Conscious Life AG is the operator of the website https://conscious-love.com and https://de.co-love.net. Conscious Life AG is therefore responsible for the collection, processing and use of your personal data and the compatibility of the data processing with the applicable data protection law.

our trust is important to us, which is why we take the issue of data protection seriously and ensure appropriate security. It goes without saying that we comply with the legal provisions of the Federal Data Protection Act (“FADP“), the Ordinance to the Federal Data Protection Act (“FADP”), the Tele-communications Act (“TCA“) and other data protection provisions of Swiss or EU law that may be applicable, in particular the General Data Protection Regulation (“GDPR“).

To help you understand what personal data we collect from you and for what purposes we use it, please read the information below.
If you have any questions regarding data protection, please use the contact below to get in touch with the person in our company who is responsible for questions and issues relating to data protection.

Mr. Lars Altmar
Conscious Life AG
Chamerstrasse 172
6300 Zug
datenschutz@colifeag.com

What data do we process when you visit our website?

1. Do we already collect data from you when you visit our site?

When you visit our website, our servers temporarily save each access in a log file. The following technical data is recorded without your intervention, as is the case with every connection to a web server, and is stored by us until it is automatically deleted:

• the IP address of the requesting computer;
• the name of the owner of the IP address range (usually your internet access provi-der);
• the date and time of access;
• the website from which the access was made (referrer URL), if applicable with the search term used;
• the name and URL of the retrieved file;
• the status code (e.g. error message);
• the operating system of your computer;
• the browser you use (type, version and language);
• the transmission protocol used (e.g. HTTP/1.1);
• if applicable, your user name from a registration/authentication;
• additional meta-information is also retrieved for each IP address.

The purpose of collecting and processing this data is to enable the use of our website (connection establishment), to ensure system security and system stability on a permanent basis and to enable the optimisation of our Internet offering as well as for internal statistical purposes. This is our legiti-mate interest in data processing.

The IP address is also evaluated together with the other data in the event of attacks on the network infrastructure or other unauthorised or abusive website use for the purpose of clarification and de-fence and, if necessary, used in the context of criminal proceedings for the purpose of identification and civil and criminal proceedings against the users concerned. We have a legitimate interest in such data processing in order to prevent unauthorised access in the future and to improve our system stability accordingly.

We store such access data for a different duration depending on the data category but for a maximum of 3 months. In particular, we store Apache server logs for 8 days and backup data for 3 months on a second server. Activity logs (in particular user name, IP address, date and time of a specific activity) are stored for 8 weeks.
We receive the additional meta information anonymously via the “IPStack” interface. We store this information for up to 8 weeks in order to be able to track hacker attacks, if necessary.

2. What data do we collect when you create an account with us?

You have the option of opening a free account on our website, through which you can easily access and use our platform. For this, we need the following information:

Furthermore, non-mandatory (voluntary) profile fields are collected. We are free to add further profile fields.

We only use this data, as well as data voluntarily provided by you, in order to be able to offer you our platform services in the best possible way. The processing of this data is therefore necessary for the implementation of pre-contractual and contractual measures.

3. What data do we collect when you buy a paid subscription?

On our website, you also have the option of purchasing a paid subscription, through which you can easily access our platform and use the additional functions. For this purpose, we require the follo-wing additional information in addition to the information specified in section 2:

• Payment information

We use this data and any additional data you provide (in particular discount codes) only to be able to answer your contact request in the best possible and personalised way. The processing of this data is therefore in our legitimate interest.
For this chargeable service, we offer the option of paying by credit card, PayPal or by bank transfer. For billing with credit card providers, we work with Stripe, Inc. , 354 Oyster Point Blvd South San Francisco, CA 94080, USA. By selecting the payment option, you consent to us transmitting personal data to Stripe, Inc. where applicable. The purpose of the transfer of personal data is payment admi-nistration. For the handling of personal data, please refer to the privacy policy of Stripe, Inc. The applicable privacy policy of Stripe, Inc. can be found at https://stripe.com/en-ch/privacy.

4. What data do we collect when you use our contact form?

You have the option of using a contact form to get in touch with us. For this purpose, we require the following mandatory information:

• Name;
• E-Mail address;
• Subject;
• Message.

We use this data as well as additional data provided by you (in particular first name, telephone num-ber, message content) only to be able to answer your contact request in the best possible and per-sonalised manner. The processing of this data is therefore in our legitimate interest to answer re-quests from users or potential users promptly and adequately.

We receive the information from the contact form by e-mail. This e-mail will then be stored by us for a maximum of 30 calendar days.

5. What data do we collect as part of our blog?

You have the option to receive articles about relationships through our blog. We give you the opportunity to comment on our posts. If you create such a comment, we will save the name and email address in addition to the content and the time of creation. By providing the comment function, we would like to enable you to interact in an uncomplicated manner. The provision of your data is voluntary. Without the provision of certain personal data, we cannot grant you access to our com-ment function. We also reserve the right to delete unlawful content here.
The processing of data entered as comments is based on a legitimate interest in maintaining interaction with our users.

6. Newsletter

As a registered user, you also have the option of subscribing to our newsletter. We use this exclusively to send you the subscribed information by e-mail. For this purpose, we need the following information:

• E-Mail address.

Based on your express consent, we will send you our newsletter on a regular basis. You can revoke this consent at any time by ticking the appropriate box in your profile. We work together with Infomaniak Network AG, Rue Eugène Marziano 25, 1227 Lex Acacias, Gene-va, to send the newsletter. We store this information for up to 30 calendar days after the account or profile has been deleted by the user.

7. What are cookies? Do we need cookies?

Cookies help in many ways to make your visit to our website easier, more enjoyable and more meaningful. Cookies are information files that your web browser automatically stores on your computer’s hard drive when you visit our website. We use the following cookies in particular:

• Technically necessary cookies;
• Power or performance cookies;
• Functional cookies.

We use these cookies, for example, to temporarily store your entries when you fill out a form on the website so that you do not have to repeat the entry when you call up another sub-page. Cookies may also be used to identify you as a registered user after you have registered on the website, wit-hout you having to log in again when you call up another sub-page.

Most internet browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or a message always appears when you receive a new cookie.

Deactivating cookies may mean that you cannot use all the functions of our website.
We store the necessary cookies as well as the performance cookies for 90 calendar days. We also store the function cookies that we set via the website for 90 calendar days. However, if we set the function cookies via the application, we can store them for up to 12 months.

Storage and exchange of data with third parties

8. Where is this data stored?

We store the data provided to this Privacy Policy in the EU/EEA or Switzerland, unless we have disclosed otherwise for specific cases in this Privacy Policy.

9. How long will my data be kept?

We only store personal data for as long as it is necessary to use the tracking services mentioned above as well as the further processing within the scope of our legitimate interest. We retain contrac-tual data for longer as this is required by statutory retention obligations. Retention obligations that oblige us to retain data result from regulations on accounting, civil law and tax law. According to the-se regulations, business communication, concluded contracts and accounting vouchers must be kept for up to 10 years.

10. Disclosure of data to other third parties

e only pass on your personal data to other third parties if you have expressly consented to this, if there is a legal obligation to do so or if this is necessary to enforce our rights, in particular to enforce claims arising from the contractual relationship. In addition, we pass on your data to third parties insofar as this is necessary in the context of the use of the website and the processing of contracts (also outside the website), namely the processing of your orders.

In addition, we may pass on your data to the following service providers:

• Shortpixel belongs to ID SCOUT SRL, Bucuresti, Str. Transilvaniei nr.2, Camera 5, Bl.5, Ap.19, Sector 1, 010798, Romania (Shortpixel)
  We give this data to Shortpixel to compress the images you use so that they can be used in the profile. This is necessary so that we can fulfil our contractual obligations. Shortpixel only stores the images for 30 minutes. We do not use persistent mode.

• IPStack belongs to apilayer Data Products GmbH, Elisabethenstrasse 15, 1010 Vi-enna, Austria (IPStack)
  e receive anonymised meta-information from IPStack about the IP addresses of visitors to our website, as explained in section 1.

• Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA (Cloudflare)
  We use the content distribution network with the caching option of Cloudflare. Cloud-flare processes personal data in particular via its subsidiary Area 1 Security LLC, 15 N Ellsworth Ave Suite 102 San Mateo, CA 94401, USA.

• Sendinblue GmbH, Köpenicker Strasse 126, 10179 Berlin, Germany (Sendinblue)
  We use the services of Sendinblue to send system emails to users of our services. This process takes place via an add-in.

• Google API is a service of Google Inc., a company of the holding company Alphabet Inc. based in the USA (Google API).
  We use Google API for the localisation of places and locations on our platform, which we only use anonymously, however. This data is displayed via Open Street Map.

11. Transfer of personal data abroad

We are also entitled to transfer your personal data to third party companies (commissioned service providers) abroad for the purpose of the data processing described in this data protection declarati-on. These are obligated to data protection to the same extent as we ourselves. If the level of data protection in a country does not correspond to that in Switzerland or the EU, we ensure by contract that the protection of your personal data corresponds to that in Switzerland or the EU at all times.

12. Integration of third-party services and content

It may happen that third-party content, such as Telegram, is integrated within this online offer. This always requires that the providers of this content (hereinafter referred to as third-party providers) are aware of the IP address of the user. Without the IP address, they could not send the content to the browser of the respective user. The IP address is therefore necessary for the presentation of this content. We endeavour to only use content whose respective providers only use the IP address to deliver the content. However, we have no influence if the third-party providers store the IP address, e.g. for statistical purposes. Insofar as this is known to us, we inform the users about this.

Anything else you need to know?

13. You have a right to information, rectification, erasure and restriction of processing as well as data portability

You have the right to request information about the personal data we have stored about you. In addition, you have the right to have incorrect data corrected and the right to have your personal data deleted, insofar as this does not conflict with a legal obligation to retain the data or an authorisation that allows us to process the data. Furthermore, you can have an objection notice attached.
You also have the right to ask us to return the data you have given us (right to data portability). On request, we will also pass the data on to a third party of your choice. You have the right to receive the data in a common file format.
You can contact us for the aforementioned purposes via the e-mail address
datenschutz@colifeag.com. We may, at our discretion, require proof of identity to process your applications.

In many countries, you also have the right to lodge a complaint with the relevant data protection authority if you have concerns about how we process your data.
The rights mentioned depend on the respective applicable data protection legislation and may therefore be either more limited or more comprehensive.

14. Is your data safe with us?

We use appropriate technical and organisational security measures to protect your personal data stored with us against manipulation, partial or complete loss and against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.

You should always keep your access data confidential and close the browser window when you have finished communicating with us, especially if you share the computer, tablet or smartphone with others.

15. Is there the same protection when data is transferred to the USA?

For the sake of completeness, we draw the attention of users resident or domiciled in Switzerland to the fact that there are surveillance measures in place in the USA by US authorities which generally allow the storage of all personal data of all persons whose data has been transferred from Switzerland to the USA. This is done without any differentiation, limitation or exception based on the objective pursued and without any objective criterion that would make it possible to limit the access of the US authorities to the data and their subsequent use to very specific, strictly limited purposes that are capable of justifying the intrusion associated with both the access to and the use of these data. Furthermore, we would like to point out that in the USA there are no legal remedies available to data subjects from Switzerland that allow you to obtain access to the data concerning you and to obtain their correction or deletion, or that there is no effective judicial legal protection against general access rights of US authorities. We explicitly draw your attention to this legal and factual situation in order to enable you to make an appropriately informed decision to consent to the use of your data.

For users residing in a member state of the EU/ EEA or Switzerland, we would like to point out that the USA does not have an adequate level of data protection from the perspective of these states – among other things, due to the issues mentioned in this section. Insofar as we have explained in this privacy policy that recipients of data (such as Cloudflare) are based in the USA, we will ensure through contractual arrangements with these companies that your data is protected with our partners with an appropriate level.

16. Can you complain about us?

You have the right to complain to a data protection supervisory authority at any time.

17. What law do we apply? And where is the law applied?

This Privacy Policy and the contracts concluded on the basis of or in connection with this Privacy Policy are governed by Swiss law, unless the law of another country is mandatorily applicable. The place of jurisdiction is at the registered office of Conscious Life AG, unless another place of jurisdiction is mandatorily specified.

18. Can this declaration be amended?

Should individual parts of this data protection declaration be invalid, this shall not affect the validity of the rest of the data protection declaration. The invalid part of the data protection declaration shall be replaced in such a way that it comes as close as possible to the economically intended purpose of the invalid part.

Due to the further development of our website and offers or due to changed legal or official requirements, it may become necessary to change this data protection declaration. The current data protection declaration is published on our website.

19. Questions about data protection? Please, contact us!

This privacy policy was last amended on 01.08.2022. If you have any questions or comments about our legal notices or privacy policy, please contact us at datenschutz@colifeag.com.