Privacy Policy

NUMMUS Asset Management AG (referred to as NUMMUS, we, or us) is the controller responsible for the personal data processed through this website.

NUMMUS Asset Management AG, Talacker 21, CH-8001 Zurich. Email: nummus@nummus.ch. Telephone: +41-41-710-7744.

This policy explains what personal data we process when you visit this website or contact us through it. It does not cover the separate processing carried out under a client mandate, which is governed by the relevant client agreement and documentation.

We keep data collection to a minimum. We process the following:

• Contact form. If you write to us through the contact form, we process your name, email address, telephone number (if provided), and the content of your message, so that we can respond to your enquiry.
• Direct correspondence. If you contact us by email or telephone, we process the data you choose to share with us for that correspondence.
• Server log files. When you visit the website, our hosting provider automatically records technical data such as your IP address, browser type, operating system, the pages requested, and the date and time of access. This data is used to operate, secure, and maintain the website.

This website does not use advertising cookies, tracking pixels, or third-party web analytics. Fonts and images are served from our own infrastructure rather than from third-party content networks.

Only strictly necessary cookies, if any, are used to ensure the website functions correctly. These do not track you across other websites.

We process personal data to respond to your enquiries and correspond with you, to operate and secure the website, and to comply with the legal and regulatory obligations applicable to us as a Swiss financial institution.

Under the Swiss Federal Act on Data Protection (FADP), we process personal data where this is justified by our legitimate interests, necessary to respond to your request, or required to meet a legal obligation.

Where the EU General Data Protection Regulation (GDPR) applies, for example if you contact us from the European Union, we rely on your consent, on steps taken at your request prior to entering into a relationship, or on our legitimate interests under Article 6 GDPR.

We do not sell personal data. We share it only with service providers who process data on our behalf under appropriate contractual safeguards, and with authorities or advisers where we are legally required or entitled to do so.

• Website hosting. Our website is hosted by Vercel Inc., which processes server log data on our behalf to deliver and secure the site.
• Email. Correspondence you send us is processed through our email service provider.

Some of our service providers are located outside Switzerland, including in the United States. Where personal data is transferred to a country that does not offer an adequate level of data protection, we rely on appropriate safeguards, such as the standard contractual clauses recognised by the Swiss Federal Data Protection and Information Commissioner and, where applicable, the Swiss-U.S. Data Privacy Framework.

We retain personal data only for as long as necessary for the purposes described above, or for as long as required by applicable legal and regulatory retention obligations. Correspondence is deleted once it is no longer needed and no retention obligation applies.

We apply appropriate technical and organisational measures to protect personal data against loss, misuse, and unauthorised access. No transmission of information over the internet can be guaranteed to be completely secure.

Subject to applicable law, you have the right to:

• request access to the personal data we hold about you;
• request the correction of inaccurate data or the completion of incomplete data;
• request the deletion of your data;
• request the restriction of, or object to, certain processing;
• receive a copy of the data you provided in a portable format, where the GDPR applies;
• withdraw your consent at any time, without affecting processing carried out before the withdrawal.

If you believe your personal data has been processed unlawfully, you may lodge a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC) or, where the GDPR applies, with your local data protection authority.

We may update this privacy policy to reflect changes in our practices or in legal requirements. The current version is always available on this page.

For any data-protection enquiry, or to exercise any of the rights above, contact us at nummus@nummus.ch.