Skip to main content
AXIONIS
← Back to homepage

Privacy Policy

Last updated:

Note: This Privacy Policy is based on standard templates for data-protection-compliant websites under the GDPR, BDSG, and TTDSG. It is an initial draft and does not replace individual data protection advice. Before productive use – especially once the real tracker IDs are integrated – we recommend a review by a law firm specialised in data protection law.

1. Controller

The controller responsible for data processing on this website within the meaning of the GDPR is:

Axionis Consulting OÜ
Sepapaja tn 6, Lasnamäe linnaosa
15551 Tallinn, Harju Maakond, Estonia
E-mail: info@axionisconsulting.com
Phone: +49 1575 6387218

We have not appointed a data protection officer, as this is not legally required. Please direct any data protection enquiries to the e-mail address above.

2. Principles of processing

We process personal data only in compliance with the applicable data protection regulations (GDPR, BDSG, TTDSG, Estonian Personal Data Protection Act – isikuandmete kaitse seadus). Processing is generally only carried out to the extent that:

  • you have given consent (Art. 6 (1) lit. a GDPR),
  • processing is necessary for the performance of a contract or pre-contractual measures (Art. 6 (1) lit. b GDPR),
  • a legal obligation exists (Art. 6 (1) lit. c GDPR), or
  • processing is necessary for the purposes of legitimate interests (Art. 6 (1) lit. f GDPR).

3. Hosting and server log files

This website is hosted with a hosting provider within the EU. When the website is accessed, our hosting provider automatically processes the following information in server log files:

  • IP address of the accessing device
  • Date and time of access
  • Name and URL of the retrieved file
  • Volume of data transferred and HTTP status code
  • Browser and version used, as well as operating system
  • Referrer URL (previously visited page)

Legal basis: Art. 6 (1) lit. f GDPR (legitimate interest in stable and secure operation). The log files are automatically deleted after 30 days.

4. Cookies and consent management (TTDSG)

We use only technically necessary cookies on our website, as well as – after your express consent via the cookie banner – analytics and marketing cookies.

Technically necessary cookies serve the basic function of the website (e.g. storing your cookie preference) and are set without consent pursuant to § 25 (2) No. 2 TTDSG.

Analytics and marketing cookies (Google Analytics 4, Meta Pixel, LinkedIn Insight Tag, TikTok Pixel) are loaded exclusively after your consent pursuant to § 25 (1) TTDSG in conjunction with Art. 6 (1) lit. a GDPR. You may revoke or adjust your consent at any time with effect for the future via the "Cookie settings" link in the footer.

5. External fonts (Google Fonts)

This website uses Google Fonts (Montserrat, 400/600/800) for the uniform display of fonts. Google Fonts is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When the website is accessed, your IP address is transmitted to Google so that the fonts can be loaded in your browser.

Legal basis: Art. 6 (1) lit. f GDPR (legitimate interest in a uniform and appealing presentation). Google is certified under the EU-US Data Privacy Framework. Further information: https://policies.google.com/privacy.

Alternatively, locally embedded fonts may be used; this option will be implemented in a future update.

6. Embedded videos

Our website embeds a self-hosted, looping background video in the hero area. No data is transmitted to third parties. The video serves exclusively for visual design and contains no tracking components.

7. Contact form and Formspree

When you contact us via the contact form or by e-mail, your details are stored by us for the purpose of processing the enquiry and in case of follow-up questions.

The contact form is submitted via the service Formspree (Formspree, Inc., 2261 Market St #50381, San Francisco, CA 94114, USA). Formspree is certified under the EU-US Data Privacy Framework. Data is processed in an EU data centre.

Data processed: name, e-mail address, optional company, budget selection, service selection, message text, optional URL parameters (for pre-filled enquiries from the price calculator).

Legal basis: Art. 6 (1) lit. b GDPR (pre-contractual measures) or lit. f GDPR (legitimate interest in efficient communication).

Storage period: Your data will be deleted once the enquiry has been conclusively processed and no legal retention obligations prevent deletion, but no later than after 3 years of inactivity.

8. Google Analytics 4 (only with consent)

We use Google Analytics 4 (Google Ireland Limited) only after your express consent. Google Analytics uses cookies to create pseudonymous usage profiles. The IP address is anonymised before storage (IP anonymisation is enabled).

Legal basis: Art. 6 (1) lit. a GDPR in conjunction with § 25 (1) TTDSG.

Storage period: 14 months (the shortest option offered by Google).

You may revoke your consent at any time via the Cookie settings.

9. Marketing pixels (only with consent)

The following marketing services are loaded only after your consent via the cookie banner:

  • Meta Pixel (Meta Platforms Ireland Ltd., Dublin) – for measuring and optimising advertising campaigns on Facebook and Instagram.
  • LinkedIn Insight Tag (LinkedIn Ireland Unlimited Company, Dublin) – for campaign measurement and optimisation on LinkedIn.
  • TikTok Pixel (TikTok Technology Limited, Dublin) – for campaign measurement and optimisation on TikTok.

All three providers are certified under the EU-US Data Privacy Framework. Data is processed in pseudonymous form and is not used to create user profiles outside the respective platform, nor for automated decision-making.

Legal basis: Art. 6 (1) lit. a GDPR in conjunction with § 25 (1) TTDSG.

10. Your rights as a data subject

You have the following rights vis-à-vis us with regard to your personal data:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to withdraw your consent (Art. 7 (3) GDPR) – with effect for the future

To exercise these rights, please contact info@axionisconsulting.com.

11. Right to lodge a complaint with a supervisory authority

You have the right to lodge a complaint with a data protection supervisory authority. The competent authority is the supervisory authority of your habitual residence, your workplace, or the place of the alleged infringement.

For Estonia: Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon), 39 Tatari St, 10134 Tallinn, www.aki.ee.

For Germany: The state data protection authority responsible for your place of residence (list at www.bfdi.bund.de).

12. Status and changes

This privacy policy is currently valid and dated as of the time stated above. As our website and offerings evolve, or due to changes in legal or regulatory requirements, it may become necessary to amend this privacy policy. The current version is always available at this location.