Privacy policy
How Engrenis AG processes personal data when you use this website.
1. Scope
This privacy policy explains how Engrenis AG processes personal data in connection with this website. We comply with the revised Swiss Federal Act on Data Protection (revFADP) and, where applicable, with the EU General Data Protection Regulation (GDPR). Where the two regimes diverge, we apply the stricter standard.
2. Data controller
Engrenis AG
Lerchenfeldstrasse 3
9014 St. Gallen, Switzerland
E-mail: info@engrenis.com
For any question about how we process your personal data, please contact us at the address above. We have not appointed a Data Protection Officer or an EU representative under Art. 27 GDPR, as we are not legally required to do so.
3. Personal data we process
3.1 Server log data
When you visit this website, our hosting provider automatically processes technical data transmitted by your browser: IP address, date and time of the request, requested URL, HTTP status code, browser type and operating system, referrer URL, and the volume of data transferred. This data is processed exclusively to deliver the website, ensure its security, and troubleshoot technical issues. We do not combine server logs with other sources to identify individual visitors.
3.2 Direct contact
When you contact us by e-mail, we process the data you provide voluntarily, typically your name, e-mail address, company and the content of your message. We use this data exclusively to respond to your request and, where relevant, to follow up on a potential business relationship.
3.3 Booking an introductory call (Microsoft Bookings)
If you book an introductory call via the booking link on this website, the scheduling is handled by Microsoft Bookings, a service of Microsoft Ireland Operations Ltd., One Microsoft Place, Dublin, Ireland (part of Microsoft Corporation, USA). Microsoft processes the data required to set up the meeting, typically your name, e-mail address, time zone, the chosen time slot and any information you share voluntarily, as our processor within the Microsoft 365 environment. Data may be processed in data centres outside Switzerland and the EEA; safeguards are provided by the European Commission's Standard Contractual Clauses and, where applicable, the Swiss–US and EU–US Data Privacy Framework. The booking page opens in a new tab; no Microsoft services are embedded in this website itself.
3.4 Cookies and local storage
This website does not use any analytics, advertising or tracking cookies. The only storage used is a single technically necessary entry that remembers your language preference. Details are in our Cookie Policy.
4. Purposes and legal bases
We process personal data to operate and secure the website (overriding legitimate interest, Art. 31(1) revFADP; Art. 6(1)(f) GDPR), to respond to your enquiries and prepare a potential contract (Art. 31(2)(a) revFADP; Art. 6(1)(b) and (f) GDPR), to comply with legal obligations (Art. 6(1)(c) GDPR), and to establish or defend legal claims where necessary and proportionate.
5. Recipients and processors
Within Engrenis AG, only persons who need access to your personal data to perform their duties receive it. We may share data with: infrastructure and hosting providers operating this website on our behalf as processors; Microsoft (e-mail and scheduling, see section 3.3); professional advisors bound by confidentiality; and public authorities where we are legally obliged to disclose data. We will provide the current names of our processors on request.
6. Transfers outside Switzerland and the EEA
Personal data may be transferred to recipients in countries that do not provide the same level of data protection as Swiss or EU law. Where this is the case, we ensure adequate safeguards, typically the European Commission's Standard Contractual Clauses or an adequacy decision recognised by the Swiss Federal Council and/or the European Commission. You may request a copy of the relevant safeguards.
7. Retention
We retain personal data only as long as necessary for the purposes for which it was collected, or as required by Swiss law (statutory record-keeping of typically ten years for business correspondence). Server log data is generally deleted or anonymised within a few weeks unless a security incident requires longer retention.
8. Automated decisions and profiling
We do not use automated individual decision-making or profiling within the meaning of Art. 21 revFADP or Art. 22 GDPR in connection with this website.
9. Your rights
Subject to applicable law, you have the right of access (Art. 25 revFADP; Art. 15 GDPR), rectification (Art. 32 revFADP; Art. 16 GDPR), erasure (Art. 32(2) revFADP; Art. 17 GDPR), restriction of processing (Art. 18 GDPR), data portability (Art. 28 revFADP; Art. 20 GDPR), objection to processing based on legitimate interests (Art. 30(2) revFADP; Art. 21 GDPR), and withdrawal of consent with effect for the future. To exercise these rights, contact info@engrenis.com. We may need to verify your identity before responding.
10. Right to lodge a complaint
If you believe our processing infringes applicable data protection law, you may lodge a complaint with a supervisory authority. In Switzerland, this is the Federal Data Protection and Information Commissioner (FDPIC), www.edoeb.admin.ch. In the EU, you may contact the supervisory authority of your habitual residence, place of work, or the place of the alleged infringement.
11. Changes to this policy
We may update this privacy policy from time to time to reflect changes to our processing activities or legal requirements. The current version is always available on this page.
Last updated: 2 July 2026