Privacy Policy

Introduction

AgileFactor AG ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, process, and protect your information when you use our website, services, or interact with us. We are the data controller for the purposes of applicable data protection laws, including the General Data Protection Regulation (GDPR).

Data We Collect

The data we collect depends on how you interact with our services. We collect the following types of personal information:

• Contact Information: Name, email address, phone number, postal address
• Professional Information: Job title, company name, industry, professional interests
• Financial Information: Income level, investment experience, financial goals (when relevant to our services)
• Communication Data: Records of correspondence, enquiries, and support interactions
• Technical Data: IP address, browser type, device information, website usage data
• Marketing Data: Preferences for receiving marketing communications and participation in events

How We Use Your Information

We use your personal data for the following purposes, based on legitimate business interests, contractual necessity, or your consent:

• Providing our wealth-building education services and programmes
• Processing enquiries and delivering customer support
• Personalising your experience and tailoring our services to your needs
• Sending relevant marketing communications about our services (with your consent)
• Improving our website, services, and customer experience
• Complying with legal obligations and regulatory requirements
• Protecting our business interests and preventing fraud

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our use of cookies, please see our Cookie Policy.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: For marketing communications and non-essential cookies
• Contract: To provide our services and fulfil our contractual obligations
• Legitimate Interest: For business operations, fraud prevention, and service improvement
• Legal Obligation: To comply with applicable laws and regulations

Data Sharing and Disclosure

We may share your personal data with trusted third parties in the following circumstances:

• Service providers who assist with our business operations (under strict confidentiality agreements)
• Professional advisors such as lawyers, accountants, and consultants
• Regulatory authorities when required by law
• In connection with a business sale, merger, or acquisition

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Generally, we retain client data for seven years after the end of our business relationship, or as required by applicable law. Marketing data is retained until you withdraw consent or for three years from your last interaction with us.

Your Rights

Under GDPR and other applicable data protection laws, you have the following rights regarding your personal data:

• Right of Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data in certain circumstances
• Right to Restrict Processing: Request limitation of how we use your data
• Right to Data Portability: Request transfer of your data to another organisation
• Right to Object: Object to processing based on legitimate interests or for marketing purposes
• Right to Withdraw Consent: Withdraw consent for processing at any time

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, secure servers, access controls, and regular security assessments. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions, to protect your data in accordance with GDPR requirements.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of significant changes by posting the updated policy on our website and indicating the date of the last revision. Your continued use of our services after such changes constitutes acceptance of the updated policy.

Contact Information

If you have questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding data protection matters, please reach out to us:

Supervisory Authority

If you believe we have not handled your personal data in accordance with applicable law, you have the right to lodge a complaint with the relevant supervisory authority. In Germany, this is the Federal Commissioner for Data Protection and Freedom of Information (Bundesbeauftragte für den Datenschutz und die Informationsfreiheit).