Privacy Policy

Swiss LegalLAB SA, C/o Amministra SA, Piazza Indipendenza 3, 6900 Lugano ("Company" or "LegalLAB"), collects personal data (as defined below) in accordance with applicable laws and regulations, in particular the Swiss Federal Data Protection Act ("DPA"). Swiss LegalLAB AG does not offer any services in the EU, therefore the General Data Protection Regulation (EU/2016/679) ("GDPR") is not considered applicable. However, aware of the importance of data protection, the Company applies the principles of the DPA and the GDPR on the basis of free will. Therefore, LegalLAB currently applies the DPA in a way that is as compliant as possible with the GDPR, implementing the value of the revised but not yet applicable version.


According to the LPD, the following terms have different meanings:

"Personal Data" includes any information relating to an identified or identifiable natural or legal person;

"Treatment" means any operation or set of operations, carried out with or without the aid of automated means, which apply to (groups of) personal data, including the collection, registration, organization, structuring, storage, adaptation or modification, extraction, consultation, use, diffusion, communication by transmission, diffusion or any other form of disclosure, alignment or interconnection, limitation, cancellation or destruction .

The "Navigation data" are acquired by the IT systems and procedural software used to operate this site during their normal operation. This is personal data whose transmission is implicit in the use of Internet communication protocols. This category includes IP addresses, addresses in URI / URL (Uniform Resource Identifier / Locator) notation, the time of the request, the type of request, the size of the outgoing packet, the status of the response given by the server (received , error, etc.) and other parameters related to the operating system.

Data controller

The data controller depends on the type of service used.

For data used for navigation, registration and use of the platform, the data controller is Swiss LegalLAB SA, C / o Amministra SA, Piazza Indipendenza 3, 6900 Lugano, Switzerland. Since its business does not require regular and systematic monitoring of users on a large scale, the Company has not appointed any data protection officer.

For data transferred through the LawTech forms, the data controller is identified according to the privacy information service, reported in the following sections:

o privacy policy of the Swiss Privacy module

o privacy policy of the Timesealer module

o privacy policy of the Tokenraise module

o privacy policy of the Tap-ID module

Type of personal data acquired, purpose, legal basis and data retention

The data are collected and managed for the purposes and within the times indicated below:


Mode of data acquisition

Purpose of the treatment

Legal basis for the treatment

Data retention time

Technical data, such as IP address, browser characteristics (type, language, installed plug-ins, etc.).

Automatic during platform visit

Visit of the platform by the user

Predominant private interest

Identity information such as name, address, company name, picture, email address);

Entered by the user during platform registration or use of contact forms

Registration of personal data for accounting reasons

Fulfilment of contractual obligations

Until cancellation request

Information about the services purchased, the means of payment used and the price paid

Entered by the user during the use of the platform

Recording financial data for accounting reasons

Art. 958f Code of Obligations

10 years


Entered by the user

Newsletter registration

Predominant private interest

Until cancellation request

Data collected through the Online Identification Form

Entered by the user’s customer

Data transfer to the user

Fulfilment of contractual obligations

Until the time of file download

The platform was not designed to monitor personal data, nor to store "particular categories", including race or ethnicity, religious or philosophical beliefs, life and sexual orientation, political opinions, union membership, health status information. We do not use tracking cookies and do not monitor user behavior on the site.

Who will the collected data be communicated to?

We will communicate your personal data only if we are obliged to do so in order to fulfill our legal or regulatory obligations, for business or administrative reasons or because you have asked us to. This probably also includes disclosure:

within the Company;

to third parties who process personal data on our behalf (IT system providers and other service providers);

to any government, regulatory agency, enforcement or exchange agency or court that requests it under applicable law or regulation.

LegalLAB offers through its platform the use of third-party services. In this regard, the Company may transfer the personal data collected to third parties in order to perform the service requested by the user. By using third-party services, the user may be required to provide data other than that required by LegalLAB. In this case, for a better understanding of the use of personal data, the user must refer to the third party's privacy policy.

Can the Company transfer data to a third country and / or international organizations?

The data collected by LegalLAB are stored in Switzerland. If we have to transfer your data outside of Switzerland, we will make sure that the data is first stored in countries that guarantee adequate protection of personal data, such as the Member States of the European Economic Area. If this is not possible, we will verify that in any case the provisions of the applicable legislation regarding the transfer of personal data to third countries will be respected.

How we protect your personal data

The security of your personal data is important to us and to protect it we use various technical and organizational measures.

We are committed to safeguarding and protecting personal data by taking appropriate measures against accidental or unlawful destruction, loss, alteration or unauthorized disclosure.

Rights of the interested parties

Under the data protection law, users have a number of rights in relation to their personal data. They have the right to request access, rectification or cancellation of such information, the right to limit or oppose the processing and, in certain circumstances, the right to data portability.

If a user has given consent to the processing of their data, he has the right (in certain circumstances) to withdraw this consent at any time.

The interested party who wishes to exercise the above rights is requested to send an e-mail to

We try to get back to you within a month, even if we reserve the right to extend this period for more complex requests. We also reserve the right to charge a reasonable administrative fee for any manifestly unfounded or excessive request relating to access to personal data and for each additional copy of the personal data requested.

Back to top