aeris Cleantec AG (“Company”, “we” or “us”) based at Knonauerstrasse 54, 6330 Cham, Zug, Switzerland is responsible for your personal information and we take our data protection and privacy responsibilities seriously.

In this section you can find out more about:

  • the types of personal information we collect
  • when we collect personal information
  • how we use personal information
  • the legal basis for using personal information

When we collect information

We collect information about you, if you:

  • fill out and send us a form
  • register on our app;
  • purchase one of our Products and Services (defined below)
  1. aeris air purifier hardware products (“Our purifiers”),
  2. website(s) that may be accessed at https://www.aeris.ch/ (“Site”) and https://www.aeris.io
  3. services, including technical support and services accessible through the Site(s) (“Web Apps”),
  4. software that may be downloaded to your smartphone or tablet to access services (“Mobile Apps”), and
  5. subscription services, including services you can access using the Web Apps and Mobile Apps (“Notification and/or Subscription Services”).

Please Note: Third parties apps and/or software may also integrate aeris Products and Services into their products and services and we are not responsible for this integration. Additional information on our privacy practices may be provided in other documents such as offer descriptions, supplemental privacy statements, or notices provided prior to or at the time of data collection.

  • How we share personal information within the Company and with our service providers, regulators and other third parties

Personal information we collect and use if you register with or interact with our websites, online landing pages (including social media) or applications.

We collect personal information about you when you interact with one of our online services. More information about online data collection is found in the Cookie section below.

Registration

In order to use our Services or perfom a purchase, we may ask you to provide certain personal information when you purchase our products, create an account on our aeris mobile app or sign up to be on our mailing list. 

We may ask you to submit the following types of personal Information: salutation, first and last name, address, country, telephone number and email address, payment information. The legal basis for this processing is Article 6 (1) b GDPR (performance of the contract).

Every time you use our website, we collect the access data that your browser or device automatically transmits to allow you to visit the website. This data is standard technical data (so-called log files) that are transmitted to our server:

  • IP Address of the requesting device,
  • Date and time of request,
  • Address of the website and the requesting website,
  • Information about the browser used, the operating system and the Internet Service Provider (ISP),
  • Online identifier (e.g. device identifiers, session IDs),
  • The data processing of this access data is necessary to enable the visit of the website and facilitates the functionality and safety of our systems. For the purposes described above, access data is also temporarily stored in internal log files to provide statistical information about the use of our website and app in order to provide our website with the usage habits of our visitors and to maintain our website and app administratively in general.

The information stored in the log files does not allow any direct conclusions to be drawn about you – In particular, we only store the IP addresses in a shortened, anonymised form. The legal basis for this processing is Article 6 (1) f GDPR (legitimate business interest).

Download and installation of the application

In order to download and install our app from an app store (e.g. Google Play Store or Apple App Store), you must first register with the provider of the app store for a user account and enter into a corresponding usage agreement with the store. We have no influence on this third party and are not party to the contract between you and the store. When downloading and installing the app, the necessary information is transferred to the respective app store, in particular your username, email address and your account’s customer number, the time of download and the individual device identification number. We have no control over this data collection and are not responsible for it. We only process this provided data to the extent necessary for downloading and installing the app on your mobile device (e.g. smartphone, tablet). In this case, the legal basis for this is Article 6 (1) f GDPR (legitimate business interest).

Registration on the app

In the case of connecting our products with of our app, we collect the following necessary or mandatory information for the app registration:

  • User’s location
  • Telephone Number, used as login
  • Creation of passwords
  • Email address
  • Upload of picture/print screen if deemed necessary

The data collected on our app are provided and created by the user and used only authentication purposes. The user created login is stored in the EU by Google servers.

The created password is automatically encrypted and cannot be accessed by any aeris employee. The user created password is stored in the EU by Google servers.

The provided email address is used to locate the user’s data base within the server. The user informed email address is stored in the EU by Google servers.

The users can disclose their location. By not allowing to show their location, the user will automatically forfeit the option to see their regional air quality index values. Our App connect to various public available air quality index center websites around the world, that provide the necessary information about the air quality in different regions.

The user’s location will be collected and stored into an aeris owned Google servers located within the EU. This information will be collected once and stored as the user’s primary location and will not be updated.

To reset the password a 2-steps-authentication process has to be performed.

aeris also uses software and server providers (app, web and software development) to assist and support our operations. For example: our app, web and software codes are written offline and later stored online. If you contact us for support regarding our app, web and software development, we will pass on your contact details and questions to other services that we use. These app, web and software Providers include:

  • Google (Google Ireland Limited, is a company registered office at Gordon House, Barrow Street, Dublin 4, Ireland)

https://cloud.google.com/security/gdpr?hl=de

  • Nginx

https://www.f5.com/company/policies/privacy-notice#no-sell

Information you voluntarily share or post.

We may collect personal information that you provide on aeris.ch & aeris.io and aeris Web Apps and Mobile Apps, or post in a public space on our website. 

Information from a friend

If you choose to provide us with a third party’s Personal Information (such as name, email, and phone number), you must ensure that you have the third party’s permission to do so. Examples include providing us with the names and images that you associate with account users, forwarding reference or marketing material to a friend, or sending job referrals. The legal basis for this processing is Article 6 (1) a GDPR (your consent). We rely on the fact that you have obtained the necessary consents for this activity.

Social Media

aeris also uses certain providers (“Social Network Providers”) to assist and support operations. For example: If you contact us for support via our Facebook, Twitter LinkedIn, or Instagram page, we will pass on your contact details and questions to other services that we use to provide customer support. These Social Network Providers include:

https://www.whatsapp.com/legal/updates/privacy-policy-eea/?lang=de

Data processing related to our products

Personal information is collected in connection with our products depending on which products and how you use them. Below are business processes in which we collect and process personal information. This data is either provided to us directly by you or by third parties or collected by your activities on our website or by the use of our products. The legal basis for processing in relation to orders, product usage, app registration and customer services is the contract concluded with us under Article 6 (1) b GDPR (performance of the contract). Certain information about your purchase history is also used by us to ensure we can support you in the development of your relationship with us and ensuring you have the products and services that could be of interest to you. The legal basis for this processing is Article 6 (1) f GDPR (legitimate business interest).

Orders

In the case of an order process, we may collect the following necessary mandatory information for the processing of the contract:

  • First and last name,
  • Company name
  • Address, Town, City, Zip code, Country
  • Email address
  • Phone
  • Billing and shipping address,
  • Payment data (such as credit card, payment methods, payment transactions, bank details).

As an option, business information such as the company name, VAT-Number and EORI-Number, can also be provided, in order to provide a business invoice.

Product Usage

We collect information related to the use of our products and devices and statistics about the indoor air quality, in which your aeris air purifier is. This last information allows our devices to understand better their environments and provide you a better air quality. Power voltage information, fan speed, air quality values, particle matter, filter life time and model of the device are also collected information related to our products, Article 6 (1) b GDPR (performance of the contract).

Contact & Customer Service

You have different ways to get in touch with us through our website, by filling out our contact form, writing us over Intercom (chat box) or WhatsApp, sending an email at support@aeris.io or via app. The following data is collected: 

  • Your first name, last name
  • Address
  • Email address
  • Proof of purchase
  • Telephone number

These app, web and software Providers include:

  • Intercom (Intercom – 3rd Floor, Stephens Ct., 18-21 St. Stephen’s Green, 
Dublin 2

https://www.intercom.com/legal/privacy

  • WhatsApp (WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)

https://www.whatsapp.com/legal/updates/privacy-policy-eea/?lang=de

To enhance our customer service troubleshooting capabilities, we will arrange, in some cases, a video or telephone call conference. Also, in order to make a better assessment of the situation we will also ask for visual and/or audio documentation of the problem, so we can solve the problem the best way possible. In order to send us these visual and/or audio files we will suggest the services, that we are currently using.

To the extent that the information is required to respond to your request or to initiate or execute a contract, we will process it solely for the purpose of communicating with you. This is necessary in order to be able to make an offer to you; to contact you. 

In addition, we also collect this data for statistical purposes in order to improve our products and services, as well as for internal purposes, to provide training for our employees and to carry out quality checks. The legal basis for this is Article 6 (1) f (legitimate business interest).

Personal information we collect and use if you work with us as a professional business partner

The primary reason we process your personal information is to approve, manage, administer or effect an agreement between you and us. In this respect, we use your personal information, to organize our sourcing activities, issue purchase orders, process payments, perform accounting, manage our contract or review the services or products you supply us with. The legal basis for processing is the contract concluded with us under Article 6 (1) f GDPR (legitimate business interest).

Candidates and Employees

We will not collect any additional information, other the personal information that you provide to us, either by email or applying on one job platform we use for candidate selection, when you apply for a job with aeris, including your curriculum vitae and references. The legal basis for processing is the contract concluded with us under Article 6 (1) f GDPR (legitimate business interest).

Legal basis for using your personal information

We will only collect, use and share your personal information where we are satisfied that we have an appropriate legal basis to do this. This may be because:

  • we need to use your personal information to perform a contract or take steps to enter into a contract with you. For example, to take payment for the product you ordered and arrange delivery to your home or business address;
  • we need to use your personal information for our legitimate interest as a commercial organisation. For example, we may have to call to our customer so that we can review how we handle their issues and make any necessary improvements to the quality and training of our staff or to offer you services within our suite of products from any of the entities in the aeris Cleantec AG. In all such cases, we will look after your information at all times in a way that is proportionate and respects your privacy rights and you have a right to object to processing as explained here
  • we need to use your personal information to comply with a relevant legal or regulatory obligation that we have. For example, for tax reporting. We have your consent to using your personal information for a particular activity. For example, if you choose to do a survey with us to help us improve our products.

If you would like to find out more about the legal basis for which we process personal information, please contact us (privacy@aeris.io)

In this section you can find out more about how we share personal information:

within 

  • our company
  • government organisations and agencies, law enforcement and regulators; and
  • with third parties that help us provide our products and services

We share your personal information in the manner and for the purposes described below:

  • Within the aeris Cleantec AG, 

where such disclosure is necessary to provide you with our products or services or to manage our business or for marketing and promotional purposes or to improve the quality of our Products and Services. 

  • With government organisations and agencies, law enforcement and regulators

which may include your local European data protection regulator and/ or the Data Protection Commission, to comply with all applicable laws, regulations and rules, and requests of law enforcement, regulatory and other governmental agencies. If necessary, to assert, exercise or defend legal claims or if we are required or permitted by law disclosure may take place in connection with government inquiries, court orders and legal proceedings if it is necessary for legal prosecution or enforcement.

  • With third parties who help manage our business and deliver services. 

These third parties have agreed to confidentiality restrictions and use any personal information we share with them or which they collect on our behalf solely for the purpose of providing the contracted service to us. These third parties include:

  • banks and payment providers to authorize and complete payments;
  • Financial service providers (e.g. debt collection agencies) to which we can assign receivables from the contract with you, e.g. in the case of non-timely payment of products and services
  • Regulatory and legal service providers such as law firms, auditors and accountancy firms
  • Credit reference agencies and organisations working to prevent fraud in financial services
  • Warehouse and storage companies for managing the logistics of our products;
  • Delivery companies who transport and deliver our products,
  • Retail outlets and online retail providers who sell products on our behalf;
  • Telephone service providers (for example Swisscom, Sunrise) with whom we will contact you by phone.
  • Analysis and search engine providers (see below) to help us improve and optimize the website.
  • Data centres that store our website and databases including videos and images,
  • IT service providers who maintain our systems,
  • Consulting firms and PR agencies such as Amazon LLC or Google LLC, including agencies who help us with sending marketing communications, who assist us with sales and marketing-related efforts or post-sales support, and providing customer support.
  • If, in the future, we sell or transfer some or all of our business or assets to a third party, we may disclose information to a potential or actual third-party purchaser of our business or assets.
  • We may share in aggregate, statistical form, non personal information regarding the visitors to our website, traffic patterns, and website usage with our partners, affiliates or advertisers including Amazon LLC, Google LLC. and Facebook Limited.
  • From time to time we might need to share your personal information with others and for different reasons and in that case we will notify you and obtain your consent prior to the sharing.

If, in the future, we sell or transfer some or all of our business or assets to a third party, we may disclose information to a potential or actual third-party purchaser of our business or assets.

We may share in aggregate, statistical form, non personal information regarding the visitors to our website, traffic patterns, and website usage with our partners, affiliates or advertisers including Amazon LLC, Google LLC. and Facebook Limited.

From time to time we might need to share your personal information with others and for different reasons and in that case we will notify you and obtain your consent prior to the sharing.

A complete list of Third parties (processors) is found here. As our business grows and evolves, the third parties that we engage with may also change over time. We will notice by posting any changes here. Please check back here to stay in the loop.

The legal basis is both the contract concluded between you and us under Article 6 (1) b GDPR (performance of the contract), as well as Article 6 (1) f GDPR (legitimate business interest).

In this section you can find out more about

  1. how we use personal information to keep you up to date with our products and services.
  2. how you can manage your marketing preferences
  3. when and how we undertake profiling and analytics

How we use personal information to keep you up to date with our products and services

We may use personal information to let you know about our products and services that we believe will be of interest to you. We use the personal information that we may have such as first name, surname, home address, purchase history, telephone number, email address and country of residence. We may contact you by email, post, or telephone or through other communication channels (such as targeted online advertising). We only want to contact you when it makes sense, not for all types of advertising communications.

Where we have your contact details because you have recently bought or expressed an interest in our Products and Services, we will keep you informed about similar products or services (including special offers and discounts). In some cases, we receive personal information from third-party companies such as marketing companies, 3rd party advertising engines (such as Amazon LLC or Google LLC), web search engines and online comparison portals, such as your name, telephone number and e-mail address. We collect and process this data for the purpose of offering and selling our products and services to you.

We also use your personal information for statistical purposes to collected information that we use to improve our products and services and to administer the customer relationship. In all cases, we will respect your preferences for how you would like us to manage marketing activity with you. We do this based on Art. 6 1 (f) (legitimate business interest) and in some cases, Art. 6 1 (a) (your consent).

How you can manage your marketing preferences

To protect privacy rights and to ensure you have control over how we manage marketing with you:

  1. we will take steps to limit direct marketing to a reasonable and proportionate level and only send you communications which we believe may be of interest or relevance to you;
  2. at any time, you can update or change your preferences for the way in which you would like us to communicate with you, including how you receive details of latest offers or news updates from us;
  3. You can also click the “unsubscribe” link that you find on any online newsletters you receive or contact our customer support team by sending us an email (privacy@aeris.io);
  4. you can ask us to stop direct marketing at any time you can ask us to stop sending email marketing, by following the “unsubscribe” link you will find on all the email marketing messages we send you. Alternatively, you can contact us here (privacy@aeris.io). Please specify whether you would like us to stop all forms of marketing or just a particular type (e.g. email); and
  5. you can change the way your browser manages cookies, which may be used to deliver online advertising, by following the settings on your browser.

We recommend you routinely review the privacy notices and preference settings that are available to you on any social media platforms as well as your preferences within your account with us. To understand more about third parties who help with analytics, please see the cookie section below.

When and how we undertake profiling and analytics

We use your data as part of data analysis and market research. In particular, we pursue the purpose of dividing our customers and interested parties into different target and user groups in the context of market research (user segmentation), for insights into different target groups and their respective usage habits and interests, demographics and the marketing of these findings in the context of advertising services provided to third parties. We also use personal information to administer customer relations, for example to handle customer service matters, price adjustments and customer satisfaction surveys. In order to operate with suitable price adjustments for our different customer categories we may look at parameters such as your address, contract duration and your interactions with us. None of the aforementioned processing results in significant or legal decisions being made about you on a wholly automated basis.

Depending on the purpose, we use the data stored with us. For example, we use aggregated, statistical data, and also depersonalized (anonymized) data or pseudonymised data, as well as purchase history data and device and access data, for analytics, and for analysis. This gives us anonymous or pseudonymised insights into the general usage behaviour of our customers and interested parties. For more information please see the Cookie section below.

In this section you can find out more about:

  1. how we operate as a global business and transfer data internationally.
  2. the arrangements we have in place to protect your personal information if we transfer it overseas.

How we operate as a global business and transfer data internationally

We operate on a global basis. Accordingly, your personal information may be transferred and stored in countries outside the EU including the US, Hong Kong, Singapore, Switzerland and that are subject to different standards of data protection.

The arrangements we have in place to protect your personal information if we transfer it overseas

We will take appropriate steps to ensure that transfers of personal information are in accordance with applicable law and carefully managed to protect your privacy rights and interests and transfers are limited to countries which are recognized as providing an adequate level of legal protection or where we can be satisfied that alternative arrangement are in place to protect your privacy rights. To this end:

  1. we ensure transfers within the aeris Cleantec AG will be covered by an agreement entered into by members of the company (a company agreement) which contractually obliges each member to ensure that personal information receives an adequate and consistent level of protection wherever it is transferred within the aeris Cleantec AG;
  2. where we transfer your personal information outside aeris Cleantec AG or to third parties who help provide our products and services, we obtain contractual commitments from them to protect your personal information. Some of these assurances are well recognized certification schemes like the EU US Privacy Shield for the protection of personal information transferred from within the EU to the United States; or
  3. where we receive requests for information from law enforcement or regulators, we carefully validate these requests before any personal information are disclosed.

You have a right to contact us (privacy@aeris.io) for more information about the safeguards we have put in place (including a copy of relevant contractual commitments) to ensure the adequate protection of your personal information when this is transferred as mentioned above. The legal basis is both the contract concluded between you and us under Article 6 (1) b GDPR (performance of the contract), as well as Article 6 (1) f GDPR (legitimate business interest)

In this section you can find out more about

  • Security of your personal information
  • Personal information in the aeris Communities and online
  • Storing your personal information

Security of your personal information when using our aeris App

We have implemented and continuously improve our technical and organisational security measures, policies and procedures designed to reduce the risk of accidental destruction or loss, or the unauthorised disclosure or access to such information appropriate to the nature of the information concerned.

As the security of your personal information depends in part on the effectiveness of the security of the devices (computer/ laptop/ mobile/ tablet/ etc) you use to communicate with us and the security measures you use to protect your access (User logins and passwords), we encourage you to take necessary measures to protect this information.

Our aeris air purifiers connect to the aeris app using a WiFI Protected Setup (WPS) and WPA2-AES data encryption. The WiFI connection must be protected by a password that is not saved by the product, our app nor our servers. The aeris air purifiers connect to the backend through the WiFI connection that has been configured prior by the customer. 

The data collected are transmitted in a secure encrypted TCP connection to our servers. Accounts are authenticated using a secure login mechanism with password and phone number. To register, the user has to prove the phone number ownership with a SMS authentification system. That proof is also needed in case of a loss of that password. We use one-way hashing in combination with salt for all passwords.

Finally, we do not access or share any data unless required to by law or with your permission to help resolve system problems. 

Softwares used that may be in contact with customer data:

  • Kubernetes

Payments 

All supplied sensitive/credit information is transmitted via secure communication methods and then securely stored into our payment gateway provider’s database only to be accessible by those authorized with special access rights to such systems. The payment gateway provider must keep the information confidential. Aeris Cleantec AG does not store payment information, instead such information is kept with our payment providers who are PCI compliant.

Personal information in the aeris Communities and online

The Internet is not 100% secure. We cannot promise that your use of our or our partners sites will be completely safe. We encourage you to use caution when using the Internet. This includes not sharing your passwords and not signing onto devices that you do not know. If you participate in a discussion forum, local communities, or chat room on an aeris website, you should be aware that the information you provide there (i.e. your personal information) will be made broadly available to others, and could be used to contact you, send you unsolicited messages, or for purposes neither we nor you have control over. 

Also, please recognize that individual forums and chat rooms may have additional rules and conditions. We are not responsible for the Personal Information or any other information you choose to submit in these forums.

Storing your personal information

Your personal information is stored for as long as is reasonably necessary for the purposes for which it was collected, as described in this privacy notice. Where your information is no longer needed, we will take steps to ensure that it is disposed of in a secure manner or keep it in a form that does not permit identifying you. We have established time limits for certain data deletion, taking into account the type of services provided in the context of the Products and Services, the length of our relationship with you, mandatory retention periods, and the statute of limitations.

In some circumstances we may store your personal information for longer periods of time, for instance where we are required to do so in accordance with legal, regulatory, tax, accounting requirements. For example, we are obliged in certain cases store your personal information for tax and accounting purposes for periods of up to ten years from the end of the year in which business relations with you ends.

Subject to certain exemptions, and in some cases dependent upon the processing activity we are undertaking, you have certain rights in relation to your personal information. Click on the links below to learn more about each right you may have:

  1. To access personal information
  2. To rectify / erase personal information
  3. To restrict the processing of your personal information
  4. To transfer your personal information
  5. To object to the processing of personal information
  6. To object to how we use your personal information for direct marketing purposes
  7. To obtain a copy of personal information safeguards used for transfers outside your jurisdiction
  8. To lodge a complaint with your local supervisory authority

If you wish to access any of the above-mentioned rights, we may ask you for additional information to confirm your identity and for security purposes, in particular before disclosing personal information to you. 

You can exercise your rights by contacting us. Subject to legal and other permissible considerations, we will make every reasonable effort to honour your request promptly or inform you if we require further information in order to fulfil your request.

We may not always be able to fully address your request, for example if it would impact the duty of confidentiality we owe to others, or if we are legally entitled to deal with the request in a different way.

Right to access personal information

You have a right to request that we provide you with a copy of your personal information that we hold and you have the right to be informed of; (a) the source of your personal information; (b) the purposes, legal basis and methods of processing; (c) the data controller’s identity; and (d) the entities or categories of entities to whom your personal information may be transferred.

Right to rectify or erase personal information

You have a right to request that we rectify inaccurate personal information. We may seek to verify the accuracy of the personal information before rectifying it.

You can also request that we erase your personal information in limited circumstances where:

it is no longer needed for the purposes for which it was collected; or

you have withdrawn your consent (where the data processing was based on consent); or

following a successful right to object (see right to object); or

it has been processed unlawfully; or

to comply with a legal obligation to which the Company is subject.

We are not required to comply with your request to erase personal information if the processing of your personal information is necessary:

for compliance with a legal obligation; or

for the establishment, exercise or defence of legal claims;

You can ask us to restrict your personal information, but only where:

its accuracy is contested, to allow us to verify its accuracy; or

the processing is unlawful, but you do not want it erased; or

it is no longer needed for the purposes for which it was collected, but we still need it to establish, exercise or defend legal claims; or

you have exercised the right to object, and verification of overriding grounds is pending.

We can continue to use your personal information following a request for restriction, where:

we have your consent; or

to establish, exercise or defend legal claims; or

to protect the rights of another natural or legal person.

Right to transfer your personal information

You can ask us to provide your personal information to you in a structured, commonly used, machine readable format, or you can ask to have it transferred directly to another data controller, but in each case only where:

the processing is based on your consent or on the performance of a contract with you; and the processing is carried out by automated means.

Right to object to the processing of your personal information

You can object to any processing of your personal information which has our legitimate interests as its legal basis, if you believe your fundamental rights and freedoms outweigh our legitimate interests.

If you raise an objection, we have an opportunity to demonstrate that we have compelling legitimate interests which override your rights and freedoms.

Right to object to how we use your personal information for direct marketing purposes

You can request that we change the manner in which we contact you for marketing purposes.

You can request that we not transfer your personal information to unaffiliated third parties for the purposes of direct marketing or any other purposes.

Right to obtain a copy of personal information safeguards used for transfers outside your jurisdiction

You can ask to obtain a copy of, or reference to, the safeguards under which your personal information is transferred outside of the European Union.

We may redact data transfer agreements to protect commercial terms.

Right to lodge a complaint with your local supervisory authority

You have a right to lodge a complaint with your local supervisory authority, which in Ireland is the Data Protection Commission, if you have concerns about how we are processing your personal information.

We ask that you please attempt to resolve any issues with us first, although you have a right to contact your supervisory authority at any time.

“Do Not Sell My Personal Information”

The California Consumer Privacy Act (CCPA), gives residents of the state of
California the right to prevent businesses from selling their personal
information.

aeris takes your privacy very seriously. We do not sell your personal
information.

If you would like to know more, please contact us: privacy@aeris.io

The primary point of contact for all issues arising from this privacy notice is our Data Protection Officer. The Data Protection Officer can be contacted in the following ways:

privacy@aeris.io

aeris Cleantec AG (“Company”, “we” or “us”) based at Knonauerstrasse 54, 6330 Cham, Zug, Switzerland 

If you have any questions, concerns or complaints regarding our compliance with this privacy notice, the information we hold about you or if you wish to exercise your rights, we encourage you to first contact us. We will investigate and attempt to resolve complaints and disputes and make every reasonable effort to honor your wish to exercise your rights as quickly as possible and in any event, within the timescales provided by data protection laws.

Updates

We may amend this privacy notice from time to time to keep it up to date with legal requirements and the way we operate our business and will place any updates on this webpage. This privacy notice was last updated on June 2021. Please regularly check these pages for the latest version of this notice. If we make fundamental changes to this privacy notice, we will seek to inform you by notice on our website or email.

SECTION 1. WHAT PERSONAL INFORMATION WE COLLECT AND WHEN AND WHY WE USE IT

In this section you can find out more about:

  • the types of personal information we collect
  • when we collect personal information
  • how we use personal information
  • the legal basis for using personal information

When we collect information

We collect information about you, if you:

  • fill out and send us a form
  • register on our app;
  • purchase one of our Products and Services (defined below)
    1. aeris air purifier hardware products (“Our purifiers”),
    2. website(s) that may be accessed at https://www.aeris.ch/ (“Site”) and https://www.aeris.io
    3. services, including technical support and services accessible through the Site(s) (“Web Apps”),
    4. software that may be downloaded to your smartphone or tablet to access services (“Mobile Apps”), and
    5. subscription services, including services you can access using the Web Apps and Mobile Apps (“Notification and/or Subscription Services”).

Please Note: Third parties apps and/or software may also integrate aeris Products and Services into their products and services and we are not responsible for this integration. Additional information on our privacy practices may be provided in other documents such as offer descriptions, supplemental privacy statements, or notices provided prior to or at the time of data collection.

  • How we share personal information within the Company and with our service providers, regulators and other third parties

Personal information we collect and use if you register with or interact with our websites, online landing pages (including social media) or applications.

We collect personal information about you when you interact with one of our online services. More information about online data collection is found in the Cookie section below.

Registration

In order to use our Services or perfom a purchase, we may ask you to provide certain personal information when you purchase our products, create an account on our aeris mobile app or sign up to be on our mailing list.

We may ask you to submit the following types of personal Information: salutation, first and last name, address, country, telephone number and email address, payment information. The legal basis for this processing is Article 6 (1) b GDPR (performance of the contract).

Every time you use our website, we collect the access data that your browser or device automatically transmits to allow you to visit the website. This data is standard technical data (so-called log files) that are transmitted to our server:

  • IP Address of the requesting device,
  • Date and time of request,
  • Address of the website and the requesting website,
  • Information about the browser used, the operating system and the Internet Service Provider (ISP),
  • Online identifier (e.g. device identifiers, session IDs),
  • The data processing of this access data is necessary to enable the visit of the website and facilitates the functionality and safety of our systems. For the purposes described above, access data is also temporarily stored in internal log files to provide statistical information about the use of our website and app in order to provide our website with the usage habits of our visitors and to maintain our website and app administratively in general.

The information stored in the log files does not allow any direct conclusions to be drawn about you – In particular, we only store the IP addresses in a shortened, anonymised form. The legal basis for this processing is Article 6 (1) f GDPR (legitimate business interest).

Download and installation of the application

In order to download and install our app from an app store (e.g. Google Play Store or Apple App Store), you must first register with the provider of the app store for a user account and enter into a corresponding usage agreement with the store. We have no influence on this third party and are not party to the contract between you and the store. When downloading and installing the app, the necessary information is transferred to the respective app store, in particular your username, email address and your account’s customer number, the time of download and the individual device identification number. We have no control over this data collection and are not responsible for it. We only process this provided data to the extent necessary for downloading and installing the app on your mobile device (e.g. smartphone, tablet). In this case, the legal basis for this is Article 6 (1) f GDPR (legitimate business interest).

Registration on the app

In the case of connecting our products with of our app, we collect the following necessary or mandatory information for the app registration:

  • User’s location
  • Telephone Number, used as login
  • Creation of passwords
  • Email address
  • Upload of picture/print screen if deemed necessary

The data collected on our app are provided and created by the user and used only authentication purposes. The user created login is stored in the EU by Google servers.

The created password is automatically encrypted and cannot be accessed by any aeris employee. The user created password is stored in the EU by Google servers.

The provided email address is used to locate the user’s data base within the server. The user informed email address is stored in the EU by Google servers.

The users can disclose their location. By not allowing to show their location, the user will automatically forfeit the option to see their regional air quality index values. Our App connect to various public available air quality index center websites around the world, that provide the necessary information about the air quality in different regions.

The user’s location will be collected and stored into an aeris owned Google servers located within the EU. This information will be collected once and stored as the user’s primary location and will not be updated.

To reset the password a 2-steps-authentication process has to be performed.

aeris also uses software and server providers (app, web and software development) to assist and support our operations. For example: our app, web and software codes are written offline and later stored online. If you contact us for support regarding our app, web and software development, we will pass on your contact details and questions to other services that we use. These app, web and software Providers include:

  • Google (Google Ireland Limited, is a company registered office at Gordon House, Barrow Street, Dublin 4, Ireland)

https://cloud.google.com/security/gdpr?hl=de

  • Nginx

https://www.f5.com/company/policies/privacy-notice#no-sell

Information you voluntarily share or post.

We may collect personal information that you provide on aeris.ch & aeris.io and aeris Web Apps and Mobile Apps, or post in a public space on our website.

Information from a friend

If you choose to provide us with a third party’s Personal Information (such as name, email, and phone number), you must ensure that you have the third party’s permission to do so. Examples include providing us with the names and images that you associate with account users, forwarding reference or marketing material to a friend, or sending job referrals. The legal basis for this processing is Article 6 (1) a GDPR (your consent). We rely on the fact that you have obtained the necessary consents for this activity.

Social Media

aeris also uses certain providers (“Social Network Providers”) to assist and support operations. For example: If you contact us for support via our Facebook, Twitter LinkedIn, or Instagram page, we will pass on your contact details and questions to other services that we use to provide customer support. These Social Network Providers include:

https://www.whatsapp.com/legal/updates/privacy-policy-eea/?lang=de

Data processing related to our products

Personal information is collected in connection with our products depending on which products and how you use them. Below are business processes in which we collect and process personal information. This data is either provided to us directly by you or by third parties or collected by your activities on our website or by the use of our products. The legal basis for processing in relation to orders, product usage, app registration and customer services is the contract concluded with us under Article 6 (1) b GDPR (performance of the contract). Certain information about your purchase history is also used by us to ensure we can support you in the development of your relationship with us and ensuring you have the products and services that could be of interest to you. The legal basis for this processing is Article 6 (1) f GDPR (legitimate business interest).

Orders

In the case of an order process, we may collect the following necessary mandatory information for the processing of the contract:

  • First and last name,
  • Company name
  • Address, Town, City, Zip code, Country
  • Email address
  • Phone
  • Billing and shipping address,
  • Payment data (such as credit card, payment methods, payment transactions, bank details).

As an option, business information such as the company name, VAT-Number and EORI-Number, can also be provided, in order to provide a business invoice.

Klarna

We at Klarna care about your privacy. Therefore, we always collect and process your personal data responsibly and with your privacy in mind. This Privacy Notice describes how Klarna Bank AB (publ) (“Klarna”) collects and uses your personal data when you use any of Klarna’s services (the “Services”) and become a customer of ours. Examples of use of our Services are when you pay with any of our payment methods, when you contact us, when you use the Klarna web portal and mobile application (the “Klarna App”), or when your information is autofilled in the checkout of a store that uses Klarna. This Privacy Notice also describes your rights in relation to our use of your personal data, and how to exercise those rights.

This Privacy Notice applies, except for what is stated in Section 1 below, to all personal data that Klarna processes. It is therefore important that you read and understand this Privacy Notice. 

Some of our Services will provide you access to content and functionality offered by other companies or organizations other than Klarna (“Third Party Services”). This is for example the case when we link to third party sites from our websites, when you access third party sites while using the web browser in the Klarna App. This Privacy Notice does not apply to the collection and use of your personal data in Third Party Services, and Klarna is not responsible for such third parties’ processing of your personal data.

“We”, “our” or “us” means Klarna Bank AB (publ) registered with the Swedish companies register under the registration number 556737-0431 and with our main office located at Sveavägen 46, 111 34 Stockholm, Sweden. For the purposes of EU data protection law, we are a data controller in respect of the personal data we receive from you, or otherwise collect about you, and we are responsible for ensuring that we use your personal data in compliance with applicable data protection laws.

Here you can find out more about Klarna Privacy Notice: https://www.klarna.com/international/privacy-policy/

Product Usage

We collect information related to the use of our products and devices and statistics about the indoor air quality, in which your aeris air purifier is. This last information allows our devices to understand better their environments and provide you a better air quality. Power voltage information, fan speed, air quality values, particle matter, filter life time and model of the device are also collected information related to our products, Article 6 (1) b GDPR (performance of the contract).

Contact & Customer Service

You have different ways to get in touch with us through our website, by filling out our contact form, writing us over Intercom (chat box) or WhatsApp, sending an email at support@aeris.io or via app. The following data is collected:

  • Your first name, last name
  • Address
  • Email address
  • Proof of purchase
  • Telephone number

These app, web and software Providers include:

  • Intercom (Intercom – 3rd Floor, Stephens Ct., 18-21 St. Stephen’s Green, Dublin 2

https://www.intercom.com/legal/privacy

  • Hubspot (Hubspot Inc., 25 First Street, 2nd Floor, Cambridge, MA 02141 USA) https://legal.hubspot.com/privacy-policy
  • WhatsApp (WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)

https://www.whatsapp.com/legal/updates/privacy-policy-eea/?lang=de

To enhance our customer service troubleshooting capabilities, we will arrange, in some cases, a video or telephone call conference. Also, in order to make a better assessment of the situation we will also ask for visual and/or audio documentation of the problem, so we can solve the problem the best way possible. In order to send us these visual and/or audio files we will suggest the services, that we are currently using.

To the extent that the information is required to respond to your request or to initiate or execute a contract, we will process it solely for the purpose of communicating with you. This is necessary in order to be able to make an offer to you; to contact you.

In addition, we also collect this data for statistical purposes in order to improve our products and services, as well as for internal purposes, to provide training for our employees and to carry out quality checks. The legal basis for this is Article 6 (1) f (legitimate business interest).

Personal information we collect and use if you work with us as a professional business partner

The primary reason we process your personal information is to approve, manage, administer or effect an agreement between you and us. In this respect, we use your personal information, to organize our sourcing activities, issue purchase orders, process payments, perform accounting, manage our contract or review the services or products you supply us with. The legal basis for processing is the contract concluded with us under Article 6 (1) f GDPR (legitimate business interest).

Candidates and Employees

We will not collect any additional information, other the personal information that you provide to us, either by email or applying on one job platform we use for candidate selection, when you apply for a job with aeris, including your curriculum vitae and references. The legal basis for processing is the contract concluded with us under Article 6 (1) f GDPR (legitimate business interest).

Legal basis for using your personal information

We will only collect, use and share your personal information where we are satisfied that we have an appropriate legal basis to do this. This may be because:

  • we need to use your personal information to perform a contract or take steps to enter into a contract with you. For example, to take payment for the product you ordered and arrange delivery to your home or business address;
  • we need to use your personal information for our legitimate interest as a commercial organisation. For example, we may have to call to our customer so that we can review how we handle their issues and make any necessary improvements to the quality and training of our staff or to offer you services within our suite of products from any of the entities in the aeris Cleantec AG. In all such cases, we will look after your information at all times in a way that is proportionate and respects your privacy rights and you have a right to object to processing as explained here
  • we need to use your personal information to comply with a relevant legal or regulatory obligation that we have. For example, for tax reporting. We have your consent to using your personal information for a particular activity. For example, if you choose to do a survey with us to help us improve our products.

If you would like to find out more about the legal basis for which we process personal information, please contact us (privacy@aeris.io)

SECTION 2. SHARING PERSONAL INFORMATION WITH OTHERS

In this section you can find out more about how we share personal information:

within

  • our company
  • government organisations and agencies, law enforcement and regulators; and
  • with third parties that help us provide our products and services

We share your personal information in the manner and for the purposes described below:

  • Within the aeris Cleantec AG,

where such disclosure is necessary to provide you with our products or services or to manage our business or for marketing and promotional purposes or to improve the quality of our Products and Services.

  • With government organisations and agencies, law enforcement and regulators

which may include your local European data protection regulator and/ or the Data Protection Commission, to comply with all applicable laws, regulations and rules, and requests of law enforcement, regulatory and other governmental agencies. If necessary, to assert, exercise or defend legal claims or if we are required or permitted by law disclosure may take place in connection with government inquiries, court orders and legal proceedings if it is necessary for legal prosecution or enforcement.

  • With third parties who help manage our business and deliver services.

These third parties have agreed to confidentiality restrictions and use any personal information we share with them or which they collect on our behalf solely for the purpose of providing the contracted service to us. These third parties include:

  • banks and payment providers to authorize and complete payments;
  • Financial service providers (e.g. debt collection agencies) to which we can assign receivables from the contract with you, e.g. in the case of non-timely payment of products and services
  • Regulatory and legal service providers such as law firms, auditors and accountancy firms
  • Credit reference agencies and organisations working to prevent fraud in financial services
  • Warehouse and storage companies for managing the logistics of our products;
  • Delivery companies who transport and deliver our products,
  • Retail outlets and online retail providers who sell products on our behalf;
  • Telephone service providers (for example Swisscom, Sunrise) with whom we will contact you by phone.
  • Analysis and search engine providers (see below) to help us improve and optimize the website.
  • Data centers that store our website and databases including videos and images,
  • IT service providers who maintain our systems,
  • Consulting firms and PR agencies such as Amazon LLC or Google LLC, including agencies who help us with sending marketing communications, who assist us with sales and marketing-related efforts or post-sales support, and providing customer support.
  • If, in the future, we sell or transfer some or all of our business or assets to a third party, we may disclose information to a potential or actual third-party purchaser of our business or assets.
  • We may share in aggregate, statistical form, non-personal information regarding the visitors to our website, traffic patterns, and website usage with our partners, affiliates or advertisers including Amazon LLC, Google LLC. and Facebook Limited.
  • From time to time we might need to share your personal information with others and for different reasons and in that case we will notify you and obtain your consent prior to the sharing.

If, in the future, we sell or transfer some or all of our business or assets to a third party, we may disclose information to a potential or actual third-party purchaser of our business or assets.

We may share in aggregate, statistical form, non personal information regarding the visitors to our website, traffic patterns, and website usage with our partners, affiliates or advertisers including Amazon LLC, Google LLC. and Facebook Limited.

From time to time we might need to share your personal information with others and for different reasons and in that case we will notify you and obtain your consent prior to the sharing.

A complete list of Third parties (processors) is found here. As our business grows and evolves, the third parties that we engage with may also change over time. We will notice by posting any changes here. Please check back here to stay in the loop.

The legal basis is both the contract concluded between you and us under Article 6 (1) b GDPR (performance of the contract), as well as Article 6 (1) f GDPR (legitimate business interest).

SECTION 3. EXPLAINING MORE ABOUT DIRECT MARKETING AND PROFILING

In this section you can find out more about

  1. how we use personal information to keep you up to date with our products and services.
  2. how you can manage your marketing preferences
  3. when and how we undertake profiling and analytics

How we use personal information to keep you up to date with our products and services

We may use personal information to let you know about our products and services that we believe will be of interest to you. We use the personal information that we may have such as first name, surname, home address, purchase history, telephone number, email address and country of residence. We may contact you by email, post, or telephone or through other communication channels (such as targeted online advertising). We only want to contact you when it makes sense, not for all types of advertising communications.

Where we have your contact details because you have recently bought or expressed an interest in our Products and Services, we will keep you informed about similar products or services (including special offers and discounts). In some cases, we receive personal information from third-party companies such as marketing companies, 3rd party advertising engines (such as Amazon LLC or Google LLC), web search engines and online comparison portals, such as your name, telephone number and e-mail address. We collect and process this data for the purpose of offering and selling our products and services to you.

We also use your personal information for statistical purposes to collected information that we use to improve our products and services and to administer the customer relationship. In all cases, we will respect your preferences for how you would like us to manage marketing activity with you. We do this based on Art. 6 1 (f) (legitimate business interest) and in some cases, Art. 6 1 (a) (your consent).

How you can manage your marketing preferences

To protect privacy rights and to ensure you have control over how we manage marketing with you:

  1. we will take steps to limit direct marketing to a reasonable and proportionate level and only send you communications which we believe may be of interest or relevance to you;
  2. at any time, you can update or change your preferences for the way in which you would like us to communicate with you, including how you receive details of latest offers or news updates from us;
  3. You can also click the “unsubscribe” link that you find on any online newsletters you receive or contact our customer support team by sending us an email (privacy@aeris.io);
  4. you can ask us to stop direct marketing at any time you can ask us to stop sending email marketing, by following the “unsubscribe” link you will find on all the email marketing messages we send you. Alternatively, you can contact us here (privacy@aeris.io). Please specify whether you would like us to stop all forms of marketing or just a particular type (e.g. email); and
  5. you can change the way your browser manages cookies, which may be used to deliver online advertising, by following the settings on your browser.

We recommend you routinely review the privacy notices and preference settings that are available to you on any social media platforms as well as your preferences within your account with us. To understand more about third parties who help with analytics, please see the cookie section below.

When and how we undertake profiling and analytics

We use your data as part of data analysis and market research. In particular, we pursue the purpose of dividing our customers and interested parties into different target and user groups in the context of market research (user segmentation), for insights into different target groups and their respective usage habits and interests, demographics and the marketing of these findings in the context of advertising services provided to third parties. We also use personal information to administer customer relations, for example to handle customer service matters, price adjustments and customer satisfaction surveys. In order to operate with suitable price adjustments for our different customer categories we may look at parameters such as your address, contract duration and your interactions with us. None of the aforementioned processing results in significant or legal decisions being made about you on a wholly automated basis.

Depending on the purpose, we use the data stored with us. For example, we use aggregated, statistical data, and also depersonalized (anonymized) data or pseudonymised data, as well as purchase history data and device and access data, for analytics, and for analysis. This gives us anonymous or pseudonymised insights into the general usage behaviour of our customers and interested parties. For more information please see the Cookie section below.

SECTION 4. TRANSFERRING PERSONAL INFORMATION GLOBALLY

In this section you can find out more about:

  1. how we operate as a global business and transfer data internationally.
  2. the arrangements we have in place to protect your personal information if we transfer it overseas.

How we operate as a global business and transfer data internationally

We operate on a global basis. Accordingly, your personal information may be transferred and stored in countries outside the EU including the US, Hong Kong, Singapore, Switzerland and that are subject to different standards of data protection.

The arrangements we have in place to protect your personal information if we transfer it overseas

We will take appropriate steps to ensure that transfers of personal information are in accordance with applicable law and carefully managed to protect your privacy rights and interests and transfers are limited to countries which are recognized as providing an adequate level of legal protection or where we can be satisfied that alternative arrangement are in place to protect your privacy rights. To this end:

  1. we ensure transfers within the aeris Cleantec AG will be covered by an agreement entered into by members of the company (a company agreement) which contractually obliges each member to ensure that personal information receives an adequate and consistent level of protection wherever it is transferred within the aeris Cleantec AG;
  2. where we transfer your personal information outside aeris Cleantec AG or to third parties who help provide our products and services, we obtain contractual commitments from them to protect your personal information. Some of these assurances are well recognized certification schemes like the EU US Privacy Shield for the protection of personal information transferred from within the EU to the United States; or
  3. where we receive requests for information from law enforcement or regulators, we carefully validate these requests before any personal information are disclosed.

You have a right to contact us (privacy@aeris.io) for more information about the safeguards we have put in place (including a copy of relevant contractual commitments) to ensure the adequate protection of your personal information when this is transferred as mentioned above. The legal basis is both the contract concluded between you and us under Article 6 (1) b GDPR (performance of the contract), as well as Article 6 (1) f GDPR (legitimate business interest)

SECTION 5. HOW WE PROTECT AND STORE YOUR INFORMATION

In this section you can find out more about

  • Security of your personal information
  • Personal information in the aeris Communities and online
  • Storing your personal information

Security of your personal information when using our aeris App

We have implemented and continuously improve our technical and organisational security measures, policies and procedures designed to reduce the risk of accidental destruction or loss, or the unauthorised disclosure or access to such information appropriate to the nature of the information concerned.

As the security of your personal information depends in part on the effectiveness of the security of the devices (computer/ laptop/ mobile/ tablet/ etc) you use to communicate with us and the security measures you use to protect your access (User logins and passwords), we encourage you to take necessary measures to protect this information.

Our aeris air purifiers connect to the aeris app using a WiFI Protected Setup (WPS) and WPA2-AES data encryption. The WiFI connection must be protected by a password that is not saved by the product, our app nor our servers. The aeris air purifiers connect to the backend through the WiFI connection that has been configured prior by the customer.

The data collected are transmitted in a secure encrypted TCP connection to our servers. Accounts are authenticated using a secure login mechanism with password and phone number. To register, the user has to prove the phone number ownership with a SMS authentification system. That proof is also needed in case of a loss of that password. We use one-way hashing in combination with salt for all passwords.

Finally, we do not access or share any data unless required to by law or with your permission to help resolve system problems.

Softwares used that may be in contact with customer data:

  • Kubernetes

Payments

All supplied sensitive/credit information is transmitted via secure communication methods and then securely stored into our payment gateway provider’s database only to be accessible by those authorized with special access rights to such systems. The payment gateway provider must keep the information confidential. Aeris Cleantec AG does not store payment information, instead such information is kept with our payment providers who are PCI compliant.

Personal information in the aeris Communities and online

The Internet is not 100% secure. We cannot promise that your use of our or our partners sites will be completely safe. We encourage you to use caution when using the Internet. This includes not sharing your passwords and not signing onto devices that you do not know. If you participate in a discussion forum, local communities, or chat room on an aeris website, you should be aware that the information you provide there (i.e. your personal information) will be made broadly available to others, and could be used to contact you, send you unsolicited messages, or for purposes neither we nor you have control over.

Also, please recognize that individual forums and chat rooms may have additional rules and conditions. We are not responsible for the Personal Information or any other information you choose to submit in these forums.

Storing your personal information

Your personal information is stored for as long as is reasonably necessary for the purposes for which it was collected, as described in this privacy notice. Where your information is no longer needed, we will take steps to ensure that it is disposed of in a secure manner or keep it in a form that does not permit identifying you. We have established time limits for certain data deletion, taking into account the type of services provided in the context of the Products and Services, the length of our relationship with you, mandatory retention periods, and the statute of limitations.

In some circumstances we may store your personal information for longer periods of time, for instance where we are required to do so in accordance with legal, regulatory, tax, accounting requirements. For example, we are obliged in certain cases store your personal information for tax and accounting purposes for periods of up to ten years from the end of the year in which business relations with you ends.

SECTION 6. LEGAL RIGHTS AVAILABLE TO HELP MANAGE YOUR PRIVACY

Subject to certain exemptions, and in some cases dependent upon the processing activity we are undertaking, you have certain rights in relation to your personal information. Click on the links below to learn more about each right you may have:

  1. To access personal information
  2. To rectify / erase personal information
  3. To restrict the processing of your personal information
  4. To transfer your personal information
  5. To object to the processing of personal information
  6. To object to how we use your personal information for direct marketing purposes
  7. To obtain a copy of personal information safeguards used for transfers outside your jurisdiction
  8. To lodge a complaint with your local supervisory authority

If you wish to access any of the above-mentioned rights, we may ask you for additional information to confirm your identity and for security purposes, in particular before disclosing personal information to you.

You can exercise your rights by contacting us. Subject to legal and other permissible considerations, we will make every reasonable effort to honour your request promptly or inform you if we require further information in order to fulfil your request.

We may not always be able to fully address your request, for example if it would impact the duty of confidentiality we owe to others, or if we are legally entitled to deal with the request in a different way.

Right to access personal information

You have a right to request that we provide you with a copy of your personal information that we hold and you have the right to be informed of; (a) the source of your personal information; (b) the purposes, legal basis and methods of processing; (c) the data controller’s identity; and (d) the entities or categories of entities to whom your personal information may be transferred.

Right to rectify or erase personal information

You have a right to request that we rectify inaccurate personal information. We may seek to verify the accuracy of the personal information before rectifying it.

You can also request that we erase your personal information in limited circumstances where:

it is no longer needed for the purposes for which it was collected; or

you have withdrawn your consent (where the data processing was based on consent); or

following a successful right to object (see right to object); or

it has been processed unlawfully; or

to comply with a legal obligation to which the Company is subject.

We are not required to comply with your request to erase personal information if the processing of your personal information is necessary:

for compliance with a legal obligation; or

for the establishment, exercise or defence of legal claims;

You can ask us to restrict your personal information, but only where:

its accuracy is contested, to allow us to verify its accuracy; or

the processing is unlawful, but you do not want it erased; or

it is no longer needed for the purposes for which it was collected, but we still need it to establish, exercise or defend legal claims; or

you have exercised the right to object, and verification of overriding grounds is pending.

We can continue to use your personal information following a request for restriction, where:

we have your consent; or

to establish, exercise or defend legal claims; or

to protect the rights of another natural or legal person.

Right to transfer your personal information

You can ask us to provide your personal information to you in a structured, commonly used, machine readable format, or you can ask to have it transferred directly to another data controller, but in each case only where:

the processing is based on your consent or on the performance of a contract with you; and the processing is carried out by automated means.

Right to object to the processing of your personal information

You can object to any processing of your personal information which has our legitimate interests as its legal basis, if you believe your fundamental rights and freedoms outweigh our legitimate interests.

If you raise an objection, we have an opportunity to demonstrate that we have compelling legitimate interests which override your rights and freedoms.

Right to object to how we use your personal information for direct marketing purposes

You can request that we change the manner in which we contact you for marketing purposes.

You can request that we not transfer your personal information to unaffiliated third parties for the purposes of direct marketing or any other purposes.

Right to obtain a copy of personal information safeguards used for transfers outside your jurisdiction

You can ask to obtain a copy of, or reference to, the safeguards under which your personal information is transferred outside of the European Union.

We may redact data transfer agreements to protect commercial terms.

Right to lodge a complaint with your local supervisory authority

You have a right to lodge a complaint with your local supervisory authority, which in Ireland is the Data Protection Commission, if you have concerns about how we are processing your personal information.

We ask that you please attempt to resolve any issues with us first, although you have a right to contact your supervisory authority at any time.

SECTION 7. CALIFORNIA CONSUMER PRIVACY ACT (CCPA)

“Do Not Sell My Personal Information”

The California Consumer Privacy Act (CCPA), gives residents of the state of California the right to prevent businesses from selling their personal information.

aeris takes your privacy very seriously. We do not sell your personal information.

If you would like to know more, please contact us: privacy@aeris.io

SECTION 8. HOW YOU CAN CONTACT US FOR MORE SUPPORT

The primary point of contact for all issues arising from this privacy notice is our Data Protection Officer. The Data Protection Officer can be contacted in the following ways: privacy@aeris.io

aeris Cleantec AG (“Company”, “we” or “us”) based at Knonauerstrasse 54, 6330 Cham, Zug, Switzerland

If you have any questions, concerns or complaints regarding our compliance with this privacy notice, the information we hold about you or if you wish to exercise your rights, we encourage you to first contact us. We will investigate and attempt to resolve complaints and disputes and make every reasonable effort to honor your wish to exercise your rights as quickly as possible and in any event, within the timescales provided by data protection laws.

Issue Date of Privacy Notice:  11th June 2021

+

0% financing available with Affirm

As an example, a $1,000 Aeris purchase might cost $83.34/mo over 12 months at 0% APR. A down payment may be required.

Quick and easy

Enter a few pieces of information for a real-time decision

No hidden fees

Know up front exactly what you'll owe, with no hidden costs and no surprises.

Just select at checkout

Subject to credit check and approval. Down payment may be required. For purchases under $100, limited payment options are available. Affirm loans are made by Cross River Bank, a New Jersey State Chartered Commercial Bank, Member FDIC.

de_DEGerman

Invite & Earn

X
Signup to start sharing your link
Signup