We take data privacy seriously
Find all information about data protection at avisec here
Operate your camera in full GDPR compliance
The avisec Privacy Protector ensures complete data protection.
The Software removes people and moving objects automatically from every image.
Data protection in the avisec cloud cockpit
Learn here, which image data we store and where our servers are located.
See, who is authorized to access what and which options you have when publishing.
Privacy Policy for
website visitors
We explain here, what we do to keep our website accessible to everyone.
Also, you can read up on what data we collect from visitors to our website.
Frequently Asked Questions – FAQ
-
What is the difference between the privacy policy for website visitors and the section on data protection in the avisec Cloud Cockpit?
-
What measures does avisec take to protect my data in the avisec Cloud Cockpit?
-
What is the avisec Privacy Protector for cameras and how does it support data protection?
-
What personal data is collected on the avisec.com website?
-
How does avisec ensure the accessibility of the avisec.com website?
Do you have a different question, or would you like to be advised in person?
How to operate your camera in compliance with the GDPR
Avisec offers you various options for ensuring data protection in images.
1. The avisec privacy protector: Complete data protection
2. Additional data protection options in the avisec cloud cockpit
Even without the avisec privacy protector, our cloud cockpit provides you with many options for protecting the privacy of people in images:
- Delay publication: publish the images later to prevent conclusions from being drawn.
- Crop: cut out sensitive areas.
- Cover: cover sensitive areas.
- Dynamic pixelation: display sensitive objects in a pixelated form.
- Scaling: Reduce the image size so that fewer details are visible.
Get avisec privacy protector for GDPR-compliant publishing!
Forget about data protection concerns and get sophisticated technology for maximum reliability. Book a free consultation with our project manager Pascal now.
Data protection in the avisec cloud cockpit
How avisec protects your image and user data: transparent, secure, GDPR-compliant.
The avisec cloud cockpit collects a lot of data, whether in the form of camera images or user access. It is important to us that you retain full control over your data at all times. In this section, you can learn about the data protection measures we have implemented.
1. How we protect your user data in the avisec cloud cockpit
Your personal data, such as your email address, name or user activities in the cloud cockpit, is processed exclusively in Switzerland in accordance with Swiss law. We use it to ensure the secure use of our cloud cockpit. That way, w control your access individually, activate suitable functions for you, carry out administrative tasks such as creating invoices, and process support requests efficiently.
Protective measures
-
Password-protected access & role-based rights assignment
-
Encrypted data transmission (TLS)
-
Server location in the EU (Ireland, Amazon AWS EU West)
-
No uncontrolled disclosure to third parties
2. How we store and protect image data in the cloud cockpit
Where we store your images
- All images collected by avisec systems are stored by default on secure Amazon servers in the EU in compliance with EU law and GDPR requirements.
- Upon request, you can conclude an AVV (order processing agreement) with us.
- Upon request, it is also possible to only store the images temporarily with avisec. We will then delete the images as soon as they have been safely delivered to you.
- Image transmission is encrypted.
How we protect your images
- Secure feed IDs instead of guessable links: We name feeds with random 9-digit codes, making it impossible to simply try out or guess image URLs. Unlike many providers, avisec does not use descriptive or predictable file names such as ‘image_fullhd.jpg’. This prevents anyone from accidentally accessing other images or hacking into the system.
- Protection against automatic image theft (‘image ripping’): Even when you publish images, they remain protected. Images are never delivered directly from storage, but always via a secure app. This way, thrid parties cannot automatically access your images and your feed cannot be reused without permission. Even if they know the URL.
3. User roles & access control: You decide who sees what
In the Cockpit, you can create separate image tables and specify who has access to each one individually:
Original: Raw data directly from the camera
Processed: Pre-processed images for analysis and timelapse-videos
Publish: Published images, e.g. in the feed
Thanks to our role-based system, you can finely control who has access to which content. Typically, the following roles are assigned:
- Power-User: Has full access to all image tables and user rights
- Standard-User: Has access to shared areas (e.g. an image table in which sensitive areas in the image have been obscured)
- External Guests: Optionally, you can give external users access to published feeds via a link
Security features for published feeds
- Feed URLs consist of randomly generated 9-digit codes (not guessable).
- Each access can be controlled in terms of time (e.g. only current image, minus 24 hours, minus 7 days).
- You can take feeds ‘offline’ at any time. This way, the camera continues to run, but images are no longer published.
4. Data protection when publishing images
At avisec, the publication of camera images is always voluntary and controllable. You decide for yourself:
- whether an image is published
- how long it is available
- whether a time delay is built in (e.g. minus 24 hours)
- whether feeds should be completely deactivated.
avisec Privacy Protector: Your GDPR tool
We have developed the avisec Privacy Protector for particularly high data protection requirements. It allows you to automatically remove people and moving objects from the image. Motion detection works entirely without artificial intelligence.
Additional protective measures
- Dynamic pixelation of image areas (e.g. windows, streets)
- Timelapse analysis without personal references
- Overlay masks & automatic image degradation for anonymisation
Thanks to all these options, avisec allows you to publish your images in compliance with the GDPR.
5. What happens to your data after your project ends
After you cancel your avisec service, we will inform you transparently about how long your data will remain stored. During this time, you can conveniently download all image data via the cloud cockpit and save it locally. After the deadline has expired, all image data will be irrevocably deleted. Upon request, we will also completely remove your personal data from our system.
Extended storage is only possible by express agreement. For example, via our paid archive services, which allow you to continue storing your data securely in the avisec Cloud Cockpit.
Important: The customer is responsible for backing up their data in a timely manner. Please take the necessary precautions in good time.
Still have questions?
Our expert is happy to discuss your concerns and questions about data protection or your specific data protection issue regarding construction site webcams in a personal consultation.
Luca is available to assist you with any questions you may have about data protection.
Get the avisec privacy protector now for GDPR-compliant publication!
Privacy policy for website visitors
How avisec protects your image and user data: transparently, securely and in compliance with the GDPR.
1. General information
The protection of your personal data is very important to us. We treat your personal data confidentially and in accordance with the applicable data protection regulations, in particular the Swiss Data Protection Act (DSG) and, where applicable, the EU General Data Protection Regulation (GDPR).
Whenever we develop IT systems and software, we take data protection into account right from the basic system design stage (privacy by design) and in the default settings (privacy by default). This enables us to ensure that our systems meet the highest data protection and security requirements.
In this privacy policy, we inform you about the collection, processing and use of personal data when you use our website.
2. Responsible body
avisec ag
Data protection officer: Luca Baldelli
Rugghölzli 2
5453 Remetschwil
Switzerland
info@avisec.ch
+41 56 500 50 16
3. Collection and storage of personal data
We collect personal data when you provide it to us in the context of an enquiry, registration, order or when using our contact forms. In addition, web data is automatically collected by our IT systems in anonymised form, i.e. without any possibility of identification (e.g. internet browser, operating system, time of page view).
Legal basis: Contract fulfilment (Art. 6(1)(b) GDPR / Art. 6 revDSG) and legitimate interest (Art. 6(1)(f) GDPR / Art. 6 revDSG) in optimising the website.
4. Cookies und Consent Management
Our website uses cookies to provide features, analyse usage and improve your user experience. The CookieYes plugin is used to manage cookie consent and stores your acceptance or rejection of certain cookie categories.
Legal basis: Consent (Art. 6(1)(a) GDPR / Art. 6 revDSG).
5. Analysis and tracking tools
a) Google Analytics 4 (GA4) & Google Ads
We use Google Analytics 4 to analyse user behaviour. IP anonymisation is enabled, which means that your IP address is truncated within Switzerland or the EU/EEA before transmission. Google Ads is used to control and evaluate advertising campaigns.
Legal basis: Consent (Art. 6(1)(a) GDPR / Art. 6 revDSG) for tracking and analysis.
b) Matomo
We use Matomo in a data protection-compliant version without cookies. The data is stored exclusively on our servers.
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR / Art. 6 revDSG) for analysing and optimising the website.
c) Semrush
We use Semrush to analyse the visibility of our website and to optimise our content in search engines.
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR / Art. 6 revDSG).
d) Metabase
We use Metabase for internal evaluation and visualisation of data; only anonymised or aggregated information is processed.
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR / Art. 6 revDSG).
e) Looker Studio
Looker Studio is used to display reports and dashboards; processing is based on anonymised data.
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR / Art. 6 revDSG).
6. Marketing and CRM system
a) Mautic
We use Mautic as a marketing automation and CRM system to provide personalised content and campaigns.
Legal basis: Consent (Art. 6(1)(a) GDPR / Art. 6 revDSG) for personalised marketing measures.
b) Exxas
We use Exxas as a CRM system to process master data and personal information.
Legal basis: Contract performance (Art. 6(1)(b) GDPR / Art. 6 revDSG) and legitimate interest (Art. 6(1)(f) GDPR / Art. 6 revDSG) for customer management and maintenance.
7. Plugins and functional enhancements
-
Google Tag Manager: Verwaltung von Website-Tags ohne direkte Erhebung personenbezogener Daten.
-
Anti-Spam by CleanTalk: Schutz unserer Formulare vor Spam-Einträgen.
-
WPForms: Erstellung und Verwaltung unserer Kontakt- und Anmeldeformulare.
-
WP Rocket: Performance-Optimierung durch Caching und Ladezeitverbesserung.
-
WooCommerce: Abwicklung von Online-Bestellungen.
-
Stripe: Zahlungsabwicklung bei Bestellungen.
-
Click to Chat: Direkte Kommunikation via WhatsApp.
-
Yoast SEO: Optimierung unserer Website für Suchmaschinen.
8. Integration of external content
-
Vimeo & YouTube: Embedding of videos. Your IP address may be transmitted to the respective providers.
-
Facebook / Instagram, LinkedIn: Integration of social media content and, where applicable, evaluation of interactions.
9. Hosting
Our website is operated on Amazon Web Services (AWS). The servers are located in data centres that comply with applicable data protection standards.
Legal basis: Contract fulfilment (Art. 6(1)(b) GDPR / Art. 6 revDSG) and legitimate interest (Art. 6(1)(f) GDPR / Art. 6 revDSG) in the secure provision of the website.
10. Data Protection Impact Assessment (DPIA)
For certain high-risk procedures (e.g. video surveillance or large-scale image processing), the GDPR and the revised Swiss Data Protection Act (revDSG) require a data protection impact assessment (DPIA). Such an impact assessment is not possible for us, as we do not use such procedures. For liability issues, the provisions of our General Terms and Conditions apply exclusively.
Legal basis: legal obligation (Art. 6(1)(c) GDPR / Art. 6 revDSG).
11. Reporting data protection breaches
Under the GDPR and revDSG, certain data breaches must be reported to the Federal Data Protection and Information Commissioner (FDPIC) or other competent authorities, and the persons concerned must be informed.
However, avisec is not obliged to report to the FDPIC, authorities or affected persons. Reason: avisec provides images exclusively via automated software, processes them without human interaction and without evaluating their content. This means that at no time can conclusions be drawn about a possible data protection breach or an active report be made.
Rechtsgrundlage: gesetzliche Pflicht (Art. 6 Abs. 1 lit. c DSGVO / Art. 6 revDSG) – Hinweis: keine Meldung erforderlich, da keine personenbezogenen Rückschlüsse möglich.
12. Automated decision-making and profiling
At avisec, no personalised user profiles are created and no profiling takes place within the meaning of the GDPR or the revDSG. The data we process is compiled exclusively in anonymised form. This serves the purpose of process automation and the improvement of decision-making processes without allowing conclusions to be drawn about individual persons.
Legal basis: legitimate interest (Art. 6(1)(f) GDPR / Art. 6 revDSG).
13. Third-country transfers
avisec may transfer data to third countries, in particular to the USA, for example to services provided by Google, Meta or Stripe. Such transfers are carried out exclusively on the basis of standard contractual clauses (SCC) or if an adequacy decision has been issued by the EU Commission. Data is only passed on to third-party providers to the extent necessary to fulfil contractual services, such as for processing payments via Stripe. Any transfer for commercial purposes by avisec takes place at its own discretion.
Legal basis: Contract fulfilment (Art. 6(1)(b) GDPR / Art. 6 revDSG) and consent (Art. 6(1)(a) GDPR / Art. 6 revDSG) – where necessary.
14. Storage periods for web data
Customer and CRM data from forms will be collected and stored for as long as your customer relationship lasts. You have the right to request the deletion of your data at any time. Marketing and analysis data, such as tracking information, will only be retained for as long as necessary for the respective purposes.
Legal basis: Contract fulfilment (Art. 6(1)(b) GDPR / Art. 6 revDSG) and legitimate interest (Art. 6(1)(f) GDPR / Art. 6 revDSG) in optimising services.
15. Protection of minors
avisec does not conduct business with minors. Therefore, data relating to minors is not processed as a matter of principle. Exceptions are made in cases where minors act on behalf of their company in an authorised capacity within the scope of training or employment.
Legal basis: legal obligation and legitimate interest (Art. 6(1)(f) GDPR / Art. 6 revDSG).
16. Your rights
You have the right to obtain information about your personal data stored by us at any time, to request its correction or deletion, and to object to its processing, provided that this does not conflict with any legal retention obligations.
17. Contact
If you have any questions regarding the processing of your personal data, please contact the responsible body mentioned in point 2.
Use avisec Services with zero concerns on data privacy
We handle your personal and image data with the utmost care. To guarantee privacy, we have even developed our own tool that allows you to publish images without concern.
Acquire an avisec camera now and benefit from our data protection measures.