Privacy

Privacy Statement

Arc Legal is committed to protecting your privacy and handling your personal data responsibly, in accordance with the Swiss Federal Act on Data Protection (nFADP), the General Data Protection Regulation (GDPR), and the Valais Cantonal Act on Information, Data Protection and Archiving (LIPDA VS). This statement explains how we collect, use, and safeguard your information.

Data Controller

The data controller is:

Arc Legal — Dr. Tobias R. Schneider
Rue de l'École 8
1903 Collonges (VS), Switzerland
contact@arclegal.ch

When Arc Legal acts as an outsourced Data Protection Officer (DPO) on behalf of a public body, that body remains the data controller under LIPDA VS. Arc Legal acts as a processor in accordance with the applicable contractual arrangements.

Data Collection

We collect only the information necessary to provide our services:

• Contact information (name, email address, phone number)
• Information you provide in messages or during consultations
• Documents and materials shared in connection with legal services

When you visit this website, the hosting server automatically logs technical data (IP address, date and time of access, pages visited, browser type). This data is used solely for security and maintenance purposes and is not linked to identified individuals.

Legal Basis for Processing

We process your personal data on the following bases:

• Performance of a contract (Art. 6(1)(b) GDPR) — to respond to your enquiries, provide our services, and manage ongoing matters
• Legal obligation (Art. 6(1)(c) GDPR) — to comply with applicable legal and regulatory requirements
• Legitimate interest (Art. 6(1)(f) GDPR) — to ensure the security of our website and improve our services

Use of Data

Your data is used exclusively to:

• Respond to enquiries and provide requested services
• Communicate with you regarding ongoing matters
• Comply with legal and professional obligations

Data Retention

Data collected in connection with our services is retained for a period of 18 months following the conclusion of the matter, after which it is securely deleted. Documents subject to professional or legal record-keeping obligations may be retained for up to 10 years in accordance with Swiss law. Server logs are deleted after 30 days.

Hosting and Data Transfers

Data is hosted in Switzerland and remains in Switzerland. No transfers to third countries take place, except in the context of exchanges with clients based abroad — in which case transfers are carried out with appropriate safeguards (standard contractual clauses or adequacy decision, as applicable).

Third Parties

We do not use third-party analytics on this website. We do not sell, share, or transfer your personal data to third parties, except where necessary to provide services or as required by law.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, destruction, or alteration. These measures include encryption of communications, need-to-know access restrictions, and regular data backups.

Your Rights

Under the nFADP, GDPR, and LIPDA VS, you have the following rights:

• Right of access — obtain confirmation of data processing and receive a copy of your data
• Right to rectification — have inaccurate or incomplete data corrected
• Right to erasure — request deletion of your data, subject to legal retention obligations
• Right to restriction of processing — request that processing be restricted in certain circumstances
• Right to data portability — receive your data in a structured, commonly used format
• Right to object — object to processing based on legitimate interest

To exercise these rights, please contact us at contact@arclegal.ch.

Supervisory Authority

If you believe that the processing of your personal data infringes applicable law, you have the right to lodge a complaint with the competent supervisory authority:

• Switzerland: Federal Data Protection and Information Commissioner (FDPIC) — www.edoeb.admin.ch
• Valais: Cantonal Data Protection Commissioner — www.vs.ch/protection-des-donnees
• EU: The competent supervisory authority of your place of residence

Last updated: April 2026