When you visit the www.educa.ch website, certain personal data may be collected and processed, in particular by means of cookies, the newsletter, online forms, job applications, the online counter or by contacting us.
In order to inform you about the processing of personal data, Educa (hereinafter also referred to as «we» or «us») distinguishes between the different ways in which personal data is collected by the www.educa.ch website by answering the following questions:
- Why do we process personal data?
- What personal data is processed?
- How is the data collected?
- Who is the data shared with?
- Where is the data stored and transferred?
- How long is the data processed?
For more information, please see our contact details and further details at the bottom of the page.
Cookies
Why do we process personal data?
We collect personal data using three types of cookies:
- Technically necessary cookies (strictly necessary cookies)
These are first-party cookies needed for the operation and stable functioning of the website. - Analysis and statistics (performance cookies)
These are first-party cookies used to improve the website. We use these as analytical tools. This data enables us to monitor the performance of our website, such as the number of visitors. - Convenience and partners (functionality cookies)
These are third-party cookies that enable the site to be personalised according to your choices. We use them to enable videos to be embedded and played on the website. The data controller is Vimeo. In accordance with its privacy statement, Vimeo can be contacted by email at privacy@vimeo.com.
Other cookies? We do not use other cookies for purposes such as targeted advertising or social media.
What personal data is processed?
- Technically necessary cookies
Personal data routinely collected while visiting, operating and using websites. This includes protocol data (raw logs) such as the user's IP address, the user's device operating system and the access date and time. For further information, please consult the log data statement of Cyon, our website hosting provider. - Analysis and statistics
Your IP addresses. These are always immediately anonymised. - Convenience and partners
We use Vimeo's services to embed videos on our website. To view these videos you must accept cookies belonging to our service provider Vimeo. We do not manage or control the data collected or how it is used. In accordance with Vimeo's cookie policy, this includes your IP address, technical information about your device, the previous web page you visited and your activities. For more information, please read Vimeo's cookie policy.
How is the data collected?
- Technically necessary cookies
These are automatically activated when you visit the website. They cannot be deactivated. We process this data to ensure the stable functioning of the website. - Analysis and statistics
When you visit our website, we display a banner informing you and allowing you to consent to the use of these cookies. They are installed when you consent. - Convenience and partners
When you visit our website and want to view a video, we display a banner informing you and allowing you to consent to the use of these cookies. They are installed when you consent.
Who is the data shared with?
- Technically necessary cookies
We use Cyon's services to operate and host the website. Cyon accesses technical cookie data when needed to perform its services. - Analysis and statistics
We use the Matomo software solution installed on our servers. These servers are hosted by Cyon, our website hosting provider. Cyon may access data on our servers when such access is needed to perform its services. However, the data collected by these cookies is anonymised. - Convenience and partners
We use Vimeo's services to enable viewing of videos on our website. When you agree to view a video and accept Vimeo's cookie policy, cookies managed by Vimeo are installed. Personal data is collected directly by Vimeo using these cookies.
Where is the data stored and transferred?
- Technically necessary cookies
The data collected by these cookies is stored by our website hosting provider Cyon, based in Switzerland. - Analysis and statistics
The data collected by these cookies is stored by our website hosting provider Cyon, based in Switzerland. - Convenience and partners
The data collected is processed only by our service provider Vimeo, which is a company based in the United States.
How long is the data processed?
- Technically necessary cookies
Raw logs are stored for 24 hours on the servers of our website hosting provider. - Analysis and statistics
This data is processed anonymously. To learn more about the duration of cookies, please read the Matomo cookie statement. - Convenience and partners
These cookies are managed directly by our service provider Vimeo. For more information, please consult its cookie policy.
Newsletter
Why do we process personal data?
To keep you informed about our activities, we invite you to subscribe to our newsletters on the website. We collect personal data to send you these newsletters and to evaluate their performance.
What personal data is processed?
We process your contact details, newsletter preference data and protocol data. Contact details include your email address and, optionally, your first and last name. Newsletter preferences refers to the newsletter topics you select. Protocol data includes log info and activation information. We don't do profiling.
How is the data collected?
This personal data is collected through our website when you choose to subscribe to one of our newsletters. Thus you authorise the processing of this data by granting consent (double opt-in).
Who is the data shared with?
We use CleverReach services to send you our newsletters. Your personal data is collected directly by CleverReach through our website and processed in accordance with a data processing agreement.
Where is the data stored and transferred?
Our service provider CleverReach is based in Germany. CleverReach uses three subcontractors:
- PlusServer GmbH in Germany for sending email
- Amazon Web Services, Inc. in Ireland and Germany for the storage and processing of order and email data
- Hetzner Online GmbH in Germany for sending email.
How long is the data processed?
Your personal data is processed for as long as you maintain your registration. If you no longer wish to receive our newsletters and click directly on "unsubscribe" in the email you receive, your details will be automatically deleted. If you notify us by email, we will delete the data from our database in CleverReach. We carry out deletions several times a year. Deletion is final. Personal data is not archived.
Online form
Why do we collect data?
When we organise events, we provide an online registration form on our website. This enables us to register you and to organise the event. To promote our activities on these communication channels and on its social networks, documentation and website, the event may be filmed, photographed and recorded.
What personal data is processed?
Mainly contact data (first and last name, institution, job title, email address), organisational data such as meal attendance and your photo.
The required data is specified on the form page together with information on how it will be used.
How is the data collected?
Your personal data is collected through the online forms on the website when you consent to disclose it.
Who is the data shared with?
We use CMS and CRM software to manage the website. This software is installed directly on our servers hosted by our website hosting and IT service providers.
These service providers and the web agency responsible for maintaining and developing the website may access your personal data when such access is necessary for the performance of their services and in accordance with the agreements entered into.
When the event you are attending is filmed, the images may be sent to a video production and editing agency as well as to the community via our communication channels such as our social networks and our website.
Where is the data stored and transferred?
The web agency responsible for maintaining and developing the website and the website hosting and IT service providers are based in Switzerland.
How long is the data processed?
We process personal data for as long as necessary for the purposes for which it is to be used. Personal data no longer required for processing is archived as necessary before being anonymised or deleted.
Job applications
Why do we collect data?
If you would like to apply for a posted job opening or submit an unsolicited application, the website has a page dedicated to job openings as well as an email address for sending applications. When we receive your application, we collect and process your personal data in order to review it.
What personal data is processed?
We inform you of the application procedure on the website. Your personal application data is not collected or processed directly by the website.
The personal data we process is the data you send us when you apply, which we need to review your application. This includes standard application data such as contact details, references, reason for your interest and professional performance.
How is the data collected?
Your personal application data is collected via the communication channel of your choice (e.g. email or post) when you consent to disclose it to us.
Who is the data shared with?
We use an e-recruitment system managed by Ostendis, a recruitment service provider, to handle your application. When we receive your application, we forward it to Ostendis so that we can manage the recruitment process using the e-recruitment system with support from Ostendis.
Where is the data stored and transferred?
Your personal application data is hosted by our e-recruitment service provider Ostendis at its hosting provider located in Switzerland. For further information, please read Ostendis's privacy statement.
How long is the data processed?
Once we have sent your application file to our e-recruitment service provider Ostendis, we will delete your file from our email inbox immediately.
Your application will be processed by Ostendis and by us in the e-recruitment system for as long as your application is being considered for the position for which you are applying. When the recruitment process has ended, if you are not hired, your application file will be deleted within three to six months after you have been informed by Ostendis or by us, unless you have agreed to a longer retention period.
Central point of contact for data usage and protection
Why do we collect data?
As part of our efforts to develop a data usage policy, our website provides a link to our central point of contact for data usage and protection. Its purpose is to receive questions on the usage and protection of data in the education system. There is a dedicated web page where you can send us your questions by logging in or by email. The personal data you disclose will be processed in order to respond to your request.
What personal data is processed?
The personal data that we collect corresponds to the personal data that you disclose to us and that is needed to process your request. It consists mainly of contact and professional details such as your email address, language, job title, level of education and the canton to which your question relates.
How is the data collected?
This personal data is collected via email or the online central point of contact when you give your consent by disclosing the data.
Who is the data shared with?
The personal data you disclose to us is processed by a software solution installed on our servers hosted by our IT service provider. Our IT service provider may have access to your personal data to the extent needed for the performance of its services and in accordance with the data processing agreement.
Where is the data stored and transferred?
The personal data you have disclosed to us is stored on our servers, which are hosted by our IT service provider in Switzerland.
How long is the data processed?
We process personal data for as long as necessary for the purposes for which it is to be used. Personal data no longer required for processing is archived as necessary before being anonymised or deleted.
Contact us
Why do we collect data?
Our email and postal contact details are shown on the website. When you contact us, we process the personal data you have disclosed.
What personal data is processed?
This generally consists of your contact details such as your email address, along with any personal details you provide us with, which are necessary for us to process your request.
How is the data collected?
Personal data is collected via the communication channel you use to contact us. Data processing is based on your consent.
Who is the data shared with?
We process your personal data using software solutions installed on our servers hosted by our IT service provider. Our IT service provider may have access to this data where access is necessary for the performance of its services and in accordance with the data processing agreement.
Where is the data stored and transferred?
Our IT service provider is based in Switzerland.
How long is the data processed?
We process personal data for as long as necessary for the purposes for which it is to be used. Personal data no longer required for processing is archived as necessary before being anonymised or deleted.
Other processing of personal data
If other personal data is collected temporarily by the website, information about the processing of the data will be provided directly on the page where it is collected.
Contact
Educa is responsible for the personal data collected via the www.educa.ch website.
For further information, please contact us by email at data-protection@educa.ch or by post at Educa, Erlachstrasse 21, 3012 Bern.
In the event of joint responsibility or where a third party is solely responsible for processing personal data, the identity of the data controller is disclosed in this statement.
To learn more
We comply with the Federal Act on Data Protection (FADP) and its ordinance (OPDO). We refer to its terminology (art. 5 FADP) for the definition of the terms used in this statement (e.g. personal data, processing, disclosure and data controller).
In accordance with the FADP, we undertake to respect the data protection rights of the persons concerned, in particular the right of access (art. 25 FADP), the right to rectification of personal data (art. 6 para. 5 FADP), the right of portability of personal data (art. 28 FADP), the right to object to processing (art. 30 para. 2 let. b FADP) and the right to deactivate or delete cookies in whole or part.
With regard to data security, we adopt the necessary organisational and technical measures to ensure the confidentiality, completeness and availability of the personal data processed, and we remain mindful of technological developments.
We reserve the right to update this privacy statement at any time.
Status of the privacy statement, September 2023.