Data protection declaration for Abilene Advisors and Supplier Shield.
This page reflects the current policy basis for www.abileneadvisors.ch, www.abileneacademy.ch, and www.suppliershield.com, including Swiss FADP and applicable GDPR processing principles.
Controller contact and legal framework.
Contact address
- Henri Haenni (DPO)
- Abilene Advisors SA
- Rue de la Gare 39, 1110 Morges, Switzerland
- privacy@abileneadvisors.ch
Regulatory position
- Swiss FADP and GDPR baseline, Processing is governed by the Swiss Federal Act on Data Protection and, where applicable, the EU General Data Protection Regulation.
- Lawful, transparent processing, Data is processed for explicit purposes, with legal basis clarity, retention controls, and rights handling procedures.
- Cross-border safeguards, Where transfers are required, we prioritize EEA and other adequate-protection jurisdictions with contractual safeguards.
- ISO 27001-aligned governance, Information security controls are designed to protect confidentiality, integrity, and availability of personal data.
What data is processed and how long it is kept.
Identity data
- First name, last name, date of birth, gender
- Retention: 10 years after contractual relationship ends, for legal and evidentiary reasons
Contact data
- Postal address, email address, phone number
- Retention: 10 years after contractual relationship ends, for legal and evidentiary reasons
Billing data
- Invoice amounts, due dates, reminders, accounting documents
- Retention: 10 years after each accounting period, under art. 958f CO
Correspondence data
- Email exchanges, notes, phone-call records, postal communications
- Retention: 10 years after contractual relationship ends, for legal and evidentiary reasons
Technical data
- IP address, MAC address, timestamp and related technical metadata
- Retention: 12 months, for technical operations and security of information systems
Purposes, legal bases, sharing, and cookies.
Purposes
- Enter into contracts and perform contractual obligations
- Communicate with you and provide support services
- Manage complaints, claims, and service-quality processes
- Conduct risk analysis, abuse detection, and security effectiveness checks
- Comply with legal and internal regulatory requirements
- Improve services through research, planning, and aggregated statistics
- Handle data-protection requests and rights-exercise workflows
Legal bases
- Contract necessity for conclusion, execution, and closure of contractual services
- Legitimate interests, including security, statistics, market research, and dispute management
- Legal obligations under Swiss or foreign legal frameworks where applicable
- Consent where specifically required, with the right to withdraw consent for future processing at any time
Data sharing
- Contractual partners and service providers, only where needed to deliver agreed services
- Authorities in Switzerland or abroad where disclosure is legally required or necessary to protect legitimate interests
- Subprocessors under documented safeguards, necessity controls, and security requirements
Cookies and analytics
- Cookies on websites, A cookie banner is used to collect explicit consent for non-essential cookies. Essential cookies remain enabled for site operation.
- Google Analytics, Google Analytics is used with IP anonymization enabled, truncating addresses as quickly as possible.
- Social plugins, Social network plugins are disabled by default and only activate after user interaction.
Operational safeguards and rights handling.
International transfers
We work with suppliers and partners outside Switzerland where necessary. We focus on EEA and adequate-protection jurisdictions and apply contractual and organizational safeguards.
Retention governance
Data is retained as long as required by contractual, legal, and governance needs. When periods expire, data is deleted, anonymized, or restricted in backups until full deletion is technically possible.
Security controls
Abilene Advisors applies an ISO 27001:2022-aligned ISMS with encryption, access management, monitoring, and incident-response procedures.
How can data subjects exercise their rights?+
Requests can be sent to privacy@abileneadvisors.ch. We may request additional identity information to securely process the request.
Which rights are available?+
Access, copy, correction, completion, deletion, restriction, objection, portability, consent withdrawal, and human review in case of automated decisions.
How do international transfers work?+
Transfers are made only when required for service delivery and legal purposes. We prioritize EEA and adequate-protection jurisdictions.
How long is data retained?+
Retention depends on category and legal basis. Data is deleted, anonymized, or restricted when retention windows expire.
Do you sell personal data?+
No, personal data is not sold to third parties.
The website version is the current applicable declaration.
- This declaration can be updated at any time.
- The version published on the website is the current authoritative version.
- Newer versions replace prior or conflicting clauses.