In this privacy policy we inform you how we at Ulrich Associates AG collect and process personal data and how we thereby fulfill our legal obligations. The protection of your data is important to us and we are committed to protecting and safeguarding your data protection rights. This privacy policy also applies to the collection and processing of personal data of visitors to our website.

Personal data is understood to be all information relating to an identified or identifiable natural person, such as name, address, email address, etc.

Our data processing activities are generally subject to the current Swiss Data Protection Act (“DPA”) and, to the extent applicable, also to the European General Data Protection Regulation (“GDPR”).


The responsible for data processing is:

Ulrich Associates AG
Scheuchzerstrasse 35
8006 Zurich

Phone +41 43 268 0800

If you have any data protection concerns, you can send them to us at the above contact address.

A representative in the EU according to Art. 27 DGPR is not required.


1. Collection and processing of personal data

1.1 Data collection, processing and use at

When you visit our website, our server automatically collects data such as IP address, access date and time, accessed file, access website, operating system, browser, country and language settings, internet provider, transferred data volume and access status. This data is stored for a maximum of 30 months and is used to ensure website usage, system security, optimization of our services, prevention of fraud and abuse, compliance with legal requirements, protection of individuals and property of Ulrich Associates AG, prevention of deception and technical problems, and for internal statistics. The IP address is used to determine the country of residence and language setting of the website and is statistically evaluated in the event of network infrastructure attacks.

1.2 Recruitment process

To the extent permitted, we also extract certain data from publicly available sources (e.g. commercial register, press, Internet). In addition to the data about you that you give us directly (e.g. by sending us your resume or references) or that comes from our interview notes from conversations with you, the categories of personal data that we receive about you from third parties include, in particular, information from public registers, information related to your professional functions and activities, information about you in correspondence and meetings with third parties, information from the media and the Internet about you, to the extent that this is appropriate for the performance of our business activities.

By participating in the recruitment process, you consent to the processing of this data. We use this data to advise you individually. You can object to the data processing at any time.

2. Purposes of data processing and legal basis

Ulrich Associates AG is an internationally active executive search firm. Our services include the search, evaluation and integration of executives and specialists as well as their support. We use the personal data we collect primarily to conclude and process our contracts with our clients and to accompany executives and specialists throughout their careers. If you work for a customer or business partner, your personal data may of course also be affected in this capacity.

In addition, we also process personal data about you and other individuals, as permitted and as we deem appropriate, for the following purposes in which we (and sometimes third parties) have a legitimate interest consistent with the purpose:

  • Warranties of our operations, especially IT and our website;
  • Legal and regulatory compliance measures.

As far as the DGPR is applicable, data processing is based on the execution of the contract according to Art. 6 para. 1 lit. b DGPR when you use our services. The transfer of your data to clients is based on our contract with contractors. The use of your data to improve our services, for marketing purposes is based on the overriding legitimate interests according to Art. 6 para. 1 lit. f DGPR.

3. Data processing in connection with the use of our website

3.1 SSL or TLS encryption

This website uses SSL or TSL encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL encryption is activated, the data you transmit to us cannot be read by third parties.

3.2 Cookies / Tracking and other technologies

On our websites we only use technically necessary cookies and do not use external services. Specifically, the following information is collected when you visit our website: IP address, version of your operating system, version of your browser, date and time of access, amount of data transferred, destination address of access, origin address of access and access status.

Cookies help to make your visit to our website more user-friendly, efficient and relevant. Cookies are information files that your web browser automatically stores on your computer’s hard drive when you visit our website. They do not cause any damage to your hard drive and do not transmit any personal data to us. Please note that disabling cookies may prevent you from using all the features of our website.

3.3 Google Maps

We use a plug-in of the internet service Google Maps on our website. The operator of Google Maps is Google Inc. By using Google Maps on our website, information about the use of this website (incl. IP address) is transmitted to a Google server in the USA and also stored on this server. We have no knowledge about the exact content of the transmitted data, nor about their use by Google. Google may transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. If you disable Javascript in your browser, you prevent Google Maps from running. However, you will then also not be able to use any map display on our website. By using Google Maps, you consent to the described collection and processing of information by Google Inc. pursuant to Art. 6 (1) lit. f of the DSGVO. You can find out more about the privacy policy and terms of use for Google Maps here:

3.4 Contact form

If you contact us via the contact form or the e-mail addresses provided, we will always treat the data you provide in accordance with the applicable data protection regulations. The data you provide will be used exclusively to process your request.


4. Data transfer and data transmission abroad

We will only disclose your personal data to third parties if you have given your express consent, if there is a legal obligation to do so or if this is necessary to protect our rights, in the course of our business activities, if permitted and if it appears to us to be appropriate, either because they process it for us or because they want to use it for their own purposes. In particular, this concerns the following entities:

  • Potential employers (only with your consent);
  • Partner companies in particular of Cornerstone International Group in the context of international consulting and search mandates (only with your consent);

These recipients are mostly domestic, but may be anywhere in the world, including countries with less than equivalent data protection such as Switzerland. In particular, your data may be transferred to countries where Cornerstone International Group has a presence, provided that you have given us your consent to do so.

If the level of data protection in a country does not correspond to that in Switzerland or Europe, or if no consent to data transfer has been obtained, we ensure data protection contractually or with standard contractual clauses.


5. Duration of retention of personal data

We process and store your personal data as long as it is necessary for the fulfillment of our contractual and legal obligations or otherwise the purposes pursued with the processing. We process and store your personal data in particular with regard to current or future search requests. As soon as your personal data is no longer required for the above-mentioned purposes (e.g. retirement from employment, death), it will be deleted in principle and as far as possible.


6. Data security

At Ulrich Associates AG, we use appropriate technical and organizational security measures to protect your personal data from manipulation, loss, and unauthorized access. We continuously improve our security measures in line with technological developments.

Communication by e-mail, fax, cell phones or internet applications involves risks such as the possibility of viewing the content of the communication, its modification or loss. Ulrich Associates accepts no liability for this.


7. Disclaimer

The author assumes no responsibility for the correctness, accuracy, timeliness, reliability and completeness of the information. Liability claims regarding damage caused by the use of any information provided, including any kind of information which is incomplete or incorrect, will therefore be rejected. All offers are non-binding. The author expressly reserves the right to change, supplement or delete parts of the pages or the entire offer without prior notice or to discontinue publication temporarily or permanently.


8. Liability for links

References and links to third-party websites are outside our area of responsibility. Any responsibility for such websites is declined. Access and use of such websites is at the user’s own risk. The copyright and all other rights to the content, images, photos or other files on the website belong exclusively to the owner of this site, or to the specifically named rights holders, or have been acquired and licensed for this purpose. The written consent of the copyright holders must be obtained in advance for the reproduction of any elements.


9. Privacy

Based on Article 13 of the Swiss Federal Constitution and the data protection provisions of the Swiss Confederation (Data Protection Act, DPA), every person is entitled to protection of his or her privacy and to protection against misuse of his or her personal data. We comply with these provisions. Personal data is treated as strictly confidential and is neither sold nor passed on to third parties. In close cooperation with our hosting providers, we strive to protect the databases as well as possible against unauthorized access, loss, misuse or falsification. When you access our web pages, the following data is stored in log files: IP address, date, time, browser request and general transmitted information about the operating system or browser. This usage data forms the basis for statistical, anonymous evaluations so that trends can be identified, which we can use to improve our offerings accordingly.


10. Rights of the data subject

You have the following rights with respect to personal data concerning you:

  • Right of information;
  • Right of rectification;
  • Right of deletion;
  • Right to restriction of processing;
  • Right of objection to processing.

If data processing is based on your consent, you can revoke this at any time without giving reasons for the future. The revocation should be sent to the address In order to process your requests to exercise your rights, it may be necessary for you to identify yourself so that we can clearly identify you.

In Switzerland, there is no formal right of appeal to the data protection supervisory authority, but you can report what you consider to be unlawful data processing. If the GDPR applies, you have a right of appeal to the relevant data protection supervisory authority in the EU.


11. Changes

We may amend this privacy policy at any time without prior notice. The current version published on our website applies. Insofar as the data protection declaration is part of an agreement with you, we will inform you of the change by e-mail or other suitable means in the event of an update.


Status 08.2023