Responsible data handling, designed for online businesses operating in Switzerland and internationally.

General Information

NetzTopLaw provides legal advisory services for online businesses from our office at Rue de Lausanne 63, 1202 Geneva, Switzerland. This privacy policy explains what personal data we process, why we process it, how long we retain it, and the measures we take to protect it. We aim to be transparent and practical — explaining legal requirements in clear terms so you can make informed decisions about using our services. Our business identification: CHE-326.988.118. For specific questions, contact us at +41763687976 or via the contact details below.

2026-04-15 NetzTopLaw, Rue de Lausanne 63, 1202 Geneva, Switzerland — Business ID CHE-326.988.118 Rue de Lausanne 63, 1202 Geneva, Switzerland [email protected]
01

Definitions

To make this policy clear, we define key terms used throughout. These definitions explain how we refer to data subjects, personal data, processing activities and the services we provide. Understanding these terms will help you identify which provisions apply to you as a client, visitor, or supplier.

Personal data means any information relating to an identified or identifiable natural person, such as name, email address, telephone number, billing address, or identifiers assigned by our systems. We process only the personal data necessary to deliver our advisory services and meet legal obligations. Processing refers to any operation performed on personal data, including collection, storage, use, disclosure, archiving, and deletion. Processing activities at NetzTopLaw are limited to what is necessary for the purposes set out in this policy. User refers to any individual who interacts with NetzTopLaw, including prospective or current clients, newsletter subscribers, site visitors and third-party contacts. Where relevant, we distinguish between clients (engaged under an agreement) and visitors (using the public website). Service describes the legal advisory, document drafting, compliance reviews, and consultancy offered by NetzTopLaw to online businesses, including remote consultations and delivery of digital documents. Cookies are small text files placed on a device by a website to store preferences, session identifiers, or analytics data. We use cookies to improve usability, measure traffic and support essential website functions.
02

Data We Collect

We collect data from multiple sources to provide and improve our services. Below we list the primary categories of data, how they are obtained, and the purpose for collection. We aim to minimize what we collect and retain only what is necessary.

Data You Provide Directly

When you engage our services, contact us, or sign up for communications, we collect information you provide voluntarily. This enables us to perform contractual obligations and respond to inquiries.

  • Contact details: full name, company name, billing and postal address, email address, telephone number.
  • Contract data: engagement letters, service preferences, signed agreements and payment information needed to process invoices.
  • Communications: messages platform with legal advisors, support requests, and records of calls or meetings where agreed.
  • Business data: corporate identifiers, VAT or Business ID, domain names and details necessary for providing business-specific legal advice.
  • Marketing preferences: subscription choices for newsletters and event invitations.
  • Optional supplemental documentation: identification or verification documents when required by law or for payment processing.

Automatically Collected Data

Some information is collected automatically when you visit our website or use online services. This data helps us maintain operations, analyze usage patterns, and secure our systems.

  • Technical data such as IP address, browser type and version, device model and operating system.
  • Usage data including visited pages, time spent on site, click paths and referral sources.
  • Cookie and tracking identifiers used for session management and analytics.
  • Security logs and system performance metrics used to detect and contribute incidents.
  • Aggregated and anonymized statistics that do not identify individuals.
  • Geolocation data inferred from IP addresses for fraud prevention and localization of content.

Data from Third Parties

In some cases we receive data from partners or public registers to verify information, improve service delivery, or fulfill legal duties. We ensure third-party sources meet appropriate data protection standards.

  • Payment providers: transaction confirmations and limited billing metadata to reconcile invoices.
  • Professional directories and public registries: company identifiers and publicly available contact information.
  • Trusted analytics providers that supply aggregated reports on site performance.
03

Purposes of Processing

We process personal data only for lawful, explicit purposes. Below are the main purposes and corresponding processing activities that enable us to serve clients and maintain our services.

  • Perform and manage legal advisory services, including drafting legal documents and providing tailored advice.
  • Communicate with clients and prospects for service delivery, scheduling, and follow-ups.
  • Billing, accounting and fraud prevention related to client engagements and payments.
  • Maintain and improve our website and digital services through performance monitoring and analytics.
  • Comply with legal obligations such as anti-funds laundering checks, tax reporting, and regulatory requests.
  • Provide relevant business updates and marketing communications to subscribers who opted in.
  • Detect and respond to security incidents, abuse, or legal claims affecting our services.
  • Conduct internal recordkeeping and business administration required to operate NetzTopLaw effectively.

Legal Basis for Processing

We rely on appropriate legal bases to process personal data. The applicable basis depends on the processing purpose and the role of the individual (client, prospect, supplier, visitor).

  • Performance of a contract: processing is necessary to provide legal services and fulfill contractual obligations.
  • Legal compliance: processing is necessary to comply with statutory duties such as tax law and anti-funds laundering rules.
  • Legitimate interests: processing for security, fraud prevention and improving services where such interests are balanced against individual rights.
  • Consent: where required (for example, certain marketing communications or non-essential cookies), we rely on clear consent which may be withdrawn at any time.

Data Protection and Your Rights

Although NetzTopLaw is established in Switzerland, we respect the principles of the EU General Data Protection Regulation (GDPR) for clients and visitors from the European Economic Area. We provide information about rights and mechanisms available under GDPR and applicable Swiss data protection laws.

  • Right of access: you may request confirmation of whether we process your personal data and obtain a copy of that data.
  • Right to rectification: you can request correction of inaccurate or incomplete personal data we hold.
  • Right to erasure: in certain circumstances you may request deletion of your personal data when it is no longer necessary for the purposes collected.
  • Right to restriction of processing: you may ask us to limit processing where accuracy is contested or processing is unlawful.
  • Right to data portability: where processing is based on consent or contract and is automated, you may request a machine-readable copy of your data.
  • Right to object: you may object to processing based on legitimate interests or direct marketing; we will assess and respond in accordance with law.
04

Cookies and Similar Technologies

Our website uses cookies and similar technologies to provide essential functionality, measure performance and support user preferences. You can manage cookie settings at any time via our cookie banner or your browser.

We use session cookies for core site functions, persistent cookies for remembering preferences, and third-party cookies for analytics and performance measurement. None of our non-essential cookies are used to infer sensitive personal data.

Cookie categories include: strictly necessary (site operation), preferences (language, display), analytics (visitor statistics), and marketing (where applicable, based on consent).

You can manage cookie preferences through the cookie banner on first visit or change settings in your browser. Disabling non-essential cookies may limit certain features of our website.

View our detailed Cookie Policy

Sharing and Disclosure of Data

We share personal data only with parties necessary to deliver our services or where required by law. Before sharing, we assess the need and implement contractual safeguards or technical protections.

  • Service providers: trusted processors such as accounting platforms, payment processors and secure cloud storage providers, bound by data processing agreements.
  • Legal and regulatory authorities when required by law or to respond to lawful requests.
  • Professional advisors and auditors who assist with compliance and quality assurance under strict confidentiality.
  • Third parties in connection with a business reorganization, sale or transfer of assets, subject to appropriate safeguards and notice.
  • With explicit consent from you for other limited disclosures not covered above.
  • Aggregated or anonymized information that does not identify individuals may be shared publicly for research or business insights.

International Data Transfers

Where data is transferred outside Switzerland or the EEA, we ensure appropriate safeguards are in place. Transfers occur only when necessary for service delivery or legal compliance and are governed by contractual protections.

Safeguards include standard contractual clauses, binding corporate rules for intra-group transfers, or reliance on jurisdictions with adequate protection where available. We document transfer mechanisms and assess risks to data subjects.

Data Retention

We retain personal data only for the period necessary to fulfill the purpose of processing, comply with legal obligations, and resolve disputes. Retention periods vary according to the data type and legal requirements.

Account and client records are retained for as long as the engagement is active and for a period afterward as required by Swiss accounting and professional regulations, typically up to 10 years for business records where applicable.

Communications and correspondence are kept for a period necessary to provide services and to address any follow-up queries or legal matters, usually not less than 2 years after the end of engagement unless longer retention is justified.

Security and system logs are retained for a limited period to support incident response and system maintenance, generally not exceeding 12 months unless required for contribute.

When retention periods expire, personal data is securely deleted or anonymized. If deletion is prevented by legal requirements, the data will be isolated and access restricted until deletion is permitted.

Security Measures

NetzTopLaw applies technical and organizational measures to protect personal data against unauthorized access, loss, alteration and unlawful disclosure. Our measures are proportionate to the risk and reviewed periodically to ensure continued effectiveness.

  • Encryption of data in transit using TLS and encryption for stored sensitive records where appropriate.
  • Access controls, role-based permissions and multi-factor authentication for administrative accounts.
  • Regular backups, vulnerability assessments and incident response procedures to detect and address security events promptly.
05

Your Rights

You may exercise your data subject rights by contacting us. We respond to verified requests in accordance with applicable law and attempt to resolve concerns promptly and transparently.

  • To access, correct or request deletion of your personal data, contact us using the details below. We will verify identity before fulfilling requests.
  • To withdraw consent to processing (where processing is based on consent) or to object to processing based on legitimate interests, submit a clear request and we will assess and comply where applicable.
  • To lodge a complaint with a competent supervisory authority if you believe your rights under applicable data protection law have been violated. For Switzerland, you may contact the Federal Data Protection and Information Commissioner (FDPIC).
  • Request correction of inaccurate or incomplete personal data related to your account or legal matter handling.
  • Request restriction of processing where you contest accuracy, the processing is unlawful, or NetzTopLaw no longer needs the data for the original purpose.
  • Object to processing based on legitimate interests or direct marketing; NetzTopLaw will review and respond in line with applicable law.
  • Withdraw consent at any time for processing that relied on your prior consent, without affecting processing carried out before withdrawal.
  • Lodge a complaint with the competent Swiss supervisory authority if you consider your rights under data protection law have been infringed.

How to exercise your privacy rights

To exercise any of your privacy rights, contact NetzTopLaw with a clear description of the request. Provide a copy of an identity document or other information necessary to verify your identity. Requests are handled securely and treated in accordance with Swiss data protection laws and our internal procedures.

[email protected]

We aim to respond to verified requests within one month of receipt. Complex requests or requests requiring coordination with third parties may take longer; we will inform you if we need additional time.

Marketing communications

NetzTopLaw may send updates about services, legal insights, and offers relevant to online businesses. Marketing messages are based on your relationship with us and any preferences you set. We only use data necessary to tailor communications; you will receive clear options to manage preferences.

You can opt out of marketing communications at any time via the unsubscribe link in emails, by emailing [email protected], or by contacting our office at Rue de Lausanne 63, 1202 Geneva, Switzerland. Opting out will not affect transactional messages related to services you purchase.

Children's privacy

Our services are intended for business users and adults. NetzTopLaw does not knowingly collect personal data from children under legal adult age for the purpose of providing legal advisory services. If we become aware of such collection, we will take steps to remove the data promptly.

Third-party links

Our website and communications may include links to third-party sites or services. NetzTopLaw is not responsible for third-party privacy practices or content. Review third-party privacy policies before sharing personal information with them.

Changes to this privacy policy

We may update this privacy text to reflect changes in law, technology, or our services. Material changes will be posted on NetzTopLaw.info with an updated effective date. Continued use of our services after changes indicates acceptance of the updated policy.