Start
Projects
Services
Team
Career
News
Contact

Privacy Policy

As of: 26.11.2025


With this privacy policy, we inform you about how we process personal data in connection with our website.days with usas well as process in connection with our services. In particular, we explain which data we process, for what purposes, how long we store it and what rights the data subjects have.


For certain additional offers, supplementary privacy notices may apply.





1. Responsible party


days with us AG, Grubenstrasse 6, 8045 Zurich, Switzerland Email: hello@dayswithus.com Phone: +41 44 512 15 70


For privacy inquiries, you can contact us at any time by email.





2. Applicable law


We process personal data in accordance with the Swiss Data Protection Act (DSG) and the Data Protection Ordinance (DSV).


Because we provide services in the EU/EEA and the use of our website by persons in the EU/EEA may be analyzed, we process personal data in certain cases additionally in accordance with the EU General Data Protection Regulation (GDPR).





3. What personal data we process


3.1 Data when visiting our website


When accessing our website, technical data are automatically generated:


  • IP address

  • Date and time

  • Accessed pages/files

  • Browser and device information

  • Referrer-URL


This data is necessary to run the website reliably and securely.


3.2 Contact


When you contact us (e.g., by e-mail, telephone, or form), we process:


  • Name, Company, Position

  • Contact details

  • Content of the request and attachments

  • Communication metadata


3.3 Customer Data / Projects (Workplace Consulting)


We process personal data of our customers and their employees:


  • Master data

  • Communications data

  • Project documentation (minutes, workshop results, concepts)

  • Usage data from feedback/surveys


3.4 Newsletter


When signing up for the newsletter:


  • Email address

  • Name (optional)

  • Usage data (opens, clicks) – only with consent.


3.5 Applications


We process all submitted documents and any other relevant information to assess suitability.





4. Purposes and legal bases


Swiss Data Protection Act


Processing is carried out for specific purposes, proportionately, and with data minimisation. In addition, we adhere to the principles of Privacy by Design and Privacy by Default (Art. 7 revDSG), i.e., we design our processes and systems so that data protection is already incorporated by default, both technically and organizationally.


GDPR (where applicable)


  1. Provision of the website, IT security — legitimate interest (Art. 6(1)(f) GDPR). Legitimate interests: operational security, functionality, detection of misuse.

  2. Communication – pre-contractual measures / performance of the contract (Art. 6(1)(b)) – legitimate interest (Art. 6(1)(f)) Legitimate interest: efficient customer communication.

  3. Provision of our services – performance of the contract (Art. 6(1)(b)) – legal obligations (Art. 6(1)(c))

  4. Newsletter & Marketing – Consent (Art. 6(1)(a)) Withdrawal possible at any time.

  5. Applications – Article 6(1)(b) GDPR – national law (Article 88 GDPR)

  6. Legal requirements – statutory obligations





5. Cookies & Tracking


5.1 Cookiebot (Consent Management)


We use Cookiebot (Usercentrics A/S, Denmark) to manage consents.


Among other things, the following are processed:


  • Abbreviated IP address

  • Browser information

  • Consent timestamp


5.2 Cookies


We use:


  • necessary cookies

  • Optional cookies (analytics/marketing) – only with consent (opt-in)


5.3 Google Analytics (GA4)


We use Google Analytics to analyze our website usage. The following data are processed:


  • abbreviated IP address

  • Device information

  • Click behavior, dwell time


Legal basis: Consent via Cookiebot.


Profiling notice


No profiling with legal effect takes place.





6. Online forms & surveys (Typeform)


We use Typeform (Spain). Data may be processed outside Switzerland/the EU. Protection mechanisms: standard contractual clauses.





7. CRM and marketing tools


7.1 HubSpot (CRM, Forms, Marketing Automation)


Our HubSpot account is hosted in a German data center (EU). Therefore, the processing of personal data generally takes place within the EU.


Since HubSpot is a U.S. provider, data transfers to the United States may nevertheless occur in the context of support, service, or technical operations. These transfers are carried out on the basis of:


  • EU-US Data Privacy Framework

  • Standard Contractual Clauses of the European Commission

  • additional protective measures


7.2 Mailchimp (Newsletter sending)


We use Mailchimp (Intuit Inc., USA). Mailchimp processes data on servers in the USA.


The transmissions are carried out on the basis of:


  • EU-US Data Privacy Framework

  • Standard Contractual Clauses of the European Commission


Processed data:


  • Email address

  • optional Name

  • Open and click behavior (with consent)


We use the double opt-in procedure. You can unsubscribe at any time.





8. Disclosure to third parties / contract processors


Recipients can be:


  • Netlify (Hosting, Deployment, Forms; EU + USA)

  • HubSpot (EU hosting, possible transfers to the US)

  • Mailchimp (USA)

  • Typeform

  • Google


Transmissions are only carried out:


  • for the performance of the contract

  • when required by law

  • in the event of an overriding interest

  • with consent


Data processing agreements are in place with all service providers.





9. Data transfers abroad


Data may be transferred to third countries (in particular the USA), e.g. by:


  • Netlify

  • Mailchimp

  • HubSpot


Protective mechanisms:


  • Adequacy decisions (e.g. EU–US DPF)

  • Standard contractual clauses

  • additional protective measures

  • Consent





10. Retention period


  • Contact inquiries: 12–24 months

  • Project data: 5–10 years

  • Invoice data: 10 years

  • Applications: 6–12 months

  • Newsletter data: until you unsubscribe





11. Data Security


We implement technical and organizational measures (encryption, access controls, etc.).





12. Rights of data subjects


You have the right to:


  • information

  • Correction

  • Deletion

  • restriction

  • objection

  • Data portability

  • Withdrawal of consents


In addition, there is the right to lodge a complaint with the competent supervisory authority. For Switzerland, this is the Federal Data Protection and Information Commissioner (FDPIC).


Special GDPR objection notice (Art. 21 GDPR)


You can object at any time to processing based on legitimate interests.





13. Origin of the data


We primarily process data that we receive directly from you. If data originate from other sources, please add them here, e.g. public registers, HubSpot tracking, etc.





14. Data Protection Officer / Data Protection Consultant


Name: Yannick Müller
Address: Grubenstrasse 6
8045 Zurich E-mail:hello@dayswithus.com
Internal role: Co-Founder




15. Amendments


We may modify this privacy policy at any time. The current version on our website applies.