This policy explains how Iabsis processes your personal data when you visit the fiduvault.com website (FiduVault) and when you submit one of our advertising forms on Facebook or Instagram (Meta Lead Ads). Data protection and data sovereignty are central to what we do: this policy sets out precisely what we collect, why, and the rights you have.
1. Data controller
The controller for the processing described below is:
Iabsis
Chem. des Préjins 18, 1218 Le Grand-Saconnex
Suisse
info@iabsis.com
2. Scope
This policy covers two situations in which we act as the data controller: browsing our marketing website and submitting our Meta advertising lead form used for client acquisition.
It does not cover the data our customers (firms, clinics or businesses) process through the FiduVault platform to collect documents from their own contacts. For that processing, our customer is the controller and Iabsis acts solely as a processor under a dedicated data processing agreement.
3. Data we collect
3.1 Browsing and analytics
When you browse our website, we collect technical and statistical data:
- connection data (IP address, browser type, pages viewed, timestamp) via our server logs;
- audience measurement and usage analysis via Google Analytics and Microsoft Clarity, loaded only after you consent to cookies;
- web fonts loaded via Google Fonts.
3.2 Account creation and trial
If you create an account or start a trial, we collect your name, e-mail address and the information needed to set up your workspace. Any payments are handled by our provider Stripe; we never store your card details.
3.3 Meta advertising form (Lead Ads)
When you voluntarily submit one of our Instant Forms shown on Facebook or Instagram, we receive:
- your name and e-mail address;
- your answers to the qualification questions: your role, the size of your organisation (e.g. firm or clinic) and your current document collection method.
This data is pre-filled by Meta from your Facebook or Instagram profile and then transmitted to Iabsis once you submit the form. The source of this data is therefore the Meta Lead form you submit.
4. Purposes of processing
- sending you the content (guide, resource or demo) you requested through the form;
- commercial follow-up and relevant outreach communications (nurturing e-mails);
- qualifying your needs so we can tailor our support;
- operating, securing and improving our website and services.
5. Legal bases
Under the EU GDPR, the UK GDPR and the Swiss Federal Act on Data Protection (nFADP), our processing relies on:
- your consent, freely given when you submit the form and accept analytics cookies;
- our legitimate interest in growing our business through measured B2B outreach and in keeping our services secure.
You may withdraw your consent at any time (see the "Your rights" section).
6. Retention periods
- lead data (Meta form): kept for up to 24 months after the last contact if the relationship does not proceed, then deleted or anonymised;
- account data: for the duration of the contractual relationship, then according to our legal retention obligations;
- analytics data: according to the lifetime of the relevant cookies and the settings of our analytics tools.
7. Recipients and processors
Your data is never sold. It may be processed, on our behalf and under our instructions, by the following processors:
- Meta Platforms (Facebook/Instagram): serving the ads and initial collection of the lead form;
- Brevo: e-mail marketing and CRM tool for commercial follow-up;
- Google (Analytics, Fonts) and Microsoft (Clarity): audience measurement and usage analysis;
- Stripe: payment processing;
- our hosting provider, whose infrastructure is located in Suisse.
8. Transfers outside Switzerland and the EU
Our data is hosted in Suisse. Some of our processors (in particular Meta, Google and Microsoft) are established in the United States and may process data outside the European Economic Area and Switzerland. These transfers are governed by appropriate safeguards, in particular the European Commission's Standard Contractual Clauses and the mechanisms recognised as equivalent under Swiss and UK law.
9. Cookies and trackers
Our website sets cookies that are strictly necessary for it to work (including your language preference) and, after you consent, analytics cookies (Google Analytics, Microsoft Clarity). You can accept or decline the latter via the banner shown on your first visit, and change your choice at any time.
10. Your rights
Under the EU GDPR, the UK GDPR and the Swiss nFADP, you have the following rights over your data:
- right of access, rectification and erasure;
- right to object to and restrict processing;
- right to data portability;
- right to withdraw your consent at any time;
- right to lodge a complaint with a competent data protection authority.
To exercise these rights, write to us at info@iabsis.com. Every outreach e-mail also contains an unsubscribe link.
11. Data security
We implement appropriate technical and organisational measures to protect your data against unauthorised access, alteration, disclosure or destruction. All communications with our website are encrypted via SSL/TLS and our infrastructure is hosted in Suisse.
12. Contact
For any question about this policy or the protection of your personal data, contact us at info@iabsis.com.
13. Changes
We may update this policy to reflect changes to our services or to applicable regulations. The last updated date is shown at the top of this page.