Privacy
Privacy Notice
This notice explains how G.O.A.T UG ("G.O.A.T", "we") processes personal data in connection with this website and confidential inquiries. We keep data processing to the minimum necessary and operate without cookies, analytics or third-party trackers.
1. Controller
The controller responsible for data processing is:
G.O.A.T UG
Münchener Straße 45
83022 Rosenheim, Germany
Email: office@goatprotective.com
Managing director: Pál Lauko
2. Data we process
- Inquiry data — when you contact us by email, we process the name, email address and any information you choose to include in your message.
- Server log data — our hosting provider may automatically process technical data such as IP address, date and time of access, the page requested and browser/user-agent information, for the purpose of secure and reliable delivery of the website.
We ask that you do not include sensitive itinerary, identity, threat or security details in a first message.
3. Purpose and legal basis
- Responding to inquiries — to assess and respond to your request and to take steps prior to entering into a contract. Legal basis: Art. 6(1)(b) GDPR (steps prior to a contract) and Art. 6(1)(f) GDPR (legitimate interest in responding to relevant inquiries).
- Website delivery and security — to provide the website securely and prevent misuse. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in a secure, functioning website).
4. Cookies, analytics and tracking
This website sets no cookies, uses no analytics, loads no external fonts, embeds no maps or chat widgets, and contains no third-party marketing or tracking pixels.
5. Hosting
This website is hosted on GitHub Pages, operated by GitHub, Inc., 88 Colin P. Kelly Jr. Street, San Francisco, CA 94107, USA. GitHub processes server log data, including IP addresses, as a processor for the technical delivery and security of the site, under GitHub's standard Data Protection Agreement (available at github.com/customer-terms/github-data-protection-agreement), which includes EU Standard Contractual Clauses for data transferred outside the EU/EEA.
6. Processors and recipients
We do not sell personal data. Personal data may be processed by carefully selected service providers acting on our instructions (for example, the hosting and email providers). Where legally required, appropriate data processing agreements are in place.
7. Retention
Inquiry data is retained only for as long as necessary to handle your request and to comply with applicable legal retention obligations, after which it is deleted. Server logs are retained for the limited period applied by the hosting provider for security purposes.
8. Your rights
Subject to the conditions of the GDPR, you have the right to: access your personal data; rectification; erasure; restriction of processing; data portability; and to object to processing carried out on the basis of legitimate interest. You also have the right to lodge a complaint with a supervisory authority. Where processing is based on consent, you may withdraw it at any time with effect for the future.
The competent supervisory authority for the controller is the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 18, 91522 Ansbach, Germany.
9. Data security
We apply appropriate technical and organisational measures to protect personal data. The website is served over HTTPS. Email correspondence is handled with confidentiality, but please remember that standard email is not end-to-end encrypted.
10. Contact
For any question about this notice or to exercise your rights, contact us at office@goatprotective.com.
11. Changes
We may update this notice to reflect changes in our practices or legal requirements. The current version is published on this page.