Legal
Privacy Policy
How UpTechSwiss collects, uses and protects your personal data. We keep it simple and transparent.
๐
Last updated: May 2025
๐จ๐ญ Swiss nDSG compliant
๐ช๐บ GDPR compliant
1 Who We Are
UpTechSwiss is a Swiss technology company offering the SwissTapGo product โ a smart NFC plate, QR code and custom digital landing page for local businesses.
Data Controller:
UpTechSwiss
Switzerland
contact@uptechswiss.com
This Privacy Policy applies to our website at uptechswiss.com, our SwissTapGo product and all associated services. It covers both our business clients and their end customers who interact with SwissTapGo landing pages.
2 Data We Collect
2.1 โ Data you provide directly
- Name and business name when you contact us or place an order
- Email address and phone number for communication and delivery
- Business address for NFC plate delivery and setup
- WhatsApp number when subscribing to SwissTapGo Pro automation
- Any messages or files you send us via WhatsApp or email
2.2 โ Data collected automatically
- IP address and approximate geolocation (country/city level)
- Browser type, device type and operating system
- Pages visited and time spent on our website
- Referral source (how you found us)
- NFC tap and QR scan events on SwissTapGo landing pages (anonymous count only)
2.3 โ Data we do NOT collect
- Payment card numbers (processed directly by Stripe or Twint)
- Passwords (we do not operate user login accounts)
- Sensitive personal data (health, religion, political views, etc.)
3 How We Use Your Data
We only use your data for the following purposes:
- Service delivery: building your custom SwissTapGo page, shipping your NFC plate and providing ongoing support
- WhatsApp automation (Pro plan): sending automated messages on your behalf via the Evolution API integration
- Communication: responding to your questions, demo requests and support queries
- Invoicing: issuing receipts and processing payments
- Analytics: understanding how our website and product are used to improve them (aggregated, non-identifiable data)
- Legal compliance: retaining records as required by Swiss law
We do not use your data for advertising, profiling or selling to third parties.
4 Legal Basis for Processing
Under GDPR (Article 6) and the Swiss nDSG, we process your data on the following legal bases:
- Contract performance: processing necessary to deliver the SwissTapGo service you ordered
- Legitimate interests: website analytics and improving our service, where your rights do not override our interest
- Legal obligation: retaining invoices and records as required by Swiss tax and commercial law
- Consent: for any optional marketing communications (you can withdraw at any time)
5 Data Sharing
We do not sell your data. We share it only with trusted service providers who help us operate:
- Vercel โ website hosting (USA, Standard Contractual Clauses apply)
- Hostinger โ VPS infrastructure (EU data centers)
- Evolution API / WhatsApp โ message delivery for Pro automation (data processed per WhatsApp's privacy policy)
- Stripe / Twint โ payment processing (each under their own privacy framework)
- n8n โ workflow automation backend (self-hosted on our EU server)
All third-party processors are bound by data processing agreements and are required to protect your data.
6 Data Retention
- Client business data: retained for the duration of the business relationship plus 10 years (Swiss commercial law requirement)
- WhatsApp conversation logs: retained for 12 months, then deleted
- Website analytics: aggregated data retained indefinitely; raw logs deleted after 90 days
- Inquiry data (non-clients): deleted after 24 months of inactivity
7 Your Rights
Under GDPR and the Swiss nDSG, you have the following rights regarding your personal data:
- Access: request a copy of the data we hold about you
- Rectification: request correction of inaccurate data
- Erasure: request deletion of your data ("right to be forgotten"), subject to legal retention obligations
- Portability: receive your data in a structured, machine-readable format
- Objection: object to processing based on legitimate interests
- Restriction: request that we limit how we use your data in certain circumstances
- Withdraw consent: at any time for consent-based processing, without affecting prior lawful processing
To exercise any of these rights, contact us at contact@uptechswiss.com. We will respond within 30 days.
If you believe we have mishandled your data, you have the right to lodge a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC) at edoeb.admin.ch.
8 Cookies
Our website uses minimal cookies:
- Language preference: a local storage entry saving your chosen language (EN/FR/DE/IT/RM) โ this stays on your device only and is not sent to our servers
- Analytics: if we use an analytics tool, it may set a cookie to count visits. We do not use Google Analytics. We do not use advertising cookies.
You can clear cookies at any time through your browser settings. Refusing cookies does not affect your ability to use the site.
9 Security
We take data security seriously and implement the following measures:
- All data transmitted via HTTPS/TLS encryption
- Our infrastructure is hosted on EU-based servers with access controls
- WhatsApp automation data is processed on our own self-hosted server (not third-party SaaS)
- Access to client data is limited to authorised team members only
In the event of a data breach that poses a risk to your rights, we will notify you and the relevant authorities within 72 hours as required by GDPR and the nDSG.
10 Contact & DPO
For any questions, requests or concerns about your data, please contact us:
We reserve the right to update this Privacy Policy at any time. Changes will be published on this page with a new "Last updated" date. Continued use of our services after an update constitutes acceptance of the revised policy.