Vai al contenuto principale
+41 91 913 30 70info@haablegal.ch
Haab Legal - Studio Legale e Notarile

Privacy Policy

Haab Law Firm and Notary Office (hereafter "the Firm") processes the personal data of users of the website www.haablegal.ch and of its clients in compliance with the Swiss Federal Act on Data Protection (FADP) of 25 September 2020, in force since 1 September 2023, and, where applicable, Regulation (EU) 2016/679 (GDPR).

1. Data controller

The data controller is:

  • Haab Law Firm and Notary Office
  • Via Ludovico Ariosto 5, 6900 Lugano, Switzerland
  • Phone: +41 91 913 30 70
  • Email: info@haablegal.ch

For any matter concerning the processing of your personal data, you may contact the Firm directly.

2. Personal data processed

The Firm processes the following categories of data:

  • Data voluntarily provided through the contact form: first and last name, email address, phone number (optional), legal area of interest, message content.
  • Technical data automatically collected: IP address, browser user-agent, visited page, site language, date and time of the visit.
  • Consent data: confirmation of acceptance of this notice with date and time.
  • Analytics data (subject to consent): Google Analytics 4 cookies with IP anonymisation, used only if the user accepts analytics cookies through the banner.
  • Client data under a professional mandate: processed separately under the attorney's professional secrecy (art. 13 LLCA) and the notary's duty of confidentiality; not covered by this website notice.

3. Purposes of processing and legal bases

Data is processed for the following purposes:

  • Responding to contact requests submitted through the website form. Legal basis: performance of pre-contractual measures requested by the data subject (art. 6 GDPR / art. 31 para. 1 FADP).
  • Website security and abuse prevention (rate limiting, IP logging against spam). Legal basis: legitimate interest of the controller.
  • Traffic measurement and content improvement through Google Analytics 4 with anonymised IP. Legal basis: explicit consent of the data subject via the cookie banner.
  • Compliance with legal obligations: retention of received communications where required by Swiss law.

4. How data is processed

Data is processed with appropriate technical and organisational tools, in accordance with the data minimisation principle. Technical security measures are in place (HTTPS with Let's Encrypt certificate, protected administrator access, regular database backups, perimeter firewall, security updates).

The website is hosted on Infomaniak Network SA (Geneva, Switzerland) infrastructure, a Swiss provider that applies the FADP. Contact form data is stored on servers located in Switzerland.

5. Disclosure and international transfers

Data is not sold to third parties for commercial purposes. It may be disclosed to:

  • Firm personnel authorised to process it (lawyers, notaries, staff bound by professional secrecy).
  • Technical service providers acting as data processors for the Firm: Infomaniak (hosting), Google LLC (Google Analytics 4, only with the user's explicit consent).
  • Judicial or administrative authorities in cases provided for by law.

Google Analytics 4 involves a transfer of data to the United States, covered by the EU-US Data Privacy Framework or by Standard Contractual Clauses. The user's IP is anonymised before being sent to Google's servers.

6. Retention period

  • Contact requests: kept for a maximum of 24 months from receipt, unless the request leads to a professional mandate (in which case the data is added to the client file and follows the mandate's retention rules).
  • Technical log data: retained for 30 days for security purposes and then automatically deleted.
  • Google Analytics data: retained according to the controller's settings (14 months by default).
  • Proof of consent: kept for as long as required by applicable regulations.

7. Rights of the data subject

You have the right at any time to:

  • Access your personal data and obtain a copy (art. 25 FADP, art. 15 GDPR)
  • Obtain rectification of inaccurate data (art. 32 FADP, art. 16 GDPR)
  • Request deletion of data that is no longer necessary (art. 32 FADP, art. 17 GDPR)
  • Request restriction of processing (art. 18 GDPR)
  • Object to processing (art. 21 GDPR)
  • Request data portability (art. 20 GDPR)
  • Withdraw consent to analytics cookies at any time, with future effect

To exercise these rights, please write to info@haablegal.ch. We will respond within 30 days.

If you believe the processing is unlawful, you may file a complaint with the Federal Data Protection and Information Commissioner (FDPIC) at www.edoeb.admin.ch or, if you are resident in the European Union, with the supervisory authority of your country.

8. Cookies

The site uses:

  • Technical and functional cookies necessary for operation (session, language preference, load balancer security cookie). No consent required.
  • Google Analytics 4 analytics cookies with anonymised IP. Installed only after the user's explicit consent through the banner shown on first visit.

You can change your choice by clearing the browser's cookies and reloading the site.

9. Changes to this notice

This notice may be updated to reflect new regulations or changes in the services offered. Previous versions are available on request at info@haablegal.ch. The last update date is shown at the bottom.

10. Contact

For any question or request about the protection of your data:

  • Email: info@haablegal.ch
  • Phone: +41 91 913 30 70
  • Post: Haab Law Firm and Notary Office, Via Ludovico Ariosto 5, 6900 Lugano, Switzerland

Ultimo aggiornamento: 20 April 2026

Call
Email