CakeOps Logo
Back to homepage

Privacy Policy

1. Controller

The controller responsible for data processing on this website is:

Bullhornlab e.K.
Owner: Sebastian Werner
Marienstr. 19
90402 Nuremberg
Germany
Email: hello@cakeops.de

2. General information on data processing

We process personal data only to the extent necessary to provide this website, handle incoming requests, ensure technical security and operate our offering in a commercially viable manner.

Personal data means any information relating to an identified or identifiable natural person.

3. Hosting and provision of the website

This website is published and hosted via Bolt. In the context of hosting, technically required data may be processed in order to deliver the website, ensure its stability and detect and resolve attacks or malfunctions. Bolt provides built-in hosting and publishing for this purpose.

4. Server log files

When you access this website, the hosting provider or the technical infrastructure may process the following data in particular:

  • IP address
  • date and time of access
  • page or URL accessed
  • referrer URL
  • browser type and version
  • operating system
  • hostname of the accessing device
  • technically necessary status and protocol data

This processing takes place for the technical provision of the website, system security, error analysis and abuse prevention.

Legal basis: Art. 6(1)(f) GDPR.

5. Enquiry form / interest form

If you contact us via our form, we process the data you enter in order to handle your enquiry and to initiate a possible business relationship.

The following data may in particular be processed:

  • contact person
  • email address
  • company name
  • number of employees
  • language version / locale
  • content of the enquiry
  • optionally granted consents

Providing this data is voluntary. However, without the information marked as required fields, we may not be able to process your enquiry in a meaningful way.

Legal basis:

  • Art. 6(1)(b) GDPR, insofar as pre-contractual communication is concerned
  • Art. 6(1)(f) GDPR, insofar as the processing serves the efficient handling of corporate enquiries
  • Art. 6(1)(a) GDPR, insofar as you optionally consent to updates or further communication.

6. Contact via email

If you contact us directly by email, we process the data you provide exclusively for the purpose of handling your message and the associated communication.

Legal basis: Art. 6(1)(b) GDPR or Art. 6(1)(f) GDPR.

7. Use of MailerLite

For the processing and management of lead enquiries and — if you opt in — for subsequent email communication, we use MailerLite as an external service provider.

The following data may in particular be transmitted to or processed by MailerLite:

  • contact person
  • email address
  • company name
  • number of employees
  • language version / locale
  • technical metadata related to the enquiry
  • information on whether consent for updates was granted

MailerLite provides its own privacy information. MailerLite also offers a Data Processing Addendum; according to MailerLite, this forms part of the terms of service.

Legal basis:

  • Art. 6(1)(b) GDPR for handling your enquiry
  • Art. 6(1)(a) GDPR, insofar as you consent to receiving further updates
  • Art. 6(1)(f) GDPR for structured and efficient lead management.

8. Cookies, local storage and consent management

This website currently only uses strictly necessary cookies or comparable local storage mechanisms, in particular to:

  • ensure the functionality of the website
  • store the language preference
  • store the cookie banner decision
  • provide basic UI functionality

We currently do not use optional analytics or marketing cookies without consent.

Legal basis: The storage of information on end devices or access thereto is governed by Section 25 TDDDG. Insofar as only technically necessary operations are involved, this is carried out on the basis of Section 25(2) TDDDG. Insofar as personal data is processed in this context, this is additionally based on Art. 6(1)(f) GDPR.

9. Recipients of data

Recipients of personal data may include in particular:

  • hosting and infrastructure providers
  • technical service providers for the provision of the website
  • MailerLite as service provider for form and lead processing
  • internal departments, insofar as this is necessary for handling enquiries

Data is only shared insofar as this is necessary for the stated purposes or a legal obligation exists.

10. International data transfers

It cannot be ruled out that, in connection with individual technical service providers or communication services, data may also be processed outside the European Union or the European Economic Area. In such cases, we ensure that an adequate level of data protection exists and — where necessary — appropriate safeguards are in place. MailerLite provides information on this in its own privacy documentation and contractual documents.

11. Retention period

We store personal data only for as long as necessary for the respective purposes.

This means in particular:

  • Server and protocol data are only stored for as long as necessary for security, stability and error analysis
  • Form data and email enquiries are stored for as long as necessary to process the enquiry, follow up on communication and initiate or carry out a business relationship
  • Consent data is stored for as long as necessary to demonstrate consent or until revocation
  • Statutory retention obligations remain unaffected

12. Obligation to provide data

There is no legal obligation to provide personal data. However, certain information is required to use the enquiry form so that we can process your request.

13. Your rights

Under the GDPR, you have the following rights in particular:

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restriction of processing
  • Right to data portability
  • Right to object to certain processing operations
  • Right to withdraw consent with effect for the future
  • Right to lodge a complaint with a supervisory authority.

14. Right to object

Insofar as we process personal data on the basis of Art. 6(1)(f) GDPR, you have the right to object to the processing on grounds relating to your particular situation.

Insofar as personal data is processed for direct marketing purposes, you have the right to object to such processing at any time.

15. Withdrawal of consent

You may withdraw any consent you have given at any time with effect for the future. The lawfulness of processing carried out on the basis of the consent prior to its withdrawal remains unaffected.

16. Data protection contact

If you have any questions about data protection or the processing of your personal data, you can contact us at any time:

hello@cakeops.de

17. Status of this privacy policy

This privacy policy applies to the current CakeOps landing page in its present technical state. If additional services, tracking tools, payment providers, embedded media or further integrations are added, this privacy policy must be updated accordingly.

Cookies & privacy

We only use strictly necessary technologies so the website works, your language preference can be remembered and your cookie decision can be stored. We currently do not set optional marketing or analytics cookies without your consent.

Privacy