Privacy Policy – ASDHR.org

Last updated: April 8, 2025

1. Introduction

At ASDHR – Agence Suisse pour le Développement et les Droits de l’Homme, we are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, share and protect your data when you interact with us — whether through our website, email communications, donation forms, events, or any other contact.

This policy complies with the Swiss Federal Act on Data Protection (nFADP) and the EU General Data Protection Regulation (GDPR). It applies to all users of our website and services, regardless of their country of residence.

2. Who we are

Data Controller:
ASDHR – Agence Suisse pour le Développement et les Droits de l’Homme
Rue du Rhône 14, 1204 Geneva – Switzerland
Email: info@asdhr.org

If you have any questions about this Privacy Policy or your data, you can contact us at the address above.

3. What data do we collect?

We collect the following types of personal data, depending on your interaction with us:

• Identity data: name, surname, title

• Contact data: email address, postal address, phone number

• Technical data: IP address, browser type, device type, language, pages visited

• Usage data: interactions with our website, forms submitted

• Donation data: donation amount, payment method (we do not store full credit card details)

• Communication preferences: newsletter subscriptions, consent records

We do not collect or process sensitive personal data (e.g., health, religion, political beliefs) unless strictly necessary and with explicit consent.

4. How do we collect your data?

Your personal data is collected in the following ways:

• When you visit our website

• When you fill in a contact, donation, or newsletter form

• When you register for an event or webinar

• When you send us an email or call us

• When you interact with us on social media

• Through cookies and analytics tools (see our Cookie Policy)

5. Why do we process your data?

We process your data for the following purposes:

• To respond to your inquiries or requests

• To manage donations and issue receipts

• To send newsletters, updates, and event invitations (only with your consent)

• To improve our website and user experience

• To ensure security and prevent fraud

• To comply with legal obligations

6. Legal basis for processing

Depending on the context, our legal basis for processing your data is:

• Consent: for newsletters, optional cookies, or event participation

• Contractual necessity: when processing your donations or event registrations

• Legal obligation: for financial recordkeeping or regulatory compliance

• Legitimate interest: to improve our website, prevent fraud, or communicate with our supporters (when this does not override your rights)

7. How long do we keep your data?

We retain your personal data only as long as necessary for the purposes listed above or to comply with legal obligations.

• Newsletter subscriptions: until you unsubscribe

• Donation and financial data: 10 years (in line with Swiss accounting law)

• Analytics data: anonymized and kept for up to 14 months

• Contact forms and email correspondence: up to 2 years unless longer retention is justified

8. Sharing your data

We do not sell or rent your personal data.

We may share your data with trusted third parties only when necessary, for example:

• Payment processors (e.g., Stripe, PayPal)

• Email platforms (e.g., Mailchimp, Brevo)

• Website and analytics providers (e.g., Matomo, Google Analytics)

• Cloud services and IT support providers

• Legal and regulatory authorities (only when required by law)

All service providers are contractually obligated to protect your data in compliance with Swiss and EU standards.

9. Data transfers outside Switzerland / EEA

If your personal data is transferred to countries outside Switzerland or the European Economic Area (EEA), we ensure that adequate safeguards are in place, such as:

• Transfer to countries with adequate protection (as determined by the Swiss FDPIC or EU Commission)

• Standard Contractual Clauses (SCCs) approved by the EU

• Binding Corporate Rules or equivalent mechanisms

10. Your rights

You have the following rights under data protection laws:

• Right to access your data

• Right to rectification of incorrect or incomplete data

• Right to erasure (“right to be forgotten”)

• Right to restrict processing

• Right to object to certain types of processing (e.g. direct marketing)

• Right to data portability

• Right to withdraw consent at any time

To exercise your rights, please contact us at info@asdhr.org. You also have the right to file a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC) or the Supervisory Authority in your country.

11. Security of your data

We take appropriate technical and organizational measures to secure your data from unauthorized access, alteration, disclosure or destruction. These include:

• SSL encryption

• Secure servers and firewalls

• Restricted access on a need-to-know basis

• Data minimization principles

• Regular backups and system audits

12. Minors

Our services are not directed at children under the age of 16. We do not knowingly collect personal data from minors without parental consent.

13. Changes to this Policy

We may update this Privacy Policy from time to time to reflect legal changes or improvements to our practices. If we make significant changes, we will notify you through our website or other appropriate means.

14. Contact us

If you have any questions or concerns about how we process your data, please contact us:

ASDHR – Agence Suisse pour le Développement et les Droits de l’Homme
Rue du Rhône 14, 1204 Geneva – Switzerland
Email: admin@asdhr.org