Privacy Policy

1. Introduction

This website is operated by: Aifano GmbH.

It is very important to us to handle the data of our website visitors responsibly and protect it as best as possible. For this reason, we make every effort to comply with the requirements of the GDPR.

In the following, we explain how we process your data on our website. We use language that is as clear and transparent as possible so that you really understand what happens to your data.

2. General Information

2.1 Processing of Personal Data and Other Terms

Data protection applies to the processing of personal data. Personal data means all data with which you can be personally identified. For example, the IP address of the device (PC, laptop, smartphone, etc.) you are currently using. Such data is processed when 'something happens' with it. For example, the IP is transmitted from the browser to our provider and automatically stored there. This is then a processing (according to Art. 4 No. 2 GDPR) of personal data (according to Art. 4 No. 1 GDPR).

2.2 Applicable Regulations/Laws – GDPR, BDSG and TDDDG

The scope of data protection is regulated by laws. In this case, these are the GDPR (General Data Protection Regulation) as a European regulation and the BDSG (Federal Data Protection Act) as a national law. Additionally, the TDDDG supplements the provisions of the GDPR insofar as it concerns the use of cookies.

2.3 The Responsible Party

Responsible for data processing on this website is the responsible party within the meaning of the GDPR. This is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data.

2.4 How Data is Generally Processed on This Website

As we have already established, there is data (e.g., IP address) that is automatically collected. This data is primarily needed for the technical provision of the homepage. If we use personal data beyond this or collect other data, we will inform you or ask for your consent.

Other personal data is shared with us consciously by you.

2.5 Your Rights

The GDPR provides you with comprehensive rights. These include, for example, free information about the origin, recipients, and purpose of your stored personal data. You can also request the correction, blocking, or deletion of this data or lodge a complaint with the responsible data protection authority. You can revoke any consent you have given at any time.

2.6 Data Protection – Our Perspective

Data protection is more than just a tedious obligation for us! Personal data has great value, and careful handling of this data should be self-evident in our digitalized world. Furthermore, as a website visitor, you should be able to decide for yourself what, when, and by whom happens to your data. Therefore, we commit to complying with all legal requirements, collecting only the data we need, and treating it confidentially.

2.7 Data Sharing and Deletion

Data sharing and deletion are also important and sensitive topics. Therefore, we would like to briefly inform you about our general approach to this.

Data is only shared on the basis of a legal basis and only when absolutely necessary. This can be the case, in particular, when it is a so-called data processor and a data processing agreement has been concluded according to Art. 28 GDPR.

We delete your data when the purpose and legal basis for processing cease to apply and deletion is not opposed by other legal obligations. Art. 17 GDPR provides a good overview of this.

2.8 Hosting

This website is hosted externally. The personal data collected on this website is stored on the servers of the hosting provider. This includes both automatically collected and stored log files and all other data provided by website visitors.

External hosting is for the purpose of secure, fast, and reliable provision of our website and serves in this context the fulfillment of our obligations to potential and existing customers.

3. What Happens on Our Website

3.1 Data Collection When Accessing the Website

When you access the website, information is automatically stored in so-called server log files. This includes:

• Browser type and version
• Operating system used
• Referrer URL
• Hostname of the accessing computer
• Time of server request
• IP address

This data is temporarily needed to display our website to you permanently and without problems. In particular, this data serves the following purposes:

• Website system security
• Website system stability
• Error correction on the website
• Connection establishment to the website
• Website display

3.2 Cookies

This website uses so-called cookies. These are data sets or information stored in your browser and related to our website. By setting cookies, we can make it easier for you to navigate the website.

In our cookie consent tool, you will find all information about the cookies we use on our website (if applicable, after your consent).

3.3 Data Processing Through User Input

If you contact us by email, phone, or through our contact form, we process your data to handle your request. The legal basis is Art. 6 (1) lit. f GDPR or Art. 6 (1) lit. b GDPR. The data is deleted once the purpose is no longer applicable.

3.4 Appointment Scheduling Tool (Calendly)

To schedule an appointment with us, we integrate the functions of Calendly on our website. This service is provided by Calendly LLC, 271 17th St NW, 10th Floor, Atlanta, Georgia 30363, USA.

The data requested for this is used for planning, conducting, and following up on the appointment and is stored on Calendly servers.

For more information, visit: https://calendly.com/pages/privacy

3.5 Cookie Consent Tool (Cookiebot)

To ensure that only cookies with a legal basis are set on our website, we use the consent management tool Cookiebot from Cybot A/S, havnegade 39, 1058 Copenhagen, Denmark.

This service is used to obtain and document the consent of website visitors to store certain cookies in their browser or use certain technologies in compliance with data protection regulations.

3.6 Social Media Profile (LinkedIn)

We operate a LinkedIn profile at https://www.linkedin.com/. This social network is operated by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.

When you visit our LinkedIn profile and interact with us through it, we process personal data. The legal basis for this processing is Art. 6 (1) lit. f GDPR.

4. Your Rights in Detail

4.1 Right to Information (Art. 15 GDPR)

You can request information about whether personal data concerning you is being processed. If so, you can request further information about how it is being processed.

4.2 Right to Rectification (Art. 16 GDPR)

This right includes the correction of incorrect data and the completion of incomplete personal data.

4.3 Right to Erasure (Art. 17 GDPR)

This so-called 'right to be forgotten' gives you the right to request the deletion of your personal data under certain conditions.

4.4 Right to Restrict Processing (Art. 18 GDPR)

You can request the restriction of processing of your personal data.

4.5 Right to Data Portability (Art. 20 GDPR)

You have the right to receive your data in a common format and have it transmitted to another controller.

4.6 Right to Object (Art. 21 GDPR)

You can generally object to the processing of your personal data.

4.7 Right to Lodge a Complaint (Art. 77 GDPR)

You have the right to lodge a complaint with a data protection authority if you believe that processing of your personal data violates this regulation.

5. Changes to This Privacy Policy

The current version of this privacy policy is dated 31.10.2025. From time to time, it may be necessary to update the content of this privacy policy to reflect actual and legal changes. We therefore reserve the right to change this privacy policy at any time. We will publish the updated version in the same place and recommend that you read the privacy policy regularly.