top of page

Privacy Policy for Website Visitors

Thank you for your interest in marsa Treuhand Anstalt.
In this privacy policy, we inform you how we collect and process personal data (hereinafter referred to as “personal data”) in connection with your visit to our website.

​

I. Name and Address of the Controller


The controller within the meaning of the General Data Protection Regulation (GDPR) is:


marsa Treuhand Anstalt
Austrasse 15
FL-9495 Triesen
Liechtenstein
E-Mail: info@marsa.li
Telephone: +423 2201000
 

II. General Information on Data Processing

​

1. Scope of Processing of Personal Data

​

The processing of personal data is limited to data necessary to provide a functional website and to offer our content and services.

Personal data is processed exclusively for the purposes agreed with you or on a legal basis within the meaning of the GDPR. Only such personal data is collected as is necessary for the fulfilment of our tasks or that you voluntarily provide to us.

 

2. Your Rights (Rights of Data Subjects)

​

You have the right to request information about the personal data processed by us. In particular, you may request information about:

  • the purposes of processing

  • the categories of personal data processed

  • the recipients or categories of recipients

  • the planned retention period

  • the existence of a right to rectification, erasure, restriction of processing or objection

  • the right to data portability, where applicable

  • the origin of the data, if not collected directly from you

  • the existence of automated decision-making, including profiling

You also have the right to withdraw any consent given for the processing of your personal data at any time with effect for the future.

If you believe that the processing of your personal data violates applicable data protection regulations, you have the right to lodge a complaint with the competent data protection authority.

 

 

III. Description and Scope of Data Processing

 

1. Provision of the Website

​

Each time our website is accessed, our system automatically collects data and information from the device used.

The following data may be collected:

  • Browser type and browser version

  • Operating system

  • Internet service provider

  • IP address

  • Date and time of access

This data is not combined with other data sources.

Processing is based on Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in the technically error-free presentation, stability and optimisation of our website. For this purpose, server log files must be recorded.

We do not conduct any web analytics and do not use web analysis tools (e.g. Google Analytics). Visitor or usage data is not evaluated.

 

2. Cookies

​

Our website uses cookies to ensure a user-friendly experience. Cookies are small text files automatically created by your browser and stored on your device.

Cookies remain stored until you delete them. They allow us to recognise your browser during a subsequent visit.

You may configure your browser to inform you about the setting of cookies and allow or reject them on a case-by-case basis. Please note that disabling cookies may limit the functionality of our website.

The legal basis for the processing of data through cookies is Art. 6 para. 1 lit. f GDPR.

 

3. Contact

​

If you contact us by e-mail or other electronic means, the data you provide will be stored for the purpose of processing your enquiry and any follow-up questions.

This data will not be disclosed to third parties without your consent.

 

4. Plugins and External Services

​

Google Web Fonts

Our website uses Google Web Fonts to ensure a consistent display of fonts. When accessing a page, your browser loads the required fonts and may establish a connection to Google servers. In doing so, your IP address may be transmitted to Google.

The use of Google Web Fonts is based on our legitimate interest in a uniform and appealing presentation of our online content within the meaning of Art. 6 para. 1 lit. f GDPR.

Further information can be found at:
https://developers.google.com/fonts/faq
https://policies.google.com/privacy?hl=en

 

Google Maps

Our website uses the Google Maps service via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

To use Google Maps, it is necessary to store your IP address. This information is generally transmitted to and stored on Google servers in the United States. We have no influence on this data transfer.

 

The use of Google Maps is based on our legitimate interest in an appealing presentation of our website and the easy identification of the locations indicated on it within the meaning of Art. 6 para. 1 lit. f GDPR.

Further information can be found in Google’s privacy policy:
https://policies.google.com/privacy?hl=en

 

IV. Data Security

We use SSL/TLS encryption on our website with the highest level of encryption supported by your browser. An encrypted connection is indicated by the lock symbol in your browser’s address bar.

In addition, we implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, manipulation, loss or destruction.

Our security measures are continuously reviewed and updated in line with the current state of technology.

Privacy Policy for Clients

The protection of your personal data is of great importance to marsa Treuhand Anstalt.
Below, we inform you how we collect, process and protect personal data (hereinafter referred to as “personal data”) within the framework of our mandate relationships

​

I. Name and Address of the Controller


The controller within the meaning of the General Data Protection Regulation (GDPR) is:


marsa Treuhand Anstalt
Austrasse 15
FL-9495 Triesen
Liechtenstein
E-Mail: info@marsa.li
Telephone: +423 2201000
 

II. General Information on Data Processing

​

1. Scope of Processing of Personal Data

​

The processing of personal data is limited to data required for the establishment, execution and administration of mandate relationships as well as for the fulfilment of statutory and regulatory obligations.
Personal data is processed exclusively for the purposes agreed with you or on the basis of a legal ground within the meaning of the GDPR. Only such personal data is collected as is necessary for the provision of our services or that you voluntarily provide to us

 

2. Your Rights (Rights of Data Subjects)

​

You have the right to request information about the personal data processed by us. In particular, you may request information about:

  • the purposes of processing

  • the categories of personal data processed

  • the recipients or categories of recipients

  • the planned retention period

  • the existence of a right to rectification, erasure, restriction of processing or objection

  • the right to data portability, where applicable

  • the origin of the data, if not collected directly from you

  • the existence of automated decision-making, including profiling

You also have the right to withdraw any consent given for the processing of your personal data at any time with effect for the future.

If you believe that the processing of your personal data violates applicable data protection regulations, you have the right to lodge a complaint with the competent data protection authority.

 

III. Description and Scope of Data Processing

​

1. Purposes of Data Processing

​

We process personal data of our clients in particular for the following purposes:

  • Activities pursuant to Art. 2 of the Trustees Act in conjunction with persons and company law, in particular:

    • Mandate and legal entity administration

    • Fulfilment of statutory accounting and documentation obligations

    • Handling of correspondence

  • Fulfilment of statutory and regulatory obligations, in particular under:

    • Persons and Company Law

    • Trustees Act

    • Due Diligence Act

    • Tax law and international tax agreements

 

2. Categories of Data

For the purposes stated above, we process in particular the following categories of personal data:

 

Client and Address Data
Name, company name, date of birth, private and/or business address, nationality, profession, telephone number, e-mail address
Recipients: external service providers (e.g. banks, asset managers, auditors) and public authorities (e.g. supervisory or tax authorities)

 

Identification Data
Identification documents (e.g. passport or ID copies), utility bills, tax identification numbers, death certificates, specimen signatures
 

Recipients: banks, asset managers

Due Diligence Documentation
Information on contracting parties, beneficial owners, profile of the business relationship, professional and personal background, due diligence clarifications under the Due Diligence Act
Recipients: banks, authorities

 

Mandate Information
Company documents, bank documents, correspondence, board resolutions, due diligence documentation
Recipients: no disclosure

 

Accounting Data
Transaction and booking information
Recipients: tax authorities (for domestic taxpayers)

 

Correspondence
Client instructions and general communication
Recipients: no disclosure

 

Legal Entity Data
Articles of association, by-laws, certificates, mandate agreements, signing authorities
Recipients: no disclosure

 

Tax Reporting Data
FATCA, AEOI and other tax-related reporting
Recipients: tax authorities

 

3. Legal Bases for Processing

Personal data is processed on the following legal grounds:

  • Performance of a contract or pre-contractual measures (Art. 6 para. 1 lit. b GDPR)

  • Compliance with a legal obligation (Art. 6 para. 1 lit. c GDPR)

  • Performance of a task carried out in the public interest (Art. 6 para. 1 lit. e GDPR)

  • Legitimate interests pursued by marsa Treuhand Anstalt or third parties (Art. 6 para. 1 lit. f GDPR)

Processing activities based on legitimate interests may include in particular:

  • internal administrative purposes

  • Evaluations

  • marketing and direct marketing

  • defence against unjustified claims

 

4. Recipients of Personal Data

Personal data is disclosed exclusively within the scope of mandate execution and for the fulfilment of statutory and regulatory obligations, in particular to:

  • Banks

  • asset managers

  • insurance companies

  • Lawyers

  • Auditors

  • other cooperation partners

  • authorities and courts

  • tax authorities (e.g. within the framework of AEOI or FATCA)

 

5. Transfer to Third Countries

If personal data is transferred to countries outside the European Economic Area, such transfer takes place exclusively in compliance with statutory requirements, in particular through:

  • adequacy decisions of the European Commission

  • EU standard contractual clauses

  • other appropriate safeguards

Further information can be provided upon request.

​

6. Origin of the Data

Personal data is predominantly obtained directly from our clients and additionally from third parties, in particular:

  • Banks

  • asset managers

  • Auditors

  • other intermediaries

 

7. Retention Period

Personal data is processed during the duration of the business relationship and subsequently retained in accordance with statutory retention obligations (in particular PGR, Due Diligence Act, ABGB) for generally ten years. Longer retention occurs only where required by law, contract or for evidentiary purposes.

 

8. Automated Decision-Making

No automated decision-making within the meaning of Art. 22 GDPR takes place.

​

9. Requirement to Provide Data

The provision of the personal data listed under section 2 is necessary in order to provide our services in compliance with legal requirements. Failure to provide such data may result in the non-establishment or termination of the business relationship.

 

IV. Data Security

​

We implement appropriate technical and organisational security measures to protect personal data against unauthorised access, loss, manipulation or destruction.

This includes in particular the use of SSL/TLS encryption and continuously updated security standards.

Privacy Policy for  Job Applicants

The protection of your personal data is of great importance to marsa Treuhand Anstalt.
Below, we inform you how we collect, process and protect personal data (hereinafter referred to as “personal data”) in the context of recruitment procedures.

​

I. Name and Address of the Controller


The controller within the meaning of the General Data Protection Regulation (GDPR) is:


marsa Treuhand Anstalt
Austrasse 15
FL-9495 Triesen
Liechtenstein
E-Mail: info@marsa.li
Telephone: +423 2201000
 

II. General Information on Data Processing


1. Scope of Processing of Personal Data
We process personal data of job applicants exclusively to the extent necessary to carry out the recruitment process and to assess suitability for a posted or potential position.
Processing takes place only for the purposes communicated to you or on the basis of a legal ground within the meaning of the GDPR. Only such personal data is processed as you provide to us in the course of your application or as is necessary for the recruitment process.
 

2. Your Rights (Rights of Data Subjects)
You have the right to request information about the personal data processed by us. In particular, you may request information about:

  • the purposes of processing

  • the categories of personal data processed

  • the recipients or categories of recipients

  • the planned retention period

  • the existence of a right to rectification, erasure, restriction of processing or objection

  • the right to data portability, where applicable

  • the origin of the data, if not collected directly from you

  • the existence of automated decision-making, including profiling


You also have the right to withdraw any consent given at any time with effect for the future.
If you believe that the processing of your personal data violates applicable data protection regulations, you have the right to lodge a complaint with the competent data protection authority.
 

III. Description and Scope of Data Processing
 

1. Collection of Data in the Recruitment Process
Within the framework of the recruitment process, we process in particular the following personal data:
Identification and contact data (e.g. name, address, telephone number, e-mail address)
Personal details (e.g. date of birth, nationality)
Education and qualification data
Information on professional career and work experience
Application documents such as CV, cover letter, motivation letter, certificates and references
Any additional information voluntarily provided by you
This data is processed exclusively for the purpose of personnel selection and conducting the recruitment process.
 

2. Legal Basis for Processing
The processing of your personal data within the recruitment process is based on:
§ 1173a Art. 28a ABGB
Art. 6 para. 1 lit. b GDPR (performance of pre-contractual measures)
If, with your explicit consent, we include your application in a candidate pool for potential future cooperation, processing is additionally based on Art. 6 para. 1 lit. a GDPR.
 

3. Disclosure of Data
Your personal data will not be disclosed to third parties without your consent.
No automated decision-making within the meaning of Art. 22 GDPR takes place.
 

4. Retention Period
If no employment relationship is established, your application documents will be deleted no later than six months after completion of the recruitment process, unless statutory retention obligations or legitimate interests (e.g. defence against legal claims) require longer retention.
 

IV. Data Security


We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, loss, manipulation or destruction.
This includes in particular the use of SSL/TLS encryption and continuously reviewed security standards in line with the state of the art.
 

bottom of page