Privacy Policy

Last Updated: December 4, 2025

1. Introduction

Welcome to fognini.tech, operated by Fognini Tech, based in Switzerland. We are committed to protecting your privacy and ensuring compliance with the Swiss Federal Act on Data Protection (nFADP) and the EU General Data Protection Regulation (GDPR).

This Privacy Policy explains how we collect, use, and protect your data when you visit our website, use our assessment tools, or engage with our services.

2. Data Controller

The data controller responsible for your personal data is:

Fognini Tech

Switzerland

info@fognini.tech

3. Data We Collect

We may collect and process the following types of personal data:

Contact Data

Name, email address, company name, job title, and other details you provide when submitting contact forms or booking meetings.

Assessment Data

When you complete our AI Readiness or SDLC Maturity assessments, we collect:

  • Company information (name, industry, size)
  • Your responses to assessment questions
  • Contact details you provide (name, email, role)
  • Calculated scores and maturity levels

Important: Assessment data is used solely to generate your personalised results and recommendations. We do not sell, share, or disclose your assessment responses to third parties.

Newsletter Data

Email address and preferences when you subscribe to our newsletter or updates.

Usage Data

IP address, browser type, device information, pages visited, and analytics data collected through cookies and similar technologies.

4. Purpose and Legal Basis of Processing

We process your data for the following purposes:

PurposeLegal Basis
Providing assessment results and recommendationsContract performance (Art. 6(1)(b) GDPR)
Responding to inquiries and booking requestsContract performance (Art. 6(1)(b) GDPR)
Sending newsletters and marketing communicationsConsent (Art. 6(1)(a) GDPR)
Analysing website usage and improving our servicesLegitimate interest (Art. 6(1)(f) GDPR)
Ensuring website security and preventing fraudLegitimate interest (Art. 6(1)(f) GDPR)

5. Assessment Data Protection

Your assessment data is treated with the highest level of confidentiality:

  • No Selling: We never sell your assessment data or personal information to third parties.
  • No Sharing: Your individual responses are not shared with other organisations or used for purposes beyond providing your results.
  • Aggregate Analytics: We may use anonymised, aggregate data to improve our assessment tools and understand industry trends, but this data cannot be traced back to you.
  • Secure Storage: Assessment data is stored securely in encrypted databases with strict access controls.

6. Newsletter Subscription

Our newsletter uses a double opt-in process to ensure you genuinely want to receive our updates. After subscribing, you'll receive a confirmation email to verify your address.

You may unsubscribe at any time by clicking the unsubscribe link in any newsletter email or by contacting us directly at info@fognini.tech.

7. Cookies

Our website uses cookies to enhance your experience. On your first visit, you'll be presented with a cookie consent banner where you can accept or customise your preferences.

We use the following types of cookies:

  • Essential Cookies: Required for basic website functionality.
  • Analytics Cookies: Help us understand how visitors use our site.
  • Preference Cookies: Remember your settings and choices.

You can manage or withdraw your cookie consent at any time through our cookie settings or your browser preferences.

8. Analytics

We use analytics tools to understand how visitors interact with our website. This helps us improve our content and user experience.

Analytics data is collected with IP anonymisation enabled to protect your privacy. You may opt out of analytics tracking using browser privacy settings or analytics opt-out tools.

9. Data Sharing

We do not sell your personal data.

We may share data only with:

  • Service Providers: Trusted partners who help us operate our website and services (e.g., hosting, email delivery). These providers are bound by strict Data Processing Agreements (Art. 28 GDPR) and may only process data on our behalf.
  • Legal Requirements: Authorities when legally required to comply with applicable laws, regulations, or legal processes.

10. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes described in this policy:

  • Assessment Data: Retained for 24 months to allow you to access your results and for us to provide follow-up support.
  • Contact Data: Retained for the duration of our business relationship plus any legally required retention period.
  • Newsletter Data: Retained until you unsubscribe.
  • Analytics Data: Retained in anonymised form for up to 26 months.

11. International Transfers

Your data may be processed outside Switzerland or the European Economic Area (EEA). Where this occurs, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions recognising equivalent data protection standards
  • Other appropriate safeguards as required by applicable law

12. Data Security

We implement robust technical and organisational measures to protect your personal data, including:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Secure, access-controlled hosting infrastructure
  • Regular security assessments and updates
  • Employee training on data protection best practices
  • Incident response procedures for potential data breaches

13. Children's Data

Our services are intended for business professionals and are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us immediately.

14. Your Rights

Under GDPR and Swiss data protection law, you have the following rights:

Right of Access: Request a copy of your personal data.
Right to Rectification: Request correction of inaccurate or incomplete data.
Right to Erasure: Request deletion of your data ("right to be forgotten").
Right to Restriction: Request limitation of processing in certain circumstances.
Right to Data Portability: Receive your data in a structured, machine-readable format.
Right to Object: Object to processing based on legitimate interests.
Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, please contact us at:

info@fognini.tech

We will respond to your request within 30 days.

15. Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority:

  • In Switzerland: Federal Data Protection and Information Commissioner (FDPIC)
  • In the EU: The data protection authority in your country of residence

16. Automated Decision-Making

Our assessment tools use algorithmic scoring to calculate your maturity level and generate recommendations. This is not considered automated decision-making with legal effects, as:

  • Results are informational and advisory only
  • No legal or similarly significant decisions are made automatically
  • You maintain full control over how you use the insights provided

17. AI-Generated Content

Some content on our website may be created or enhanced using artificial intelligence technologies. While we strive for accuracy and quality:

  • AI-generated content is reviewed by our team before publication
  • We recommend validating important information independently
  • We disclaim responsibility for decisions made solely based on AI-generated content

18. Web Scraping & Automated Access

Web scraping and automated content extraction are strictly prohibited.

The following activities are expressly forbidden without prior written permission from Fognini Tech:

  • Web Scraping: Automated extraction of content, data, or information from our website
  • Data Mining: Using automated tools to collect or harvest data from our pages
  • AI/ML Training: Using our content to train artificial intelligence or machine learning models
  • Content Aggregation: Reproducing or republishing our content on other platforms
  • Automated Access: Using bots, crawlers, or scripts to access our website beyond normal browsing

Permitted Use: Search engine indexing for the purpose of making our content discoverable in search results is allowed. However, this does not grant permission to extract, copy, or reuse our content for any other purpose.

Violations may result in legal action. For licensing inquiries or permission requests, contact us at info@fognini.tech.

19. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or business operations.

Material changes will be communicated through a prominent notice on our website. We encourage you to review this policy periodically.

Questions About Your Privacy?

If you have any questions about this Privacy Policy or how we handle your data, we're here to help.

Contact Us