Privacy (Datenschutzerklaerung)

This privacy notice explains how personal data is processed when you use this website.

Short version

We intentionally keep this site minimal. We only load Google Analytics if you opt in via the cookie banner / settings. Without consent, no analytics is loaded. We do not use advertising pixels. When you contact us via email or phone, we process your message to respond.

Controller (data controller)

Controller under Art. 4(7) GDPR:

Lorenz GmbH
Achterum 1
26736 Krummhorn
Germany

Email: info@lorenzgmbh.de
Phone: +49 4926 1754

Data processing when visiting the website

When you access this website, your browser transmits information that is technically necessary to deliver the pages. This information is typically processed in server log files.

Categories of data

IP address (often stored in log files)
Date and time of access
Requested page / file and status code
Referrer URL (if transmitted)
Browser type, operating system, language

Purposes

Providing the website and its functionality
IT security and abuse prevention
Stability, performance and error analysis

Legal basis

Art. 6(1)(f) GDPR (legitimate interests) - secure operation and delivery of the website.

Hosting

The website is hosted by a service provider (hosting provider). In the course of hosting, the provider may process the technical data described above (in particular server logs) on our behalf.

Hosting provider (to be completed by the website operator): [Name and address of hosting provider]
Data processing agreement: typically Art. 28 GDPR (processor).

Cookies, tracking and analytics

Essential storage (cookie preference)

We store your cookie preference so we do not have to ask on every visit. This is done via localStorage and a small first-party cookie ("lorenz_consent").

Google Analytics 4 (optional)

If you opt in, we use Google Analytics 4 (GA4) to understand how this site is used and to improve it. GA4 may use cookies (for example "_ga" and "_ga_*") and similar identifiers. Without your consent, GA4 is not loaded.

Provider

Google Analytics is provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). Depending on configuration, data may also be processed by Google LLC in the United States.

Legal basis

Art. 6(1)(a) GDPR (consent). You can withdraw consent at any time via the cookie banner or our Cookies page.

Categories of data (typical)

Online identifiers (cookie IDs), device and browser information
Approximate location (derived from IP), page views and interaction events

International transfers

If data is transferred to a country outside the EU/EEA, this happens under the conditions of Chapter V GDPR and the safeguards used by the provider (for example Standard Contractual Clauses), as applicable.

Contact by email or phone

If you contact us by email or phone, we process the information you provide (for example your name, contact details and the content of your inquiry) in order to respond.

Legal basis

Art. 6(1)(b) GDPR, if the inquiry relates to pre-contractual measures or a contract
Art. 6(1)(f) GDPR, for general communication and business correspondence

Retention

We retain correspondence as long as necessary to handle the inquiry and to comply with legal retention obligations (for example under commercial and tax law, where applicable).

Please avoid sending sensitive information via unencrypted email.

External links

This website contains links to external websites (for example to portfolio companies). When you click such a link, you leave our website. The external site is operated by its own controller and applies its own privacy policy.

Recipients and processors

We share personal data only to the extent necessary for the purposes described above. Typical categories of recipients may include:

Hosting providers and IT service providers (processors)
Email and telecommunications providers (depending on your channel of contact)
Professional advisers where required (for example legal or tax advisers), subject to confidentiality

International data transfers

We aim to process data within the EU/EEA. If a service provider processes data outside the EU/EEA, this will only occur under the conditions of Chapter V GDPR (for example adequacy decision or appropriate safeguards).

Your rights

Under the GDPR you may have the following rights, depending on the circumstances:

Right of access (Art. 15 GDPR)
Right to rectification (Art. 16 GDPR)
Right to erasure (Art. 17 GDPR)
Right to restriction of processing (Art. 18 GDPR)
Right to data portability (Art. 20 GDPR)
Right to object (Art. 21 GDPR)
Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

If you want to exercise your rights, please contact us using the contact details above.

Security

We use reasonable technical and organizational measures to protect the website and communications. However, no method of transmission over the Internet is fully secure.

Changes to this privacy notice

We may update this privacy notice when necessary. The current version is published on this page.

Last updated: 2026-01-19