Skip to Content

Privacy Policy

HubMed Technologies GmBh


At HubMed Technologies GmbH, privacy is a priority and we attach great importance to adequate data protection.

In this privacy policy, we inform you about the most important aspects of data processing in connection with our services and your visit to our website.

The following data protection declaration provides an overview of the collection and processing of your personal data and informs you transparently about:

  • The type of personal data we collect and process;

  • The purpose and legal basis on which we process your personal data;

  • Who may receive your data;

  • What rights you have in connection with such processing.

The terms used in this privacy policy are derived from the GDPR but are equivalent to the Swiss terms under the Federal Act on Data Protection (FADP).


Key Definitions

  • “Personal data”: All information relating to a specific or identifiable person (e.g., name, address, location data, IP address).
  • “Sensitive personal data”: Religious, ideological, political, or trade union opinions or activities; data concerning health, privacy, or racial origin; social welfare measures; administrative or criminal proceedings or sanctions.
  • “Processing”: Any operation performed on personal data, such as collection, storage, use, or erasure.


1. Controller

The controller in the sense of data protection legislation is HubMed Technologies GmbH, the company with which you have a business relationship or whose website you are visiting.

If you have any questions or comments on data protection or the processing of personal data, please contact our Data Protection Officer:


2. Collection and Further Processing of Personal Data

Website Use for Informational Purposes

If you use our website for informational purposes only, we collect data that your browser transmits to our server, which is technically necessary for security and stability:

  • IP address and domain;

  • Date and time of the visit;

  • Browser and operating system used;

  • Technical information (HTTP method, version, and status code).

Business Relationships

When entering into a business relationship, we collect:

  • Personal data (name, ID, date of birth, compliance documents);

  • Identifiers (customer, contract, or account numbers);

  • Financial information (payment and transaction records);

  • Interactions regarding the products and services you use.

Failure to provide certain personal data may make it impossible to provide the relevant services or enter into a contract. We will usually indicate when the personal data we request is mandatory.


3. Purpose and Legal Basis of Data Processing

In accordance with applicable data protection laws, we may process personal data in particular for the following purposes:

  • Provision of services and fulfillment of contracts;

  • Maintenance of business relationships and marketing;

  • Administration and maintenance of our digital infrastructure;

  • Compliance with legal and regulatory requirements;

  • Statistical purposes and analysis of website offerings.

We process your personal data in accordance with applicable data protection legislation. In principle, we process data because this is necessary for the initiation, execution and completion of the contractual relationship or because we or third parties have a legitimate interest in pursuing the associated objectives and being able to implement corresponding measures. Our legitimate interests also include compliance with legal provisions.

In principle, we will only use your personal data in accordance with the applicable data protection laws and only as described in this privacy policy. However, we reserve the right to  use your data for other purposes, to the extent permitted by law. In such a case, we will inform  you of this further data processing to the extent required by law.


4. Recipients of Personal Data

We ensure that only authorized personnel have access to your data. We may disclose your data to:

  • Processors and service providers (e.g., IT and cloud suppliers);

  • Business partners (e.g., lawyers, auditors);

  • Public bodies and authorities where legally required.

We select our partners and processors carefully and only if we are sure that they have appropriate technical and organizational measures in place that meet the legal requirements. Our processors may process your personal data only on our documented instructions. They are all subject to a duty of confidentiality and may only use your personal data to the extent necessary to achieve the purpose for which it was collected, unless this is required by law.

  • Registered Office: Via Lucino 28, 6932 Breganzona.
  • Operations: Co-working @ Regus, Via 1° Maggio, Lugano.


5. Transfer of Personal Data Abroad

Personal data is primarily processed in the European Economic Area (EEA) or in Switzerland.

If, in individual cases, we transfer your personal data to a country without an adequate level of data protection, we will ensure the protection of your data in an appropriate manner. We ensure adequate data protection by providing appropriate guarantees, such as contractual guarantees based on the EU Standard Contractual Clauses (SCCs), recognized by the Federal Data Protection and Information Commissioner (FDPIC), or the EU-U.S. Data Privacy Framework.


6. Data Retention

We retain personal data for as long as necessary to fulfill the purposes for which it was collected.

In addition, we retain personal data relating to the provision of our services or otherwise to a contract or business relationship for the duration of the contractual relationship and for a period of 10 years after termination of the contractual relationship. In some cases, a longer statutory retention period applies for reasons of proof or if there is another valid reason for an exception based on applicable laws or regulations.

We will store your email address and, if applicable, your name and telephone number in order to answer your questions. We delete the data when it is no longer needed, or restrict processing in the event of statutory retention obligations.

Data relating to contracts is typically retained for 10 years after the termination of the relationship for evidentiary reasons.


7. Your Rights

Under applicable data protection law, you have the following rights:

  • Right of access and rectification;

  • Right to erasure ("Right to be forgotten");

  • Right to object to or restrict processing;

  • Right to data portability;

  • Right to withdraw consent at any time.

To assert these rights, contact: privacy@hubmed.ch

You also have the right to lodge a complaint with a supervisory authority against our processing of your personal data.

In certain circumstances, we may process your personal data by means of automated individual decision-making (including profiling). In the event of automated individual decision- making, you will be informed accordingly. In this case, information will be provided on the applicable criteria and procedures. You may request that a natural person review the decision in question if that decision is based solely on such processing.


8. Security Measures

We take technical and organizational security measures in accordance with the current state of the art to protect your personal data from access, manipulation, loss, destruction or disclosure of personal data.

Technical security measures include, for example, access restrictions, encryption and pseudonymization of personal data and logging. Organizational measures include internal data protection instructions and controls. All our processors are also required to take appropriate technical and organizational security measures.


9. Use of Cookies

HubMed Technologies GmBh uses cookies to make the web offer more interesting and user-friendly. Cookies are small text files that are downloaded to your device but do not contain viruses and do not cause any damage. Our website uses “session cookies”. These cookies track the user’s movements between the various pages of our website during a session (English: “Session”), so that, for example, the same information is not requested that the user has already provided on our website. When the browser is closed and reopened, a new user session is started with a new cookie ID.

So-called “Global Cookies” are also used, which measure website traffic and identify visitors and the session. These cookies are therefore not deleted with the session, but are replaced after one year.

In the cookie settings (available at the bottom of each page or from the cookie banner when you first visit the page) you can choose between three levels of setting the “Global cookies” (on that page you can also find a complete overview of all cookies connected to us).

The levels are:

  • Necessary cookies: Necessary cookies enable basic functions such as filling out forms or recognizing SPAM.
  • Functional cookies: Functional cookies enable the linking of external content on our pages, such as the insertion of YouTube videos, Facebook posts or the current price of our shares.
  • Marketing cookies: In this case, cookies and web beacons (an image usually 1x1 pixel in size loaded by the server when a user calls up a website) are used to enable personalization, advertising and so-called re-targeting by communicating with pages external to those offered on our site (e.g. platforms such as LinkedIn, Twitter, Facebook, DoubleClick or Bing). Furthermore, these cookies enable the transmission of so-called clickstreams to the sales office. For more information, see the sections “Integrated content” and “Internet advertising”.

The legal basis for the use of “session cookies” and necessary cookies is our legitimate interest in accordance with applicable data protection laws. The legal basis for the use of functional and marketing cookies is your consent in accordance with applicable data protection laws.

You can completely prevent the storage of cookies by using the corresponding settings in your browser. However, in order to be able to use all the features of our website, we recommend that you do not change these settings.


10. Social Media

HubMed is present on LinkedIn. Please refer to the LinkedIn privacy policy for information on their data collection and usage practices.


11. Odoo Functionality

This website uses Odoo for live chat and support. Data is processed based on our legitimate interest in supporting website visitors effectively.


12. Email Newsletter & Direct Marketing

If you subscribe to our newsletter, we will regularly send you information about our offers. The only mandatory data for sending the newsletter is your e-mail address. The provision of further data is voluntary and serves to be able to contact you personally. We use the so-called double opt-in procedure to send newsletters, which ensures that you will only receive newsletters if you have expressly confirmed your consent to receive the newsletter by clicking on a verification link sent to the email address provided.

By activating the confirmation link, you give us your consent to use your personal data in accordance with the applicable data protection laws. We store the IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration, in order to be able to trace any misuse of your email address later. The data collected when registering for the newsletter will be used exclusively for the intended purpose.

You can unsubscribe from the newsletter at any time via the link provided in the newsletter or by sending a message to the controller named at the beginning. Once you unsubscribe, your email address will be deleted from our newsletter mailing list immediately, unless you have expressly consented to further use of your data or we reserve the right to use the data beyond what is permitted by law and about which we inform you in this declaration.


13. Web Analysis & Advertising Services

  • Google Tag Manager: A service that bundles web applications. It only processes data if you have given express consent via the Cookie Consent Manager.

  • Meta Pixel: Used to track the success of ads on Facebook/Instagram and to display ads to specific target groups (Custom Audiences).

  • Google Ads & Remarketing: Enables interest-based advertising and conversion tracking to measure the success of individual advertising measures.

  • LinkedIn Insights & Microsoft Advertising: Used for retargeting and personalized advertising based on pseudonymous behavioral analysis.


14. Links to Other Websites

Our website may contain links to external websites. At the time of creating these links, HubMed Technologies GmBh was not aware of any illegal content on the linked sites. However, HubMed Technologies GmBh cannot guarantee continuous monitoring and has no influence on the content of the linked sites. No liability is accepted for the content displayed after the creation of such links.


15. Contact Information

  • Forms/Email: Data provided via forms is treated confidentially and used only to process your request.

  • General Privacy Inquiries via e-mail: privacy@hubmed.ch


16. Changes to this Privacy Policy

HubMed Technologies GmbH reserves the right to adapt this policy at any time to ensure ongoing compliance with legal provisions.


Version 1.0 / Last Updated on 24.04.2026