Privacy Policy

Last updated: February 2026

Name and Contact Details of the Controller

This privacy policy applies to data processing by the controller:

Hubql GmbH Schlachthofstraße 1 96450 Coburg Germany

Managing Director: Robin Gieck Email: hello@hubql.com

Collection and Storage of Personal Data and Purpose of Use

When Visiting the Website

When you access our website hubql.com, your browser automatically sends information to our website server. This information is temporarily stored in a log file.

The following information is collected without any action on your part and stored until automatic deletion:

  • IP address of the requesting device
  • Date and time of access
  • Name and URL of the accessed file
  • Website from which access is made (referrer URL)
  • Browser used and, if applicable, operating system of your device and the name of your access provider

This data is processed for the following purposes:

  • Ensuring a smooth connection to the website
  • Ensuring comfortable use of our website
  • Evaluation of system security and stability
  • Other administrative purposes

The legal basis for data processing is Art. 6(1)(f) DSGVO. Our legitimate interest follows from the purposes listed above for data collection. We do not use the collected data to draw conclusions about you personally.

In addition, we use cookies and analytics services when you visit our website. Further explanations can be found in the sections "Cookies" and "Third-Party Services" of this privacy policy.

When Using Our Contact Form

For inquiries of any kind, we offer you the option to contact us via a form provided on the website. Your name and a valid email address are required so that we know who the inquiry is from and can respond to it. Additional information (company) may be provided voluntarily.

Data processing for the purpose of contacting us is based on Art. 6(1)(a) DSGVO (your voluntarily given consent) and Art. 6(1)(b) DSGVO (contract initiation).

Your contact form data is stored in our customer relationship management system (Close CRM, see section "Third-Party Services") and will be deleted after your inquiry has been processed, unless legal retention obligations apply. The standard retention period is up to 3 years after the last contact.

Data Retention

We store personal data only for as long as necessary for the purposes for which it was collected or as required by law. Specifically:

  • Contact form inquiries: Up to 3 years after the last contact
  • Analytics data: 24 months
  • Server log files: 7 days
  • Contract-related data: 10 years (German commercial law retention requirements)

After the retention period expires, your data will be securely deleted or anonymized.

Disclosure of Data

Your personal data will not be transferred to third parties for purposes other than those listed below. We only share your personal data with third parties if:

  • You have given your express consent pursuant to Art. 6(1)(a) DSGVO
  • Disclosure pursuant to Art. 6(1)(f) DSGVO is necessary for the establishment, exercise, or defense of legal claims and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data
  • There is a legal obligation for disclosure pursuant to Art. 6(1)(c) DSGVO
  • This is legally permissible and necessary pursuant to Art. 6(1)(b) DSGVO for the performance of contractual relationships with you

Cookies

We use cookies on our website. These are small files that your browser automatically creates and stores on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not cause any damage to your device and do not contain viruses, trojans, or other malware.

The cookie stores information related to the specific device used. However, this does not mean that we directly obtain knowledge of your identity.

We use session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site.

We also use temporary cookies to optimize user-friendliness, which are stored on your device for a defined period. If you visit our site again, it is automatically recognized that you have already been with us and what entries and settings you made, so you do not have to enter them again.

Additionally, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offering for you. These cookies enable us to automatically recognize on a subsequent visit that you have already been with us. The cookies are automatically deleted after a defined period.

The data processed by cookies is necessary for the purposes mentioned to protect our legitimate interests and those of third parties pursuant to Art. 6(1)(f) DSGVO.

Most browsers accept cookies automatically. You can configure your browser to not store cookies or to always prompt before accepting. Please note that disabling cookies may limit the functionality of our website.

Third-Party Services

PostHog (Analytics)

We use the web analytics service PostHog on our website to better understand visitor behavior and improve our website accordingly. This service is only used if you have given your express consent via our cookie banner.

Provider: PostHog Inc. Data location: European Union (EU datacenter)

Data collected: Pages visited, time spent on pages, browser type, device information, anonymized IP addresses, interactions on the website.

Purpose: Analysis and improvement of our website and user experience.

Legal basis: Processing of your personal data by PostHog is based on your consent pursuant to § 25 TTDSG and Art. 6(1)(a) DSGVO.

Storage period: 24 months

Withdrawal of consent: You can withdraw your consent at any time via the cookie settings on our website or via the "Cookie Settings" link in the footer. Withdrawal does not affect the lawfulness of processing carried out prior to withdrawal.

Privacy policy: https://posthog.com/privacy

Close CRM

We use Close CRM to manage customer relationships and process contact form submissions.

Provider: Close (Elastic, Inc.), 548 Market St #78133, San Francisco, CA 94104, USA

Data collected: Name, email address, company, message content from contact form submissions.

Purpose: Processing and responding to your inquiries, customer relationship management.

Legal basis: Art. 6(1)(b) DSGVO (contract initiation) and Art. 6(1)(f) DSGVO (legitimate interest in efficient customer communication).

Transfer to third countries: USA. Safeguards: EU Standard Contractual Clauses pursuant to Art. 46 DSGVO.

Storage period: Duration of business relationship plus 3 years

Privacy policy: https://www.close.com/privacy

Cloudflare (Hosting, CDN, and Security)

Our website is hosted and delivered via Cloudflare. Cloudflare provides content delivery network (CDN), DNS services, and security features.

Provider: Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA

Data collected: IP addresses, browser information, access logs (server log data as described in "When Visiting the Website"), security data for bot detection and DDoS protection.

Purpose: Provision and operation of our website, protection against attacks, optimization of loading times.

Legal basis: Art. 6(1)(f) DSGVO (legitimate interest in secure and stable operation of the website).

Transfer to third countries: USA. Safeguards: EU Standard Contractual Clauses pursuant to Art. 46 DSGVO.

Privacy policy: https://www.cloudflare.com/privacypolicy/

Cloudflare Turnstile (CAPTCHA)

We use Cloudflare Turnstile to protect our contact form from spam and automated abuse.

Provider: Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA

Data collected: IP address (anonymized), browser information, interaction data for bot detection.

Purpose: Protection against spam and abuse, ensuring website security.

Legal basis: Art. 6(1)(f) DSGVO (legitimate interest in website security).

Transfer to third countries: USA. Safeguards: EU Standard Contractual Clauses pursuant to Art. 46 DSGVO.

Privacy policy: https://www.cloudflare.com/privacypolicy/

Your Rights

You have the following rights with respect to your personal data:

Right of Access (Art. 15 DSGVO): You have the right to receive free information at any time about your personal data stored with us, its origin, recipients, and the purpose of data processing.

Right to Rectification (Art. 16 DSGVO): You have the right to request correction of inaccurate personal data.

Right to Erasure (Art. 17 DSGVO): You have the right to request deletion of your data if the legal requirements are met.

Right to Restriction of Processing (Art. 18 DSGVO): You have the right to request restriction of processing of your data under certain conditions.

Right to Data Portability (Art. 20 DSGVO): You have the right to receive data that we process automatically based on your consent or in fulfillment of a contract in a commonly used, machine-readable format.

Right to Object (Art. 21 DSGVO): If your personal data is processed based on legitimate interests pursuant to Art. 6(1)(f) DSGVO, you have the right to object to the processing at any time for reasons arising from your particular situation.

Right to Withdraw Consent (Art. 7(3) DSGVO): You may withdraw any consent given at any time. The lawfulness of data processing carried out until withdrawal remains unaffected. An informal message by email is sufficient.

Right to Lodge a Complaint (Art. 77 DSGVO): You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates data protection regulations. The competent authority is the Bavarian Data Protection Authority (BayLDA).

To exercise your rights, please contact us at: hello@hubql.com

Automated Decision-Making

We do not use automated decision-making or profiling pursuant to Art. 22 DSGVO that produces legal effects concerning you or similarly significantly affects you.

Data Security

We use SSL/TLS encryption for security reasons and to protect the transmission of confidential content that you send to us. Typically, this is 256-bit encryption. You can recognize an encrypted connection by the lock symbol in your browser's address bar.

We also employ appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

Changes to This Privacy Policy

This privacy policy is currently valid as of February 2026.

Due to the further development of our website and offerings or due to changed legal or regulatory requirements, it may become necessary to change this privacy policy. The current privacy policy can be accessed and printed at any time on our website at hubql.com/privacy-policy.