Data Protection

1. Name and Address of the Data Controller

The responsible party for data processing on this website under the General Data Protection Regulation (GDPR) and other national data protection laws is:

Strategic Thinking Milon Gupta
Am Kastanienberg 56
69151 Neckargemünd, Germany
Phone: 06223 96889 97
Email: info@strategicthinking.eu

Data Protection Officer:
Due to the current company size and type of data processing, no data protection officer has been appointed.

2. General Information on Data Processing

We process personal data only to the extent necessary to provide our content and services or with your explicit consent.
The legal bases are:

  • 6(1)(a) GDPR: Consent
  • 6(1)(b) GDPR: Performance of a contract / pre-contractual measures
  • 6(1)(c) GDPR: Legal obligation
  • 6(1)(f) GDPR: Legitimate interest

Data will be deleted as soon as the purpose of processing is fulfilled, unless legal retention requirements exist.

3. Website Provision & Log Files

Each time our website is accessed, the following data is collected automatically:

  • Browser type and version
  • Date and time of access
  • Referring website (previously visited page)
  • IP address (anonymized if necessary)

Purpose: Ensure the website functions properly and protect against attacks
Legal basis: Art. 6(1)(f) GDPR
Retention period: Until the end of the session; log files up to 7 days

4. Cookies

Our website uses cookies to improve the user experience:

  1. Technically necessary cookies:
    • Enable basic functions such as login or language selection (Polylang)
    • Data: Language settings, session ID
    • Legal basis: 6(1)(f) GDPR
    • Retention period: Until the end of the session or longer if necessary
  2. Marketing / Statistics cookies:
    • HubSpot: Forms, popups, live chat
    • WP Statistics: Website analytics without data sharing
    • Cookie consent managed via CookieYes
    • Legal basis: 6(1)(a) GDPR (consent)

Withdrawal: You can deactivate cookies at any time via your browser or the cookie consent banner.

5. Registration / User Accounts

  • Collected data: Name, email address, password, IP address, registration date
  • Purpose: Provide personalized content
  • Legal basis: 6(1)(a) GDPR (consent) or Art. 6(1)(b) GDPR (contract)
  • Deletion: Upon account cancellation or after 3 years of inactivity

6. Contact Form & Email Contact

  • Collected data: Name, email, message, IP address, date/time
  • Purpose: Handling inquiries
  • Legal basis: 6(1)(a) GDPR (consent) or Art. 6(1)(f) GDPR (legitimate interest)
  • Retention period: Until the inquiry is fully processed, max. 7 days after the end of the conversation
  • Note: Email communication is encrypted (TLS/SSL, if supported)
  • No data sharing with third parties

7. Plugins & Third-Party Services

Our website uses the following plugins and services, which may process personal data:

  • Autoptimize
    Purpose: Optimization of CSS, JS, images, and Google Fonts
    Legal basis: Art. 6(1)(f) GDPR
    Data sharing: No personal data
  • CookieYes | GDPR Cookie Consent
    Purpose: Management of cookie consent
    Legal basis: Art. 6(1)(a) GDPR (consent)
    Data sharing: None
  • HubSpot All-In-One Marketing (Forms, Popups, Live Chat)
    Purpose: Create forms, popups, and live chat
    Legal basis: Art. 6(1)(a) & (f) GDPR
    Data sharing: USA, with standard contractual clauses (SCC)
  • Polylang
    Purpose: Website multilingual support
    Legal basis: Art. 6(1)(f) GDPR
    Data sharing: None
  • WP Statistics
    Purpose: Visitor analytics
    Legal basis: Art. 6(1)(f) GDPR
    Data sharing: Stored locally, no third-party transfer
  • WPForms Lite
    Purpose: Create contact forms
    Legal basis: Art. 6(1)(a) & (f) GDPR
    Data sharing: None
  • UpdraftPlus – Backup/Restore
    Purpose: Website backups
    Legal basis: Art. 6(1)(f) GDPR
    Data sharing: Optional to cloud services (Dropbox, Google Drive, etc.)
  • Wordfence Security
    Purpose: Security (firewall, malware protection)
    Legal basis: Art. 6(1)(f) GDPR
    Data sharing: None
  • WP Fastest Cache
    Purpose: Performance / caching
    Legal basis: Art. 6(1)(f) GDPR
    Data sharing: No personal data
  • Quick Featured Images
    Purpose: Manage featured images
    Legal basis: Art. 6(1)(f) GDPR
    Data sharing: None
  • Yoast SEO
    Purpose: SEO optimization
    Legal basis: Art. 6(1)(f) GDPR
    Data sharing: No personal data

Note: Any data transferred to third countries (e.g., HubSpot in the USA) is done with appropriate safeguards (SCC, Privacy Shield alternatives).

8. Security

We implement technical and organizational measures to protect your data from loss, manipulation, and unauthorized access, such as:

  • SSL/TLS encryption
  • Firewall & malware protection (Wordfence)
  • Regular backups (UpdraftPlus)

9. Rights of Data Subjects

You have the following rights under the GDPR:

  1. Access: Obtain information about which data we store and how it is processed
  2. Correction: Rectify incorrect data
  3. Deletion / Right to be forgotten
  4. Restriction of processing
  5. Data portability
  6. Objection:g., against direct marketing
  7. Withdrawal of consent
  8. Complaint to supervisory authority:

10. Changes to the Privacy Policy

We reserve the right to update this privacy policy due to changes to the website or legal requirements. The currently published version on the website applies.

Scroll to Top