Privacy Policy

Last updated: 15th January 2026

Introduction

obsidiandrift GmbH ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, process, and protect your personal information when you visit our website or use our corporate restructuring consultancy services.

This policy complies with the General Data Protection Regulation (GDPR) and other applicable data protection laws in the European Union and Germany.

Data Controller Information

The data controller responsible for your personal data is:

obsidiandrift GmbH
Waldstraße 168
10150 Berlin, Germany
Email: privacy@obsidiandrift.world
Phone: +49 30 7134194
Registration Number: HRB99471
VAT Number: DE394871256

Data Collection

We collect personal data that you provide directly to us and information that is automatically collected when you visit our website. The data we collect includes:

Information You Provide

  • Contact information (name, email address, phone number, company name)
  • Information submitted through contact forms or consultation requests
  • Communication records when you contact us
  • Professional information relevant to our services
  • Billing and payment information for our services

Automatically Collected Information

  • IP address and device information
  • Browser type and version
  • Pages visited and time spent on our website
  • Referral sources and website navigation patterns
  • Cookie data and preferences

How We Use Your Information

We use your personal data for the following purposes based on legitimate legal grounds:

Service Provision

  • To provide corporate restructuring consultancy services
  • To respond to enquiries and consultation requests
  • To communicate about our services and projects
  • To process payments and manage billing

Website Operations

  • To operate and maintain our website
  • To improve user experience and website functionality
  • To ensure website security and prevent fraud
  • To analyse website usage and performance

Legal and Business Requirements

  • To comply with legal obligations and regulatory requirements
  • To protect our legal rights and interests
  • To maintain business records and documentation

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about our use of cookies, please refer to our Cookie Policy.

Data Sharing and Disclosure

We do not sell your personal data. We may share your information in the following circumstances:

  • With trusted service providers who assist in delivering our services
  • When required by law or to respond to legal process
  • To protect our rights, property, or safety, or that of others
  • In connection with business transfers or mergers
  • With your explicit consent

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this Privacy Policy or as required by law. Our data retention periods are:

  • Contact enquiries: 3 years from last contact
  • Client project data: 10 years from project completion
  • Financial records: As required by German tax law (typically 10 years)
  • Website analytics data: 26 months
  • Marketing data: Until consent is withdrawn or 2 years of inactivity

Your Rights

Under GDPR and applicable data protection laws, you have the following rights regarding your personal data:

  • Right of Access: Request copies of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation of data processing
  • Right to Data Portability: Request transfer of your data
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent for processing

To exercise these rights, please contact us at privacy@obsidiandrift.world or +49 30 7134194.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and staff training
  • Secure data storage and backup procedures

International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA) where our service providers are located. When we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as:

  • Adequacy decisions by the European Commission
  • Standard Contractual Clauses approved by the European Commission
  • Binding Corporate Rules or certification schemes

Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Data Protection Contact:
obsidiandrift GmbH
Privacy Department
Waldstraße 168
10150 Berlin, Germany
Email: privacy@obsidiandrift.world
Phone: +49 30 7134194

You also have the right to lodge a complaint with the relevant supervisory authority if you believe your data protection rights have been violated.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date.

Your continued use of our services after any changes indicates your acceptance of the updated Privacy Policy.