top of page

Privacy Policy

Responsible for data processing
For the data processing taking place in connection with the Budge website, the data mentioned in the imprint are to be considered and are responsible under data protection law.

Data that we process automatically
You can use our Budge website without disclosing a lot of personal data. However, each time you or another user use our Budge website, we automatically process individual personal data (e.g. the IP address), as these are required to make the operation of our website technically possible in the first place (Art. 6 para. 1 letter b DSGVO).
However, we cannot identify you directly with this data.

Data that you provide to us voluntarily
Beyond that, you do not have to provide any personal information. Only if you want to use further functions of the Budge website or contact us voluntarily, we need further personal data from you. As soon as you enter personal data (such as name, address, e-mail address) on our website, this is done on a voluntary basis.
Personal data is processed, for example, when you perform the following actions:

  • Contacting us by e-mail

  • Registration and deregistration as beta user and newsletter subscriber

If you provide us with personal data for the above-mentioned reasons, we use it to process the user contract (Art. 6 para. 1 letter b DSGVO). We will send you a newsletter based on your consent (Art. 6 para. 1 lit. a DSGVO) and use your contact data for this purpose.
In addition, we process data about your usage behavior as a beta user in order to continuously improve our app, if you provide us with this data and consent to this processing (Art. 6 para. 1 letter a DSGVO).

Your rights
We will be happy to inform you free of charge about the data we have stored about you and delete or correct it if you wish. You can always object to data processing by us and you can of course revoke your consent at any time. Simply contact us with your request and please inform yourself in detail about your rights in the following.
We will of course make sure that you can make effective use of all your rights.
If you are of the opinion that your data has been processed improperly, you can complain to the competent supervisory authority.

1. general information about data processing


1.1 Important Terms. "Personal data" means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
"Processing" means any operation or set of operations which is performed upon personal data, whether or not by automatic means. This term practically covers most cases where data are used in some way.
"Controller" means the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data.


1.2 Legal Basis. According to Art. 13 DSGVO, the legal bases of our data processing shall be communicated to you. If the legal basis is not mentioned in this Privacy Policy, the following applies:
The legal basis for data processing based on consent is Art. 6(1)(a) and Art. 7 DSGVO, the legal basis for processing for the performance of our services and implementation of contractual measures and responding to requests is Art. 6(1)(b) DSGVO, the legal basis for processing for the performance of our legal obligations is Art. 6(1)(c) DSGVO, and the legal basis for processing for the performance of our legal obligations is Art. 6(1)(d) DSGVO. c DSGVO, and the legal basis for processing based on our legitimate interests is Art. 6 para. 1 lit. f DSGVO. If once vital interests of a data subject or another natural person require data processing of personal data, we base this data processing on Art. 6 para. 1 letter d DSGVO.


1.3 Erasure of data. We delete or restrict the processing of personal data in accordance with Articles 17 and 18 DSGVO. Stored data is generally deleted when it is no longer needed for its intended purpose, unless the deletion conflicts with legal retention obligations. We restrict data processing if the data cannot be deleted because, for example, it is to be used for other and legally permissible purposes. This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for reasons of commercial or tax law.
In Germany, data is retained in particular for 6 years in accordance with Section 257 (1) HGB (commercial books, inventories, opening balances, annual financial statements, commercial letters, accounting vouchers, etc.) and for 10 years in accordance with Section 147 (1) AO (books, records, management reports, accounting vouchers, commercial and business letters, documents relevant for taxation, etc.).
Insofar as you are expressly informed in our data protection provisions when data will be deleted, this specific statement on the deletion date shall of course apply.


1.4 Data security. All data transfers between your terminal device and our servers or the servers of our service providers are encrypted. We use standard encryption techniques to ensure that your data transfer is secure. We also follow the principle of data economy and try to collect and store only as much of your personal data as is necessary for the provision of our service.

2. technically necessary data processing. In the course of providing our services, technically necessary data processing takes place, including server logs, firewall logs, etc.. Within the scope of these logs, basic connection data is stored such as:

  • Time of access

  • IP address of the end device

  • Requested resource

3. communication. If you contact us directly and you have questions or comments about the website or your user agreement, the data processing takes place for the fulfillment or initiation of this contractual relationship (Art. 6 para. 1 letter b DSGVO). For other topics, the legal basis is our legitimate interest in being able to respond to you appropriately in case of general inquiries (Art. 6 para. 1 lit. f DSGVO). Your data will be deleted as soon as the respective request is completed and there are no legal retention obligations.

4. Subscribing and unsubscribing to the newsletter and as a beta user. By subscribing to our newsletter, you agree to receive it and to the described procedures.
Content of the newsletter: We send newsletters, e-mails and other electronic notifications with promotional information (hereinafter "newsletter") only with the consent of the recipient or a legal permission. Insofar as the contents of the Newsletter are specifically described in the context of a registration, they are decisive for the consent of the users. Otherwise, our newsletters contain information about our products, offers, promotions and our company.
Double-Opt-In and logging: The registration for our newsletter takes place in a so-called double-opt-in process. This means that after registration you will receive an e-mail in which you are asked to confirm your registration. This confirmation is necessary so that no one can register with other email addresses. The registrations for the newsletter are logged in order to be able to prove the registration process according to the legal requirements. This includes the storage of the registration and confirmation time, as well as the IP address.
Subscription data: You can subscribe to the newsletter by registering on the website with your e-mail address.
Legal basis: We process your e-mail address to send you newsletters if you have consented to this (Art. 6 para. 1 letter a DSGVO).
Cancellation/revocation: You can cancel the receipt of our newsletter at any time, i.e. revoke your consent. After that, we will no longer process your e-mail address for this purpose. If we do not need your email address for any other purpose, we will delete it.

5. Integration of services and content. In some cases, we integrate content from external third parties into our website, such as videos or selected articles. When you access this external content, data is transmitted to the respective content provider. We mark these external contents on our climate website. If you access this content, you agree to a corresponding data processing by the provider of the external content. We have no influence on the data processing of these providers.

6. cooperation with processors and third parties. If, in the course of our processing, we disclose data to other persons and companies (order processors or third parties), transmit it to them or otherwise grant them access to the data, this will only be done on the basis of a legal permission (e.g. if a transmission of the data to third parties, such as payment service providers, is required for the performance of the contract pursuant to Art. 6 (1) lit. b DSGVO), you have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).
If we commission third parties with the processing of data on the basis of a so-called "order processing agreement", this is done on the basis of Art. 28 DSGVO.

7. transfers to third countries. If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if this occurs in the context of using third-party services or disclosing, or transferring data to third parties, this will only occur if it is done in order to fulfill our (pre)contractual obligations, on the basis of your consent, due to a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we process or allow the processing of data in a third country only if the special requirements of Art. 44 et seq. DSGVO are met. This means that the processing is carried out, for example, on the basis of special guarantees, such as the officially recognized determination of a level of data protection that corresponds to the EU (e.g. for the USA through the "Privacy Shield") or compliance with officially recognized special contractual obligations (so-called "standard contractual clauses").

8. right to object. You can also object to the processing of your personal data at any time in accordance with the legal requirements. Insofar as we provide you with an opt-out option in this Privacy Policy or elsewhere on the Klima website, you can simply exercise your right to object in this way.

9. Right of revocation of consent. You can revoke a declared consent at any time with effect for the future. For this purpose, an informal message by e-mail to us is sufficient or you use an opt-out option provided by us, for example directly on the website. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

10. data subject rights


10.1 Information. You have the right to request information about whether and how data relating to you is processed for further information and a copy of the data in accordance with Art. 15 DSGVO.

10.2 Completion and correction. In accordance with Art. 16 DSGVO, you have the right to request the completion of the data concerning you or the correction of incorrect data concerning you.

10.3 Deletion and restriction. In accordance with Art. 17 of the GDPR, you have the right to request that data concerning you be deleted without undue delay, or alternatively, in accordance with Art. 18 of the GDPR, to request restriction of the processing of the data.

10.4 Data portability. According to Art. 20 DSGVO, you have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done insofar as it is technically feasible.

10.5 Right of Complaint. If you believe that data processing is unlawful, you are free to file a complaint with the competent supervisory authority. The competent supervisory authority in data protection matters is the State Data Protection Commissioner of the federal state in which our company is based.

11. Cookies and right to object to direct advertising. Cookies" are small files that are stored on users' computers. Within the cookies, different information can be stored. A cookie is primarily used to store information about a user (or the device on which the cookie is stored) during or after his visit within an online offer. Temporary cookies, or "session cookies" or "transient cookies", are cookies that are deleted after a user leaves an online offer and closes his browser. Such a cookie may store, for example, the contents of a shopping cart in an online store or a login status. Cookies that remain stored even after the browser is closed are referred to as "permanent" or "persistent". For example, the login status can be stored if users visit them after several days. Likewise, the interests of users can be stored in such a cookie, which is used for range measurement or marketing purposes. Third-party cookies" are cookies that are offered by providers other than the responsible party that operates the online offer (otherwise, if they are only its cookies, they are referred to as "first-party cookies"). We may use temporary and permanent cookies and provide information about this in our privacy policy. If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Stored cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer. A general objection to the use of cookies used for online marketing purposes can be declared for a large number of the services, especially in the case of tracking, via the U.S. site the EU site Furthermore, the storage of cookies can be achieved by disabling them in the browser settings. Please note that then not all functions of this online offer can be used.

12. change of the data protection regulations. The privacy policy informs you about the current data processing in connection with our website. If there are changes to our services or this data processing, or if the legal situation changes, we must adapt these data protection provisions accordingly. However, this only applies with regard to this information on data processing. If your consent was required or parts of the data protection provisions concern our contractual relationship with you, we will of course not make any changes without your consent. Please inform yourself regularly about the content of this privacy policy.

bottom of page