Privacy policy

We take data protection seriously

The protection of your privacy when processing personal data is an important concern for us. When you visit our website, our web servers store the IP of your Internet service provider, the website from which you visit us, the web pages you visit on our site and the date and duration of your visit as standard. This information is essential for the technical transmission of the web pages and secure server operation. There is no personalised analysis of this data.

Responsible person:

GREENPEAK Management GmbH

Theatinerstraße 14
80333 Munich

+(49) 089 9233 4089
+(49) 089 5484 8026 53
info@greenpeak-partners.com

Personal data

Personal data is data about your person. This includes your name, your address and your e-mail address. You do not have to disclose any personal data in order to visit our website. In some cases we need your name and address as well as other information in order to be able to offer you the requested service.

The same applies if we supply you with information material on request or if we answer your enquiries. In these cases, we will always point this out to you. Furthermore, we only store the data that you have transmitted to us automatically or voluntarily.

When you use one of our services, we generally only collect the data that is necessary to provide you with our service. We may ask you for further information, but this is voluntary. Whenever we process personal data, we do so in order to be able to offer you our service or to pursue our commercial objectives.

Contact us

When contacting us (e.g. by contact form, e-mail, telephone or via social media), the data of the enquiring persons will be processed insofar as this is necessary to answer the contact enquiries and any requested measures.

The response to contact enquiries in the context of contractual or pre-contractual relationships is carried out to fulfil our contractual obligations or to respond to (pre)contractual enquiries and otherwise on the basis of the legitimate interests in responding to the enquiries.

Automatically saved data

Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are

This data is not merged with other data sources. Processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website.

For reasons of technical security, in particular to defend against attempted attacks on our web server, this data is stored by us for a short time. It is not possible for us to identify individual persons from this data. After seven days at the latest, the data is anonymised by shortening the IP address at domain level so that it is no longer possible to establish a link to the individual user. The data is also processed in anonymised form for statistical purposes; it is not compared with other databases or passed on to third parties, even in excerpts.

Cookies

When you visit our website, we may store information on your computer in the form of cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters that can be used to assign websites and servers to the specific Internet browser in which the cookie was stored. This enables the websites and servers visited to distinguish the individual browser of the data subject from other Internet browsers that contain other cookies. A specific Internet browser can be recognised and identified via the unique cookie ID.

By using session cookies, the controller can provide users of this website with a user-friendly service that would not be possible without the use of cookies. Without consent, we only use technically necessary cookies on the legal basis of legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR.

We only use personalised cookies to improve our website or for marketing/advertising purposes with your consent. On your first visit, you can voluntarily consent to tracking or analysis via the cookie banner that appears. Your data may be passed on to partners or third-party providers. These cookies are only stored if you explicitly consent to this; the legal basis is then your consent in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with § 25 para.1 TDDDG.

You can change your settings for the use of cookies here at any time:

Cookie-Settings

Borlabs Cookie

Our website uses Borlabs Cookie’s cookie consent technology to obtain your consent to the storage of certain cookies in your browser and to document this in compliance with data protection regulations. The provider of this technology is Borlabs GmbH – Benjamin A. Bornschein, Hamburger Str. 11, 22083 Hamburg (hereinafter referred to as Borlabs).

When you enter our website, a Borlabs cookie is stored in your browser, in which the consents you have given or the revocation of these consents are stored. This data is not passed on to the provider of Borlabs Cookie.

The data collected will be stored until you ask us to delete it or delete the Borlabs cookie yourself or until the purpose for storing the data no longer applies. Mandatory statutory retention periods remain unaffected. Details on data processing by Borlabs Cookie can be found at https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/

Borlabs cookie consent technology is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 sentence 1 lit. c GDPR.

We have concluded an order processing contract (AV) in accordance with Art. 28 GDPR with the above-mentioned provider. This is a contract prescribed by data protection law, which guarantees that the provider will only process the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.
https://de.borlabs.io/datenschutz/

Google Maps

This site uses the map service Google Maps. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

To use the functions of Google Maps, it is necessary to save your IP address. This Information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer. If Google Maps is activated, Google may use Google Web Fonts for the purpose of standardising the display of fonts. When you call up Google Maps, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.

The use of Google Maps is in the interest of an appealing presentation of our online presence. offers and to make it easy to find the places we have indicated on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time. Google relies on the Transatlantic Data Privacy Framework of 10 July 2023 (TADPF) for the transfer of data to recipients based in the USA and, in the case of data transfer to other third countries, on standard contractual clauses approved by the EU Commission as a guarantee of a level of data protection comparable to that in the EU. You can obtain a copy of the standard contractual clauses here. We only transfer data to Google on the basis of your consent.

Details can be found here:
https://privacy.google.com/businesses/gdprcontrollerterms/ and
https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

You can find more information on the handling of user data in Google’s privacy policy:
https://policies.google.com/privacy?hl=de.

Friendly Captcha

We use “Friendly Captcha” (hereinafter “friendlycaptcha”) on this website.

Contact details of the company:

Friendly Captcha GmbH
Am Anger 3-5
82237 Woerthsee
Germany

The purpose of friendlycaptcha is to check whether the data input on this website (e.g. in a contact form) by a human or by an automated programme. For this purpose friendlycaptcha analyses the behaviour of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. To analyse this, friendlycaptcha evaluates various pieces of information (e.g. IP address, time spent on the website by the website visitor or mouse movements made by the user). The data collected during the analysis is forwarded to friendlycaptcha.

The friendlycaptcha analyses run completely in the background. Website visitors are not informed that an analysis is taking place.

The data is stored and analysed on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its website from abusive automated spying and SPAM. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

Further information about friendlycaptcha can be found in the following links:
https://friendlycaptcha.com/de/legal/privacy-end-users/
https://friendlycaptcha.com/de/privacy/

Registration on the website (www.greenpeak-partners.com/de/investor-portal/)

The data subject has the option of registering on the controller’s website by providing personal data. The following personal data is collected: First name, surname, title, form of address, address, telephone number, e-mail address.

By registering on the controller’s website, the IP address assigned by the data subject’s Internet service provider (ISP), the date and time of registration are also stored. This data is stored against the background that this is the only way to prevent the misuse of our services and, if necessary, to enable criminal offences to be investigated. In this respect, the storage of this data is necessary to safeguard the controller. This data is not passed on to third parties unless there is a legal obligation to pass it on or the passing on serves the purpose of criminal prosecution.

The registration of the data subject with voluntary provision of personal data serves the controller to offer the data subject content or services which, due to the nature of the matter, can only be offered to registered users. Registered persons are free to change the personal data provided during registration at any time or to have it completely deleted from the controller’s database.

You undertake to treat your personal access data confidentially and not to make it accessible to unauthorised third parties. We cannot accept any liability for misused passwords unless we are responsible for the misuse.

With the “stay logged in” function, we would like to make your visit to our website as pleasant as possible. This function allows you to use our services without having to log in again each time. For security reasons, however, you will be asked to enter your password again if, for example, your personal details need to be changed or you wish to place an order. We recommend that you do not use this function if the computer is used by several users. Please note that the “stay logged in” function is not available if you use a setting that automatically deletes stored cookies after each session.

For what purposes and on what legal basis is the data processed?

We process your data in accordance with the provisions of the General Data Protection Regulation (GDPR) and the Federal Data Protection Act 2018 as amended:

Processing of personal data for advertising purposes

You can object to the use of your personal data for advertising purposes at any time, either as a whole or for individual measures, without incurring any costs other than the transmission costs according to the basic rates.

Under the legal requirements of Section 7 (paragraph 3) UWG, we are authorised to use the email address you provided when concluding the contract for direct advertising for our own or similar services. You will receive this information from us regardless of whether you have subscribed to a newsletter.

If you do not wish to receive such recommendations from us by e-mail, you can object to the use of your address for this purpose at any time without incurring any costs other than the transmission costs according to the basic rates. A message in text form is sufficient for this. Of course, each e-mail always contains an unsubscribe link.

Who receives my data?

If we use a service provider in the sense of order processing, we nevertheless remain responsible for the protection of your data. All processors are contractually obliged to treat your data confidentially and to process it only within the scope of providing the service. The processors commissioned by us will receive your data if they require the data to fulfil their respective service.

Your data is processed in our customer database. The customer database supports the enhancement of the data quality of the existing customer data (duplicate cleansing, moved/deceased indicator, address correction) and enables the enrichment with data from public sources. This data is made available to the affiliated companies within the Group as required for contract processing. Customer data is stored separately for each company. If there is a legal obligation and in the context of legal prosecution, authorities and courts as well as external auditors may be recipients of your data. In addition, insurance companies, banks, credit agencies and service providers may be recipients of your data for the purpose of contract initiation and fulfilment.

Hosting/ External hosting

This website is hosted by an external service provider (hoster). The personal data collected on this website is stored on the hoster’s servers. This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses and other data generated via a website.

The hoster is used for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f GDPR). If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

Our hoster will only process your data to the extent necessary to fulfil its performance obligations and follow our instructions with regard to this data.

We use the following hoster:

united-domains AG
Gautinger Straße 10
82319 Starnberg
Germany

Order processing

We have concluded an order processing contract (AVV / DPA) with the above-mentioned provider. This is a contract prescribed by data protection law, which guarantees that the provider will only process the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

https://www.united-domains.de/unternehmen/datenschutz/

How long will my data be stored?

We process your data until the termination of the business relationship or until the expiry of the applicable statutory retention periods (e.g. from the German Commercial Code, the German Fiscal Code); in addition, until the termination of any legal disputes in which the data is required as evidence.

Is personal data transferred to a third country?

In principle, we do not transfer any data to a third country. In individual cases, data will only be transferred on the basis of an adequacy decision by the European Commission, standard contractual clauses, suitable guarantees or your express consent.

Security

We have taken technical and administrative security precautions to protect your personal data against loss, destruction, manipulation and unauthorised access. All our employees and service providers working for us are obliged to comply with the applicable data protection laws.

Whenever we collect and process personal data, it is encrypted before it is transmitted. This means that your data cannot be misused by third parties. Our security precautions are subject to a continuous improvement process and our data protection declarations are constantly being revised. Please ensure that you have the latest version.

Rights of data subjects

You have the right to information, correction, deletion or restriction of the processing of your stored data, a right to object to the processing as well as a right to data portability and to lodge a complaint in accordance with the requirements of data protection law.

Right to information:
You can request information from us as to whether and to what extent we process your data.

Right to rectification:
If we process your data that is incomplete or incorrect, you can request that we correct or complete it at any time.

Right to cancellation:
You can demand that we erase your data if we process it unlawfully or if the processing disproportionately interferes with your legitimate protection interests. Please note that there may be reasons that prevent immediate erasure, e.g. in the case of statutory retention obligations.

Irrespective of the exercise of your right to erasure, we will erase your data immediately and completely, provided that there is no legal or statutory retention obligation to the contrary.

Right to restriction of processing:
You can request that we restrict the processing of your data if

  • you contest the accuracy of the data, for a period enabling us to verify the accuracy of the data.
  • The processing of the data is unlawful, but you refuse to have it erased and instead request that the use of the data be restricted,
  • we no longer need the data for the intended purpose, but you still need this data for the assertion or defence of legal claims, or
  • you have objected to the processing of the data.

Right to data portability:
You may request that we provide you with the data you have provided to us in a structured, commonly used and machine-readable format and that you may transmit this data to another controller without hindrance from us, provided that

  • we process this data on the basis of a consent given and revocable by you or for the fulfilment of a contract between us, and
  • this processing is carried out using automated procedures.

If technically feasible, you can request that we transfer your data directly to another controller.

Right of objection:
If we process your data on the basis of a legitimate interest, you can object to this data processing at any time; this would also apply to profiling based on these provisions. We will then no longer process your data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defence of legal claims. You can object to the processing of your data for the purpose of direct advertising at any time without giving reasons.

Right of appeal:
If you are of the opinion that we are violating German or European data protection law when processing your data, please contact us so that we can clarify any questions you may have. Of course, you also have the right to contact the supervisory authority responsible for you, the respective state office for data protection supervision.

If you wish to assert one of these rights against us, please contact our data protection officer. In case of doubt, we may request additional information to confirm your identity.

Changes to this privacy policy

We reserve the right to change our privacy policy if this should be necessary due to new technologies. Please ensure that you have the latest version. If fundamental changes are made to this privacy policy, we will announce these on our website.

All interested parties and visitors to our website can contact us regarding data protection issues at:

Mr Fabian Fromm
Projekt 29 GmbH & Co. KG
Ostengasse 14
93047 Regensburg

0941 2986930
0941 2986 9316
anfragen@projekt29.de
www.projekt29.de

Data transparency in accordance with Art. 5 para. 1 lit.a, 12 & 13 GDPR in applicant management:

Personal data is collected from you in the employment relationship. Due to the new regulations in the General Data Protection Regulation (GDPR), we are therefore obliged to inform you in accordance with Art. 13 et seq. GDPR to inform you of the following:

Your employer is responsible for the collection and processing of your data:

GREENPEAK Management GmbH

Theatinerstraße 14
80333 Munich

+(49) 089 9233 4089
+(49) 089 5484 8026 53
info@greenpeak-partners.com

The contact details of our data protection officer are

Mr Fabian Fromm
Projekt 29 GmbH & Co. KG
Ostengasse 14
93047 Regensburg

0941 2986930
0941 2986 9316
anfragen@projekt29.de
www.projekt29.de

Right of objection:

You also have the right to object to the processing of your personal data for direct marketing purposes without giving reasons. If we process your data to protect legitimate interests, you can object to this processing on grounds relating to your particular situation. We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defence of legal claims.

LinkedIn privacy policy in accordance with Art. 26 GDPR (joint responsibility)

Responsible bodies:

LinkedIn Ireland Unlimited Company
Wilton Place,
Dublin 2, Ireland

and

GREENPEAK Management GmbH

Theatinerstraße 14
80333 Munich

+(49) 089 9233 4089
+(49) 089 5484 8026 53
info@greenpeak-partners.com

Information about the LinkedIn page of: GREENPEAK Management GmbH

We use the technical platform and services of LinkedIn Ireland Unlimited Company for the information service offered here.

We would like to point out that you use this LinkedIn page and its functions at your own risk. This applies in particular to the use of the interactive functions. Alternatively, you can also access the information offered via this page on our website at https://www.greenpeak-partners.com/de/.

When you visit our LinkedIn page, LinkedIn collects, among other things, your IP address and other information that is stored on your PC in the form of cookies. This information is used to provide us, as the operator of the LinkedIn pages, with statistical information about the use of the LinkedIn page.

The data collected about you in this context will be processed by LinkedIn and may be transferred to countries outside the European Union. LinkedIn describes in general terms what information LinkedIn receives and how it is used in its data usage guidelines. There you will also find information on how to contact LinkedIn and on the settings options for adverts.

The data usage guidelines are available at the following link:
https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy

How LinkedIn uses the data from visits to LinkedIn pages for its own purposes, to what extent activities on the LinkedIn page are assigned to individual users, how long LinkedIn stores this data and whether data from a visit to the LinkedIn page is passed on to third parties is not conclusively and clearly stated by LinkedIn and is not known to us.
When you access a LinkedIn page, the IP address assigned to your end device is transmitted to LinkedIn. According to LinkedIn, this IP address is anonymised (for “German” IP addresses). LinkedIn also stores information about the end devices of its users (e.g. as part of the “login notification” function); LinkedIn may thus be able to assign IP addresses to individual users.

If you are currently logged in to LinkedIn as a user, a cookie with your LinkedIn ID is stored on your device. This enables LinkedIn to recognise that you have visited this page and how you have used it. This also applies to all other LinkedIn pages. LinkedIn buttons integrated into websites enable LinkedIn to record your visits to these websites and assign them to your LinkedIn profile. This data can be used to offer you customised content or advertising.
If you want to avoid this, you should log out of LinkedIn or deactivate the “stay logged in” function, delete the cookies on your device and close and restart your browser. In this way, LinkedIn information that can be used to directly identify you will be deleted. This allows you to use our LinkedIn page without revealing your LinkedIn identifier. If you access interactive functions on the page (like, comment, share, message, etc.), a LinkedIn login screen will appear. Once you have logged in, you will once again be recognisable to LinkedIn as a specific user.
Information on how you can manage or delete information about you can be found on the following LinkedIn support pages: https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy

As the provider of the information service, we do not collect or process any other data from your use of our service.

You can find the current version of this privacy policy under “Data protection” on our LinkedIn page.

If you have any questions about our information services, you can contact us at info@greenpeak-partners.com
reach.

The agreement on joint responsibility pursuant to Art. 26 GDPR (as of 21 August 2020) with LinkedIn can be found at
https://legal.linkedin.com/pages-joint-controller-addendum

Rights of the users concerned

Unfortunately, we cannot fulfil our information obligations under Art. 13 EU GDPR, as only LinkedIn has full access to the user data. If you wish to exercise your data subject rights, please contact LinkedIn directly here. These rights include the following:

Right to information:
You can request information from us as to whether and to what extent we process your data.

Right to rectification:
If we process your data that is incomplete or incorrect, you can request that we correct or complete it at any time.

Right to cancellation:
You can demand that we erase your data if we process it unlawfully or if the processing disproportionately interferes with your legitimate protection interests. Please note that there may be reasons that prevent immediate erasure, e.g. in the case of statutory retention obligations.

Irrespective of the exercise of your right to erasure, we will erase your data immediately and completely, provided that there is no legal or statutory retention obligation to the contrary.

Right to restriction of processing:
You can request that we restrict the processing of your data if

  • you contest the accuracy of the data, for a period enabling us to verify the accuracy of the data.
  • The processing of the data is unlawful, but you refuse to have it erased and instead request that the use of the data be restricted,
  • we no longer need the data for the intended purpose, but you still need this data for the assertion or defence of legal claims, or
  • you have objected to the processing of the data.

Right to data portability:
You may request that we provide you with the data you have provided to us in a structured, commonly used and machine-readable format and that you may transmit this data to another controller without hindrance from us, provided that

  • we process this data on the basis of a consent given and revocable by you or for the fulfilment of a contract between us, and
  • this processing is carried out using automated procedures.

If technically feasible, you can request that we transfer your data directly to another controller.

Right of objection:
If we process your data on the basis of a legitimate interest, you can object to this data processing at any time; this would also apply to profiling based on these provisions. We will then no longer process your data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defence of legal claims. You can object to the processing of your data for the purpose of direct advertising at any time without giving reasons.

Right of appeal:
If you are of the opinion that we are violating German or European data protection law when processing your data, please contact us so that we can clarify any questions you may have. Of course, you also have the right to contact the supervisory authority responsible for you, the respective state office for data protection supervision.

If you wish to assert one of these rights against us, please contact our data protection officer. In case of doubt, we may request additional information to confirm your identity.

LinkedIn Ireland is solely responsible for implementing these rights in accordance with Articles 15-20 of the GDPR with regard to the data stored by LinkedIn Ireland after joint processing. You also have the right to object and lodge a complaint with us as described above.

If you require assistance with this or have any other questions, please contact us by email at info@greenpeak-partners.com. If you no longer wish the data processing described here to take place in the future, please remove the link between your user profile and our website by using the “I no longer like this page” and/or “No longer subscribe to this page” functions.

If you have any questions about data protection, you can also contact our data protection officer at

Mr Fabian Fromm
Projekt 29 GmbH & Co. KG
Ostengasse 14
93047 Regensburg

0941 2986930
0941 2986 9316
anfragen@projekt29.de
www.projekt29.de

Status/ Version: 1.0