Privacy policy

Deutsche Fassung

Privacy Policy of IPS Magen GmbH

In this Privacy Policy, we explain how we collect and process personal data. This is not an exhaustive description; other regulations of IPS Magen may govern specific data protection–related matters.

Personal data refers to all information relating to an identified or identifiable natural person.

If you provide us with personal data of other persons (e.g. family members or work colleagues), please ensure that these persons are aware of this Privacy Policy and only share their personal data with us if you are authorized to do so and if such personal data is correct.

This Privacy Policy is designed to meet the requirements of the EU General Data Protection Regulation (“GDPR”), the Swiss Federal Act on Data Protection (“FADP”), and the revised Swiss Federal Act on Data Protection (“revFADP”). Whether and to what extent these laws are applicable depends on the individual case.

1. General

The protection of your personal data is important to us. This Privacy Policy informs you about how we process personal data in the course of our business activities as a security company.

We process personal data exclusively in accordance with the Swiss Federal Act on Data Protection (FADP) and, where applicable, other relevant data protection regulations.

2. Data Controller

Legal & Compliance

IPS-Magen GmbH

Haldenstrasse 25

8134 Adliswil

Switzerland

Email: info@ipsmagen.com

Website: www.ipsmagen.com

Phone: +41 79 19 19 170

The department named above is responsible for the processing of personal data at IPS-Magen GmbH.

Data protection–related inquiries may be submitted in writing to the above address.

3. Obligation to Provide Personal Data

Within the scope of our business relationship, you must provide the personal data that is required for establishing and performing a business relationship and fulfilling the associated contractual obligations (as a rule, there is no legal obligation to provide us with data). Without such data, we will generally not be able to conclude or perform a contract with you (or the entity or person you represent).

The website cannot be used either if certain data required to ensure data transmission (e.g. IP address) is not disclosed.

4. Processing of Personal Data

We primarily process personal data that we receive from our customers and other business partners and from other persons involved in the context of our business relationships, as well as data that we collect from users when operating our websites, apps, and other applications.

Where permitted, we also obtain certain data from publicly accessible sources (e.g. debt enforcement registers, land registers, commercial registers, press, internet) or receive such data from other companies, authorities, and other third parties.

In addition to the data you provide to us directly, the categories of personal data we receive from third parties about you include, in particular: information from public registers; information obtained in connection with administrative and judicial proceedings; information relating to your professional roles and activities (e.g. to conclude and perform business transactions with your employer); information about you in correspondence and meetings with third parties; creditworthiness information (where we conduct personal business with you); information provided by persons in your environment (family members, advisors, legal representatives, etc.) for the purpose of concluding or performing contracts; compliance-related information (e.g. anti-money laundering or export restrictions); information from banks, insurers, distributors, and other contractual partners regarding services used or provided by you (e.g. payments made, purchases); information from media and the internet (e.g. in the context of applications, press reviews, marketing or sales); your addresses and, where applicable, interests and other socio-demographic data (for marketing purposes); and data related to the use of the website (e.g. IP address, MAC address, device data, cookies, date and time of access, accessed pages and content, used functions, referring website, and location data).

We process in particular the following categories of personal data:

  • Master data (e.g. name, address, date of birth, position)

  • Contact data (telephone number, email address)

  • Contract and assignment data (e.g. locations of assignments, working hours, assignment details)

  • Identification data (e.g. copies of identification documents for access controls or guarding services)

  • Image and video recordings (e.g. video surveillance, body cameras, access controls)

  • Technical data (e.g. IP address, log files when using our website)

  • Special categories of personal data (only where legally permitted and necessary, e.g. criminally relevant incidents in the security context)

5. Purpose of Data Processing

We use the personal data we collect primarily to conclude and perform contracts with our customers and business partners, in particular in the provision of security services, the procurement of products and services from suppliers and subcontractors, and to comply with our legal obligations in Switzerland and abroad.

If you act for such a customer or business partner, your personal data may also be affected in this role.

Further purposes include:

  • Provision of security, guarding, and surveillance services. The legal basis; performance of a contract or legitimate interests in protecting property and safety.

  • Access control and property protection. The legal basis; performance of a contract or legal obligations.

  • Prevention, investigation, and documentation of security incidents. The legal basis; legitimate interests in security, or legal obligations.

  • Fulfillment of legal and regulatory obligations. The legal basis; compliance with a legal obligation.

  • Contract administration and customer support. The legal basis; performance of a contract.

  • Personnel administration (for employees). The legal basis; performance of a contract or compliance with a legal obligation.

  • Operation and security of our IT systems and website. The legal basis; legitimate interests in maintaining secure and functional systems, or compliance with a legal obligation.

In addition, we process personal data where permitted and where appropriate for the following purposes, in which we (and sometimes third parties) have a legitimate interest:

  • Development and improvement of our services, websites, apps, and platforms. The legal basis; legitimate interests in service enhancement

  • Communication with third parties and processing of inquiries (e.g. applications, media inquiries). The legal basis; legitimate interests in business operations and relationship management.

  • Analysis and optimization of customer acquisition processes. The legal basis; legitimate interests in business growth.

  • Advertising and marketing (including events), unless you object. The legal basis; legitimate interests in promoting our services, or consent where required.

  • Market and opinion research, media monitoring. The legal basis; legitimate interests in understanding market trends.

  • Assertion of legal claims and defense in legal disputes and administrative proceedings. The legal basis; legitimate interests in protecting our rights.

  • Prevention and investigation of criminal offenses and misconduct. The legal basis; legitimate interests in security and compliance, or legal obligations.

  • Ensuring operational security, especially IT security. The legal basis; legitimate interests in protecting assets and operations.

  • Video surveillance to safeguard domiciliary rights and protect persons, property, and assets. The legal basis; legitimate interests in safety and property protection.

  • Corporate transactions such as mergers, acquisitions, or asset transfers. The legal basis; legitimate interests in business continuity and development.

Where processing is based on legitimate interests, these include ensuring safety, preventing crime, and improving services. You have the right to object to such processing (see Section 11).

Where you have given us consent to process your personal data for specific purposes (e.g. newsletters or background checks), we process such data based on that consent. Consent may be withdrawn at any time, without affecting prior processing.

We only process personal data for the purposes listed above, unless we obtain your consent for other purposes or where required by law.

6. Video Surveillance

Where video surveillance is used:

  • it is purpose-specific (e.g. protection of persons and property based on legitimate interests in security),

  • proportionate,

  • clearly signposted, and

  • recordings are retained only as long as necessary or legally required.

7. Disclosure of Personal Data

In certain cases, we are legally required to disclose data to authorities or courts.

In the course of our business activities, we may disclose personal data to third parties where permitted, either because they process data on our behalf or because they use it for their own purposes. Your consent is required where applicable.

Recipients may be located in Switzerland or abroad, including in countries where our service providers are based (e.g. Microsoft or Google).

Personal data is disclosed only if:

  • required for contract performance,

  • legally mandated,

  • ordered by authorities, or

  • based on explicit consent.

Possible recipients include:

  • Clients

  • Authorities and law enforcement agencies

  • IT service providers (e.g. hosting, security systems)

  • Insurers or legal advisors

8. Data Processing Abroad

Personal data is generally processed in Switzerland. If data is transferred abroad, we ensure an adequate level of data protection (e.g. through standard contractual clauses).

9. Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, misuse, or manipulation, including:

  • Access restrictions

  • Encryption

  • Employee training

  • Logging of security-relevant events

Our IT systems and hosting infrastructure comply with current industry standards.

10. Retention Period

We retain personal data for as long as necessary to fulfill contractual and legal obligations or the purposes pursued, including the duration of the business relationship and beyond in accordance with statutory retention requirements.

Data may also be retained for the period during which claims may be asserted against our company or where legitimate business interests require it (e.g. evidence and documentation purposes).

Once personal data is no longer required, it is deleted or anonymized where possible. Operational data (e.g. system logs) is generally retained for up to twelve months or less.

11. Rights of Data Subjects

Under applicable data protection law, you have the right to access, rectification, erasure, restriction of processing, objection (particularly to direct marketing and profiling), and data portability.

We reserve the right to assert statutory restrictions, for example where retention obligations apply or overriding interests exist.

You may withdraw consent at any time. In such cases, data will be blocked and used only for legally required purposes.

Exercising these rights may conflict with contractual obligations and may result in consequences such as contract termination or costs. We will inform you accordingly.

Identity verification (e.g. by ID copy) may be required. Requests must be submitted in writing.

You also have the right to lodge a complaint with a supervisory authority. The Swiss supervisory authority is the Federal Data Protection and Information Commissioner (FDPIC): www.edoeb.admin.ch. If the GDPR applies to your data processing (e.g., as an EU resident), you may also complain to the supervisory authority in your EU country of residence or where the alleged infringement occurred.

12. Cookies / Tracking and Other Technologies

We use cookies and similar technologies on our websites to identify browsers or devices. Cookies may be session cookies or persistent cookies.

You can configure your browser to reject or delete cookies. Disabling cookies may limit website functionality.

We may use tracking elements in marketing emails to analyze usage. This can usually be blocked in email settings.

We may use Google Analytics or similar services to analyze website usage. IP anonymization and restricted data sharing may be applied. Processing is governed by the provider’s privacy policy.

We also use social media plugins (e.g. Facebook, Twitter, YouTube, Instagram), which are disabled by default. Activation allows providers to process data under their own responsibility.

13. Changes to This Privacy Policy

We may amend this Privacy Policy at any time without prior notice. The current version published on our website applies. If part of a contractual agreement, we will notify you of material changes.

14. Date of This Privacy Policy

This Privacy Policy was last updated in April 2026.