⚠ NCSC: Week 18: Parcel phishing with a devious twist – The "double phishing" scam 🔴 CVE: Critical vulnerabilities tracked — CVSS ≥ 9.0 📰 Swiss Security Insights — Cybersecurity for Swiss businesses ⚠ NCSC: Week 18: Parcel phishing with a devious twist – The "double phishing" scam 🔴 CVE: Critical vulnerabilities tracked — CVSS ≥ 9.0 📰 Swiss Security Insights — Cybersecurity for Swiss businesses
← Back to site

Legal

Privacy Policy

Last updated: March 2025

This privacy policy explains how Swiss Security Insights (swisssecurityinsights.ch) collects, uses, and protects personal data in accordance with the Swiss Federal Act on Data Protection (nDSG) and applicable telecommunications legislation.

1. Data Controller

Marco Scarito
Lugano, Switzerland
Email: contact@swisssecurityinsights.ch

2. Data We Collect

2.1 Analytics (Google Analytics 4)

This website uses Google Analytics 4 to understand how visitors interact with the site. It collects pages visited, approximate geographic location, device type, and referring source. Data is transmitted to Google LLC servers in the United States under the EU-US Data Privacy Framework. You may opt out via cookie settings or the Google Analytics opt-out browser add-on.

2.2 Newsletter Subscription

If you subscribe to the weekly briefing, we collect your email address, stored and processed by Brevo (Sendinblue SAS, Paris, France). Your email is used exclusively to send Swiss Security Insights articles and is never sold or shared. Unsubscribe at any time via the link in any newsletter email, or contact contact@swisssecurityinsights.ch.

2.3 Server Logs

Our hosting provider (Infomaniak Network SA, Geneva, Switzerland) automatically records IP addresses, access times, and requested URLs. This data is retained for a maximum of 30 days.

3. Legal Basis for Processing

4. International Data Transfers

Google Analytics transfers data to the United States under the EU-US Data Privacy Framework, recognised by Switzerland as providing adequate protection. Brevo processes newsletter data exclusively on EU servers.

5. Your Rights

Under the nDSG, you have the right to access, rectify, erase, and port your personal data, and to withdraw consent at any time. Contact: contact@swisssecurityinsights.ch. Response within 30 days.

6. Cookies

7. Data Retention

Analytics data: 14 months. Newsletter data: until you unsubscribe. Server logs: 30 days.

8. Contact and Complaints

Privacy questions: contact@swisssecurityinsights.ch
Supervisory authority: www.edoeb.admin.ch (FDPIC)

9. Changes to This Policy

This policy may be updated periodically. The date of the last revision is shown above.