Privacy Policy
1. Introduction
This privacy policy applies to the website bimdonity.com ("this website"). We take the protection of your personal data very seriously and treat your personal data confidentially and in accordance with legal data protection regulations.
2. Provider and Data Controller
bimdo GmbH
Hirschmattstrasse 33
6003 Lucerne
Email address of the provider: team@bimdo.ch
3. Types of Data Collected
The personal data that this website collects independently or through third parties includes temporarily stored IP addresses, browser type and version, operating system, and the referrer URL indicating which page the user came from. Additionally, the time of the server request and the pages visited are recorded, the latter without personal assignment.
Complete details on each type of personal data processed are provided in the designated sections of this privacy policy or specifically through explanatory texts displayed before data collection. Personal data may be provided voluntarily by the user or, in the case of usage data, automatically collected when this website is used.
Unless otherwise specified, all data requested by this website is mandatory. If the user refuses to provide the data, it may lead to this website not being able to provide its services to the user. In cases where this website explicitly designates certain data as optional, users may choose not to provide this data without any consequences for the availability or functionality of the service.
Users who are unclear about which personal data is mandatory can contact the provider. Any use of cookies – or other tracking tools – by this website or providers of third-party services used by this website serves the purpose of providing the service requested by the user, and any other purposes described in the present document and in the Cookie Policy.
Users are responsible for any personal data of third parties obtained, published, or shared through this website.
4. Method and Place of Data Processing
Processing Methods
The provider processes users' personal data properly and takes appropriate security measures to prevent unauthorized access and the unauthorized forwarding, modification, or destruction of data.
Data processing is carried out using computers or IT-based systems, following organizational procedures and methods specifically targeting the stated purposes. In addition to the data controller, in some cases, other persons internal to the organization (personnel administration, sales, marketing, legal department, system administrators) or external – and in that case, where necessary, appointed as data processors by the data controller (such as technical service providers, delivery companies, hosting providers, IT companies, or communications agencies) - may have access to the data. An up-to-date list of these parties can be requested from the provider at any time.
Location
The data is processed at the provider's operating locations and at all other locations where the parties involved in the processing are located.
Depending on the user's location, data transfers may involve transferring the user's data to a country other than their own. To find out more about the place of processing of such transferred data, users can refer to the section with detailed information on the processing of personal data.
Retention Time
Unless otherwise specified in this document, personal data shall be processed and stored for as long as required by the purpose for which it was collected and may be retained longer due to an applicable legal obligation or based on the user's consent.
5. Purposes of Processing
Personal data about the user is collected so that the provider can provide the service and further fulfill its legal obligations, respond to enforcement requests, protect its rights and interests (or those of users or third parties), detect malicious or fraudulent activities. In addition, data is collected for the following purposes: displaying content from external platforms, analytics, interaction with external social networks and platforms, managing productivity processes, contacting the user, registration and authentication directly through this website, and optimizing and distributing traffic.
Users can find further detailed information on these processing purposes and the specific personal data used for each purpose in the section "Detailed Information on the Processing of Personal Data" of this document.
6. Detailed Information on the Processing of Personal Data
Personal data is collected for the following purposes and using the following services:
6.1 Analytics
The services listed in this section enable the provider to monitor and analyze web traffic and can be used to track user behavior.
YouTube Analytics and Reporting API (Google Ireland Limited)
YouTube Analytics and Reporting API is a video content analysis service provided by Google Ireland Limited. Through this service, this website may collect data directly or indirectly on or from the user's device, including through the use of trackers. Users can restrict access to their data through Google's security settings. Users can contact the provider at any time using the contact information provided in this document to request further information about privacy settings. Data collected through the service may also be used by third parties to deliver interest-based advertising. Users can opt out of interest-based advertising by third parties through their device settings or via the Network Advertising Initiative opt-out page.
Personal data processed: Data transmitted for the use of the service.
Processing location: Ireland – Privacy Policy – Opt out.
6.2 Interaction with External Social Networks and Platforms
This type of service allows interaction with social networks or other external platforms directly from this website.
The interaction and information collected through this website are always subject to the user's privacy settings for each social network.
This type of service might still collect web traffic data for the pages where the service is installed, even when users do not use it.
It is recommended to log out from the respective services to ensure that the processed data is not reconnected to the user's profile.
LinkedIn Button and Social Widgets (LinkedIn Corporation)
The LinkedIn button and social widgets are services for interacting with the LinkedIn social network provided by LinkedIn Corporation. Personal data processed: Usage data; Trackers.
Processing location: United States – Privacy Policy.
GitHub Buttons and Widgets
The GitHub buttons and widgets are services for interacting with the GitHub platform provided by GitHub Inc. Personal data processed: Usage data; Trackers.
Processing location: United States – Privacy Policy.
YouTube Buttons and Widgets
The YouTube buttons and widgets are services for interacting with the YouTube platform provided by Google Ireland Limited. Personal data processed: Usage data; Trackers.
Processing location: Ireland – Privacy Policy.
6.3 Traffic Optimization and Distribution
Since this website is hosted on GitHub Pages, the content is delivered through GitHub's Content Delivery Network (CDN). GitHub Pages uses servers in various countries to deliver content quickly and reliably.
The website is created with MkDocs, a static site generator. MkDocs itself does not collect or process personal data as it is purely a build tool that generates HTML pages from Markdown files.
The processing of personal data is limited to the technically necessary access data that arises when accessing the website. These are processed according to the GitHub Privacy Policy.
Additional optimization or distribution of traffic through services such as Cloudflare does not take place, as the website is provided exclusively through GitHub Pages infrastructure.
Processing location: Worldwide - Details in the GitHub Privacy Policy.
6.4 Displaying Content from External Platforms
This type of service allows users to view content hosted on external platforms directly from this website and interact with them.
This type of service might still collect web traffic data for the pages where the service is installed, even when users do not use it.
YouTube IFrame Player (Google Ireland Limited)
YouTube IFrame Player is a service provided by Google Ireland Limited for visualizing video content, allowing this website to incorporate such content on its pages. Through this service, this website may collect data directly or indirectly on or from the user's device, including through the use of trackers. Users can restrict access to their data through Google's security settings. Users can contact the provider at any time using the contact information provided in this document to request further information about privacy settings. Data collected through the service may also be used by third parties to deliver interest-based advertising. Users can opt out of interest-based advertising by third parties through their device settings or via the Network Advertising Initiative opt-out page.
Personal data processed: Data transmitted for the use of the service; Device information.
Processing location: Ireland – Privacy Policy – Opt out.
Vimeo Video (Vimeo, LLC)
Vimeo is a video content visualization service provided by Vimeo, LLC that allows this website to incorporate such content on its pages.
Personal data processed: Usage data; Trackers.
Processing location: United States – Privacy Policy.
YouTube Data API (Google Ireland Limited)
YouTube IFrame Player is a service provided by Google Ireland Limited for visualizing video content, allowing this website to incorporate such content on its pages. Through this service, this website may collect data directly or indirectly on or from the user's device, including through the use of trackers. Users can restrict access to their data through Google's security settings. Users can contact the provider at any time using the contact information provided in this document to request further information about privacy settings. Data collected through the service may also be used by third parties to deliver interest-based advertising. Users can opt out of interest-based advertising by third parties through their device settings or via the Network Advertising Initiative opt-out page.
Personal data processed: Data transmitted for the use of the service; Device information.
Processing location: Ireland – Privacy Policy – Opt out.
6.5 Hosting and Backend Infrastructure
This website is hosted on GitHub Pages. GitHub may store and process server logs. Details can be found in the GitHub Privacy Policy.
7. Additional Information for Users
Legal Basis for Processing
The provider may process personal data relating to users only if one of the following applies:
- Users have given their consent for one or more specific purposes.
- The data collection is necessary for the performance of a contract with the user and/or for pre-contractual measures;
- Processing is necessary for compliance with a legal obligation to which the provider is subject;
- Processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in the provider;
- Processing is necessary for the purposes of the legitimate interests pursued by the provider or by a third party.
In any case, the provider will gladly help clarify the specific legal basis that applies to the processing, and in particular whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.
Additional Information on Retention Time
Unless otherwise specified in this document, personal data shall be processed and stored for as long as required by the purpose for which it was collected and may be retained longer due to an applicable legal obligation or based on the user's consent.
Therefore:
Personal data collected for purposes related to the performance of a contract between the provider and the user shall be retained until such contract has been fully performed.
Personal data collected for the purposes of the provider's legitimate interests shall be retained for as long as needed to fulfill such purposes. Users may find specific information regarding the legitimate interests pursued by the provider within the relevant sections of this document or by contacting the provider.
In addition, the provider may be obliged to retain personal data for a longer period whenever required to fulfill a legal obligation or upon order of an authority.
Once the retention period expires, personal data shall be deleted. Therefore, the right to access, the right to erasure, the right to rectification, and the right to data portability cannot be enforced after the expiration of the retention period.
The Rights of Users under the General Data Protection Regulation (GDPR)
Users may exercise certain rights regarding their data processed by the provider.
In particular, users have the right to do the following, to the extent permitted by law:
- Withdraw their consent at any time. If the user previously consented to the processing of personal data, they may withdraw their own consent at any time.
- Object to the processing of their data. The user has the right to object to the processing of their data if the processing is carried out on a legal basis other than consent.
- Access their data. The user has the right to learn if data is being processed by the provider, obtain disclosure regarding certain aspects of the processing, and obtain a copy of the data undergoing processing.
- Verify and seek rectification. The user has the right to verify the accuracy of their data and ask for it to be updated or corrected.
- Restrict the processing of their data. The users have the right to restrict the processing of their data. In this case, the provider will not process the data for any purpose other than storing it.
- Have their personal data deleted or otherwise removed. The users have the right to obtain the erasure of their data from the provider.
- Receive their data and have it transferred to another controller. The user has the right to receive their data in a structured, commonly used, and machine-readable format and, if technically feasible, to have it transmitted to another controller without any hindrance.
- Lodge a complaint. The users have the right to bring a claim before their competent data protection authority.
Users also have the right to be informed about the legal basis for data transfers abroad or to an international organization governed by public international law or established by two or more countries, such as the UN, as well as about the security measures taken by the provider to safeguard their data.
Details on the Right to Object to Processing
Where personal data is processed for a public interest, in the exercise of an official authority vested in the provider, or for the purposes of the legitimate interests pursued by the provider, users may object to such processing by providing a ground related to their particular situation to justify the objection.
Users are informed that, however, should their personal data be processed for direct marketing purposes, they can object to that processing at any time without providing any justification. To learn whether the provider is processing personal data for direct marketing purposes, users may refer to the relevant sections of this document.
How to Exercise These Rights
Any requests to exercise user rights can be directed to the owner through the contact information provided in this document. These requests can be made free of charge and will be addressed by the owner as early as possible, at the latest within one month, providing users with the legally prescribed information. Any correction or deletion of personal data or restriction of processing will be communicated by the provider to all recipients to whom personal data has been disclosed, if any. Unless this proves impossible or involves disproportionate effort, the provider will inform the user about these recipients if the user requests it.
8. Additional Information for Users in Switzerland
This section applies to users in Switzerland and replaces any possibly differing or contradictory information in the privacy policy for these users.
For more details on the categories of data processed, the purposes of processing, the categories of recipients of personal data, if any, the retention period, and other information about personal data, please refer to the section "Detailed Information on the Processing of Personal Data" in this document.
The Rights of Users under the Swiss Federal Data Protection Act
Users may exercise certain rights regarding their data within the provisions of the law, including the following:
- The right to access personal data;
- The right to object to the processing of their personal data (which also allows users to request restriction of the processing of personal data, deletion or destruction of personal data, and prohibition of disclosure of certain personal data to third parties);
- The right to receive their personal data and have it transferred to another data controller (data portability);
- The right to request rectification of inaccurate personal data.
How to Exercise These Rights
Any requests to exercise user rights can be directed to the owner through the contact information provided in this document. Such requests are free of charge and will be answered by the owner as soon as possible, providing users with the legally prescribed information.
9. Further Information about Data Collection and Processing
Legal Action
The user's personal data may be used for legal purposes by the provider in court or in the stages leading to possible legal action arising from improper use of this website or the related services. The user declares to be aware that the provider may be required to reveal personal data upon request of public authorities.
Additional Information about the User's Personal Data
In addition to the information contained in this privacy policy, this website may provide the user with additional and contextual information concerning particular services or the collection and processing of personal data upon request.
System Logs and Maintenance
For operation and maintenance purposes, this website and any third-party services may collect files that record interaction with this website (system logs) or use other personal data (such as the IP address) for this purpose.
Information Not Contained in This Privacy Policy
More details concerning the collection or processing of personal data may be requested from the provider at any time using the contact information provided.
Changes to This Privacy Policy
The provider reserves the right to make changes to this privacy policy at any time by notifying users on this page and possibly within this website and/or - as far as technically and legally feasible - by sending a notice to users via any contact information available to the provider. Users are therefore advised to regularly visit this page and to check the date of the last modification indicated at the end of the page.
Should the changes affect processing activities performed on the basis of the user's consent, the provider shall collect new consent from the user, where required.
10. Definitions and Legal References
Personal Data (or Data)
Any information that directly, indirectly, or in connection with other information — including a personal identification number — allows for the identification of a natural person.
Usage Data
Information collected automatically through this website (or third-party services employed by this website), which can include: the IP addresses or domain names of the computers utilized by the users who use this website, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the user, the various time details per visit (e.g., the time spent on each page within the application) and the details about the path followed within the application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the user's IT environment.
User
The individual using this website who, unless otherwise specified, coincides with the data subject.
Data Subject
The natural person to whom the personal data refers.
Data Processor
The natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller, as described in this privacy policy.
Data Controller (or Owner)
The natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data, including the security measures concerning the operation and use of this website. The data controller, unless otherwise specified, is the owner of this website.
This Website (or this Application)
The means by which the personal data of the user is collected and processed.
Service
The service provided by this website as described in the relative terms (if available) and on this site/application.
European Union (or EU)
Unless otherwise specified, all references made within this document to the European Union include all current member states to the European Union and the European Economic Area.
Cookie
Cookies are trackers consisting of small sets of data stored in the user's browser.
Tracker
The term tracker refers to any technology - e.g., cookies, unique identifiers, web beacons, embedded scripts, e-tags, and fingerprinting - that enables the tracking of users, for example by accessing or storing information on the user's device.
Legal Notice
This privacy statement has been prepared based on provisions of various legislations.
This privacy policy relates solely to this website, if not stated otherwise within this document.
Last updated: March 23, 2025