Privacy Policy

Welcome to LedgerPeek Sàrl (“LedgerPeek”, “we”, “us”, or “our”). We are committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, process, and safeguard your information when you visit our website (ledgerpeek.ch), interact with us, or use our client services.

We process personal data in compliance with applicable data protection laws, primarily the Swiss Federal Act on Data Protection (FADP) and, where applicable, the EU General Data Protection Regulation (GDPR).

The controller responsible for the data processing described in this policy is:

LedgerPeek Sàrl

Chemin des Coquelicots 16

1214 Vernier, Switzerland

For any questions or requests regarding your personal data, please contact us at: privacy@ledgerpeek.ch

We collect different types of information depending on how you interact with us.

3.1. When You Visit Our Website

When you browse our website, request information, or fill out a contact form, we may collect the following data:

• Information You Provide:
  • Full Name
  • Email Address
  • Company Name
  • Phone Number
• Automatically Collected Information: Through our use of analytics and tracking technologies, we collect data to understand how our website is used and to improve our services. This includes:
  • Usage Information: IP address, location, language, pages visited, session duration, bounce rate, and interactions with our website.
  • Technical Information: Browser type, operating system, and the source of your visit (e.g., a search engine or a referring link).

Purpose of Use:

• To respond to your inquiries and requests.
• To send you marketing materials and information about our services, from which you can opt-out at any time. For any requests regarding opting-out, please contact us at: privacy@ledgerpeek.ch
• To analyze website performance and user behaviour to improve user experience.

3.2. When You Are a Client (Client Services)

When you engage our services, we process data necessary to fulfill our contractual obligations. This processing is governed by the service agreement signed with our clients.

• Categories of Client Data Processed:
  • Contact & Identity Information: Names, addresses, email addresses, and phone numbers of company representatives and employees.
  • Financial Information: Invoices, bank statements, and other transaction data.
  • Employee Information (for payroll and related services): Employment contracts, personal details (including social security/AHV numbers), salary information, and work permits.
  • Tax Information: All data required for the preparation of tax returns and for representation before administrative and fiscal authorities.
  • Any other company-related information pertinent to the successful execution of our services.

Purpose of Use:

• To provide our clients with contracted accounting and tax-related services, including bookkeeping, payroll generation, preparation of annual accounts, and tax returns.
• To represent our clients before Swiss authorities on administrative and fiscal matters.
• To manage our client relationships, including billing and support.

Our website uses cookies and similar technologies to enhance functionality, analyze performance, and for marketing purposes. A cookie is a small text file stored on your device.

We use the following tools:

• CookieYes: To manage your cookie consent preferences and to log your IP address as part of this process.
• Google Analytics: To analyze website traffic and user interactions.
• Mouseflow: To understand user experience through session replays and heatmaps. This helps us optimize website design and functionality.
• Meta Pixel & LinkedIn Insight Tag: These tools help us measure the effectiveness of advertising campaigns and may be used for future targeted advertising on these platforms.

You can control your cookie preferences at any time through the consent banner on our website.

We utilize specialized third-party services (sub-processors) to provide our client services securely and efficiently. We have entered into data processing agreements with these providers where required. Our key sub-processors include:

• Cloud Hosting Provider: Our client application, LedgerLink, is hosted on Google Cloud Services (including Kubernetes and Google Bucket). All servers are located in the europe-west6 region (Zurich, Switzerland). We also utilize Google Vertex AI for service improvement analytics.
• Cloud Storage Provider: We use com for secure cloud storage of documents.
• Cloud Accounting Platform: We use Wyzio as our ERP system to process accounting data.
• Authentication Provider: We use the OneLogin system for secure authentication to our LedgerLink application.

Our goal is to keep your data within Switzerland. Our primary hosting infrastructure via Google Cloud is located in Zurich.

However, several of our service providers (Google, BOX, OneLogin, Meta, LinkedIn, Mouseflow) are US-based companies. While we select European or Swiss data centers where possible, data may be subject to access from or transfer to the United States or other countries for purposes such as system administration, support, or security monitoring.

Such transfers are conducted with appropriate legal safeguards in place to ensure your data is protected to a standard equivalent to Swiss law. These safeguards include the Swiss-U.S. Data Privacy Framework and the use of Standard Contractual Clauses (SCCs) approved by the relevant authorities

We take the security of your data very seriously and have implemented appropriate technical and organizational measures to protect it from unauthorized access, alteration, disclosure, or destruction. These measures include:

• Secure Authentication: Use of the OneLogin system for access to our client application.
• Data Encryption: Encrypting data both in transit (using TLS) and at rest.
• Secure Infrastructure: Hosting our application and data on reputable, secure cloud platforms like Google Cloud and BOX.
• Access Controls: Implementing strict internal access controls to ensure that only authorized personnel have access to personal data on a need-to-know basis.

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal and regulatory obligations.

• Client Data: In accordance with Swiss commercial law, we retain all client accounting records and related documents for a period of 10 years after the end of the business relationship.
• Other Data: Data collected from website inquiries or for marketing purposes is retained until it is no longer needed or until you request its deletion.

Under the FADP and GDPR, you have the following rights regarding your personal data:

• Right of Access: You can request a copy of the personal data we hold about you.
• Right to Rectification: You can request that we correct any inaccurate or incomplete data.
• Right to Erasure: You can request that we delete your personal data, subject to our legal retention obligations.
• Right to Restriction of Processing: You can request that we limit the processing of your data in certain circumstances.
• Right to Data Portability: You can request that we provide you with your data in a structured, commonly used, and machine-readable format.
• Right to Object: You can object to the processing of your data, particularly for direct marketing purposes.

To exercise any of these rights, please contact us at privacy@ledgerpeek.ch. We will respond to your request in accordance with applicable law.

You also have the right to lodge a complaint with the relevant supervisory authority. In Switzerland, this is the Federal Data Protection and Information Commissioner (FDPIC).

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will post the updated policy on our website and indicate the new effective date.