📈

Privacy policy

1. Introduction

We take the protection of your personal data seriously. On this page, you will find information about how we collect, use, and protect your data when you use backoffice.guide and related domains.

This privacy policy is provided in accordance with the European General Data Protection Regulation (GDPR).

2. Data Controller

Responsible entity (controller):

Christian Sadrinna [Contact Information as per Imprint]

3. Data Collection and Processing

a) Visiting Our Website

When you visit our website, certain data is automatically collected by our web server (so-called server log files), including:

  • IP address (anonymized)

  • Date and time of access

  • Browser and operating system

  • Referrer URL

This data is collected for technical reasons and to ensure the security and functionality of our website. We do not link this data to individuals unless required by law or in cases of abuse.

b) Analytics and Cookies

We use Google Tag (Google Analytics and related services) to understand how visitors use our site. These cookies are used for statistical and analytical purposes and may store anonymized usage data.

Cookie Consent: You can manage or withdraw your consent to cookies at any time through the cookie button in the website footer. By default, non-essential cookies are only set after your explicit consent.

Standard Google Tag cookies collect:

  • Device and browser information

  • Website usage data (pages viewed, time spent, etc.)

For more information, see Google’s Privacy & Terms.

c) Marketing and Communications

When you contact us (e.g., via email, contact form), your details are processed solely for the purpose of handling your request and any follow-up communication. Data is never passed to third parties for marketing without your explicit consent.

d) Account, Purchase, and Subscription Data

If you register, purchase services, or book sessions, the following data is processed:

  • Name, email address, and contact information

  • Chosen services, payment data (processed only via trusted payment providers)

  • Usage data related to account and services

Data processing for accounts and customer management is conducted via Outseta and Airtable:

  • Outseta provides membership management, user authentication, email communication, and subscription billing.

  • Airtable is used as a work management/CRM platform to organize service delivery.

Both Outseta and Airtable are managed SaaS tools; they store personal data in secure, routinely audited data centers, mainly in the USA. Data is only processed to fulfill our services and obligations to you.

4. Legal Basis

We process your data:

  • Based on your consent (Art. 6(1)(a) GDPR)

  • For the performance of a contract or pre-contractual measures (Art. 6(1)(b) GDPR)

  • To comply with legal obligations (Art. 6(1)(c) GDPR)

  • On the basis of legitimate interests (website security, analytics, improvement; Art. 6(1)(f) GDPR)

5. Data Transfers and International Processing

Our core service providers (Google, Outseta, Airtable) process data primarily in the USA. Where data is transferred outside the EU/EEA, we ensure these providers have adequate safeguards in place (e.g., use of EU Standard Contractual Clauses, data processing agreements).

6. Storage Duration and Deletion

We store your personal data only as long as necessary for the respective purpose, or as required by legal retention obligations. When the purpose ceases to exist, or after expiry of retention obligations, your data will be blocked or deleted.

7. Your Rights

According to the GDPR, you have the following rights regarding your personal data:

  • Access (Art. 15 GDPR): Request information about your data processed by us.

  • Rectification (Art. 16 GDPR): Correct incorrect or incomplete data.

  • Erasure (Art. 17 GDPR): Delete your data under certain conditions.

  • Restriction of processing (Art. 18 GDPR): Request restriction where applicable.

  • Data portability (Art. 20 GDPR): Receive your data in a portable format.

  • Objection (Art. 21 GDPR): Object to processing based on your specific situation.

  • Withdrawal of consent: Withdraw previously given consent at any time, with effect for the future.

  • Lodging a complaint: With your local Data Protection Authority.

To exercise any of these rights, contact us at hello@backoffice.guide.

8. Data Security

We take appropriate, up-to-date technical and organizational security measures to protect your data against unauthorized access, loss, or misuse. All transmissions are encrypted via SSL/TLS.

9. Changes to this Privacy Policy

We may periodically update this policy to reflect changes in technology, law, or our services. The current version is always accessible on our website.

Last updated: July 11, 2025

10. Contact

If you have any questions about data protection or wish to exercise your rights, please contact us at hello@backoffice.guide.