DE  EN

  • Privacy Policy of the USZ Foundation

    Version of January 1, 2024

    1. Data protection notice

    Protecting your data is important to us. This is why we provide you with comprehensive information on the handling of your personal data in the following privacy policy. We comply with the applicable data protection regulations.

    This privacy policy applies to all individuals whose personal data is processed. It also applies to the use of our website and invitations to events. 

    This privacy policy outlines how and for what purposes we process personal data, and explains your rights under the applicable data protection regulations.

    2. Contact details of the data processor 

    The data processor responsible for the processing of personal data described below is the USZ Foundation (hereinafter also referred to as “we” or “us”):

    USZ Foundation
    Pestalozzistrasse 3
    8032 Zurich
    Switzerland
    +41 43 254 55 00
    info@usz-foundation.com

    3. General data processing

    Unless otherwise stated, the following provisions apply to all data processing.

    3.1 Legal basis for the processing of your data

    The processing operations described below are based on the applicable legal provisions.

    3.2 Data erasure and storage period

    Your data will generally be deactivated, erased or blocked once the purpose of storage no longer applies. You have the option of requesting the erasure of your data by email (info@usz-foundation.com). Blocking or erasure takes place after the statutory and/or official storage periods have expired. However, blocking or erasure may be prevented by statutory or officially ordered retention periods and legitimate interests.

    3.3 Storage and security of your data

    Your data will be treated confidentially. We take appropriate technical and organizational precautions to protect data from loss and manipulation as well as from unauthorized access and control by third parties.

    3.4 Automated individual decisionmaking, including profiling

    When processing your data we do not use any automated individual decisionmaking processes, including profiling.

    3.5 Links

    This privacy policy does not apply to external websites that you access via a link on our website. We do not assume liability for third-party websites. Please refer to the relevant website for the applicable privacy policy.

    3.6 Cookies

    Cookies ensure the basic and extended functions of a website. They enable evaluations to continuously optimize our website. Cookies are small text files that are stored permanently or temporarily on your computer or smartphone when you visit a website.
    You can set your browser so that a warning appears on your screen before a cookie is set. You can also program your browser to block certain cookies. Further information on this can be found on the help pages of your browser (usually under Privacy).

    On the following pages you can find out how to manage your cookies depending on your browser:

    Microsoft Windows Internet Explorer (select your browser version)

    Please note that this list is not exhaustive. If you use a different browser, please check your browser settings to see how to manage and clear cookies.

    You will find further information under section 6.3 below.

    The following cookies are used on our website:

    Necessary cookies: These cookies are necessary for the website to function. They ensure, for example, that you can switch between pages, that your details in a form are not lost (e.g. cookie banners), and that you can use the donation form. 

    Statistical cookies: We do not currently use statistical cookies.

    External cookies: Our website includes offerings from third parties. These external cookies are deactivated by default when you visit our website. By activating them, you can use all functions of the website without restriction. Once you activate them, the relevant providers can determine that you are on our website. These providers process the data on their own responsibility.

    You can adjust your individual preferences in the cookie settings at any time.

    4. Data processing 

    Personal data is processed in particular to handle donations and maintain the ongoing relationship. The data is stored so that it is inaccessible to third parties.

    We need your data specifically to personally identify you (e.g. contact or donation information) and to allow processing of your potential and actual donations.

    4.1 Online donations

    Donations to the USZ Foundation make extraordinary things possible. With your donation you’re helping shape the future of medicine. This will directly benefit patients at University Hospital Zurich and far beyond.

    Donations can be made digitally on our website.

    To allocate and acknowledge your online donations, we need personal data. For this purpose, the data from the input mask is transmitted to us when you send the completed donation form. Donations are processed via our homepage using the services of Stripe (see also section 6.2 below). No further data are stored.

    If you contact us via the donation and/or contact form, your data will be added to our database. While working with Salesforce in its capacity as the provider of the database, the USZ Foundation manages all data itself. 

    We collect and process your data to handle the donations you have made, to maintain the ongoing relationship, and to inform you about our current projects, events, and the impact of your donation. Any financial institutions involved will only receive your data if this is necessary for the processing of payments.

    The USZ Foundation will not sell, rent or pass on your personal data to third parties. If you no longer wish to be contacted by the USZ Foundation or wish to report a change of address, you can inform us of this at any time by phone or email using the contact information specified under section 2 above.

    Donations that you make via a TWINT touchpoint solution are processed by RaiseNow. The data collected serves the same purpose as the data collected via our homepage for the online donations described above.

    You will find further information under section 6.1 below.

    4.2 Sending invitations and publications 

    As a donor you will be invited to various events, lectures, and visits. For this purpose the personal data mentioned in section 4.1 above will be used. You can unsubscribe from these invitations at any time at the address specified in section 2 above.

    If registration is required for participation in an event, the necessary personal data will be collected. The same applies to anyone accompanying you. With your binding registration, you guarantee that the third party (accompanying person) agrees to the data processing mentioned above. This information is necessary for creating the list of participants and for sending invitations, any invoices, and further information.

    By registering for events, you consent to the processing of your data. By collecting this data, the USZ Foundation also ensures that it can organize events professionally.

    The USZ Foundation also regularly informs about new supported projects and updates donors through the annual report about project funding and resource allocation. 

    As a donor, you will automatically receive this information unless you have unsubscribed (using the contact address specified in section 2 above). Your data will be used for this purpose. To provide this service, the USZ Foundation may share the necessary data with third parties (including USZ project leaders and printers).

    The data will be used only for providing the aforementioned services. Your data will not be used for any other purposes.

    You can stop receiving invitations and publications from the USZ Foundation at any time. To do so, please use the contact address given in section 2 above.

    4.3 Publication on the website

    As a donor you will be acknowledged in the “Thank You” section of our website as a sign of appreciation. We do not name private individuals; specifically, we name institutions (foundations, companies, and family offices). Please let us know if you do not wish us to do so. To do so, please use the contact address specified in section 2 above. 

    5. Data processing when visiting the website

    5.1 SSL/TLS encryption 

    For reasons of security and to protect the transmission of confidential content such as the inquiries you send to us as the site operator, this website uses SSL/TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the padlock symbol in your browser line.

    When SSL/TLS encryption is activated, the data you transmit to us cannot be read by third parties.

    5.2 Creation of log files

    Log files are the “raw,” unprocessed log data of a web server that are generated automatically with each visit to a website. The following data are collected:

    • IP address of the accessing device
    • Browser type and browser version
    • URL accessed
    • If available, the referrer (referring page)
    • Host name of the accessing computer
    • Date and time of the server request

    These data cannot be attributed to specific individuals. These data sources will not be merged. We reserve the right to check these data retrospectively if we become aware of specific indications of unlawful use.

    These data allow us to improve the quality of the service by identifying trends and usage behavior. In addition, the storage of said data in log files ensures the functionality of our website. The data are used to optimize our website and ensure the security of our information technology systems.

    5.3 Hosting

    Our website is hosted externally. Our hosting provider is Metanet AG, Josefstrasse 218, 8005 Zurich, Switzerland. All data are stored in a Swiss data center and are not shared with third parties at any time.

    Metanet privacy policy

    6. Third-party services

    To focus on our core mission, we engage the services of third parties in certain areas where they are industry leaders. 

    6.1 RaiseNow

    Donations via TWINT QR code (Twint as a touchpoint solution) are processed through RaiseNow. RaiseNow ensures secure and professional donation processing. Please also refer to RaiseNow’s privacy policy: https://www.raisenow.com/en-ch/privacy-policy.

    6.2 Stripe

    Donations via the donation form on our website are processed by Stripe. Stripe provides the payment infrastructure. Stripe may collect personal data by means including cookies and similar technologies. The personal data collected by Stripe may include transaction data and information identifying devices connected to Stripe’s services. Stripe uses this information to operate and improve the services it provides to us, including fraud detection, loss prevention, authentication, and analytics related to the performance of its services. Please refer to Stripe’s privacy policy: https://stripe.com/privacy.

    6.3 Salesforce CRM database

    We use Salesforce for managing donor and donation data. This is a well-known tool in the non-profit sector. Please also refer to Salesforce’s privacy policy at salesforce.com/eu/company/privacy/.

    7. Data disclosure to third parties

    7.1 Data disclosure to the University Hospital Zurich (USZ)

    The purpose of the USZ Foundation is education, research, and provision of care at USZ. To fulfill this purpose and enable the earmarked use of funds according to donors’ instructions, donation details may be shared with USZ researchers. 

    Data is also shared with USZ researchers for the organization and implementation of events, although only to the extent necessary to hold the event. Furthermore, data may be shared with USZ to inform donors about ongoing projects they are supporting. See also section 4.2 above.

    USZ will not pass on your data to third parties. Furthermore, your data will be used by the USZ only for the above-mentioned purposes. USZ will not process the personal data disclosed to it by the USZ Foundation in any other way

    7.2 Mention to bereaved family in the event of memorial donations

    In the case of memorial donations, we at the USZ Foundation inform the bereaved family about the donations made. If you do not wish this to happen, please notify us during the donation process. Alternatively, you can also contact us using the contact information provided in section 2 above. 

    7.3 Data disclosure to the USA

    Our website includes tools from companies based in the United States.

    When these tools are active, your personal data may be transferred to the US servers of the respective companies. Please note that the USA is not considered a safe third country under Swiss and EU data protection laws. US companies are obliged to disclose personal data to security authorities without you as the data subject being able to take legal action against this. It can therefore not be ruled out that US authorities may process, evaluate, and permanently store data located on US servers for surveillance purposes.

    We have no influence over these processing activities.

    8. Rights of data subjects

    You have the right to request information about the personal data processed by us. In particular, you can request information about the purposes of processing, the categories of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, data portability, the origin of your data if it was not collected by us, and the existence of automated decisionmaking processes, including profiling. You also have the right to withdraw your consent to the use of your personal data at any time.

    Please note that, for data protection reasons, data can only be disclosed once your identity has been clearly established. This is carried out following your request for information through digital or postal submission of an identity card or passport.

    9. General disclaimer

    All the above information has been carefully reviewed. We make every effort to ensure that the information we provide is up to date, correct, and complete. Nevertheless, the occurrence of errors cannot be completely ruled out, which is why we cannot guarantee the completeness, correctness, and topicality of information, including information of a journalistic or editorial nature. Liability claims arising from material or non-material damage caused by the use of the information provided are excluded as far as permissible.

    The publisher may change or delete texts at its own discretion and without prior notice and is not obliged to update the content of this website. The publisher and its clients or partners are not responsible for damages such as direct, indirect, accidental, predeterminable or consequential damages that are allegedly caused by visiting this website, and consequently assume no liability for them.

    The publisher also accepts no responsibility or liability for the content and availability of third-party websites that can be accessed via external links on this website. The operators of the linked pages are solely responsible for their content. The publisher thus expressly distances itself from all third-party content that may be relevant under criminal or liability law or offend common decency.

    10. Reservation of right to make changes

    We reserve the right to amend and supplement this policy at any time at our own discretion and in accordance with data protection legislation. Please consult this policy regularly.

Contact
USZ Foundation
Pestalozzistrasse 3
8032 Zurich
Switzerland
+41 43 254 55 00
info@usz-foundation.com
Bank details
USZ Foundation
Zürcher Kantonalbank
Account number IBAN
CH2300700110006569619
Legal notice

Privacy policy
Legal notice
Tax deductions