Privacy Policy

Last modified on 27 June 2022.

Daily is the digital platform for our internal communications, available both as a desktop and mobile app. It allows you to receive, search for, and save firmwide and Business line news, articles, videos, and other content, providing a seamless news experience across devices. The platform is used throughout the Swiss firm.

1. Who this Privacy Notice applies to and what it covers?

This Privacy Notice is issued by Deloitte AG and Deloitte Consulting AG, companies registered in Switzerland. Both entities have registered office as Pfingstweidstrasse 11, 8005 Zurich, www.deloitte.com, being the entity that determines the purposes and means for processing your personal data as part of the Platform.

We are committed to protecting your privacy and handling your information in an open and transparent manner. This Privacy Notice sets out how we will collect, handle, store and protect information about you when providing services to you and your employer through this Platform (“Services”).

This Privacy Notice also contains information about when we share your personal data with third parties (for example, our service providers).

In this Privacy Notice, your information is sometimes called “personal data” or “personal information”. We may also sometimes collectively refer to handling, collecting, protecting and storing your personal information as “processing” such personal information.

2. What information do we collect?

We will collect or obtain the following personal data about you as part of the Platform:

  • EMPLOYEE_ID
  • Email
  • Last Name
  • First Name
  • Known As
  • Company
  • Business Line
  • Department
  • SubDepartment Group
  • Grade
  • Gender
  • Location
  • Employee Status
  • Hire Date
  • Employee Group
  • Employee Subgroup

We also collect or obtain personal data from interaction with you for example, to improve your experience when you use this Platform and ensure that it is functioning effectively, we (or our service providers) use cookies (small text files stored in a user’s browser) and web beacons which may collect personal data. Additional information on how we use cookies and other tracking technologies and how you can control these can be found on https://www2.deloitte.com/ch/en/footerlinks1/privacy.html

3. How we use information about you?

We are required by law to set out in this Privacy Notice the legal grounds on which we rely in order to process your personal data. As a result, we use your personal data for the purposes outlined above because of our legitimate interests in providing you access to the Platform (Art. 6.1, f GDPR and Swiss Federal Act on Data Protection – FADP).

In addition, we may also use your personal data for the purposes of, or in connection with:

  • administrative purposes (legitimate interest, Art. 6.1, f GDPR);
    • applicable legal or regulatory requirements (legal obligation, Art. 6.1 (c) GDPR);
    • requests and communications from competent requirements (legal obligation, Art. 6.1 (c) GDPR).;

4. Who we disclose your information to?

In connection with one or more of the purposes outlined in the “How we use information about you?” section above

we may provide your personal data to other entities within the Deloitte Network so that you receive information that may be of interest to you, or to carry out market research or other forms of research. Personal data may also be provided to other entities within the Deloitte Network, please kindly see list of our subprocessors that might be used in Deloitte Switzerland projects: https://www2.deloitte.com/ch/en/footerlinks1/subprocessors-list.html?icid=bottom_subprocessors-list .

It is possible that personal data is transferred cross-border to other parts within the Deloitte Network or to third parties for the purposes as set out above, e.g. Spencer (The employee communication platform that helps to  reach and engage everyone) Spencer – Scheldestraat 11, 2000 Antwerp, Belgium. 

The above also means that there may be a transfer of personal data to countries or regions without legislation protecting personal data that is equal to the protection the visitor to the website enjoys in his country of origin. 

In the latter cases, we will ensure that there are sufficient safeguards to protect your personal data that meets our legal obligations (for example through the EU/Swiss Standard Contractual Clauses provisions for the transfer of personal data).

 For more information on the appropriate measures we take with regard to data transfers to countries outside the EEA where laws do not offer the same level of data protection, please contact the Data Privacy Team by sending an email to chdataprivacy@deloitte.ch

5. Protection of your personal information

We use a range of physical, electronic and managerial measures to ensure that we keep your personal data secure, accurate and up to date. These measures include:

  • education and training to relevant staff to ensure they are aware of our privacy obligations when handling personal data
    • administrative and technical controls to restrict access to personal data on a ‘need to know’ basis
    • technological security measures, including fire walls, encryption and anti-virus software
    • physical security measures, such as staff security passes to access our premises.

Although we use appropriate security measures once we have received your personal data, the transmission of data over the internet (including by e-mail) is never completely secure. We endeavor to protect personal data, but we cannot guarantee the security of data transmitted to us or by us.

6. How long we keep your information for?

We will hold your personal data on our systems for the longest of the following periods: (i) as long as is necessary for the relevant activity or services, which means as long as your account on the Platform remains active.; (ii) any retention period that is required by law; or (iii) the end of the period in which litigation or investigations might arise in respect of the Platform.

7. Your rights

You have various rights in relation to your personal data. In particular, you have a right to:

  • access the personal data that we hold about you;
  • obtain confirmation that we are processing your personal data and request a copy of the personal data we hold about you;
  • request that we update or correct the personal data that we hold about you if you believe that it is incorrect or incomplete;
  • request that we delete personal data that we hold about you, or restrict the way in which we use such personal data;
  • object to our processing of your personal data when the processing is not the result of our legal obligation to do so or the data does not have to be processed for the execution of our agreement(s);
  • obtain the personal data that you have provided to us in a structured, current and machine-readable form (data portability).

However, your rights are not absolute. There are cases where applicable laws or legal requirements limit these rights and allow or oblige us to refuse to meet your request, such as confidentiality obligations, the privacy rights of others, the protection of our legitimate business interests or the interests of our employees or clients.

We do everything reasonably possible to ensure that your personal data is correct for the intended use. It is your responsibility to inform us of changes to your personal data.

To exercise your rights, or in case of questions about this Privacy Notice or our use of your personal data as part of the Platform, you can contact the Data Privacy Team by sending an email to chdataprivacy@deloitte.ch. When you exercise your rights, please note that the Privacy Office may ask you for specific information to enable them to confirm your identity and the existence and scope of your invoked right.

8. Right to complain

Please contact the Data Privacy Team by sending an email to chdataprivacy@deloitte.ch

If you are not satisfied with the way we have processed your personal data, or with the way we have handled your privacy question or request, youcan also complain to the Office of the Federal Data Protection and Information Commissioner, which supervises the use of personal data in the CH: Feldeggweg 1, CH – 3003 Berne. If you are not based in Switzerland, you have a right to complain to the EU Data Protection Authority in your jurisdiction.

Our Representative in the EU according to the Regulation (EU) 2016/679 (General Data Protection Regulation) is Deloitte UK Privacy (EU Rep) Limited, 29 Earlsfort Terrace, Dublin 2, Ireland. Send an email to chdataprivacy@deloitte.ch.

9. Changes to this Privacy Notice

We may modify or amend this Privacy Notice from time to time.

To let you know when we make changes to this Privacy Notice, we will amend the revision date at the top of this page. The new modified or amended Privacy Notice will apply from that revision date. Therefore, we encourage you to periodically review this statement to be informed about how we are protecting your information.