Privacy Policy

Hi there!

We're Peak Privacy ApS, a company that helps bring clarity and transparency within ePrivacy and GDPR-compliance. It would be pretty strange if we didn't have a clear, understandable privacy policy ourselves, right?

So here it is - written in plain language, because privacy policies should never require a law degree to understand.

Who's behind this site and company?

Peak Privacy ApS is run from Copenhagen, Denmark.

You can find us at:

ÅBOULEVARD 43 DK-2200 - COPENHAGEN N DENMARK Company registration (CVR): DK-45354059

Need to reach us? Email dpo@peakprivacy.eu

What information do we collect?

Let's be specific:

When you sign up for early access:

When you book an appointment with us:

If you sign up for our newsletter (coming soon):

What about tracking and cookies?

We don't use any. No tracking pixels, no marketing cookies, no analytics tools. The only cookies we use are the technically necessary ones that make the website work. That's why you won't see a cookie banner on our site.

Why we process your data (Legal grounds)

We want to be clear about why we're legally allowed to process your data:

For Early Access Signups

We process your email address (and any optional information you provide) based on your consent. You give this consent when you check the box saying "By signing up for early access, you agree that we can store and process the information you provide in order to contact you."

For Appointment Bookings

When you book an appointment with us through meetergo, we process your data based on:

For Future Newsletter Subscriptions

If you sign up for our newsletter, we'll process your email address based on your consent, which you can withdraw at any time.

For Customers (When you use our services)

When you become a customer, we'll process your data based on:

We never process your data for any purpose other than what it was collected for, and you can always contact us at dpo[at]peakprivacy.eu to exercise your privacy rights.

Who processes your data?

Here's a breakdown of our data processing arrangements:

Data Processors (Companies processing data on our behalf)

Hetzner: Acts as our data processor for hosting our website and platform. They're an EU- based company with data centers in the EU, ensuring your data stays within European borders. As our data processor, they process data according to their standard terms which include data processing terms compliant with GDPR requirements. You can review our Data Processing Agreement with them You can review this agreement here.

Meetergo: Helps us manage appointment scheduling. They're a German company (GmbH) with servers hosted in Germany, ensuring your data stays within EU borders. When you book an appointment with us through meetergo, they'll store the information you provide (like your name and email) plus briefly record your IP address and access time for technical purposes. Meetergo is configured to automatically delete appointment data after 3 months to minimize data retention.We've signed their standard Data Processing Agreement to ensure your data is handled properly according to GDPR requirements. You can review this agreement here.

Acumbamail: Will act as our data processor for newsletter services (when we start sending them). They're a Spanish company with servers in Spain, guaranteeing that no international data transfers occur. We rely on their standard data processing agreement, which you can review here. Please scroll down to Annex A to read it.

Proton: Processes our company emails as our data processor. Being a Swiss company known for privacy-first services, they provide strong data protection guarantees. You can review the Data Processing Agreement we have with them here.

Technical Service Providers (No personal data processing)

Cloudflare: Provides DNS services only. While US-based, they only handle public DNS records which contain no personal data.

Mailgun: Used solely for internal system notifications, with no processing of customer personal data.

Since these technical service providers don't process any personal data on our behalf, no data processing agreements are required. However, we carefully select our service providers based on their privacy and security standards, with a preference for EU-based providers where possible.

How long do we keep your information?

More-information-signups: We keep this for 12 months. After that, we'll either delete it or ask ifyou want us to keep you updated.

Appointment booking information: Stored in our scheduling system (Meetergo) for 3 months after your appointment, after which it's automatically deleted.

Newsletter subscriptions (when we start those): Until you unsubscribe

Your rights (yes, you have quite a few!)

The GDPR gives you several rights, and we're here to help you use them.

You can:

Want to exercise any of these rights? Just email us at dpo [at] peakprivacy.eu. We'll help you out as soon as possible (and always before 30 days.)

Not happy with how we handle your data?

First, please tell us about it at dpo [at] peakprivacy.eu—we want to make things right. If you're still not satisfied, you can complain to the Danish Data Protection Authority (Datatilsynet):

Carl Jacobsens Vej 35 2500 Valby Denmark www.datatilsynet.dk

Changes to this policy

If we make any significant changes to how we handle data, we'll update this policy and let you know about it.

Last updated: 2025-04-27