Premium outdoor living space
Last updated: January 2025

Privacy Policy

Privacy policy explaining how Lynx Group collects, uses, and protects your personal information.

Privacy Policy of Lynx Group GmbH

1. Responsible Party

Lynx Group GmbH, Kaiserstuhlstrasse 2, 8154 Oberglatt, Switzerland, registered in the Commercial Register of the Canton of Zurich under CHE-230.130.559, represented by Ron Tiso, Managing Director.

Contact for data protection inquiries: [email protected]

2. General Information

The protection of your personal data is important to us. This privacy policy explains which data we collect, for what purposes, on what legal basis, and how we process it. It applies to all websites, online stores, and services of Lynx Group GmbH and our brands (e.g., theiss.design, outreside.ch).

3. Purposes and Legal Bases

We process your personal data for the following purposes:

  • Contract fulfillment (Art. 6(1)(b) GDPR): order processing, shipping, payment processing, warranty claims, returns
  • Consent (Art. 6(1)(a) GDPR): newsletter dispatch, marketing, cookies for analytics
  • Legitimate interests (Art. 6(1)(f) GDPR): IT security, fraud prevention, credit checks, product improvement, legal defense
  • Legal obligations (Art. 6(1)(c) GDPR): tax retention obligations, commercial and tax law documentation obligations

4. Data Recipients

Your data may be disclosed to:

  • Shipping and logistics service providers (e.g., DPD, DHL, Swiss Post)
  • Payment service providers (e.g., Stripe, PayPal, card companies)
  • Hosting and cloud providers (e.g., Cloudflare, Webflow, AWS)
  • CRM, ERP, and marketing platforms (e.g., Odoo, Mailchimp/Brevo, HubSpot)
  • Authorities, when legally required
  • Consultants, attorneys, tax advisors (under confidentiality obligations)

5. Newsletter

If you subscribe to our newsletter, we use double opt-in: you will receive a confirmation email first. Legal basis: Art. 6(1)(a) GDPR. Withdrawal: unsubscribe link in every email or by email to [email protected].

6. Your Rights

You have the following rights under the GDPR and Swiss data protection law:

  • Access: Obtain confirmation and a copy of your data
  • Rectification: Correct inaccurate data
  • Erasure: Deletion under certain conditions
  • Restriction: Restrict processing temporarily
  • Data portability: Receive your data in a common format
  • Objection: Object to processing based on legitimate interests or for marketing purposes
  • Withdraw consent: At any time for the future
  • Lodge a complaint: With a supervisory authority (in Switzerland: FDPIC; in the EU: a local authority)

7. Storage Duration

Personal data is only stored as long as necessary for the respective purpose or as required by law. Typical retention periods:

  • Contracts and invoices: 10 years (tax law)
  • Marketing consents: until withdrawal
  • Log data: max. 90 days

8. Third Country Transfer

Some of our service providers are based outside Switzerland/EEA. In such cases, we rely on Standard Contractual Clauses (SCC) or adequacy decisions to ensure adequate protection.

9. Data Protection Officer

Due to our size, no formal Data Protection Officer is required. For inquiries, please contact: [email protected].

10. Data Security

We use TLS/SSL encryption, access controls, and regular security checks to protect your data. Despite reasonable precautions, no internet transmission is 100% secure.

11. Cookies & Analytics

We use strictly necessary cookies as well as analytics cookies (e.g., Google Analytics) – the latter only with your consent. You can adjust cookie settings at any time.