Privacy Policy

Data Privacy Policy

I. What Is This Privacy Policy About?

As part of our business activities, Bühler Law AG (hereinafter referred to as “we”, “us” or “Bühler Law) collects and processes personal data in accordance with the Swiss Federal Act on Data Protection (“FADP”).

This Privacy Policy explains how we collect and process personal data. It does not constitute an exhaustive description of all data processing activities; supplementary privacy notices may apply in specific circumstances.

This Privacy Policy does not apply to third-party websites accessible through links on our website. We have no control over and assume no responsibility for the processing of personal data by such third parties. Accessing and using such websites is at your own risk.

II. Who Is Responsible for the Processing of Personal Data?

The controller responsible for the data processing described in this Privacy Policy is:

Bühler Law AG
Aeschengraben 29
4051 Basel
Switzerland

If you have any questions regarding data protection, you may contact us at any time by email at info@buehler-law.ch or by post at the address above.

III. To Whom Does This Privacy Policy Apply?

In the course of our business activities, we process personal data relating in particular to clients, associated persons, counterparties and their representatives, guarantors, experts, information providers, visitors to our website www.buehler-law.ch (the “Website”) and our social media profiles (the “Social Media Profiles”), participants in events, newsletter subscribers, job applicants, public authorities, courts, correspondent law firms, professional associations, service providers, other business partners and their employees (collectively referred to as “you”).

IV. What Categories of Personal Data Do We Collect and Process?

We may collect and process the following categories of personal data in particular:

  • Master data (e.g. first name, surname);
  • Contact details and personal information (e.g. address, email address, telephone number);
  • Communication and content data;
  • Contractual and basic data;
  • Business-related documents;
  • Payment and banking information;
  • Financial and asset-related information (e.g. debt collection records, financial information, income details);
  • Information relating to third parties;
  • Application documents, references and recommendations;
  • Usage and preference data (e.g. in connection with the use of our Website or Social Media Profiles);
  • Access control data;
  • Video recordings from buildings;
  • Photographs, video recordings and audio recordings from events or meetings;
  • Other relevant information.

The majority of personal data is provided directly by you (for example, during communications with us). We may also obtain personal data from third parties (such as authorised representatives, banks, public authorities or information providers) or from publicly available sources (such as commercial registers, the media or the internet), where permitted by law.

If you provide us with personal data concerning third parties (e.g. family members or employees), we assume that you are authorised to do so, that the information is accurate and that the data subjects have been informed accordingly.

Providing personal data is generally voluntary. However, certain services may not be available, or certain offers may not be fully utilised, without the provision of specific information.

V. For What Purposes Do We Process Personal Data?

We process personal data for the following purposes in particular:

  • Communication;
  • Taking pre-contractual measures;
  • Entering into and performing contracts (including legal advisory mandates);
  • Invoicing and debt collection;
  • Processing payments;
  • Operating our infrastructure, Website and Social Media Profiles;
  • Analysing the use of our online services;
  • Marketing and maintaining client relationships (e.g. newsletters and events);
  • Responding to inquiries;
  • Establishing, exercising or defending legal claims;
  • Compliance with legal obligations (e.g. KYC checks);
  • Ensuring operational continuity and protecting individuals, data and assets;
  • Administrative and operational purposes;
  • Corporate transactions;
  • Other purposes arising from separate notices or the circumstances.

Where you apply for a position with us, personal data is processed for the purpose of reviewing your application and conducting the recruitment process and, if applicable, preparing the employment relationship.

As a matter of principle, we do not carry out automated individual decision-making or profiling. Should this occur in exceptional cases, you will be informed accordingly and will have the right to request a review by a natural person.

VI. On What Legal Basis Do We Process Personal Data?

Personal data may be processed on the basis of the following legal grounds in particular:

  • Performance of pre-contractual measures or contractual obligations;
  • Compliance with legal obligations;
  • Your consent;
  • Legitimate interests (e.g. protection of business secrets, security, operational organisation and enforcement of legal rights).

VII. To Whom Is Personal Data Disclosed?

Where necessary, we may disclose personal data to the following categories of recipients:

  • Service providers (e.g. IT providers);
  • Clients;
  • Counterparties and their representatives;
  • Correspondent law firms;
  • Business partners;
  • Third-party providers in connection with the use of our Website or Social Media Profiles;
  • Legal advisers;
  • Public authorities and courts;
  • Other third parties.

Any decision as to which information is disclosed to public authorities or courts is made by the responsible attorney in the exercise of professional judgment and discretion.

VIII. Are Personal Data Transferred Abroad?

Personal data is generally processed in Switzerland or in countries that provide a comparable level of data protection, in particular within the European Union (EU) and the European Economic Area (EEA).

Recipients may nevertheless be located anywhere in the world. Where personal data is transferred to countries that do not provide an adequate level of protection, we ensure an appropriate level of protection through suitable safeguards (such as standard contractual clauses) or applicable statutory exceptions.

IX. Data Collection When Using Our Website and Newsletter

1. Log Files

When you access our Website, our hosting provider, Cyon GmbH (Switzerland), automatically records certain technical access data, including the date and time of access, IP address, requested webpage, HTTP status code, browser type and operating system.

This information is used solely to ensure the secure operation of the Website.

We do not use cookies, tracking technologies or analytics services.

2. External Links

This Website contains links redirecting users to Google Maps (provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), for example for the purpose of displaying routes or office locations.

By clicking on such a link, you leave our Website. Google’s privacy policies apply to any processing of personal data by Google. We have no control over and assume no responsibility for such processing. Further information is available in Google’s privacy policy.

X. Our Social Media Presence

We maintain profiles on third-party social media platforms.

When you interact with our Social Media Profiles, data may be collected and processed. Such processing may be carried out by the platform operators under their own responsibility.

XI. How Long Do We Retain Personal Data?

Personal data is retained only for as long as necessary for the purposes for which it was collected or as required by applicable legal obligations. Thereafter, the data will be deleted or anonymised.

The same applies to application documents. If no employment relationship is established, the relevant personal data will be deleted unless otherwise agreed.

XII. How Do We Protect Personal Data?

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or other unlawful processing.

Please note, however, that certain means of communication (such as email) may involve inherent security risks.

XIII. What Rights Do You Have?

Subject to applicable legal requirements and limitations, you have the following rights in particular:

  • The right of access;
  • The right to rectification;
  • The right to erasure;
  • The right to restriction of processing;
  • The right to object to processing;
  • The right to data portability;
  • The right to withdraw consent at any time.

Such rights may be subject to legal restrictions.

Requests should be submitted in writing or by email and may require proof of identity.

You also have the right to lodge a complaint with the Federal Data Protection and Information Commissioner (FDPIC).

XIV. Amendments to This Privacy Policy

We reserve the right to amend this Privacy Policy at any time. The version published on our Website at the relevant time shall be authoritative.

(As of July 2026)