0844 277 277 Mon-Fri 8am-6pm
CSS Insurance

Privacy Policy

In this privacy policy, the CSS Group explains how it uses the data left behind when you surf on our websites.

When you visit one of our websites (www.css.ch / my.css.ch / blog.css.ch), and especially when you enter data about yourself in forms, you agree to your data being processed in the way described below.

General points

Your data is processed in accordance with Swiss data protection law, except in cases in which it is subject to the data protection provisions of other companies, such as Facebook Inc., Google Inc., etc., over which CSS has no influence.

Recorded data

Data recorded automatically

When you visit our websites, CSS records, stores and uses general, non-personal data. The following data in particular is saved in log files when you access our websites:

  • IP address
  • General information on the operating system and browser
  • Date and time / length of visit
  • Browser query
  • Any add-ons you use
  • The website that referred you to us
  • General information on your surfing behaviour, such as whether or not you click on advertising banners or download files


This data is used to improve the websites and allows us to provide the services they offer. It also forms the basis for statistical evaluations, and may be analysed for marketing purposes. However, the following conditions apply where data is collected and analysed using cookies.

Data provided by you

Confidential personal data that you send to CSS via the forms on the website is transmitted in encrypted form using the latest technology and cannot be viewed by third parties. The data you enter via the internet is used for processing offers and, if applicable, for marketing purposes within CSS.

If you are already a client of CSS, or would like to become one, we are able to link the personal data that you provide us with via the website with that which we already hold. In this case, the legal foundation for the processing of personal data is the fulfilment of contractual obligations. Other legal foundations for the processing of your personal data are your consent, which you can revoke at any time, and the legitimate interests of CSS.

In particular, by entering your data in the premium calculator you grant permission for companies in the CSS Group to contact you by phone or other means in connection with the provision of your insurance quote.

However, we will pass on your data to a service partner contracted by us if third-party services are required to process an enquiry you submit by internet or phone, or to prepare your contract. In such cases, you authorise us to do so by providing us with your data. This partner is contracted by CSS and subject to the same data protection provisions as CSS itself.

Active content

We use active content, including HTML/CSS, Java Script and Java. This is content on websites that is not run until a user is actually visiting the site. It expands the content of the static websites.
If you do not wish to see this active content, you can deactivate it via your browser. This may make it difficult or even impossible to use our sites, however.

Cookies and remarketing

Content from external providers is integrated into our websites to improve your surfing experience and for statistical, market research and advertising purposes. These external providers use cookies to manage their services. Cookies are therefore installed on your computer's hard drive when you visit our websites.

These are small units of information that the web browser stores locally on the user's computer. We need this content to allow you to use the website and to optimise the service we offer.

Most of the cookies we use are what are known as “session” cookies. They are deleted automatically at the end of your visit. Other cookies remain stored on your device until you delete them. These cookies enable us to recognise your browser the next time you visit us.

Although only anonymous data is collected and processed, you can still use our website without cookies by deactivating them in your browser. You can also set an opt-out cookie for each external provider. However, if you do you will no longer be able to use certain functions, and you may experience restrictions in the use of our websites.

Details on how third-party providers handle your personal data are given in their individual privacy policies, such as those issued by Facebook, Twitter, Google+ and Adobe Systems. The CSS data protection provisions do not apply to data processing by these external providers. Please note that, as a website provider, we do not receive any information from these external providers about the content of the data that is transmitted, or its use. By using products such as Facebook, Twitter, etc., you have declared that you agree to their particular data protection provisions.

Where CSS is subject to the EU's General Data Protection Regulation, cookies required to run electronic communications or to provide certain functions requested by you (such as the premium calculator) are stored on the basis of Art. 6 para. 1 f of the Regulation. The website operator has a legitimate interest in storing such cookies in order to ensure the technically flawless and optimised provision of its services. If other cookies (such as those which analyse your surfing behaviour) are stored, these are treated separately under the present privacy policy.

Overview of the tools used

The following tools are used on the www.css.ch website:

  • Google Analytics
  • Adobe Analytics
  • Google Remarketing and Adwords
  • Facebook Remarketing
  • Newsletter
  • Adobe Target
  • Google Marketing Platform (formerly DoubleClick)

The following tools are used on the my.css.ch website:

  • Adobe Analytics
  • Google Remarketing and Adwords
  • Google Marketing Platform (formerly DoubleClick)

The following tools are used on the blog.css.ch website:

  • Google Analytics
  • Adobe Analytics
  • Google Remarketing and Adwords
  • Facebook Remarketing
  • Newsletter 
  • Adobe Target
  • Google Marketing Platform (formerly DoubleClick)


Google Analytics/ Adobe Analytics and Target

To collect data about the use of our websites automatically, CSS uses the services of Google Analytics (Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) and Adobe Analytics (Adobe Systems Software Ireland Limited, 6 Riverwalk, Naas Road, Dublin 24, Ireland). In this way, CSS finds out how its web services are being used, and learns about users' surfing behaviour. CSS uses Adobe Target to test data-driven experiences on the website that are also personalised in real time, in order to provide more relevant content. The information about your use of our website that is generated by the cookie is then sent to Google and Adobe servers, where it is also stored.


Google Remarketing and Adwords

Google Remarketing analyses your surfing behaviour and, based on this, shows you personalised CSS advertising while you surf the internet, and use a mobile app or the Google search engine. This enables more specific interest-related, personalised advertising related to your previous usage and surfing behaviour on a given device (such as your smartphone) to be shown on another of your other devices (such as a tablet or PC). Google Adwords analyses clicks on Google, and CSS pays on a per-click basis when users access a CSS advert or website.

If you have given the appropriate permission, Google will link your web and app browser clicks to your Google account for this purpose. In this way, the same personalised advertising can be shown on any device on which you log in with your Google account.

You can object permanently to cross-device remarketing or targeting by deactivating personalised advertising in your Google account. To do so, click on the following link: https://www.google.com/settings/ads/onweb/

Where CSS is subject to the EU’s General Data Processing Regulation, the collected data is collated in your Google account only if you have given your permission. You can give or revoke your permission with Google (para . 6 1 a General Data Processing Regulation). Where data is collected that is not collated with that of your Google account (for example because you do not have a Google account or have refused permission), the collection of your data is based on Art. 6 para. 1 f of the General Data Processing Regulation. The website provider’s legitimate interest is based on its interest in the anonymised analysis of website visitors for promotional purposes.

Google Marketing Platform (formerly DoubleClick)

This website uses the Google Marketing Platform (formerly DoubleClick), a web analytics service offered by Google. This optimises interaction with Google Adwords. It sets cookies when you view an advert or click on one of our banners on a partner website. This is done so that we can show you banners that are of interest to you. The cookie allows us to record certain data about interaction from your browser with certain on-screen content. It is also recorded whether you have viewed an advert, clicked on it, or entered into a contract with CSS on this basis.


Facebook Remarketing

This website integrates the pixel of the Facebook social media network (1601 South California Avenue, Palo Alto, CA 94304, USA). When you visit this website, the Facebook pixel creates a direct connection between your browser and the Facebook server. Through this connection, Facebook receives information that you have visited this website from your IP address. This enables Facebook to link your visit to your user account. We can then use the information that we have received in this way to show you Facebook ads or for tracking purposes. Please note that, as a website provider, we do not receive any information from Facebook about the content of the data that is transmitted, or its use. For further information, please consult the der Facebook privacy policy. If you do not wish your data to be collected by Custom Audiences, you can deactivate it here.


Microsoft Advertising (formerly Bing Ads)

This website uses Microsoft Advertising (formerly Bing Ads) to promote products and services. Cookies are used to record how many visitors have clicked on an advertisement and to record which advertisements you have seen so you don’t see the same one repeatedly. This enables the display of interest-based advertising and recording of ultimate objectives. You can find out how to opt out of interest-based advertising here. Further information on Microsoft Advertising cookies and data privacy is available here: https://privacy.microsoft.com/en-GB/privacystatement.

Encrypted payments via this website

If, having entered into a contract with us, you are obliged to provide us with your payment information (e.g. your account number for direct debits), then this information will be required to process payments.

Payment transactions via the usual channels (Visa/Mastercard or direct debit) are routed exclusively through an encrypted SSL or TLS connection. You can recognise whether or not a connection is encrypted because the address line of your browser will change from "http://" to "https://", and a padlock symbol will appear.

If communication is encrypted, no third party can read the payment information that you send to us.


Normal emails that you send to CSS Insurance are not encrypted and may be viewed by third parties. CSS is not able to offer any guarantee of data security with regard to unencrypted email exchanges, and CSS Insurance therefore offers no warranty and accepts no liability in this connection.


Newsletters are sent to our clients and prospective clients only if they specifically ask to receive them. By subscribing to the newsletter, the user agrees only that their email address may be used to send out the e-letter.

Our marketing emails (newsletters, invitations, email surveys, etc.) are managed and dispatched using the eMarketing Suite email marketing solution from emarsys eMarketing Systems AG (Vienna).
Personal data that is collected along with the newsletter subscription is stored on the emarsys computers. Emarsys is subject to contractual confidentiality and data protection obligations. At emarsys, access to this data is restricted to members of the engineering team, the sole function of which is to maintain, monitor and manage the system.

With each newsletter, we offer the option of correcting, updating or removing the information that recipients have provided.
You can unsubscribe from the newsletter or from our advertising mails at any time. The link is given at the bottom of every mail. The data that we hold in order to send you the newsletter will be stored by us until you unsubscribe from the newsletter, after which it will be deleted. Data that we store for other purposes is not affected by this.

Your email address is used only to send out our own information. We do not pass your address on to third parties.

The way in which users click on hyperlinks in emails and on websites is recorded in anonymous form.

This means that no personal user profiles can be created.

Updating the privacy policy

We reserve the right to amend this privacy policy at any time and bring it into line with any new data processing procedures.

This privacy policy was last changed on 10 February 2020.