Privacy Policy

Last Updated: 1st January 2026

deepclarora AG ("we", "our", or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, process, and disclose your personal data when you visit our website or use our services.

Data Controller Information

The data controller responsible for your personal data is:

Data We Collect

We collect and process the following types of personal data when you visit our website or use our services. The data we collect includes:

• Contact Information: Name, email address, phone number, company name, and postal address when you contact us or request our services.
• Technical Data: IP address, browser type, device information, operating system, and website usage data collected through cookies and analytics tools.
• Communication Data: Records of correspondence, inquiries, and support requests you send to us.
• Service Data: Information related to cloud migration projects, technical requirements, and business needs when you engage our services.

How We Use Your Information

We process your personal data for the following purposes, and our legal basis for processing how we use your information includes:

• Service Provision: To provide cloud migration consulting and services you have requested (Legal basis: Contract performance)
• Communication: To respond to your inquiries, provide customer support, and send service-related communications (Legal basis: Contract performance and legitimate interests)
• Website Improvement: To analyse website usage, improve user experience, and optimise our services (Legal basis: Legitimate interests)
• Marketing: To send relevant information about our services, with your consent (Legal basis: Consent)
• Legal Compliance: To comply with legal obligations and protect our legal rights (Legal basis: Legal obligation and legitimate interests)

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about the cookies we use, please refer to our Cookie Policy.

Data Sharing and Disclosure

We do not sell, trade, or rent your personal data to third parties. We may share your information in the following circumstances:

• Service Providers: With trusted third-party service providers who assist us in operating our website and providing services (e.g., cloud hosting, analytics, email services)
• Legal Requirements: When required by law, regulation, or legal process
• Business Transfers: In connection with mergers, acquisitions, or asset sales
• Consent: When you have given explicit consent for specific sharing purposes

International Data Transfers

Your personal data may be processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure adequate protection through appropriate safeguards such as Standard Contractual Clauses approved by the European Commission or other legally recognised mechanisms.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this Privacy Policy. Our data retention periods are:

• Contact and Communication Data: 3 years after last contact or until you withdraw consent
• Service Data: Duration of service agreement plus 7 years for legal and tax purposes
• Website Analytics Data: 26 months (Google Analytics default)
• Marketing Data: Until consent is withdrawn or 3 years of inactivity

Your Rights

Under the General Data Protection Regulation (GDPR), your rights regarding your personal data include:

• Access: Request access to your personal data and information about how we process it
• Rectification: Request correction of inaccurate or incomplete personal data
• Erasure: Request deletion of your personal data in certain circumstances
• Restriction: Request restriction of processing in certain circumstances
• Data Portability: Request transfer of your data to another service provider
• Object: Object to processing based on legitimate interests or for direct marketing
• Withdraw Consent: Withdraw consent at any time where processing is based on consent

Data Security

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, access controls, secure data storage, and regular security assessments.

Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by posting the updated policy on our website and updating the "Last Updated" date.

Contact Us

If you have any questions about this Privacy Policy, wish to exercise your rights, or have concerns about how we handle your personal data, please contact us:

Supervisory Authority

You have the right to lodge a complaint with the relevant data protection supervisory authority if you believe we have not complied with applicable data protection laws. In Germany, the relevant authority is the Federal Commissioner for Data Protection and Freedom of Information (BfDI).