Privacy Policy

Dear Customer, Dear interested Parties,

Thank you for your interest in our company and the services and products we offer.

Crypto Finance AG and Crypto Finance (Asset Management) AG (hereinafter referred to as CFG) take the protection of your personal data very seriously. Data protection is a particularly high priority for CFG.

Our team of selected and experienced specialists is familiar with the requirements of data protection law. They implement them with due care and in accordance with our high quality standards.

The confidential and responsible handling of personal data from our relationships with customers, business partners, employees, or job applicants and suppliers forms the basis of our entrepreneurial success. We therefore adhere to the following principles when handling personal data:

  • Confidentiality and fairness
  • Compliance with our corporate policies
  • Compliance with all applicable laws and regulations

1. Name and address of the controller and the data protection officer (Impressum)

The controller within the meaning of the Swiss Data Protection Act (DPA) is:

Crypto Finance AG, Hardstrasse 201, CH-8005 Zürich

Phone: +41 (0)41 552 45 05

Website: Crypto Finance Group

UID: CHE-433.965.277 (registered in the Commercial Register ZefixWebApp )

Data Protection Officer (DPO)

Crypto Finance AG, Hardstrasse 201, CH-8005 Zürich

Phone No: +41 (0)41 552 45 05, 8AM – 5:30PM (every working day)


2. Position of the DPO

CFG in its additional capacity as DPO, shall ensure that the DPO is properly involved at an early stage in all matters relating to the protection of personal data and is supported by the controller in the performance of his or her duties.

The independence of the DPO and his or her professional qualifications and expertise in the field of data protection law and practice for the performance of his or her duties shall be ensured.

3. Data protection - general information

CFG treats your personal data confidentially and in accordance with the statutory data protection regulations, in particular in accordance with the Swiss Federal Act of Data Protection (FADP or DPA) and this data protection declaration.

CFG processes personal data about the contractual partner in direct connection with the conclusion or execution of a contract (justification).

As a rule, the use of our website is possible without providing personal data. However, if a data subject wishes to use special services of our company via our website, the processing of personal data may become necessary. If the processing of personal data is necessary and there is no legal basis for such processing, we will obtain the consent of the data subject in an appropriate form after providing adequate information.

We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) may have security gaps despite the high security requirements we have put in place. A complete protection of the data against access by third parties is not possible.

As the (natural) person concerned, it is in your personal interest to secure the system(s) you use (PC, laptop, etc.) against unauthorised access by third parties, to protect it with an adequate password and not to pass on the password to third parties. Please install a virus protection (“Internet Security”) designated in the market and update it regularly.

4. Collection of general data and information

The website of the CFG companies collects a number of general data and information each time the website is accessed by a data subject or an automated system. This general data and information is stored in the server’s log files.

The following data may be collected: (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system accesses our website (so-called referrer), (4) the sub-sites to which an accessing system accesses our website, (5) the date and time of access to the website, (6) an Internet Protocol address (IP address), (7) the Internet service provider of the accessing system and (8) other similar data and information used to avert danger in the event of attacks on our information technology systems.

When using this general data and information, CFG does not draw any conclusions about the data subject. Rather, this information is required (1) to provide the content of our website correctly, (2) to optimise the content of our website and the advertising for it, (3) to ensure the long-term operability of our information technology systems and the technology of our website, and (4) to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack. Therefore, CFG analyses anonymously collected data and information for statistical purposes, as well as for the purpose of increasing the data protection and data security of our enterprise, in order to ensure an optimal level of protection for the personal data processed by us. Anonymous server log file data is stored separately from any personal data provided by a data subject.

5. Data Transfers

As a user, you authorise CFG to transfer personal data to employees or third parties. Employees and third parties who have access to personal data are obliged by CFG to ensure compliance with all applicable data protection regulations.

If personal data of you as a user is transferred to other countries, CFG will ensure data protection by granting the level of protection required by the applicable law.

CFG reserves the right to disclose personal data to regulatory and supervisory authorities as well as to service providers. In doing so, CFG will at all times comply with the applicable regulations and laws.

6. Definitions

CFG’s privacy policy is based on the definitions used by the legislator for the adoption of the Data Protection Act (DPA).

Our privacy policy should be easy to read and understand for the public as well as for our clients, interested parties and business partners. To ensure this, we explain the terms we use. You can find these terms under the Definitions link.

7. Cookies

Some websites, including those of CFG, use so-called cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies are used to make our offer more user-friendly, more effective and safer. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called “session cookies”. These are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies allow us to recognise your browser on your next visit.

You can set your browser to notify you when a cookie is placed, to accept cookies only in specific cases, to refuse cookies in specific cases or generally, and to automatically delete cookies when you close your browser. If you disable cookies, the functionality of this website may be limited.

8. Apps, QR-Code, and similar applications

When you scan a QR code, the external service provider that creates our QR codes on our behalf may store certain information from your mobile device (such as your mobile device ID and IP address). The service provider uses this information solely on our behalf and for the purpose of providing anonymous statistical analysis about visitors to our website and users of our services.

9. Server-Log-Files

The provider of these pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and browser version;
  • Operating system used; referrer URL;
  • Host name of the accessing computer;
  • Time of the server request.

This data cannot be linked to specific individuals. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of concrete indications of illegal use.

10. Contact option via the website

If you send us an enquiry by email, we will store your details from the enquiry form, including your contact details, for the purposes of processing your enquiry and any follow-up enquiries. We will not share this information without your consent.

11. Newsletter order, data, and revocation

If you would like to receive the newsletter offered on the website, we require a valid e-mail address intended for your direct access and information that allows us to verify that you are the owner of the specified e-mail address and agree to receive the newsletter (so-called confirmation e-mail in the “double opt-in procedure”). No other data will be collected. We will only use this information to send you the requested information and will not pass it on to third parties.

You can revoke your consent to the storage of the data, the e-mail address, and their use for sending the newsletter at any time, e.g. via the link provided for this purpose in the newsletter.

12. Newsletter-Tracking (Tracking Pixel)

CFG newsletters contain so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in such emails, which are sent in HTML format, to enable log file recording and log file analysis. This enables statistical evaluation of the success or failure of online marketing campaigns. Based on the embedded tracking pixel, CFG can see whether and when an e-mail was opened by a data subject and which links contained in the e-mail were called up by the data subject.

Such personal data collected via the tracking pixels contained in the newsletters are stored and evaluated by the person responsible for processing or the electronic portal of a third party provider commissioned by the latter in order to optimise the dispatch of the newsletters and to adapt the content of future newsletters even better to the interests of the data subject. This personal data will not be disclosed to third parties, nor will it be used for purposes other than those indicated above.


The recipient of our newsletter consents to this form of data processing on the basis of the above information by accepting the privacy policy.

In the event of revocation by the recipient, the personal data will be deleted by the data controller. CFG automatically regards the cancellation of the receipt of the newsletter as a revocation. CFG shall unilaterally initiate the above measures.

13. SSL-Encryption

For security reasons and to protect the transmission of confidential content, such as requests you send to us as the site operator, this site uses SSL encryption. You can recognise an encrypted connection by the fact that the address bar of your browser changes from “http://” to “https://” and by the lock symbol in your browser bar.

When SSL encryption is enabled, the information you send to us cannot be read by third parties.

14. Your Rights

As a user whose personal data is processed within the scope of this privacy policy, you have the following rights:

  • to obtain information on whether CFG may store personal data and in what form (which categories of data, recipients or categories of recipients, retention periods for personal data or criteria for retention periods);
  • to obtain a copy of the personal data;
  • to request the rectification or correction of inaccurate or incomplete personal data;
  • to request the deletion of personal data;
  • to request restrictions on the processing of personal data;
  • to object to the processing of your personal data for marketing and other purposes.

The above rights may be denied or restricted if the interests, rights, and freedoms of third parties take precedence or if processing is necessary to establish, exercise or defend legal claims of CFG.

If you have any questions or requests regarding data or data protection, please contact us using the information provided above.

As a user, you also have the right to lodge a complaint with the data protection authority responsible for you or at the place where you believe a problem has arisen in connection with the data.

15. Objection to advertising mails

The use of contact data published within the framework of the imprint obligation by third parties for the purpose of sending unsolicited advertising and information material is hereby expressly prohibited. CFG expressly reserves the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.

16. Data protection in applications and in the application process

The data controller collects and processes the personal data of applicants for the purpose of managing the application procedure. The processing may also be carried out electronically. This is particularly the case when an applicant submits the relevant application documents to the data controller by electronic means, e.g. by e-mail with pdf files or other file types as attachments via a web form on the website.

For the application process, CFG works with an internationally recognised system provider and its online software application to support our recruitment process. We use this software to process personal data as a data processor on our behalf. The system provider is only authorised to process your personal data in accordance with our instructions.

If you apply for a vacancy advertised by us, the provisions of this privacy notice will apply to our processing of your personal data in addition to our other privacy notices provided to you separately or available on our website.

If you apply for a vacancy via the application facility on a job site or similar online service provider (“Partner”), you should note that the relevant Partner may hold your personal data and may also collect data (including collection data) from us in relation to the progress of your application. Any use of your data by the Partner will be in accordance with the Partner’s privacy policy. The Partner has the same high standard of data protection and data security as our standard (“GDPR Compliance”).

If the data controller concludes an employment contract with an applicant, the transmitted data will be stored at CFG companies for the purpose of processing the employment relationship in compliance with the statutory provisions and will be protected from access by unauthorised employees and third parties.

If the data controller does not conclude an employment contract with the applicant as the data subject, the application documents will be deleted automatically and without further notice to the applicant 12 months after notification of the rejection decision, unless other legitimate interests of the data controller prevent such deletion. Other legitimate interests in this sense include, for example, obligations to provide evidence in proceedings under the Equal Treatment Act (“Gleichstellungsgesetz”/GlG).

17. Registration function

The data entered during registration will be used for the purpose of using the service. Users may be informed by e-mail about information relevant to the service or registration, such as changes to the scope of the service or technical circumstances. The data collected during registration can be seen in the input mask. This includes, for example, name, postal address, e-mail address, IP address and their purpose.

18. Social Media Buttons

If functions (plug-ins) of third-party providers or social media platforms (e.g. Facebook, Twitter X, LinkedIn, etc.) are integrated on the CFG website, these plug-ins enable the user to share content on the aforementioned social networks. The buttons are deactivated by default when the website is accessed. This means that no personal data is transmitted to the respective third party providers without the user’s intervention. If the user activates the buttons, the plug-ins will automatically transmit data, including personal data, to the relevant third party provider. If the user is logged into the network of the respective third-party provider at the same time as visiting the website, the provider may assign the visit to the user’s network account. CFG has no influence on this. The purpose and scope of this data collection and the further processing and use of personal data are set out in the data protection information of the respective social networks. There, the user can also obtain information on rights and settings regarding the protection of privacy.

19. X

Where features of the X service are integrated into our pages, those features are provided by X Corp HQ, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. By using X and the “Re-Tweet” feature, the websites you visit will be linked to your X account and shared with other users. This also involves the transmission of data to X. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by X. We would also like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by X.

You can find more information about Twitter’s privacy statement here: X’s data protection declaration.

You can change your Twitter privacy settings in your account settings.

20. LinkedIn

Our website uses features of the LinkedIn network. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Each time one of our pages with LinkedIn features is accessed, a connection is made to LinkedIn’s servers. LinkedIn is notified that you have visited our website by your IP address. If you click the LinkedIn “Recommend” button and are logged into your LinkedIn account, LinkedIn may associate your visit to our website with you and your user account. Please note that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by LinkedIn.

Click here for more information about LinkedIn’s privacy policy.

21. XING

Notices regarding functions of the XING network. The service provider is XING AG, Dammtorstrasse 29-32, 20354 Hamburg, Germany. Every time one of our pages with XING functions is called up, a connection to the XING servers is established. As far as we know, no personal data is stored during this process. In particular, we do not store IP addresses or evaluate user behaviour.

Further information on data protection and the XING Share button can be found in the XING privacy policy.

22. Google-AdSense

Notice regarding Google AdSense, an advertising insertion service provided by Google Inc. (“Google”). Google AdSense uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. Google AdSense also uses web beacons (invisible images). These web beacons can be used to analyse information such as visitor traffic to these pages.

The information generated by the cookie about your use of this website (including your IP address) and the serving of ads is transmitted to and stored by Google on servers in the United States. Google may also transfer this information to third parties on Google’s behalf. Google will not associate your IP address with any other data held by Google.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.

23. Google Analytics

Notice regarding Google Analytics, a web analysis service provided by Google Inc (“Google”). The provider is Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.

Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site.

The information generated by the cookie about your use of the website is usually transmitted to and stored by Google on servers in the United States. However, if you choose to have your IP address made anonymous on this website, your IP address will be truncated before being transmitted to Google within the European Union and other countries that are party to the European Economic Area Agreement.

Only in exceptional cases will the full IP address be transmitted to a Google server in the USA, where it will be truncated. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate the IP address transmitted by your browser with any other data held by Google.

You may refuse the use of cookies by selecting the appropriate settings on your browser, including the ability to download and install the browser plug-in: Download Browser-Add-on Deactivation Google Analytics.

However, please note that if you refuse the use of cookies, you may not be able to use the full functionality of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.

For more information about how Google Analytics handles user data, please see the Google privacy statement.

24. YouTube

Our website may use plugins from the YouTube site operated by Google. The site is operated by YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers is established.

This tells the YouTube server which of our pages you have visited.

If you are logged into your YouTube account, you allow YouTube to associate your browsing behaviour directly with your personal profile. You can prevent this by logging out of your YouTube account.

For more information about how we handle user information, please see the YouTube privacy policy.

25. Integration of third party services and content

Despite the great care taken by CFG, it can’t be ruled out that third-party content such as videos from YouTube, maps from Google Maps, RSS feeds or graphics from other websites will be integrated into CFG’s online services. This always presupposes that the providers of this content (hereinafter referred to as “third party providers”) know the IP address of the user.

The IP address is a necessary basis for the third party provider to send the content to the user’s browser. The IP address is therefore necessary for the presentation of this content. We endeavour to use only content where the third party provider only uses the IP address to deliver the content. However, we have no control over whether these third parties store the IP address, e.g. for statistical purposes. To the extent that this is known to us, we will inform the user of this fact.

26. Objection to advertising e-mails

The use of contact data published within the scope of the imprint obligation by third parties for the purpose of sending unsolicited advertisements and information materials is hereby expressly prohibited. CFG and the other operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, e.g. by spam e-mails.

27. Applicable law and place of jurisdiction

The website of CFG with its registered office in Switzerland is subject exclusively to Swiss (data protection) law, unless other mandatory law, in particular the EU General Data Protection Regulation (GDPR), applies to the natural person concerned.

For all possible disputes between you as a visitor and user of the website of CFG, which arise from the operation or the visit of the websites, the court at the registered office of CFG (Switzerland) has exclusive jurisdiction, unless another mandatory jurisdiction is applicable to the natural person concerned.

28. Changes to this privacy policy

CFG regularly reviews this privacy policy to ensure that it is up to date and is entitled to amend this privacy policy if necessary. If changes are made to the statement, it may take up to 30 business days for CFG to implement the new privacy practices or for the necessary processes to be put in place. Please check this page periodically for any changes. In the event of changes, we will specifically notify you (short message).

29. Scope and amendment of the privacy policy

This Privacy Policy applies to all companies of CFG, i.e. to all dependent group companies and associated companies and their employees. Dependent in this sense means that CFG can directly or indirectly, due to the possession of the majority of voting rights, a majority in the company management or an agreement, demand that this data protection declaration and thus the resulting obligations are taken over by the aforementioned companies. This privacy statement covers all processing of personal data. In countries where data relating to legal entities is protected in the same way as personal data, this privacy policy also applies to data relating to legal entities or partnerships. Anonymised data, e.g. for statistical analysis or research, is not covered by this Privacy Policy. The individual companies covered by this privacy policy are not entitled to make any arrangements that deviate from the level of protection provided by this Privacy Policy.

30. Consent to the Data Privacy Policy (Protection Statement)

The Buyer or Customer accepts the contents of the privacy policy in its current version without restriction. The privacy policy shall take precedence over CFG’s General Terms and Conditions (GTC) in the event of contradictions.

The latest version of the privacy policy can be found at CFG’s website.

31. Legal notice / Disclaimer

CFG does not assume any liability with regard to the correctness and completeness of the content of the information.

Liability claims regarding damage caused by the use of any information provided, including any kind of information which is incomplete or incorrect, will therefore be rejected.

All offers published by CFG companies in digital or electronic form are non-binding. The CFG companies expressly reserve the right to change, supplement, delete or temporarily or permanently cease publication of parts of the pages or the entire offer without prior notice.

32. Liability for links

References and links to websites of third parties are outside the responsibility of CFG. Any responsibility for websites of third parties, i.e. outside the companies belonging to CFG, is rejected. Access to and use of such websites is at the user’s own risk.

All offers published by CFG companies in digital or electronic form are non-binding. Parts of the pages or the complete publication including all offers and information might be extended, changed, or partly or completely deleted by the CFG companies without separate announcement.

33. Copyright / Intellectual Properties

The copyright and all other rights to the content, images, photos or other files on the CFG website are the exclusive property of CFG and its affiliated companies, its suppliers or the specifically named holders of the rights. The written consent of the respective copyright holder must be obtained in advance for the reproduction or use of any elements. 

Last updated on: September 2023