Last updated: 01 May 2026.
1. Scope and purpose
Helveteq AG complies with the revised Swiss Federal Act on Data Protection (revFADP, in force 1 September 2023).
This Privacy Policy explains how Helveteq collects, processes and protects personal data in connection with website usage at helveteq.com and its sub-domains. The policy applies exclusively to personal data processed during website operation. It does not cover personal data processed in the context of contractual relationships, client onboarding, Know-Your-Customer (KYC) or anti-money-laundering (AML) procedures, which have separate legal frameworks.
2. Data controller
Helveteq AG, 8808 Pfäffikon SZ, Switzerland
Phone: +41 41 554 50 99
Email:
3. Personal data collected
3.1 Data provided by you
Voluntarily provided information may include:
- Name
- Professional role or affiliation
- Contact details (email address or telephone number)
- Message content
Providing such data is entirely voluntary.
3.2 Data collected automatically
Automatically collected data for technical and security purposes includes:
- IP address
- Date and time of access
- Browser type and version
- Operating system
- Pages visited and website interaction
4. Purposes of processing
Personal data processing serves these purposes:
- Operating, maintaining and securing the website
- Responding to inquiries and communications
- Improving website functionality, content and user experience
- Analysing website usage, with your consent, to understand and improve the site
- Complying with legal and regulatory obligations
Helveteq does not use website data to provide personalised investment advice or recommendations.
5. Legal basis for processing
Each processing purpose has its own legal basis:
- Operating, maintaining and securing the website · legitimate interest
- Responding to inquiries and communications · pre-contractual measures and legitimate interest
- Improving website functionality, content and user experience · legitimate interest
- Marketing communications · consent
- Website usage analysis · consent
- Compliance with legal and regulatory obligations · legal obligation
6. Marketing communications
Marketing communications may only be sent if you have explicitly requested them, subscribed to such communications, or if there is an existing business relationship and applicable law permits. Consent may be withdrawn or objected to at any time.
7. Cookies and similar technologies
The website uses cookies and similar technologies for functionality, security and — only with your consent — analytics.
Cookie types include:
- Functional cookies necessary for website operation
- Security cookies protecting against malicious activity
- Analytics cookies (Google Analytics 4) that measure website usage. They are set only if you accept via the cookie banner, and are not used if you decline.
Functional and security cookies are strictly necessary and do not require consent. Analytics cookies are set only with your prior consent, requested through the cookie banner on your first visit and enforced via Google Consent Mode; until you accept, no analytics cookies are stored and no usage data is collected. You can withdraw consent at any time by clearing this site's data in your browser.
8. Data sharing
Personal data may be shared with trusted third parties only to the extent necessary for the purposes described in this Privacy Policy, including:
- IT service providers and hosting providers
- Professional advisers where legally required
Specific recipients include:
- green.ch AG (Switzerland), website hosting and delivery. Data is hosted in Switzerland.
- Google Ireland Ltd. / Google LLC (European Union / United States), website analytics (Google Analytics 4), only where you have given consent. Transfer safeguarded by Standard Contractual Clauses and the EU–US Data Privacy Framework; IP addresses are truncated/anonymised by Google.
- HubSpot Ireland Ltd. (European Union), CRM and meeting scheduling. If you book a call via a HubSpot scheduling link or send us a product brief, HubSpot processes the contact details you provide. Safeguarded by Standard Contractual Clauses and the EU–US Data Privacy Framework where applicable.
- Microsoft Ireland Operations Ltd. / Microsoft Corporation (European Union / United States), email hosting (Microsoft 365) for messages you send to Helveteq. Transfer safeguarded by Standard Contractual Clauses and the EU–US Data Privacy Framework.
Typography is self-hosted; no third-party font CDN is loaded.
Third parties process data only upon instruction and under confidentiality obligations. Helveteq does not sell personal data.
9. International data transfers
Personal data may be processed or stored internationally where necessary for website operation or service-provider use. International transfers include appropriate safeguards, including adequacy decisions or standard contractual clauses, in accordance with applicable data-protection laws.
10. Data security
Helveteq implements technical and organisational measures for data protection. However, no data transmission over the internet can be guaranteed to be fully secure. Users access the website at their own risk.
11. Data retention
Personal data is retained only for as long as necessary to fulfil the purposes described in this Privacy Policy or as required by applicable law. Specific retention periods:
- Server logs · 90 days
- Contact-form data · 24 months from last contact
- Newsletter subscription data · until withdrawal
- Analytics data (with consent) · retained by Google Analytics for up to 14 months
Website technical data is generally retained for limited periods unless longer retention is required for security, legal or regulatory reasons.
12. Your rights
Subject to applicable law, you may:
- Request access to personal data held about you
- Request correction or deletion of personal data
- Object to or restrict certain processing activities
- Withdraw consent where processing is consent-based
- Request data portability where applicable
Requests should be submitted to . Identity verification may be required.
You also have the right to lodge a complaint with the supervisory authority. In Switzerland, this is the Federal Data Protection and Information Commissioner (FDPIC), Feldeggweg 1, CH-3003 Bern, www.edoeb.admin.ch.
13. Automated decision-making
Helveteq does not engage in automated decision-making, including profiling, that produces legal effects on data subjects.
14. Children's data
The site is not directed at minors and Helveteq does not knowingly collect data from minors.
15. Links to third-party websites
The website may contain links to third-party sites. Helveteq is not responsible for their privacy practices or content. Users should review third-party privacy policies before providing personal data.
16. Changes to this Privacy Policy
Helveteq may update this Privacy Policy to reflect legal, technical or operational changes. Updates are published on the website, and continued use of the website after such updates constitutes acknowledgement of the revised Privacy Policy.
17. Contact
For questions regarding this Privacy Policy or personal data processing: (data-protection contact) or .