Privacy policy
IE Group privacy policy
We are delighted that you are interested in our company. Data protection is particularly important to IE Engineering Group AG and its subsidiaries IE Industrial Engineering Zürich AG, IE Industrial Engineering München GmbH, IE Immobilien und Finanz AG and IE Immobilien und Finanz GmbH (hereinafter referred to as IE). It is generally possible to use IE's websites without providing any personal data. However, if a data subject wishes to make use of special services offered by our company via our website, it may be necessary to process personal data. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the consent of the person concerned.
The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation and in accordance with the country-specific data protection regulations applicable to IE. By means of this privacy policy, our company would like to inform the public about the nature, scope and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed of the rights they are entitled to by means of this privacy policy.
As the controller, IE has implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website. However, Internet-based data transmissions can generally have security gaps, meaning that absolute protection cannot be guaranteed. For this reason, every data subject is free to transfer personal data to us by alternative means, for example by telephone.
1. What this privacy statement is about
With this privacy statement, IE Group (hereinafter also “we”, “us”) informs how your personal data is processed when you use https://ie-group.com (hereinafter the “website”), purchase our services, otherwise communicate with us under a contract, communicate with us or otherwise interact with us. If necessary, we will separately inform you of additional processing activities not mentioned in this privacy policy by means of timely written notification.
The “IE Group” comprises the following companies:
• IE Engineering Group AG, Zurich
• IE Industrial Engineering Zürich AG, Zurich
• IE Industrial Engineering Munich GmbH, Munich
• IE Immobilien und Finanz AG, Zurich
We collect and process personal data relating to you or other persons (so-called “third parties”). We use the term “data” here synonymously with “personal data” or “personal data.”
If you provide us with information about other people, such as colleagues, etc., we assume that you are authorized to do so and that this data is correct. By submitting information about third parties, you confirm this and please also ensure that these third parties have been informed of this privacy policy.
This privacy policy is designed to meet the requirements of the EU General Data Protection Regulation (“GDPR”) and the revised Swiss Data Protection Act (“RevDSG”). However, whether and to what extent these laws apply depends on the individual case.
2. Important terms that we use in this privacy policy
Personal data is data that relates to specific or identifiable persons, i.e., with or without corresponding additional data, allows conclusions to be drawn about their identity.
Particularly sensitive personal data are special categories of personal data, which are particularly protected by applicable data protection law. This includes health data, for example. In Section 5, you will find information about the personal data that we process as part of this privacy policy.
Processing means any handling of personal data, such as obtaining, saving, using, adapting, disclosing, anonymizing or deleting. We use the term “edit” here synonymously with “process.”
3. Who is this privacy policy aimed at
This privacy policy applies to all persons whose data we process (hereinafter referred to as “you”). It applies in particular to the following categories of persons:
• Visitors to our website
• users of our services
• People who write to us or contact us in any other way
• Recipients of marketing communications and other information
• Contractual partners and service providers
• People who apply for a job with us
4. Body responsible for processing your data
Under data protection law, the companies mentioned in Section 1 are responsible for the data processing by IE Group described in this privacy policy. This is particularly the case if your data is processed by such a group company in connection with contracts or if you yourself share data with a group company. In these cases, this group company is the responsible body. Only if your data is shared with other group companies for their own purposes (see Section 8) will these other group companies also become (possibly jointly) responsible bodies.
If you would like information about the individual persons responsible for a particular data processing, you are welcome to request information from us within the framework of the right to information (Section 12). IE Engineering Group AG is your primary point of contact for inquiries relating to an IE Group company in Switzerland. For inquiries relating to IE Industrial Engineering München GmbH, this is your primary contact person. This distribution also applies if there are other co-responsible parties.
In Section 5, Section 8 and Section 13, you will find further information about third parties with whom we work and who are responsible for their processing on their part. If you have any questions or wish to exercise your rights against these third parties, please contact them directly.
You can contact us as follows for your data protection concerns and to exercise your rights in accordance with Section 12:
IE Engineering Group AG, Zurich
IE Industrial Engineering Zurich AG, Zurich
IE Immobilien und Finanz AG, Zurich
in each case:
Wiesenstrasse 7
CH‑8008 Zurich
datenschutz@ie-group.com
as well as
IE Industrial Engineering Munich GmbH
Paul-Gerhardt‑Allee 48
81245 Munich
datenschutz@ie-group.com
In addition, we have set up the following office:
Data protection officer in accordance with Art. 37 ff. GDPR:
IE Industrial Engineering Munich GmbH
Data Protection Officer: Christian Jonatha/Malena Edinger
Paul-Gerhardt‑Allee 48
81245 Munich
datenschutz@ie-group.com
You can also contact this office directly if you have any questions or suggestions regarding data protection.
5. Categories of personal data that we process and their collection
The most important categories of data that we collect and process are as follows:
• Technical data:
When you use our website or other electronic offers such as newsletters, we collect the IP address of your device and other technical data (such as browser type or operating system) to ensure functionality. This also includes logs in which the use of our systems is recorded (e.g. log data). We generally store technical data for 2 months. To ensure the functionality of these offers, we can also assign an individual code to you or your device (e.g. in the form of a cookie, see section 13). Technical data can be linked to other data categories as part of user accounts, registrations, access controls or contract processing.
• Registration data:
Certain offers and services (e.g. login areas, newsletter delivery, etc.) can only be used with a user account or registration. In doing so, you must provide certain data; we also collect data about the use of the respective offer.
These include:
— Username, password, email address
— Name, address
— Authentication data (e.g. copies of ID cards)
We generally keep registration data for one year after the end of use or termination of the account.
• Communication data:
If you are in contact with us via contact form, email, telephone, video conference, letter or other means of communication, we collect the data exchanged, including contact details and marginal communication data.
In the case of recordings (e.g. for training or evidence purposes), we will inform you to the extent required by law.
For identification (e.g. when requesting information), we may collect identification data such as copies of identity documents.
storage:
— Communication data: approx. 90 days
— Emails and written correspondence: at least 10 years
The deadlines may be longer if legal or technical requirements require this.
• Master data:
Master data includes basic data that we need for business relationships or marketing purposes, such as:
— Name, contact details
— role, function
— Bank account (s)
— Date of birth
— Customer history
— Powers of attorney, signature authorizations
— Consents
We receive master data:
— by yourself
— from jobs for which you work
— from third parties (e.g. contract partners, address sellers)
— from public sources (websites, registers, social media)
In individual cases, health data or information about third parties may also be included.
Storage as a rule: 10 years from the last contact or end of the contract.
• Contract data:
Contract data is generated as part of the conclusion and processing of the contract, e.g.:
— Contract type, date of conclusion, benefits
— Invoicing, collection
— Customer service or support information
— Data from the preliminary stages of a contract
— Reactions or feedback
We receive contract data from you, contract partners, third parties involved or public sources.
storage: 10 years from the last contract activity, at least until the end of the contract.
• Behavioral and preference data:
In order to improve and personalize our services, we analyze behavioral and preference data, such as:
Behavioral data:
— Responses to emails (opening, clicks)
— Interacting with social media profiles
— Site navigation
Preference data:
— Interests
— possible relevant products/services
— expected reaction behavior
This data comes from evaluations of our system and can be supplemented by publicly available sources.
Deletion/anonymization: between 4 weeks and 2 months, unless there are legal reasons to the contrary.
Tracking details: Section 13.
• Other data:
We also collect information in other situations, such as:
— Data from official or court proceedings
— Health data (e.g. as part of protection concepts)
— Photo, video and audio recordings (e.g. at events or through security cameras)
— Access data to buildings
— Participation in events
— usage data of our infrastructure
— Shareholders/Shareholder Data (including registry information, exercise of rights, GV participations)
Retention period depends on purpose:
— a few days to several years
— Shareholder data for at least the duration of the investment
Data sources:
We receive data:
— by yourself
— from the IE Group
— from authorities
— from other third parties (e.g. credit rating agencies, contract partners, analysis tools)
— from public registers, media and the Internet
— from people around you (e.g. references, delivery addresses)
6. Purposes for which your data is processed
In the following, we explain for which purposes we process your data. You can also find further information in Sections 13 and 14. These purposes and the objectives on which they are based represent our legitimate interests. Further information on the legal basis of our processing can be found in Section 7.
We process your data in connection with Communicate with you, in particular to answer inquiries and assert your rights (Section 12) and to contact you if you have any questions. For this purpose, we use in particular communication data and master data, possibly also registration data. We keep this data to document our communication with you, for training purposes, quality assurance, and inquiries.
We process data for the initiation, administration and processing of Contractual relationships both with you and with other business partners (such as suppliers or service providers, business customers, sub-contractors, partners in projects or parties in legal disputes). This applies in particular to master data, contract data or communication data.
We process data for marketing purposes and to Maintaining relationships, for example, to send personalized advertising about our products and services to our customers and other contract partners. This can be done, for example, in the form of newsletters and other regular contacts (electronically, by post, by telephone), via other channels for which we have contact information from you, but also as part of individual marketing campaigns (e.g. events). You can reject such contacts, refuse or withdraw consent at any time. With your consent, we can target our online advertising on the Internet more specifically to you (see section 13).
We will continue to process your data for market research, for Improving our services and our company as well as to Product development. For this purpose, we use in particular master data, but also communication or usage data. As far as possible, we use anonymized or pseudonymized data for these purposes.
We can also collect your information about security purposes and for the access control edit (including abuse control). This includes monitoring, monitoring, and analysis.
We process personal data for Compliance with laws, instructions and recommendations from authorities as well as internal regulations (“compliance”). In particular, this may concern clarifications or the fulfilment of reporting or information obligations.
We also process data for the purposes of our risk management and as part of a prudent corporate governance, including operational organization and corporate development. This includes processing data to monitor creditors and debtors.
Finally, we can collect your information about further purposes process, e.g. as part of our internal processes and administration, for training and quality assurance purposes, to improve our services (e.g. through tests or surveys), to protect our own rights in or out of court or to protect other legitimate interests.
7. Basis on which we process your data
To the extent that we need you for certain processing of your consent Please (e.g. for marketing mailings and for advertising control and behavior analysis on the website), we will inform you separately about the relevant purposes of processing. You can withdraw your consent by written notification by post or, unless otherwise stated or agreed, by email to us at any time with effect for the future; our contact details can be found in Section 4. For the withdrawal of your consent to online tracking, see Section 13. As soon as we have received the notification of the withdrawal of your consent, we will no longer process your data for the purposes that you originally agreed to, unless we have another legal basis for this. Withdrawing your consent does not affect the lawfulness of the processing carried out on the basis of the consent up to the revocation. See also Art. 6 (1) (a) GDPR, where applicable.
Where we do not ask you for your consent to process, we base the processing of your personal data on the fact that the processing is for Initiation or execution of a contract is necessary with you (or the body represented by you) or that we or third parties have a legitimate interest , in particular in order to pursue the purposes described in paragraph 6 above and the associated objectives and to be able to carry out appropriate measures. Our legitimate interests also include compliance with legal regulations, insofar as this is not already recognized as a legal basis by applicable data protection law (e.g. in the case of the GDPR, the law in the EEA and Switzerland). But this also includes marketing our products and services, an interest in understanding our markets better and in managing and developing our company, including operations, safely and efficiently. See also Art. 6 (1) GDPR, where applicable.
If necessary, we may also process your data based on other legal bases, e.g. in the event of disputes to enforce or defend against legal claims. In individual cases, we may process data for other reasons, which we will inform you separately if necessary.
8. Transfer of data to third parties
In connection with our contracts, the website, our services, our legal obligations or otherwise to protect our legitimate interests and the other purposes listed in Section 6, we also transfer your personal data to third parties, in particular to the following categories of recipients:
• Group companies:
A list of our group companies can be found in Section 1. The group companies may use the data for the same purposes in accordance with this privacy policy (see Section 6). We can also share health data with our group companies. This includes in particular master, contract and registration data, in particular also for transmission in connection with the provision of services by group companies.
• Service providers:
We work with service providers in Germany and abroad who process data about you on our behalf or in joint responsibility with us or receive data about you from us on their own responsibility (e.g. IT providers, advertising service providers, login service providers, security companies, banks, insurance companies, collection agencies, credit agencies or address checkers). This may include health data.
For the service providers used for the website, see section 13.
The following service providers are central to us; under the links provided, you will find information on how these service providers handle data:
— Amazon Web Services: https://aws.amazon.com/de/privacy/
— Microsoft when using Microsoft Dynamics 365: https://privacy.microsoft.com/de-de/privacystatement and https://privacy.microsoft.com/de-DE/data-collection-d365
— Dalux: https://www.dalux.com/privacy-policy/ and https://www.dalux.com/data-processing-agreement/
— Personio: https://www.personio.de/datenschutz/ and https://www.personio.de/agb/#addendum-zur-datenverarbeitung
— Dualoo: https://www.dualoo.com/datenschutz
• Contract partners including customers:
First of all, we mean our customers and other contractual partners. If you work for such a contractual partner yourself, we can also transfer data about you to them in this context.
Recipients include other contractual partners with whom we cooperate or who advertise for us and to whom we therefore transfer data about you for analysis and marketing purposes. We require these partners to only send you advertising or display them based on your data if you have agreed to this (for the online sector, see section 13).
• Authorities:
We may transfer personal data to authorities, courts and other authorities in Germany and abroad if we are legally obliged or entitled to do so or if this appears necessary to protect our interests (e.g. to protect the property, other rights or interests, or our safety, those of our customers or third parties). This may include health data. The authorities process data about you that they receive from us on their own responsibility.
• Other people:
This refers to other cases where the involvement of third parties results from the purposes set out in Section 6 (e.g. external payees, third parties also in the context of agency relationships, e.g. consultants, persons involved in proceedings).
The above categories of recipients can in turn involve third parties, which means that your data can also be accessed by them. We cannot always restrict processing by such third parties (e.g. by authorities).
9. Disclosure of data abroad
As explained in Section 8, we also disclose data to other bodies. These are not only located in Switzerland. Your data can therefore also be processed in Germany; in exceptional cases, however, in any country in the world.
If a recipient is in a country without adequate legal data protection, we contractually oblige the recipient to comply with applicable data protection (for this purpose, we use the revised standard contractual clauses of the European Commission, which are available here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj), unless he is already subject to a legally recognized set of rules to ensure data protection and we cannot rely on an exception.
An exception may apply, in particular, to legal proceedings abroad, but also in cases of overriding public interests or when the execution of a contract requires such disclosure, if you have given your consent or if it concerns data made generally available by you and which you have not objected to the processing of.
10. Duration of processing your data
We process your data as long as our processing purposes, legal retention periods and our legitimate interests in processing for documentation and evidence purposes require or storage is technically necessary (e.g. in the case of backups or document management systems). Further information on the respective storage and processing time can be found under the individual data categories in Section 5 or under the cookie categories in Section 13. We delete or anonymize your data after the storage or processing period has elapsed as part of our usual processes, provided that this does not conflict with any legal or contractual obligations.
11. Measures to protect your data
We take appropriate security measures to maintain the confidentiality, integrity, and availability of your information, to protect it against unauthorised or unlawful processing, and to counteract the risks of loss, accidental alteration, unintentional disclosure, or access. In particular, this includes a dedicated server structure and the requirement of two-factor authentication for external access. Please note, however, that such risks can never be completely ruled out.
12. Your rights
Depending on applicable data protection law, you have certain rights. These possible rights include in particular:
• the right to information about you that we process,
• the right to correct incorrect or incomplete data,
• the right to delete or anonymize your data,
• the right to hand over your data in a common electronic format or to transfer it to another person responsible,
• the right to withdraw consent with effect for the future, provided and insofar as processing is based on your consent.
If you wish to exercise the above rights against us (or against one of our group companies), please contact us in writing or, unless otherwise stated or agreed, by email. Our contact details can be found in Section 4.
In order to be able to rule out misuse, we must identify you (e.g. by means of a copy of your ID, unless identification is otherwise possible).
You also have these rights vis-à-vis bodies that work with us on their own responsibility. If you want to exercise your rights in connection with processing by such bodies, please contact them directly. Information about our important cooperation partners and service providers can be found in Section 8 and Section 13.
Please note that these rights may be subject to requirements, exceptions or restrictions under data protection law applicable in the specific case (e.g. to protect trade secrets or third parties). If necessary, we will inform you about this.
If you do not agree with our handling of your rights or data protection, please let us or our data protection officer (Section 4) know. In particular, if you are in the EEA or Switzerland, you also have the right to complain to the competent data protection supervisory authority in your country.
The Swiss supervisory authority can be reached here: https://www.edoeb.admin.ch/edoeb/de/home/deredoeb/kontakt.html
A list of authorities in the EEA can be found here: https://edpb.europa.eu/about-edpb/board/members_de
13. Use of cookies and other tracking technologies and analysis tools; integration of third-party services and content on our website
We use various techniques with which we and third parties we use to recognize you when you use it and may also be able to track you over several visits.
In essence, it is about being able to differentiate your accesses (via your system) from accesses from other users so that we can ensure the functionality of the website and carry out evaluations and personalizations. We do not necessarily want to infer your identity, even though we can, insofar as we or third parties engaged by us can identify you by combining registration data. Even without registration data, however, the technologies used are designed in such a way that you are recognized as an individual visitor each time you access it, for example by our server (or the servers of third parties) assigning you or your browser or system a specific identification number (so-called “cookie”).
Cookies are individual codes that our server or a server from our service providers or partners transmits to your system when you connect to our website or system and which your system receives and stores until the programmed expiration time. With every further access, your system transmits these codes to our server or the server of the third party, which recognizes you. This can also be done using other techniques, such as fingerprinting, which combines information about the system you are using (e.g. IP address, screen resolution, language settings, etc.) that our server receives to form a more or less unique fingerprint. This means that whenever you access a server (e.g. when you visit the website or download data linked in an email), your call can be traced by us or, at best, by a service provider of ours.
We use such techniques on our website and allow certain third parties to do the same. However, depending on the purpose of these techniques, we ask for your consent before they are used. You can access your current settings here https://www.cookiebot.com/de/privacy-policy/. You can program your browser to block certain cookies or similar technologies or delete existing cookies. At best, you can also extend your browser with software that blocks tracking by certain third parties. You can find more information about this on your browser's help pages (usually under the keyword “privacy”) or on the websites of third parties, which we list below.
A distinction is made between the following cookies (including techniques with comparable functions such as fingerprinting):
• Necessary cookies:
Such cookies are necessary for the website to function as such or for certain functions (for example, such cookies can ensure that you remain logged in or language settings). If you block necessary cookies, the website may no longer function properly. Information about the storage period can be found at https://www.cookiebot.com/de/privacy-policy/.
• Performance, preference or statistics cookies:
Such cookies record the use of the website and analyse its use, possibly even beyond a session. They are used to optimize the offer. For this purpose, we use third-party analysis services, which we have listed below. Information about the storage period can be found at https://www.cookiebot.com/de/privacy-policy/. Details can be found on the websites of the respective third-party providers.
• Marketing cookies:
Marketing cookies should enable us and our advertising contract partners to be able to place advertising specifically for the target group. If you consent to this, we use marketing cookies for this purpose, which can be used to record the content you have accessed or the contracts concluded. Information about the storage period can be found at https://www.cookiebot.com/de/privacy-policy/. If you allow the use of marketing cookies, you will see personalized advertising. If you stop using them, you'll simply see other ads.
In addition to marketing cookies, we can use other techniques to manage online advertising on other websites and thus reduce wastage. For example, we can transfer the email addresses of our users, customers and other people to whom we want to display advertising to advertising platform operators (e.g. social media). If the respective persons are registered there with the same email address, the operators will display the advertising we place specifically to these people. Operators do not receive personal email addresses from people who are not already known. With known email addresses, however, they learn that these people are connected to us and what content they have accessed.
We can also include other offers from third parties on our website, in particular from social media providers. Please note that data can be transferred to social media providers as soon as you access our website or click on the link. As soon as you activate these social media offerings (e.g. by clicking on a button), the relevant providers can determine that you are on our website. If you have an account with the social media provider, they can assign and track this usage to you. These social media providers process this data on their own responsibility.
An up-to-date overview of the cookies currently used on our website can be found here: cookies
14. Processing of your data on our pages in social networks
We can operate pages and other online presences on social networks and other platforms operated by third parties (e.g. “fan pages,” “channels,” “profiles,” etc.) and collect the data about you described in Section 5 and below. We receive this data from you and possibly from the platforms when you contact us via our online presence (e.g. when you communicate with us, comment on our content or visit our presences). The respective platforms also collect, among other things, technical data, registration data, communication data, behavioral and preference data about you and will simultaneously evaluate your use of our online presence (e.g. what you view, comment on or share) and link this data with other data about you known to the platforms (e.g. about your behavior and preferences). They also process this data for their own purposes on their own responsibility, in particular for marketing and market research purposes (e.g. personalized advertising) and to manage the platforms.
We process this data for the purposes described in Section 6, in particular for communication, marketing purposes and market research. We can redistribute content that you publish yourself (such as comments) ourselves (e.g. in our advertising on the platform or elsewhere). We and the platform operators reserve the right to delete or restrict content in accordance with the usage guidelines.
For further information on the processing carried out by platform operators, please refer to the privacy policy of the respective platform. There you can also find out where the respective platform processes your data, what data subject rights you have and how you can exercise them.
We currently use the following platforms:
• YouTube:
In this regard, see the information on our YouTube channel in paragraph 13.
• LinkedIn:
We run a company page on LinkedIn (https://www.linkedin.com/company/ie-engineering-group/posts/?feedView=all). LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”) is responsible for operating the LinkedIn platform for users from the EU, the EEA and Switzerland. LinkedIn's privacy policy can be found at: https://de.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy Some of your data may also be transferred to the USA. With regard to the data that is collected and processed in connection with visiting our company page, we are with LinkedIn jointly responsible (so-called “Page Insights”). As part of Page Insights, we receive statistics about visitors to our company page. This is described at https://legal.linkedin.com/pages-joint-controller-addendum and allows us to better understand how our company page is being used and how we can improve it. We have our responsibility for data protection in accordance with the information below:
https://legal.linkedin.com/pages-joint-controller-addendum
• Kununu: We run a company profile on Kununu (https://www.kununu.com/de/iegroup). Responsible for the operation of Kununu is New Work SE, Am Strandkai 1, 20457 Hamburg, Germany. Kununu's privacy policy can be found at: https://privacy.xing.com/de/datenschutzerklaerung
15. Information for job applications and application procedures
In addition to the rest of this privacy statement, the following applies to people who apply for jobs with IE Group: We collect and process your information when you apply for a job with us. The purpose of these processes is to carry out the application process. They can also be submitted electronically, in particular if you submit your application documents electronically (e.g. by email). If you enter into an employment relationship with us, the submitted data can be included in the personnel file and further processed in connection with the employment relationship. You will be informed separately about the processing of data in this context. If you do not enter into an employment relationship with us, your application documents will be anonymized or deleted three months after completion of the application process, provided that the deletion does not conflict with legitimate interests or legal obligations or you have given your consent to further storage (e.g. with regard to vacant positions at a later date).
16. Consent for photographs at events
We would like to inform you that we intend to have photographs of the event taken. By participating, you agree that you may be photographed. If you do not want this, please let us know in advance.
17. Can this privacy policy be changed?
This privacy statement is not part of a contract with you. We can adjust this privacy policy at any time, e.g. if edits change. The version published on this website is the latest version.
Last modified: Feb 2, 2026
Translation notice
This English version of the privacy policy has been translated with the assistance of an automated translation tool and is provided for informational purposes only. The German version is the legally binding and authoritative version. In the event of any discrepancies or inconsistencies, the German version shall prevail.