Data protection notice

PostFinance takes due account of the provisions of Swiss data protection legislation in the gathering and processing of personal data. In all areas of its online product range, PostFinance applies comprehensive technical means and organizational measures as protection against unauthorized access, manipulations and data loss.

Our apps automatically use a secure, encrypted connection to PostFinance. As a result, nobody can intercept or modify the data transmitted. Avoid public hotspots and only use encrypted WLAN connections from operators that you trust.

How we handle data on our website

Accessing public space on our PostFinance App

Generally, the public area of the PostFinance App can be accessed without requiring users to identify themselves. For statistical purposes and to optimize our services, PostFinance may capture and process the technical information that your access device (smartphone) automatically provides us with. This particularly includes the following information:

• Date and time of the PostFinance App access
• Version and language settings of the display device (smartphone) and operating system used (including jailbreaking/rooting) 
• Display size of the screen used
• The IP address of the end device or the Internet gateway

When you load our app, the PostFinance server can also send cookies to your device. The cookies are used for technical proposal only (session management).

PostFinance uses Google Firebase in the PostFinance App. Information about this can be found below. 

If you call up links to third-party websites from postfinance.ch, you leave the sphere of PostFinance's influence and thus the area of validity of this notice.

Disclosure of personal data in the public sphere

If you voluntarily provide us with personal data, e.g. by entering information in a survey or order form, you give your consent for your data to be collected, stored and processed.  Your data is transmitted in encrypted form and stored at PostFinance where it is inaccessible to third parties. The data collected is limited to essential information and only used and stored in order to process the procedure requested. Your data is not passed on to persons or organizations outside Swiss Post unless you give your express permission.

Use of websites in the non-public area

PostFinance provides its customers with a variety of online services they can use to manage their own finances. For reasons of security and traceability, further data is collected at the time of login and while in the login-protected area. The use of these services is regulated by a contractual agreement and the relevant Subscriber Conditions.

PostFinance uses Google Firebase in the PostFinance App. Information about this can be found below. 

Use of Google Firebase in the PostFinance App

PostFinance uses the Google Firebase software development kit (“Google Firebase”) from Google Inc. (“Google”) in the public and login-protected areas of the PostFinance App. With the aid of Google Firebase, we collect and analyse user behaviour in the app to continuously optimize the PostFinance App and identify errors.

Google Firebase is enabled as soon as the PostFinance App is installed and opened for the first time. You can disable Google Firebase at any time in the settings in the login-protected area (under Settings / App settings / Data protection and security).

The following data, in particular, is collected using Google Firebase:

• Client ID (identifies the device used and allows Google to summarize sent events in a device session)
• Details of the device used (brand, type, screen, storage)
• Version of the installed PostFinance App
• Type and version of the Internet browser used in the PostFinance App
• IP address of the accessing device (shortened before storage)

The information collected by Google Firebase about the use of the PostFinance App is transmitted to Google servers in the US and stored there. This data is analysed by Google to generate reports on the use of the PostFinance App. Google Firebase is configured so that the IP addresses of PostFinance App users are shortened before they are stored by Google, meaning that they cannot be traced back or assigned to a user.

Communication by e-mail

If you use one of the e-mail addresses published by us to make contact you expressly authorize us to respond to you by the same means either to the sender address or to an address you indicate. E-mails are transmitted over the Internet in unencrypted form and may be accessible, readable and open to manipulation by others. E-mail is therefore not a suitable means for transmitting confidential information. We do not accept customer orders via e-mail.

More information on data protection at PostFinance can be found in our Privacy Policy at postfinance.ch/data-protection.