This privacy statement describes how and why we collect, process and use personal data. We attach great importance to protecting your personal data and process it strictly in accordance with legal requirements. To this end, we are continually adapting our processes to protect our customers’ personal data even better.
What is this data protection declaration about?
The protection of our customers’ privacy and personal rights is based on trust, and your trust is important to us. When you visit one of the www.forever-beauty.com and www.forever-boutique.ch websites, personal data is collected, processed and used. In this data protection declaration, we would like to emphasise our commitment to the safe and reliable handling of your data and explain to you how we use our customers’ personal data, what data is processed on our websites and what rights you have in relation to it.
Forever Laser Institut, SA (hereafter “Forever”) processes the customer’s personal data in strict compliance with the applicable data protection provisions. We have aligned this data protection declaration with both the Swiss Data Protection Act (DPA) and the European General Data Protection Regulation (GDPR).
Please note that this data protection information may be amended from time to time. The current version published on our websites is authoritative. If you are directly affected by a change to the data protection declaration, we will inform you of the change in an appropriate form (e.g. to registered users by e-mail to the e-mail address given during registration).
Who is responsible for processing your personal data?
The authority responsible for processing within the meaning of the applicable data protection laws is :
Forever, whose address is 56, rue du Rhône 1204 Genève tel +4122 319 09 60, info@forever-beauty.com
To whom is this declaration of personal data protection addressed?
This declaration of personal data protection applies to all persons who come into contact with Forever in any way whatsoever. It applies both to the processing of personal data that has already been collected and to data that will be collected in the future.
What data do we process?
When you contact us via our website, we collect the following personal data:
a. Technical data
This includes the following data: date and time of access to the website, name of the website accessed, Internet protocol address (IP address) of the computer or mobile device, address of the website linked to our website, amount of data transmitted, name and version of the Internet browser used. Forever requires this data to maintain the functionality of the website and the security of the system.
b. Registration data
Registration data such as first name, surname and e-mail address are generally collected as part of the use of the products and services offered. They are expressly provided by the user. They guarantee individualised access to a product or service offered by Forever on its website.
c. Contractual data
We collect contractual data which is essential for the conclusion and execution of the contract (e.g. first name, surname, address, payment information, etc.). This data is collected in order to establish and manage the contractual relationship.
d. Communication data
When you contact us by telephone, e-mail or using the contact form, we enter your contact details, such as your first name, surname, e-mail address and/or telephone number, into a system set up for this purpose. We store this data in accordance with the purpose for which it is to be used and comply with the legal obligations regarding storage, including the time limits applicable to its deletion. We collect and process this data so that we can communicate with you.
e. Basic data
In order to be able to send you our newsletter, we collect basic data (e.g. e-mail address). This is done primarily for information and marketing purposes. You provide us with this basic data yourself. It is automatically deleted if you request so, i.e. by unsubscribing from the mailing.
f. Medical data
This includes all basic data and data relating to medical treatment for assignment, medical treatment and billing purposes.
As a user of the site, you accept that Forever may use this anonymised data for analysis purposes, in particular for statistical purposes (for example to note which days record the highest number of accesses and the data most frequently consulted).
When you place an order on our site, we collect the data we need to process your order, such as your name, postal and e-mail addresses and the method of payment used. As a user, you are solely responsible for the accuracy of this information.
You can schedule your treatment or place orders via our websites as a guest, without creating a user account, but by filling in the required fields. Data that we are obliged to save by virtue of legal, regulatory or contractual safeguarding obligations is temporarily blocked to prevent it being used for other purposes, subject to the processing of your personal data by external subcontractors (see list below, art. 7).
The data you provide when contacting Forever is protected from access by third parties who are not aware of it. Forever does not transmit any personal data to third parties with the exception of those involved in the proper execution of your order.
Your data will be treated confidentially and strictly for the purposes of fulfilling the contract; where necessary, it will be passed on to third parties. For example, we need to give your name and address to the carrier so that your order can be delivered to you. All your information is treated with the utmost confidentiality.
Finally, we save and use your data insofar as we are legally obliged to do so, in particular as a result of administrative or judicial decisions, and for the exercise of our rights and claims, as well as to defend our rights.
Outsourcing and hosting of personal data
Your sensitive Personal Data will only be hosted in Switzerland on Forever servers.
Your Personal Data may also be hosted and/or processed in countries offering an adequate level of protection within the meaning of art. 6a of the Data Protection Act by our subcontractors and/or service providers.
In general, you expressly agree that Forever may entrust the processing of your Personal Data and/or Sensitive Personal Data to subcontractors and/or contractual service providers.
How are information and marketing used?
We want to provide you with interesting information. We therefore process personal data for relationship management and marketing purposes, for example to send you written and electronic communications and offers. This website uses Google Analytics, a web analysis service provided by Google Inc (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of the website (including your IP address) will be stored on a Google server in the USA. Google will use this information for the purpose of compiling reports on website activity for website operators.
Google will not associate your IP address with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. By visiting this website, you consent to the use of the data collected about you by Google in the manner and for the purposes set out above. The collection and storage of data may be prohibited at any time (with https://tools.google.com/dlpage/gaoptout?hl=fr).
In view of the discussions concerning the use of analysis tools with full IP addresses, we would like to draw your attention to the fact that this site uses Google Analytics “anonymize_ip”. As a result, only truncated IP addresses will be visible in order to avoid any direct recognition of individuals. Use of these web pages implies acceptance by the user of these provisions.
In some cases, we use cookies. Information may be stored on your computer which allows you to be identified. Such information is known as a cookie. These text files stored on your hard drive enable us to recognise you as a registered customer and thus make it easier for you to use our website. You can access and delete the cookies stored on your computer and generally control cookie management via your browser settings. Most browsers are set by default to accept cookies. However, you can configure your browser so that it refuses cookies or first asks you to confirm. If you refuse cookies, you may not be able to use all the functions of our website.
How long do we keep your personal data?
We only keep your personal data for as long as is necessary for the purpose of processing. If we store personal data on the basis of a contractual relationship with you, this data will be stored for at least as long as the contractual relationship exists and at most as long as we have a legitimate interest in storing it, e.g. for documentation and evidence purposes, as long as the statute of limitations applicable to our claims is still running or as long as there are legal or contractual obligations to store it.
We process and store your data for as long as we are required to do so by law. A legal retention period of twenty years applies to certain data.
Finally, we save and use your data insofar as we are legally obliged to do so, in particular as a result of administrative or judicial decisions, and for the exercise of our rights and claims, as well as to defend our rights.
Cookies
Cookies are small text files sent by the websites you visit to your Internet browser (Firefox, Google Chrome, etc.) and stored on the hard disk of your computer or mobile device. They help websites to function properly and communicate information to the owners of a website or to third parties receiving data from that site – for example, about the devices you use and your preferences (user behaviour and recognition).
Types of cookies
here are different types of cookies. They are distinguished by the length of time they are kept, their origin (supplier) and their function.
a. Technically necessary cookies (functional cookies)
Functional cookies record basic information relating to use of the website, such as the user’s name and choice of language, for example. Functional cookies guarantee essential functions and the smooth operation of the website (extended functionality). They are also used to improve the use of the site (e.g. language selection). If you do not authorise functional cookies, some or all of the services may not function properly.
b. Performance cookies
Performance cookies record information about the use of the website, for example the duration and frequency of use of a visited sub-site. These cookies are also used to analyse information using statistical analysis functions, such as the number of people who visit our website. This may make it possible to improve the performance of the website, for example.
c. Marketing cookies
Marketing cookies enable us or third-party service providers to display advertisements for our products on our website or on third party websites.
Will your personal data be transferred abroad?
You consent to us transferring your personal data, for the purposes mentioned in this data protection declaration, also to foreign countries outside Switzerland, the EU and the EEA, whose legislation guarantees adequate protection for the personal data concerned.
You will find below an up-to-date list of all the companies concerned
| Google Adwords | 1600 Amphitheatre Parkway Mountain View, CA 94043, USA | www.google.com |
| Google DoubleClick | 1600 Amphitheatre Parkway Mountain View, CA 94043, USA | www.google.com |
| Facebook Ireland Ltd. | 4 Grand Canal Square, Grand Canal Harbour Dublin 2, Ireland | www.facebook.com |
| Mailchimp | The Rocket Science Group, LLC, 675 Ponce de eon Ave NE, Suite 5000 Atlanta, GA 30308, USA | www.mailchimp.com |
What are your rights regarding the processing of your personal data?
You have the right to object to the processing of your data in particular where we process your personal data on the basis of a legitimate interest and the other conditions required are met. You may also object at any time to the processing of data in connection with direct marketing (e.g. advertising e-mails).
You also have the following rights
a. the right to request access to data stored by us concerning you;
b. the right to have inaccurate or incomplete personal data corrected;
c. the right to request the deletion or anonymisation of your data;
d. the right to request the restriction of the processing of your personal data;
e. the right to receive the personal data that you have made available to us in a structured, commonly used and machine-readable format;
f. the right to revoke your consent with effect for the future, insofar as processing is based on consent. However, revocation has no effect on processing operations carried out up to that point with your consent.
To assert your rights, please contact the body indicated in point 9, providing proof of your identity (copy of identity card, passport or other official identity document).
Security
a. The controller undertakes to treat your Personal Data and Sensitive Personal Data appropriately and will take all technical and organisational measures required by applicable law to prevent unauthorised access, disclosure, modification, leakage or destruction of your Personal Data and Sensitive Personal Data.
b. Standard technologies and security measures, policies and other procedures, firewalls and industry-standard password protection are used to protect your Personal Data.
c. However, you acknowledge that use of the Internet is by definition not secure and that it involves certain risks for your Personal Data. It is your responsibility to ensure that the computer/tablet/smartphone you use is properly secured and protected against malicious software such as Trojan horses, computer viruses and worms.
d. You are aware that without adequate security measures (including secure web browser configuration and up-to-date anti-virus software), there is a risk that the data and passwords you use to protect access to your data could be disclosed to unauthorised third parties.
e. If your Personal Data and Sensitive Personal Data have been improperly accessed by an unauthorised person or if there is reason to believe that they have been, we will notify you by e-mail or by any other useful means.
Links
If certain functions or content on the Site contain links to sites or pages belonging to third parties, these sites or pages do not apply the same confidentiality policy. If you choose to visit one of these third-party sites or pages, you will be redirected to these third-party sites or pages. The data controller has no control over sites or pages belonging to third parties and you are advised to refer to the privacy policies of these sites or pages for information on their procedures for collecting, processing, using, transferring and deleting your Personal Data.
How can you contact us?
If you have any questions about this data protection document or the processing of your personal data, you can contact us as follows:
Customer Service
Forever Laser Institut, SA
56, rue du Rhône
1204 Geneva
022 319 09 60
info@forever-beauty.com
Applicable law and jurisdiction
The Policy and all matters arising out of or in connection with it (including non-contractual disputes or claims and their interpretation) shall be governed by Swiss law, to the exclusion of conflict of law rules.
All disputes, claims or differences between a user and the data controller arising from any matter relating to this Policy shall be submitted exclusively to the competent courts of the Republic and Canton of Geneva, subject to appeal to the Swiss Federal Court.