Last updated: 30 March 2026
For users in Singapore: Please see the Singapore Addendum to the Evooq Privacy Notice for information regarding Evooq’s privacy practices required under the Singapore Personal Data Protection Act 2012 (“PDPA”) and the Do Not Call (“DNC”) Registry.
Evooq SA (also "Evooq", "we", "us") collects and processes personal data that concern you but also other individuals ("third parties"). We use the word "data" here interchangeably with "personal data".
In this Privacy notice, we describe what we do with your data when you use www.evooq.com, our other websites or apps, including evooq.io (collectively "website"), obtain services or products from us, interact with us in relation to a contract, communicate with us or otherwise deal with us. When appropriate we will provide a just-in-time notice to cover any additional processing activities not mentioned in this privacy notice. If you disclose data to us about other individuals, we assume you are authorized to do so and that the relevant data is accurate. Please make sure those individuals have been informed about this privacy notice.
This privacy notice is aligned with the Swiss Data Protection Act ("revDPA") and the EU General Data Protection Regulation ("GDPR"). However, the application of these laws depends on each individual case.
Evooq SA is the controller for Evooq's processing under this privacy notice, unless we tell you otherwise. This privacy notice also applies where a group company of the EdgEvooq group is the controller instead of Evooq SA.
You may contact us for data protection concerns and to exercise your rights under Section 10 as follows:
Evooq SA
Rue de Romont 24
CH-1700 Fribourg
data-privacy@evooq.com
The main categories of data and their typical retention periods are:
Technical data: IP address, device identifiers, logs, and cookies from visitors to our website (see Section 11). We generally retain technical data for 6 months.
Registration data: Account credentials and usage data where access to certain services requires registration. We generally retain registration data for 12 months from the date the use of the service ceases or the account is closed.
Communication data: Data exchanged when you contact us by any channel (email, phone, contact form, meetings), including contact details and metadata. We generally retain communication data for 12 months after the last exchange. Emails and business-relevant communications may be retained for up to 10 years where required by law.
Master data: Professional contact information of individuals at client organisations, prospects, suppliers and other business partners — including name, business email and phone number, job title, role and function, employer, and history of our interactions with them. We generally retain master data for 10 years from the last exchange or end of the business relationship. For contacts used only for prospecting or marketing, the retention period is usually no more than 2 years from last contact.
Contract data: Data collected in relation to the conclusion or performance of contracts with business clients and partners, including service descriptions, billing information, feedback, and correspondence. We generally retain contract data for 10 years from the last contract activity or end of the contract (in line with Swiss statutory retention obligations).
Behavioural data: We may collect data about how business contacts interact with our website and communications — for example, how visitors navigate our website or which content they engage with. We use this data to improve our services and, where applicable, for B2B marketing and account-based targeting. We delete or anonymize this data when it is no longer relevant, typically within 36 months.
Other data: Data relating to administrative or judicial proceedings, access records, and CCTV or visitor data where individuals visit our premises.
Much of the above is provided to us by you or your employer directly. As far as lawful, we may also collect data from public sources (such as LinkedIn, company websites, or commercial registers) or receive data from third parties such as contractual partners or analytics services.
We process your data for the purposes below. Further information on legal bases is in Section 5.
Where we ask for your consent for certain processing activities (for example for certain cookies), we will inform you separately about the relevant purposes. You may withdraw consent at any time with effect for the future. Withdrawal does not affect the lawfulness of processing prior to withdrawal.
Where we do not ask for consent, processing relies on initiating or performing a contract with you or your employer, on our or a third party's legitimate interests (see Section 4), or on compliance with a legal obligation. In a B2B context, legitimate interest is the primary basis for most processing of professional contact data, including outreach and relationship management.
Where we process sensitive personal data, we do so on other legal bases where applicable, for example for the enforcement or defence of legal claims.
We may disclose your personal data to the following categories of recipients:
Group companies: Our group companies (Edge Laboratories SA, Evooq Singapore Pte Ltd, Edge Laboratories Pte Ltd, Elus SA) may use the data according to this privacy notice for the same purposes as we use it (see Section 4).
Service providers: We work with service providers in Switzerland and abroad who process your data on our behalf or as joint controllers, or who receive data as separate controllers.
Client organisations: Where your data is shared with us by your employer or the organisation you represent in the context of a contract, we may share relevant data back with that organisation in connection with the performance of that contract.
Authorities: We may disclose personal data to courts and other authorities in Switzerland and abroad if legally obliged or entitled to do so.
Other persons: Other cases where interactions with third parties follow from the purposes in Section 4, for example professional advisors, auditors, or parties in legal proceedings.
All these categories of recipients may involve third parties, so that your data may also be disclosed to them. We can restrict the processing by certain third parties (for example IT providers), but not by others (for example authorities).
As explained in Section 6 we disclose data to other parties. These are not all located in Switzerland. Your data may therefore be processed in Switzerland, in the EU and in Singapore; in exceptional cases, in any country in the world.
Where a recipient is located in a country without adequate statutory data protection, we require the recipient to comply with data protection obligations. For this purpose we use the European Commission's standard contractual clauses (available at eur-lex.europa.eu), adapted as necessary for Swiss law in accordance with FDPIC guidance, unless another exception applies.
Please note that data exchanged via the internet is often routed through third countries even if sender and recipient are in the same country.
We retain personal data for as long as our processing purposes, legal retention obligations, and legitimate interests in documentation require. Specific retention periods per data category are set out in Section 3.
Where no contrary legal or contractual obligations exist, we delete or anonymize your data once the retention period has expired.
We take appropriate technical and organisational security measures to maintain the required security of your personal data and ensure its confidentiality, integrity and availability, and to protect it against unauthorized or unlawful processing and against accidental loss, alteration, unauthorized disclosure or access.
To help you control the processing of your personal data, you have the following rights in relation to our data processing, depending on the applicable data protection law:
To exercise any of these rights, please contact us in writing at data-privacy@evooq.com. We may need to verify your identity before processing your request.
If you do not agree with the way we handle your rights or our data protection practices, please let us know.
If you are located in Switzerland, the EEA or the United Kingdom, you also have the right to lodge a complaint with the competent data protection supervisory authority in your country.
We use various techniques on our websites that allow us and third parties engaged by us to recognize you during your use of our websites, and possibly to track you across several visits. This Section informs you about this.
In essence, we wish to distinguish access by you (through your system) from access by other users, so that we can ensure the functionality of the websites and carry out analysis and personalization. We do not intend to determine your identity, even if that is possible where we or third parties engaged by us can identify you by combination with registration data. However, even without registration data, the technologies we use are designed in such a way that you are recognized as an individual visitor each time you access the websites and platforms, for example by our server (or third-party servers) that assign a specific identification number to you or your browser (so-called “cookie”).
Please refer to each cookie description for their specific retention periods. For your information, we use two different types of cookies: session cookies that are temporary and expire once you close your browser or when your session ends, and persistent cookies that remain on your hard drive until you or your browser erase them, depending on the cookie’s expiration date.
We use these technologies on our websites and may allow certain third parties to do so as well. You can also set your browser to block or deceive certain types of cookies or alternative technologies, or to delete existing cookies. You can also add software to your browser that blocks certain third-party tracking. You can find more information on the help pages of your browser (usually with the keyword “Privacy”) or on the websites of the third parties set out below.
We distinguish the following categories of “cookies” (including other technologies such as fingerprinting):
Necessary cookies: Some cookies are necessary for the functioning of the website or for certain features. For example, they ensure that you can move between pages without losing information that was entered in a form. They also ensure that you stay logged in. These cookies exist temporarily only (“session cookies”). If you block them, the website may not work properly. Other cookies are necessary for the server to store options or information (which you have entered) beyond a session (i.e. a visit to the website) if you use this function (for example language settings, consents, automatic login functionality, etc.).
Statistics cookies: In order to optimize our website and related offers and to better adapt them to the needs of the users, we use cookies to record and analyze the use of our website, potentially beyond one session. We use third-party analytics services for this purpose.
Marketing cookies: We and our advertising partners have an interest in targeting advertising as precisely as possible, i.e. only showing it to those we wish to address. For this purpose, we and our advertising partners – if you consent – use cookies that can record the content that has been accessed. This allows us and our advertising partners to display advertisements that we think will interest you on our website, but also on other websites that display advertisements from us or our advertising partners. If you consent to the use of these cookies, you will be shown related advertisements. If you do not consent to them, you will not see fewer advertisements, but simply any other advertisement.
This Privacy notice is not part of a contract with you. We can change this Privacy notice at any time. The version published on this website is the current version.