Legal Notes Cookies and Tracking Policy
Last update: March 2023
Credit Suisse Group AG and all its affiliates ("Credit Suisse", "we" or "us") understand that you entrust us with personal information, and we take seriously our data privacy obligations. We strive to make you feel comfortable with the measures we take to protect and safeguard your personal information. This Cookies and Tracking Policy ("Policy") describes in detail how we handle information that we collect through our various digital channels such as our website and mobile applications. For example for a website by clicking "I agree" to the popup describing our website tracking tools, or by clicking "accept" on the mobile applications when you first access either our website or our mobile applications you agree to our use of your information as described in this Policy and in accordance with the particular privacy settings you selected.
This Policy may be updated at any time. Please ensure that you regularly read the latest version of this page.
Table of contents
- Information we collect
- Who can access the information we collect
- Security of data transfers
- Protection, processing and use of personal data
- How does Credit Suisse treat electronic messages
- Credit Suisse websites and mobile applications functionality and tracking tools
- Use of tracking technologies for U.S. users
- Table 1 – Credit Suisse tracking technologies
- Mechanisms to control the use of tracking technologies
- Newsletters and Marketing-E-Mails
Information we collect
We may collect information about you when you use our websites as well as our mobile applications, or when you apply for or use other services offered by Credit Suisse in the following ways:
- We may also collect personal information about you as a result of us recording communications, such as telephone calls or chat conversations, with you. We may store those recordings, in order to satisfy our legal and regulatory obligations, for quality assurance, or for the other purposes described in this Policy.
- Under certain circumstances, third parties may collect anonymized information about your use of our and other websites or mobile applications and make this data (in anonymized form) available to us, to help us understand (i) from which geographical regions users have viewed our website or used our mobile application, (ii) user behavior with respect to Credit Suisse ads that are posted on other websites and (iii) the names of other websites on which you were shown Credit Suisse ads.
- Third party players of media files, such as YouTube and SoundCloud, may collect your full IP address for the purpose of enabling you to view or listen to the content hosted on their platforms. These third party platforms are not operated or monitored by Credit Suisse, and your IP address and any other personal data collected, processed or stored by these third party platforms will be subject to their own privacy policies, and Credit Suisse will not be responsible for their treatment of personal data.
Who can access the information we collect
To the extent permitted by law, Credit Suisse may disclose your information to its affiliates, and their agents and third-party service providers, inside or outside your country of residence, to perform services for Credit Suisse. All Credit Suisse service providers that have access to personal data collected through our websites or our mobile applications are required to treat the information confidentially, use personal data only for the purpose for which it is provided, and respect all applicable data protection laws, Credit Suisse policies, and data protection contractual terms.
Credit Suisse may also disclose your information to governmental agencies or entities, regulatory authorities or other persons in line with:
- Applicable law, regulations, court order or official request;
- Any requests from or guidelines issued by regulatory or other authorities; or
- Similar purposes as are (i) either required or permitted by applicable law and (ii) permitted by Credit Suisse policies.
Security of data transfers
Please note that if you transfer your information to us through an open network, (such as the internet or an email service), such open network may not be a secure environment, and there is a possibility that your information may be (i) lost, (ii) transferred to another country and/or (iii) viewed and/or used by unauthorized third parties. If you decide to provide information to us through an open network, Credit Suisse cannot ensure the security and confidentiality of your information. Therefore, we ask that you consider using alternative methods of communication when sending us your sensitive personal or confidential information.
Protection, processing and use of personal data
We use your personal information to enhance the quality of our products and services as well as to maintain contact details for those with whom we interact. We restrict access to personal information about you to the employees, agents or other parties who need to know that information to provide products or services to you. We maintain physical, electronic and procedural safeguards to guard your personal information, including firewalls, individual password, encryption, and authentication technology. Other than as set forth in this Policy, we do not use or disclose your personal information to third parties, except with your consent or if disclosure is permitted by both law and as contemplated in the privacy notice(s) that we provide to you. In cases where we believe that additional products and services may be of interest to you, we may share your personal information with affiliates of Credit Suisse to the extent permitted by both applicable law and internal Credit Suisse policies.
We will retain your personal information in accordance with applicable data protection laws for so long as it is needed. Your personal data will be processed in accordance with the Credit Suisse Privacy Notice accessible through the official Credit Suisse website (e.g. for Switzerland please visit https://www.credit-suisse.com/ch/en/legal.html). If you are a resident of California U.S., please see our CCPA Annual Privacy Notice (found here: https://www.credit-suisse.com/us/en/legal/privacy-statement.html), or any other privacy notices that may have been separately provided to you, for additional information about personal information that we collect and your rights under the California Consumer Privacy Act of 2018 ("CCPA").
How does Credit Suisse treat electronic messages
All electronic messages sent to and from Credit Suisse are automatically retained in a distinct log system, which preserves the evidential validity of the e-mails.
Electronic messages are protected by reasonable technical and organisational measures and may only be accessed in justified cases in line with applicable laws, regulations and internal Credit Suisse polices to specific persons in defined functions (e.g. Legal, Compliance, and Risk).
If a visitor uses one of the contact e-mail addresses or the forms published by Credit Suisse on our websites or in our mobile applications in order to contact Credit Suisse, he/she expressly authorizes Credit Suisse to respond by the same means either to the sender address or to another indicated address. E-mail is not a suitable means for sending confidential information. Please note that banking secrecy cannot be guaranteed when using any means of electronic communication. Information provided via forms may be merged with analytics data - subject that the visitor has provided explicit consent to tracking - to deliver more tailored information while processing an inquiry.
Credit Suisse websites and mobile applications functionality and tracking tools
On our websites and mobile applications, we employ cookies, plugins, pixels (on certain webpages), software development kits (SDKs) and other technologies to improve the functionality, improve your online and mobile user experience, and to help us deliver better and more relevant online advertising campaigns. On certain portions of our websites and mobile applications, we use products and services provided by third-party service providers who, as part of the product or service being provided, utilize tracking technologies (including cookies, pixels, plugins, software development kits (SDKs) and other technologies), which may track, use and/or share your personal information. Information collected by different tracking technologies can be merged to further tailor our campaigns.
Information on our use of tracking technologies (e.g. cookies, plugins, pixels) is further described in the sections below. With the exception of tracking by "Necessary Cookies" (as defined in the table below), we will not track you using cookies, pixels or plugins or other technology unless you explicitly consent to such tracking via either the consent manager you receive when first accessing our websites or the consent manager screen when you first launch our mobile applications. The privacy settings can be amended at any time either via the link in the footer on the website by clicking on "configure cookies" or in your personal settings within the mobile applications.
For users using our U.S. country-specific pages, please see "Use of Tracking Technologies for U.S. Users" below for additional information specific to you.
Cookies are small files, which are stored on your device to ensure the functioning of websites and mobile applications. These files document your visit to a website or a mobile application, and allow developers to track and implement your preferences and settings. Cookies can also help websites or mobile applications developers gather statistics about how often certain areas of the website or mobile application are visited and tailor the website or mobile application to be more useful and user-friendly. For more information about cookies, including how to control or delete them, please feel free to visit the U.K. Information Commissioner's Office website (https://ico.org.uk) or https://gdpr.eu/cookies/.
A plugin is a piece of software that adds a specific functionality or type of content to a website or a mobile application. For example, our website uses social media plugins, which, when clicked, connect to Credit Suisse's profile pages on various social media platforms. Other types of plugins – although not necessarily used on our website – could include code to allow for a video to be displayed and viewable on a particular webpage or code to display the social media feed from a particular social media user's profile directly onto a webpage
A tracking pixel is a small piece of code we use to collect and share with online advertisers information on your usage of our webpages and mobile applications, such as the pages that you have visited, or the way you have interacted with them. Through the tracking pixels, your browser automatically establishes a connection with the server of an online advertiser. In this way, the online advertiser receives the information that you have accessed one of our websites or mobile apps. This allows us to ensure that we are serving ads that match your interests, when you are visiting any of the websites of the online advertiser, or a website that includes ads served by the online advertiser. If you are authenticated to an online advertiser using tracking pixels, e.g. by being registered and logged in to a social network, the online advertiser can assign the visit to one of our websites or the access of our mobile applications to your account. We have no influence on the extent to which the data collected through the tracking pixels is used by the online advertisers and therefore direct you to their privacy notices linked to in the table below.
Use of tracking technologies for U.S. users
Please note that this Policy is a global policy reflecting Credit Suisse websites and mobile applications activities across all Credit Suisse country and global websites and mobile applications and some third-party tracking technologies described in this Policy are not used on the U.S. Country Specific Pages.
Tracking pixels are not used on portions of our websites or mobile applications intended primarily for U.S.-based users. This includes the U.S. homepage and other U.S.-specific webpages.
Table 1 – Credit Suisse tracking technologies
This table lists each tracking technology we use on our websites and/or mobile applications and the vendor and purpose of each.
Credit Suisse tracking technologies
|Type||Purpose||Products and Vendors|
|Necessary||These tracking technologies ("Necessary Cookies") are necessary to make our website and/or mobile application work and to enable the basic features of this site (such as onsite search capabilities, location-finder tools, virtual and/or voice assistance, and accessing secure areas of our website and/or mobile application). Since they are necessary for our website and/or mobile application to function, by using our website and/or mobile application, you agree to their use for the above purpose.||Product
||Vendor||Link to Vendor's Privacy Notice|
|Google AMP (accelerate mobile pages)||Google Inc.|
|Google Maps (branch locator)||
|Inbenta Chatbot (virtual assistant)||Inbenta Holdings Inc.||Privacy|
|Statistics||These tracking technologies are used to track the number and type of visits to our websites and mobile applications and its pages / screens as well as usage patterns, in order for us to ensure that all parts of our website and mobile applications are working properly. These technologies are used to provide anonymous, aggregated data on how web- and mobile-users interact with our websites or mobile applications.||Product
||Vendor||Link to Vendor's Privacy Notice|
|Adobe Analytics||Adobe Systems Inc.||Privacy|
|Adobe SDK||Adobe Systems Inc||Privacy|
|Decibel||Decibel Insight Ltd.||Privacy
|Qualtrics XM (website functioning)||Qualtrics LLC.|
|Personalisation||These tracking technologies are used to enhance your user experience on our websites and mobile applications (i.e. screen layouts, preferred language and country location and to offer you personalized content that matches your interests)||Product
||Vendor||Link to Vendor's Privacy Notice|
|Adobe Target||Adobe Systems Inc.||Privacy|
|Adobe Audience Manager||
Adobe Systems Inc.
|Advertising||These tracking technologies are used to (i) provide you with more relevant and useful advertising and to limit how many times you see an ad, (ii) help us improve the effectiveness of our advertising efforts and/or (iii) display Credit Suisse advertisements when you visit third-party websites with whom we have marketing relationships. They can be shared with vendors or advertisers.||Tool||Provider||Link to Vendor's Privacy Notice|
|App Nexus||Xaxis LLC||Privacy|
|Bing Ads Conversion||
|Google Ads Conversion||Google Inc.||Privacy|
|MIQ||MiQ Digital Ltd||Privacy|
Mechanisms to control the use of tracking technologies
Consent Manager on our website and mobile applications
You can decline consent for us to use third-party cookies, pixels, social media plugins and other tracking technologies when your device first accesses our website and/or mobile application by adjusting your privacy settings on the consent manager screen. The consent manager will display when:
Website (i) your device accesses our website for the first time, (ii) your device accesses our website for the first time after deleting cookies in your browser, or (iii) you click the "Privacy Preferences" link at the bottom of each page of our website. Please note that if you are using a shared device, consent preferences may already have been set. You cannot decline consent for the use of Necessary Cookies (as defined in the table above) that are used to ensure the functionality and/or maintenance of our website.
Mobile Applications (i) when you first install and launch one of our mobile applications, (ii) you delete, reinstall and launch one of our mobile application, (iii) you first install and launch our mobile applications on a new or additional device, or (iiii) open the "Privacy Preferences" in your personal settings within the mobile applications.
Do Not Track settings
Through certain web browser settings, you may have the option to utilize Do Not Track technology to control the tracking of your online activities across websites and/or mobile applications. We honor and abide by Do Not Track browser technology signals. Please note, however, that Credit Suisse may not always be able to recognize Do Not Track signals from your browser. The use of Do Not Track technology may prevent the consent manager from properly displaying.
Please note that, unlike cookies, you cannot control the deletion of tracking pixels yourself (e.g. by deleting them from your browser cache) because tracking pixels, unlike cookies, are stored on the servers of online advertisers and not in your browser.
Newsletters and Marketing-E-Mails
By providing your e-mail address, you consent to receive newsletters and other marketing e-mails from Credit Suisse.
In order to constantly improve our offers and to send you content that corresponds to your interests, we track your behavior in connection with the newsletters and other marketing e-mails (e.g. e-mail opens and clicks).
We reserve the right to share your data with affiliated entities of the Credit Suisse Group globally and to have such data processed by a service provider globally on our behalf.
Our websites and mobile applications may contain hyperlinks to other websites that are not operated or monitored by Credit Suisse. These other websites are not subject to this Policy and we are not responsible for their content or for their treatment of personal data. Your use of these links will be at your own risk.
Thank you for using our website and/or mobile application!
For additional questions, you may contact the Credit Suisse Group Data Protection Officer at:
Credit Suisse Services AG, London Branch
Credit Suisse Group Data Protection Officer
One Cabot Square
London E14 4QJ United Kingdom