Datajay Datajay
How it helps AI FAQ
Log in Start a data room
Legal

Data Privacy Policy

How Datajay collects, uses, stores, and protects your personal data — in compliance with the GDPR, the German BDSG and TDDG, and other applicable data protection laws worldwide.

1. Introduction & overview 2. Controller 3. Data protection officer 4. Your rights as a data subject 5. Data processing on our website 6. Cookies & tracking 7. Third-country transfers 8. Data security 9. Data retention 10. Automated decision-making 11. Obligation to provide data 12. International privacy rights 13. Changes to this policy 14. Contact

01 Introduction and overview

This privacy policy explains how Datajay UG (haftungsbeschränkt) ("Datajay", "we", "us", or "our") collects, uses, stores, and protects your personal data when you visit our website at https://www.datajay.com (the "Website").

We are committed to protecting your privacy and handling your personal data in compliance with the European Union General Data Protection Regulation (EU 2016/679, "GDPR"), the German Federal Data Protection Act (Bundesdatenschutzgesetz, "BDSG"), the German Telecommunications-Digital Services Data Protection Act (TDDG), and other applicable data protection laws worldwide.

02 Controller

The controller responsible for data processing on this website is:

Datajay UG (haftungsbeschränkt)
Reichenberger Straße 116
10999 Berlin
Germany

Email: hello@datajay.com
Managing Director: Thomas Kaiser

03 Data protection officer

We are currently not legally required to appoint a data protection officer. For any data protection inquiries, please contact us at hello@datajay.com.

04 Your rights as a data subject

Under the GDPR and applicable data protection laws, you have the following rights regarding your personal data:

Right of access (Art. 15 GDPR): You have the right to obtain confirmation as to whether personal data concerning you is being processed and, if so, to access that data along with specific information about the processing.

Right to rectification (Art. 16 GDPR): You have the right to request the correction of inaccurate personal data and the completion of incomplete personal data.

Right to erasure (Art. 17 GDPR): You have the right to request the deletion of your personal data where one of the grounds listed in Art. 17 GDPR applies, for example when the data is no longer necessary for its original purpose.

Right to restriction of processing (Art. 18 GDPR): You have the right to request the restriction of processing under certain conditions, for example while we verify the accuracy of your data.

Right to data portability (Art. 20 GDPR): You have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format and to transmit it to another controller.

Right to object (Art. 21 GDPR): You have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data based on Art. 6(1)(e) or (f) GDPR. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defence of legal claims. Where personal data is processed for direct marketing purposes, you have the right to object at any time to such processing; this also applies to profiling insofar as it is related to such direct marketing.

Right to withdraw consent (Art. 7(3) GDPR): Where processing is based on your consent, you have the right to withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.

Right to lodge a complaint: You have the right to lodge a complaint with a supervisory authority, in particular in the EU Member State of your habitual residence, your place of work, or the place of the alleged infringement. The competent supervisory authority for Datajay is:

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Friedrichstraße 219
10969 Berlin, Germany
https://www.datenschutz-berlin.de

To exercise any of these rights, please contact us at hello@datajay.com.

05 Data processing on our website

5.1 Web hosting and infrastructure

Our website and services are hosted by external service providers. Personal data collected on this website is stored on the servers of our hosts.

1. Website / landing page hosting. Our main website and landing page (https://www.datajay.com) are hosted by:

Hostinger International Ltd.
61 Lordou Vironos Street, 6023 Larnaca, Cyprus
https://www.hostinger.com

2. Application / software infrastructure. Our software applications and platform services are hosted by:

Hetzner Online GmbH
Industriestr. 25, 91710 Gunzenhausen, Germany
https://www.hetzner.com

Legal basis and data processing. The use of these hosting providers is based on Art. 6(1)(f) GDPR. We have a legitimate interest in ensuring that our website and software are provided securely, quickly, and efficiently by professional providers.

In accordance with Art. 28 GDPR, we have concluded Data Processing Agreements (DPAs) with both Hostinger International Ltd. and Hetzner Online GmbH. These agreements ensure that our hosts process your personal data strictly in accordance with our instructions and in compliance with applicable data protection laws.

5.2 Contact form

If you contact us via our contact form, the data you provide in the form (e.g., your name, email address, and message content) will be processed for the purpose of handling your inquiry. The provision of this data is necessary so that we can process your inquiry; failure to provide it means we cannot respond to your request.

The legal basis for processing data transmitted via our contact form is Art. 6(1)(b) GDPR (if your inquiry relates to the performance of a contract) or Art. 6(1)(f) GDPR (our legitimate interest in responding to your inquiry).

The data you provide via the contact form will remain with us until you request its deletion, revoke your consent to its storage, or the purpose for data storage no longer applies (e.g., after we have completed processing your inquiry). Mandatory legal provisions — in particular, statutory retention periods — remain unaffected.

5.3 Email contact

If you contact us by email, we will process the personal data you provide (e.g., your name and email address) solely for the purpose of handling your inquiry. The legal basis for this processing is Art. 6(1)(f) GDPR (our legitimate interest in responding to your message) or Art. 6(1)(b) GDPR if your message relates to the performance or initiation of a contract.

06 Cookies and tracking technologies

Our website currently uses only technically necessary cookies that are required for the proper functioning of the website. These cookies do not require your consent, as they are strictly necessary to provide the service you have requested.

We do not currently use analytics tools, tracking technologies, or advertising cookies.

Should we introduce additional cookies or tracking tools in the future, we will update this privacy policy accordingly and, where required, obtain your prior consent through a cookie consent mechanism.

07 Data transfers to third countries

In principle, we process your data within the European Union (EU) and the European Economic Area (EEA). If a transfer of personal data to a third country (outside the EU/EEA) occurs, it will only take place if there is an adequacy decision by the European Commission pursuant to Art. 45 GDPR, if appropriate safeguards are in place pursuant to Art. 46 GDPR (e.g., EU Standard Contractual Clauses), or if another exception under Art. 49 GDPR applies.

We will inform you about any specific third-country transfers in the relevant sections of this privacy policy.

08 Data security

We use appropriate technical and organisational security measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These measures include, but are not limited to:

  • SSL/TLS encryption for data transmission
  • Regular security updates and monitoring
  • Access controls and authentication measures
  • Regular review of our security practices

Our security measures are continually improved in line with technological developments.

09 Data retention

We retain personal data only for as long as is necessary for the purposes for which it was collected or as required by applicable legal retention obligations. Once the respective purpose ceases to apply or the applicable retention period expires, personal data is routinely deleted or anonymised in accordance with the statutory provisions.

10 Automated decision-making

We do not use automated decision-making, including profiling, within the meaning of Art. 22 GDPR.

11 Obligation to provide personal data

You are under no statutory or contractual obligation to provide personal data. However, failure to provide certain data may prevent us from responding to your inquiries or providing certain services.

12 International privacy rights

12.1 United Kingdom (UK GDPR)

If you are located in the United Kingdom, your personal data is protected under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. Your rights under UK law are substantially similar to those described in Section 4 of this policy. The competent supervisory authority in the UK is the Information Commissioner's Office (ICO) at https://ico.org.uk.

12.2 Switzerland (nDSG)

If you are located in Switzerland, your personal data is additionally protected under the Swiss Federal Act on Data Protection (nDSG). You have the right to request information about the processing of your personal data, and the competent supervisory authority is the Federal Data Protection and Information Commissioner (FDPIC) at https://www.edoeb.admin.ch.

12.3 California (CCPA/CPRA)

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to know what personal information we collect, the right to delete, and the right to opt out of the sale or sharing of personal information. We do not sell or share personal information as defined by the CCPA/CPRA.

12.4 Other jurisdictions

If you are located in another jurisdiction that provides additional data protection rights, we will comply with any applicable local laws. Please contact us at hello@datajay.com if you have questions about your rights.

13 Changes to this privacy policy

We reserve the right to update this privacy policy to reflect changes to our data practices, legal requirements, or operational needs. The updated version will be published on this Website and will take effect upon publication. We recommend reviewing this privacy policy periodically.

14 Contact

If you have any questions about this privacy policy or our data processing practices, please contact us:

Datajay UG (haftungsbeschränkt)
Reichenberger Straße 116
10999 Berlin, Germany
hello@datajay.com

Last updated: July 06, 2026

DatajayDatajay
Imprint Data Privacy
© 2026 Datajay Inc. · datajay.ai