Privacy Policy
A legal disclaimer
The explanations and information provided on this page are intended solely as general and high-level guidance regarding the structure and purpose of a Privacy Policy. They do not constitute legal advice, nor should they be interpreted as recommendations applicable to any specific legal, regulatory, or operational context.
DOC INTERNATIONAL PARTNER SUISSE cannot anticipate the particular privacy practices, obligations, or requirements that may arise from the relationship between a business and its customers or website visitors. Accordingly, the content presented herein should not be relied upon as a substitute for professional legal counsel.
We strongly recommend seeking qualified legal advice to ensure a full understanding of applicable privacy laws and regulations, and to obtain appropriate assistance in developing, implementing, and maintaining a Privacy Policy tailored to your specific activities, jurisdiction, and organisational structure.
Privacy Policy
A Privacy Policy is a formal statement that sets out how a website collects, uses, stores, discloses, processes, and protects personal data relating to its visitors, users, and customers. It defines the principles governing data processing activities and affirms the organisation’s commitment to protecting personal data in accordance with applicable data protection and privacy laws.
In accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR), the UK General Data Protection Regulation (UK GDPR), and the Swiss Federal Act on Data Protection (FADP), personal data must be processed lawfully, fairly, and transparently, for specified, explicit, and legitimate purposes, and in a manner that ensures appropriate security, confidentiality, and data minimisation.
A Privacy Policy typically informs data subjects of their rights under the applicable legal framework, which may include, where relevant, the right of access, rectification, erasure, restriction of processing, data portability, objection, and the right to lodge a complaint with a competent supervisory authority.
Data protection laws and regulatory obligations may vary across jurisdictions, particularly in the context of cross-border or international activities. Organisations operating internationally are responsible for identifying and complying with all applicable data protection frameworks, including European, UK, Swiss, and other non-EU regulations governing the processing and transfer of personal data.
Each entity must therefore ensure that its Privacy Policy accurately reflects its specific data processing practices, operational structure, and geographic scope, and that it remains aligned with the legal and regulatory requirements applicable to its activities.