The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration. Our website can usually be used without providing any personal data. Insofar as personal data (e.g. name, address or e-mail addresses) is collected on our website, this is always done on a voluntary basis as far as possible. This data will not be passed on to third parties without your express consent. We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.
Our company data protection officer will be happy to provide you with information or suggestions on the subject of privacy policy. You can reach him via email at info@goalimpact.com.
If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. We do not pass on this data without your consent.
At Goalimpact.com, we use Stripe to process payments made by our users. We are committed to protecting the privacy and security of our users' information. This Privacy Policy explains how we collect, use, and disclose personal information that we receive through the use of Stripe.
Information We Collect:
When you make a payment through Stripe, we collect information that you provide to us, including your name, email address, billing address, credit card information, and any other information necessary to process your payment.
Use of Information:
We use the information we collect to process your payment and provide you with the services you have requested. We may also use your information to communicate with you about your payment, to send you important notices or updates, and to provide customer support.
Disclosure of Information:
We may share your personal information with Stripe in order to process your payment. Stripe has their own Privacy Policy which can be viewed on their website. We may also disclose your personal information if required by law or if we believe that such disclosure is necessary to protect our rights or the rights of others.
Security:
We take reasonable measures to protect your personal information from unauthorized access or disclosure. We use industry-standard encryption to protect your credit card information and we store your personal information on secure servers.
Changes to this Privacy Policy:
We may update this Privacy Policy from time to time. We will post any changes on this page and, if the changes are significant, we will provide a more prominent notice.
When processing your personal data, the GDPR grants you, as the data subject, certain rights:
Right to information (Article 15 GDPR)
You have the right to request confirmation as to whether personal data concerning you are being processed; if this is the case, you have a right to information about this personal data and to the information listed in detail in Art. 15 GDPR.
Right to rectification (Article 16 GDPR)
You have the right to immediately request the correction of incorrect personal data concerning you and, if necessary, the completion of incomplete data. Right to erasure (Art. 17 GDPR)You have the right to demand that personal data concerning you be deleted immediately if one of the reasons listed in Art. 17 GDPR applies.
Right to restriction of processing (Article 18 GDPR)
You have the right to request the restriction of processing if one of the conditions listed in Article 18 GDPR is met. Right to data portability (Art. 20 GDPR)In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or to request the transmission of this data to a third party.
Right to object (Art. 21 GDPR)
If data is collected on the basis of Article 6 Paragraph 1 Clause 1 Letter f GDPR (data processing to protect legitimate interests), you have the right to object to the processing at any time for reasons that arise from your particular situation . We will then no longer process the personal data unless there are demonstrably compelling legitimate reasons for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
Right of appeal to a supervisory authority (Article 77 GDPR)
In accordance with Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your data violates data protection regulations. The right of appeal can be asserted in particular with a supervisory authority in the member state of your habitual residence, your place of work or the place of the alleged infringement.
Right for regular reviewing and deletion of data:
As part of our commitment to maintaining the privacy of our customers, we have implemented strict policies and procedures for handling your personal data. One of these policies relates to the deletion and review of customer data.
If we no longer need your data for the purposes for which it was collected or if you request the deletion of your data, we will promptly delete your data from our systems, including any backup or archival systems. Additionally, we will review our data retention practices periodically (1. October each year) to ensure that we are not retaining any unnecessary data.
If you wish to review the personal information we hold about you, please contact us and we will provide you with access to your data. If you believe that any of the information we hold about you is incorrect or incomplete, please let us know and we will promptly update it.
Please note that we may be required to retain certain information for legal or regulatory purposes, such as tax or accounting purposes. In these cases, we will only retain the minimum amount of information necessary to comply with these requirements.
Information regarding Analytics and Cookies
We want to process as little personal information as possible when you use our website. That's why we've chosen Fathom Analytics for our website analytics, which doesn't use cookies and complies with the GDPR, ePrivacy (including PECR), COPPA and CCPA. Using this privacy-friendly website analytics software, your IP address is only briefly processed, and we (running this website) have no way of identifying you. As per the CCPA, your personal information is de-identified. You can read more about this on Fathom Analytics' website.
The purpose of us using this software is to understand our website traffic in the most privacy-friendly way possible so that we can continually improve our website and business. The lawful basis as per the GDPR is "Article 6(1)(f); where our legitimate interests are to improve our website and business continually." As per the explanation, no personal data is stored over time.