NovaSummit

Privacy Policy

Last updated: 15th January 2026

Introduction

NovaSummit AG ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, process, and protect your information when you visit our website or use our educational app development guidance services.

We are the data controller for the personal data we process, and we are committed to ensuring that your privacy is protected in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR).

Data We Collect

The data we collect depends on how you interact with our services. We may collect the following types of personal information:

Information You Provide Directly

  • Contact information (name, email address, phone number)
  • Company or organisation details
  • Project requirements and educational objectives
  • Communications and correspondence with us
  • Information provided through our contact forms

Information Collected Automatically

  • Website usage data and analytics
  • IP address and location information
  • Browser type and device information
  • Pages visited and time spent on our website
  • Referral sources and search terms

How We Use Your Information

We use your personal data for legitimate business purposes and with your consent where required. The use of your data includes:

  • Providing educational app development guidance and consulting services
  • Responding to your enquiries and communications
  • Improving our website and services based on user feedback
  • Sending relevant information about our services (with consent)
  • Complying with legal obligations and protecting our legitimate interests
  • Analysing website performance and user behaviour to enhance user experience

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about our use of cookies, please refer to our Cookie Policy.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: When you provide explicit consent for specific processing activities
  • Contract Performance: To fulfil our contractual obligations in providing services
  • Legitimate Interests: For business operations, website improvement, and security
  • Legal Compliance: To comply with applicable laws and regulations

Data Sharing and Third Parties

We do not sell your personal data. We may share your information with trusted third parties in the following circumstances:

  • Service providers who assist in delivering our services (under strict confidentiality agreements)
  • Analytics and advertising platforms (Google Analytics, Google Ads) for website improvement and marketing
  • Legal authorities when required by law or to protect our rights
  • Professional advisors (lawyers, accountants) for business operations

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected or as required by law. Generally:

  • Contact enquiries: 3 years from last contact
  • Client project data: 7 years after project completion
  • Website analytics: 26 months (Google Analytics default)
  • Marketing data: Until consent is withdrawn

Your Rights

Under GDPR and applicable data protection laws, you have the following rights regarding your personal data:

  • Right of Access: Request copies of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation of data processing
  • Right to Data Portability: Request transfer of your data
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent for consent-based processing

To exercise any of these rights, please contact us using the details provided below.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and staff training
  • Secure hosting and backup systems

International Data Transfers

Some of our service providers may be located outside the European Economic Area (EEA). When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions by the European Commission.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or have concerns about how we handle your personal data, please contact us:

NovaSummit AG

Friedrichstraße 90, 70940 Stuttgart, Baden-Württemberg, Germany

Email: privacy@novasummit.top

Phone: +49 7116878673

Complaints

If you believe we have not handled your personal data in accordance with data protection laws, you have the right to lodge a complaint with the relevant supervisory authority. In Germany, this is the Federal Commissioner for Data Protection and Freedom of Information (BfDI).

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date.