Privacy Policy

Last updated: 17 May 2026

This notice explains how Graffstudio processes personal data when you visit this website or contact us. It is drafted for a Swiss-based creative studio and takes into account the Swiss Federal Act on Data Protection (FADP/nFADP) and, where applicable, the EU/UK GDPR.

This page is provided for transparency and is not a substitute for tailored legal advice.

1. Controller

Graffstudio
Geneva, Switzerland
Taipei, Taiwan
Burgos, Spain

Email: info@graffstudio.ch

2. Data we process

Technical data: IP address, browser, device information, requested pages, date/time and server logs generated when the website is delivered.
Contact data: information you send us by email or through social media, such as name, email address, project details and message content.
Preference data: your cookie choice and, where used by the site, language preference stored locally in your browser.

3. Purposes and legal bases

To operate, secure and maintain the website.
To respond to enquiries and manage potential projects.
To remember privacy/cookie preferences.
To comply with legal obligations and protect legitimate interests.

Where consent is required, for example for non-essential cookies or similar technologies, we ask for it before using them.

4. Cookies and similar technologies

The website currently does not use advertising cookies, analytics cookies or tracking pixels. It may store essential or preference information in your browser, such as your cookie decision and language preference. You can accept or reject non-essential cookies in the cookie banner and change your choice at any time using “Cookie settings”.

See our Cookie Policy for details.

5. Third-party services and links

The site links to Instagram profiles. Instagram is only contacted when you click those links. Earlier external font loading has been removed so that the website does not need to call Google Fonts from visitors’ browsers.

6. Hosting and recipients

The website is hosted by a hosting provider in Switzerland/Europe. Technical service providers may process data only as needed to deliver, secure and maintain the website. We do not sell personal data.

7. International transfers

If data is transferred outside Switzerland, the EEA or the UK, we rely on appropriate safeguards where required, such as adequacy decisions or standard contractual clauses.

8. Retention

Server logs are kept only as long as necessary for security, diagnostics and legal requirements. Contact messages are kept for the time needed to handle the enquiry and maintain business records.

9. Your rights

Depending on applicable law, you may have rights of access, rectification, deletion, restriction, objection, portability and withdrawal of consent. To exercise rights, contact us at info@graffstudio.ch.

10. Supervisory authority

In Switzerland, you may contact the Federal Data Protection and Information Commissioner (FDPIC). If EU/UK GDPR applies, you may also contact your local data protection authority.

11. Changes

We may update this policy when the website or legal requirements change. The current version is published on this page.