Privacy Policy

Privacy Policy Cime Capital AG

Cime Capital AG (hereinafter “Cime”, “we” or “us”) operate the website «https://www.cime-capital.com» (hereinafter “Cime Website”) and process personal data in the context of investment as well as investor relationships.

We pay attention to data security and comply with the provisions of the Federal Act on Data Protection (“DPA”), the Ordinance to the Federal Act on Data Protection (“DPO”), the Telecommunications Act (“TCA”) and other possibly applicable data protection provisions.

Cime is responsible for the processing of personal data. For questions regarding data protection, you can contact us by regular mail or e-mail at the addresses below:

Cime Capital AG

Bahnhofstrasse 3

CH-8808 Pfäffikon SZ

+41 55 415 54 96

info@cime-capital.com

1 On the processing of personal data during a visit to the Cime Website

1.1 What data do we collect from you when you access the Cime Website?

In order to enable you to establish a connection to the Cime Website and to ensure its secure use (in particular, system security and system stability), our servers temporarily save each access to a log file when you visit the Cime Website. As is generally the case with every connection to a web server, the following technical data is automatically recorded without your intervention and stored until automated deletion:

• IP address of the requesting computer;

• Name of the owner of the IP address range (usually your Internet access provider);

• Date and time of access;

• Website from where the access was made (referrer URL), if applicable with the search word used;

• Name and URL of the file accessed;

• Status code (e.g. error message);

• Operating system of your computer;

• Browser used by you (type, version and language);

• Transmission protocol used by you (e.g. HTTP/1.1).

For the avoidance of unauthorized access, and unless already deleted automatically, the IP address of the requesting computer may be evaluated together with other data in the event of attacks on the network infrastructure or other unauthorized use of the Cime Website and may be used in related criminal or civil proceedings against the users concerned. In this case, the data may be stored for as long as they are necessary for the civil or criminal proceedings.

1.2 Do we include links from third parties?

We have integrated links to third-party websites (e.g. SBB, Google Maps, TerraLex) or applications (e.g. Outlook e-mail) at various points on the Cime Website. If you select such links on the Cime Website, it is possible that certain data may be passed on to the operators of the relevant website or third-party application without our knowledge. We have no influence on such data processing.

1.3 Do we use cookies?

Cookies are small pieces of data that websites store on a device. Cookies can improve your browsing experience because they help websites remember preferences and understand how people use different features. In particular, we use the following cookies:

• technically necessary cookies (i.e. Adobe Typekit);

• website analytic cookies provided by squarespace;

• CDN cookies (i.e. Google APIs).

We use these cookies to enable us remember certain information you provide to us as you navigate between pages on the Services. You can set your browser to not accept cookies, but this may limit your ability to use the Services.

2 On the processing of personal data when contacting and entering into a contractual relationship with Cime

We process personal data that we receive from you as an investor, partner or otherwise involved third party within the scope of a pre-contractual or contractual relationship, or that we collect ourselves for the purpose of examining conflicts of interest and conducting a mandate that may have been granted to us. This is particularly the case if:

• You contact us;

• You engage third parties to provide us with information;

• You enter a contract with us; or

• You are an investor.

In addition to the personal data provided to us in the context of a contractual relationship, we also collect data from (i) publicly accessible sources (e.g., public registers, press, internet databases), (ii) authorities and courts or (iii) third parties involved in the provision of our services. We process the aforementioned types of personal data to be able to provide, document and invoice our corporate and contractual services and obligations.

Please note that you are responsible for any personal data you may submit to us (e.g. personal data of employees of your company), and you are to comply with your own information obligations yourself in this regard.

3 On the forwarding of personal data to third parties

We will only forward your personal data to third parties if you have expressly consented to this, if there is a legal obligation to do so or if this is necessary to enforce rights, particularly to enforce claims arising from a contractual relationship.

Furthermore, we forward your personal data to third parties to the extent that this is necessary in the context of the use of the Cime Website and the execution of a contract. The categories of possible recipients are: external service providers, investors, project partners, counterparties and their legal representatives, business partners (with whom we provide legal services), authorities and courts as well as counterparties and their legal representatives.

4 On the transfer of personal data abroad

We process personal data primarily in Europe. However, it is possible that we transfer your personal data to contracted service providers abroad for the purpose of using isolated software services (e.g. for video conferences, etc.) and for the fulfillment of the data processing activities described in this privacy policy. In addition, it is possible that we transfer your personal data to third parties abroad to perform our duties under the respective contractual relationship (e.g., international infrastructure project). These service providers and third parties are generally bound by data protection obligations to the same extent as we are. To the extent that the level of data protection in a country is not equivalent to that in Switzerland, we will only transfer your personal data abroad based on consent, adequacy decision, standard contractual clauses, or if it is necessary for the performance of a contract or the enforcement of legal claims.

5 On the duration of the storage of personal data

As a matter of principle, we store your personal data only for as long as it is necessary for the processing of the contractual relationship or if there is a legal or officially ordered obligation to retain or document such data. Furthermore, we may store your data for as long as we have an overriding interest in doing so. For example, we have an overriding private interest if we store your contact data in our contact database to work with you again in the future or to stay in touch for other reasons.

6 Your right to information, correction, deletion, and restriction of the processing of personal data as well as to data portability

You have the right to receive information about your personal data processed by Cime upon request. In addition, you have the right to have incorrect personal data corrected and to have your personal data deleted, insofar as this does not conflict with any legal or officially ordered obligation to retain or document the data or with any permissible circumstances (e.g., an overriding private interest). You also have the right to demand the return of personal data that you have transmitted to us. Upon your instruction, we will also pass on your personal data to a third party of your choice. You also have the right to receive the digitally transmitted personal data in a common file format.

You may contact us for the aforementioned purposes with the contact information provided at the top of the page. Please note that legal and/or contractual requirements and exceptions may apply to these rights. To the extent permitted or required by law, we may refuse requests to exercise these rights. For example, we may have to retain or otherwise continue to process personal data despite requests to delete or restrict processing for legal reasons.

7 On data security

We use appropriate technical and organizational security measures to protect your personal data stored with us against manipulation, partial or complete loss and against unauthorized access by third parties. Our security measures are continuously reviewed and improved in line with technological developments.

We would like to point out that we may use external IT service providers and cloud providers with servers in Switzerland. We further use certain IT services as well as means of communication which may be associated with data security risks (e.g. e-mail, video conferences, etc.). If you use such means of communication with us, we assume that you accept the associated data security risks. If you require any special security measures, please inform us accordingly.

8 On the amendment of this privacy policy

This privacy policy is information about the nature, scope, and purpose of the use of personal data by Cime. We reserve the right to unilaterally change the content of this privacy policy at any time and without prior notice. This privacy policy was last amended on 23 October 2023.

*****