Privacy policy
As of: 10 April 2026
This privacy policy explains how TecMinds GmbH (hereinafter “we”, “us” or “TecMinds”) processes personal data in connection with operating the website wield.ch and the Wield software-as-a-service. It applies to all visitors to the website and to customers who use Wield as registered users.
We comply with the revised Swiss Federal Act on Data Protection (FADP / nDSG) and, where applicable, the EU General Data Protection Regulation (GDPR).
1. Controller
TecMinds GmbH
Neustadtstrasse 8a
6003 Lucerne, Switzerland
UID: CHE-334.650.060
Email for privacy enquiries:
info@tecminds.ch
For users in the EU/EEA: pursuant to Art. 27 GDPR, appointment of an EU representative is currently not required as we primarily offer Wield for the Swiss market. Should this change, a representative will be designated and listed here.
2. Data we process
Account and contract data
When you create a Wield account we process name, email address, company name and an encrypted password. We also store usage data such as login times, selected subscription tier and billing information.
Candidate data (third-party personal data)
Wield allows customers to upload CVs and other application documents. From these documents we extract structured information such as name, contact details, work experience, education, languages and other recruitment-related attributes. Interview recordings, transcripts and assessments are also stored on behalf of customers.
For this candidate data, TecMinds acts as a processor (nDSG Art. 9 / GDPR Art. 28) on behalf of each Wield customer. The customer (controller) is responsible for the legal basis, information duties towards data subjects and the exercise of data subject rights.
Technical data
When you visit the website and use Wield we collect technically necessary data: IP address, browser type and version, operating system, time of access, URL requested, referrer, and error and audit logs. This data is used for operation, security and troubleshooting.
Anonymised usage data (hosted service only)
If you use Wield as a hosted service (SaaS), we collect anonymised usage data — e.g. how often certain features are used, how long processing takes and which workflows are typically followed. All personally identifiable characteristics are irreversibly removed before storage; it is not possible to infer individual users, customers or candidates.
We use this data to operate the service reliably, detect bottlenecks early, scale infrastructure as needed and improve Wield. This section does not apply to customers who self-host Wield.
3. Purposes of processing
- Providing, maintaining and improving Wield
- Automated extraction of information from application documents
- AI-assisted matching, interview preparation, assessment and briefing generation
- Customer support and communication
- Billing and fulfilment of contractual obligations
- Security, abuse prevention and compliance with legal duties
- Anonymised analysis of usage for stability, performance and product development (hosted SaaS only, not self-hosting)
4. Legal bases
Processing is based on:
- the contract with our customers (performance of contract, GDPR Art. 6 (1) (b)),
- our legitimate interest in secure and efficient operation (GDPR Art. 6 (1) (f)),
- legal obligations (GDPR Art. 6 (1) (c)),
- and — where required — consent (GDPR Art. 6 (1) (a)).
5. Recipients and processors
To provide Wield we use carefully selected vendors who process data on our behalf, including:
- Application hosting: Infomaniak (Switzerland, Geneva data center) with Coolify operations in Switzerland
- Database: Managed PostgreSQL hosted at Infomaniak (Switzerland, Geneva region)
- AI model providers: Gemini via Google Cloud Zurich region (Switzerland); further model providers only where contractually agreed
- Email delivery: To be announced at public launch; no automated email communication is sent at present
- Analytics and error tracking: Currently server-side structured logs only; any dedicated monitoring service will be communicated before public launch
Data processing agreements (DPAs) are in place with all processors. Where data is transferred outside Switzerland or the EEA we ensure an adequate level of protection (e.g. EU Standard Contractual Clauses and supplementary measures).
6. Retention
Account and contract data are retained for the duration of the customer relationship and thereafter until statutory retention periods expire (typically 10 years). Candidate data are stored on the customer’s instructions and deleted on instruction or when the contract ends. Technical logs are generally anonymised or deleted after 90 days at most.
7. Rights of data subjects
You have the right to request information about personal data we process, and to request rectification of inaccurate data, erasure, restriction of processing and — where applicable — data portability and objection.
Contact us at info@tecminds.ch. For candidate data, please contact the contracting organisation (our customer), as we process that data solely as a processor on their behalf.
You also have the right to lodge a complaint with a supervisory authority: in Switzerland with the Federal Data Protection and Information Commissioner (FDPIC), and in the EU/EEA with the competent national authority.
8. Data security
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse and tampering, including encryption (TLS in transit, encrypted databases), access controls, tenant isolation, audit logs and regular security reviews.
9. Cookies and similar technologies
Our website uses only technically necessary cookies and browser storage required for operation and authentication. Tracking or marketing cookies are not used at present. If this changes, a cookie banner with granular consent will be introduced.
10. Changes to this policy
We may update this privacy policy to reflect legal or operational changes. The current version is available at /privacy.