Security and data policy
1- Overview
The Geneva Peacebuilding Platform Foundation is committed to protecting your personal data and ensuring its security and privacy. This policy outlines our practices regarding the collection, storage, and use of your data, in accordance with Swiss Federal Act on Data Protection (FADP) and other applicable Swiss laws. By browsing our website, you recognize that your Personal Data is processed as described in the present Privacy Policy. If you do not want your Personal Data to be processed as described herein, we kindly ask you not to use our Website. We have prepared below explanations on the protection of your Personal Data when visiting this websites:
- www.genevapeaceweek.wixsite.com/
2- What is personal data?
Personal Data refers to any information related to an identified or identifiable individual, regardless of the form in which it is recorded (hereafter, “Personal Data”). This includes information that directly or indirectly identifies you as an individual, particularly through identifiers such as your name, surname, location data, online identifier, email address, and similar details.
3- Data Collection and Usage
We only collect and use essential data to the operations and communications related to Geneva Peace Week, trainings, events, meetings, communities and international advisory council. Specifically:
- Newsletter Registration (currently using Hubspot): When you subscribe to our newsletter, we collect your name and email address to provide updates, information, and announcements.
- Geneva Peace Week Registration (tailor made form hosted on our Drupal website): When you register for Geneva Peace Week, we collect relevant details (e.g., name, email, organization) to facilitate event participation and communication. These details are deleted at the end of each year, during it’s collection, the data is only available to a few selected team members, through a password protected platform.
- Event and trainings registration (tailor made form hosted on our Drupal website): When you register for one of our events or training courses, we collect relevant details (e.g., name, email, organization) to facilitate event participation and communication. These details are deleted once the event or training has finished taking place. Only participants interested in being included in our newsletter and expressing it to our team, will have their data kept and transferred to our newsletter mailing list.
- Communities and International Advisory Council (contact list hosted on the GPP shared drives): The Geneva Peacebuilding Platform hosts communities such as the Peace Forum Network and the International Advisory Council. The members represent the institutions for which they work and the we keep the different contact lists in our protected share drives. The details of members of these communities are not made public and are stored within the GPP’s protected shared drives.
- Video conferencing (Zoom and Wrodly are the two platforms sued for video conferencing and AI interpretation): For hybrid or online events during Geneva Peace Week or throughout the year, we use the Zoom web conferencing system. Additionally to the registration form, Zoom might also keep data of attendees and online speakers (e.g. name and email and duration of attendance online). These details are deleted at the end of each year, during it’s collection, the data is only available to a few selected team members, through a password protected platform.
Google Analytics: Used for all our statistics, only keeps data on users behavior on our websites (browser used, your geographical region, pages used, web or mobile version )Google analytics doesn’t not provide access to your personal information (name, email, address). Personal Data processed: Trackers and Usage Data.
Organizer platform (Wix website builder): This website hosted by wix and accessible through a password is only accessible to organizers of the Geneva Peace Week. It is not listed on search engines, nor accessible outside of the selected organisers. No data is collected from the GPP. Do however check the Wix privacy policy for more information.
4- Cookies, where and how long your data is retained
This Website uses Google analytics cookies to analyse traffic and help us to improve your user experience. These cookies are stored in the United States and the Personal Data collected through cookies is only accessible to us and to our web hosting platform service provider, based in France. Our domain name is registered in Switzerland.
Here is a list of trackers managed by third parties:
o Google Fonts: is a typeface visualisation service provided by Google LLC or by Google Ireland Limited, depending on how the Owner manages the Data processing, that allows this Application to incorporate content of this kind on its pages. Place of processing: United States – Privacy Policy; Ireland – Privacy Policy.
o Google Analytics (Universal Analytics): is a web analysis service provided by Google LLC or by Google Ireland Limited, depending on how the Owner manages the Data processing, (“Google”). Google utilises the Data collected to track and examine the use of this Application, to prepare reports on its activities and share them with other Google services. Google may use the Data collected to contextualise and personalise the ads of its own advertising network. In order to understand Google's use of Data, consult Google's partner policy. Place of processing: United States – Privacy Policy; Ireland – Privacy Policy.
o AMP_TOKEN: 1 hour
o _ga: 2 years
o _gac*: 3 months
o _gat: 1 minute
o _gid: 1 day
o YouTube: is a video content visualization service provided by Google Ireland Limited that allows this Website to incorporate content of this kind on its pages. Personal Data processed: Trackers and Usage Data. Place of processing: Ireland – Privacy Policy. Storage duration:
PREF: 8 months
o VISITOR_INFO1_LIVE: 8 months
o YSC: duration of the session
The storage period of cookies depends on their purpose and is the same for everyone. Cookies and the information collected through cookies are stored on your browser for 13 months, and your IP address is anonymized.
We may retain de-personalized (anonymous) information after the deletion of your Personal Data
5- Why we collect your data
The GPP collected your data through our cookie consent form available to you when reaching our main pages for the following uses:
o to improve functionalities on our websites
o to speed up your searches,
o to compile behavioural and statistical information about uses of our website or our dedicated pages on social media, in particular to estimate our audience size and usage patterns,
o to identify you and log your use, recognize you when you return to our website, track the activity on our Website and hold certain information.
The purpose for implementing all of the above is to maintain and monitor the performance of our website and to constantly look to improve the site and the services it offers to our users. The legal basis we rely on to process your Personal Data is article 13(1) FADP and article 6(1)(f) of the GDPR, which allows us to process Personal Data when its necessary for the purposes of our legitimate interests.
6- Security Measures
To protect your personal data from unauthorized access or misuse, we implement technical and organizational measures such as:
- Secure storage: Data is stored on secure servers with restricted access and only accessible to the team members. The password is changed yearly and a double authentication method is implemented on the admin accounts.
- Encryption: Personal data is encrypted in transit using Secure Socket Layer (SSL) technology.
- Access control: Access to data is limited to authorized personnel for the purposes outlined in this policy.
7- Data Sharing, Selling and Transferring Personal Data
We do not share, sell or transfer your data with third parties without your explicit consent, unless required by law. The security of your Personal Data is important to us, but no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use technical and organizational commercially acceptable means to protect your Personal Data against manipulation, partial or complete loss and unauthorized access by third party, we cannot guarantee its absolute security.
8- Your Rights
Under Swiss law, you have the right to:
o Access the personal data we hold about you
o Request corrections to your personal data
o Withdraw your consent for future communications
o Request deletion of your personal data, except where data retention is required by law
Personal data breach: In the case of a Personal Data breach, we will without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the Personal Data breach to the competent supervisory authority.
Right to complain to an authority: You have the right to complain to a data protection authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA) or in Switzerland.
9- Changes to This Policy
This policy is reviewed regularly and may be updated to reflect changes in data practices or Swiss law. Please check this page periodically for any changes.
Last update November 2024
10- Contact Us
The controller of Personal Data on this Website is Geneva Peacebuilding Platform Foundation, Chemin Eugène-Rigot 2E, 1202 Genève, Switzerland.
If you have questions about this policy or wish to exercise your rights, please contact us at info@gpplatform.ch or gpw@gpplatform.ch