Skip to content
Select a language

PRIVACY POLICY

Disclaimer: This English version is provided for informational purposes only. In the event of any discrepancies or disputes, the German version shall be legally binding.

The protection of your personal data (hereinafter referred to as "Data") is an important concern for us. Below, you will find information about which data is collected during your visit to our website and how it is processed by us. Furthermore, we inform you about your rights and the technical and organizational protective measures we have taken.

1. CONTROLLER

The controller responsible for data processing within the meaning of the General Data Protection Regulation (GDPR) is:

XPERIFY UG (haftungsbeschränkt)

Breslauer Str. 32

86415 Mering

Germany

 

Email: info@xperify.com

Phone: +49 157 3773 9799

2. GENERAL INFORMATION ON DATA PROCESSING

This Privacy Policy provides an overview of how your data is processed at XPERIFY. It applies to all websites and services offered by us. We process personal data of our website visitors only to the extent necessary to provide a functional website as well as for communication, analysis, and marketing purposes. Processing is carried out on the basis of the GDPR (in particular Art. 6 Para. 1 lit. a, b, or f).

3. PROVISION OF THE WEBSITE AND HOSTING

3.1 Access Data (Server Log Files)

When you visit our website, the following data is automatically collected and temporarily stored:

  • IP address of the accessing device
  • Date and time of access
  • Page visited on our website and referrer URL
  • Browser type, version, and your operating system

Purpose: Temporary storage is necessary to enable the delivery of the website and to ensure the functionality and security of the IT systems. Legal Basis: Art. 6 Para. 1 lit. f GDPR (Legitimate Interest).

3.2 Hosting

Our website is hosted by the following service provider: HOSTINGER operations, UAB, Švitrigailos str. 34, Vilnius 03230, Lithuania. The hoster receives the above-mentioned data as a processor. A corresponding data processing agreement (DPA) is in place.

4. CENTRAL DATA MANAGEMENT & MARKETING: HUBSPOT

We use the HubSpot platform (HubSpot, Inc.) for marketing activities, CRM management, contact forms, and newsletter distribution.

  • CRM & Forms: If you use forms (e.g., for booking appointments), your data will be stored in HubSpot to process your request.
  • Newsletter: Distribution is carried out via Double-Opt-In. We evaluate open and click rates to optimize our content.
  • Third Country Transfer: HubSpot is certified under the EU-U.S. Data Privacy Framework (DPF).
  • Legal Basis: Consent (Art. 6 Para. 1 lit. a GDPR) or pre-contractual measures (Art. 6 Para. 1 lit. b GDPR).

5. ANALYSIS AND ADVERTISING SERVICES

5.1 Google Analytics 4 (GA4) & Google Ads

Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

  • Details: We use GA4 with active IP anonymization. Google Ads is used to measure the success of our advertising campaigns (Conversion Tracking).
  • Legal Basis: Consent according to § 25 TDDDG (for cookies) and Art. 6 Para. 1 lit. a GDPR (for analysis).

5.2 LinkedIn Insight Tag

Provider: LinkedIn Ireland Unlimited Company.

  • Purpose: Retargeting and analysis of the website audience.
  • Legal Basis: Consent (§ 25 TDDDG).

5.3 Social Media Presence (Instagram, X)

We maintain profiles on Instagram (Meta Platforms Ireland Ltd.) and X (X Corp.).

  • Instagram Insights: Joint controllership for insights data according to Art. 26 GDPR.
  • Legal Basis: Our legitimate interest in communication and information (Art. 6 Para. 1 lit. f GDPR).

6. COMMUNICATION AND APPOINTMENTS

6.1 Zoom (Webinars)

Provider: Zoom Video Communications, Inc., USA.

  • Purpose: Conducting webinars and online meetings.
  • Note: We do not record conversations by default. Individual agreements for project documentation remain unaffected.
  • Legal Basis: Art. 6 Para. 1 lit. b GDPR (Performance of Contract).

6.2 Appointment Booking & Google Workspace

For online appointment scheduling, we use the HubSpot tool. Booked appointments are automatically synchronized with our Google Calendar (Google Ireland Ltd.).

  • Legal Basis: Art. 6 Para. 1 lit. b GDPR.

7. CONSENT & COOKIE MANAGEMENT

To manage your consents, we use the HubSpot Consent Manager. A detailed technical list of all cookies used, providers, and storage periods can be found in our separate Cookie Policy. There you can change your settings at any time with effect for the future.

8. YOUR RIGHTS AS A DATA SUBJECT

You have the following rights towards us regarding your personal data:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • RIGHT TO OBJECT (Art. 21 GDPR): You can object to the processing of your data at any time.

Competent supervisory authority: Bayerisches Landesamt für Datenschutzaufsicht (BayLDA).

 

Status: April 2026 – XPERIFY UG (haftungsbeschränkt)