Privacy Policy

The responsible and transparent handling of personal data is an important concern for us. With this privacy policy, we inform you about what data we collect, for what purposes we process it, and to whom we may disclose it.

We regularly review and update this privacy policy to ensure that it always complies with current legal requirements and provides you with maximum transparency.

Table of Contents:

Definitions

What are personal data?

Personal data (also referred to as "person data") are any information that relate to an identified or identifiable natural person. This includes information such as name, address, date of birth, email address, or telephone number. Technical data such as an IP address and information about personal interests, hobbies, or memberships also fall under personal data.

What are special categories of personal data?

Special categories of personal data (also referred to as "particularly sensitive data") include in particular:

• Information about religious, political, philosophical, or trade union beliefs or activities

• Data regarding health, sexuality, ethnic origin, sexual orientation, or intimate life

• Information in connection with criminal or administrative proceedings and sanctions, as well as regarding the receipt of social benefits

• Genetic and biometric characteristics that can uniquely identify a person

Where necessary and if you provide us with such data actively, we may process information from these special categories. In such cases, processing will occur under increased confidentiality and protection requirements.

What does processing of personal data mean?

Processing (or "handling") of personal data refers to any interaction with such information – regardless of the means or procedures used. This includes in particular the collection, storage, use, adjustment, forwarding, archiving, deletion, or destruction of data.

What does disclosure of personal data mean?

Disclosure refers to the sharing or making accessible of personal data, for example through transmission to third parties or publication.

If you have questions or concerns about the protection of your data by us, you can contact our data protection officer:

Jato-Düsenbau AG
Täschmattstrasse 23, 6015 Lucerne
Roland Häfliger
rhaefliger@jato.ch

What We Do

Jato-Düsenbau AG (Täschmattstrasse 23, 6015 Lucerne) is the operator of the website https://jato.ch (hereinafter referred to as "we" or "us"). On this website, you have the opportunity to learn about our company, utilize our digital services, and get in touch with us.

We place a high priority on the responsible handling of your personal data. In this privacy policy, we clearly and transparently explain what information is collected when you visit our website and how we process it.

About what we inform

In this privacy policy, we specifically inform you about:

• Responsible party: Who is responsible for the processing of your personal data.

• Data collected: What types of data we collect in the course of using our website.

• Purpose of use: For what purposes the collected data will be used.

• Disclosure: To which third parties or service providers we may pass on data.

• Right to object: How you can object to a specific data processing at any time.

• Your rights: What rights you have regarding your data (e.g., access, correction, deletion) and how you can assert these rights with us.

Data Security

We store your personal data securely and take all appropriate measures to protect it against loss, unauthorized access, misuse, or alteration.

Our employees and contractors who have access to your data are required to comply with applicable data protection regulations. In certain cases, it may be necessary to forward your request to affiliated companies as part of data processing. Even in these situations, your data will be treated confidentially and exclusively for the intended purpose.

On our website, we use the SSL (Secure Socket Layer) protocol in conjunction with the highest encryption level supported by your browser.

Rights for Affected Persons

Right of Access

You have the right to request information from us at any time about the personal data we hold about you. Please send your request along with suitable proof of identity to info@jato.ch.

The information will be provided in written form or, if requested, also by other means, possibly electronically. If you ask, we can also provide the information orally, provided you prove your identity in an appropriate manner. If you submit your request electronically, you will receive the information in a common electronic format, unless you explicitly request a different form.

In general, the information is provided free of charge. If you request additional copies, a reasonable fee may be charged. However, the right to a copy of the processed data must not violate the rights and freedoms of other persons.

In case of clearly unfounded or excessive requests, we reserve the right to refuse the information in accordance with legal requirements or to charge a fee for it.

We will process your request generally within 30 days. If the processing takes more time due to complexity or a high number of requests, the period may be extended by up to two additional months. In this case, you will be informed of the extension and its reasons within one month.

Deletion and Correction

You have the right to request the deletion, correction, or completion of your data at any time, provided there are no legal retention obligations or other legal reasons to the contrary.

Please note that the exercise of these rights in individual cases may affect existing contractual obligations (e.g., premature termination of the contract or additional costs).

Restriction of Processing

In addition, you may request the restriction of processing if:

• You contest the accuracy of the data,

• The processing is unlawful,

• The data is no longer needed, or

• You have filed an objection against the processing.

During the restriction, the data may generally only be stored. Further processing is only permitted with your consent, for the enforcement or defense of legal claims, for the protection of the rights of third parties, or for important reasons of public interest. You will be notified as soon as the restriction is lifted.

Right to Data Portability

You have the right to receive the data processed by us in a common format or (as far as technically possible) to have it transferred to a third party if:

• You have consented to the processing, or

• The data was provided in the context of a contract conclusion or its execution.

Right to Object

You can object to the processing of your data at any time for reasons arising from your particular situation, if the processing is based on our legitimate interests. This also applies to profiling and processing for direct marketing purposes.

Legal Remedy

If you are affected by the processing of personal data, you have the right to assert your claims in court or to file a complaint with the competent supervisory authority. In Switzerland, this is the Federal Data Protection and Information Commissioner (EDÖB).

Data Processing in General

What data do we process and where does it come from?

Primarily, we process personal data that you provide to us or that we automatically collect while operating our website. In certain cases, we also receive personal data from third parties. This can involve the following categories:

• Personal identification data (e.g. name, address, date of birth)

• Contact details (e.g. phone number, email address)

• Financial information (e.g. bank details)

• Online identifiers (e.g. cookie ID, IP address)

These informations may particularly come from the following sources:

• publicly accessible information (e.g. internet, media)

• official registers (e.g. commercial register, debt collection register, land register)

• administrative or judicial proceedings

• information regarding your professional activity or function (e.g. professional networks)

• correspondence or meetings with third parties

• credit reports (in business transactions)

• communications from individuals in your environment in connection with a contract conclusion or contract fulfillment

• data related to the use of our website

Legal Grounds for Processing

We process personal data in good faith, purposefully, and proportionately. If there is an exceptional deviation from these principles, processing remains lawful if a permissible justification exists. This includes in particular:

• Your explicit consent

• the fulfillment of contractual or pre-contractual obligations

• legal requirements

• our legitimate interests, provided your protectable interests do not outweigh

In certain cases, you may be required to provide us with certain personal data in order to enter into a business relationship or to fulfill a contract. Without this data, contract execution is generally not possible. The use of our website also technically requires certain data, such as your IP address.

Revocation of Granted Consent

If you have granted us consent to process your data, we will process this data solely within the scope of the specified purpose, unless there is another legal basis.

You can revoke your consent at any time with effect for the future by sending us an email to the address specified in the imprint. Previous processing remains unaffected.

Disclosure of Data to Third Parties

a. Principle
We engage external service providers or affiliated companies to process personal data when needed (so-called processors). This particularly includes:

• accounting, fiduciary and auditing companies

• consulting firms (e.g. legal or tax consulting)

• IT service providers (e.g. hosting, support, cloud services, website development)

• payment service providers (only with your prior consent)

• providers of tracking, conversion and marketing services

Disclosure to third parties only occurs with your explicit consent or if it involves contract processing. In all cases, we ensure that recipients comply with applicable data protection regulations and treat your data confidentially. Under certain circumstances, we are obliged to disclose data to authorities as well.

b. Disclosure to Partners and Cooperation Companies
We occasionally collaborate with partners who provide their own offerings on our website. These are identifiable as advertisements or third-party offers.

If you use such an offer, we will transmit your personal data (e.g. name, function, communication data) to the respective partner or cooperation company - but only if you have expressly consented beforehand. After transmission, these companies are independently responsible for processing, and their data protection regulations apply.

c. Data Transmission Abroad
As part of contract processing, personal data may be transmitted to companies abroad. These companies are subject to the same data protection obligations as we are.

If processing takes place in a country without an equivalent level of data protection, we conduct a risk assessment in advance and ensure, through appropriate guarantees (e.g. EU standard contractual clauses or other legally recognized measures), that comparable protection is guaranteed. If the risk assessment results negatively, we will take additional technical security measures.

You can view the EU standard contractual clauses at the following link.

Retention Period

We only retain personal data as long as necessary to achieve the respective purposes.

Contract-related data are subject to longer legal retention periods. Business communications, concluded contracts, and booking documents must be stored for up to 10 years. To the extent that we no longer need this data for direct service provision, they will be restricted and used solely for accounting purposes as well as for tax obligations.

Data Processing in Detail

The following services are used on our website to collect personal data.

Provision of the Website and Creation of Logfiles

If you only visit our website https://jato.ch without registering or actively entering information, we only collect the data that your browser automatically transmits to our server. This information is technically necessary to display the website and ensure the stability and security of operations.

What data is processed?

As part of the provision of the website and the creation of logfiles, the following data is specifically collected:

• Name of your internet service provider

• IP address

• Technical specifications (e.g., browser type, operating system, screen resolution)

• Date and time of access

• Referrer URL (the previously visited page)

This information is not used to draw conclusions about your person. There is no merging with other data sources.

Purpose of Processing

The processing of these logfiles serves to ensure the smooth operation of the website as well as to guarantee the security of our information technology systems.

Disclosure of Data

Disclosure of this data occurs exclusively in accordance with the general statements regarding data transfer in this privacy policy.

Duration of Storage and Right to Object

The collected data will only be stored as long as necessary to achieve the respective purpose. In general, the logfiles are deleted after the end of your session.

Since the storage of logfiles is essential for the operation of the website, there is no possibility to object to this processing, unless you refrain from visiting our website.

Use of Cookies

Our website uses cookies. These are small text files that are stored on your device via your browser when you visit our site. Cookies do not cause any harm and do not contain viruses. Some cookies are technically necessary for the website to function properly.

We primarily use so-called session cookies, which are automatically deleted at the end of your visit. Other cookies remain stored on your device beyond the session until you delete them yourself or the stored duration expires.

Purpose of Processing

We use cookies to make our website more user-friendly, secure, and efficient. Specifically, they serve, among other things, to:

• Save your settings and preferences (e.g., language or location),

• Provide content more quickly and visually appealing (e.g., through fonts or content delivery networks),

• Statistically evaluate the use of the website to continuously improve our offerings (often involving third-party cookies).

Which cookies are used in detail – particularly technically non-essential ones – will be explained in the following sections of this privacy policy.

Disclosure of Data

Data collected in connection with cookies is shared in accordance with the general information on data sharing in this privacy policy. Additionally, the details in the individual sections regarding specific data processing apply.

Controlling and Deactivating Cookies

Cookies are stored locally on your device. You can delete them entirely at any time or disable or restrict storage via your browser settings. Please note that disabling certain functions of our website may no longer be fully available.

You can find help on managing cookies in the instructions of common browsers:

• Google Chrome

• Apple Safari

• Microsoft Edge

• Mozilla Firefox

For cookies used for reach measurement or advertising purposes, you can also declare a general objection (opt-out) through various platforms:

• Network Advertising Initiative (NAI)

• YourAdChoices / Digital Advertising Alliance

• Your Online Choices / European Interactive Digital Advertising Alliance (EDAA)

Use of Zählpixeln (Web Beacons)

On our website as well as in our emails, so-called Zählpixeln (also referred to as web beacons) may be used. These are small, usually invisible image files that are automatically loaded when a webpage is accessed or an email is opened.

What data is processed?

Counting pixels can capture similar data as when creating log files. Furthermore, movement profiles of the entire session can be created. In many cases, counting pixels are integrated by third-party providers whose services we utilize. More information about these third-party providers can be found in the relevant sections of this privacy policy.

Purpose of Processing

We use counting pixels to analyze the usage of our website, evaluate it statistically, and continuously improve our offerings. In addition, counting pixels can be used in the context of email tracking to determine, for example, whether and when an email was opened.

Data Sharing

Data collected through counting pixels are shared in accordance with our general notices on data sharing. Please also refer to the specific information about the tracking services used in this privacy policy.

How can you prevent processing?

You can prevent the use of counting pixels in various ways:

• by using suitable browser add-ons (e.g., uBlock Origin) that block tracking content

• by disabling the display of external graphics in your email program

Google Analytics

We use the analytics service Google Analytics on our website, provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland. For certain processing activities, the parent company Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, may also be responsible (hereinafter collectively "Google").

Which data is processed?

Google Analytics enables the analysis of the use of our website. In particular, the following data may be collected:

• anonymized IP address

• technical information (e.g. browser type, operating system, screen resolution)

• interactions on the website (e.g. clicks, page views)

• duration of the visit

• time and date of access

• referrer URL (the previously visited page)

The IP address is anonymized by Google before storage, so that a direct personal reference is excluded. Upon your first visit to our website, Google Analytics may assign a unique identifier to recognize returning visitors. If you are logged in with a Google account, processing may also occur cross-device.

Purpose of processing

The processing is carried out for the following purposes:

• Determining the approximate location of users to analyze the regional relevance of our offerings

• Measuring the effectiveness of marketing campaigns and advertising channels

• Optimizing the representation of the website on different devices

• Evaluating interactions and visit duration to improve user-friendliness

• Analyzing which content is particularly relevant for visitors

• Processing the referrer URL to assess and optimize our marketing strategies

Data sharing

The sharing of data collected by Google Analytics is done in accordance with our general explanations regarding data sharing. As Google is a globally operating company, data may also be transferred to countries outside the EU or the EEA, particularly to the USA. Currently, there is no data protection level comparable to that of Switzerland or the EU in place there.

We therefore ensure that appropriate safeguards for the protection of your data are in place – for example, by concluding EU standard contractual clauses or other legally recognized protective mechanisms.

Google Tag Manager

We use the Google Tag Manager on our website, a service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland. For certain processing operations, Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, may also be responsible (hereinafter collectively referred to as "Google").

The Google Tag Manager is used for the central management of tracking and analysis tags (e.g. Facebook Pixel, Google Analytics, Hotjar). The Tag Manager itself does not process personal data and does not have access to such data. It only provides the technical integration and control of the individual tools.

All tracking tags used that collect personal data are described separately in this privacy policy.

Unpkg

Our website uses Unpkg, a Content Delivery Network (CDN) for JavaScript packages. A CDN is intended to reduce loading times for web applications and to improve availability. Through Unpkg, developers can integrate JavaScript libraries and dependencies without having to provide them on their own servers.

The integration is typically done to:

• increase the performance and loading speed of our website,

• reduce the server load since content is delivered from external servers,

• always make the latest version of certain JavaScript packages available.

When retrieving content via Unpkg, technical data, such as your IP address and browser information, is transmitted to Unpkg's servers.

cdnjs

Our website uses CDNJS, a public Content Delivery Network (CDN) for JavaScript libraries. A CDN allows frequently used libraries to be delivered through a globally distributed network, rather than loading them directly from the origin server of the website.

The use of CDNJS is particularly intended to:

• optimize the loading speed of the website by delivering content from a geographically nearby server,

• improve the reliability and stability of the page load worldwide,

• reduce the server load on our own web server,

• enhance the overall performance of the website.

When retrieving JavaScript libraries via CDNJS, technical data such as your IP address as well as information about the browser and device are transmitted to the servers of the CDN provider.

Google ReCaptcha

We use Google reCAPTCHA on our website. The provider is Google Ireland Ltd., Google Building Gordon House, Barrow St, Dublin 4, Ireland. The headquarters of the parent company Google LLC is located at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Together, they are referred to as "Google" hereafter.

What data is processed?

Google reCAPTCHA is a security service that helps websites distinguish real users from automated programs (bots). In particular, the following data may be collected:

• IP address

• Technical information such as the browser used, operating system, or screen resolution

• Interactions with the captcha

The IP address is anonymized by Google reCAPTCHA, making it impossible to establish a direct personal reference. When a user visits our site for the first time, Google reCAPTCHA may also assign an identifier to recognize the visitor on subsequent accesses.

What is the purpose of the processing?

The processing of the IP address is intended to determine the approximate location of the visitor and to prevent suspicious activities, for example when an IP address has already been flagged in connection with spam or other unwanted behavior.
Technical data is used to adjust the captcha to the respective device and browser as well as to identify deviations from normal usage behavior.
The interaction data helps capture typical behavior patterns and reliably distinguish human users from bots. The goal of reCAPTCHA is to protect forms from abuse by automated accesses while enabling smooth use for humans. The collected data is not used to personally identify you.

To whom is the data disclosed?

The disclosure of data is subject to our general information on data transfer. Since Google is a global company, data may be transferred to various countries. Transfer to the USA, where Google’s headquarters is located, is possible. There may not be an adequate level of data protection comparable to the EU standard.

Last updated on December 14, 2025