Art 7 GDPR (see also ECJ "Planet 49" ECLI:EU:C:2019:801)

§ 20 Data collection for the purpose of application

  1. On our homepage we offer vacancies. If you apply for a job, we will store your application documents received by mail or e-mail until the application process is completed.
  2. After the application process is completed, your data will be deleted after a maximum of 6 months, unless you have expressly agreed to a longer storage of your data.
  3. The legal basis is Art. 6 para. 1 sentence 1 lit. b and f GDPR and § 26 BDSG. Our legitimate interest lies in selecting applicants for the position to be filled.