PRIVACY NOTICE

Privacy Notice

L2ET Research processes personal data in accordance with the Swiss Federal Act on Data Protection (revFADP) and, where applicable, the EU General Data Protection Regulation (GDPR).

Last updated: . This notice is a template; review with qualified counsel before publication.

1. Controller

L2ET Research, Zürich, Switzerland. Inquiries regarding personal data processing: via the contact form.

2. Categories of personal data processed

  • Identification data: name, role, organization, country.
  • Contact data: work email address.
  • Inquiry content: subject, area of interest, message text.
  • Technical metadata: hashed IP address, user-agent string, submission timestamp, anti-abuse signals.

3. Purposes and legal bases

  • Responding to the inquiry — performance of pre-contractual steps and legitimate interest in operating the practice.
  • Abuse detection, rate limiting, and security logging — legitimate interest in maintaining service integrity.
  • Follow-up business communication after consent or contractual basis.

4. Recipients and processors

Contact-form submissions are routed through Web3Forms and then forwarded by email to L2ET Research. Hosting, email, and anti-abuse providers may process technical metadata as necessary to deliver and secure the service.

5. International transfers

Where personal data is transferred outside Switzerland or the EEA, transfers are made on the basis of adequacy decisions or appropriate contractual safeguards. Web3Forms states that its servers are located in the United States; review the processor relationship and transfer basis before publication.

6. Retention

L2ET Research retains inquiry data for the duration of the conversation plus 12 months for legitimate follow-up, unless a longer retention period is required by law or an active client relationship. Web3Forms states that form submissions are processed and forwarded rather than stored as submissions; infrastructure logs may be retained separately by the provider.

7. Your rights

Subject to applicable law, you have the right of access, rectification, deletion, restriction, objection, and data portability. Requests are honored via the contact form. You also have the right to lodge a complaint with a competent supervisory authority.

8. Cookies and tracking

This site does not deploy advertising cookies or analytics cookies. No cross-site tracking is performed. If an anti-abuse challenge is added later, this notice should be updated before deployment.

9. Security

This website enforces TLS, HSTS, a strict Content-Security-Policy, frame-ancestor restriction, client-side validation, honeypot anti-spam controls, and provider-side abuse controls for the contact endpoint.

10. Updates

This notice may be updated. Material changes will be reflected in the "last updated" date above.