This notice applies to data processing activities performed on the website https://www.koptergroup.com (“Website”). The controller of personal data (“Data”) is Kopter Group AG, with its registered office at Flugplatzareal 10, 8753 Mollis, Switzerland (“Data Controller” or “Company”). The Data Controller provides the following data protection notice pursuant to the Swiss Federal Act on Data Protection (FADP, effective September 1, 2023) and, where applicable, the EU Regulation 679/2016, the EU General Data Protection Regulation (“GDPR”).
As better explained in the sections that allow users to join – by providing their personal data – to the services reserved for the Website’s users, the Data of the users concerned are processed on the basis of the requests expressly made by them, from time to time, through the Website. Specifically, all Data collection and subsequent processing activities are aimed at pursuing the following purposes:
- Sharing contents available on the Website.
- Customer relationship management. In particular, on the Website, there is a contact form through which the user can provide their contact details (e.g., name, email address, company, and telephone number) to request information about products or official communications from the Company. In both cases, the Website does not store the user’s Data as it is immediately transmitted to the relevant company departments.
- Generic requests for information.
- Redirecting users to third-party pages where they can access reserved areas of their interest. The Website does not allow access to any reserved area; should this occur, requests to the user to enter their Data for registration and subsequent processing will be managed by the third-party supplier of the reserved access page, behind a specific information notice on the processing of personal data and subject to the specific consent of the data subject.
- Providing commercial information on the services carried out by the Data Controller and/or its related companies.
- Complying with the obligations provided for by applicable laws or regulations, as well as by decisions and guidelines issued by the competent supervisory and control authorities/bodies.
The Data Controller will not use the collected Data for purposes other than those related to the specific service mentioned above, to which the user has provided their consent, or only within the limits indicated in any further specific information form accompanying the different and particular service requested by the user.
For purposes related to the provision of the service to which the user has adhered, the Data might be accessible by third parties, such as affiliated companies, including the parent company Leonardo S.p.A. in Italy, and data may also be transferred to and processed by one of our distributors located in a specific country outside of Switzerland and the European Economic Area (EEA) if it is helpful to fulfill your request. These transfers are made on a case-by-case basis and never involve transferring data to all distributors or all countries. This may include countries such as Japan, Guatemala, Panama, Brazil, Australia, Malaysia, Indonesia, Thailand, the Philippines, South Korea, Vietnam, South Africa, and Norway. These transfers are performed in accordance with the FADP and GDPR requirements, ensuring appropriate safeguards are in place to protect your personal data. Additionally, consultants that assist the Data Controller in meeting users’ requests (e.g., law and tax firms) may access the Data, acting as independent Data Controllers or as Processors, pursuant to Article 28 of the GDPR. Additionally, the Data will be transmitted to third parties to whom the communication of the Data is necessary to comply with the applicable laws or regulations.
The updated list of Processors is available upon request at the following email address: dataprotection@koptergroup.com.
Within the organization of the Data Controller, the Data will be made available to people expressly authorized by the Data Controller to process personal data. Authorized people are identified among the personnel operating in one of the following areas: administration, communication, accounting, sales, customer support, and technological maintenance of the information systems. These persons, appointed by the Data Controller as authorized to the processing, carry out processing activities necessary for pursuing the aforementioned purposes.
Unless otherwise stated in a specific information form, the Data will not be disseminated nor transferred to third countries outside the European Economic Area (EEA) unless appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses.
The Data:
- Will be processed in the manners and according to the procedures that are strictly necessary to meet user requests and through the operations or set of operations set out in Article 4, paragraph 1, number 2 of the GDPR.
- Will also be processed by using electronic or automated tools, as well as by using paper/manual tools. The Website is hosted on servers located in Switzerland. In this regard, please note that Data will be stored in paper and electronic archives located at the Controller’s premises and in other servers within the European Economic Area.
The Data will be processed with rationales related to the specific purposes for which they have been collected, in accordance with the Applicable Privacy Law, and for the purposes above-mentioned or specified from time to time in any further information notice provided to the user.
The Data will be processed for the time strictly necessary to pursue the purposes for which they have been collected.
The Data that will be processed are those strictly necessary to meet users’ requests, as well as Data that are optionally provided by the user which are not strictly necessary to process the request.
Should the user refuse to provide their Data or consent to the processing of their Data, if required:
- In the case of Data strictly necessary to meet the user’s request, such refusal will make it impossible for the Data Controller to meet the requests.
- In the case of Data optionally provided, such refusal will make it impossible to provide at least part of the requested services or provide the user with commercial information regarding the services offered by the Data Controller and its affiliated companies.
During their normal operation, the IT systems and software procedures used to operate the Website collect some personal data whose transmission is implicit in the use of Internet communication protocols. Such information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow the users to be identified.
This category of Data includes the IP addresses or the domain names of the computers used by users who connect to the Website, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the means used in submitting the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response from the server (successful, error, etc.), and other parameters related to the operating system and the user’s computer environment.
This Data is used for the sole purpose of retrieving anonymous statistics on the use of the Website, and to check its correct functioning. Such Data is immediately deleted after elaboration. Additionally, Data could be used to ascertain responsibility in case of hypothetical computer crimes against the Website; except for this eventuality, at present, the Data on the Website does not persist for more than seven days.
The Data generally requested to use the Website includes biographical information and contact details. The optional, explicit, and voluntary sending of emails to the addresses indicated on the Website by the user entails the subsequent acquisition of the sender’s address, necessary to answer the user’s requests, as well as any further personal data included in the message. Specific summary information will be progressively reported or displayed on the pages of the Website prepared for particular services upon request or for registration in reserved areas of the Website. Normally, data belonging to particular categories pursuant to Article 9 of the GDPR will not be processed. However, a specific information notice will be provided and specific consent will be requested from the user if data belonging to particular categories will be processed.
The website uses technical/functional cookies and statistical/performance cookies only. Technical/functional cookies are necessary for the proper functioning of the website, enabling essential features such as navigation, content sharing, and the storage of login credentials for registered users. These cookies are required to ensure the website operates smoothly. Statistical/performance cookies help us understand how visitors interact with the website, allowing us to evaluate and improve its performance. I
Their purpose is to analyse user’s access to a specific Web page, in order to customise and streamline the user navigation experience and to enrich user profiling for advertising and/or commercial purposes.
The cookies may be “temporary” (also said session cookies, since they are deleted when the connection ends) or “permanent” (they remain stores on the user’s hard disk, unless the user deletes them).
For further information on how to set cookie-usage preferences through your browser, or if you wish to change your cookie preferences or manage your cookie settings, please refer to the Cookies Management section below for further instructions on how to update your preferences.
With respect to the Data held by the Data Controller, users of the Website can exercise all rights set forth by the Applicable Privacy Law. In particular, users may:
- Request the Data Controller to confirm the existence of a processing of their personal data, the origin of such data, the logic and purposes of the processing, the categories of subjects to whom the data may be communicated, as well as the identification details of the Data Controller and its Data Processor.
- Request access to personal data, anonymization, rectification, updating, integration, erasure, or limitation of the processing.
- Object to the processing of personal data within the limits set forth by the Applicable Privacy Law.
- Exercise the right to portability.
- Withdraw consent (where this is the necessary legal basis for the data processing) at any time without prejudice to the lawfulness of the data processing based on the consent before its withdrawal.
- Lodge a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC) or, where applicable, the relevant EU supervisory authority.
To exercise the rights set forth by the Applicable Privacy Law, users may contact the following address:
- Email: dataprotection@koptergroup.com
Any corrections, erasures, or limitations of Data processing carried out upon the user’s request – unless this proves impossible or involves a disproportionate effort – will be transmitted by the Data Controller to each of the recipients to whom the personal data has been disclosed. The Data Controller may communicate these recipients to the user if the latter so requests.
Kopter Group AG reserves the right to change, update, or amend this Privacy Notice at any time, in compliance with applicable laws. Any changes will be communicated on this page, and the date of the most recent update will be reflected below. We encourage you to review this policy periodically to stay informed about how we are protecting your information. By continuing to use the Site after any changes are posted, you acknowledge and accept those changes.
Effective Date: December 31, 2024