Enterprise-grade privacy, built into every layer

Introduction

This privacy statement describes how FWRD Sàrl ("we", "us", "our") collects, uses, and protects your personal data. It applies to all our activities, including our web-based Commodity Trading and Risk Management (CTRM) application named Keops, designed for enterprises, as well as our publicly accessible services, notably our website https://fwrd.ch and its subdomains.

Our data processing strictly complies with the Swiss Federal Act on Data Protection (nLPD) and, where applicable, the General Data Protection Regulation (GDPR) of the European Union.

Data collected

The nature and volume of data we collect depend on the context of your interaction, whether it involves using our Keops solution or browsing our website and its subdomains.

Keops Enterprise application

In the context of using our professional Keops application, we collect the following categories of data, necessary for the execution of our service contract and the security of your account:

  • Professional identification data: surname, first name, job title, and professional email address.
  • Technical connection data: IP address, device type, and browser used.
  • Activity data: usage history, event logs, and business data entered into the application.

Website and subdomains

When browsing our website https://fwrd.ch and its subdomains, we primarily collect automated technical data via your browser.

  • Session and navigation data: IP address (anonymized), device configuration, browser type, and approximate location data.
  • Usage data: pages viewed, session duration, and interactions with our services.

Data collection methods

We collect your personal and business data directly and transparently. We do not buy, rent, or use any data from external sources or data brokers. Your data is communicated to us exclusively by you or generated automatically during your interaction with our systems.

  • Via our Keops software: collection occurs directly when you manually enter information into application forms, during user account creation, or automatically when recording your trading operations and session activity.
  • Via our website and subdomains: data is collected during your browsing and when voluntarily submitting forms. We use self-hosted technical and analytical cookies to ensure site functionality and measure our audience.

Purpose of processing

Data is processed for the following specific purposes.

  • Provision, maintenance, and optimization of our Keops web application (contractual execution).
  • Customer relationship management and technical support.
  • Ensuring transaction security, fraud prevention, and system protection.
  • Anonymous statistical analysis to improve our website.
  • Compliance with Swiss legal obligations (accounting, taxation, evidence retention).

Data retention period

We retain your personal data only for as long as necessary to achieve the purposes described above or to comply with our legal obligations.

  • Client data (Keops): retained for the duration of the contract and up to 10 years after its termination, in accordance with Swiss commercial and tax retention obligations.
  • Navigation data (website and subdomains): retained for a maximum period of 12 months, unless a legal obligation requires longer retention or it is necessary for establishing offenses.

Disclosure to third parties and integrated services

We do not sell or rent your personal data. Your data remains under our exclusive control and is not transmitted to any commercial third party.

  • Hosting and infrastructure: all our services, including Keops and our website, are deployed on our own containerized infrastructure using the managed Kubernetes service of Infomaniak SA. Our servers are located exclusively in Switzerland. Infomaniak acts solely as an underlying infrastructure provider and we retain full control over your data and its processing.
  • Self-hosted analytics and tracking: unlike many websites, we do not use any third-party analytics services (such as Google Analytics, Matomo Cloud, etc.). All our audience measurement and tracking solutions are self-hosted directly on our servers in Switzerland. Your navigation data never leaves our controlled environment.
  • Legal obligations: the only possible transmission to a third party occurs solely upon formal legal requisition from a competent Swiss authority.

Storage and security

Data is stored exclusively in Switzerland in Infomaniak SA's data centers, which are ISO 27001 certified. Your data is never transferred to third countries lacking an adequate level of protection.

Access to your data is strictly limited to FWRD Sàrl employees who need it to perform their duties (development, support, administration). All our employees are bound by a strict confidentiality obligation.

Your rights and options

In accordance with the nLPD and GDPR, you have the following rights, which you may exercise free of charge.

  • Right of access: obtain confirmation that we are processing your data and receive a copy.
  • Right to rectification: request correction of inaccurate or incomplete data.
  • Right to erasure: request deletion of your data, subject to our legal retention obligations.
  • Right to restriction of processing: request temporary blocking of your data in certain cases.
  • Right to data portability: receive your data in a structured format (applicable to data provided under the Keops contract).
  • Right to object: object, for reasons relating to your particular situation, to processing based on our legitimate interest.

To exercise these rights, simply contact us using the methods presented below. Proof of identity may be requested to verify your identity. You also have the right to lodge a complaint with the Federal Data Protection and Information Commissioner (FDPIC).

Legal framework and governing language

This privacy statement is governed primarily by the Swiss Federal Act on Data Protection (nLPD) and its implementing ordinances. For users residing in the European Union or when our services specifically target the European market, the provisions of the General Data Protection Regulation (GDPR) apply additionally, insofar as they offer an equivalent or higher level of protection.

This privacy policy may be made available in multiple languages to facilitate your understanding. In the event of any discrepancy in interpretation or contradiction between the different language versions, only the version drafted in the French language shall be authoritative and legally prevail.

Contact us

For any questions regarding this statement, to exercise your rights, or to report a security incident, please contact us at privacy@fwrd.ch. You can also reach us via the dedicated Contact Us page or by mail at the address below.

FWRD Sàrl
Route des Fayards 266
1290 Versoix
Switzerland

All rights reserved ©︎ 2026 FWRD Sàrl. Made with ♥︎ in Switzerland