Skip to main content

Privacy Policy

width="1400"

In this Privacy Policy, we explain what personal data we process in connection with our activities and operations, including our www.kantonsolothurntourismus.ch-Website. In particular, we explain why, how, and where we process specific types of personal data. We also provide information about the rights of individuals whose data we process.

Additional privacy policies and other legal documents, such as General Terms and Conditions (GTC), Terms of Use, or Terms of Participation, may apply to specific or additional activities and operations.

1. Contact Information

Responsibility for the processing of personal data:

Solothurn Tourism
Frohburgstrasse 1
4601 Olten
Switzerland

info@kantonsolothurntourismus.ch

We will notify you if, in specific cases, there are other parties responsible for processing personal data.

2. Definitions and Legal Basis

2.1 Definitions

Personal data refers to any information relating to an identified or identifiable natural person. A data subject is a person whose personal data we process.

"Processing" encompasses any handling of personal data, regardless of the means or methods used, such as retrieving, comparing, modifying, archiving, retaining, reading, disclosing, obtaining, recording, collecting, deleting, revealing, sorting, organizing, storing, altering, disseminating, linking, destroying, and using personal data.

2.2 Legal Basis

We process personal data in accordance with Swiss data protection law, in particular the Federal Act on Data Protection (Data Protection Act, DSG) and the Ordinance on Data Protection (Data Protection Ordinance, DSV).

3. Type, Scope, and Purpose

We process the personal data necessary to carry out our activities and operations in a sustainable, user-friendly, secure, and reliable manner. Such personal data may include, in particular, the following categories: account and contact information, browser and device data, content data, metadata or ancillary data, usage data, location data, sales data, and contract and payment data.

We process personal data for as long as is necessary for the respective purpose(s) or as required by law. Personal data that is no longer needed for processing is anonymized or deleted.

We may have third parties process personal data. We may process personal data jointly with third parties or transfer it to third parties. Such third parties include, in particular, specialized service providers whose services we use. We ensure that data protection is maintained even when such third parties are involved.

As a general rule, we process personal data only with the consent of the individuals concerned. If and to the extent that processing is permitted for other legal reasons, we may refrain from obtaining consent. For example, we may process personal data without consent in order to fulfill a contract, to comply with legal obligations, or to protect legitimate interests.

In this context, we process, in particular, information that a data subject voluntarily provides to us when contacting us—for example, by mail, email, instant messaging, contact form, social media, or telephone—or when registering for a user account. We may store such information, for example, in an address book or using similar tools. If we receive data about other individuals, the parties providing the data are obligated to ensure data protection for those individuals and to verify the accuracy of their personal data.

We also process personal data that we receive from third parties, obtain from publicly available sources, or collect in the course of our activities and operations, provided that such processing is permitted by law.

4. Personal Data Abroad

As a general rule, we process personal data in Switzerland. However, we may also disclose or export personal data to other countries, in particular to process it there or have it processed there.

We may disclose personal data to any country or territory on Earth, as well as elsewhere in the universe, provided that the laws of that jurisdiction ensure an adequate level of data protection in accordance with a decision by the Swiss Federal Council.

We may disclose personal data to countries whose laws do not guarantee adequate data protection, provided that adequate data protection is ensured for other reasons. Adequate data protection may be ensured, for example, through appropriate contractual agreements, based on standard data protection clauses, or through other suitable safeguards. In exceptional cases, we may export personal data to countries without adequate or appropriate data protection if the specific legal requirements under data protection law are met, such as the explicit consent of the data subjects or a direct connection to the conclusion or performance of a contract. Upon request, we are happy to provide data subjects with information about any such safeguards or to supply a copy of them.

5. Rights of Data Subjects

5.1 Data Protection Claims

We grant data subjects all rights provided for under applicable data protection law. In particular, data subjects have the following rights:

  • Right of Access: Data subjects may request information regarding whether we process personal data about them and, if so, what personal data is involved. Data subjects will also receive the information necessary to exercise their data protection rights and to ensure transparency. This includes the personal data being processed, as well as, among other things, details regarding the purpose of processing, the retention period, any disclosure or export of data to other countries, and the origin of the personal data.
  • Correction and Restriction: Data subjects may correct inaccurate personal data, complete incomplete data, and request that the processing of their data be restricted.
  • Deletion and Objection: Data subjects may request the deletion of their personal data (“right to be forgotten”) and object to the processing of their data with effect for the future.
  • Data Disclosure and Data Transfer: Data subjects may request the disclosure of their personal data or the transfer of their data to another data controller.

We may defer, restrict, or deny the exercise of data subjects’ rights to the extent permitted by law. We may inform data subjects of any conditions that must be met in order to exercise their data protection rights. For example, we may refuse to provide information, in whole or in part, citing trade secrets or the protection of other individuals. We may also, for example, refuse to delete personal data in whole or in part, citing statutory retention obligations.

In exceptional cases, we may charge a fee for the exercise of these rights. We will inform the individuals concerned in advance of any such fees.

We are required to take reasonable measures to identify data subjects who request access to their personal data or exercise other rights. Data subjects are required to cooperate.

5.2 Right to File a Complaint

Data subjects have the right to enforce their data protection rights through legal action or to file a complaint with a competent data protection supervisory authority.

The data protection supervisory authority for private data controllers and federal agencies in Switzerland is the Federal Data Protection and Information Commissioner(FDPIC).

6. Data Security

We take appropriate technical and organizational measures to ensure data security commensurate with the respective risk. However, we cannot guarantee absolute data security.

Access to our website is secured using transport encryption (SSL/TLS, specifically the Hypertext Transfer Protocol Secure, abbreviated as HTTPS). Most browsers indicate transport encryption with a padlock icon in the address bar.

Our digital communications—like all digital communications, in principle —are subject to mass surveillance without cause or suspicion, as well as other forms of surveillance by security agencies in Switzerland, the rest of Europe, the United States of America (USA), and other countries. We have no direct influence over the processing of personal data by intelligence agencies, police departments, and other security agencies.

7. Use of the Website

7.1 Cookies

We may use cookies. Cookies—including our own cookies (first-party cookies) and cookies from third parties whose services we use (third-party cookies)—are data stored in the browser. Such stored data is not necessarily limited to traditional text-based cookies.

Cookies can be stored temporarily in the browser as “session cookies” or for a specific period of time as so-called “persistent cookies.” “Session cookies” are automatically deleted when the browser is closed. Persistent cookies have a specific retention period. In particular, cookies make it possible to recognize a browser the next time it visits our website and, for example, to measure our website’s reach. However, persistent cookies can also be used for online marketing, for example.

Cookies can be disabled entirely or partially, or deleted, at any time in your browser settings. Without cookies, our website may no longer be fully accessible. We actively seek your explicit consent to the use of cookies—at least to the extent necessary.

For cookies used to measure performance and reach or for advertising, many services offer a general opt-out option through AdChoices (Digital Advertising Alliance of Canada), the Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance), or Your Online Choices (European Interactive Digital Advertising Alliance, EDAA).

7.2 Server Log Files

We may collect the following information for each visit to our website, provided that this information is transmitted by your browser to our server infrastructure or can be determined by our web server: Date and time, including time zone; Internet Protocol (IP) address; access status (HTTP status code); operating system, including user interface and version; browser, including language and version; specific subpages of our website accessed, including the amount of data transferred; and the last webpage accessed in the same browser window (referrer).

We store such information, which may also constitute personal data, in server log files. This information is necessary to ensure that our website is available on a continuous basis, is user-friendly, and operates reliably, as well as to ensure data security and, in particular, the protection of personal data—including through third parties or with the assistance of third parties.

7.3 Pixel Count

We may use tracking pixels on our website. Tracking pixels are also known as web beacons. Tracking pixels—including those from third parties whose services we use—are small, usually invisible images that are automatically loaded when you visit our website. Tracking pixels can be used to collect the same information as server log files.

8. Notifications and Communications

We send notifications and messages via email and other communication channels, such as instant messaging or text messages.

8.1 Measuring Success and Reach

Notifications and messages may contain web links or tracking pixels that track whether an individual message has been opened and which web links were clicked within it. Such web links and tracking pixels may also track the use of notifications and messages on a personal basis. We require this statistical tracking of usage to measure effectiveness and reach so that we can send notifications and messages in a way that is effective, user-friendly, sustainable, secure, and reliable, based on the needs and reading habits of the recipients.

8.2 Consent and Objection

As a general rule, you must expressly consent to the use of your email address and other contact information, unless such use is permitted for other legal reasons. To obtain your consent, we use the “double opt-in” procedure whenever possible; this means you will receive an email containing a web link that you must click to confirm, thereby preventing misuse by unauthorized third parties. We may log such consents, including your Internet Protocol (IP) address as well as the date and time, for evidentiary and security purposes.

You may, in principle, opt out of receiving notifications and communications—such as newsletters—at any time. By opting out, you may also object to the collection of usage data for the purpose of measuring performance and reach. This does not apply to necessary notifications and communications related to our activities and operations.

8.3 Service Providers for Notifications and Communications

We send notifications and messages through specialized service providers.

In particular, we use:

9. Third-Party Services

We use services provided by specialized third parties to ensure that our activities and operations are conducted in a sustainable, user-friendly, secure, and reliable manner. These services allow us, among other things, to embed features and content into our website. When such embedding occurs, the services used collect users’ Internet Protocol (IP) addresses—at least temporarily—for technical reasons.

For necessary security-related, statistical, and technical purposes, third parties whose services we use may process data related to our activities and operations in an aggregated, anonymized, or pseudonymized form. This includes, for example, performance or usage data necessary to provide the respective service.

In particular, we use:

9.1 Digital Infrastructure

We use services provided by specialized third parties to access the digital infrastructure we need in connection with our activities and operations. These include, for example, hosting and storage services from selected providers.

In particular, we use:

9.2 Scheduling

We use services provided by specialized third parties to enable online scheduling, such as for meetings. In addition to this Privacy Policy, any terms and conditions directly associated with the services we use—such as terms of use or privacy policies—also apply.

In particular, we use:

9.3 Audio and Video Conferences

We use specialized audio and video conferencing services to communicate online. For example, we can use them to hold virtual meetings or conduct online classes and webinars. Participation in audio and video conferences is also subject to the legal terms and conditions of the individual services, such as privacy policies and terms of use.

Depending on your situation, we recommend that you mute your microphone by default when participating in audio or video conferences, and either blur the background or display a virtual background.

In particular, we use:

9.4 Online Collaboration

We use third-party services to facilitate online collaboration. In addition to this Privacy Policy, any terms and conditions of the services used that are directly visible—such as terms of use or privacy policies—also apply.

9.5 Maps

We use third-party services to embed maps on our website.

In particular, we use:

9.6 Digital Audio and Video Content

We use services provided by specialized third parties to enable the direct playback of digital audio and video content, such as music or podcasts.

In particular, we use:

9.7 Fonts

We use third-party services to embed selected fonts, icons, logos, and symbols on our website.

In particular, we use:

10. Website Extensions

We use extensions on our website to take advantage of additional features.

In particular, we use:

11. Measuring Success and Reach

We seek to determine how our online offerings are used. In this context, we can, for example, measure the success and reach of our activities and initiatives, as well as the impact of third-party links on our website. We can also, for example, test and compare how different parts or versions of our online offerings are used (the “A/B testing” method). Based on the results of these success and reach measurements, we can, in particular, fix errors, highlight popular content, or make improvements to our online offerings.

In most cases, the Internet Protocol (IP) addresses of individual users are stored for the purpose of measuring success and reach. In such cases, IP addresses are always truncated (“IP masking”) in order to comply with the principle of data minimization through appropriate pseudonymization.

Cookies may be used to measure success and reach, and user profiles may be created. Any user profiles created may include, for example, the individual pages visited or content viewed on our website, information about the size of the screen or browser window, and the user’s location (at least approximately). As a general rule, any user profiles created are exclusively pseudonymized and are not used to identify individual users. Certain third-party services with which users are registered may, in some cases, associate the use of our online services with the user’s account or profile on the respective service.

In particular, we use:

12. Final Provisions

We created this privacy policy using the privacy policy generator from Datenschutzpartner.

We may amend or supplement this Privacy Policy at any time. We will provide notice of such amendments and supplements in an appropriate manner, in particular by publishing the most current version of the Privacy Policy on our website.

13. Application for the Tourism Award

As part of the application process for the Canton of Solothurn Tourism Award, we collect and process personal data that you voluntarily provide via an online form.

Purpose and Scope of Data Processing

The data is used to conduct the application process, to contact applicants, and for evaluation by the jury. Depending on the information provided, the following details are collected:

  • Name of the organization and contact person
  • Email address, phone number, address
  • Description of the Project or Offer
  • Optional attachments (e.g., images, documents)
  • Other information provided on the form

Using SurveyMonkey

We use the online service SurveyMonkey, operated by Momentive Europe UC, Dublin, Ireland, for the application form. The data you enter is processed via SurveyMonkey’s servers. This may involve the transfer of data to third countries, in particular the United States.

According to Article 16 of the Swiss Data Protection Act (revDSG), the EU Commission’s standard contractual clauses used by SurveyMonkey are considered adequate safeguards for data protection when data is transferred abroad.

For more information about SurveyMonkey's data processing, please visit: https://www.surveymonkey.de/mp/legal/privacy

Forwarding to the jury

Submitted applications will be forwarded to the relevant jury for review. Your data will not be shared with any other parties, unless you have given your express consent or there is a legal obligation to do so.

Legal Basis

Your data is processed based on:

  • Your voluntary consent to participate in the application process
  • Art. 31 revDSG (Processing in connection with a potential contractual relationship or in the context of voluntary participation in a contest)


Retention Period: Your data will be stored for as long as necessary to conduct, evaluate, and document the application process for the Tourism Award. In addition, your data may be stored for a longer period if this is related to the public announcement of the submitted applications, a shortlist, or the winning projects—in particular for publication on the Canton of Solothurn Tourism website or in accompanying communications.