Privacy policy - ABES Group AG

Privacy policy
ABES Group AG

ABES Group AG attaches great importance to the secure and confidential handling of your personal data. In our data protection declarations, you can find out how your personal data is processed and how the requirements of data protection legislation are implemented.

With this privacy policy, we would also like to inform you transparently about how and why your personal data is processed when you visit our website or interact with us.
The following information provides an overview of what happens to your personal data when you visit this website.

ABES Group AG, together with its participating companies, forms a group (hereinafter also referred to as "we" or "us"). We process personal data, in particular personal data of customers and users of our website, users of our services, associated persons, contracting parties and employees. In this privacy policy, we provide information about this data processing by the various companies in our group. In addition to this privacy policy, we may inform you separately about the processing of your data (e.g. in the case of forms or contractual conditions).

If you disclose data from third parties to us, we assume that you are authorized to do so and that this data is correct, and that you have ensured that these third parties are informed of this disclosure, insofar as a legal obligation to inform applies (e.g. by bringing this data protection declaration to their attention in advance). This privacy policy has also been translated into French, Italian and English. If the content of these language versions differs, the German version shall apply in cases of doubt.

Each processing or procurement of personal data has one or more controllers (under data protection law). In the case of our joint activities of the entire ABES Group AG, this is, unless otherwise stated, the company of ours that operates the relevant website or the section of a website on which this data protection declaration can be found. In addition, the company with which you communicate, which you visit, whose social media pages you visit, whose apps you use or which addresses you is the data controller for the associated collection of personal data.

Note on the responsible body within our Group:

ABES Group AG

Feldeggstrasse 5

8152 Glattbrugg

Phone: 044 666 02 57


Email: info@abes.ch

The controller is the legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

On the one hand, your data is collected when you provide it to us. This data that you enter in a contact form, for example. Other data is collected automatically by our IT systems when you visit the website. This is primarily technical data (e.g. internet browser, operating system or time of page view). The collection of this data automatically as soon as you enter one of our websites.

Your claims data will be transmitted to us via existing customer portals or forwarded to us by you. 

We are entitled to pass this data on to insurance companies in a suitable form and may also request data and documents from insurance companies and third parties for the processing of claims.

However, we are prohibited from accepting or viewing medical data that is subject to the protection of privacy (e.g. medical files or documents relating to diagnostic assessments, etc.).

Furthermore, insurance companies and third parties are entitled to if there is a separate mandate agreement with you, to also provide all data for claims processing or retrospective inspection of claims or claims statistics.

We use the CRM system "BAYO", from the provider BAYO Solutions AG, based in CH-8808, Pfäffikon, on the basis of our legitimate interests in the efficient, qualified and rapid processing of user inquiries and user data. For this purpose, we have concluded a contract with BAYO Solutions AG, in which BAYO Solutions AG undertakes to process user data in accordance with our instructions and to comply with the Data Protection Act.

We use the "SOBRADO" comparison platform from the provider Sobrado Software AG, based in Zurich, as the basis for submissions. We have concluded a contract with Sobrado Software AG in this regard, in which the provider undertakes and guarantees that it will process all personal data covered by the contract exclusively for the purpose of tenders commissioned by us and in accordance with our instructions and will not use it for its own purposes. In addition, Sobrado Software AG undertakes to take appropriate technical and organizational protective measures in the interests of the confidentiality, integrity and contractual availability of the personal data covered by the contract.

Our data is stored exclusively in highly secure Tier-IV data centers in Switzerland. The data is transferred using a 2048-bit SSL key and backed up daily. At the same time, the storage is mirrored daily. The data and encryption concept of ABES Group AG therefore meets the same requirements as those expected of major banks and of course also fulfills FINMA-compliant geo-redundancy. All data that reaches us via our forms is also always transmitted via encrypted API delivery.

We protect the data you send us via our online forms using suitable encryption mechanisms. However, we can only secure areas that we control. If you contact us by e-mail, you do so at your own risk and agree that we may reply to you via the same channel to the sender's address. If you send us unencrypted e-mails via the Internet, they may be accessible, viewable and manipulable by third parties and data may be lost or intercepted and/or manipulated by third parties.

Our employees receive ongoing training in the following areas of data protection:

  • Responsibilities in the company and in particular in connection with data protection
  • Differences and characteristics of personal data
  • Requirements for personal data, disclosure of personal data and restrictions.
  • Processes of notification, ordering and approval in the area of data protection
  • Strict compliance with Art. 62 FADP on professional confidentiality, which makes the disclosure of confidential personal data a criminal offense
  • Processes of notification, ordering and approval in the area of data protection
  • Rights of data subjects (right of access, right to rectification, right to erasure)
  • Knowledge of the internal IT regulations
  • Directives in connection with the obligation to report IT security threats
  • Procedure for concluding a commissioned data processing agreement
Some of the data is collected to ensure error-free provision of the website. Other data may be used to analyze your user behavior.

In order to be able to provide you with our services, we obtain the relevant personal data (e.g. in the form of input masks) and process this data in particular to fulfill and process your requests (e.g. forwarding the request to the insurance companies, service providers and foundations selected by you). For this purpose, we may also collect personal data from third parties.

In order to communicate with you and with third parties by e-mail, telephone, letter or otherwise (e.g. to answer inquiries, in the context of a consultation and to initiate or execute a contract), we process in particular the content of the communication, your contact data and the marginal data of the communication. This also includes audio recordings of telephone calls, e.g. for quality assurance purposes. In the event of an audio or video recording, we will inform you separately and you are free to inform us if you do not wish to be recorded or to terminate the communication. If we need or want to establish your identity, we will collect additional data (e.g. a copy of an ID card).

With regard to the conclusion of a contract, we may in particular obtain and otherwise process your name, contact details, photos, powers of attorney, declarations of consent, information about third parties (e.g. contact persons, family details), contract contents, conclusion date, creditworthiness data and all other data which you provide to us (e.g. data which you provide to us through the input mask) or which we collect from third parties (e.g. creditworthiness data, HR statements, information from your employer, information from publications).

We obtain and process personal data so that we can fulfill our contractual obligations to our customers and other partners (e.g. insurance companies, intermediary service providers, IT providers, project partners) and, in particular, provide and demand the contractual services. This also includes data processing for customer support and the enforcement of contracts (debt collection, legal proceedings, etc.), accounting and public communication. For this purpose, we process the data that we receive or have collected as part of the initiation, conclusion and execution of the contract as well as, for example, data on contractual services and the provision of services, information on reactions (e.g. information on satisfaction) and financial and payment information.

We obtain and process personal data as part of risk management (e.g., to protect against tortious activities) and corporate governance. This includes, among other things, our operational organization (e.g. resource planning) and corporate development (e.g. acquisition and sale of operating units or companies).

In order to operate our digital services securely and stably, we collect technical data, such as IP address, information about the operating system and settings of your end device, the region and the time and type of use. In addition, we use cookies and similar technologies.
You have assured rights in connection with our data processing. In accordance with applicable law, you may, in particular, request information about the processing of your personal data, have incorrect personal data corrected, request the deletion of personal data, object to data processing, request the release of certain personal data in a standard electronic format or request its transfer to other data controllers.

You can contact us at any time at the address given in the legal notice if you have further questions on the subject of data protection. You will also find the address of the body responsible for our website in our privacy policy. You also have the right to lodge a complaint with the competent supervisory authority. You also have the right to request the restriction of the processing of your personal data under certain circumstances.
Our Internet pages use so-called "cookies". Cookies are small text files and do not cause any damage to your terminal device. They are stored either temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your end device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or an automatic solution is provided by your web browser.

In some cases, cookies from third-party companies may also be stored on your device when you visit our website (third-party cookies). These enable us or you to use certain services of the third-party company (e.g. cookies for processing payment services). Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. the shopping cart function or the display of videos). Other cookies are used to evaluate user behavior or display advertising. Cookies that are required to carry out the electronic communication process or to provide certain functions that you have requested (e.g. shopping cart function) are stored.

As the website operator, we have a legitimate interest in the storage of cookies for the technically error-free and optimized provision of our services. If a corresponding consent has been requested (e.g. consent to the storage of cookies), the processing takes place exclusively on the basis of the legal obligations; the consent can be revoked at any time. You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted. If cookies are used by third-party companies or for analysis purposes, we will inform you about this separately in this privacy policy and, if necessary, request your consent.

Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address


This data is not merged with other data sources. This data is collected on the basis of the legal basis. As the website operator, we have a legitimate interest in the technically error-free presentation and optimization of our website - the server log files must be recorded for this purpose.

Contact form

If you send us inquiries via the contact form, your details from the respective form, including the contact details you provide there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. This data is always processed on a legal basis, even if your request is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us, insofar as this has been requested. We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Mandatory statutory provisions - in particular retention periods - remain unaffected.

Google Analytics

Our website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics uses so-called "cookies". These are text files that are stored on stored on your computer and which enable your use of the website to be analyzed. website by you. The information generated by the cookie about your about your use of this website is generally transmitted to a Google server in the Google server in the USA and stored there.
The storage of Google Analytics cookies and the use of this analysis tool are analysis tool take place on a legal basis. The website operator has a legitimate interest in the analysis of user behavior in order to optimize both its optimize both its website and its advertising. If a corresponding consent has been requested (e.g. consent to the storage of cookies), processing is cookies), the processing is based on the legal basis and can be can be revoked at any time.

Browser plugin

You can prevent the storage of cookies by selecting the appropriate settings in your your browser software; however, we would like to point out that in this case you in this case you may not be able to use all functions of this website be able to use all functions of this website to their full extent. You can also prevent the collection data generated by the cookie and related to your use of the website (including your IP address) to Google (including your IP address) to Google as well as the processing of this data by Google by downloading and installing the browser plugin available at the following link Download and install the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

Data collection information

Information on the handling of user data at Google Analytics can be found in Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.

Storage duration

Data stored by Google at user and event level that is linked to cookies, user identifiers (e.g. User ID) or advertising IDs (e.g. DoubleClick cookies, Android DoubleClick cookies, Android advertising ID) are anonymized or deleted after 14 months. anonymized or deleted. For details, please see the following link: https://support.google.com/analytics/answer/7667196?hl=de

Google Web Fonts

This site uses so-called web fonts for the uniform display of fonts so-called web fonts, which are provided by Google. The Google fonts are installed locally. A connection to Google servers does not take place. takes place.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in the privacy policy of Google: https://policies.google.com/privacy?hl=de.

Google Maps

This site uses the map service Google Maps via an API. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
To use the functions of Google Maps, it is necessary to save your IP address. stored. This information is usually transferred to a Google server in the USA and stored there. server in the USA and stored there. The provider of this site has no influence on this data transfer.
The use of Google Maps is in the interest of an appealing presentation of our online of our online offers and to make it easy to find the places we have indicated on our places indicated on our website. This is in our interest and is permitted by law.
You can find more information on the handling of user data in the Google's privacy policy: https://policies.google.com/privacy?hl=de.

This data protection declaration is not part of a direct contract with you, but is an integral part of a separate mandate agreement with you.

We may amend this privacy policy at any time in line with current legal and regulatory requirements. The version published on this website is the current version.

ABES Group AG © 2024

en_US