camgula

Privacy Policy Last updated: August 2025

1. Data Controller Camgula GmbH Otto-Beck-Straße 21–25 68165 Mannheim Germany Represented by: Timo Meierdreeß (Managing Director) Phone: +49 261 29584073 Email: t.meierdreess@camgula.de

2. General Information on Data Processing We only process personal data to the extent necessary to provide our website, content, and services. Processing is carried out in accordance with GDPR, BDSG, and other applicable data protection regulations.

3. Hosting and Content Delivery Network (CDN) Our website is hosted by Vercel Inc., 440 N Barranca Ave #4133, Covina, CA 91723, USA, and delivered via Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA.

Connection data (e.g., IP address, date, time, browser) is automatically stored temporarily in server log files. This serves to ensure the stability and security of the website.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest)

4. Collection and Storage of Personal Data

a) Visiting the Website When accessing our website, the following information is automatically transmitted by your browser and stored in log files:

  • IP address of the requesting device
  • Date and time of access
  • Name and URL of the retrieved file
  • Website from which access was made (referrer URL)
  • Browser type and version and other device information

Storage is limited to a maximum of 14 days.

b) Contact When contacting us via our form or email, the data provided (name, email address, phone number if applicable, message) is stored for processing.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures)

c) Appointment Booking via Calendly We use the service Calendly LLC, 271 17th St NW, Ste 1000, Atlanta, GA 30363, USA for online appointment scheduling. Your entered data is transmitted to Calendly.

d) Form Processing via Make.com When submitting forms on our website, the entered data (name, email address, phone number, project description) is transmitted to Make.com (Celonis SE, Theresienstraße 6, 80333 Munich, Germany) for technical processing. Make.com acts as a data processor and forwards the data to us for further processing.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures) Data Processing Agreement: A data processing agreement in accordance with Art. 28 GDPR exists with Make.com.

5. Newsletter & Marketing Communication For email campaigns and CRM, we use Instantly.ai and Close.com.

Processing only occurs with consent (Art. 6(1)(a) GDPR) or for contract fulfillment (Art. 6(1)(b) GDPR).

6. Use of Analytics and Tracking Tools

a) Google Analytics Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

Google Analytics uses cookies that enable analysis of website usage. Data may be transferred to the USA (Standard Contractual Clauses).

b) Microsoft Clarity Service provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052, USA

For analyzing user behavior (heatmaps, session recordings).

c) Advertising Tracking We use conversion tracking for Google Ads, LinkedIn Ads, and Meta Ads to measure the effectiveness of our advertising measures.

Legal basis for all tracking measures: Art. 6(1)(a) GDPR (consent)

7. Embedded Videos and External Content

a) Vimeo and Wistia When playing videos, connection data is transferred to the providers' servers in the USA.

b) Google Fonts Google Fonts are loaded locally or via Google servers. When retrieved via Google, the IP address may be transmitted to Google.

8. Cookies & Consent Management We use a cookie management tool with consent functionality that appears on the first visit. There you can set your preferences and change them at any time.

9. Third Country Transfer Data transfer to the USA occurs when using Google, Meta, LinkedIn, Microsoft, Vimeo, Wistia, Calendly, Instantly, and Close.com.

The transfer is based on EU Standard Contractual Clauses.

10. Storage Duration Personal data is only stored as long as necessary to fulfill the purposes or as required by legal retention periods.

11. Data Subject Rights You have the right to:

  • Information (Art. 15 GDPR)
  • Rectification (Art. 16 GDPR)
  • Erasure (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Objection (Art. 21 GDPR)
  • Data portability (Art. 20 GDPR)

Complaints can be filed with the competent data protection supervisory authority.

12. Data Security We implement technical and organizational measures to protect data from loss, destruction, or unauthorized access.

13. Changes to this Privacy Policy We reserve the right to adapt this statement to changed legal situations or changes to our services.