Privacy Policy

Introduction

We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and protect your information when you visit our website. This policy complies with the EU General Data Protection Regulation (GDPR), the Swiss Data Protection Act (DSG), and other applicable data protection laws.

Data Collection

Contact Form

When you contact us through our contact form, we collect the information you provide including your name, email address, phone number, and message content.

This data is processed through Formspree and stored securely for the purpose of responding to your inquiries.

Formspree stores data on servers located in the United States. Data transfers to the US are protected by Standard Contractual Clauses (SCCs) approved by the European Commission, which provide appropriate safeguards for international data transfers under GDPR.

Analytics

We use Umami Analytics to understand how visitors interact with our website. Umami is a privacy-focused analytics tool that collects anonymous usage data.

Umami does not use cookies and does not collect personally identifiable information. It tracks page views, referrers, and basic interaction data in an aggregated, anonymous format.

All data collected by Umami is stored locally on our server and is not shared with third parties.

You can opt-out of analytics tracking at any time by contacting us or using browser settings to disable JavaScript (though this may affect website functionality).

Website Hosting

Our website is hosted on Netlify, which automatically collects standard server logs from their Content Delivery Network (CDN). These logs include client IP addresses, user agent information (browser type, version, and device information), timestamps (access times), requested URLs and pages, referrer information, HTTP methods and status codes, and bandwidth usage data.

This data is collected automatically as part of standard web server logging and is used by Netlify for website performance monitoring, security and abuse prevention, analytics (through Netlify's Project Analytics), and technical troubleshooting. Netlify states that their analytics are GDPR compliant as data is tracked anonymously from server logs without requiring client-side code.

Netlify may process and store data on servers located outside the European Union. Data transfers are protected by Netlify's Data Processing Agreement (DPA) which includes Standard Contractual Clauses (SCCs) approved by the European Commission, ensuring appropriate safeguards for international data transfers under GDPR.

Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

• Contact form data: Legitimate interest (Art. 6(1)(f) GDPR) – necessary to respond to your inquiries and provide our services.
• Analytics data: Consent (Art. 6(1)(a) GDPR) – you can withdraw consent at any time.
• Hosting/server logs: Legitimate interest (Art. 6(1)(f) GDPR) – necessary for website operation and security.

Data Usage

We use the collected data solely for the following purposes:

• To respond to your inquiries and provide our services.
• To improve our website and services.
• To ensure website security and prevent abuse.

Data Retention

We retain your personal data only as long as necessary for the purposes outlined above:

• Contact form data (Formspree): 30 days after last contact or until you request deletion.
• Analytics data (Umami): 6 months, after which it is automatically deleted.
• Server logs (Netlify): 30 days, after which they are automatically deleted.

Data Sharing

We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except as described in this policy or required by law.

As described above, we use third-party service providers (Formspree, Netlify) that may process data outside the EU. All such transfers are protected by appropriate legal mechanisms (Standard Contractual Clauses) to ensure your data receives adequate protection in accordance with GDPR requirements.

Your Rights

Under GDPR and Swiss data protection law, you have the following rights regarding your personal data:

• Right to access: You can request information about the personal data we hold about you, including the purposes of processing, categories of data, recipients, and retention periods.
• Right to rectification: You can request correction of inaccurate personal data or completion of incomplete data.
• Right to erasure ('right to be forgotten'): You can request deletion of your personal data when it is no longer necessary for the purposes for which it was collected.
• Right to restriction of processing: You can request limitation of processing in certain circumstances.
• Right to data portability: You can request your data in a structured, commonly used format.
• Right to object: You can object to processing based on legitimate interests or for direct marketing purposes.
• Right to withdraw consent: If processing is based on consent, you can withdraw it at any time.
• Right to lodge a complaint: You can lodge a complaint with a supervisory authority (in Germany: Landesbeauftragte für Datenschutz; in Switzerland: Eidgenössischer Datenschutz- und Öffentlichkeitsbeauftragter).

Data Protection Officer

As a small business processing limited personal data, we are not required to appoint a dedicated Data Protection Officer under GDPR Article 37. Data protection matters are handled directly by the business owner.

Contact Us

If you have any questions about this privacy policy or our data practices, please contact us:

Email: info@simplify-living.ch

Updates to this Policy

We may update this privacy policy from time to time. Any changes will be posted on this page with an updated revision date.

Last updated: January 23, 2026