Privacy · clypeus.ch

Only what we need.

This statement describes what data clypeus.ch collects, what we process it for, who receives it, and how long we keep it. It follows the revised Swiss Federal Act on Data Protection (revDSG, in force since 1 September 2023).

Status May 2026 — material changes are tracked here.

Scope clypeus.ch and all associated subdomains.

Controller Clypeus Horizon GmbH, Niederhasli ZH — details in the imprint.

Company

Clypeus Horizon GmbH limited liability company under Swiss law · UID CHE-145.672.308 · Commercial Register of the Canton of Zurich

Registered office

Rooswiesenstrasse 29, 8155 Niederhasli, Switzerland

Privacy contact

contact@clypeus.ch subject line "Privacy" — preferably encrypted via Threema / Signal

Contact form

Fields: name, company, email, industry, topic, optional brief description.
Function: the form prepares an email in your own email program — it transmits no data to our server. We only receive the enquiry when you send the email from your own program. What happens next is described in the next block. Server-side storage of form input does not occur at any point.

Email to us

Data: sender address, content and attachments of your message.
Purpose: handling your matter.
Legal basis: legitimate interest / pre-contractual communication (Art. 31 para. 1 and para. 2 lit. a revDSG). Email is not end-to-end encrypted. For sensitive content please use Threema, Signal, or arrange a PGP key.

Server logs

Data: IP address (shortened where possible), timestamp, requested resource, browser and OS identifier, referrer.
Purpose: operational security, defence against and analysis of attacks, technical stability.
Legal basis: legitimate interest (Art. 31 para. 1 revDSG). Logs are created automatically by our host and deleted after a short retention period (see retention).

Theme storage

Data: a single entry clypeus-theme in your browser's localStorage, with the value dark or light.
Purpose: restoring your theme choice on your next visit. Stored exclusively in your browser, never transmitted to us, contains no personal data, and can be deleted at any time via your browser settings.

What we do not collect: profiling or tracking data, location data, biometric data, particularly sensitive personal data within the meaning of Art. 5 lit. c revDSG. We do not deploy advertising pixels, social plugins, or cross-site trackers.

Enquiries

During mandate initiation; after a mandate concludes, up to 10 years if a commercial-law retention duty applies (Art. 958f OR). Enquiries that do not lead to a mandate are deleted no later than 12 months after.

Email correspondence

Like enquiries; mandate-related correspondence under the retention duties of the OR.

Server logs

Maximum 30 days, then automatically deleted by the host.

Theme localStorage

Stored exclusively on your device; no retention period on our side.

Host & email

Infomaniak Network SA, Geneva, Switzerland — Swiss company, Swiss law, data centres in Switzerland, certified ISO 27001 / 27018 / 9001 / 14001 / 50001. We use Infomaniak both for hosting clypeus.ch and for the email mailboxes. A data-processing agreement under Art. 9 revDSG is in place.

Reach measurement

GoatCounter — open-source, cookie-less analytics, account brawua.goatcounter.com, hosted in Germany (EU). Details in section v. Aggregated page-view data without personal identification, IP addresses not retained.

Other recipients

None. We do not pass data to advertising networks, data brokers, or comparable third parties. Disclosure to authorities occurs only on a statutory basis.

Cross-border transfer

Aggregated reach data is processed via GoatCounter in Germany (EU). Otherwise no cross-border transfer. Germany is on the Swiss Federal Council's list of states with adequate data protection (Annex 1 DSV) — the transfer is permissible under Art. 16 revDSG without additional safeguards.

This site sets no cookies — neither first-party nor third-party. A cookie banner is therefore not required.

localStorage

A single entry (clypeus-theme) stores your theme choice locally in your browser. No transmission to us, no personal reference. You can delete or block the storage at any time via your browser settings without losing functionality.

Fonts

Fraunces, Manrope, JetBrains Mono are served from the same server as this website (Infomaniak, Switzerland). No third-party CDN, no connection to Google Fonts or similar services when loading fonts, no transfer of your IP address to external font servers.

Encryption

clypeus.ch is served exclusively over HTTPS (TLS 1.2 or higher). Unencrypted HTTP access is prevented via HSTS.

Social media

No embedding. No "like" button, no tracking pixel, no iframes from LinkedIn, X, Facebook, Instagram, or comparable platforms.

GoatCounter is active — an open-source, cookie-less analytics tool with no personal reference. It counts page views and referrer origins, records browser and OS family as well as rough language and region — but sets no cookies, builds no profiles, and performs no fingerprinting. IP addresses are only briefly processed to avoid duplicate counts and are not retained thereafter.

The aggregated statistics sit with GoatCounter (hosted in Germany, EU) under the account brawua.goatcounter.com. The measurement script is served from gc.zgo.at. The provider's privacy statement is available at goatcounter.com/help/gdpr.

Legal basis: legitimate interest in a privacy-friendly reach measurement (Art. 31 para. 1 revDSG). The processing does not measurably impair personal rights due to its aggregated, cookie-less nature.

What we do not deploy: cookies, heatmaps, A/B testing, session recording, advertising pixels, cross-site tracking, social plugins.

Right of access to the data stored about you, the purpose of processing, the recipients, and the planned retention period (Art. 25 revDSG).
Rectification of inaccurate data (Art. 32 para. 1 revDSG).
Erasure or destruction, unless a statutory retention duty applies (Art. 32 para. 2 lit. c revDSG).
Objection to a data processing where overriding interests warranting protection are violated (Art. 30 para. 2 lit. b revDSG).
Data portability in a common electronic format (Art. 28 revDSG).
Withdrawal of consent at any time with effect for the future, where processing is based on consent (Art. 6 para. 7 revDSG).
Complaint to the supervisory authority with the Federal Data Protection and Information Commissioner (FDPIC / EDÖB).

We usually do not require identity verification beyond confirming the contacting email address. For enquiries that appear doubtful, we reserve the right to request further plausibility checks — exclusively to protect the data subject against unauthorised data disclosure.

Threema

FUY2HJUM Click opens Threema or shows the ID card for manual addition. Fingerprint verification in person on request.

Signal

clypeus.01 Click opens a chat in Signal (username: clypeus.01).

PGP

Public key on request. Fingerprint verified via a second channel on request.

In person

For particularly sensitive mandates we arrange a meeting on site in Zurich or at your premises.

Material changes are flagged with a new status date at the top of the page. Where changes touch the rights of users — new recipients, new processing purposes, or a new analytics tool — we will additionally inform you actively, where we can reach you.

We keep an archived version of earlier states internally and make it available on request.

Privacy is part of the verifiable trails we lay generally: we do not claim what we cannot hold, and we hold what we promise here.