Privacy Policy

We, Privatize GmbH (hereinafter "we" or "us"), appreciate your visit to our websites "privatize.de" or "privatizegroup.com" and their subdomains (hereinafter collectively: "website") and your interest in our services.

We take the protection of your personal data very seriously. With this privacy policy we would like to inform you about the processing of your personal data.

Name and contact details of the person responsible

The controller within the meaning of the General Data Protection Regulation (GDPR) and other data protection regulations is:

Privatize GmbH
Taunusanlage 9-10
60329 Frankfurt am Main
Germany
Phone: +49 69 5050 6049 14
Email: contact@privatizegroup.com

2. Processing of personal data when using our website

2.1. General

(1) When you visit our website, we process the data necessary to display the website, namely:

  • IP address of the requesting computer
  • Date and time of the request
  • Name and URL of the retrieved file
  • Operating system information and its access status/HTTP status code
  • Amount of data transferred in each case
  • Website from which the request comes
  • Browser, language, and version of the browser software

(2) If these data are personal data, we process them based on our overriding legitimate interests (Art. 6 Para. 1 S. 1 lit. f GDPR). Our interests are ensuring a smooth connection setup of the website, evaluating system security and stability, and analyzing unauthorized access or access attempts to the systems.

(3) The listed data will be automatically deleted after seven days.

2.2. Registration of a user account

1) To use the Privatize platform, you must create a user account. You can register via our website. During registration, your name, email address, and a password (all mandatory fields) will be requested. After registration, you can log into your account using your access data. You can also voluntarily provide additional information (e.g., about your field of activity and your company) for future orders within your account (collectively: “user account data”).

(2) The legal basis for processing your user account data is Art. 6 Para. 1 S. 1 lit. b GDPR. Accordingly, we are permitted to process your data insofar as it is necessary to fulfill a contract with you or to carry out pre-contractual measures. The processing of the user account data is necessary for using the Privatize platform and thus for fulfilling the contract with you.

(3) The data collected and stored by you when creating a user account will generally only be processed by us as long as necessary to achieve the purpose of processing. If you cancel your user account, we will delete your user account data after six months, unless we are required to retain the data due to legal obligations.

2.3. Login to user account via website

(1) With each login to your user account, we process your IP address, authentication data (email address and password), and the time of access to your account (collectively: “login data”).

(2) The legal basis for processing the login data is Art. 6 Para. 1 S. 1 lit. f GDPR. The temporary storage of the login data by the system is necessary to control access to the protected area of the user account, ensure the integrity of the booking system, and prevent misuse or other unauthorized use. This also represents our overriding legitimate interest in data processing pursuant to Art. 6 Para. 1 S. 1 lit. f GDPR. Disclosure of the login data to third parties generally does not occur unless the disclosure is necessary for the technical implementation of the login process, to pursue legal claims, or there is a legal obligation pursuant to Art. 6 Para. 1 S. 1 lit. c GDPR.

(3) The deletion of the login data occurs automatically after seven days.

3. Use of our contact options

(1) If you communicate with us via our contact form, email, or another channel, we process your personal data to handle your request, such as:

  • Contact details, e.g., name, address, email address, and
  • Content data of the communication, e.g., subject and message.

(2) The legal basis for processing the data is Art. 6 Para. 1 S. 1 lit. b GDPR. Accordingly, we are permitted to process data insofar as the processing is necessary to fulfill a contract to which you are a party or to carry out pre-contractual measures. Otherwise, we base the data processing on our overriding legitimate interests (Art. 6 Para. 1 S. 1 lit. f GDPR). Our interests lie in enabling contact and processing your concerns. Please note that data on the internet is generally not always transmitted securely. Especially in email communication, data protection cannot be guaranteed. We ask you not to transmit sensitive data via email.

(3) The data will be deleted after your request has been fully processed, provided we are not legally or contractually obligated to retain the data further.

4. Direct marketing (including newsletter distribution)

4.1 Direct marketing without consent

(1) We reserve the right to use your name and address, as collected during registration, to send information about our products and services by mail. If you register with us on the portal, we also reserve the right to send you information about similar offers or services via email in the future. Direct marketing measures without consent are used very sparingly.

(2) The legal basis for data processing for direct marketing measures is Art. 6 Para. 1 S. 1 lit. f GDPR, for email advertising in conjunction with § 7 Para. 3 UWG. Our overriding legitimate interests lie in the need to carry out direct marketing measures through direct user contact for our products and services. These interests outweigh your interests, as we limit direct marketing measures to an appropriate level and you can object at any time.

(3) You can object to the processing of your data for direct marketing purposes by mail and email at any time by sending a message to the contact details mentioned in section 1. There are no other costs for you than the transmission costs according to the basic tariffs. If you object to the processing of your data for direct marketing purposes by mail and email, we will no longer carry out the stated direct marketing measures based on overriding legitimate interests.

4.2 Newsletter with consent

(1) You can also sign up for a newsletter on our website by providing your email address to receive information about our products and services. We use the service SendGrid to send the newsletter. The provider is SendGrid, Inc., 1801 California Street Suite 500, Denver, CO 80202 (hereinafter: “SendGrid”). SendGrid is a service that organizes and analyzes the sending of newsletters, among other things.

(2) To send the newsletter, we obtain your consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR. We use the double opt-in procedure for registration: Only when you click on a confirmation link sent to the email address you provided will this email address be added to our distribution list.

(3) Insofar as we process your email address based on this consent, you have the right to revoke your consent at any time by sending a message to the contact details mentioned in section 1 or via a link provided in an email we sent, without affecting the lawfulness of the processing carried out based on your consent until the revocation. If you revoke your consent, we will no longer send you newsletters. However, we may store the email address and the record of the revocation for up to 3 years based on our overriding legitimate interests (Art. 6 Para. 1 S. 1 lit. f GDPR) to demonstrate that we had your consent in the past and ensure that you do not receive any further newsletters. The storage of the email address in this case is solely for the defense of any claims.

5. Google Fonts

(1) Our website uses so-called fonts for uniform font representation. The provider is Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland (hereinafter: “Google”). The fonts are embedded locally, i.e., hosted on our servers.

(2) The use of Google Fonts is in the interest of a uniform and attractive presentation of our online offerings. This constitutes a legitimate interest pursuant to Art. 6 Para. 1 S. 1 lit. f GDPR. If your browser does not support web fonts, a standard font from your computer will be used. For more information on Google Fonts, see developers.google.com/fonts/faq and Google’s privacy policy at www.google.com/policies/privacy/.

6. Google Analytics

(1) If and insofar as you have given us your consent, we use functions of the web analysis service Google Analytics on our website. The provider is Google. Google Analytics uses so-called “cookies.” These are text files that are stored on your computer and allow an analysis of your use of the website. The information generated by the cookie about your use of our website is usually transmitted to a Google server and stored there.

2) The storage of Google Analytics cookies is based on your consent (Art. 6 Para. 1 lit. a GDPR). You can prevent the storage of cookies by setting your browser software accordingly; however, we point out that in this case, you may not be able to use all functions of this website fully. You can also prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plugin available under the following link: tools.google.com/dlpage/gaoptout?hl=de. More information on the handling of user data at Google Analytics can be found in Google’s privacy policy: support.google.com/analytics/answer/6004245?hl=de.

7. Recipients of personal data; EU third country transfer

We sometimes use external service providers within the framework of order processing according to Art. 28 GDPR (e.g., IT service providers) to process personal data. A further transfer of your data to third parties does not occur – unless otherwise explained in the sections above.

A transfer of your data, e.g., to supervisory authorities and law enforcement authorities, only occurs within the framework of legal regulations, if it is necessary to prevent and uncover fraud cases and other crimes, or to ensure the security of our data processing systems. The legal basis for this is, depending on the individual case, Art. 6 Para. 1 S. 1 lit. c (compliance with legal obligations) or lit. f GDPR (safeguarding legitimate interests).

If personal data is processed in an EU third country, a comparable level of data protection is ensured using appropriate guarantees in accordance with Art. 44ff. GDPR. Otherwise, the following applies: When transferring data outside the European Union and the European Economic Area to a country for which an adequacy decision of the European Commission is currently in place, we rely on such an adequacy decision (see Art. 45 GDPR). For possible data transfer to other countries, we generally rely on standard data protection clauses (see Art. 46 Para. 2 lit. c GDPR).

8. Your rights

(1) You have the following rights regarding your personal data towards us:

  • Right to information: You can request information about whether we process personal data about you. If so, you have the right to information about this personal data and other related information (see Art. 15 GDPR).
  • Right to rectification: If personal data about you is incorrect or incomplete, you can request the rectification and, if necessary, the completion of this data (see Art. 16 GDPR).
  • Right to deletion or restriction: If the legal requirements are met, you can request the deletion of your personal data (see Art. 17 GDPR) or the restriction of processing of this data (Art. 18 GDPR), for example, if the processing of this personal data is no longer necessary for the purposes for which we collected it.
  • Right to data portability: Under certain conditions, you have the right to receive the personal data concerning you that you have provided to us in a certain format or to transfer this data to another responsible party (see Art. 20 GDPR).

(2) RIGHT TO OBJECT (ART. 21 GDPR)

You also have the right to object at any time to the processing of your personal data by us,
i. in the case of direct marketing at any time, and
ii. otherwise for reasons arising from your particular situation if we process your personal data to safeguard our legitimate interests based on Art. 6 Para. 1 S. 1 lit. f GDPR (Art. 21 Para. 1 and Para. 2 GDPR).

We will stop processing your personal data for direct marketing in any case if you object. We will generally stop processing your personal data for other reasons unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights, and freedoms, or the processing is for the establishment, exercise, or defense of legal claims.

(3) You can lodge a complaint about the processing of your personal data by us with a data protection authority, particularly in the EU member state where your habitual residence or workplace is or where an alleged violation of applicable data protection laws has occurred (see Art. 77 GDPR).

(4) We do not conduct automated decision-making, including profiling, as defined by Art. 22 Paragraphs 1 and 4 GDPR.

9. Changes to this data protection information

We will revise this data protection information from time to time to adapt it to the state of the art or to changed legal conditions. Therefore, we recommend that you regularly check for changes on this page.

Status: June 2023

Welcome to Private Markets
© 2024 Privatize. All rights reserved.
Privacy PolicyImprint