Privacy Policy
Controller
Raw36 GmbH
Ulmenstraße 9
60325 Frankfurt am Main
Germany
Phone: +49 1520 33 60 876
Email Address: maxrilling@raw36.com
Overview of Processing Activities
The following overview summarizes the types of data processed, the purposes of processing, and the categories of data subjects.
Types of Processed Data:
- Inventory data
- Payment data
- Contact data
- Content data
- Contract data
- Usage data
- Meta, communication, and procedural data
Categories of Data Subjects:
- Service recipients and clients
- Prospective clients
- Communication partners
- Users
- Business and contractual partners
Purposes of Processing:
- Performance of contractual services and fulfillment of contractual obligations
- Communication
- Office and organizational procedures
- Organizational and administrative procedures
- Feedback
- Provision of our online offering and user-friendliness
- Public relations
- Business processes and economic procedures
Relevant Legal Bases
According to GDPR, we provide an overview of the legal bases on which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection regulations may apply in your country or ours. If special legal bases are applicable, we will inform you in the privacy policy.
- Consent (Art. 6(1)(a) GDPR): The data subject has given consent to the processing of their personal data for one or more specific purposes.
- Contract performance and pre-contractual requests (Art. 6(1)(b) GDPR): Processing is necessary for the performance of a contract or to take steps at the request of the data subject prior to entering into a contract.
- Legal obligation (Art. 6(1)(c) GDPR): Processing is necessary for compliance with a legal obligation to which the controller is subject.
- Legitimate interests (Art. 6(1)(f) GDPR): Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, provided these interests do not override the rights and freedoms of the data subject.
In addition to the GDPR, national regulations apply in Germany, particularly the Federal Data Protection Act (BDSG), which contains specific rules on data access rights, deletion rights, and the processing of special categories of personal data.
Rights of Data Subjects
Under the GDPR, you have various rights, particularly under Articles 15 to 21:
- Right to Object: You have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data.
- Right to Withdraw Consent: You have the right to withdraw any consent given at any time.
- Right to Erasure and Restriction of Processing: You have the right to request that your data be deleted or the processing be restricted in accordance with legal requirements.
- Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority if you believe the processing of your data violates the GDPR.
Use of Cookies
We use cookies to enhance user experience and analyze traffic. Cookies are small files stored on your device that can store information such as login status, preferences, or tracking information.
Security Measures
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, considering the latest technology, implementation costs, nature, scope, context, and purposes of processing, and the varying likelihood and severity of risk to the rights and freedoms of natural persons.
Updates to this Privacy Policy
We may update this privacy policy from time to time in response to legal changes or changes in our processing activities. The latest version will be available on our website.
Last updated: May 22, 2026
