Privacy Policy

Last updated: July 2025

1. Introduction

MEDIASAPIENS GmbH (“we,” “us,” or “our”) is committed to protecting your personal data and ensuring transparency regarding how and why we collect, use, and store your information. This Privacy Policy outlines our data processing practices in accordance with the General Data Protection Regulation (GDPR) and the German Telecommunication-Telemedia Data Protection Act (TTDSG).

2. Data Controller Information

MEDIASAPIENS GmbH
Oberhafenstraße 1
20097 Hamburg, Germany

Email: hello@mediasapiens.de
Website: https://mediasapiens.de
Phone: +49 40 22817196

Data Protection Officer: Not applicable

3. Categories of Personal Data We Process

We may process the following categories of personal data when you use our website or services:

Identity Data: Full name, email address, username
Communication Data: Messages submitted through contact forms, email correspondence, inquiry details
Technical Data: Internet Protocol (IP) address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform
Usage Data: Information about how you use our website, including pages visited, time spent on pages, click-through rates, and other interaction behavior
Cookie and Tracking Data: Consent preferences, cookie identifiers, referrer URLs, analytics data

4. Legal Basis for Data Processing

We process your personal data based on the following legal grounds under Article 6 of the GDPR:

Consent (Art. 6(1)(a) GDPR): For cookies requiring opt-in consent, marketing communications, and other voluntary data processing
Contractual Necessity (Art. 6(1)(b) GDPR): For processing necessary to respond to your inquiries or provide requested services
Legal Obligation (Art. 6(1)(c) GDPR): For compliance with tax, commercial, or other legal requirements
Legitimate Interests (Art. 6(1)(f) GDPR): For website analytics, security measures, fraud prevention, and improving user experience

Where we rely on legitimate interests, we have conducted a balancing test to ensure our interests do not override your fundamental rights and freedoms.

5. Cookies and Tracking Technologies

Our website utilizes cookies and similar tracking technologies to ensure proper functionality, personalize content, and analyze website usage patterns. We employ Cookiebot as our Consent Management Platform (CMP) to manage cookie consent in compliance with GDPR and TTDSG requirements.

Cookie Categories:

Strictly Necessary Cookies: Essential for website functionality
Performance Cookies: Used for analytics and site optimization
Functional Cookies: Enable enhanced functionality and personalization
Marketing Cookies: Used for advertising and tracking across websites

Upon your first visit, a cookie consent banner will be displayed, providing you with the following options:

Accept all cookies
Customize cookie preferences by category
Reject all non-essential cookies

You may modify or withdraw your consent at any time through our Cookie Settings panel or by contacting us directly. For detailed information about specific cookies used, please refer to our Cookie Declaration, which is automatically updated by Cookiebot.

6. Data Retention Periods

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by applicable law. Specific retention periods include:

Contact form data: 3 years from last contact
Website analytics data: 26 months
Cookie consent records: 12 months
Legal compliance data: As required by applicable legislation

When personal data is no longer needed, it will be securely deleted or anonymized.

7. International Data Transfers

Your personal data is primarily processed within the European Union (EU) and European Economic Area (EEA). In cases where data transfer to third countries is necessary, we ensure appropriate safeguards are in place, including:

Adequacy decisions by the European Commission
Standard Contractual Clauses (SCCs) approved by the European Commission
Binding Corporate Rules where applicable

8. Data Security Measures

We implement comprehensive technical and organizational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

Encryption of data in transit and at rest
Regular security assessments and updates
Access controls and authentication procedures
Employee training on data protection
Incident response procedures

As a data subject, you have the following rights regarding your personal data:

Right of Access (Art. 15 GDPR): Request information about the personal data we hold about you
Right to Rectification (Art. 16 GDPR): Request correction of inaccurate or incomplete data
Right to Erasure (Art. 17 GDPR): Request deletion of your personal data (“right to be forgotten”)
Right to Restrict Processing (Art. 18 GDPR): Request limitation of data processing
Right to Data Portability (Art. 20 GDPR): Request transfer of your data in a structured format
Right to Object (Art. 21 GDPR): Object to processing, including for direct marketing purposes
Right to Withdraw Consent (Art. 7(3) GDPR): Withdraw consent at any time for future processing
Right to Lodge a Complaint (Art. 77 GDPR): File a complaint with the competent supervisory authority

To exercise any of these rights, please contact us using the information provided below. We will respond to your request within one month, or inform you if an extension is necessary.

10. Automated Decision-Making and Profiling

We do not use automated decision-making or profiling that produces legal effects or similarly significant consequences under Article 22 GDPR. Any analytics or tracking technologies used are solely for improving website functionality and user experience.

Data Protection Inquiries: hello@mediasapiens.de

This Privacy Policy is effective as of the date last updated above.