Privacy Policy

1. Data Controller

RAG Pioneers is operated as an independent initiative by:

Tino Bahr
Postfach 210426
50530 Köln, Germany
Email: privacy@ragpioneers.eu

2. Overview

We are committed to protecting your privacy and handling your personal data responsibly. This policy explains what information we collect, how we use it, and your rights under the General Data Protection Regulation (GDPR).

3. Information We Collect

When you contact us through our website, we collect:

• Contact information: Name, email address, company name (if provided)
• Message content: Your inquiry or message
• Technical data: IP address, browser type, and access times (automatically collected by our hosting provider for security purposes)

4. Legal Basis for Processing

We process your personal data based on:

• Consent (Art. 6(1)(a) GDPR): When you voluntarily submit information through our contact form
• Legitimate interests (Art. 6(1)(f) GDPR): For website security, preventing abuse, and improving our services

5. How We Use Your Information

We use your data to:

• Respond to your inquiries and provide customer support
• Provide information about our services
• Send communications you have requested
• Maintain the security and functionality of our website

We do not:

• Sell, rent, or share your personal information with third parties for marketing purposes
• Use your data for purposes other than those stated in this policy

6. Third-Party Services

Our website is hosted by Strato AG (Germany), which may process technical data (IP addresses, access logs) for hosting and security purposes. Strato operates under strict GDPR compliance and data processing agreements.

We do not use analytics, tracking, or advertising services.

7. Data Retention

We retain your personal data only as long as necessary:

• Contact form submissions: Up to 3 years after the last communication, or until you request deletion
• Technical logs: Up to 90 days for security purposes
• Legal obligations: Longer retention if required by German or EU law

You may request deletion of your data at any time (see “Your Rights” below).

8. International Data Transfers

All personal data is stored and processed exclusively within the European Union (EU). We do not transfer your data to countries outside the EU or EEA.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

• Encrypted data transmission (SSL/TLS)
• Secure hosting infrastructure with regular security updates
• Access controls and authentication
• Regular security monitoring and backups

While we take reasonable precautions, no internet transmission is completely secure. We encourage you to protect your own information online.

10. Cookies and Similar Technologies

Our website uses only essential cookies required for basic functionality:

• Session cookies: Maintain your connection during your visit (deleted when you close your browser)
• Security cookies: Prevent cross-site request forgery and protect against malicious activity

We do not use tracking, analytics, or marketing cookies. Essential cookies do not require consent under GDPR as they are strictly necessary for the website to function.

11. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right to access (Art. 15 GDPR): Request a copy of your personal data
• Right to rectification (Art. 16 GDPR): Correct inaccurate or incomplete data
• Right to erasure (Art. 17 GDPR): Request deletion of your data (“right to be forgotten”)
• Right to restriction (Art. 18 GDPR): Limit how we use your data
• Right to data portability (Art. 20 GDPR): Receive your data in a structured, machine-readable format
• Right to object (Art. 21 GDPR): Object to processing based on legitimate interests
• Right to withdraw consent (Art. 7(3) GDPR): Withdraw consent at any time

To exercise any of these rights, contact us at privacy@ragpioneers.eu.

You also have the right to lodge a complaint with a supervisory authority (in Germany: your state's data protection authority, or the Bundesbeauftragter für den Datenschutz und die Informationsfreiheit).

12. Children's Privacy

Our website is not directed at children under 16 years of age. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately so we can delete it.

13. Automated Decision-Making and Profiling

We do not use automated decision-making or profiling. All processing of your personal data involves human review and decisions.

14. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. When we make significant changes, we will:

• Update the “Last updated” date at the top of this page
• Notify you via email if you have provided contact information
• Display a notice on our website for 30 days

We encourage you to review this policy periodically.

15. Contact Us

For any privacy-related questions, concerns, or to exercise your rights, please contact:

Email: privacy@ragpioneers.eu
Postal address: Tino Bahr, Postfach 210426, 50530 Köln, Germany

We will respond to your request within one month of receipt, as required by GDPR.