Legal Documents

Privacy Policy

This English text is a machine translation provided for informational purposes only. The legally binding version is the German original.

View German version

Last updated: November 21, 2025

This privacy policy describes how Meda Esthetic Lukic, based in Zurich, Switzerland, collects, processes, and protects personal data in accordance with the Swiss Federal Data Protection Act (revDSG).

Our services are directed exclusively to persons residing in Switzerland. We do not market our services to persons outside Switzerland and do not process their personal data.

Note on English language content: This website provides English language content to accommodate Switzerland's multilingual and international community. The provision of English content does not constitute an offer of services to persons residing outside of Switzerland.

Responsible party

Branislav Lukić
Meda Esthetic Lukic
Goldbrunnenstrasse 149
8055 Zürich

info@meda-esthetic.ch
+41 79 840 88 13
https://www.meda-esthetic.ch

UID: CHE-245.867.775
CH-ID: CH-020-1102525-2

This entity is responsible for all processing of personal data described in this statement.

Scope

This privacy policy applies exclusively to persons residing in Switzerland, including:

  • Visitors to our website
  • Customers and potential customers
  • Persons who contact us (email, contact form, phone)
  • All persons whose personal data we process in the context of providing cosmetic services in Switzerland

We do not process personal data of persons residing outside of Switzerland. This website and our services are not intended for, and we do not target, persons residing outside of Switzerland, including persons residing in the European Union, United States, or other jurisdictions.

Categories of personal data we process

We may collect and process the following types of data:

  • Identity and contact data: Name, postal address and email address, phone number
  • Appointment and service data: Booking details, customer preferences, service history (non-medical)
  • Communication data: Emails, messages sent via contact forms
  • Technical data: IP address, browser/device information, access time (anonymized)

We do not process sensitive personal data such as health data.

Purpose of data processing

Your data is used exclusively for the following purposes:

  • To book, manage, and confirm appointments
  • To respond to inquiries and communicate with customers
  • To send reminders or service-related messages
  • To operate, secure, and improve our website
  • To comply with applicable retention and legal obligations in Switzerland

Data sharing and service providers

We work with selected service providers who support us in managing and securing our digital infrastructure. All service providers are contractually bound to data protection standards under Swiss law.

a) Website hosting

Our website is hosted by:

Vercel Inc.
440 N Barranca Ave #4133
Covina, CA 91723
USA
www.vercel.com

Vercel processes personal data (e.g., form submissions, analytics) on our behalf. The company applies Standard Contractual Clauses (SCCs) and data protection guarantees to comply with Swiss regulations despite being based in the USA.

b) DNS and security services

We use:

Cloudflare, Inc.
101 Townsend Street
San Francisco, CA 94107
USA
www.cloudflare.com

Cloudflare provides secure DNS routing, traffic filtering, and website performance optimization. Anonymized technical data may be transmitted through Cloudflare's global infrastructure. Cloudflare adheres to Swiss data protection standards.

c) Analytics

We may use Google Analytics or similar tools configured with IP anonymization to evaluate website performance. No personal data is collected for marketing purposes. We do not sell or rent your personal data.

d) Google Maps

Our website uses Google Maps to display maps.

Google Ireland Limited
Gordon House, Barrow Street
Dublin 4, Ireland
https://policies.google.com/privacy

To use Google Maps features, it is necessary to store your IP address. This information is typically transmitted to a Google server in the USA and stored there.

The use of Google Maps only occurs when you click "Load map" and thereby give your consent to data transmission.

Legal basis: Your consent under the Swiss Data Protection Act (revDSG). While Google Ireland Limited is an EU entity, our use of Google Maps and the processing of your data in this context is governed by Swiss law (revDSG), not EU GDPR.

Geographic scope and data transfers

Meda Esthetic Lukic serves exclusively customers residing in Switzerland.

We do not target, market to, or process data from persons residing in the EU or other countries.

Jurisdictional Exclusion: This website and our services are not subject to the privacy laws of other jurisdictions, including but not limited to the European Union's General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), or other US state privacy laws. We operate exclusively under Swiss law (revDSG).

Some data may be processed in the USA by providers such as Vercel or Cloudflare. In such cases, legally approved Standard Contractual Clauses (SCCs) or equivalent protective measures apply.

Cookies and website analytics

Our website may use cookies to ensure functionality and performance:

  • Essential cookies – necessary for navigation and form processing
  • Analytical cookies – anonymous and for website improvement

Users can disable cookies via their browser. No advertising or behavioral profiling cookies are used.

Data security

We implement technical and organizational measures to protect personal data, including:

  • SSL-encrypted communication
  • Secure access control for service providers
  • Regular infrastructure backups

Data storage

We store the following personal data only as long as necessary, according to Swiss legal provisions:

  • Customer data, bookings, treatments: 5 years after last appointment
  • Financial and accounting records: 10 years
  • Messages from contact forms and general communication: 12 months
  • Web analytics data: anonymized, up to 26 months

We do not request, collect, store, or process health data.

Your rights under Swiss law

According to the revDSG of Switzerland, you have the right to:

  • Access your personal data
  • Correction of incorrect or outdated data
  • Deletion of your data (to the extent legally permitted)
  • Objection to processing in certain cases
  • Information about how your data is used

To exercise these rights, please contact us at data@meda-esthetic.ch. We may require proof of identity to verify your request.

Applicable law and jurisdiction

This privacy policy is subject exclusively to the laws of Switzerland. Jurisdiction is Zurich, Switzerland.