The responsible body within the meaning of the data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:
IG Hanf Switzerland | CI Chanvre Suisse | CI Canapa Svizzera
Phone: 031 654 54 55
In cooperation with our hosting providers, we make every effort to protect the databases as well as possible against unauthorized access, loss, misuse or forgery.
We would like to point out that data transmission over the Internet (e.g. communication by e-mail) may have security gaps. A complete protection of data against access by third parties is not possible.
By using this website, you agree to the collection, processing and use of data in accordance with the following description. This website can be visited without registration. Data such as pages called up or the name of the file called up, date and time are stored on the server for statistical purposes without these data being directly related to your person. Personal data, in particular name, address or e-mail address are collected on a voluntary basis as far as possible. The data will not be passed on to third parties without your consent.
Processing of personal data
Personal data is all information that relates to an identified or identifiable person. A data subject is a person about whom personal data is processed. Processing includes any handling of personal data, irrespective of the means and procedures used, in particular the storage, disclosure, procurement, deletion, storage, modification, destruction and use of personal data.
We process personal data in accordance with Swiss data protection law. In addition, we process personal data – insofar and to the extent that the EU GDPR is applicable – in accordance with the following legal principles in connection with Art. 6 Para. 1 GDPR:
- lit. a) Processing of personal data with the consent of the person concerned.
- lit. b) Processing of personal data for the purpose of fulfilling a contract with the data subject and for carrying out appropriate pre-contractual measures.
- lit. c) Processing of personal data for the fulfilment of a legal obligation to which we are subject under any applicable law of the EU or under any applicable law of a country in which the DPA applies in whole or in part.
- lit. d) Processing of personal data to protect vital interests of the data subject or of another natural person.
- lit. f) Processing of personal data to safeguard the legitimate interests of us or of third parties, except where such interests are overridden by the fundamental freedoms and rights and interests of the data subject. Legitimate interests are in particular our commercial interest in being able to provide our website, information security, the enforcement of our own legal claims and compliance with Swiss law.
We process personal data for as long as is necessary for the respective purpose or purposes. In the case of longer-term storage obligations due to legal and other obligations to which we are subject, we restrict processing accordingly.
This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as the requests you send to us as site operator. You can recognise an encrypted connection by the fact that the address line of your browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If the SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.
The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically sends to us. These are:
- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
These data cannot be assigned to specific persons. A consolidation of this data with other data sources is not carried out. We reserve the right to check this data subsequently if we become aware of concrete indications of illegal use.
Services from third parties
This website uses Google Maps for embedding maps, Google Invisible reCAPTCHA for protection against bots and spam and YouTube for embedding videos.
These services of the American Google LLC use among other things cookies and as a result data is transferred to Google in the USA, whereby we assume that in this context no personal tracking takes place solely through the use of our website.
Google is committed to ensuring an appropriate level of data protection in accordance with the American-European and the American-Swiss Privacy Shield.
Further information can be found in Google’s privacy police.
If you send us enquiries via the contact form, your details from the enquiry form, including the contact data you provide there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We will not pass on this data without your consent.
If you would like to receive the newsletter offered on this website, we need an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. Further data will not be collected. We use these data exclusively for sending the requested information and do not pass them on to third parties.
You can revoke your consent to the storage of the data, the e-mail address as well as its use for sending the newsletter at any time, for example by using the “unsubscribe link” in the newsletter.
Rights of affected persons
Right to confirmation
Every data subject has the right to obtain confirmation from the website operator as to whether personal data relating to him are being processed. If you wish to exercise this right of confirmation, you can contact the data protection officer at any time.
Right to information
Every person affected by the processing of personal data has the right to receive free information from the operator of this website at any time about the personal data stored about him and a copy of this information. In addition, the following information may also be provided:
- the processing purposes
- the categories of personal data processed
- the recipients to whom the personal data have been or will be disclosed
- if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration
- the existence of a right of rectification or erasure of personal data relating to them or of a right of objection to their processing by the controller
- the existence of a right of appeal to a supervisory authority
- if the personal data are not collected from the data subject: All available information on the origin of the data
The data subject shall also have the right to obtain information as to whether personal data have been transferred to a third country or to an international organisation. If this is the case, the data subject shall also have the right to obtain information on the appropriate safeguards relating to the transfer.
If you wish to exercise this right of information, you can contact our data protection officer at any time.
Right of rectification
Any person concerned by the processing of personal data shall have the right to obtain the rectification without delay of inaccurate personal data concerning him. The data subject shall also have the right to obtain the completion of incomplete personal data, including by means of a supplementary declaration, having regard to the purposes of the processing.
If you wish to exercise this right of correction, you can contact our data protection officer at any time.
Right of cancellation (right to be forgotten)
Any person concerned by the processing of personal data has the right to obtain from the controller of this website the immediate deletion of personal data relating to him or her, where one of the following reasons applies and where the processing is not necessary:
- the personal data have been collected or otherwise processed for purposes for which they are no longer necessary
- the data subject withdraws the consent on which the processing was based and there is no other legal basis for the processing
- the data subject objects to the processing for reasons arising from his or her particular situation and there are no overriding legitimate reasons for processing, or, in the case of direct marketing and related profiling, the data subject objects to the processing
- the personal data were processed unlawfully
- the deletion of personal data is necessary to comply with a legal obligation under Union law or the law of the Member States to which the controller is subject
- The personal data were collected in relation to information society services provided directly to a child
If one of the above reasons applies and you wish to have personal data stored by the operator of this website deleted, you can contact our data protection officer at any time. The data protection officer of this website will ensure that the request for deletion is complied with immediately.
Right to limit processing
Any person affected by the processing of personal data has the right to request the controller of this website to limit the processing if one of the following conditions is met:
- the accuracy of the personal data is contested by the data subject, for a period of time sufficient to enable the controller to verify the accuracy of the personal data
- the processing is unlawful, the data subject refuses to have the personal data deleted and instead requests that the use of the personal data be restricted
- the controller no longer needs the personal data for the purposes of the processing, but the data subject needs them in order to exercise or defend his rights
- the data subject has lodged an objection to the processing for reasons arising from his or her particular situation and it is not yet clear whether the legitimate reasons given by the controller outweigh those given by the data subject
If one of the above-mentioned prerequisites is given, you may request the restriction of personal data stored by the operator of this website, you can contact our data protection officer at any time. The data protection officer of this website will arrange for the restriction of processing.
Right to data transferability
Any person concerned by the processing of personal data has the right to obtain the personal data concerning him/her in a structured, standard and machine-readable format. He/she also has the right to have these data communicated to another controller, if the legal requirements are met.
Furthermore, the data subject has the right to obtain that the personal data be transferred directly from one person in charge to another person in so far as this is technically feasible and provided that this does not affect the rights and freedoms of other persons.
To assert the right to data transfer, you can contact the data protection officer appointed by the operator of this website at any time.
Right of objection
Any person concerned by the processing of personal data has the right to object at any time, on grounds relating to his particular situation, to the processing of personal data concerning him.
In the event of such an objection, the operator of this website will no longer process the personal data unless we can demonstrate compelling reasons for processing that are worthy of protection, which outweigh the interests, rights and freedoms of the person concerned, or if the processing serves to assert, exercise or defend legal claims.
To exercise your right to object, you can contact the data protection officer of this website directly.
Right to revoke a consent under data protection law
Any person affected by the processing of personal data has the right to withdraw his or her consent to the processing of personal data at any time.
If you wish to exercise your right to revoke a consent, you can contact our data protection officer at any time.
We hereby object to the use of contact data published within the scope of the imprint obligation to send advertising and information material not expressly requested. The operators of this website expressly reserve the right to take legal action in the event that unsolicited advertising information is sent, for example by spam e-mails.
Services subject to charges
In order to provide paid services, we will ask you for additional data so that your membership can be completed. We store this data in our systems until the legal retention periods have expired. Credit card details are not stored.
Use of Google Maps
This website uses the offer of Google Maps. This allows us to display interactive maps directly on the website and enables you to use the map function conveniently. By visiting the website, Google receives the information that you have called up the corresponding subpage of our website. This happens regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you do not wish to be assigned to your profile on Google, you must log out before activating the button. Google stores your data as user profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have a right of objection to the creation of these user profiles, whereby you must contact Google to exercise this right. Further information on the purpose and scope of data collection and its processing by Google, in addition to further information on your rights in this regard and setting options for protecting your privacy, can be found at: www.google.de/intl/de/policies/privacy.
This website uses features of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA . When you access our pages with Facebook plug-ins, a connection is established between your browser and the Facebook servers. Data is already being transferred to Facebook in the process. If you have a Facebook account, this data can be linked to it. If you do not want this data to be linked to your Facebook account, please log out of Facebook before visiting our site. Interactions, in particular the use of a comment function or clicking a “Like” or “Share” button are also passed on to Facebook. You can find out more at https://de-de.facebook.com/about/privacy.
This website uses features of Twitter, Inc, 1355 Market St, Suite 900, San Francisco, CA 94103, USA. When you access our pages with Twitter plug-ins, a connection is established between your browser and the servers of Twitter. Data is already being transferred to Twitter. If you have a Twitter account, this data can be linked to it. If you do not want this data to be linked to your Twitter account, please log out of Twitter before visiting our site. Interactions, especially clicking a “Re-Tweet” button, are also transmitted to Twitter. You can find out more at https://twitter.com/privacy.
Functions of the Instagram service are integrated on our website. These functions are offered by Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA. If you are logged in to your Instagram account, you can link the contents of our pages to your Instagram profile by clicking the Instagram button. This allows Instagram to associate your visit to our sites with your account. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Instagram.
This website uses features of the LinkedIn network. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Each time you access one of our pages that contains LinkedIn features, a connection to LinkedIn’s servers is established. LinkedIn will be notified that you have visited our sites using your IP address. If you click on LinkedIn’s “Recommend Button” and are logged into your LinkedIn account, LinkedIn is able to track your visit to our site to you and your account. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by LinkedIn.
External payment service providers
This website uses external payment service providers through whose platforms the users and we can make payment transactions. For example via
- Visa / Mastercard / American Express etc. (https://www.visa.de/nutzungsbedingungen/visa-privacy-center.html)
Within the framework of the performance of contracts, we appoint payment service providers on the basis of the Swiss Data Protection Ordinance and, where necessary, Art. 6 para. 1 lit. b. EU-GDPR. Furthermore, we use external payment service providers on the basis of our legitimate interests in accordance with the Swiss Data Protection Ordinance and, where necessary, Art. 6 para. 1 lit. f. EU-GDPR in order to offer our users effective and secure payment options.
The data processed by the payment service providers include inventory data, such as name and address, bank data, such as account or credit card numbers, passwords, TANs and checksums, as well as contract, sum and recipient related data. These details are required to carry out the transactions. However, the data entered is only processed by the payment service providers and stored by them. We as the operator do not receive any information about (bank) account or credit card, but only information to confirm (accept) or reject the payment. Under certain circumstances, the payment service providers may transfer the data to credit agencies. The purpose of this transmission is to check identity and creditworthiness. In this regard we refer to the general terms and conditions and data protection information of the payment service providers.
The terms and conditions and data protection information of the respective payment service providers, which can be accessed within the respective website or transaction applications, apply to the payment transactions. We also refer to these for further information and the assertion of rights of revocation, information and other rights of affected persons.
Newsletter – Mailchimp
The newsletters are sent via the mailing service provider ‘MailChimp’, a newsletter mailing platform of the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. You can view the data protection regulations of the mailing service provider here. The Rocket Science Group LLC d/b/a MailChimp is certified under the PrivacyShield Agreement and thus offers a guarantee to comply with the European data protection level (PrivacyShield). The mail order service provider is used on the basis of our legitimate interests according to art. 6 para. 1 lit. f GDPR and an order processing contract according to art. 28 para. 3 sentence 1 GDPR.
The mail-order service provider may use the recipient’s data in pseudonymous form, i.e. without allocation to a user, to optimise or improve its own services, e.g. for technical optimisation of the dispatch and presentation of newsletters or for statistical purposes. However, the dispatch service provider does not use the data of our newsletter recipients to write to them itself or to pass the data on to third parties.
On this website, functions of the “YouTube” service are integrated. “YouTube” is owned by Google Ireland Limited, a company incorporated and operated under the laws of Ireland, with registered office at Gordon House, Barrow Street, Dublin 4, Ireland, which operates the Services in the European Economic Area and Switzerland.
Provision of our services in accordance with the Statutes
We process the data of our members, supporters, interested parties, customers or other persons in accordance with the data protection regulations of the Federal Republic (Federal Act on Data Protection, FADP) and the EU-GDPR in accordance with Art. 6 Para. 1 lit. b. GDPR, insofar as we offer contractual services to them or act within the framework of existing business relationships, e.g. to members, or are ourselves recipients of services and benefits. Otherwise, we process the data of affected persons in accordance with Art. 6 Para. 1 lit. f. GDPR on the basis of our legitimate interests, e.g. if it concerns administrative tasks or public relations work.
The data processed, the type, scope and purpose of such processing and the necessity of processing them are determined by the underlying contractual relationship. This basically includes inventory and master data of persons (e.g., name, address, etc.), as well as contact data (e.g., e-mail address, telephone number, etc.), contract data (e.g., services used, contents and information provided, names of contact persons) and, if we offer services or products that require payment, payment data (e.g., bank details, payment history, etc.).
We delete data that is no longer required for the statutory purposes. This is determined according to the respective tasks and contractual relationships. In the case of business processing, we retain the data for as long as it may be relevant to the business transaction and also with regard to any warranty or liability obligations. The necessity of storing the data is checked at irregular intervals. In all other respects, the statutory storage obligations apply.
The copyrights and all other rights to content, images, photos or other files on the website belong exclusively to the operator of this website or the specifically named rights holders. For the reproduction of all files, the written consent of the copyright holder must be obtained in advance.
Anyone who commits a copyright infringement without the consent of the respective copyright holder may be liable to prosecution and, if necessary, damages.
General exclusion of liability
All information on our website has been carefully checked. We make every effort to ensure that the information we offer is up-to-date, correct and complete. Nevertheless, the occurrence of errors cannot be completely ruled out, which means that we cannot guarantee the completeness, correctness and topicality of information, including journalistic and editorial information. Liability claims arising from material or non-material damage caused by the use of the information provided are excluded, unless there is evidence of wilful intent or gross negligence.
The publisher can change or delete texts at his own discretion and without notice and is not obliged to update the contents of this website. The use or access to this website is at the visitor’s own risk. The publisher, his clients or partners are not responsible for damages, such as direct, indirect, accidental, in advance concretely to be determined or consequential damages, which are allegedly caused by the visit of this website and therefore do not assume any liability.
The publisher also accepts no responsibility or liability for the content and availability of third-party websites that can be accessed via external links on this website. The content of linked sites is the sole responsibility of their operators. The publisher thus expressly distances itself from all third-party content that may be relevant under criminal or liability law or that is contrary to public decency.
Questions to the data protection officer