Privacy Policy

Last updated: May 13, 2026

We will notify you by email or via an in-app notice about material changes to this Privacy Policy.

Name and Address of the Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states as well as the Swiss Federal Act on Data Protection (FADP) and other data protection regulations is:

Digiclose AG
Birkenstr. 47
6343 Rotkreuz

Switzerland

Email: [email protected]

I. Information on General Data Processing on the Website

1. Contact and Contact Form

a) Description and Scope of Data Processing

You have the option of contacting us via the email address provided on our website or via our contact form. In this case, or if you send us an inquiry in another way, the personal data transmitted with the email will be stored.

  • First and last name

  • Email address

  • Information you provide in your inquiry

  • Time of the inquiry and, if applicable, technical data in connection with sending the contact form

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected, taking into account statutory retention periods.

For personal data sent by email, this is the case when the respective conversation with you has ended. The conversation is ended when the circumstances indicate that the matter in question has been conclusively resolved.

b) Purposes and Legal Basis for Data Processing

The legal basis for processing data in the event of contact is the legitimate interest pursuant to Art. 6(1)(f) GDPR in processing your data to respond to the inquiry.

If the email contact is aimed at concluding, performing, or terminating a contract, an additional legal basis for processing is Art. 6(1)(b) GDPR.

The other personal data processed during the sending process serves to prevent misuse of the contact form and to ensure the security of our information technology systems. The legal basis for this is our legitimate interest pursuant to Art. 6(1)(f) GDPR.

c) Recipients of Data and Transfer Abroad

We use a service provider to handle contact inquiries who acts as a processor and is contractually obligated to treat your data confidentially. Processing also takes place outside Switzerland, namely in Germany. Germany is certified as having an equivalent level of data protection. Therefore, personal data may be transferred there without additional safeguards.

2. Newsletter

a) Description and Scope of Data Processing

You have the option to subscribe to a newsletter.

The following data is processed for this purpose:

  • Date and time of registration

  • IP address

  • Email address

  • Salutation, first and last name

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected, taking into account statutory retention periods.

b) Purposes and Legal Basis for Data Processing

The collection of the email address serves to deliver the newsletter. To verify that the registration was actually made by the owner of the specified email address, we use the double opt-in procedure for online registrations, in which you receive an email asking you to confirm your newsletter subscription by clicking on a link.

The legal basis for processing data for subscribing to the update newsletter for receiving necessary information (e.g., platform updates, discontinuation of services) is Art. 6(1)(b) GDPR (contract performance) and our legitimate interest pursuant to Art. 6(1)(f) GDPR.

The legal basis for receiving the general information newsletter is your consent pursuant to Art. 6(1)(a) GDPR. You can revoke your consent at any time with effect for the future.

c) Recipients of Data and Transfer Abroad

We use a service provider for sending newsletters who acts as a processor and is contractually obligated to treat your data confidentially. Processing also takes place outside Switzerland, namely in the United Kingdom. The United Kingdom is certified as having an equivalent level of data protection. Therefore, personal data may be transferred there without additional safeguards.

3. Provision of the Website and Creation of Log Files

a) Description and Scope of Data Processing

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing device.

The following data is collected:

  • Information about the browser type and version used

  • The user's operating system

  • The user's internet service provider

  • The user's IP address

  • Date and time of access

  • Websites from which the user's system reached our website

This data is not stored together with other personal data of the user.

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected.

The IP address and HTTP user agent are stored in plain text in web server log files for a maximum of 6 weeks to detect and analyse attacks on our website.

b) Purposes and Legal Basis for Data Processing

The legal basis for the temporary storage of data and log files is Art. 6(1)(f) GDPR.

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the user's IP address must be stored for the duration of the session.

Storage in log files is done to ensure the functionality of the website. In addition, the data serves to optimise the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

Our legitimate interest in data processing pursuant to Art. 6(1)(f) GDPR also lies in these purposes.

c) Right to Object and Removal

The collection of data for the provision of the website and the storage of data in log files is essential for the operation of the website. Consequently, there is no possibility of objection on your part.

d) Recipients of Data and Transfer Abroad

We use a service provider for the operation and maintenance of our website who acts as a processor and is contractually obligated to treat your data confidentially. Processing also takes place outside Switzerland, namely in Germany. Germany is certified as having an equivalent level of data protection. Therefore, personal data may be transferred there without additional safeguards.

4. Use of Cookies

You can change or revoke your cookie settings at any time using the button on the edge of the website.

a) Description and Scope of Data Processing

Our website uses cookies. Cookies are text files that are stored in or by the internet browser on the user's device. When a user visits a website, a cookie may be stored on the user's device. This cookie contains a characteristic string that enables unique identification of the browser when revisiting the website. We use cookies with two durations:

We store cookies until the end of the session:

  • to enable a login (a session). This is necessary so that our server can recognise your web browser after you have entered your login data.

We store cookies for up to 90 days:

  • screen size (for better display of the website)

  • for language settings

  • for the "stay logged in" function

Without cookies, we cannot guarantee that our website is usable correctly.

We also use cookies for marketing and analysis purposes. These cookies are used to make the use of the website more efficient and attractive.

b) Purposes and Legal Basis for Data Processing

The legal basis for processing personal data using technically necessary cookies is Art. 6(1)(f) GDPR.

The purpose of using technically necessary cookies is to simplify the use of websites for you. Some functions of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognised even after a page change.

Our legitimate interest in processing personal data pursuant to Art. 6(1)(f) GDPR also lies in these purposes.

The legal basis for processing for marketing and analysis purposes is your consent pursuant to Art. 6(1)(a) GDPR, which you can revoke at any time via the cookie consent tool.

c) Duration of Storage, Right to Object and Removal

Cookies are stored on the user's computer and transmitted to our site. Therefore, as a user, you have full control over the use of cookies. By changing the settings in your internet browser, you can deactivate or restrict the transmission of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website in full.

d) Cookies Used

Name Provider Storage Duration
Google Analytics Google LLC. 90 days
Google Tag Manager Google LLC. 90 days
ABlyft Conversion Expert GmbH 90 days
Mixpanel Mixpanel Inc. 90 days
Datadog Datadog Inc. 90 days

e) Recipients of Data and Transfer Abroad

We use various third-party service providers on our website who act as processors and are contractually obligated to treat your data confidentially. Processing also takes place outside Switzerland, namely in Germany. Germany is certified as having an equivalent level of data protection. Therefore, personal data may be transferred there without additional safeguards.

In addition, your data may be transferred to the USA. Adequate data protection is ensured by standard contractual clauses that have been previously approved, issued or recognised by the FDPIC.

We use a cookie consent tool to obtain and document your consent to the storage of cookies. When you access our website, the following personal data is transmitted:

  • Your consent(s) or the revocation of your consent(s)

  • Your IP address

  • Information about your browser and device

  • Time of your visit to our website

To this end, we set a cookie in your browser to be able to assign the consents granted or their revocation. This cookie is stored for one year.

The legal basis for the use of the cookie consent tool is Art. 6(1)(c) GDPR, in order to obtain the legally required consents for the use of certain technologies.

II. Processing in the Context of Using the digiclose Platform

1. Registration and Use of the digiclose Account

a) Description and Scope of Data Processing (term under the GDPR, equivalent to data processing under the FADP)

On our website, we offer you the opportunity to register by providing your personal data.

The data is entered by you into an input form and transmitted to us and stored.

During the registration process, we collect the following data:

  • First and last name

  • Email address

  • Password

At the time of registration, the following data is also stored:

  • Your IP address
  • Date and time of registration

If you book a paid package, we will also collect the following data from you:

  • Company data such as name and address
  • Billing data and payment information

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected, taking into account statutory retention periods.

In the context of the use of our Platform, we process usage, diagnostic and interaction data in order to improve the functionality, stability and user-friendliness of the Platform. For this purpose, we reserve the right to contact you through the contact channels you have provided, based on the analyses carried out.

b) Purposes and Legal Basis for Data Processing

Registration serves to fulfil a contract or to carry out pre-contractual measures. The legal basis for processing the data is Art. 6(1)(b) GDPR. For persons in Switzerland, processing is based on the principles according to Art. 6 FADP (lawfulness, proportionality, purpose limitation, data security). Consent is only required when processing particularly sensitive personal data or profiling with high risk.

c) Recipients of Data and Transfer Abroad

We use a service provider for the registration process and the conclusion of a paid package who acts as a processor and is contractually obligated to treat your data confidentially. Processing also takes place outside Switzerland, namely in Germany. Germany is certified as having an equivalent level of data protection. Therefore, personal data may be transferred there without additional safeguards. In addition, your data may be transferred to the USA. An appropriate data protection standard is ensured by standard contractual clauses that have been previously approved, issued or recognised by the FDPIC.

2. AI-Powered Services

a) Description and Scope of Data Processing

We offer an AI-powered chat assistant to support you in using our Platform. In this context, the following data is processed:

  • Your chat messages
  • CRM data retrieved during the conversation (e.g., contact information, business data)

Your data is not used to train the AI.

b) Purposes and Legal Basis for Data Processing

The legal basis for processing your data in the context of the AI chat assistant for customer consultation is your consent pursuant to Art. 6(1)(a) GDPR, as the AI chat assistant is a voluntarily usable service.

If you use the AI chat assistant for support purposes and questions about the use of the Platform, the legal basis for processing is the performance of the contract with you pursuant to Art. 6(1)(b) GDPR.

c) Recipients of Data and Transfer Abroad

We use a service provider for the AI chat assistant who acts as a processor and is contractually obligated to treat your data confidentially. Processing also takes place outside Switzerland, namely in France. France is certified as having an equivalent level of data protection. Therefore, personal data may be transferred there without additional safeguards.

3. Payment Service Providers

a) Description and Scope of Data Processing

We use various service providers for payment processing. In the context of payment processing and subscription management, the following data is processed:

  • Payment information

  • Transaction data

  • Order data

  • Account data

  • Customer data

  • Transaction history

For payouts, identity data is additionally processed.

b) Purposes and Legal Basis for Data Processing

The legal basis for processing your data in the context of payment processing is the performance of the contract pursuant to Art. 6(1)(b) GDPR.

c) Recipients of Data and Transfer Abroad

We use various service providers for payment processing who are contractually obligated to treat your data confidentially. Processing also takes place outside Switzerland, namely in Ireland and Germany. Ireland and Germany are certified as having an equivalent level of data protection. Therefore, personal data may be transferred there without additional safeguards.

4. Telephony and Communication

a) Description and Scope of Data Processing

For the provision of telephony functions within our Platform, the following data is processed:

  • Call data (number, date, time, duration)

  • Call recordings (if the recording function is activated)

  • Transcriptions (including information on sentiment analysis and conversation topics)

  • Contact data

  • SMS dispatch

b) Purposes and Legal Basis for Data Processing

The telephony function serves to provide VoIP telephony, call tracking, CRM integration and call analysis.

The legal basis for processing your data in the context of the telephony function is the performance of the contract pursuant to Art. 6(1)(b) GDPR, provided that you have activated and additionally booked this paid service in your user account.

c) Recipients of Data and Transfer Abroad

We use various service providers for the telephony functions who act as processors and are contractually obligated to treat your data confidentially. Processing also takes place outside Switzerland, namely in France. France is certified as having an equivalent level of data protection. Therefore, personal data may be transferred there without additional safeguards.

In addition, your data is transferred to the USA. Adequate data protection is ensured by standard contractual clauses that have been previously approved, issued or recognised by the FDPIC.

5. Email Services

a) Description and Scope of Data Processing

For the dispatch of transactional emails, the following data is processed:

  • Email addresses

  • Message contents

  • Delivery status

b) Purposes and Legal Basis for Data Processing

The legal basis for processing your data in the context of transmitting transactional emails is the performance of the contract pursuant to Art. 6(1)(b) GDPR.

c) Recipients of Data and Transfer Abroad

We use a service provider for sending transactional emails who is contractually obligated to treat your data confidentially. Your data is transferred to the USA. Adequate data protection is ensured by standard contractual clauses that have been previously approved, issued or recognised by the FDPIC.

6. Cloud Infrastructure

a) Description and Scope of Data Processing

We use a service provider for hosting our Platform. In the context of hosting our Platform and the associated data storage, all data stored in the application is processed.

b) Purposes and Legal Basis for Data Processing

The legal basis for processing your data in the context of data storage is the performance of the contract pursuant to Art. 6(1)(b) GDPR.

c) Recipients of Data and Transfer Abroad

We use a service provider for hosting and data storage who is contractually obligated to treat your data confidentially. Your data is transferred to the USA. Adequate data protection is ensured by standard contractual clauses that have been previously approved, issued or recognised by the FDPIC. The data storage location has been set to Frankfurt (Germany). Germany is certified as having an equivalent level of data protection.

7. Google Calendar Integration

a) Description and Scope of Data Processing

We offer an optional integration with Google Calendar, allowing you to synchronise appointments between Digiclose and your Google Calendar. The connection is established via the Google Calendar API using OAuth 2.0 authentication.

The following data is processed:

  • Calendar appointments (title, description, date, time, duration)

  • Participant information (email addresses of participants)

  • Calendar metadata (calendar name, time zone)

We do not edit or delete existing appointments in your Google Calendar. We use Google Calendar data exclusively to provide and improve the appointment management functions in Digiclose.

The use of data retrieved via the Google Calendar API is subject to the requirements of the Google API Services User Data Policy, including the Limited Use requirements.

b) Purposes and Legal Basis for Data Processing

Processing serves to synchronise appointments between Digiclose and your Google Calendar. The legal basis is your express consent pursuant to Art. 6(1)(a) GDPR, which you grant via the Google OAuth consent screen.

You can revoke Digiclose's access to your Google Calendar at any time via one of the following ways:

  • In the Digiclose settings via "Disconnect Google Calendar"
  • Via your Google account at https://myaccount.google.com/permissions

c) Recipients of Data and Transfer Abroad

We use a service provider (Google LLC) for the Google Calendar integration who is contractually obligated to treat your data confidentially. Your data is transferred to the USA. Adequate data protection is ensured by standard contractual clauses that have been previously approved, issued or recognised by the FDPIC.

d) Storage and Deletion

Google Calendar data is not stored in our database. It is retrieved and processed exclusively in real time via the Google Calendar API. There is no local caching or synchronisation. If you disconnect the Google Calendar connection in your Digiclose settings, no further data will be retrieved from Google.

III. Rights of the Data Subject

If personal data is processed by you, you are a data subject within the meaning of the GDPR and the FADP, and you have the following rights vis-à-vis the controller:

**1

  • Right to Information (Art. 15 GDPR; Art. 25 FADP)**

You can request confirmation from us as to whether personal data concerning you is being processed by us.

If such processing is taking place, you can request information from us about the following:

  • the purposes for which the personal data is processed;

  • the categories of personal data being processed;

  • the recipients or categories of recipients to whom the personal data concerning you has been or will be disclosed;

  • the planned duration of storage of the personal data concerning you or, if specific information is not possible, criteria for determining the storage duration;

  • the existence of a right to rectification or erasure of the personal data concerning you, a right to restriction of processing by the controller, or a right to object to such processing;

  • the existence of a right to lodge a complaint with a supervisory authority;

  • all available information about the origin of the data, where the personal data is not collected from the data subject;

  • the existence of automated decision-making, including profiling, pursuant to Art. 22(1) and (4) GDPR and — at least in these cases — meaningful information about the logic involved as well as the significance and intended consequences of such processing for the data subject.

You have the right to request information as to whether the personal data concerning you is transferred to a third country or to an international organisation. In this context, you can request to be informed of the appropriate safeguards pursuant to Art. 46 GDPR in connection with the transfer.

**2

  • Right to Rectification (Art. 16 GDPR; Art. 32 FADP)**

You have the right to rectification and/or completion vis-à-vis us, provided that the processed personal data concerning you is inaccurate or incomplete. We must carry out the rectification without delay.

**3

  • Right to Restriction of Processing (Art. 18 GDPR; Art. 32 FADP)**

Under the following conditions, you can request the restriction of processing of personal data concerning you:

  • if you contest the accuracy of the personal data concerning you for a period that enables us to verify the accuracy of the personal data;

  • the processing is unlawful and you object to the erasure of the personal data and instead request the restriction of the use of the personal data;

  • we no longer need the personal data for the purposes of processing, but you require it for the establishment, exercise or defence of legal claims; or

  • if you have objected to processing pursuant to Art. 21(1) GDPR and it has not yet been determined whether our legitimate grounds override your grounds.

If the processing of personal data concerning you has been restricted, such data — apart from being stored — may only be processed with your consent or for the establishment, exercise or defence of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the Union or a Member State.

If the restriction of processing has been restricted in accordance with the above conditions, you will be informed by us before the restriction is lifted.

**4

  • Right to Erasure (Art. 17 GDPR; Art. 32 FADP)**
  • Obligation to Erase*

You can request that we erase the personal data concerning you without delay, and we are obliged to erase such data without delay if one of the following grounds applies:

  • The personal data concerning you is no longer necessary for the purposes for which it was collected or otherwise processed.

  • You withdraw your consent on which processing was based pursuant to Art. 6(1)(a) or Art. 9(2)(a) GDPR, and there is no other legal basis for the processing.

  • You object to the processing pursuant to Art. 21(1) GDPR and there are no overriding legitimate grounds for processing, or you object to the processing pursuant to Art. 21(2) GDPR.

  • The personal data concerning you has been unlawfully processed.

  • The erasure of the personal data concerning you is required to comply with a legal obligation under Union law or the law of the Member States to which we are subject.

  • The personal data concerning you has been collected in relation to information society services offered pursuant to Art. 8(1) GDPR.

  • Information to Third Parties*

If we have made the personal data concerning you public and are obliged to erase it pursuant to Art. 17(1) GDPR, we will, taking into account available technology and the cost of implementation, take reasonable measures, including technical measures, to inform controllers processing the personal data that you, as the data subject, have requested the erasure of all links to such personal data or copies or replications thereof.

  • Exceptions*

The right to erasure does not exist insofar as processing is necessary:

  • for exercising the right of freedom of expression and information;

  • for compliance with a legal obligation requiring processing under Union or Member State law to which we are subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in us;

  • for reasons of public interest in the area of public health pursuant to Art. 9(2)(h) and (i) and Art. 9(3) GDPR;

  • for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Art. 89(1) GDPR, insofar as the right referred to in section a) is likely to render impossible or seriously impair the achievement of the objectives of such processing; or

  • for the establishment, exercise or defence of legal claims.

**5

  • Right to Notification**

If you have exercised the right to rectification, erasure or restriction of processing vis-à-vis us, we are obliged to notify all recipients to whom the personal data concerning you has been disclosed of such rectification, erasure or restriction of processing, unless this proves impossible or involves disproportionate effort.

You have the right to be informed about these recipients.

**6

  • Right to Data Portability (Art. 20 GDPR; Art. 28 FADP)**

You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to whom the personal data was provided, provided that:

  • the processing is based on consent pursuant to Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR or on a contract pursuant to Art. 6(1)(b) GDPR; and
  • the processing is carried out by automated means.

In exercising this right, you also have the right to obtain the transmission of the personal data concerning you directly from one controller to another controller, where technically feasible. The freedoms and rights of other persons must not be adversely affected.

**7

  • Right to Object (Art. 21 GDPR; Art. 30 FADP)**

You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you which is based on Art. 6(1)(e) or (f) GDPR; this also applies to profiling based on these provisions.

We will no longer process the personal data concerning you unless we can demonstrate compelling legitimate grounds for processing that override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims.

If the personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purposes of such marketing; this also applies to profiling insofar as it is related to such direct marketing.

If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for such purposes.

You have the option, in the context of the use of information society services — notwithstanding Directive 2002/58/EC — to exercise your right to object by automated means using technical specifications.

**8

  • Right to Withdraw Consent under Data Protection Law**

You have the right to withdraw your consent under data protection law at any time. The withdrawal of consent does not affect the lawfulness of processing based on the consent prior to its withdrawal.

**9

  • Right to Lodge a Complaint with a Supervisory Authority**

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority — in particular in the Member State of your residence, place of work or the place of the alleged infringement — if you believe that the processing of personal data concerning you violates the GDPR or the FADP. In Switzerland, you can contact the Federal Data Protection and Information Commissioner (FDPIC) for this purpose.

The supervisory authority with which the complaint has been lodged will inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.