Privacy Policy

This privacy policy governs the handling of personal data by Pourtex GmbH, Zentralstrasse 21, 8610 Uster, as part of the use of the Lagutta POS system.

We place great importance on protecting your personal data and handle all Data in accordance with applicable Swiss data protection laws, in particular the Federal Act on Data Protection (FADP), and the EU General Data Protection Regulation (GDPR), where applicable.  

Who is responsible for processing the personal data?

Pourtex GmbH, Zentralstrasse 21, 8610 Uster, info@lagutta.com, is responsible for the data processing described in this privacy policy. We are available at this address for your data protection concerns and for exercising your rights.

Which personal data do we process?

We only collect personal data to the extent necessary to provide our services effectively.

If we process personal data provided by you about other individuals, such as your customers or employees, we assume that you have obtained the necessary consent and that the data is accurate. Please also ensure that these individuals are informed about the content of this privacy policy.

Below, we explain the main types of data we process:

• • Account and Registration Data: To use our services, you need to create a user account. During registration, we collect necessary data such as your username, password (saved encrypted, not accessible by us), name, company details, address, phone number, and email to establish and manage our contractual relationship.
  • Operational and Content Data: This includes any information you create, upload, or generate while using our services, such as data related to your own activity, your employees, and your customers. Specifically, information about your customers may include their name, phone number, email, physical address, and other data. Similarly, information about your employees may include their name, email, phone number, physical address, and other data.
  • Contract, Transaction, and Payment Data: This includes all data related to the establishment and execution of the contract, such as service details, payments, and reminders. We also collect payment and billing information to process transactions when you subscribe to one of our subscription plans, after the trial phase has ended.
  • Communication and Support Data: Regardless of the channel through which you contact us (e.g., email, phone, or chat), we collect and store data that arises during communication. This data helps us process your support request, resolve issues efficiently, and maintain service quality. For example, this includes contact details and other relevant metadata.
  • Technical and Access Data: When you access our website, Lagutta app, or Lagutta Back Office, we collect technical information such as your device’s IP address, browser type, operating system, language preferences, and timestamps. We also log certain system usage data to ensure the functionality, security, and reliability of our services, and to enhance the user experience.
  • Cookies and Tracking Data: We and our IT Service providers use cookies and similar tracking technologies to gather information about your interactions with our website. Cookies help us personalize your experiences, save login information, and track service usage.

Why do we process your personal data?

We collect and process your personal data only when we have a legal basis to do so, in compliance with applicable laws. The legal grounds for processing depend on the services you use and how you use them. If you have given consent for a specific purpose, you can withdraw it at any time; however, this will not affect any data processing that has already occurred.

We process your personal data for the following purposes:

• • To establish and fulfill our contractual relationship with you, manage communication, operate our services, handle billing, and analyze our customer base.
  • To enable the use of our services, including providing customer support, personalized features, and ensuring the security of the services.
  • To display historical sales information.
  • To measure, adapt, and improve our services and develop new products.
  • To send you important communications such as service updates, support messages, technical notices, security alerts, and any other requested information.
  • To detect and prevent fraudulent activities, unauthorized access, and other illegal actions.
  • For legitimate business interests, such as conducting research and development, marketing our services, and protecting our legal rights and interests.
  • To comply with legal obligations.
  • When you have provided consent for a specific purpose.

Where is your data stored and processed?

We store and process your data using external providers to ensure the security and performance of our services. All data related to Lagutta POS and Lagutta Back Office is securely stored on Microsoft Azure servers, located exclusively in Switzerland. Our website, lagutta.com, is hosted on servers provided by Hostinger, which are located in France.

Who do we share your data with?

We do not share personal data with third parties unless required by law, necessary to process payments via third-party providers, or to protect our legitimate interests. Additionally, we may share data with trusted service providers essential for hosting and operating Lagutta POS, Lagutta Back Office, and our website.

In particular, your personal data may be shared with the following categories of recipients:

• • Authorities: We may disclose personal data to authorities, courts, and other public bodies, both domestically and internationally, when we are legally obligated or entitled to do so. This may include instances such as criminal investigations, police actions, regulatory requirements, court proceedings, and other legal obligations related to disclosures and cooperation.
  • Service Providers: We work with both domestic and international service providers that store and process data on our behalf, such as IT service providers. This includes Microsoft Azure and Hostinger, as noted in the earlier section on data processing and storage, to ensure the functionality, security, and performance of our services.

How is your data protected?

We take appropriate security measures to safeguard the confidentiality, integrity, and availability of your personal data. These measures are designed to protect against unauthorized processing and reduce the risk of data loss, alteration, or unauthorized access.

All data is securely stored using Microsoft Azure, which holds ISO 27001 certification, ensuring compliance with high security standards. Data transmitted over the internet is protected by industry-standard TLS encryption (HTTPS), and all content data is stored on secure servers in Switzerland.

How long do we retain your data?

We retain personal data only as long as necessary to fulfill the purpose for which it was collected or as required by applicable retention laws.

Even after your account is terminated, we may retain copies of information about you and any transactions or services you participated in for a period as required by applicable laws.

What are your data protection rights?

To give you control over the processing of your personal data, you have the following rights under applicable data protection law:

• • Right to request information from us about whether personal data concerning you is being processed.
  • The right to request the correction of inaccurate data.
  • The right to request the deletion of data.
  • The right to request that we provide certain personal data in a commonly used electronic format or transfer it to another party.
  • The right to withdraw consent if our processing is based on your consent.

If you wish to exercise your rights, please contact us via email. To prevent misuse, we will need to verify your identity.

Please note that your rights are subject to certain conditions, exemptions, or restrictions under applicable data protection laws. We will notify you if necessary. In some cases, we may need to process and retain your data to fulfil contractual obligations, protect our legitimate interests (such as legal claims), or comply with legal requirements.

How do we use cookies?

We use cookies to ensure smooth navigation and to support essential website functions. “Necessary” cookies are stored in your browser to enable basic site features. We also use third-party cookies to analyze your usage, store preferences, and provide relevant content. These cookies are only stored with your consent. You can choose to enable or disable some or all cookies, though disabling certain cookies may impact your browsing experience.

Can we update this privacy policy?

We may update this privacy policy from time to time. Significant changes will be communicated to you at least one month before they take effect. If you do not agree with the changes, you have the right to discontinue using our services before the updated policy becomes effective.

This privacy policy is available in both English and German. In the event of any discrepancies between the two versions, the German version shall prevail.

Current version: September 2024