Privacy Statement

1. Data Controller and Contact Information
   Pruve.org Email: [email protected]
   
   

2. Data Collection and Purpose
   
   We collect the following personal information when you submit our "Request Access" form:

• Full name

• Email address

• Telephone number

• Company information
  
  

We process this information for the following purposes:

• To manage your request for access to our product

• To communicate with you regarding your access request

• If explicitly consented, to keep you informed about our product developments

• To conduct legally required verification of your email address through double opt-in confirmation
  
  

3. Legal Basis for Processing
   
   We process your personal data based on:

• The necessity to process your access request (Art. 6(1)(b) GDPR)

• Your explicit consent for receiving additional information about our developments (Art. 6(1)(a) GDPR)

• Compliance with legal obligations under German law (Art. 6(1)(c) GDPR)
  
  

4. Double Opt-in Process
   
   To comply with German GDPR requirements, we implement a double opt-in process:

• Upon form submission, you will receive a confirmation email

• Your email address will only be activated for communications after you confirm by clicking the verification link

• We store the timestamp of both your initial registration and confirmation for documentation purposes
  
  
  

5. Data Storage and Security
   
   Your information is stored in:

• Our form management system (Tally)

• Our customer relationship management systems (twentyCRM and Brevo)

• Documentation of double opt-in verification
  
  

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.

6. Data Processing and Transfer
   
   We use the following systems to process your data:

• Tally for form submission

• TwentyCRM for customer relationship management

• Brevo for email communications and double opt-in process

All service providers process data within the EU or under adequate safeguards in accordance with GDPR requirements

.

7. Data Sharing
   
   We do not share your personal information with any third parties except for:

• Our authorized staff who process access requests

• Our technical service providers (Tally, twentyCRM, and Brevo) who are bound by data processing agreements (Art. 28 GDPR)
  
  

Your data will not be sold or transferred to other third parties for marketing purposes.

8. Data Retention
   
   We retain your personal information for:

• The duration necessary to process your access request

• Ongoing communication if you've consented to receive development updates

• Documentation of double opt-in verification as required by German law

• As required by applicable legal obligations
  
  
  

9. Your Rights
   
   Under the GDPR, you have the following rights:

• Right to access (Art. 15 GDPR)

• Right to rectification (Art. 16 GDPR)

• Right to erasure (Art. 17 GDPR)

• Right to restriction of processing (Art. 18 GDPR)

• Right to data portability (Art. 20 GDPR)

• Right to object (Art. 21 GDPR)

• Right to withdraw consent (Art. 7(3) GDPR)
  
  

To exercise these rights, please contact us at [email protected]

10. Updates to This Privacy Statement
    
    
    We may update this privacy statement as needed. Any significant changes will be communicated to you via email.
    
    

11. Questions and Complaints
    
    If you have any questions about our privacy practices or wish to file a complaint, please contact us at [email protected]. You also have the right to lodge a complaint with the competent data protection authority.
    
    

Last updated: January 5, 2025