Privacy Policy

Last updated: October 17, 2025

This website respects your privacy. We collect only the minimum data necessary to operate the website and do not use cookies, tracking tools, or analytics services.

1. Data Controller

The data controller responsible for processing personal data on this website pursuant to the EU General Data Protection Regulation (GDPR) is:

Dr. Jenny Meyer
beyond profit
Vitalisstrasse 379a
50933 Köln
Germany
Email: hello@beyond-profit.eu

2. What Data We Collect and Why

2.1 Server Log Files

When you visit this website, our web server automatically collects and temporarily stores the following technical information in log files:

IP address of the requesting device
Date and time of access
Browser type and version
Operating system used
Pages visited on our website
Referrer URL (the page from which you accessed our site)

Legal Basis: Art. 6 (1) lit. f GDPR (legitimate interest)

Purpose: This data is necessary to deliver the website to your browser, ensure system security, and detect technical problems. We do not use this data to identify individual users or create user profiles.

Storage Duration: Server logs are automatically deleted after 7 days.

2.2 Self-Hosted Fonts

This website uses self-hosted fonts (TT Norms) that are stored on our own server. When you visit the website, these fonts are loaded directly from our server without any connection to third-party services like Google Fonts.

Legal Basis: Art. 6 (1) lit. f GDPR (legitimate interest in consistent website presentation)

No Data Transfer: No data is transmitted to third parties when loading fonts.

2.3 Email Contact

When you click on email links on this website, your default email client opens with a pre-filled email address. No data is transmitted to our server when you click these links. Email communication happens directly between your email provider and ours.

Legal Basis: Art. 6 (1) lit. f GDPR (legitimate interest) or Art. 6 (1) lit. b GDPR (pre-contractual measures) when you contact us regarding potential services.

Storage Duration: Emails are stored as long as necessary to process your inquiry or as required by law (e.g., for tax or commercial record-keeping).

3. What We Do NOT Collect

This website does NOT use:

Cookies
Web analytics tools (e.g., Google Analytics, Matomo)
Social media plugins or tracking pixels
Advertising networks
Third-party content delivery networks
Contact forms that transmit data to our server

Therefore, no consent banner is required under GDPR or the German TTDSG (Telecommunications-Telemedia Data Protection Act).

4. Data Sharing

We do not sell, trade, or transfer your personal data to third parties. Personal data is only shared if:

Required by law (e.g., law enforcement requests with proper legal basis)
Necessary to protect our legal rights

Our web hosting provider has access to server data for technical purposes only and processes data on our behalf according to Art. 28 GDPR.

5. Your Rights Under GDPR

You have the following rights regarding your personal data:

5.1 Right to Information (Art. 15 GDPR)

You have the right to request confirmation about whether we process personal data concerning you, and if so, to receive information about this data and the processing purposes.

5.2 Right to Rectification (Art. 16 GDPR)

You have the right to request immediate correction of incorrect personal data and completion of incomplete personal data.

5.3 Right to Erasure (Art. 17 GDPR)

You have the right to request erasure of your personal data if one of the legal grounds applies (e.g., data no longer necessary for the original purpose).

5.4 Right to Restriction of Processing (Art. 18 GDPR)

You have the right to request restriction of processing under certain conditions (e.g., if you contest the accuracy of the data).

5.5 Right to Data Portability (Art. 20 GDPR)

You have the right to receive personal data you provided to us in a structured, commonly used, and machine-readable format.

5.6 Right to Object (Art. 21 GDPR)

You have the right to object to processing of your personal data based on legitimate interest (Art. 6 (1) lit. f GDPR) at any time for reasons arising from your particular situation.

5.7 Right to Withdraw Consent (Art. 7 (3) GDPR)

If data processing is based on your consent, you have the right to withdraw this consent at any time. Withdrawal does not affect the lawfulness of processing based on consent before withdrawal.

5.8 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your residence, workplace, or the place of alleged infringement.

The competent supervisory authority in Germany depends on the federal state. You can find a list of supervisory authorities at: www.bfdi.bund.de

Exercising Your Rights

To exercise any of these rights, please contact us at: hello@beyond-profit.eu

6. Data Security

We use technical and organizational security measures to protect your data against accidental or intentional manipulation, loss, destruction, or unauthorized access. Our security measures are continuously improved in line with technological developments.

This website is served over HTTPS (encrypted connection) to protect data transmission between your browser and our server.

7. Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. The current version is always available on this page. The "Last updated" date at the top indicates when the policy was last revised.

8. Contact for Privacy Concerns

If you have questions about this privacy policy or how we handle your personal data, please contact:

Dr. Jenny Meyer
Email: hello@beyond-profit.eu