Privacy Notice for Swiss Re Visitors

We take the privacy and security of your personal data very seriously. We handle personal data that we process to carry out our activities with care. We ensure a high degree information security in accordance with generally recognized standards and practices, and we only collect data that is necessary. Our employees are regularly trained in handling personal data and are obliged to maintain confidentiality.

This privacy notice explains how we process information about you, when you visit our premises. It applies in accordance with the applicable data protection law.

Swiss Re Management Ltd.,
Mythenquai 50
Zurich Switzerland

When you visit our premises, we may collect personal data about you. These include your name and contact details such as your email address, the company you work with, the date and time of your visit, the purpose of your visit and other information you voluntarily provide before or during your visit.

This applies to external clients and business partners, other visitors and other guests and in some cases to Swiss Re employees as well.

You are generally not required to provide us with any data. However, if you choose not to provide us with data, it could mean that we are unable to visit our premises.

We process your personal data for the following purposes:

• Ensuring the security and safety on our premises
• Managing access of visitors to our premises
• Issuing visitor and access badges
• Making room bookings in outlook or managing restaurant booking or catering services
• Responding to inquiries and request made during your visit
• Maintaining a record of visitors for security purposes

We pursue this purpose base on our legitimate interests in managing visits to our premises and to comply with security and legal obligations.

We may also use your personal data to communicate with you and to ask you feedback on your visit based on our legitimate interest in improving the stay with us for our visitors.

We may also use your personal information for other purposes that are compatible with the purposes mentioned above.

Your personal data is automatically deleted within 90 days after your visit. 

We may disclose your personal data to third parties both domestic and abroad, in connection with the purposes set forth in this privacy notice, our legal obligations or otherwise to pursue our legitimate interests. These recipients are contractually required to comply with applicable data protection laws as well as any applicable confidentiality requirements.

For the purposes set out in this Privacy Notice personal data may in particular be disclosed to the following recipients:

• We may share your personal data with Swiss Re employees of other group companies that are involved in the planning and the performance of events and visits or who are involved in the visitor management.
• We may also work with data processors such as suppliers, IT and other service providers who process personal data on our behalf. These are contractually obligated to process the data only for the purposes of providing their service to us. Our visitor management application is provided by TimeDataSecurity, an Irish tech company providing the tool as Software as Service (SaaS) solution. This cloud solution hosts your personal data in the AWS cloud with databases located in Ireland.

Your personal data can be processed in Switzerland and also in the different countries where Swiss Re has an office location.

We oblige data recipient in particular to maintain confidentiality when processing personal data subject to legal confidentiality requirements.

If we transfer your personal data to countries that are not deemed to provide an adequate level of data protection by the competent authority in your jurisdiction we will ensure that appropriate safeguards are in place such as the European Commission’s standard contractual clauses. 

In exceptional cases we may transfer personal data to a country with an inadequate level of data protection if you have given your consent, if this is necessary for the performance of the underlying contract with your or in case of legal proceedings abroad or in case of overriding public interests.

You have the right to obtain a copy of the safeguards we have put in place for cross-border transfers of your personal information.

You have the following rights in relation to your personal data, depending on the applicable data protection law:

• Access: You have the right to request information form us as to whether and what personal data we hold
• Rectification: If any of your details are incorrect, inaccurate or incomplete you can ask us to correct the data
• Object: You have the right to object to the processing of your data in some circumstances, in particular for direct marketing purposes, for profiling carried out for direct marketing purposes. For other processing done under legitimate interests we will after your objection re-assess the balance between our interests and yours, considering your particular circumstances.  If we have a compelling reason, we may still continue to use your information.
• Withdraw of consent: You have the right to withdraw consent at any time, provided that our processing is based on your consent.
• Data portability: In some circumstances you can ask us to send an electronic copy of the Personal Data you have provided to us, either to you or to another organization.
• Restrict processing: If you are uncertain about the accuracy or our use of your information, you can ask us to stop using your information until your query is resolved.  We will inform you of the outcome before we take any further action in relation to this information.
• Erasure: You can ask us to delete your Personal Data if deleting your data is not in conflict with our legal and regulatory obligations.  If we are using consent to process your information and you withdraw it, you can ask us to erase your information. 

If you do not agree with the way we handle your rights or with our data protection practices, please let us or our Data Protection Officers know. If you are located in the EEA, the United Kingdom or in Switzerland, you also have the right to lodge a complaint with the competent data protection supervisory authority in your country:

• You can find a list of authorities in the EEA .
• You can reach the UK supervisory authority.
• You can reach the Swiss supervisory authority.

if you have any questions, concerns or requests regarding this privacy notice or your personal data, including how it is processed, please contact us at:

Email address: data_protection@swissre.com

This Privacy Policy is not part of any contract you may have with us. We may amend this privacy policy at any time.

Last updated: July 2023