Legal Notice

Legal Notice

Business Name: Pinkmanta Consulting Ltd
Owner: Tony Wallgren & Sarah Raudzis
Company Type: Private Limited Company
Address: 10 Spyrou Kyprianou, Flat 22
4001 Mesa Geitonia, Limassol, Cyprus

Contact Information:
Phone: +46 313116011
Email: pinkmanta1@gmail.com

Responsible for Content:
Sarah Raudzis

VAT Identification Number (EU):
CY60001190M

Online Dispute Resolution (ODR)
The European Commission provides a platform for online dispute resolution (ODR):
https://ec.europa.eu/consumers/odr/
You can find our contact email listed above.

Dispute Resolution
We are not willing or obliged to participate in dispute resolution proceedings before a consumer arbitration board.

Data Processing Agreement (DPA)

We have entered into a Data Processing Agreement (DPA) with the service provider mentioned above.
This agreement is required under data protection law and ensures that your personal data is processed solely in accordance with our instructions and in compliance with the General Data Protection Regulation (GDPR).

3. General Information and Mandatory Disclosures

Data Protection

The operators of this website take the protection of your personal data very seriously.
We handle your personal data confidentially and in accordance with legal data protection regulations and this Privacy Policy.

When you use this website, various types of personal data may be collected.
Personal data refers to data that can be used to personally identify you.
This Privacy Policy explains what data we collect and how we use it. It also explains how and for what purpose this occurs.

Please note that data transmission over the Internet (e.g., communication via email) can have security vulnerabilities. Complete protection of data from access by third parties is not possible.

Responsible Entity

The entity responsible for data processing on this website is:

Sarah Raudzis
Pinkmanta Consulting Ltd
10 Spyrou Kyprianou, Flat 22
4001 Mesa Geitonia, Limassol, Cyprus
Phone: +46 313116011
Email: pinkmanta1@gmail.com

The responsible party is the natural or legal person who alone or jointly determines the purposes and means of the processing of personal data (e.g., names, email addresses, etc.).

Data Retention

Unless a specific retention period is stated in this Privacy Policy, we retain your personal data only for as long as necessary to fulfill the purposes for which it was collected.

If you request deletion or withdraw your consent to data processing, your data will be deleted unless we are legally obligated or permitted to retain it (e.g., for tax or commercial law reasons). In such cases, data will be deleted once these obligations no longer apply.

Legal Basis for Data Processing

If you have given consent, we process your data based on Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR for special categories of personal data under Art. 9(1) GDPR.

If your consent includes the transfer of personal data to third countries, processing is additionally based on Art. 49(1)(a) GDPR.
Where you consent to the storage of cookies or access to information on your device (e.g., device fingerprinting), processing is also based on § 25(1) TTDSG. Consent can be withdrawn at any time.

If your data is required for contract fulfillment or pre-contractual measures, we process it under Art. 6(1)(b) GDPR.
Data required to meet legal obligations is processed under Art. 6(1)(c) GDPR.
Data may also be processed on the basis of our legitimate interests under Art. 6(1)(f) GDPR. Details are provided in the relevant sections below.

Transfers to Insecure Third Countries and Non-DPF Certified US Companies

Some tools used on this site are provided by companies based in countries outside the EU/EEA that are not considered to have adequate data protection standards.
Additionally, we may use U.S.-based service providers who are not certified under the EU-U.S. Data Privacy Framework (DPF).

When these tools are active, your personal data may be transferred to and processed in these countries. Please note that such countries may not guarantee an EU-equivalent level of data protection.

However, the United States is generally considered a secure third country if the recipient company is DPF-certified or offers other appropriate safeguards.
Transfers to the U.S. are therefore permitted under these conditions.
More details on third-country data transfers and data recipients can be found in this Privacy Policy.

Data Recipients

In the course of our business activities, we may work with external service providers. This may involve sharing your personal data with those third parties.

We share personal data only when it is necessary for contractual purposes, when legally required (e.g., for tax authorities), based on our legitimate interest under Art. 6(1)(f) GDPR, or when another legal basis allows it.

Where we engage data processors (under contract), your data is shared only under a valid Data Processing Agreement (DPA).
If we engage in joint processing with other parties, a Joint Controller Agreement is put in place.

4. Data Collection on This Website

Cookies

Our website uses so-called “cookies.” Cookies are small data packets and do not cause any harm to your device. They are either temporarily stored for the duration of a session (session cookies) or permanently stored (persistent cookies) on your device. Session cookies are automatically deleted at the end of your visit. Persistent cookies remain stored on your device until you delete them yourself or they are automatically deleted by your web browser.

Cookies can be set by us (first-party cookies) or by third parties (so-called third-party cookies). Third-party cookies enable the integration of certain services from third-party providers within websites (e.g., cookies for processing payment services).

Cookies serve various functions. Many cookies are technically necessary because certain website features would not function without them (e.g., the shopping cart feature or video display). Other cookies can be used for analyzing user behavior or for advertising purposes.

Cookies that are necessary for carrying out electronic communications processes, for providing certain features you want (e.g., the shopping cart function), or for optimizing the website (e.g., cookies for measuring web traffic) are stored on the basis of Art. 6(1)(f) GDPR, unless another legal basis is specified.

The website operator has a legitimate interest in storing necessary cookies to ensure the technically error-free and optimized provision of its services. If consent is requested for storing cookies and comparable recognition technologies, processing is carried out solely on the basis of this consent (Art. 6(1)(a) GDPR and § 25(1) TTDSG); the consent can be revoked at any time.

You can configure your browser to inform you when cookies are set and to allow cookies only on a case-by-case basis, to exclude the acceptance of cookies in specific cases or generally, and to activate the automatic deletion of cookies when closing the browser. Deactivating cookies may limit the functionality of this website.

You can find out which cookies and services are used on this website in this privacy policy.

Consent with Borlabs Cookie

Our website uses the consent technology from Borlabs Cookie to obtain your consent for storing certain cookies in your browser or for using certain technologies, and to document this in a privacy-compliant manner. The provider of this technology is Borlabs GmbH, Rübenkamp 32, 22305 Hamburg (hereinafter Borlabs).

When you visit our website, a Borlabs cookie is stored in your browser, which saves the consents you have given or any withdrawal of these consents. This data is not passed on to the provider of Borlabs Cookie.

The data collected will be stored until you request its deletion or delete the Borlabs cookie yourself, or the purpose for storing the data no longer applies. Mandatory legal retention periods remain unaffected. For details on Borlabs Cookie’s data processing, visit Borlabs Cookie.

The use of Borlabs Cookie Consent technology is intended to obtain the legally required consents for using cookies. The legal basis for this is Art. 6(1)(c) GDPR.

5. Social Media

Social Media Elements with Shariff

This website uses elements from social media (e.g., Facebook, X, Instagram, Pinterest, XING, LinkedIn, Tumblr).

The social media elements are usually recognizable by the respective social media logos.

To ensure data privacy on this website, we use these elements only together with the “Shariff” solution. This application prevents the integrated social media elements on this website from transmitting your personal data to the respective provider as soon as you enter the site.

Only when you activate the respective social media element by clicking the corresponding button, a direct connection to the provider’s server is established (consent). Once you activate the social media element, the provider receives the information that you have visited this website with your IP address. If you are logged into your respective social media account (e.g., Facebook), the provider may associate the visit to this website with your user account.

Activating the plugin constitutes consent in the sense of Art. 6(1)(a) GDPR and § 25(1) TTDSG. This consent can be revoked at any time with effect for the future.

The use of the service is intended to obtain the legally required consents for using certain technologies. The legal basis for this is Art. 6(1)(c) GDPR.

Instagram

This website incorporates functions of the Instagram service, offered by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.

When the social media element is active, a direct connection is established between your device and the Instagram server. Instagram thus receives information about your visit to this website.

If you are logged into your Instagram account, you can link the content of this website to your Instagram profile by clicking the Instagram button. This allows Instagram to associate the visit to this website with your user account. Please note that we, as the provider of the site, have no knowledge of the content of the transmitted data or how Instagram uses it.

The use of this service is based on your consent under Art. 6(1)(a) GDPR and § 25(1) TTDSG. You can revoke this consent at any time.

If personal data is collected on our website and forwarded to Facebook or Instagram with the help of the tool described here, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). Joint responsibility is limited exclusively to the collection of data and its forwarding to Facebook or Instagram. The subsequent processing by Facebook or Instagram is not part of the joint responsibility.

The obligations we share are documented in an agreement on joint processing. The text of the agreement can be found at:
Facebook – Controller Addendum.
According to this agreement, we are responsible for providing privacy information when using the Facebook or Instagram tools and for ensuring their privacy-compliant implementation on our website. Facebook is responsible for the data security of the Facebook and Instagram products. Data subject rights (e.g., access requests) regarding the data processed by Facebook or Instagram can be asserted directly with Facebook. If you assert data subject rights with us, we are required to forward them to Facebook.

Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Further details can be found here:
Facebook Data Transfer,
Instagram Privacy Policy,
Facebook Help.

For more information, please see Instagram’s Privacy Policy:
Instagram Privacy Center.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA to ensure compliance with European data protection standards for data processing in the USA. Any company certified under the DPF commits to adhering to these data protection standards. More information can be obtained from the provider at the following link:
EU-US Data Privacy Framework.

Pinterest
On this website, we use elements from the social network Pinterest, operated by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.

When you visit a page that contains such an element, your browser establishes a direct connection to Pinterest’s servers. This social media element transmits log data to Pinterest’s server in the USA. This log data may include your IP address, the address of visited websites that also include Pinterest features, the type and settings of your browser, the date and time of the request, how you use Pinterest, as well as cookies.

The use of this service is based on your consent in accordance with Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TTDSG. Consent can be withdrawn at any time.

For more information on the purpose, scope, and further processing and use of data by Pinterest, as well as your rights and options for protecting your privacy, please refer to Pinterest’s Privacy Policy:
https://policy.pinterest.com/eu/privacy-policy.

6. Analysis Tools and Advertising

Google AdSense
This website uses Google AdSense, a service for embedding advertisements. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

With the help of Google AdSense, we can display targeted advertisements from third parties on our site. The content of the advertisements is based on your interests, which Google determines based on your previous user behavior. Furthermore, contextual information, such as your location, the content of the website you visited, or the search terms you entered into Google, are considered when selecting the appropriate advertisement.

Google AdSense uses cookies, web beacons (invisible graphics), and similar recognition technologies. These allow the evaluation of visitor traffic on these pages.

The information collected by Google AdSense about your use of this website (including your IP address) and the delivery of advertising formats is transmitted to a Google server in the USA and stored there. Google may pass on this information to contractors of Google. However, Google will not combine your IP address with other data stored by you.

The use of this service is based on your consent in accordance with Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TTDSG. Consent can be withdrawn at any time.

Data transfer to the USA is based on the EU Commission’s Standard Contractual Clauses. Details can be found here:
https://privacy.google.com/businesses/controllerterms/mccs/.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States that aims to ensure compliance with European data protection standards in data processing in the USA. Every company certified under the DPF is committed to adhering to these data protection standards. More information on this can be found here:
https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt000000001L5AAI&status=Active

Newsletter – Success Measurement
The newsletters contain a so-called “web beacon,” i.e., a pixel-sized file that is retrieved from our server or, if we use a service provider, from their server when the newsletter is opened. As part of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and the time of retrieval, is collected.

This information is used to improve the technical services based on technical data or audience behavior, such as the locations from which the newsletters were accessed (which can be determined using the IP address) or access times. Statistical data also includes determining whether the newsletters are opened, when they are opened, and which links are clicked. These details may be attributed to individual newsletter recipients for technical reasons, but our goal is not, and that of the service provider, is not, to monitor individual users. The evaluations are used to recognize the reading habits of our users and adapt our content to them or send different content according to the interests of our users.

Newsletter Data
If you would like to receive the newsletter offered on the website, we need your email address and information that allows us to verify that you are the owner of the provided email address and agree to receive the newsletter. No other data is collected, or only on a voluntary basis. We use the services of newsletter service providers to manage the newsletter distribution, as described below.

With the following notes, we inform you about the content of our newsletters, the registration, delivery, and statistical analysis procedure, and your rights of objection. By subscribing to our newsletter, you agree to receive it and the procedures described.
Content of the newsletter: We send newsletters, emails, and other electronic notifications with promotional information (“newsletters”) only with the consent of the recipients or with legal permission. If the contents of the newsletter are specifically described when registering for the newsletter, they are binding for the consent of the users. Otherwise, our newsletters contain information about our services and ourselves.

Double-Opt-In and Logging
The registration for our newsletter is carried out in a so-called double-opt-in process. This means that after registering, you will receive an email asking you to confirm your registration. This confirmation is necessary to ensure that no one else can register with a foreign email address. The registrations for the newsletter are logged to demonstrate the registration process according to legal requirements. This includes storing the registration and confirmation time as well as the IP address.

The newsletter is sent, and the associated success measurement is carried out based on the recipient’s consent in accordance with Art. 6 Para. 1 lit. a and Art. 7 of the GDPR, or based on the legal permission under applicable laws

Logging the registration process is based on our legitimate interests under Art. 6 Para. 1 lit. f of the GDPR. Our interest lies in using a user-friendly and secure newsletter system that serves both our business interests and meets the expectations of users while also allowing us to prove consents.

Logging of the Registration Process
The logging of the registration process is based on our legitimate interests pursuant to Art. 6 Para. 1 lit. f GDPR. Our interest is in using a user-friendly and secure newsletter system that serves both our business interests and meets the expectations of users, while also allowing us to prove consents.

Unsubscription/Revocation
You can unsubscribe from our newsletter at any time, i.e., revoke your consents. A link to unsubscribe from the newsletter can be found at the end of each newsletter. We may store unsubscribed email addresses for up to three years based on our legitimate interests before deleting them, in order to prove a previously given consent. The processing of this data will be limited to the purpose of possibly defending against claims. An individual deletion request is always possible, provided that the previous existence of consent is confirmed.

Services Used and Service Providers:

Thrive Themes LLC, Website: https://thrivethemes.com
Privacy Policy: https://thrivethemes.com/privacy-policy/

Brevo
This website uses Brevo for sending newsletters. The provider is Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.

Brevo is a service used to organize and analyze the sending of newsletters. The data you enter for the purpose of receiving newsletters is stored on Sendinblue GmbH servers in Germany.

Data Analysis by Brevo
With the help of Brevo, we are able to analyze our newsletter campaigns. For example, we can see whether a newsletter message has been opened and which links were clicked. This allows us to determine which links were clicked the most.

Additionally, we can see if certain predefined actions were performed after opening/clicking (conversion rate). For example, we can determine whether you made a purchase after clicking on the newsletter.

Brevo also allows us to segment newsletter recipients into different categories (“clustering”). For example, recipients can be segmented by age, gender, or location. This way, newsletters can be better tailored to the respective target audiences.

If you do not want Brevo to perform analysis, you must unsubscribe from the newsletter. We provide a corresponding link for this in each newsletter message.

For detailed information about the features of Brevo, please refer to the following link:
https://www.brevo.com/en/newsletter-software/.

Legal Basis
Data processing is based on your consent (Art. 6 Para. 1 lit. a GDPR). You can revoke this consent at any time. The legality of data processing that has already taken place remains unaffected by the revocation.

Storage Duration
The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter with us or the newsletter service provider and will be deleted from the newsletter distribution list after unsubscribing. Data that has been stored for other purposes with us will remain unaffected.

After you unsubscribe from the newsletter distribution list, your email address may be stored with us or the newsletter service provider in a blacklist, if this is necessary to prevent future mailings. Data from the blacklist will only be used for this purpose and will not be combined with other data. This serves both your interest and our interest in ensuring compliance with legal requirements when sending newsletters (legitimate interest pursuant to Art. 6 Para. 1 lit. f GDPR). The storage in the blacklist is not time-limited. You can object to the storage if your interests outweigh our legitimate interest.

Further details can be found in Brevo’s privacy policy at:
https://www.brevo.com/en/privacy-overview/ and
https://www.brevo.com/en/legal/privacypolicy/.

Data Processing Agreement
We have entered into a data processing agreement (DPA) for the use of the aforementioned service. This is a contract required by data protection law, which ensures that the service provider processes personal data of our website visitors only according to our instructions and in compliance with the GDPR.

Online Marketing and Affiliate Programs
We participate in affiliate partner programs. In affiliate programs, advertisements from a company (advertiser) are placed on websites of other companies in the affiliate partner network (publisher). If you click on one of these affiliate ads, you will be redirected to the advertised offer. If you subsequently complete a certain transaction (conversion), the publisher receives a commission. To calculate this commission, it is necessary for the affiliate network operator to track which advertisement led you to the respective offer and the predefined transaction. For this purpose, cookies or similar recognition technologies (e.g., device fingerprinting) are used.

The storage and analysis of the data is based on Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in the correct calculation of their affiliate commission. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TTDSG, to the extent that the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) in accordance with TTDSG. The consent can be revoked at any time.

We participate in the following affiliate programs:

Amazon Affiliate Program
The provider is Amazon Europe Core S.à.r.l. Further details can be found in Amazon’s privacy policy at:
https://www.amazon.de/gp/help/customer/display.html?nodeId=201909010.
The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States that ensures compliance with European data protection standards in data processing in the USA. Any company certified under the DPF commits to adhering to these data protection standards. Further information can be found here:
https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000000TOWQAA4&status=Active

Other Affiliate Partner Programs

• Digistore24
  Digistore24 MSLW Limited, The Black Church, St. Mary’s Place, D07 P4AX Dublin 7, Ireland
  https://www.digistore24.com
• Elopage
  We also offer digital and downloadable products for purchase through our websites using the elopage service by elopage GmbH, Kurfürstendamm 182, 10707 Berlin.
  Once you click on one of our product buttons, you leave our website and are redirected to our individual elopage sales page.
  All functions on the sales page, as well as the entire subsequent sales process, are handled by elopage.
  The privacy policy of elopage can be viewed here.