Last updated: 12.02.2026
This Privacy Policy applies to all services operated by:
Berger & Rosenstock GbR
Dieselstraße 22e
61231 Bad Nauheim
Germany
Email: moin@berger-rosenstock.de
Berger & Rosenstock GbR is the data controller within the meaning of the EU General Data Protection Regulation (GDPR), the UK GDPR, and other applicable data protection laws.
This Privacy Policy applies worldwide to:
Our corporate website (berger-rosenstock.de)
All associated product and landing page domains
All mobile applications (iOS and Android) published by us
Backend systems and APIs
Our official social media profiles
Communication via email, contact forms, or newsletters
If a specific service requires additional privacy disclosures, these will be provided within that service.
Depending on how you interact with our services, we may process:
Identification data (e.g., name, email address)
Communication data (messages, support inquiries)
Technical data (IP address, browser type, device identifiers)
Usage data (app interaction, system logs)
Transaction-related data (processed by app stores, not directly by us)
We do not knowingly collect special categories of personal data unless voluntarily provided.
If you are located in the EU, EEA, or United Kingdom, processing is based on:
Art. 6(1)(a) GDPR – Consent
Art. 6(1)(b) GDPR – Performance of a contract
Art. 6(1)(c) GDPR – Legal obligation
Art. 6(1)(f) GDPR – Legitimate interest
For users outside these jurisdictions, processing occurs in accordance with applicable local laws.
Our websites and landing pages are hosted by:
MailerLite Limited
Dublin, Ireland
Technical data processed may include:
IP address
Access timestamps
Requested URL
Browser and device data
Purpose:
Website delivery
Stability
Security
Fraud prevention
Legal basis: Legitimate interest.
MailerLite acts as a processor under Art. 28 GDPR where applicable.
Our backend and application infrastructure is hosted via:
Civo Ltd
United Kingdom
Processing may include:
Server logs
API requests
IP addresses
System diagnostics
Purpose:
Application performance
Security
Monitoring
Error resolution
Appropriate data processing agreements have been implemented where required.
Our mobile applications are distributed via:
Apple App Store
Google Play Store
Apple and Google process personal data independently, including:
Account information
Payments
Download analytics
Store statistics
We are not responsible for processing conducted by these providers.
Within our iOS and Android apps, we process personal data only as necessary to provide core functionality.
This may include:
Device information
Technical identifiers
User-submitted content
Support communications
We do not sell personal data.
We do not use personal data for behavioral advertising without explicit consent.
If you subscribe to updates, we process:
Email address
Optional voluntary information
Delivery is handled via MailerLite (Ireland).
Consent may be withdrawn at any time.
Double opt-in procedures are implemented where required by law.
We maintain profiles and publish content on:
YouTube (Google)
Instagram (Meta)
Facebook (Meta)
These platforms act as independent controllers for data processed through their services.
Please consult their respective privacy policies.
Due to our global operations, personal data may be transferred outside your country of residence.
For EU/EEA users, transfers outside the EEA are safeguarded by:
Adequacy decisions
Standard Contractual Clauses (SCCs)
Other legally recognized safeguards
For UK users, transfers comply with UK GDPR transfer requirements.
We retain personal data only as long as necessary for:
Contractual obligations
Legal compliance
Legitimate business interests
Data no longer required is securely deleted or anonymized.
You may have the right to:
Access your data
Correct inaccurate data
Request deletion
Restrict processing
Data portability
Object to processing
Withdraw consent
To exercise your rights, contact:
moin@berger-rosenstock.de
You may lodge a complaint with your local supervisory authority.
If you are a California resident, you may have the right to:
Know what personal information is collected
Request deletion
Request correction
Opt-out of sale or sharing (we do not sell personal data)
Non-discrimination for exercising privacy rights
To exercise California rights, contact:
moin@berger-rosenstock.de
Where applicable, residents of certain U.S. states (e.g., Virginia, Colorado, Connecticut, Utah) may have similar rights regarding access, deletion, correction, and opt-out rights.
We do not engage in targeted advertising without appropriate consent.
Our services are not directed to children under 13 (or higher minimum age where applicable).
We do not knowingly collect personal data from children without parental consent.
We implement appropriate technical and organizational measures to protect personal data against:
Unauthorized access
Accidental loss
Misuse
Alteration
However, no system can guarantee absolute security.
We do not engage in automated decision-making or profiling that produces legal or similarly significant effects.
Some browsers transmit “Do Not Track” signals. As there is no uniform industry standard, we do not currently respond differently to such signals.
We may update this Privacy Policy to reflect:
Legal changes
Service modifications
Infrastructure updates
The updated version will be published on our website with an updated revision date.