Privacy policy

Last updated: June 2, 2026

This Privacy Policy describes the policies and procedures regarding the collection, use, and disclosure of personal data when the Service is used, and informs about privacy rights and how the law provides protection.

Personal data is used to provide and improve the Service. By using the Service, you acknowledge the collection and use of information in accordance with this Privacy Policy.

Please read this Privacy Policy carefully.

INTERPRETATIONS AND DEFINITIONS

Interpretation

Words with an initial capital letter have the meanings defined under the following conditions. These definitions will have the same meaning regardless of whether they appear in the singular or plural.

Definitions

For the purposes of this Privacy Policy:

  • Account: A unique account created to access the Service or parts of the Service.
  • Affiliate: An entity that controls, is controlled by, or is under common control with a party, where "control" means ownership of 50% or more of shares or securities entitled to vote for the election of directors or other managing authority.
  • Business (referred to as "the Business"): Look Twice.
    • Business Address: Postfach 131, 9004 St. Gallen, Switzerland
    • Owner / Data Controller: Annelou Rinderknecht
    • Registered Address: Kanonengasse 17, 8004 Zürich, Switzerland
    • Email: hello@look-twice.ch
  • Cookies: Small files placed on a device by a website, containing details of browsing history.
  • Country: Refers to Switzerland.
  • Device: Any device that can access the Service, such as a computer, mobile device, or tablet.
  • Personal data: Any information relating to an identified or identifiable individual.
  • Service: The Website.
  • Service Provider: Any natural or legal person who processes data on behalf of the Business. This includes third-party companies or individuals employed by the Business to facilitate the Service, provide the Service, or assist in analyzing Service usage.
  • Usage Data: Data collected automatically, either generated by using the Service or from the Service infrastructure itself.
  • Website: Look Twice, accessible at https://www.look-twice.ch  
  • You: The individual accessing or using the Service, or the Business or other legal entity on behalf of which the individual is accessing or using the Service.

CHANGES TO THIS PRIVACY POLICY

This Privacy Policy may be updated from time to time to reflect changes in practices or for other operational, legal, or regulatory reasons. The revised Privacy Policy will be posted on the site, with the "Last updated" date updated accordingly, and any other steps required by applicable law will be taken.

COLLECTING AND USING PERSONAL DATA

To provide the Services, personal data about users is collected from a variety of sources, as outlined below. The information collected and used varies depending on how users interact with the Services.

In addition to the specific uses outlined below, information collected may be used to communicate with users, provide or improve the Services, comply with any applicable legal obligations, enforce any applicable terms of service, and to protect or defend the Services, the rights of the Business, and the rights of users or others.

Personal data

The types of personal data obtained depend on how users interact with the site and use the services. The term "personal data" refers to information that identifies, relates to, describes, or can be associated with a user.

Information that you directly submit through the Services may include:

  • Contact details including your name, address, phone number, and email.
  • Order information including your name, billing address, shipping address, payment confirmation, email address, and phone number.
  • Account information including your username, password, security questions and other information used for account security purposes.
  • Shopping information including the items you view, put in your cart, saved into your account like loyalty points, reviews, referrals or gift cards, or purchases.
    • Loyalty points/product reviews/referrals/gift cards saved
  • Customer support information including the information you choose to include in communications, for example, when sending a message through the Services.

Some features of the Services may require users to directly provide certain information. It is possible to elect not to provide this information, but doing so may prevent access to or use of these features.

Usage Data
Usage Data is collected automatically when using the Service. To do this, cookies, pixels, and similar technologies ("Cookies") may be used. Usage Data may include information about how the site and account are accessed and used, including device information, browser information, information about the network connection, IP address, and other information regarding interaction with the Services.

Information Obtained from Third Parties
Information about you may be obtained from third parties, including vendors and service providers who may collect information on behalf of the Business, such as:

  • Companies that support the Site and Services, such as Shopify.
  • Payment processors who collect payment information (e.g., bank account, credit or debit card information, billing address) to process payments and fulfill orders or provide requested products or services, in order to perform the contract.
  • When visiting the Site, opening or clicking on emails, or interacting with the Services or advertisements, certain information may be automatically collected using online tracking technologies such as pixels, web beacons, software development kits, third-party libraries, and cookies by the Business or third parties.

Any information obtained from third parties will be treated in accordance with this Privacy Policy. For more details, see the section below on Third Party Websites and Links.

USE OF PERSONAL DATA

Personal data may be used for the following purposes:

  • Providing Products and Services: Personal data is used to provide the Services in order to perform the contract, including processing payments, fulfilling orders, sending notifications related to the account, purchases, returns, exchanges, or other transactions, creating, maintaining, and managing the account, arranging for shipping, facilitating returns and exchanges, and other features related to the account. Shopify may also be used to enhance the shopping experience by matching the account with other Shopify services that may be used. In such cases, Shopify will process the information according to its Privacy Policy and Consumer Privacy Policy.
  • Marketing and Advertising: Personal data may be used for marketing and promotional purposes, including sending marketing, advertising, and promotional communications by email, text message, or postal mail, and displaying advertisements for products or services. This may include using personal data to better tailor the Services and advertising on the Site and other websites. Users may opt out of receiving marketing communications at any time by clicking the unsubscribe link included in marketing emails or by contacting the Business directly.
  • Security and Fraud Prevention: Personal data is used to detect, investigate, or take action regarding possible fraudulent, illegal, or malicious activities. If an account is registered, users are responsible for keeping account credentials safe. It is highly recommended not to share usernames, passwords, or other access details with others. Users should contact the Business immediately if they suspect unauthorized access to their account.
  • Communicating with Users and Service Improvement: Personal data is used to provide customer support and improve the Services. This is in the legitimate interest of being responsive, providing effective services, and maintaining the relationship with users and customers.

SHOPIFY AS A SERVICE PROVIDER

The Webshop is operated using Shopify, which provides the e-commerce platform for selling products and services. By using the Service, users acknowledge that Shopify may process personal data in accordance with its Privacy Policy.

Payments for orders are processed via Shopify Payments or other third-party payment providers. These providers process personal data to facilitate transactions.

For more information on how payment providers process data, users should refer to the respective privacy policies.

Shopify and third-party providers may use cookies and tracking technologies to enhance and analyze the user experience on the Website.

TRACKING TECHNOLOGIES AND COOKIES

Like many websites, this site uses cookies to optimize the Services, track user activity, remember preferences, conduct analytics, and improve user interaction.

Most browsers automatically accept cookies by default. However, you can set your browser to remove or reject cookies through browser settings. Please note that blocking or removing cookies may negatively impact your user experience and prevent some services or features from functioning properly. Additionally, blocking cookies may not fully prevent information from being shared with third parties, such as advertising partners.

Types of Cookies Used:

  • Necessary Cookies: Session Cookies, administered by the Business, essential for providing the Service and preventing fraudulent account use.
  • Cookies for Notice Acceptance: Persistent Cookies, administered by the Business, to identify if users have accepted the use of cookies.
  • Functionality Cookies: Persistent Cookies, administered by the Business, to remember user choices (e.g., login details, language preferences).
  • Analytics and Performance Cookies: Persistent Cookies used to measure and analyze visitor traffic and interaction with the website to improve performance and user experience.
  • Marketing and Retargeting Cookies: Cookies used by advertising partners to track activity across websites in order to deliver personalized ads and measure the effectiveness of marketing campaigns.

Tracking technologies used include:

  • Cookies or Browser Cookies: Small files placed on a device. Cookies can be managed through browser settings to refuse or alert users when cookies are sent. However, rejecting cookies may impact the use of the service.
  • Web Beacons: Small electronic files used to collect information and analyze website statistics.

Further information and the ability to manage your cookie preferences can be found through the cookie banner that appears upon your first visit to the website. Here you can adjust your cookie preferences. If you have already accepted or rejected cookies, you can change your choices at any time by visiting the Privacy Requests page available in the website footer and clicking on "Update Cookie Settings". Non-essential cookies are only used where consent has been provided through the cookie banner, where required by applicable law.

For specific information about the cookies used related to powering the store with Shopify, please refer to their Cookie Policy.

META PIXEL AND ADVERTISING TECHNOLOGIES (FACEBOOK & INSTAGRAM)

The Website uses Meta advertising technologies, including the Meta Pixel and Conversions API, provided by Meta Platforms Ireland Ltd., to analyze the effectiveness of advertisements, measure conversions, and display personalized advertising on Facebook and Instagram.

Depending on the user's consent settings, certain personal data such as email address, device information, IP address, and interaction data may be shared with Meta in hashed form for advanced matching and advertising purposes.

Users may manage or withdraw their consent at any time through the Cookie Banner available on the Website. Additional settings regarding advertising preferences may also be managed through Facebook or Instagram account settings.

DISCLOSURE OF PERSONAL DATA

In certain circumstances, personal data may be disclosed to third parties for contract fulfillment, legitimate purposes, and other reasons as outlined in this Privacy Policy. This may include:

  • Vendors or third parties providing services such as IT management, payment processing, customer support, cloud storage, and shipping.
  • With business and marketing partners to provide services and advertise. Business and marketing partners will use personal data in accordance with their own privacy notices.
  • When directed, requested, or consented to disclose certain information to third parties, such as shipping products or using social media widgets or login integrations, with consent.
  • With affiliates or within the corporate group, in legitimate interests to run a successful business.
  • In connection with a business transaction such as a merger or bankruptcy, to comply with applicable legal obligations (including responding to subpoenas, search warrants, and similar requests), to enforce applicable terms of service, and to protect or defend the Services, the rights, and the rights of users or others.

Sensitive personal information is not used or disclosed without consent or for purposes of inferring characteristics.

The categories of personal information that may be disclosed are as follows:

Category Categories of Recipients
Identifiers (basic contact details, order, and account information)
Commercial information (order, shopping, and customer support information) Vendors and third parties who perform services on behalf (e.g., internet service providers, payment processors, fulfillment partners, customer support partners, and data analytics providers)
Internet or similar network activity (Usage Data) Business and marketing partners
Geolocation data (locations determined by IP address or other technical measures) Affiliates

INTERNATIONAL USERS

Please note that personal data may be transferred, stored, and processed outside the country of residence. Personal data may also be processed by staff and third-party service providers and partners in these countries.

If personal data is transferred outside of Switzerland, the Business relies on appropriate legal safeguards under Swiss data protection law, including Standard Contractual Clauses (SCCs) or other legally recognized transfer mechanisms, where required.

THIRD-PARTY WEBSITES AND LINKS

The Site may provide links to websites or other online platforms operated by third parties. If links to sites not affiliated or controlled by the Site are followed, it is recommended to review their privacy and security policies and other terms and conditions. The privacy or security of such sites is not guaranteed and the Site is not responsible for the accuracy, completeness, or reliability of the information found on these sites. Information provided on public or semi-public venues, including information shared on third-party social networking platforms, may also be viewable by other users of the Services and/or users of those third-party platforms, without limitation as to its use by the Site or by a third party. The inclusion of such links does not imply any endorsement of the content on such platforms or of their owners or operators, except as disclosed on the Services.

CHILDREN’S DATA

The Services are not intended for use by children, and personal data of children is not knowingly collected. If a parent or guardian becomes aware that their child has provided personal data, they may contact using the provided contact details to request that the data be deleted.

As of the Effective Date of this Privacy Policy, the Business does not knowingly collect or process personal data from children under the age of 18 without an appropriate legal basis or parental consent where required by law.

SECURITY AND RETENTION OF PERSONAL DATA

Please be aware that no security measures are perfect or impenetrable, and perfect security cannot be guaranteed. Additionally, any information sent may not be secure during transit. It is recommended to avoid using insecure channels for transmitting sensitive or confidential information.

The retention period of personal data depends on various factors, such as whether the information is required to maintain an account, provide services, comply with legal obligations, resolve disputes, or enforce other applicable contracts and policies.

RIGHTS OF DATA SUBJECTS UNDER SWISS DATA PROTECTION LAW (DSG)

Data Subject Rights
Under the Swiss Data Protection Act (DSG), data subjects have the following rights regarding their personal data:

  • Right to Access: Data subjects have the right to request copies of their personal data.
  • Right to Rectification: Data subjects have the right to request correction of any inaccurate information or completion of any incomplete information.
  • Right to Erasure: Data subjects have the right to request the deletion of their personal data, under certain conditions.
  • Right to Restriction of Processing: Data subjects have the right to request the restriction of processing of their personal data, under certain conditions.
  • Right to Object to Processing: Data subjects have the right to object to the processing of their personal data, under certain conditions.
  • Right to Data Portability: Data subjects have the right to request the transfer of the data collected to another organization.

Extended Rights and Specific Requirements under the Swiss DSG
In addition to the basic rights listed above, the Swiss Data Protection Act (DSG) includes additional protections for certain types of data processing:

  • Processing of Sensitive Data: Sensitive personal data is only processed where permitted under applicable Swiss data protection law or where explicit consent has been obtained.
  • Data Processing on Behalf of Another Organization: When personal data is processed on behalf of another organization (e.g., by a service provider or data processor), the DSG mandates that appropriate contractual agreements are in place. These agreements ensure that the data processor only processes the data in accordance with the legal requirements and guarantees a sufficient level of protection for the data.
  • Right to Withdraw Consent: Where consent is the basis for processing personal data, data subjects have the right to withdraw their consent at any time. This right should be communicated clearly, and the withdrawal should be as easy as giving consent.
  • Right to Object to Direct Marketing: Data subjects have the right to object to the processing of their personal data for direct marketing purposes. In such cases, the data subject must be informed of their right to object at the time of data collection, and organizations must comply with this right promptly.

COMPLAINTS

If there are concerns regarding the processing of personal data, please contact using the provided contact details below. If the response to the complaint is not satisfactory, depending on the jurisdiction, there may be the right to appeal the decision or to file a complaint with the relevant data protection authority. For Switzerland, the responsible data protection authority is the Federal Data Protection and Information Commissioner (FDPIC).

CONTACT

For any questions regarding this Privacy Policy, contact may be made via the contact form available on the website.