Privacy Policy

Introduction

ZenithTrail AG ("we", "our", or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains the data we collect about you when you visit our website or use our services, how we use your information, and your rights regarding your personal data.

This policy applies to all personal data processing activities carried out by ZenithTrail AG in connection with our budgeting and financial planning services for single parents.

Data Collection

The data we collect helps us provide and improve our financial planning services. We collect information in the following ways:

Information You Provide Directly

When you contact us or use our services, we may collect:

• Personal identification information (name, email address, phone number, postal address)
• Financial information relevant to our services (income, expenses, debts, assets)
• Family information (number of children, ages, educational needs)
• Communication preferences and service requirements
• Any other information you choose to provide when contacting us or during consultations

Information Collected Automatically

When you visit our website, we may automatically collect:

• Technical information about your device and internet connection
• Information about your visit, including pages viewed and time spent
• Location data (general geographic location based on IP address)
• Cookies and similar tracking technologies (see our Cookie Policy for details)

How We Use Your Information

We process your personal data for the following purposes, based on legitimate interests, contractual necessity, or your consent:

Service Provision

• Providing budgeting and financial planning consultations
• Creating personalised financial strategies and recommendations
• Communicating about your account and our services
• Processing payments and managing billing
• Providing customer support and responding to enquiries

Business Operations

• Improving our services and developing new offerings
• Conducting business analysis and market research
• Ensuring the security and integrity of our systems
• Complying with legal obligations and regulatory requirements

Marketing and Communications

With your consent, we may use your information to send you marketing communications about our services, industry insights, and educational content that may be relevant to your financial planning needs.

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.

Data Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except in the following circumstances:

Service Providers

We may share your information with trusted third-party service providers who assist us in operating our business, such as:

• Cloud hosting and data storage providers
• Payment processing services
• Email and communication platforms
• Analytics and marketing tools
• Professional advisors (legal, accounting, regulatory)

Legal Requirements

We may disclose your information when required by law, court order, or regulatory authority, or when necessary to protect our rights, property, or safety, or that of others.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication procedures
• Staff training on data protection and security
• Secure backup and disaster recovery procedures

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements.

Specific retention periods include:

• Client records: 7 years after the end of our professional relationship (as required by financial services regulations)
• Marketing communications: Until you withdraw consent or 3 years of inactivity
• Website analytics: Up to 26 months (Google Analytics default)
• Security logs: Up to 12 months

When personal data is no longer required, we will securely delete or anonymise it in accordance with our data retention policy.

Your Rights

Under the General Data Protection Regulation (GDPR) and Austrian data protection law, you have the following rights regarding your personal data:

Access and Portability

• Right to access your personal data and obtain copies
• Right to data portability (receive your data in a structured format)

Correction and Deletion

• Right to rectification (correct inaccurate or incomplete data)
• Right to erasure ("right to be forgotten" in certain circumstances)

Processing Controls

• Right to restrict processing in certain circumstances
• Right to object to processing based on legitimate interests
• Right to withdraw consent (where processing is based on consent)

Exercising Your Rights

To exercise any of these rights, please contact us using the details below. We will respond to your request within one month and may require verification of your identity.

International Data Transfers

We primarily process your data within the European Economic Area (EEA). When we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as:

• European Commission adequacy decisions
• Standard contractual clauses approved by the European Commission
• Binding corporate rules or certification schemes

Children's Privacy

Our services are designed for adults and we do not knowingly collect personal information from children under 16 years of age. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and, where appropriate, by email.

We encourage you to review this policy periodically to stay informed about how we protect your information.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us:

You also have the right to lodge a complaint with the Austrian Data Protection Authority (Datenschutzbehörde) if you believe we have not handled your personal data in accordance with applicable law.