Home · Newsletter · Links · 

Data protection declaration

Protecting your data is important to us. We take our responsibility for the security of your personal data very seriously. We have adapted our data protection declaration to bring it in line with the latest changes in data protection legislation.

1. What data are covered by this data protection declaration?
All personal data are covered by this data protection declaration. This includes all client-identifying data, most notably names, mailing and shipping addresses, telephone numbers and email addresses.

2. Who is responsible for the careful handling of your data?
Responsibility for data processing rests with CREA Trust reg. or, as appropriate, CREA Asset Management Trust reg., 9490 Vaduz. 

3. When do we use and process personal data?
We know that the careful handling of your personal data is very important to you. Accordingly, data protection is a high priority for us. We comply without exception with the stringent provisions of the Liechtenstein Data Protection Ordinance.

All storage, processing and use of personal data are subject to the provisions of the EU General Data Protection Regulation (GDPR). Under this legislation we also handle personal data and information we receive outside Liechtenstein, save where forbidden by mandatory local law.
In certain cases, however, we require data from you, notably for

  • making contact with you;
  • mailing out our "Investment Review" publication;
    In this regard, your email address will be used until and unless you decide to stop receiving the publication. You can unsubscribe at any time.
  • mailing out asset summaries;
  • mailing out invoices for services rendered.

We use your personal data for the above purposes and, if you are registered with us as a client, also for proving to the Financial Market Authority that the legally prescribed due diligence has been carried out.

4. What do we do with your personal data?
We store your personal data as proof of our business relationship with you.

5. Are we allowed to pass your data on to third parties?
Where data undergo automated processing by us based on your consent or in performance of a contract, you have the right to disclosure of those data to you or third parties. Such disclosure will be in a machine-readable format. If you would like your data transferred directly to another responsible entity, this will be done only if it is technically feasible.

6. Do we use cookies?
To enhance the experience of visiting our website and to facilitate the use of certain functions, we may use so-called cookies on various web pages. Cookies are small text files saved to your device. Some of the cookies we use – known as session cookies – are erased once the browser session is over (i.e. when you close your browser). Other cookies – known as persistent cookies – remain on your device to allow us or our partner firms to recognise your browser on your next visit.

You can set your browser to inform you whenever cookies are imported, to allow you to accept or reject cookies individually or to exclude cookies under certain conditions or as a general default setting.

7. Do we use Google Analytics?
This website uses Google Analytics, a web analytics service supplied by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. At https://tools.google.com/dlpage/gaoptout?hl=en Google provides a browser plug-in which can be used to deactivate Google Analytics. Google Analytics uses cookies. These are small text files which enable specific user-related information to be stored on the user's device, allowing Google to analyse the use of our website presence. The information recorded by the cookie concerning your use of our web pages (including your IP address) is normally transmitted to a Google server in the USA and stored there. Please note that on this website Google Analytics has been expanded to include the code "gat._anonymizeIp();" to allow anonymised recording of IP addresses (IP masking). If IP masking is active, Google abbreviates IP addresses within European Union or European Economic Area member states, thereby preventing any conclusions from being drawn as to your identity. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and abbreviated there. Google complies with the data protection provisions of the Privacy Shield Framework and is a registered participant in the Privacy Shield programme of the US Department of Commerce. Google uses the information it gathers in order to analyse the use of our websites, to compile reports on it for our attention and to provide other related services to us. For more information, please visit https://www.google.com/intl/en/analytics/privacyoverview.html.

8. How do we handle anonymised data?
Whenever you visit our website, certain information on your visit (date, time, pages visited) may be saved on our server. These data do not count as personal data; instead, they are anonymised. They may be analysed by us solely for statistical purposes.

9. Do you have a right to obtain information? When are your data deleted?
Under the Data Protection Ordinance you have the right to obtain information on your stored data free of charge and, where applicable, the right to have those data corrected, blocked or deleted if you are no longer registered as a client with us. (This is subject to statutory data storage periods. The law provides for a variety of data storage obligations and periods. Once the 10-year period expires, the data in question can be deleted.)

If you have any questions regarding the gathering, processing and use of your personal data, please contact us. Send us a message for the attention of the Data Protection Officer or via email to .


Vaduz, 12/06/2018