Privacy Policy

Cashare AG ("Cashare", "we", "us") takes the protection of your personal data seriously. This privacy policy informs you about what personal data we process, for what purpose, and what rights you have.

The legal basis is the revised Swiss Federal Act on Data Protection (revFADP, in force since 1 September 2023) and the associated Data Protection Ordinance (DPO). This policy applies to the website www.cashare.ch and all services of Cashare AG.

This privacy policy was last updated on 3 May 2026.

Cashare AG
Bösch 73
CH-6331 Hünenberg
Switzerland

Phone: +41 41 558 48 88
Privacy email: privacy@cashare.ch
Website: www.cashare.ch

Cashare AG is registered with the Federal Data Protection and Information Commissioner (FDPIC).

3.1 Website Visit (Log Data)

Each time you visit our website, we automatically collect technical data transmitted by your browser:

• IP address (anonymised after a short period)
• Date, time and duration of visit
• Pages and sub-pages accessed
• Browser type, version and operating system
• Referring website (referrer)

Legal basis: legitimate interest (website security and operation, Art. 31 revFADP).

3.2 Account and Contract Data

To use our platform, we collect the following data:

• Identification data: first name, surname, date of birth, nationality
• Contact data: address, email, phone number
• Identification documents: ID copy, proof of residence
• Financial data: income, assets, liabilities (for borrowers)
• Bank details: IBAN, bank name

Legal basis: contract performance and legal obligations (CCA, AMLA).

3.3 Credit Application Data

As part of a credit application, we additionally process:

• Credit information (enquiries from ZEK, IKO, CRIF, Dun & Bradstreet)
• Income and employment details
• Information on existing liabilities

3.4 Communication Data

When you contact us by email, phone or contact form, we store the content and metadata of the communication for processing and documentation purposes.

3.5 Newsletter

When you subscribe to our newsletter, we store your email address and the time of subscription. The newsletter is sent via ActiveCampaign (ActiveCampaign LLC, USA). Legal basis: your explicit consent. You can unsubscribe at any time via the unsubscribe link in the newsletter.

We use cookies and similar technologies. Detailed information — including all tools used, purposes, storage periods and opt-out options — can be found in our Cookie Policy.

Services used (only with your consent):

• Google Analytics 4 (Google LLC, USA) — website analytics, IP-anonymised
• Meta Pixel (Meta Platforms Ireland Ltd., Ireland/USA) — marketing on Facebook and Instagram
• LinkedIn Insight Tag (LinkedIn Ireland Unlimited Company, Ireland/USA) — marketing on LinkedIn

You can withdraw or adjust your consent at any time via the "Cookie Settings" link in the footer of this website.

5.1 Credit Bureaus

For the legally required credit assessment (CCA), we transmit your data to:

• ZEK – Central Credit Information Office, Zurich
• IKO – Consumer Credit Information Office, Zurich
• CRIF AG, Zurich
• Dun & Bradstreet (formerly Bisnode), Baar

5.2 Service Providers (Processors)

We use carefully selected service providers who process data exclusively on our behalf and according to our instructions:

• Deno Deploy / Deno Land Inc. (USA) – web hosting and website operation
• ActiveCampaign LLC (USA) – newsletter distribution and email marketing
• Google LLC (USA) – website analytics (Google Analytics 4, consent only)
• Meta Platforms Ireland Ltd. (Ireland/USA) – marketing (Meta Pixel, consent only)
• LinkedIn Ireland Unlimited Company (Ireland/USA) – marketing (Insight Tag, consent only)

5.3 Authorities

We disclose personal data to authorities where required by law (e.g. FINMA, law enforcement authorities).

Some of our service providers are based in countries outside Switzerland, particularly the USA. For such transfers, we rely on appropriate safeguards:

• Adequacy decision by the FDPIC (where applicable)
• Standard contractual clauses (SCC) pursuant to Annex 1 DPO
• Your explicit consent (for marketing services)

A copy of the applicable safeguards is available upon request.

We store personal data only for as long as necessary for the respective purpose or as required by statutory retention obligations:

• Contract data: 10 years after contract termination (CO Art. 958f)
• Credit documents: In accordance with CCA and ZEK guidelines (generally 5 years after repayment)
• Log data: 90 days
• Communication data: 3 years after last contact
• Cookie consent: 1 year (in the user's browser)
• Newsletter data: Until withdrawal of consent

We implement state-of-the-art technical and organisational measures to protect your personal data from unauthorised access, loss or misuse:

• TLS/SSL encryption (256-bit) for all data transmissions
• Encrypted data storage
• Access controls and permission management
• Regular security reviews
• Contractual confidentiality obligations for all staff

Under the revFADP, you have the following rights regarding your personal data:

• Right of access (Art. 25 revFADP): You may request information about the data we hold about you at any time.
• Right to rectification (Art. 32 revFADP): You may request correction of inaccurate or incomplete data.
• Right to erasure (Art. 32 revFADP): Under certain conditions, you may request deletion of your data.
• Right to restriction of processing: You may request that processing of your data be restricted.
• Right to data portability (Art. 28 revFADP): You may receive your data in a common, machine-readable format.
• Right to object: You may object to the processing of your data for direct marketing purposes at any time.
• Right to withdraw consent: Consents given (e.g. for cookies or newsletter) may be withdrawn at any time with effect for the future.

To exercise your rights, please contact: privacy@cashare.ch

We will process your request within 30 days. For complex requests, we may extend this period by a further 30 days, of which we will notify you.

You have the right to lodge a complaint with the competent supervisory authority if you believe that the processing of your personal data violates the revFADP:

Federal Data Protection and Information Commissioner (FDPIC)
Feldeggweg 1, 3003 Bern, Switzerland
www.edoeb.admin.ch

We reserve the right to update this privacy policy at any time to reflect changes in the legal situation, business practices or data processing activities. The current version is always available on this page. For material changes, we will notify you by email if you have an account with us.