top of page

Privacy Policy

(Applicable in Switzerland and the European Union)

1. Introduction

At Restaurant Gypsera, your privacy and the security of your data are of paramount importance to us. We keep data collection to a minimum, collecting only that which is strictly necessary. All data collected - whether automatically or voluntarily - is stored in compliance with European (RGPD) and Swiss confidentiality standards.

The purpose of this document is to inform you in a transparent manner about the nature, scope and purpose of the processing of personal data carried out during your browsing and use of our website https://restaurant-gypsera.ch.

2. Purpose and scope

The purpose of this policy is to inform users of the Site of the manner in which Restaurant Gypsera collects and processes their personal data during their use (browsing, interactions, forms, etc.). It applies to all features, services and pages offered on the Site, including:

  • Simple consultation of the pages;

  • Purchasing products or services;

  • Registration for accounts or reserved areas;

  • Sharing or interacting with third-party services (video players, social networks, etc.).

3. Definitions

To make this document easier to understand, here are a few key definitions:

  • Personal data: any information relating to an identified or identifiable natural or legal person. This includes, for example, name, address, e-mail address, telephone number, state of health or online browsing behaviour.

  • Usage data: data that may be collected automatically when the Site is used (e.g. IP address, browser type, pages viewed).

  • Data subject or Person concerned: any natural person who is the subject of personal data.

  • User or User-rice: the person who uses the Site.

  • Cookies: small text files stored on the user's device, enabling, for example, a browser to be recognised, preferences to be recorded, or the use of a site to be tracked (for statistical, security, advertising, etc. purposes).

  • Controller: the natural or legal person who determines, alone or together with others, the purposes and means of the processing of personal data (see section 4 below).


All other definitions set out in the General Data Protection Regulation (GDPR) or in Swiss law also apply and can be consulted, where applicable, in the legislative texts in force.

4. Data controller

The data controller (within the meaning of the RGPD and Swiss legislation) is:

Restaurant Gypsera
Gypsera 235,

1716 Schwarzsee-Bad
E-mail: hello@restaurantgypsera.ch
Website: https://restaurant-gypsera.ch

For any queries relating to the protection of your data, please contact the above e-mail address.

5. Data collection and cookies

5.1 Data collected automatically

When the Site is loaded and consulted, without you voluntarily transmitting any information, only the data that your browser transmits automatically is collected, in particular:

  • IP address ;

  • Date and time of consultation;

  • Time zone difference with Greenwich Mean Time (GMT);

  • Access status / HTTP status code ;

  • Browser type and version;

  • Operating system and interface ;

  • Browser language and version;

  • Pages visited;

  • Time and date of visit to these pages;

  • Individual device identifier and other diagnostic information.

This information is technically required to enable the Site to be displayed, to ensure its stability and security, and to carry out anonymised statistical analyses.

5.2 Data provided voluntarily

Restaurant Gypsera also collects personal information that you provide, in particular:

  • When creating an account or connecting to a reserved area;

  • When consulting/purchasing products or services;

  • When filling in forms (contact, request for quotation, newsletter subscription, etc.);

  • When you browse the Site in an authenticated manner.


This data is only used for the purposes described in this policy (service improvement, order tracking, communication with users, etc.), or to meet legal obligations.

5.3 Cookies

The Site uses different types of cookies, distinguished in particular by the length of time they are retained:

  • Session cookies: are automatically deleted when you close your browser. They often contain an identifier that enables your browser to be recognised from one page to the next, for the duration of your session.

  • Persistent cookies: are kept for a specified period (up to two years, depending on their purpose). They can be deleted manually via your browser's security settings, and are automatically deactivated when they expire.

5.3.1 Purpose of cookies

  • Necessary cookies: these make the Site usable (browsing, access to secure areas, etc.). The Site cannot function properly without them.

  • Statistical / performance cookies: these help to understand how visitors interact with the Site, collecting anonymous information for statistical purposes.

  • Advertising cookies: these may be used to display targeted advertising, including in external video players (YouTube, Vimeo, Dailymotion, etc.).

  • Security cookies: these are collected for security reasons (fraud prevention, for example).

You can configure your browser to reject all cookies or to warn you when a cookie is being sent. You can also delete cookies that have already been installed at any time. However, if you reject them, some of the Site's functions will not be available.

6. Legal basis for processing

We process your data on the following legal bases (RGPD):

  • Article 6(1)(a): explicit consent (e.g. subscription to a newsletter).

  • Article 6(1)(b): performance of a contract or pre-contractual measures (e.g. ordering services).

  • Article 6(1)(c): compliance with a legal obligation (e.g. tax obligations).

  • Article 6(1)(d): protection of a person's vital interests.

  • Article 6(1)(f): pursuit of legitimate interests (e.g. security of the Site, audience statistics), provided that your fundamental rights and freedoms do not prevail.
     

Where we invoke legitimate interests, these include ensuring the proper management of the Site, improving our services or protecting our systems.

7. Data retention

We will only retain your personal data for as long as is necessary for the purposes described or to meet our legal obligations (accounting, tax, etc.). By default, data is stored exclusively in Switzerland, in a secure manner, and is only accessible to authorised persons or entities (subcontractors, service providers, etc. subject to confidentiality obligations).

7.1. Cross-border transfers

Some of the service providers or partners we work with (e.g. Google, Meta/Facebook, advertising or videoconferencing platforms) are located in countries that do not have a level of data protection equivalent to that of Switzerland or the European Union, in particular the United States.

When we transfer personal data to a third country:

  • We apply the Standard Contractual Clauses (SCC/SCC) approved by the European Commission or equivalent safeguards recognised by Swiss law.

  • We assess the level of data protection in the third country to ensure that your fundamental rights are not compromised.

  • If necessary, we obtain your explicit consent or put in place other protection mechanisms (e.g. binding corporate rules, certifications, etc.).

You can obtain more information about these guarantees (in particular the Standard Contractual Clauses) by contacting us at the address given at the end of this document.

7.2 Data security

We implement appropriate technical and organisational measures to protect your data against loss, manipulation, unauthorised access or any form of unlawful processing. These measures include:

  • SSL/TLS encryption on our pages, to secure data transfers between your browser and our servers;

  • Authentication and access management protocols (passwords, restricted authorisations) to ensure that only authorised persons can consult or process data;

  • Firewall and intrusion detection systems to protect our infrastructure;

  • Regular back-up and disaster recovery procedures to limit the impact of any incidents;

  • Awareness of good data protection practices among our staff and subcontractors.

Although we strive to protect your data, no system is infallible. If, despite all precautions, a security breach were to occur, we would apply the legal notification procedures set out in the RGPD and/or the Swiss LPD.

8. Users' rights

In accordance with current legislation (RGPD, Swiss law), users have the following rights in particular:

  1. Right of access: the right to know whether data concerning you is being processed and to obtain a copy.

  2. Right of rectification: the right to have inaccurate or incomplete data corrected or completed.

  3. Right to erasure: right to request the deletion of your data under certain conditions (e.g. withdrawal of consent, obsolete data).

  4. Right to object: right to object to the processing of your data, for reasons relating to your particular situation, or at any time when the processing is for canvassing purposes.

  5. Right to restrict processing: the right to request that processing be restricted if the accuracy or lawfulness of the data is contested or if you need the data for the establishment, exercise or defence of legal claims.

  6. Right to portability: the right to receive a copy of your data in a structured, commonly used and machine-readable format, in order to transmit it to another controller.

  7. Right of revocation: where processing is based on your consent, you may withdraw it at any time (e.g. unsubscribing from the newsletter).

To exercise these rights, please contact us by e-mail: hello@restaurantgypsera.ch

9. Collection of additional information

9.1 Sharing content on social networks

If you share content on the Site (e.g. an article) via an integrated sharing functionality, the social network concerned (Facebook, Instagram, LinkedIn, TikTok, Snapchat, Twitter/X, etc.) may collect and process information about your browsing in accordance with its own privacy policy.

  • Lack of control: Restaurant Gypsera has no control over the data collected or the processing operations carried out by these platforms.

  • User profiles: each social network uses the information collected to create marketing profiles or to offer you targeted advertising.

  • Transmission abroad: depending on the location and settings of your account, certain data may be transmitted outside the European Union and/or Switzerland to countries that do not guarantee an adequate level of protection.

Please consult the privacy policy of these social networks for more information (Facebook, Instagram, LinkedIn, TikTok, Snapchat, Reddit, Telegram, X (Twitter), WhatsApp, etc.).

9.2 Quote request / contact form

When you enter your personal data (e.g. name, e-mail, message) in a quote request or contact form, you agree to this data being used to process and respond to your request. It will only be passed on to third parties with your prior consent or in the event of a legal obligation.

9.3 Connecting to a user account (login / intranet)

If you have a user account, certain identification information (e.g. user name, e-mail address) is collected in order to:

  • Facilitate access to the account features;

  • Personalise your experience (e.g. memorise your preferences);

  • Ensure access security.

Where applicable, certain information may be shared with technical service providers (hosting, maintenance) for the strict purpose of running the Site. These service providers are contractually bound to respect data confidentiality.

9.4 Downloading PDF files

The Site may offer the downloading of PDF documents. When downloading, we may record information (e.g. date, number of downloads) for the purposes of monitoring and improving content.

10. Google Analytics

The Website may use Google Analytics, a web analysis service provided by Google Inc (‘Google’).

  • How it works: Google Analytics uses cookies to analyse your use of the Site and to generate reports (audience statistics, page views, etc.). Google may use this information to personalise ads on its own advertising network.

  • Opt-out module: you can prevent Google Analytics from collecting your data by installing the opt-out add-on module.

  • IP anonymisation: your IP address is anonymised before being transferred to Google's servers (located in the United States).

  • Legal basis: the use of Google Analytics is based on our legitimate interest (article 6(1)(f) RGPD) in evaluating the use of the Website and in optimising it.


For further information, please consult: Privacy Policy – Privacy & Terms – Google

10.1. Remarketing and targeted advertising (Google Ads, Facebook Pixel, etc.)

We may use remarketing or targeted advertising services provided by third parties, such as Google Ads, Facebook Ads (Meta Pixel), LinkedIn Ads, or other equivalent platforms. The aim is to present you, on other sites or applications, with more relevant advertising content about our services or news.

How it works:

  • Cookies or tracking pixels are installed when you browse our Site. They enable third-party service providers (e.g. Google, Meta) to recognise your browser on subsequent visits and to offer you personalised advertisements based on your presumed areas of interest.

  • The data collected may include the IP address, the unique identifier of your browser, the page consulted or the time of the visit.

  • The information collected is processed in accordance with the confidentiality policies of these service providers. It may be transferred to the United States or to other countries outside Switzerland/EU (see ‘Cross-border transfers’ section).

Legal basis:

  • Where required by applicable legislation (e.g. GDPR), we seek your consent before placing this type of cookie or pixel. Without your consent, remarketing will not be activated.

  • In some cases, we may rely on our legitimate interest (art. 6(1)(f) GDPR) to promote our services, provided that your fundamental rights and freedoms do not prevail.

How to disable:​

  • You can manage your preferences via our cookie banner or your browser settings.

  • On the relevant platforms, you can personalise or block targeted advertising (e.g. via your Facebook settings or your Google account).

  • You can also use tools such as YourOnlineChoices or the Google Ads Settings option to adjust your online advertising preferences.

11. Video players (YouTube, Vimeo, Dailymotion)

The Site may integrate video players from third-party services such as YouTube (Google Inc.), Vimeo or Dailymotion. In this case, cookies may be placed on your device:

  • Cookies may be placed on your device by these service providers, for the purposes of tracking preferences, audience measurement and/or personalised advertising.

  • The data collected (e.g. IP address, pages visited) may be transmitted to these third parties and processed in accordance with their own confidentiality policies.

11.1 YouTube

Service provided by:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

How Google uses cookies – Règles de confidentialité et conditions d’utilisation – Google

11.2 Vimeo

Service provided by:
Vimeo

Privacy Policy on Vimeo

11.3 Dailymotion

Service provided by:
Dailymotion SA, 140 boulevard Malesherbes, 75017 Paris, France.

Terms and Conditions of Use - Dailymotion Legal

12. Newsletter

The user may have the option of subscribing to our newsletter.

  • Double opt-in: by entering your e-mail address in the ‘Newsletter’ form and clicking ‘Send’, you agree to receive said newsletter. A confirmation e-mail is then sent to you to verify your consent.

  • Unsubscribe: you can unsubscribe at any time by clicking on the unsubscribe link at the bottom of each newsletter.

13. Processing applications (where applicable)

If you apply for a job or send application documents, we collect and process your personal data for the purpose of managing the recruitment process.

  • If an employment contract is concluded, the data is kept for the duration of the employment relationship, in accordance with the applicable legislation.

  • If you refuse, the data will be deleted after a period of two months, unless it is necessary to keep it for longer in order to defend your rights (for example, in the event of a dispute).

 

14. No automated decisions

Restaurant Gypsera does not use automated decisions or profiling that produce legal effects or significantly affect you, except in the cases provided for by law or subject to your explicit consent.

15. Disclaimer

By accessing the https://restaurant-gypsera.ch website, you agree to these terms of use (if you do not agree, please do not continue browsing):

  1. Accuracy of information
    Restaurant Gypsera does not guarantee the accuracy, precision or completeness of the information contained on the Site. The content may be changed at any time without notice.

  2. Exclusion of liability
    Restaurant Gypsera, its representatives and agents disclaim all liability for any direct or indirect damage arising from the use of the Site.

  3. Intellectual property rights
    The content of the Site may not be copied, reproduced, distributed or transmitted to third parties, in whole or in part, without prior authorisation.

  4. Applicable law and place of jurisdiction
    Use of the Site is governed by Swiss law and the place of jurisdiction is Fribourg (Switzerland).

16. Entry into force and amendments

Restaurant Gypsera reserves the right to amend this privacy policy at any time. Changes will be posted on this page and will be effective immediately upon posting. Continued use of the Site after publication of a new version implies tacit acceptance of the modified policy. We invite you to consult this page regularly to keep abreast of any changes.

17. Contact details

If you have any questions about this privacy policy or wish to exercise your rights (access, objection, etc.), please contact:

 

Restaurant Gypsera

Gypsera 235,

 

1716 Schwarzsee-Bad

E-mail: hello@restaurantgypsera.ch

 

We thank you for the trust you have placed in us and remain at your disposal for any further information concerning the protection of your data.

bottom of page