Two executives in strategic discussion
Data Protection

Privacy Policy

How this website handles your data, your rights under the GDPR, and how to reach us.

Privacy Policy


1. Data Controller

The data controller responsible for processing personal data on this website is:

Catherine Schoendorff
DIVVA - Drive Impact With Ambition
Konrad-Adenauer-Allee 57
93051 Regensburg
Germany

Email: [email protected]

2. Hosting and Domain Services

This website is hosted by Netlify, Inc., 44 Montgomery Street, Suite 300, San Francisco, CA 94104, USA.

When you access this website, Netlify automatically collects certain information, including:

This data is technically necessary to ensure the secure and stable operation of the website.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest)

Data transfers to the United States cannot be excluded. Netlify is certified under the EU-U.S. Data Privacy Framework. For more information, see the Netlify Privacy Policy.

The domain extended-trs.com is registered with IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany. The domains extended-trs.eu and extended-trs.ch redirect to extended-trs.com. IONOS processes DNS data within the European Union. For more information, see the IONOS Privacy Policy.

3. Server Log Files

The hosting provider automatically collects and stores information in server log files transmitted by your browser.

This includes:

These data are not combined with other data sources.

4. Web Fonts (Locally Hosted)

This website uses the typefaces Playfair Display and Source Sans 3. These fonts are stored locally on the web server and loaded directly from there. No connection to external font services (such as Google Fonts, Adobe Fonts, or similar) is established when you visit this website. No data, including your IP address, is transmitted to third-party font providers.

The legal basis for local font embedding is Art. 6(1)(f) GDPR (legitimate interest in a consistent and professional visual presentation of the website).

5. Contact Form

If you submit inquiries via the contact form, the information you provide, including your contact details, will be stored for the purpose of processing your request. Contact form submissions are processed through Formspree, Inc., USA. Data is transmitted to Formspree servers for the sole purpose of email delivery to the data controller.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures), Art. 6(1)(f) GDPR (legitimate interest)

Data transfers to the United States are governed by Standard Contractual Clauses pursuant to Art. 46 GDPR. For more information, see the Formspree Privacy Policy.

6. Appointment Scheduling (Calendly)

This website contains links to Calendly, a scheduling service operated by Calendly LLC, 3423 Piedmont Road NE, Atlanta, GA 30305, USA. When you use these links to book an appointment, you leave this website and provide personal data (including name and email address) directly to Calendly. Calendly processes this data under its own privacy policy as a data controller.

No data is transmitted to Calendly until you actively click on a scheduling link and enter your information on the Calendly platform.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures)

For more information, see the Calendly Privacy Policy.

7. Video Conferencing (Zoom)

Scheduled meetings are conducted via Zoom, a video conferencing service operated by Zoom Video Communications, Inc., 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA. When you join a meeting, Zoom processes personal data including your name, email address, IP address, and device information. If you enable your camera or microphone, video and audio data are also processed.

Zoom acts as a data processor on behalf of the meeting host. Data may be transferred to the USA. Zoom is certified under the EU-U.S. Data Privacy Framework.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures), Art. 6(1)(f) GDPR (legitimate interest in conducting advisory meetings)

For more information, see the Zoom Privacy Policy.

8. Email Communication (Google Workspace)

Email communication is handled through Google Workspace, a service provided by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. When you send an email to catherine@rethink-value.com, your message and metadata (sender address, subject, timestamp) are processed by Google. Google acts as a data processor on behalf of the data controller.

Google is certified under the EU-U.S. Data Privacy Framework.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures), Art. 6(1)(f) GDPR (legitimate interest in professional communication)

For more information, see the Google Privacy Policy.

9. Newsletter

If you subscribe to our newsletter, we will process your email address to send you updates.

Registration is carried out using a double opt-in procedure.

Legal basis: Art. 6(1)(a) GDPR (consent)

You may withdraw your consent at any time by unsubscribing via the link included in each newsletter or by contacting us.

10. Your Rights

You have the following rights under the GDPR:

11. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority.

12. SSL/TLS Encryption

This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content.