Privacy Policy

Last updated: January 15, 2026

This Privacy Policy describes how Brightlevelium GmbH ("we," "us," or "our") collects, uses, and protects your personal information when you visit our website or use our services. We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR).

1. Data Controller Information

The data controller responsible for your personal information is:

Brightlevelium GmbH

Gartenstraße 116, 20606 Hamburg, Germany

Registration Number: HRB124512

Email: privacy@brightlevelium.top

Phone: +49 408656981

2. Data We Collect

Our data collection practices are designed to provide you with the best possible experience while respecting your privacy. We collect the following types of personal information:

Information You Provide Directly

  • Contact information (name, email address, phone number) when you fill out forms or contact us
  • Communication preferences and consent choices
  • Any information you provide in messages, inquiries, or feedback
  • Newsletter subscription information if you choose to subscribe

Information Collected Automatically

  • Website usage data (pages visited, time spent, navigation patterns)
  • Technical information (IP address, browser type, device information, operating system)
  • Cookies and similar tracking technologies (see our Cookie Policy for details)
  • Referral sources and marketing campaign data

3. How We Use Your Information

We use your personal data for the following purposes, based on legitimate interests, contractual necessity, or your consent:

Service Provision and Communication

  • Respond to your inquiries and provide customer support
  • Deliver educational content and financial guidance
  • Process and manage your requests for information or services
  • Send important updates about our services or changes to our policies

Website Improvement and Analytics

  • Analyze website usage to improve our content and user experience
  • Monitor website performance and identify technical issues
  • Understand user preferences to enhance our educational offerings
  • Conduct research to develop better financial education resources

Marketing and Advertising

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

4. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: For marketing communications, cookies, and optional data processing
  • Legitimate Interests: For website analytics, security, and service improvement
  • Contractual Necessity: To provide services you have requested
  • Legal Obligation: To comply with applicable laws and regulations

5. Data Sharing and Third Parties

We do not sell your personal information. We may share your data with trusted third parties in the following circumstances:

Service Providers

  • Website hosting and technical infrastructure providers
  • Email marketing and communication platforms
  • Analytics services (Google Analytics) to understand website usage
  • Customer support and help desk services

Legal Requirements

  • When required by law, legal process, or government request
  • To protect our rights, property, or safety, or that of our users
  • In connection with a business transaction (merger, acquisition, etc.)

6. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your browsing experience and analyze website performance. For detailed information about our use of cookies, including how to manage your preferences, please see our Cookie Policy.

7. Data Retention

We retain your personal information only as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. Our data retention practices include:

  • Contact information: Retained until you request deletion or withdraw consent
  • Website analytics data: Typically retained for 26 months
  • Communication records: Retained for 3 years for customer service purposes
  • Marketing data: Retained until you unsubscribe or withdraw consent

8. Your Rights

Under GDPR and other applicable data protection laws, you have the following rights regarding your personal data:

Access and Information Rights

  • Right of Access: Request a copy of your personal data we hold
  • Right to Information: Understand how your data is processed

Control and Correction Rights

  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a portable format

Consent and Objection Rights

  • Right to Withdraw Consent: Withdraw consent for processing based on consent
  • Right to Object: Object to processing based on legitimate interests
  • Right to Complain: File a complaint with a supervisory authority

To exercise any of these rights, please contact us at privacy@brightlevelium.top or +49 408656981. We will respond to your request within 30 days.

9. International Data Transfers

Our services are primarily operated within the European Union. If we transfer personal data outside the EU/EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions by the European Commission.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. Our security measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication procedures
  • Employee training on data protection and security
  • Incident response and breach notification procedures

11. Children's Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information promptly.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. For significant changes, we may provide additional notice through email or prominent website notices.

13. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us:

Privacy Contact:

Email: privacy@brightlevelium.top

Phone: +49 408656981

Address: Gartenstraße 116, 20606 Hamburg, Germany

Business Hours: Monday - Friday: 9:00 - 18:00 (CET)

Supervisory Authority:

If you believe your data protection rights have been violated, you have the right to file a complaint with the relevant supervisory authority. In Germany, this is the Bundesbeauftragte für den Datenschutz und die Informationsfreiheit (BfDI).