Data handling and client privacy

This section explains terms used throughout the policy in the context of insurance selection for retirees. Where useful, we include short examples and scenarios so readers can map definitions to real-life cases — for example, a retiree requesting a comparison of supplementary health plans.

We collect information needed to provide comparison and advisory services. Below we list categories of data and illustrate typical case scenarios that require each category, so you can see how data supports practical outcomes.

Data you provide directly enables concrete services such as quote generation, documentation of advisory recommendations, and follow-up communication. For example, submitting your pension amounts allows us to model cashflow under different insurance choices.

• Identity and contact details: full name, postal address (Ueberlandstrasse 341 example), email address, and telephone number for scheduling advisory sessions.
• Personal characteristics: date of birth, marital status and household composition used in scenario modeling for joint coverage considerations.
• Pension and business data: basic pension revenue figures, payout schedules, and any voluntary savings relevant to assessing affordability of insurance options.
• Health and coverage preferences: self-reported health status, current insurance plans, and preferences such as preferred deductibles or private hospital coverage used to build comparison cases.
• Documentation and identifiers: pension fund references, policy numbers, and copies of documents when required to verify information or prepare a consultation.
• Communications you initiate: messages, questions and feedback you send through contact forms or email as part of case handling and follow-up.

When you use our site and tools we automatically collect technical and usage data to operate and improve services. Examples below include items that help create anonymized case statistics and improve calculators.

• Connection and device data: IP address, device type, browser version and operating system used when accessing comparison tools.
• Usage data: pages visited, features used, time spent on a comparison or calculator, and sequence of actions taken during a session.
• Cookies and similar technologies: identifiers that support session continuity, preference storage and analytics aggregation.
• Performance and error logs: system events and error reports used to diagnose issues and improve reliability of calculators and PDF generation of comparison reports.
• Referral and marketing data: the source that referred a user to our site (e.g., search or partner site) to measure the effectiveness of communications.
• Geographical approximation: inferred location at city or country level used to present region‑relevant plan information and local case examples.

We may supplement information you provide with data from trusted third parties to verify details or complete a case file. Below are typical sources and why we use them in practice-oriented scenarios.

• Insurance providers and partners: to obtain up‑to‑date plan details or to verify coverage when preparing a personalised comparison for a retiree.
• Pension funds and administrators: to confirm pension identifiers or payment schedules when modelling affordability scenarios.
• Analytics and service providers: third-party analytics platforms that aggregate usage data to help us improve calculators and case workflows.

We process personal data to deliver clear, scenario-based guidance and comparison tools for retirees. Below are specific purposes with short case notes demonstrating typical use.

• Provision of services: generating tailored plan comparisons and advisory documents — e.g., producing a chart that shows expected monthly costs under three supplemental plans for a retired couple.
• Personalisation: adjusting tool outputs and content to reflect a retiree's pension levels, health considerations and region.
• Communication: responding to enquiries, scheduling appointments, and sending follow-up case notes requested by a client.
• Fraud prevention and verification: validating identity or documentation where required to prevent misuse of advisory services.
• Legal compliance: retaining records necessary to comply with applicable Swiss legal and tax obligations related to advisory services.
• Analytics and service improvement: analysing anonymized case datasets to refine calculators and guidebooks used by advisors.
• Marketing and offers (with consent): sending newsletters or offer notifications when a retiree has opted in, illustrated by a case where a user subscribes to receive updates about dental coverage options.
• Research and product development: using aggregated, de‑identified case patterns to develop new comparison features without linking results to specific individuals.

We rely on lawful grounds such as performance of a contract, consent, compliance with legal obligations and legitimate interests. Each processing activity is mapped to an appropriate basis and illustrated by a practical example where helpful.

• Performance of a contract: processing required to provide a paid advisory engagement or to deliver documents agreed in an advisory contract, e.g., preparing a personalised insurance plan report.
• Consent: where you expressly opt in to marketing or optional data sharing for specific features; for example, consenting to be informed about partner offers related to retirees.
• Legal obligation: processing necessary to meet statutory record‑keeping obligations or respond to lawful requests from public authorities.
• Legitimate interests: limited processing to improve services, detect abuse and maintain platform security, balanced with users' rights and expectations in scenario-driven improvements.

We share data only with necessary parties to deliver services or to comply with obligations. Below are typical categories of recipients with practice-oriented examples.

• Insurance carriers: to request firm quotes or to verify policy details when a retiree asks us to prepare an application packet.
• Pension funds and administrators: to confirm pension payment schedules used in affordability modelling.
• Analytics providers: to aggregate anonymous usage statistics so we can improve calculators used by retirees.
• Payment processors: to handle billing for paid advisory services when a client engages a consultant through RenteMaxPlan.
• Legal and regulatory advisors: to respond to legal inquiries or to fulfil statutory reporting requirements related to advisory engagements.
• Public authorities when required: for example, to comply with lawful requests pertaining to fraud contribute or statutory audits.

We implement technical and organisational measures to protect personal data relevant to retiree case files and advisory records. Practical measures are applied to reduce risk in case scenarios such as handling sensitive health or pension information during a funded advisory engagement.

• Encryption and transport security: use of TLS for data in transit and encryption at rest for sensitive case documents and backups.
• Access control and role-based permissions: only authorised staff can access case files relevant to their role, documented by access logs in scenario workflows.
• Operational safeguards: regular audits, penetration testing, staff training on data handling, and an incident response plan tailored to typical advisory cases.

You have rights over your personal data. Below we list those rights and provide scenario-based examples showing how to exercise them in the context of retirement insurance selection.

• Right of access: you may request a copy of personal data we hold. Example: a retiree requests a summary of the pension scenarios used to produce a comparison report.
• Right to rectification: you can ask us to correct inaccurate data. Example: updating an address on a case file or correcting a pension amount entered in error.
• Right to erasure (deletion): you may request deletion of data where retention is no longer necessary. Example: removing a non-active advisory profile where no contractual or legal obligation requires continued retention.
• Right to restriction of processing: you can request limits on processing while a dispute is resolved. Example: restricting use of certain case notes during a verification process.
• Right to data portability: where applicable, you may request transfer of your data to another provider in a structured, machine-readable format to continue advisory work elsewhere.
• Right to object: you can object to processing based on legitimate interests, for instance to stop profiling for product development if that processing affects you directly.
• Right to withdraw consent: where processing is based on consent, you may withdraw consent for future processing, for example stopping marketing emails.
• Right to lodge a complaint: if you are dissatisfied with our handling of your data you can contact our privacy team and, where appropriate, the supervisory authority responsible for data protection.

• If you are located in the EU/EEA, your rights under GDPR are recognised and we will respond to requests in line with the applicable legal framework, including verification steps tailored to advisory case handling.
• To exercise rights under GDPR or Swiss law, contact our privacy team using the contact details provided; we document requests and follow case-based procedures to verify identity and process requests appropriately.
• Legal basis for processing: personal data is processed to perform pre-contractual steps, provide advisory services and manage ongoing client relationships. Example case: when a pensioner requests a tailored comparison of supplementary health plans, RenteMaxPlan processes identity, pension status and basic health-related preferences to prepare a realistic set of options from partnered insurers.
• Data retention and deletion: we keep personal data only as long as necessary for the purposes described, or to comply with Swiss legal or tax obligations. Practical scenario: documents related to a completed advisory engagement are retained for the statutory accounting period or to respond to potential follow-up inquiries; outdated information is securely deleted or anonymised.

If you believe RenteMaxPlan processed your personal data unlawfully or you wish to file a complaint about our privacy practices, you may contact our Data Protection Officer at the address below or file a complaint with the Federal Data Protection and Information Commissioner (FDPIC). When filing, provide a short case description and copies of any relevant correspondence so we can contribute efficiently.

RenteMaxPlan services are intended for adults, retirees and individuals seeking retirement planning support. We do not knowingly collect personal data from children under 16. If we learn we have collected such data inadvertently, we will take steps to delete it promptly. Example: if a family member submits a form for an older relative and includes information about a minor, we will remove the minor's data when identified.

Our site may include links to insurer partners, business calculators or informational resources hosted by third parties. These third-party sites have their own privacy practices. Scenario: a click-through to an insurer quote tool will place you on the insurer’s platform where different data rules and cookies may apply; review their privacy notice before submitting personal data.

We review and may update our privacy policy periodically to reflect regulatory, business or technical changes. Material updates are posted on RenteMaxPlan.info with the revision date. Practical approach: if we change how we share data with partner insurers, we will publish an updated notice describing the change and how it affects existing clients.