Privacy Policy

Last updated: February 2026

1. Data Controller

The data controller responsible for this website is:

dig8ital GmbH
Erika-Mann-Straße 63, 80636 Munich, Germany
Managing Director: Alexandre Medarov
Email: hello@dig8ital.com
Phone: +(49) 89-1799-7645
Commercial Register: HRB Munich, 254142
VAT ID: DE328959798

2. Overview

We take your privacy seriously. This policy explains how dig8ital GmbH collects, uses, stores, and protects personal data when you visit our website or engage with our services, in compliance with the EU General Data Protection Regulation (GDPR) and applicable German data protection laws.

Our website is built with performance and privacy in mind. We use minimal cookies, no heavy tracking scripts, and host our infrastructure within the EU (Hetzner, Germany).

3. What Data We Collect

3.1 Server Log Data

When you visit our website, our hosting provider (Hetzner, EU) automatically collects technical data including your IP address (anonymised), browser type, operating system, referring URL, pages visited, and date/time of access. This data is necessary for the secure operation of our website.

3.2 Contact Form

When you submit our contact form, we collect your name, email address, company name (optional), and message content. This data is used solely to respond to your enquiry.

3.3 Cookies & Analytics

We use a minimal set of cookies. For details, see our Cookie Policy. If Google Analytics is enabled, IP addresses are anonymised before processing.

4. Purposes & Legal Basis

We process your data based on the following legal grounds under Art. 6 GDPR:

  • Contract performance (Art. 6(1)(b)): Processing contact form submissions to respond to your enquiry or initiate a business relationship.
  • Legitimate interest (Art. 6(1)(f)): Server log data for website security, performance monitoring, and fraud prevention.
  • Consent (Art. 6(1)(a)): Analytics cookies and any marketing tracking (e.g., LinkedIn pixel) are only activated with your explicit consent.

5. Third-Party Services

5.1 Google Analytics

We may use Google Analytics (Google Ireland Limited) with IP anonymisation enabled. Analytics cookies are only set with your consent. Google processes data in accordance with their Privacy Policy.

5.2 LinkedIn

We may use the LinkedIn Insight Tag for conversion tracking and retargeting, activated only with your consent. LinkedIn Corporation processes data under their Privacy Policy.

6. International Data Transfers

Our primary infrastructure is hosted within the EU (Hetzner, Germany). Where third-party services transfer data outside the EU/EEA (e.g., Google, LinkedIn to the USA), such transfers are safeguarded by:

  • EU adequacy decisions where applicable (e.g., EU-US Data Privacy Framework)
  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Additional technical and organisational measures as required

7. Data Retention

  • Server logs: Automatically deleted after 30 days.
  • Contact form data: Retained for the duration of the business relationship or enquiry, then deleted unless longer retention is required by law (e.g., 6–10 years for tax/commercial records under German law).
  • Analytics data: Retained according to the respective third-party provider's retention settings, typically up to 14 months.

8. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access (Art. 15) — obtain confirmation and a copy of your data
  • Right to rectification (Art. 16) — correct inaccurate data
  • Right to erasure (Art. 17) — request deletion of your data
  • Right to restriction (Art. 18) — restrict processing in certain circumstances
  • Right to data portability (Art. 20) — receive your data in a structured, machine-readable format
  • Right to object (Art. 21) — object to processing based on legitimate interest
  • Right to withdraw consent (Art. 7(3)) — withdraw consent at any time without affecting prior processing
  • Right to lodge a complaint — with the competent supervisory authority (Bayerisches Landesamt für Datenschutzaufsicht, www.lda.bayern.de)

To exercise any of these rights, contact us at hello@dig8ital.com.

9. Security Measures

We implement appropriate technical and organisational measures to protect your personal data, including TLS encryption for data in transit, access controls, regular security assessments, and EU-hosted infrastructure. As a cybersecurity firm, we apply industry best practices to our own systems.

10. Changes to This Policy

We may update this policy to reflect changes in our practices or legal requirements. The latest version will always be available on this page with the updated date above.

11. Contact

For any questions regarding this privacy policy or your personal data, please contact:

dig8ital GmbH
Erika-Mann-Straße 63, 80636 Munich, Germany
Email: hello@dig8ital.com
Phone: +(49) 89-1799-7645

Book a Free Call Contact Us