Privacy & Cookies Policy
Scope
This Privacy Policy explains how 2M CAPITAL LTD (“we”, “us”) processes personal data when you visit our website, contact us, subscribe to information or newsletters, or apply for a job.
We process personal data in accordance with Swiss data protection law (revFADP). Where applicable, we also process personal data in accordance with the EU General Data Protection Regulation (GDPR).
Controller and contact
The controller for the processing described in this Privacy Policy is:
2M CAPITAL LTD E-Mail: LandC@2m-capital.com
You may contact us using the above details for any privacy-related request.
Categories of personal data
Depending on how you interact with us, we may process:
- Technical data and server logs (e.g., IP address, date/time of access, pages viewed, referrer URL, browser/OS information)
- Communication data (e.g., name, email address, phone number, message content)
- Newsletter/registration data (e.g., email address and possibly name)
- Applicant data (e.g., CV, certificates, correspondence)
- Usage and tracking data (e.g., cookie IDs, website interactions) Social media data (where you activate social media features)
Purposes
We process personal data for purposes including:
- Operating, maintaining and securing the website
- Handling inquiries and communicating with you
- Sending newsletters, information and invitations (marketing)
- Analyzing and improving our website (e.g., web analytics tools such as Google Analytics and similar services)
- Managing recruitment processes
- Enforcing legal claims and complying with legal obligations
Cookies, analytics and similar technologies
We use cookies and similar technologies for technical functionality, security, and for analytics/optimization.
We may use web analytics and tracking services, including Google Analytics and similar services. Data may be transmitted to providers of such services and processed by them. You may block or delete cookies in your browser settings.
Recipients (categories)
We may disclose personal data to categories of recipients such as:
- Hosting and IT service providers (specifically Green.ch and Amazon AWS, both with server locations in Switzerland)
- Providers of analytics, tracking or marketing services (e.g., Google and similar providers)
- Email/newsletter distribution providers
- Advisors, authorities or courts where required
International data transfers
Depending on the service providers used, personal data may be transferred to other countries, including within the EU/EEA and potentially the United States. Where required, we implement appropriate safeguards (e.g., Standard Contractual Clauses).
Data Security and Confidentiality
We use appropriate technical and organizational measures to protect personal data against unauthorized access, loss, misuse, or alteration.
Confidentiality and highly sensitive information (specifically in the context of Chief Investment Officer (CIO) mandates, corporate advisory, corporate intermediation, and board of directors mandates):
In the course of providing our services, we may process information that is commercially highly sensitive (for example portfolio and position data, risk metrics, reports, investment and governance documentation, strategic planning materials, and internal stakeholder information). We treat such information as strictly confidential and use it solely to provide the agreed services and to protect legitimate interests such as IT security, quality assurance, and the establishment, exercise, or defense of legal claims.
We apply enhanced organizational and technical safeguards, including need-to-know access, role-based permissions, appropriate logging where feasible, and suitable protections for data in transit and at rest (for example encryption and strong authentication). Where we engage service providers, we require them by contract and oversight to maintain confidentiality and security standards comparable to our own.