Privacy Policy

1) Introduction and Contact Details of the Controller

1.1 We are pleased that you are visiting our website and thank you for your interest. The following information explains how we handle your personal data when you use our website. Personal data refers to all data with which you can be personally identified.

1.2 The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:

TrustFort IT Consulting GmbH
Mies-van-der-Rohe-Str. 6
80807 Munich
Germany
Phone: +49 (89) 215269300
Email: info@trustfort.net

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

2) Data Collection When Visiting Our Website

2.1 Informational Use of the Website

When you visit our website for informational purposes only, meaning you do not register or otherwise transmit information to us, we collect only the data that your browser transmits to our server (so-called “server log files”). When you access our website, we collect the following data, which is technically required to display the website to you:

• The website visited
• Date and time of access
• Amount of data transmitted (in bytes)
• Source/referrer from which you accessed the site
• Browser used
• Operating system used
• IP address (if applicable, in anonymized form)

Processing is carried out pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. This data is not passed on or used in any other way. However, we reserve the right to review server log files retrospectively if there are concrete indications of unlawful use.

2.2 SSL/TLS Encryption

This website uses SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g. inquiries sent to the controller). You can recognize an encrypted connection by the character string “https://” and the lock symbol in your browser’s address bar.

3) Hosting and Content Delivery Network

Microsoft Azure

We use the services of the following provider to host our website and display page content:

Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

All data collected on our website is processed on the provider’s servers.

We have concluded a data processing agreement with the provider, which ensures the protection of our website visitors’ data and prohibits unauthorized disclosure to third parties.

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection based on an adequacy decision by the European Commission.

4) Cookies

To make visiting our website attractive and to enable the use of certain functions, we use cookies. These are small text files that are stored on your device. Some cookies are deleted automatically when you close your browser (so-called “session cookies”), while others remain on your device for a longer period and enable the storage of page settings (“persistent cookies”). In the latter case, the storage duration can be found in your browser’s cookie settings.

If personal data is processed by individual cookies used by us, processing is carried out in accordance with:

• Art. 6(1)(b) GDPR for contract performance, or
• Art. 6(1)(a) GDPR based on your consent, or
• Art. 6(1)(f) GDPR to safeguard our legitimate interest in the optimal functionality and user-friendly design of the website.

You can configure your browser to inform you about the setting of cookies and decide individually whether to accept them, or to exclude the acceptance of cookies for specific cases or in general.

Please note that if cookies are not accepted, the functionality of our website may be limited.

5) Contacting Us

5.1 Calendly

For providing an online appointment booking function, we use the services of:

Calendly, LLC
BB&T Tower
271 17th St NW
Atlanta, GA 30363
USA

For the purpose of scheduling appointments, your first and last name and email address (and, if applicable, your phone number if a telephone appointment is requested) are collected pursuant to Art. 6(1)(b) GDPR and transmitted to the provider pursuant to Art. 6(1)(f) GDPR based on our legitimate interest in efficient customer management and appointment scheduling. The data is stored there for appointment organization.

After the appointment has taken place or after the agreed appointment period has expired, your data will be deleted by the provider.

We have concluded a data processing agreement with the provider that ensures data protection and prohibits unauthorized disclosure.

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework.

5.2 Email Ticketing System (Microsoft)

To process customer inquiries, we use the email ticketing system of:

Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

If you contact us via email through our website, your inquiry will be stored and organized in the ticketing system to ensure chronological processing and improve service quality. You can track the processing status of your request at any time using your individual ticket number.

The following personal data is collected, transmitted to the provider, stored, and processed: first name, last name, and email address.

The legal basis is Art. 6(1)(f) GDPR, based on our legitimate interest in efficient customer service, prompt response to inquiries, and service optimization.

We have concluded a data processing agreement with the provider. For data transfers to the USA, Microsoft relies on Standard Contractual Clauses of the European Commission.

5.3 Contact Forms and Email Inquiries

When contacting us (e.g. via contact form or email), personal data is collected. The specific data collected is apparent from the respective contact form. This data is stored and used exclusively to respond to your inquiry or to contact you and for the associated technical administration.

The legal basis is Art. 6(1)(f) GDPR. If your inquiry aims at concluding a contract, Art. 6(1)(b) GDPR is an additional legal basis.

Your data will be deleted after final processing of your request, provided there are no statutory retention obligations.

6) Web Analytics Services

Google Analytics 4

This website uses Google Analytics 4, a web analytics service provided by:

Google Ireland Limited
Gordon House
4 Barrow St
Dublin, D04 E5W5
Ireland

Google Analytics 4 uses cookies to analyze your use of the website. The information collected includes your IP address, which is shortened by Google to exclude direct personal identification.

Data may be transferred to Google LLC servers in the USA.

Google processes this data on our behalf to evaluate website usage, compile reports, and provide related services. The shortened IP address is not combined with other Google data. Data is stored for two months and then deleted.

All processing, particularly the use of cookies, takes place only with your explicit consent pursuant to Art. 6(1)(a) GDPR. You can revoke your consent at any time via the cookie consent tool.

A data processing agreement has been concluded with Google.

Further information:

• https://business.safety.google/privacy
• https://policies.google.com/privacy
• https://policies.google.com/technologies/partner-sites

Demographic Features

Google Analytics 4 may use demographic features to generate statistics on age, gender, and interests based on advertising data. These data are anonymized and deleted after two months.

Google Signals

Google Signals enables cross-device reporting if you have enabled personalized ads and linked devices to your Google account. We only receive aggregated statistics. You can disable personalized ads in your Google account settings.

User IDs

If you consent and have an account on our website, Google Analytics 4 may analyze your activity across devices using User IDs.

For US data transfers, Google participates in the EU-US Data Privacy Framework.

7) Retargeting, Remarketing, and Conversion Tracking

Meta Pixel

We use Meta Pixel, provided by:

Meta Platforms Ireland Limited
4 Grand Canal Square
Dublin 2
Ireland

Meta Pixel allows us to track user behavior after clicking on Facebook or Instagram ads. This enables:

• Targeted advertising (Custom Audiences)
• Conversion tracking

Data is anonymized for us but may be processed by Meta and linked to user profiles. Meta may transfer data to the USA.

Processing occurs only with your explicit consent pursuant to Art. 6(1)(a) GDPR and can be revoked at any time via the cookie consent tool.

Meta participates in the EU-US Data Privacy Framework.

8) Tools and Other Services

Cookie Consent Tool

This website uses a cookie consent tool to obtain valid user consent for cookies requiring consent. Cookies and services are only loaded after explicit consent.

Technically necessary cookies are used to store your preferences. Personal data is generally not processed. If personal data (e.g. IP address) is processed in exceptional cases, this is done pursuant to Art. 6(1)(f) GDPR and Art. 6(1)(c) GDPR.

Where required, a data processing agreement has been concluded.

9) Rights of Data Subjects

9.1 You have the following rights under applicable data protection law:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to notification (Art. 19 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to withdraw consent (Art. 7(3) GDPR)
• Right to lodge a complaint (Art. 77 GDPR)

9.2 Right to Object

If we process your personal data based on legitimate interests, you have the right to object at any time for reasons arising from your particular situation.

If you object, we will stop processing unless we can demonstrate compelling legitimate grounds.

If personal data is processed for direct marketing purposes, you have the right to object at any time. In this case, processing for such purposes will cease.

10) Duration of Storage of Personal Data

The storage duration depends on:

• The legal basis
• The processing purpose
• Statutory retention periods (e.g. commercial or tax law)

Data processed based on consent is stored until consent is withdrawn.

Data processed under contractual obligations is deleted after statutory retention periods.

Data processed based on legitimate interests is stored until you object, unless overriding reasons exist.

Unless otherwise stated, personal data is deleted once it is no longer necessary for its intended purpose.

---

Copyright Notice
This Privacy Policy was created by the specialized attorneys of IT-Recht Kanzlei and is protected by copyright.
https://www.it-recht-kanzlei.de

Status: February 2, 2026, 16:05:43