Legal

Privacy Policy

We appreciate your interest in our company. At Fintalo GmbH, we prioritize data protection. While you can visit our website without providing personal information, certain services may require processing personal data. We will seek your consent if no legal basis exists for processing personal data. We ensure that any processing of personal data, including your name, address, email, profile picture, or phone number, complies with the General Data Protection Regulation (GDPR) and relevant national data protection laws. This privacy policy aims to inform you about the types of personal data we collect, how we use it, and the rights you have concerning your data. Fintalo UG (haftungsbeschränkt) has implemented extensive technical and organizational measures to safeguard personal data on our website. However, please note that data transmitted over the internet may have security vulnerabilities and complete protection cannot be guaranteed. Therefore, you are welcome to communicate your personal data through alternative methods such as phone calls.

1. Terminology

To ensure clarity, we define the following terms used in this privacy policy: - Personal Data: Any information related to an identified or identifiable person, including identifiers like name, identification number, location data, or online identifiers. - Data Subject: An individual whose personal data is processed. - Processing: Any operation performed on personal data, including collection, recording, organization, storage, and use. - Restriction of Processing: Marking data to limit future processing. - Profiling: Automated data processing to evaluate an individual's personal aspects. - Pseudonymisation: Processing personal data so that it cannot be attributed to an individual without additional information. - Controller: The entity that determines the purposes and means of processing personal data. - Processor: An entity that processes personal data on behalf of the controller. - Recipient: An entity that receives personal data, whether or not it is a third party. - Third Party: Any entity other than the data subject, controller, processor, or those authorized to process data. - Consent: A freely given, specific, informed, and unambiguous indication of a data subject’s wishes to process their data.

  1. Controller Information

The controller for data protection purposes is:

Fintalo GmbH

Bahnhofstraße 44

82284 Grafrath

Germany

Phone: +49 89 37448797

Email: info@fintalo.com

Website: www.fintalo.com

  1. Cookies

Our website uses cookies—small text files stored on your device by your web browser. Cookies help us provide more user-friendly services, such as remembering your login details. You can control cookie settings through your browser or delete cookies if desired. Note that disabling cookies may affect the functionality of our website.

  1. General Data Collection

We collect general data when you visit our website, such as browser type, operating system, referring website, date and time of access, IP address, and Internet service provider. This data ensures our website functions correctly, improves content, and maintains security. We analyze this data anonymously to enhance our data protection measures.

  1. Registration on Our Website

When you register on our website, we collect personal data as specified in the registration form. This data is used internally and may be shared with processors for similar purposes. We also record the IP address, registration date, and time to prevent misuse and for potential investigation of offenses. You can update or delete your registration details at any time.

For any questions about your personal data, including requests for information, correction, or deletion, please contact us. We are committed to ensuring that your data is handled with the utmost care and in accordance with applicable laws.

  1. Contacting Us Through the Website

Our website provides various methods for electronic communication with our company, including an email address. When you contact us by email or through our contact form, the personal data you provide will be stored automatically. This data is used solely for processing your inquiries or for contacting you. We do not share this information with third parties.

  1. Regular Deletion and Blocking of Personal Data

We process and store personal data only as long as necessary to fulfill the purposes for which it was collected or as required by applicable laws and regulations. Once the purpose for storage is no longer applicable, or the retention period expires, we will promptly block or delete the personal data in compliance with legal requirements.

  1. Rights of Data Subjects

a) Right to Confirmation You have the right to confirm whether your personal data is being processed. To exercise this right, you can contact our staff at any time.

b) Right to Access You have the right to request information about your personal data stored by us, including details about the processing purposes, data categories, recipients, storage duration, and rights regarding rectification, erasure, restriction, or objection. You also have the right to know about automated decision-making and data transfers to third countries. To request this information, please contact our staff.

c) Right to Rectification You can request the correction of inaccurate or incomplete personal data. For this, please reach out to our staff.

d) Right to Erasure (Right to be Forgotten) You have the right to request the deletion of your personal data under certain conditions, such as when it is no longer necessary for the purposes it was collected for, if you withdraw consent, or if the data was processed unlawfully. To make such a request, please contact us, and we will take the necessary actions promptly.

e) Right to Restriction of Processing You can request the restriction of processing your personal data if you contest its accuracy if processing is unlawful but you prefer restriction over deletion, if the data is no longer needed but is required for legal claims, or if you have objected to processing pending verification of legitimate interests. Contact us to exercise this right, and we will ensure the restriction is applied.

f) Right to Data Portability You can receive your personal data in a structured, commonly used, and machine-readable format and transfer it to another controller if applicable. To exercise this right, contact our staff.

g) Right to Object You may object to processing your personal data based on legitimate interests or for direct marketing purposes. If you object, we will cease such processing unless we have compelling reasons or are required for legal claims. Contact us to exercise this right for objections related to scientific, historical research, or statistical purposes.

h) Automated Individual Decision-Making, Including Profiling You have the right not to be subject to decisions based solely on automated processing, including profiling, unless necessary for a contract, authorized by law, or based on explicit consent. We will provide safeguards, including human intervention, to protect your rights if applicable. To address concerns about automated decisions, contact our staff.

i) Right to Withdraw Consent You may withdraw your consent for processing your personal data at any time. To withdraw consent, please contact us, and we will ensure your preferences are updated.

  1. Legal Basis for Processing

We process personal data based on various legal grounds:

- Consent (Article 6(1)(a) GDPR) for specific purposes.

- Contract (Article 6(1)(b) GDPR) when necessary for contract performance.

- Legal Obligation (Article 6(1)(c) GDPR) for compliance with laws.

- Vital Interests (Article 6(1)(d) GDPR) if necessary to protect life.

- Legitimate Interests (Article 6(1)(f) GDPR) if processing aligns with our or a third party’s legitimate interests, provided these do not override your rights.

  1. Legitimate Interests

When processing is based on legitimate interests, our aim is to conduct our business in a way that benefits our employees and stakeholders.

  1. Data Retention Period

We retain personal data based on legal retention periods. Once these periods expire, or if the data is no longer needed for the contract or its initiation, we will delete the data as required.

  1. Provision of Personal Data

Providing personal data may be required by law or contract. If personal data is necessary for contract execution, failure to provide it may result in an inability to complete the contract. Contact our staff to understand the necessity and consequences of providing or not providing personal data.

  1. Automated Decision-Making

We do not engage in automated decision-making or profiling.

The agentic infrastructure for private markets.

Overview

Product

Security

Book a Demo

Company

About

Careers

Jobs Board ↗

Legal & Contact

Imprint

Privacy Policy

LinkedIn ↗

info@fintalo.com

© 2026 Fintalo GmbH

All rights reserved.

Crafted and run from Munich with love