Information about personal data protection

TILO is responsible for the processing of personal data. If you have any questions or suggestions regarding data protection, please contact us at any time by mail at:

TILO SA
6500 Bellinzona

or per e-mail: info@tilo.ch

We know how important it is to you that your personal data is handled carefully. Data is only ever processed for specific purposes. This could be out of technical necessity or due to contractual requirements, legal provisions, overriding interest, i.e. for legitimate reasons, or if you have granted your express consent. We collect, store and process personal data where necessary. This includes for the purposes of managing customer relationships, preparing information on and marketing our products and services, assisting with technical issues and evaluation and further developing products and services.

Browsing on www.tilo.ch:
When you visit our website, our servers temporarily store each access in a log file. The following technical data is collected in the process and stored until it is automatically deleted after fourteen months at the latest:

• IP address of the computer requesting access
• The date and time of access
• The website from which our website is being accessed, including the search term where applicable
• The name and URL of the file being requested
• Any search queries performed (timetable, webpage’s general search function, products, etc.)
• The operating system on your computer (provided by the user agent)
• The browser you are using (provided by the user agent)
• The type of device when accessed via mobile phone
• The transmission protocol being used

This data is processed and collected for the purposes of system security and stability and for analysing errors and performance as well as for internal statistical purposes. It enables us to optimise our website.

The IP address is also analysed together with other data when there is an attempt to access the network infrastructure or in the event of other unauthorised or improper use of our websites for information and defence purposes and, where applicable, is used for the purposes of identification during criminal proceedings and in civil and criminal procedures against the data subject.

Finally, when you visit our websites, we use cookies and other applications and tools which are based on cookies. You can find further details below in this Privacy Policy.

TILO does not accept any guarantee for compliance with data protection regulations for external websites that are linked to TILO webpages.

Using a contact form:

You can get in touch with us by using our contact form. The following mandatory personal data must be provided when filling out the form:

• Surname and first name
• E-mail address

We use this data and other freely given data (such as title, address, telephone number and company) only for the purpose of answering your contact request in a personalised manner.

Use of a contact form to submit an application:

When a contact form is filled in to send an application, the following mandatory personal data must be provided:

• First name and surname
• Date of birth
• Nationality
• E-mail address
• Mobile phone
• Home address

This data will only be seen and used by the staff responsible for the recruitment process and treated with the utmost confidentiality. At the end of the application process, the data will be deleted after a period of 6 months.

We only store personal data for as long as is necessary,

• to provide services you have requested or consented to, to the extent set out in this privacy notice.
• to use the tracking services mentioned in this privacy policy within the scope of our legitimate interest.

In principle, data is stored in databases in Switzerland. However, in certain cases listed in this Data Protection Notice, data is also transferred to third parties whose registered office is outside Switzerland. In cases where the country concerned does not have an adequate level of data protection, we ensure that the data are adequately protected at such companies by concluding contractual clauses with them or ensuring that they are certified in accordance with the CH/EU-US-Privacy Shield.

You are granted the following rights in connection with personal data:

• Request information on saved personal data.
• Request correction, supplementation, blocking or deletion of personal data. If legal impediments prevent deletion, the data will be blocked (e.g. due to legally prescribed retention obligations).
• Object to the use of data for marketing purposes.
• Withdraw consent at any time with effect in the future.
• Request data portability.

To exercise the above rights, simply send a letter by post to:

TILO SA
6500 Bellinzona

or an e-mail to: info@tilo.ch

You also have the right to file a complaint at any time with a data protection authority.

We do not resell personal data. A transmission of personal data therefore takes place only to selected service providers and only to the extent necessary for the provision of the service. This is the case with IT service providers, our hosting providers (see the section "Browsing on www.tilo.ch") and the providers mentioned in the sections on tracking tools, social plug-ins. With regard to service providers based abroad, please also consider the information contained in the "Where the data is stored" section.

Furthermore, a transmission of personal data may take place if we are required to do so by a legal obligation or if this is necessary for the exercise of our rights, in particular the assertion of requests arising from the relationship with the user.

The legal basis for the data processing activities mentioned here is our legitimate interest.

Personal data will not be disclosed to other third parties outside of public transport.

To ensure a needs-oriented design and continuous optimization of our Internet pages, apps and e-mails, we use the web analysis services of Google. For the data processing activities described below, the legal basis is our legitimate interest.

Tracking on Internet pages:

In relation to our Internet pages, pseudonymised usage profiles are created and short text files ("cookies") stored on the user's computer are used (see below "What are cookies and when are they used?"). The information generated by the cookies on the use of Internet pages is transmitted to the servers of the aforementioned service providers, where they are saved and processed on our behalf. In addition to the data indicated above (see "What data are processed when using our Internet pages?"), We thus obtain the following information:

• navigation path followed by the visitor on the Internet page

• length of stay on the page or sub-page

• Internet exit subpage

• Country, region or city from which access takes place

• terminal (type, version, color depth, resolution, width and height of the browser window)

• new or recurring visitor

• browser type / version

• operating system used

• Referral URL (the previously visited page)

• host name of the accessing computer (IP address)

• time of the server query

The information is used to analyze the use of the Internet pages.

Below is more information about our tracking tools:

Google Analytics

Our website uses Google Analytics, a web analysis service from Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA and from Google Ireland Limited, Gordon House Barrow St, Dublin 4, Ireland. Google Analytics uses methods that allow an analysis of the use of the Internet page, such as cookies (see below "What are cookies and when are they used?"). The information listed above regarding the use of this page, generated through a cookie, is transmitted to the servers of Google, a company of the holding Alphabet Inc., in the United States, where it is saved. If you activate the anonymization of the IP address ("anonymizeIP") on this website, the IP address will be shortened before transmission within the member states of the European Union or in other contracting states of the Agreement on the Economic Area. European and Switzerland. The anonymized IP address transferred from the browser while using Google Analytics will not be combined with other Google data. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and abbreviated there. In these cases, we ensure through contractual guarantees that Google complies with an adequate level of data protection.

The information is used for the purpose of evaluating the use of the Internet page, compiling reports on the activities on the Internet page and providing other services associated with the use of the Internet page and the Internet for the purpose of market research and for an oriented design of the Internet page. to the needs. This information is also transmitted to third parties where this is required by law or where such third parties are in charge of processing the aforementioned information. According to Google, the IP address is never related to other user data.

Users can prevent the transmission to Google of the data generated through the cookie and relating to the use of the Internet page by the user concerned (including the IP address), as well as the processing of such data by Google, by downloading and by installing the browser plug-in available at the following link:

https://tools.google.com/dlpage/gaoptout?hl=en 

In certain cases we use cookies. Cookies are short text files that are saved on the user's computer or mobile device when visiting or using the Internet pages. Cookies record certain browser settings and the data exchanged with the Internet page via the browser. In the event of activation, the cookie can be assigned an identification number that allows the user's browser to be identified and the data contained in the cookie to be used. You can set your browser to receive a warning message before installing the cookies. It is also possible to forgo the benefits offered by personalization cookies. In this case, however, some services cannot be used.

We use cookies to carry out an analysis of the general user behaviour. The objective pursued is the optimization of digital presentations, which must be able to be used in a simple way, and a more intuitive content search. A more understandable organization and structure is needed. It is important for us to create easy-to-use digital presentations, orienting ourselves to the needs of the users. We can thus optimize the Internet page through targeted information or content that may be of interest to the user.

Most web browsers accept cookies automatically. However, you can configure your browser to exclude the storage of cookies on your computer or to always receive a warning message before installing the cookies. The following pages provide some clarifications on the possible configurations of cookie processing:

Google Chrome for desktop https://support.google.com/chrome/ans-wer/95647?hl=de

Google Chrome for mobile https://support.google.com/chrome/ans-wer/2392709?hl=de&co=GENIE.Platform%3DAndroid&oco=1

Microsofts Windows Internet Explorer https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies

Apple Safari for mobile https://support.apple.com/de-de/HT201265

Social plug-ins are used to personalize our Internet pages. By default, the plug-ins are deactivated on our Internet pages and therefore do not send data to social networks. When the plug-ins are active, as soon as the user opens our Internet page, the browser creates a direct connection with the servers of the corresponding social network. The content of the plug-in is transmitted directly from the social network to the user's computer, where it is inserted on the Internet page.

By inserting the plug-ins, the operator learns that the user's browser has visited the corresponding page of our website, even if they do not have an account with this social network or if they are not currently connected to the social network. This information (including the IP address) is transmitted directly from the browser to an operator's server (usually in the United States), where it is saved. For this reason, we have no possibility to intervene on the extent of the data that the operator collects with the plug-in.

If the user is connected to the social network, the social network can associate the visit to our Internet page with the user's account. If it interacts with the plug-ins, the corresponding information will also be transmitted directly to an operator's server, and stored there. The information can also be published on the social network and possibly displayed to other users of the social network.

The social network operator may use this information for the purpose of advertising, market research and for the preparation of the needs-oriented offer. To this end, usage, interest and relationship profiles can be created, for example to analyze the use of our Internet page with reference to the advertisements displayed on the social network, to inform other users of the activities carried out on our Internet page and to offer other services related to the use of the social network.

The purpose and extent of the collection of personal data as well as information on the processing and use of data by social network operators as well as the rights and possible settings for the protection of the personal sphere of users, can be found in the warnings relating to the protection of the data of each operator.

If you do not want the social network operator to associate the data collected through our website with your user profile, you must log out of the social network before activating the plug-ins.

For the data processing activities described, the legal basis is our legitimate interest.

We employ suitable technical and organisational security measures to protect the personal data we store from manipulation, partial or total loss and unauthorised access by third parties. Our security measures are continuously improved in line with technological development.

We also take data protection within TILO very seriously. Our staff and the external service providers working on our behalf are committed to maintain confidentiality and to comply with data protection provisions.

We will take appropriate precautionary measures to protect your data. However, the transmission of information over the Internet and other electronic means always carries certain security risks and we cannot offer any guarantee as regards the security of information transmitted in this way.