Data Privacy

1. Who is responsible for your personal data?

The following company ("we" or "us") is responsible for the data processing in connection with everskin:

Skinspan Technologies AG
Manessestrasse 132, 8045 Zurich
hello@everskin.ch

In this privacy policy, we describe how we collect and process your personal data when you:

  • visit our website;
  • use our services and the everskin app;
  • apply for a job with us;
  • or we receive your personal data for other purposes related to our business activities.

If you have any questions regarding the processing of your personal data in connection with everskin or if you wish to exercise one of your data protection rights, you can contact us as follows: hello@everskin.ch

2. What personal data does everskin process?

2.1 When you visit our website
When you visit our website, general technical information is automatically collected by the server. This includes, for example, your device’s IP address and operating system, the date and time of access, the website from which you visit us, and the type of browser you use.

We use cookies and other tracking technologies, social media plugins, and embedded media to ensure the functionality of our website and make it more user-friendly. These technologies also help us analyze the use of our website (e.g., with Google Analytics), collect information to improve our services, and pursue marketing purposes (e.g., retargeting cookies).

Cookies are files that are automatically stored on your device by your web browser when you visit our website. You can manage your browser's security settings to block or delete cookies. Please note that blocking cookies necessary for the website's functionality may cause it to no longer function fully. You can disable Google Analytics by installing this browser add-on. For more information on data privacy and your choices regarding Google Analytics, click [here].

If we process personal data in connection with the use of cookies and other tracking technologies, this is based on our interest in providing the website, offering you the best possible user experience, and further developing and marketing our products and services.

Should you contact us via the website (e.g., via the booking tool), we process the contact details you provide, as well as any other personal data resulting from the use of the respective contact channel.

Who do we share the data with?

  • Google Analytics:
    Our website uses Google Analytics, a web analysis service from Google Ireland Ltd. ("Google"), to analyze website usage and improve our services. The data generated by the cookie about your use of the website is transmitted to a Google server in the USA and stored there. However, your IP address is truncated by Google within EU or EEA member states. Purpose of data processing: Website usage analysis to improve our services. Storage period: 14 months, after which the data is deleted.
  • Google Tag Manager:
    We use Google Tag Manager to manage various tracking tags, such as Facebook Pixel, Google Analytics, and Hotjar. The Tag Manager itself does not collect any data. The data collected by the managed tags are listed in this privacy policy.
  • Webflow:
    Our website uses Webflow, a website creation and management platform provided by Webflow, Inc. Data is usually processed on servers in the USA. Webflow ensures compliance with privacy regulations by implementing standard contractual clauses. Purpose of data processing: Website operation and design. Storage period: Data is stored as long as necessary to achieve the stated purposes.
  • MailChimp:
    We use MailChimp for newsletter distribution. When you subscribe, your data is transmitted to MailChimp and stored there. Purpose of data processing: Sending newsletters and managing the subscriber list. Storage period: For the duration of the newsletter subscription.
  • Meta Pixel:
    We use Meta Pixel to track user behavior after they click on a Facebook ad and are redirected to our website. Meta stores and processes this data. Purpose of data processing: Analyze ad effectiveness and optimize marketing efforts. Storage period: 180 days, after which the data is deleted.
  • Google Ads:
    We use Google Ads to display ads in Google search results and the Google Display Network. Cookies are used to serve ads based on previous visits to our website. Purpose of data processing: Marketing and advertising. Storage period: Cookies are stored for 30 days and then deleted.

2.2 When using our services
When you use our services (e.g., book an appointment, undergo an analysis, or receive treatments), we process the following personal data:

  • Identification data (name, ID, etc.);
  • Contact details (e.g., email, address, phone number, etc.);
  • Health data (e.g., information about your general health, medications, and skin analysis results);
  • Communication content;
  • Payment data;
  • Other relevant personal data you provide;
  • Technical data if the process occurs via our website or app (see "When you visit our website").

In the everskin app, we process:

  • Login data;
  • Contact details;
  • Health data;
  • Communication content;
  • Other relevant personal data you provide;
  • Technical data (e.g., logs, usage data, etc.).

2.3 When applying for a job
If you apply for a job with us, we collect the necessary personal data to review your application and conduct the recruitment process, including:

  • Identification data;
  • Contact details;
  • Communication content;
  • Other data from your application materials;
  • Data we may gather about you (e.g., from professional networks or the internet);
  • Reference information, if you consent to the collection of references.

If your application is successful, we will use the data collected during the application process and any additional data you provide to prepare and finalize the contract.

2.4 When we receive personal data for other business purposes
We may process personal data we receive from third parties (e.g., business contacts, suppliers, service providers). This typically includes identification data, contact details, communication content, and other relevant personal data as necessary.

3. For what purposes do we process your personal data?

We process your personal data:

  • To prepare, conclude, fulfill, and enforce contracts within our business activities, particularly contracts for our services.
  • Based on your consent (if applicable), which you can revoke at any time.
  • To comply with legal obligations (e.g., patient record retention).
  • To pursue our legitimate interests in communicating with you and third parties, maintaining and developing our business relationships, improving and marketing our services, ensuring IT security and data protection, and enforcing or defending legal claims.

We may also use your data (including health data) for profiling, research purposes, or to offer you personalized treatment and health recommendations.

4. When do we share your personal data with third parties?

We may share your personal data with third parties to fulfill contracts, pursue our legitimate interests, or comply with legal obligations. This may include:

  • IT service providers, payment processors, booking services, billing, marketing, and other third-party providers;
  • Parties to whom we transfer or merge parts of our business;
  • Cases where data sharing is required to comply with legal obligations or enforce legal claims.

We may also share data (including health data) for research purposes, provided you consent or the data is anonymized/pseudonymized.

5. Data security

We protect your personal data with appropriate technical and organizational security measures. Specifically, we ensure secure data storage in various locations (France, Ireland, and the Netherlands) and implement 2-factor authentication and encryption methods.

6. How long do we retain your personal data?

We retain your data only as long as necessary to fulfill the purposes outlined or as required by law. For legal reasons, patient records are kept for 20 years.

7. What are your rights concerning your personal data?

Depending on applicable data protection law, you have the following rights:

  • Right to access your data;
  • Right to correct incorrect data;
  • Right to delete your data ("right to be forgotten");
  • Right to restrict the processing of your data;
  • Right to data portability;
  • Right to object to the processing of your data.

Please note that exceptions apply to these rights.

8. Right to complain

If you are not satisfied with how we process your data, you have the right to lodge a complaint with the relevant supervisory authority. Please contact us first to resolve your concern at hello@everskin.ch.

9. Links to other websites

Our website may contain links to third-party websites. We are not responsible for their data protection practices.

10. Changes to this privacy policy

We may change this privacy policy at any time. New versions take effect upon publication on our website.

Address:
Gotthardstrasse 50, 8002 Zurich
Opening hours
Tue-Sat: 10:00 - 18:00
Mon, Sun: Closed
Explore
Our TreatmentsSkin AnalysisFAQ
About us
PhilosophyTeamLabCareer
Join our newsletter
© 2024 everskin. All rights reserved.
Data PrivacyTerms & ConditionsImprint