Privacy policy website

A) General information

PETERER Rechtsanwälte Notare AG (hereinafter also “we, “us”) obtains and processes personal data relating to you or also to other persons (e.g. work colleagues, family members; “third parties”). The term “data” is equated with “personal data”.

In this privacy statement, we describe how we process your data when you use (hereinafter “website”), obtain our services, otherwise have a contractual relationship with us, communicate with us or otherwise deal with us. This privacy statement may be supplemented by other documents such as contractual terms or additional specific privacy statements.

If you provide us with data from third parties, we assume that you are authorised to do so and that this data is correct. By transmitting data from third parties, you confirm this and ensure that these third parties have been informed of this privacy policy. Our own obligations to provide information in accordance with the applicable laws on data protection remain unaffected by this.

The Swiss Federal Data Protection Act (“FADP”) and the Data Protection Ordinance (“DPO”) apply to the processing of your personal data. In some cases, for example if you access our website from a member state of the European Union (“EU”) or the European Economic Area (“EEA”), the EU General Data Protection Regulation (“GDPR”) and other national laws of your country may also apply. Where specific reference is made to an article of the GDPR, this refers exclusively to the processing of data of persons residing in the EU or the EEA.

B) Responsible

Responsible for the data processing of PETERER Rechtsanwälte Notare AG described in this privacy policy is, unless otherwise communicated:

PETERER Rechtsanwälte Notare AG (CHE-204.535.672)
Rosenbergstrasse 87
9000 St.Gallen

Tel.: +41 71 277 83 83

C) Categories of data processed

We primarily process personal data that you provide to us or that we collect when operating our website. We may also receive personal data from third parties. The personal data processed may come from the following categories:

  1. Technical data (cookie identifier, IP address, etc.);
  2. Communication data (telephone number, e-mail address, etc.);
  3. Master data (name, address, date of birth, etc.);
  4. Contract and mandate data;
  5. Behavioural and preference data (use of the website etc.).

D) Basis of the data processing

If we ask for your consent for certain processing (e.g. for the processing of particularly sensitive personal data), we will inform you separately about the corresponding purposes of the processing. You can revoke your consent at any time by sending an e-mail to  with effect for future processing.

Where we do not ask you for your consent, we base the processing of your personal data on the fact that the processing is necessary for the initiation or performance of a contract with you (pursuant to Art. 6 para. 1 lit. b GDPR) or the processing is necessary due to other legitimate interests of us or third parties and there is no reason to assume that you have an overriding interest in the non-processing (pursuant to Art. 6 para. 1 lit. f GDPR), in particular in order to pursue the purposes described below and to be able to implement corresponding measures.

If we receive particularly sensitive data, we may also process your data on the basis of other legal grounds, e.g. in the event of disputes due to the need for processing for any legal proceedings or the enforcement or defence of legal claims.

E) Purposes of data processing

We process your data in connection with communication with you and for the establishment, administration and processing of contractual relationships. In addition, we may process data for marketing purposes, to assert legal claims, to defend ourselves in legal disputes, for relationship management and market research as well as to comply with laws, directives and recommendations from authorities and internal regulations. The legal basis of the processing is Art. 6 para. 1 lit. f GDPR. If necessary and legally permissible, we process your data beyond the actual contractual purposes to fulfil legal obligations.

a) Use of our website

With regard to the use of our website, the following purposes of data processing arise in particular:

1. Log files

When visiting our website, we automatically record general technical visit information in so-called log files. The browser and versions used, the operating system used by the accessing system, the website from which an accessing system accesses our website, the sub-websites accessed on our website, the date and time of access to our website, the IP address of the device used to visit the website, the Internet service provider of the accessing system and other similar information that can be used to avert the risk of attacks on our systems may be recorded.

The collection and processing of these log files is carried out for the purpose of enabling the use of our website (connection establishment), to permanently guarantee and increase the security and stability of our systems, to enable the optimisation of our internet offer as well as for internal statistical purposes. The legal basis for the data processing is Art. 6 para. 1 lit. f GDPR.

2. E-mail contact

You can contact us by e-mail. We process the data collected in this way in order to check your enquiry, to contact you and, for example, to arrange an appointment. A communication of further information – in particular the contents of the communicated request – takes place in the case of general enquiries expressly on a voluntary basis and with your consent, Art. 6 para. 1 lit. a GDPR or in the case of (pre-)contractual enquiries on the basis of Art. 6 para. 1 lit. b GDPR. Insofar as this involves information on communication channels (e.g. e-mail address, telephone number), you also consent to us contacting you via this communication channel, if necessary, in order to answer your request. Your data that we have received in the course of contacting you will be deleted as soon as it is no longer required to achieve the purpose for which it was collected, your request has been fully processed and no further communication with you is necessary or desired by you. Please note that in the case of (pre-)contractual enquiries, legal retention obligations may arise for us and we may only be able to delete your data after these have expired.

3. Cookies

Cookies are small pieces of information that can be used to uniquely identify your browser and store further information such as user settings. When you visit our website, technically necessary cookies are automatically stored on your terminal device. Such cookies can help us to make your visit to the website easier, more pleasant and more meaningful. The legal basis for the processing is Art. 6 para. 1 lit. f GDPR. We use the following cookies:

  • Technically necessary cookies: These cookies are absolutely necessary for the functioning of our website and cannot be deactivated in our systems.
  • Functionality cookies: These cookies enable the provision of enhanced functionality and personalisation. They may be set by us or by third parties whose services we use on our website.
  • Analytics cookies: These cookies allow us to count visits and identify access sources to determine and improve the performance of our website.
  • Marketing cookies: These cookies and other tracking technologies allow us to show you personalised advertising.

You can set your browser to automatically block cookies in the respective browser settings. However, this may result in some areas of the website not functioning.

4. Tracking- und analysis tools

We use various technical systems, mainly from third-party providers such as Google Analytics or Mailchimp, to measure and evaluate the use of our website and our newsletter. We process the data collected in this way for the purpose of designing and continuously optimising our website and our newsletter. These tracking and analysis tools use cookies and similar technologies; please check the section on cookies for more information on their use on our website.

It is possible that third-party providers can draw conclusions about your identity from the data for their own purposes, create personal profiles and link this data to any user accounts of yours. If you consent to the use of the relevant services and their cookies, you explicitly agree to such processing, which may also include the transfer of personal data (in particular website and app usage data, device information and individual IDs) to the USA and other countries.

5. Profiles on social networks

We use social networks and have our own profiles, e.g. on LinkedIn. We use these profiles on social networks to share information about us, our offer and other news. We also use these profiles to communicate with you and third parties.

When you visit our profiles on social networks or interact with us, we receive data about you. We process this data for communication, marketing purposes and market research. We may further process content published by yourself. The legal basis for the processing is Art. 6 para. 1 lit. f GDPR. For further information on the processing by the operators of the platforms, please refer to the data protection notices of these platforms. There you will also find out in which countries they process your data, which rights of access, deletion and other data subjects you have and how you can exercise these or obtain further information.

We use plugins. When you click upon a link to one of our profiles on social networks, a direct connection is established between your browser and the server of the social network in question. This enables us to offer certain functions on the profiles.

b) Contractual relationships with customers, suppliers and other business partners

For the purpose of fulfilling our contractual obligations, we process inventory data (e.g. names and addresses as well as contact data), contractual data (e.g. services used, names of contact persons, payment information) of customers, suppliers and other business partners with regard to the best possible fulfilment of our contractual obligations and services pursuant to Art. 6 para. 1 lit. b GDPR as well as for invoicing and communication purposes.

F) Disclosure to third parties

We treat your personal data confidentially and only disclose it to those third parties who are listed in this privacy policy. This disclosure is made in connection with our contracts, the website, our services and products, our legal obligations or to protect our legitimate interests and the purposes set out in section E) above.

We use external service providers for various administrative activities. These external service providers may gain access to your personal data due to their activities, whereby they are contractually obliged to treat your personal data confidentially at all times. To this end, we have concluded contracts with them, where necessary, for the processing of your data.

We may disclose your personal data to the following recipients in particular:

  1. Accounting provider in connection with the keeping of accounts and the preparation and dispatch of invoices;
  2. Tax advisor, if this should be necessary for the preparation of the tax return;
  3. Banks and insurance companies, insofar as this is necessary in connection with our contracts;
  4. IT service companies that provide the software programs and services we use and administer the website and related matters (e.g. web hosters, newsletter providers, tracking and analysis tool providers);
  5. debt collection companies if we have to enforce our performance by way of debt collection;
  6. law firms, especially in the event of a dispute;
  7. Offices, courts and other authorities if we are legally obliged or entitled to do so or if this appears necessary to protect our interests.

We will only share your data with the listed third parties for these purposes if:

  • you have given your express consent in accordance with Art. 6 Para. 1 lit. a and, if applicable, Art. 9 para. 2 lit. a GDPR in the case of particularly sensitive data;
  • the transfer is necessary in accordance with Art. 6 para. 1 lit. b, and if applicable Art. 9 para. 2 lit. b GDPR for the establishment and implementation of a contractual relationship;
  • there is a legal obligation for the disclosure pursuant to Art. 6 para. 1 lit. c GDPR;

the disclosure is necessary in accordance with Art. 6 para. 1 lit. f GDPR to protect the legitimate interests of us and/or third parties and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure.

G) Data transfer and data transmission abroad

We are also entitled to transfer your personal data to companies abroad, provided that this is necessary for the purpose of data processing pursuant to section E) above. We disclose your personal data to the following countries and regions: EU, EEA, USA. If the country in question is outside Switzerland, the EU or the EEA and no appropriate legal data protection is ensured, we contractually oblige the recipient to comply with the applicable data protection. For this purpose, we use the standard contractual clauses of the European Commission, which can be accessed here

H) Your rights

You have the right to assert your data protection rights at any time and to receive information on request as to whether any data is being processed by us. You also have the right to demand that we return the data you have provided to us in a common format (right to data portability). The legal basis for this is Art. 15 para. 3 GDPR. Upon request, we will also pass on the data to a third party of your choice.

In addition, you have the right to correct incorrect data and, within the scope of the GDPR, to complete your data, as well as the right to have your personal data deleted at any time, insofar as this does not conflict with a legal obligation to retain the data or an authorisation that allows us to process the data. In accordance with Art. 18 GDPR, you have the right to request the restriction of the processing of your data.

Data processing may be objected to on grounds relating to the specific situation of the data subjects. This general right of objection applies to all processing purposes described in this data protection declaration that are processed on the basis of our legitimate interest. If we process your data for the purpose of direct marketing, you have the right to object at any time in accordance with Art. 21 para. 2 GDPR.  

Furthermore, you have the right to enforce your claims in court or to file a complaint with the competent data protection authority regarding the processing of your personal data. You can do this with the data protection authority at your place of residence, place of work or the place of the alleged data protection breach. The competent data protection authority for Switzerland is the Federal Data Protection and Information Commissioner (

In the case of data processing procedures to which you have consented, you can revoke the consent given for the processing of personal data at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

You can reach us for the aforementioned purposes via the e-mail address . In order to process your applications, we may require appropriate proof of your identity.

I) Data security

We use appropriate technical and organisational security measures to protect your personal data stored by us against accidental, unlawful or unauthorised manipulation, deletion, alteration, disclosure or use, partial or complete loss and against unauthorised disclosure or access by third parties. Our security measures are continuously adapted and improved in accordance with technological developments. We assume no liability for the loss of data or their knowledge and use by third parties.

We also take internal data protection very seriously. Our employees and the service companies commissioned by us have been obliged by us to maintain confidentiality and to comply with the provisions of applicable data protection law.

J) Duration of data retention

We only keep your personal data for as long as is necessary legally or according to the processing purpose. In the case of analyses, we store your data until the analysis is completed. We retain contractual data for longer, namely at least as long as the contractual relationship exists and no longer than the limitation periods for possible claims by us or statutory or contractual retention obligations. Retention obligations that oblige us to retain data result from accounting regulations and tax regulations. According to these regulations, business communication, contracts and accounting documents must be retained for up to 10 years. As far as we no longer need this data to perform the services for you, the data will be blocked. This means that the data may then only be used for accounting and tax purposes.

K) Topicality and changes

We reserve the right to update and adapt this privacy policy at any time without prior notice. The current version published on our website shall apply at all times. We therefore recommend that you visit our website regularly to find out about any updates that may have been made.

PETERER Rechtsanwälte Notare AG, September 2023