{"id":9069,"date":"2025-09-15T07:11:11","date_gmt":"2025-09-15T05:11:11","guid":{"rendered":"https:\/\/traniva.com\/?page_id=9069"},"modified":"2026-05-28T09:46:39","modified_gmt":"2026-05-28T07:46:39","slug":"compliance","status":"publish","type":"page","link":"https:\/\/traniva.com\/?page_id=9069&lang=en","title":{"rendered":"Compliance &#038; Governance"},"content":{"rendered":"<div class=\"wpb-content-wrapper\"><p>[vc_row][vc_column][vc_custom_heading text=&#8221;Traniva AG Compliance and Governance Policy&#8221; font_container=&#8221;tag:h1|text_align:left&#8221; use_theme_fonts=&#8221;yes&#8221; css=&#8221;&#8221;][\/vc_column][\/vc_row][vc_row][vc_column][vc_single_image image=&#8221;9068&#8243; img_size=&#8221;full&#8221; alignment=&#8221;center&#8221; css=&#8221;&#8221;][vc_column_text css=&#8221;&#8221;]    <div class=\"traniva-download-wrapper\" data-file=\"Traniva Compliance-Richtlinie_DE_v1_ALL_protected.pdf\">\n      <!-- Hauptbutton -->\n      <button type=\"button\" class=\"traniva-download-btn traniva-btn main-btn\">\n        Download the Compliance PDF      <\/button>\n\n      <!-- Verstecktes Formular -->\n      <div class=\"traniva-form-wrapper\" style=\"display:none;\">\n        \n<form method=\"post\" class=\"traniva-form\" id=\"traniva-form\">\n  \n  <label class=\"ti-field ti-col-6\">Vorname*<input name=\"vorname\" value=\"\" required><\/label>\n  <label class=\"ti-field ti-col-6\">Nachname*<input name=\"nachname\" value=\"\" required><\/label>\n  <label class=\"ti-field ti-col-6\">Firma*<input name=\"firma\" value=\"\" required><\/label>\n  <label class=\"ti-field ti-col-6\">Funktion*<input name=\"funktion\" value=\"\" required><\/label>\n  <label class=\"ti-field ti-col-12\">E-Mail*<input type=\"email\" name=\"email\" value=\"\" required><\/label>\n  <label class=\"ti-field ti-col-8\">Strasse<input name=\"strasse\" value=\"\"><\/label>\n  <label class=\"ti-field ti-col-4\">Hausnummer<input name=\"hausnummer\" value=\"\"><\/label>\n  <label class=\"ti-field ti-col-8\">Stadt<input name=\"stadt\" value=\"\"><\/label>\n  <label class=\"ti-field ti-col-4\">Land<input name=\"land\" id=\"traniva-land\" value=\"\"><\/label>\n\n  <div class=\"traniva-agb ti-col-8\">\n    <label>\n      <input type=\"checkbox\" name=\"agb\" id=\"traniva-agb\" required >\n      Ich habe die <a href=\"https:\/\/traniva.com\/?page_id=6808\" target=\"_blank\" rel=\"noopener\">AGB<\/a> gelesen.\n    <\/label>\n  <\/div>\n\n  <div class=\"traniva-submit ti-col-4\">\n    <input type=\"hidden\" name=\"file\" value=\"Traniva Compliance-Richtlinie_DE_v1_ALL_protected.pdf\">\n    <input type=\"hidden\" name=\"traniva_reg\" value=\"1\">\n    <button type=\"submit\" id=\"traniva-submit\" class=\"traniva-btn\" disabled>Registrieren<\/button>\n  <\/div>\n\n  <div class=\"traniva-note ti-col-12\" style=\"font-size:.85rem;color:#555;margin-top:.5em;opacity:.85;\">\n    Hinweis: Wenn sich der Download nicht automatisch \u00f6ffnet, pr\u00fcfen Sie bitte Ihren \n    <strong>Popup-Blocker<\/strong>. Alternativ erhalten Sie den Link zus\u00e4tzlich per E-Mail.\n  <\/div>\n<\/form>\n\n\n<script>\n\/* ============================================================\n   \ud83c\udf0d Automatische L\u00e4nder-Vorbelegung\n============================================================ *\/\ndocument.addEventListener('DOMContentLoaded', () => {\n  const input = document.getElementById('traniva-land');\n  if (!input) return;\n  let locale = '';\n  try { locale = Intl.DateTimeFormat().resolvedOptions().locale.toLowerCase(); }\n  catch(e) { locale = (navigator.language || navigator.userLanguage || '').toLowerCase(); }\n  const countryMap = {\n    'de-ch':'Schweiz','de-at':'\u00d6sterreich','de-de':'Deutschland','de':'Schweiz',\n    'fr':'Frankreich','it':'Italien','en-us':'USA','en-gb':'Grossbritannien',\n    'es':'Spanien','nl':'Niederlande','pl':'Polen'\n  };\n  const base = locale.split('-')[0];\n  const country = countryMap[locale] || countryMap[base] || '';\n  if (country && !input.value.trim()) input.value = country;\n});\n<\/script>      <\/div>\n    <\/div>\n    [\/vc_column_text][vc_column_text css=&#8221;&#8221;]<em>Valid for: Traniva AG, Zimbergstrasse 11, 8335 Hittnau, Switzerland<\/em><br \/>\n<em>Scope: All employees, governing bodies, third-party contractors (freelancers, near-shore\/offshore partners), suppliers and other business partners<\/em><br \/>\n<em>As of: September 2025<\/em><\/p>\n<hr contenteditable=\"false\">\n<h3>1. Purpose and scope<\/h3>\n<p>This policy sets out the principles, responsibilities and minimum requirements for compliance, data protection, information security, integrity and transparency at Traniva AG.<\/p>\n<p>It applies to all business activities of Traniva AG, in particular:<\/p>\n<ul>\n<li>Consultancy, project management and operational services in the SAP environment (e.g. S\/4HANA, SAP BTP\/RISE, Fiori, ABAP, EDI),<\/li>\n<li>Development, system integration, operation and support, including near-shore and off-shore services, <\/li>\n<li>Provision of service and support (e.g. application management services, helpdesk\/ticket systems) for existing Traniva customers,<\/li>\n<li>internal processes (finance, HR, marketing, sales, administration).<\/li>\n<\/ul>\n<p>This policy supplements the contractual agreements with customers and partners, the General Terms and Conditions of Traniva AG, and the Privacy Policy. In the event of any conflict, mandatory statutory provisions and expressly agreed contractual terms shall take precedence. <\/p>\n<hr contenteditable=\"false\">\n<h3>2. Governance &#038; Responsibilities<\/h3>\n<ul>\n<li>Board of Directors \/ Executive Management<br \/>\nOverall responsibility for compliance, risk management and reputation management.<\/li>\n<li>Compliance Officer (CO)<br \/>\nResponsible for drafting, maintaining and monitoring this policy; the point of contact for reports and audits.<\/li>\n<li>Data Protection Officer (DPO) \u2013 where appointed<br \/>\nSupport with data protection issues, data subject requests (DSARs), data protection impact assessments (DPIAs) and data transfers.<\/li>\n<li>Information Security Officer (ISO)<br \/>\nOverseeing the Information Security Management System (ISMS, based on ISO\/IEC 27001\/27701), risk and control management.<\/li>\n<li>Managers<br \/>\nImplementing guidelines within teams and projects; ensuring training is provided and acting as a role model.<\/li>\n<li>All employees and third-party contractors<br \/>\nObligation to comply with the policy, to cooperate with compliance and security measures, and to report any potential breaches immediately.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>3. Legal framework<\/h3>\n<p>Traniva complies with the applicable law, in particular:<\/p>\n<ul>\n<li>Switzerland: Swiss Code of Obligations (CO), Unfair Competition Act (UCA), Federal Act on Data Protection (revDPA) including regulations, <\/li>\n<li>EU\/EEA (where applicable): General Data Protection Regulation (GDPR), including provisions on international data transfers (Standard Contractual Clauses \u2013 SCCs, adequacy decisions),<\/li>\n<li>industry-specific standards and guidelines of our clients (e.g. GxP\/CSV in the pharmaceutical sector, food law, energy and utilities law),<\/li>\n<li>Competition law, antitrust law, export control law and sanctions law.<\/li>\n<\/ul>\n<p>Traniva does not claim to hold any formal certification, but adheres to recognised standards, in particular:<\/p>\n<ul>\n<li>ISO\/IEC 27001\/27701 (Information Security &#038; Data Protection Management),<\/li>\n<li>ISO 22301 (Business Continuity Management),<\/li>\n<li>ITIL-Best Practices im Service-Management.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>4. Integrity, Ethics &#038; Conduct<\/h3>\n<p>Traniva is committed to conducting its business in a fair, transparent and lawful manner.<\/p>\n<ul>\n<li>Zero tolerance of corruption and bribery (see Section 5 for details).<\/li>\n<li>Fair competition: no anti-competitive agreements, no unauthorised exchange of sensitive market information with competitors.<\/li>\n<li>Conflicts of interest: are disclosed and actively managed (e.g. personal relationships in relation to contract awards, secondary employment).<\/li>\n<li>Handling of confidential information: no use for private purposes or insider trading.<\/li>\n<li>Respect &#038; Diversity: Discrimination, bullying and harassment will not be tolerated.<\/li>\n<\/ul>\n<p>Breaches of these principles may result in disciplinary and legal consequences (see section 17).<\/p>\n<hr contenteditable=\"false\">\n<h3>5. Anti-corruption &#038; gifts<\/h3>\n<ul>\n<li>Gifts, invitations and other benefits are only permitted if they are of a reasonable value, transparent and given without any expectation of a quid pro quo.<\/li>\n<li>Gifts of cash or of monetary value are strictly prohibited.<\/li>\n<li>Internal thresholds and approval processes apply; prior approval must be obtained for amounts above a certain level.<\/li>\n<li>Donations and sponsorship are only accepted:\n<ul>\n<li>in accordance with the dual control principle,<\/li>\n<li>documented,<\/li>\n<li>without any political quid pro quo and in line with Traniva\u2019s values.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>6. Data Protection &#038; Privacy<\/h3>\n<h4>6.1 Roles &#038; Legal Basis<\/h4>\n<p>Depending on the project and the specific circumstances, Traniva may act as a data controller or a data processor. Roles, purposes, processing methods, recipients, retention periods and security measures are set out in contracts (e.g. in data processing agreements). <\/p>\n<p>Legal basis (depending on the applicable legal system):<\/p>\n<ul>\n<li>performance of a contract or the implementation of pre-contractual measures,<\/li>\n<li>legitimate interests (e.g. security, quality assurance, internal administration),<\/li>\n<li>Consents (verifiable, voluntary, revocable),<\/li>\n<li>legal obligations.<\/li>\n<\/ul>\n<h4>6.2 Data Protection Principles<\/h4>\n<p>Traniva adheres in particular to the following principles:<\/p>\n<ul>\n<li>Data minimisation &#038; purpose limitation,<\/li>\n<li>Accuracy and up-to-date nature of the data,<\/li>\n<li>Confidentiality, integrity &#038; availability,<\/li>\n<li>Storage limit (deletion or anonymisation as soon as the purpose ceases to apply),<\/li>\n<li>Privacy through design and privacy-friendly default settings (Privacy by Design\/Default).<\/li>\n<\/ul>\n<h4>6.3 Data subject rights (DSAR)<\/h4>\n<p>Data subjects have the right \u2013 depending on the applicable law \u2013 to:<\/p>\n<ul>\n<li>Information,<\/li>\n<li>Correction,<\/li>\n<li>Deletion,<\/li>\n<li>Restriction of processing,<\/li>\n<li>Data portability,<\/li>\n<li>Objection to certain processing activities.<\/li>\n<\/ul>\n<p>Traniva ensures that enquiries are processed and documented in a timely manner. The DPO and CO (where appointed) are specifically responsible for this. <\/p>\n<h4>6.4 International data transfers<\/h4>\n<p>International data transfers (e.g. to near-shore or off-shore locations or cloud providers outside Switzerland, the EU or the EEA) will only take place if an adequate level of protection is guaranteed, in particular through:<\/p>\n<ul>\n<li>suitability decisions,<\/li>\n<li>Standard Contractual Clauses (SCCs) and, where applicable, supplementary technical and organisational measures,<\/li>\n<li>contractual assurances regarding data protection and information security.<\/li>\n<\/ul>\n<h4>6.5 Record of Processing Activities &#038; DPIA<\/h4>\n<ul>\n<li>Where required by law, Traniva maintains a record of processing activities (RoPA) containing details of the purpose, categories, recipients, retention periods and technical and organisational measures.<\/li>\n<li>Data Protection Impact Assessments (DPIAs) are carried out for processing operations that pose a high risk to the rights and freedoms of data subjects.<\/li>\n<\/ul>\n<h4>6.6 Data protection incidents<\/h4>\n<ul>\n<li>There is a defined reporting and escalation process in place for data protection and security incidents.<\/li>\n<li>We comply with our reporting obligations to customers and authorities (DSG\/GDPR).<\/li>\n<li>Security incidents are documented, analysed and addressed through appropriate measures.<\/li>\n<\/ul>\n<p>Note: This policy sets out Traniva\u2019s internal principles. For specific details regarding the processing of personal data in connection with our website, partner portal and online services, please also refer to the information contained in the current version of Traniva AG\u2019s privacy policy. <\/p>\n<hr contenteditable=\"false\">\n<h3>7. Information Security (ISMS)<\/h3>\n<p>Traniva\u2019s information security policy is based on ISO\/IEC 27001\/27701. Key elements include: <\/p>\n<h4>7.1 Risk and Action Management<\/h4>\n<ul>\n<li>Regular risk assessments,<\/li>\n<li>defined security objectives (confidentiality, integrity, availability),<\/li>\n<li>documented list of measures and supporting evidence.<\/li>\n<\/ul>\n<h4>7.2 Access &#038; Identities<\/h4>\n<ul>\n<li>The principles of &#8220;least privilege&#8221; and &#8220;need-to-know&#8221;,<\/li>\n<li>strong password policies, multi-factor authentication (MFA) where possible,<\/li>\n<li>Temporary admin\/developer access and periodic recertification.<\/li>\n<\/ul>\n<h4>7.3 Encryption<\/h4>\n<ul>\n<li>Encryption in transit (e.g. TLS 1.2\/1.3),<\/li>\n<li>Encryption at rest (e.g. AES-256, where possible),<\/li>\n<li>secure key management.<\/li>\n<\/ul>\n<h4>7.4 Logging &#038; Monitoring<\/h4>\n<ul>\n<li>System and application logs,<\/li>\n<li>Transport and change logs (particularly in SAP environments),<\/li>\n<li>defined retention periods and protection against tampering.<\/li>\n<\/ul>\n<h4>7.5 Secure development &#038; SAP-specific controls<\/h4>\n<ul>\n<li>Secure Software Development Lifecycle (z. B. Code Reviews, Static\/Dynamic Testing),<\/li>\n<li>Restricted access to production systems, dual control principle in transport management,<\/li>\n<li>Segregation of duties (SoD) in critical processes,<\/li>\n<li>Deployment of Fiori\/UI5 front-ends and OData services,<\/li>\n<li>Secure configuration of cloud environments (e.g. RISE\/BTP), tenant separation, logging.<\/li>\n<\/ul>\n<h4>7.6 Physical Security &#038; Business Continuity<\/h4>\n<ul>\n<li>Access control for office spaces and data centres (including providers),<\/li>\n<li>Visitor management,<\/li>\n<li>Business Continuity Management (BCM) and Disaster Recovery (DR) with agreed RTO\/RPO targets, tested at defined intervals.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>8. Retention &#038; Deletion<\/h3>\n<ul>\n<li>Data is only stored for as long as is necessary for the relevant purpose or as required by law.<\/li>\n<li>This also applies to data processed via third-party platforms (e.g. Microsoft 365, Teams, SharePoint, OneDrive, Exchange) or similar cloud and collaboration services.<\/li>\n<li>The respective terms of use, compliance requirements and retention periods of the third-party providers also apply; Traniva accepts no liability for any breaches or delays on the part of these providers, but undertakes to do everything in its power to ensure that data is properly deleted or migrated once the retention periods have expired.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>9. Third parties, suppliers &#038; near-shore\/offshore<\/h3>\n<p>When selecting and managing third parties (suppliers, near-shore\/offshore partners, freelancers), Traniva takes particular account of:<\/p>\n<ul>\n<li>Due diligence (financial position, legal compliance, security, data protection, sanctions),<\/li>\n<li>contractual obligations (DPA\/AVV, SCC, TOMs, subcontractor agreements),<\/li>\n<li>Performance and safety monitoring, audit and inspection rights,<\/li>\n<li>Exit strategies (particularly for cloud and near-\/offshore setups).<\/li>\n<\/ul>\n<p>For near-shore and offshore operations, additional requirements apply to:<\/p>\n<ul>\n<li>clear role definitions and access rights,<\/li>\n<li>Data localisation and minimisation,<\/li>\n<li>Training and confidentiality agreements for those involved.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>10. Quality &#038; Process Management<\/h3>\n<p>Traniva uses established methods and tools, including:<\/p>\n<ul>\n<li>SAP Activate, Fit-to-Standard-Ans\u00e4tze,<\/li>\n<li>Jira\/Confluence, Signavio, SAC\/Power BI,<\/li>\n<li>ITIL-based change, incident and problem management with KPI and service reporting.<\/li>\n<\/ul>\n<p>Documentation (e.g. designs, tests, acceptance procedures, training) is an integral part of the service provision.<\/p>\n<hr contenteditable=\"false\">\n<h3>11. Communication, Marketing &#038; IP<\/h3>\n<ul>\n<li>Statements made in marketing, sales and public channels must be truthful, verifiable and not misleading.<\/li>\n<li>The intellectual property of customers, partners and Traniva (e.g. source code, concepts, documents, trademarks) must be protected and used only in accordance with contractual agreements.<\/li>\n<li>Non-disclosure agreements (NDAs) must be adhered to; sensitive information must be classified and protected in accordance with clear guidelines.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>12. Employment Law, Health &#038; Social Affairs<\/h3>\n<ul>\n<li>Compliance with applicable labour, social and health and safety standards,<\/li>\n<li>Promoting equal treatment, diversity and inclusive working conditions,<\/li>\n<li>clear guidelines for remote and home working, particularly regarding data protection and information security outside the office.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>13. Environment &#038; Sustainability (ESG)<\/h3>\n<p>Traniva takes environmental and sustainability considerations into account, including through:<\/p>\n<ul>\n<li>resource- and energy-efficient use of IT (e.g. cloud\/data centre efficiency),<\/li>\n<li>Taking sustainability criteria into account when selecting suppliers and service providers,<\/li>\n<li>Raising staff awareness of sustainable practices in their day-to-day work.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>14. Export controls &#038; sanctions<\/h3>\n<ul>\n<li>Screening of business partners and projects against relevant sanctions lists,<\/li>\n<li>no business dealings with sanctioned parties,<\/li>\n<li>Compliance with export control regulations, particularly in relation to technology and encryption issues.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>15. Training &#038; Awareness<\/h3>\n<ul>\n<li>Onboarding and ongoing training on compliance, data protection, information security and anti-corruption,<\/li>\n<li>training tailored to specific target groups (e.g. Secure ABAP, SoD, GxP, cloud security),<\/li>\n<li>ongoing awareness-raising through internal communications and awareness campaigns.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>16. Whistleblowing system &#038; investigation<\/h3>\n<ul>\n<li>Confidential reporting channels (e.g. a compliance email address or an internal whistleblowing system, which can be used anonymously if desired),<\/li>\n<li>Protection of whistleblowers against reprisals,<\/li>\n<li>documented investigations, appropriate corrective measures and lessons learnt in the event of confirmed breaches.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>17. Breaches, sanctions &#038; liability<\/h3>\n<ul>\n<li>Breaches of this policy may result in disciplinary action, including termination of employment or service.<\/li>\n<li>Contractual penalties, claims for damages or exclusion from future contracts may be enforced against partners and suppliers.<\/li>\n<li>We reserve the right to take civil and criminal action.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>18. Audits, reviews and improvement<\/h3>\n<ul>\n<li>Regular internal audits and \u2013 where agreed \u2013 customer audits,<\/li>\n<li>Management reviews, KPI tracking and monitoring of actions,<\/li>\n<li>continuous improvement based on the PDCA cycle (Plan\u2013Do\u2013Check\u2013Act).<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>19. Document control &#038; versioning<\/h3>\n<ul>\n<li>Version-controlled storage of this policy and associated documents,<\/li>\n<li>documented change log, clear responsibilities (CO\/ISO\/DPO),<\/li>\n<li>Review the validity at least once a year or in the event of significant changes to legislation, processes or organisational structure.<\/li>\n<\/ul>\n<hr contenteditable=\"false\">\n<h3>20. Contact<\/h3>\n<p>General compliance enquiries:<br \/>\nEmail: <strong>c<a href=\"mailto:compliance@traniva.ch\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">ompliance@traniva.ch<\/a><\/strong> (if available; otherwise, the central contact address)<\/p>\n<p>Data protection enquiries (in accordance with the privacy policy):<br \/>\nEmail: <a href=\"mailto:info@traniva.com\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">info@traniva.com<\/a> or the data protection contacts listed there<\/p>\n<p>Security concerns (e.g. regarding information security, technical incidents):<br \/>\nEmail: <a href=\"mailto:security@traniva.ch\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">security@traniva.ch<\/a> (if available)<\/p>\n<p>Traniva AG<br \/>\nZimbergstrasse 11<br \/>\n8335 Hittnau<br \/>\nSwitzerland<\/p>\n<hr contenteditable=\"false\">\n<h3>21. Use of AI at Traniva (EU AI Act &#038; the use of AI)<\/h3>\n<p>Traniva makes targeted use of artificial intelligence (AI) to support internal processes as well as in the context of client projects, marketing and communication initiatives. In addition to human project teams, this includes clearly designated virtual AI-supported \u2018AI teams\u2019 that assist with defined tasks within the project context (e.g. analyses, documentation, test support), always under the professional supervision of the relevant Traniva staff members. <\/p>\n<h4>21.1 Copywriting &#038; Language Support<\/h4>\n<ul>\n<li>AI systems may be used for drafting, editing and spell-checking texts (e.g. for marketing materials, presentations, internal documentation and customer proposals).<\/li>\n<li>All content is checked and approved by qualified staff before being used externally.<\/li>\n<li>AI-generated content is not accepted without verification; Traniva retains full responsibility for the content at all times.<\/li>\n<\/ul>\n<h4>21.2 Image and graphics generation<\/h4>\n<ul>\n<li>AI-generated images or graphics may be used for marketing purposes (e.g. websites, presentations, brochures).<\/li>\n<li>These are intended for visual support and illustration purposes and are not meant to represent real people, companies or objects.<\/li>\n<li>As a rule, there is no specific label stating that the images are &#8220;AI-generated&#8221;, as they are used solely as stylistic and illustrative elements.<\/li>\n<\/ul>\n<h4>21.3 Data Protection, Training &#038; Transparency<\/h4>\n<ul>\n<li>Where AI tools process personal data, this is done only where there is an appropriate legal basis (e.g. performance of a contract, overriding legitimate interest or \u2013 where necessary \u2013 consent) and an adequate level of data protection is ensured (e.g. through standard contractual clauses or contractual restrictions on the use of input data for training purposes).<\/li>\n<li>No personal data requiring special protection within the meaning of the revDSG or the GDPR is entered into generative AI tools unless there is an explicit legal basis for doing so.<\/li>\n<li>Training data from the AI services we use is generally provided by the respective providers and cannot be fully controlled by Traniva; however, we ensure that we work with reputable providers and that contractual commitments are met.<\/li>\n<\/ul>\n<p>Note: Further information on the use of AI in connection with the website, the partner portal and the processing of personal data can be found in Traniva AG\u2019s privacy policy.<\/p>\n<hr contenteditable=\"false\">\n<h3>22. Relationship to the Terms and Conditions, Legal Notice and Privacy Policy<\/h3>\n<p>Together with the General Terms and Conditions (GTC), the Legal Notice and the Privacy Policy, this Compliance and Governance Policy forms the core legal and organisational framework of Traniva AG.<\/p>\n<ul>\n<li>The Terms and Conditions govern, in particular, contractual relationships, the scope of services, liability and data protection in the context of projects and services.<\/li>\n<li>The privacy policy sets out the details of how personal data is processed in connection with the website, partner portal and online services.<\/li>\n<li>The legal notice contains the legally required provider details.<\/li>\n<\/ul>\n<p>In the event of any doubt, mandatory statutory provisions and expressly agreed contractual terms shall take precedence over this policy.[\/vc_column_text][\/vc_column][\/vc_row]<\/p>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>[vc_row][vc_column][vc_custom_heading text=&#8221;Traniva AG Compliance and Governance Policy&#8221; font_container=&#8221;tag:h1|text_align:left&#8221; use_theme_fonts=&#8221;yes&#8221; css=&#8221;&#8221;][\/vc_column][\/vc_row][vc_row][vc_column][vc_single_image image=&#8221;9068&#8243; img_size=&#8221;full&#8221; alignment=&#8221;center&#8221; css=&#8221;&#8221;][vc_column_text css=&#8221;&#8221;][\/vc_column_text][vc_column_text css=&#8221;&#8221;]Valid for: Traniva AG, Zimbergstrasse 11, 8335 Hittnau, Switzerland Scope: All employees, governing bodies, third-party contractors (freelancers, near-shore\/offshore partners), suppliers and other business partners As of: September 2025 1. Purpose and scope This policy sets out the principles, responsibilities and<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-9069","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/traniva.com\/index.php?rest_route=\/wp\/v2\/pages\/9069","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/traniva.com\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/traniva.com\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/traniva.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/traniva.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=9069"}],"version-history":[{"count":23,"href":"https:\/\/traniva.com\/index.php?rest_route=\/wp\/v2\/pages\/9069\/revisions"}],"predecessor-version":[{"id":11994,"href":"https:\/\/traniva.com\/index.php?rest_route=\/wp\/v2\/pages\/9069\/revisions\/11994"}],"wp:attachment":[{"href":"https:\/\/traniva.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=9069"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}