Privacy & Data Protection

Privacy Policy (Datenschutzerklärung)

Effective Date: September 2025

Culture Ripples Consulting is committed to protecting your personal data. This Privacy Policy explains how we collect, process, and use personal information when you access our website or enquire about our consulting services.

1. Data Controller

The data controller responsible for processing your personal data is:

Culture Ripples Consulting

Germany

Email: cultureripplesconsulting@gmail.com

2. Data We Collect

Contact Form Data

When you submit an enquiry through our contact form, we collect:

  • Name
  • Company name
  • Email address
  • Message content (details about your business situation or enquiry)

Technical Data (Automatically Collected)

When you visit our website, our hosting provider may automatically collect:

  • IP address
  • Browser type and version
  • Device information
  • Date and time of access
  • Pages visited
3. Purpose of Data Processing

We process your personal data for the following purposes:

  • To respond to your enquiry and provide information about our services
  • To facilitate business communication and service discussions
  • To deliver consulting services if you engage us
  • To ensure the technical functionality and security of our website
  • To comply with legal obligations
4. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds under the General Data Protection Regulation (GDPR):

  • Art. 6(1)(b) GDPR – Contract performance: Processing is necessary to take steps at your request prior to entering into a contract, or to perform a contract with you.
  • Art. 6(1)(f) GDPR – Legitimate interests: Processing is necessary for our legitimate interests in responding to enquiries, maintaining website security, and improving our services, provided these interests are not overridden by your rights.
  • Art. 6(1)(c) GDPR – Legal obligation: Processing is necessary to comply with applicable legal requirements.
5. Data Sharing and Disclosure

We do not sell or rent your personal data. We may share information with:

  • Email service providers to process and deliver your enquiry (e.g., Resend)
  • Legal authorities if required by law or to protect our rights

All service providers are required to comply with GDPR and maintain appropriate data protection standards.

6. Hosting Provider

Our website is hosted by Vercel Inc. When you access our website, Vercel may process certain technical data as described above to ensure the functionality and security of the website.

Vercel operates servers in various locations, including the United States. Where data is transferred outside the EU/EEA, appropriate safeguards are in place, including Standard Contractual Clauses.

For more information, see Vercel's privacy policy at vercel.com/legal/privacy-policy

7. Data Storage and Retention

We retain your personal data only as long as necessary to fulfil the purposes for which it was collected, including:

  • Enquiry data: retained for the duration of our communication and any resulting business relationship
  • Technical logs: typically retained for a limited period for security purposes
  • Legal requirements: data may be retained longer if required by law (e.g., tax or accounting obligations)

Once data is no longer required, it will be securely deleted or anonymised.

8. Your Rights

Under GDPR, you have the following rights:

  • Right of access (Art. 15): Request a copy of your personal data
  • Right to rectification (Art. 16): Request correction of inaccurate data
  • Right to erasure (Art. 17): Request deletion of your data ("right to be forgotten")
  • Right to restriction (Art. 18): Request restriction of processing in certain circumstances
  • Right to data portability (Art. 20): Receive your data in a structured, machine-readable format
  • Right to object (Art. 21): Object to processing based on legitimate interests
  • Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time

To exercise your rights, contact us at: cultureripplesconsulting@gmail.com

You also have the right to lodge a complaint with a supervisory authority if you believe your data protection rights have been violated.

9. Cookies

Our website may use essential cookies necessary for the basic functionality of the website.

We do not currently use analytics or marketing cookies. If this changes, we will update this policy and obtain your consent where required.

You can manage or block cookies via your browser settings, but some features of the website may not function correctly if essential cookies are disabled.

10. International Data Transfers

Some of our service providers (such as our hosting and email providers) may process data outside the European Economic Area (EEA).

Where data is transferred outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

11. Updates to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. We encourage you to review this page periodically.

12. Contact Us

For questions about this Privacy Policy or to exercise your data rights, please contact:

Email: cultureripplesconsulting@gmail.com

Website: cultureripplesconsulting.com

    Built with v0