Privacy Policy

Responsible Entity (Data Controller)

GTM Ventures UG (haftungsbeschränkt)
Beringstr. 24
53115 Bonn
Email: robert@gtm-ventures.com
Phone: +49 172 7460021

Data Protection Officer

As a small business with limited data processing activities, we are not required to appoint a Data Protection Officer under Article 37 GDPR. For all data protection related inquiries, please contact Robert Douglass directly using the contact information above.

Data Collection & Use

We take the protection of your personal data very seriously. This privacy policy informs you about how we collect, use, process, and store your personal information.

Types of Data Collected

Depending on your interaction with our website and services, we may collect the following types of data:

• Contact Information: Name, email address, phone number, and business address when you contact us or use our services.
• Payment Details: When you purchase services, we collect payment information necessary to process your transaction.
• Usage Data: Information about how you interact with our website, including pages visited, time spent, and actions taken.
• Affiliate Tracking: When you click on affiliate links, we may receive information about your interaction with those links.

Purpose of Data Collection

We use your data for the following purposes:

• To provide and maintain our services
• To notify you about changes to our services
• To provide customer support
• To gather analysis or valuable information so that we can improve our services
• To process payments and prevent fraud
• To comply with legal obligations

Storage Duration

We store your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. After this period, your data will be deleted or anonymized.

Legal Bases for Processing

We process your personal data on the following legal bases according to Article 6 GDPR:

• Contract (Art. 6(1)(b)): Processing necessary for performing a contract with you or taking steps at your request before entering into a contract.
• Legal Obligation (Art. 6(1)(c)): Processing necessary for compliance with our legal obligations.
• Legitimate Interests (Art. 6(1)(f)): Processing necessary for our legitimate interests, such as improving our services and preventing fraud.
• Consent (Art. 6(1)(a)): Where you have given explicit consent for specific processing purposes.

Third-party Processors

We use the following third-party service providers to process your data:

• Stripe: For payment processing
• Apple: For Apple Developer program-related services
• PartnerStack: For affiliate program management
• Impact.com: For affiliate program management

These third parties have access to your personal data only to perform specific tasks on our behalf and are obligated not to disclose or use it for any other purpose.

User Rights under GDPR

Under the General Data Protection Regulation (GDPR), you have the following rights:

• Right to Access: You can request copies of your personal data.
• Right to Rectification: You can request that we correct inaccurate information about you.
• Right to Erasure: You can request that we delete your personal data in certain circumstances.
• Right to Restrict Processing: You can request that we restrict the processing of your data in certain circumstances.
• Right to Data Portability: You can request that we transfer your data to another organization or directly to you.
• Right to Object: You can object to our processing of your personal data in certain circumstances.
• Right to Complain: You have the right to lodge a complaint with a supervisory authority.

To exercise any of these rights, please contact us at privacy@example.com.

Cookies and Tracking Technologies

Essential Cookies

We use essential cookies that are necessary for the website to function properly. These cookies do not track your behavior and are set based on legitimate interest (Art. 6(1)(f) GDPR).

Analytics Cookies

We use Plausible Analytics, a privacy-friendly analytics service that does not use cookies and respects user privacy. The data collected is aggregated and cannot be used to identify individual users. The legal basis for this processing is our legitimate interest (Art. 6(1)(f) GDPR) in improving our website and services.

Cookie Management

You can manage or disable cookies through your browser settings. Most browsers allow you to:

• View your cookies and delete them individually
• Block third-party cookies
• Block cookies from particular sites
• Block all cookies from being set
• Delete all cookies when you close your browser

International Data Transfers

Some of our third-party processors are located outside the European Economic Area (EEA). When we transfer your data outside the EEA, we ensure adequate protection through:

• EU Standard Contractual Clauses (SCCs)
• Adequacy decisions by the European Commission
• Binding Corporate Rules where applicable

Our main data processors and their locations:

• Stripe (USA): Protected by SCCs and additional safeguards
• PartnerStack (Canada): Protected by adequacy decision
• Impact.com (USA): Protected by SCCs

Supervisory Authority

While we encourage you to contact us first with any concerns, you have the right to lodge a complaint with the competent data protection authority. For our company, this is:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Kavalleriestraße 2-4
40213 Düsseldorf
Phone: +49 211 38424-0
Email: poststelle@ldi.nrw.de
Website: www.ldi.nrw.de

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "last updated" date.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Last updated: March 29, 2025