Privacy Policy
This Privacy Policy explains how FinTech Werkstatt collects, uses and protects personal data when you visit fintechwerkstatt.ch or contact us. We process personal data in accordance with the Swiss Federal Act on Data Protection (FADP) and, where applicable, the EU General Data Protection Regulation (GDPR).
Last updated: July 2026
1. Controller
The party responsible for data processing on this website is:
FinTech Werkstatt
Katarina Brüggler
Fortunagasse 18
8001 Zürich
Switzerland
E-Mail:
For any question regarding this Privacy Policy or the processing of your personal data, please contact us at the address above.
2. What data we process
We process the following categories of personal data:
- Server and log data: IP address, browser type and version, operating system, date and time of access, and the pages you visit. This data is collected automatically when you access the website.
- Contact data: name, e-mail address, company and any information you choose to include when you contact us by e-mail or through a form on this website.
- Usage data: anonymised statistics about how the website is used, collected through analytics as described below.
3. Why we process it, and on what legal basis
We process personal data to operate and secure the website, to respond to your enquiries and to provide our advisory services, to analyse and improve the website, and to comply with legal and regulatory obligations.
Where the GDPR applies, our legal bases are our legitimate interest in operating a secure and effective website (Art. 6(1)(f) GDPR), the performance of a contract or pre-contractual steps at your request (Art. 6(1)(b) GDPR), your consent where we ask for it — for example for non-essential cookies (Art. 6(1)(a) GDPR), and compliance with legal obligations (Art. 6(1)(c) GDPR).
4. Cookies
This website uses cookies — small text files stored on your device. Essential cookies are required for the website to function. Analytics cookies help us understand how the website is used and are only set where permitted or where you have consented.
You can block or delete cookies at any time in your browser settings. Please note that some functions of the website may then not work as intended.
5. Analytics
This website uses Google Analytics, a web analysis service provided by Google Inc. Google Analytics uses cookies to analyse how you use the website. The information generated is usually transmitted to and stored on a Google server. Where IP anonymisation is active, your IP address is truncated by Google within the EU or the EEA before transmission; only in exceptional cases is a full IP address transmitted and truncated in the United States.
Google uses this information on our behalf to evaluate your use of the website and compile reports on website activity. The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data. You can prevent the storage of cookies through your browser settings.
6. LinkedIn
Our website may use plugins from the social network LinkedIn (LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA). Where such a plugin is used, a direct connection is established between your browser and LinkedIn’s servers, informing LinkedIn that you visited our website using your IP address. If you are logged in to LinkedIn, your visit can be associated with your LinkedIn account. As the website operator, we receive no information about the content of the transferred data or its use by LinkedIn. Details are available in the LinkedIn Privacy Policy.
7. Hosting and service providers
Our website is hosted by a third-party provider, and we use technical service providers for performance optimisation and content delivery. These providers process data on our behalf and are bound by contract to process personal data only according to our instructions and to maintain appropriate security measures.
8. Disclosure to third parties
We do not sell personal data. We disclose personal data only where necessary to provide our services, to the service providers described above, or where we are legally or regulatorily required to do so.
Where data is transferred outside Switzerland or the EEA, we ensure an adequate level of protection through appropriate safeguards, such as standard contractual clauses.
9. Retention
We retain personal data only as long as necessary for the purposes described in this Privacy Policy, or as required by applicable statutory retention obligations. Enquiry correspondence is retained for as long as needed to handle your request and to comply with our documentation obligations, after which it is deleted or anonymised.
10. Data security
We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or alteration. Please note that transmission of data over the internet can never be entirely secure.
11. Your rights
Subject to applicable law, you have the right to:
- request information about the personal data we hold about you;
- request correction of inaccurate or incomplete data;
- request deletion of your data, where no legal obligation requires us to retain it;
- request restriction of processing, or object to processing based on legitimate interests;
- request transfer of the data you provided to us in a machine-readable format;
- withdraw consent at any time, with effect for the future.
To exercise any of these rights, contact us at . You also have the right to lodge a complaint with the competent supervisory authority — in Switzerland, the Federal Data Protection and Information Commissioner (FDPIC).
12. Changes to this Privacy Policy
We may update this Privacy Policy to reflect changes in our practices or in applicable law. The version published on this website is the one that applies. Please review it from time to time.
13. Terms of use and disclaimer
The use of this website is additionally governed by our terms and conditions of use and disclaimer, available here.