Privacy Policy

Last updated: September 3, 2025

This Privacy Policy explains how Puraite ("we", "us", "our") collects, uses, discloses and safeguards personal data when you visit or interact with our website at https://puraite.com (the "Website"). If you have any questions, contact us at contact [at] puraite [dot] com.

Controller: Puraite, c/o Founders Foundation, Obernstraße 50, 33602 Bielefeld, Germany

This policy is designed to comply with the EU General Data Protection Regulation (GDPR) and other applicable laws.

What We Collect

  • Technical data: IP address, device/browser type and version, operating system, referrer URL, pages viewed, time spent and similar usage data.
  • Communication data: information you provide via forms (e.g., name, email, message content) if you choose to contact us.

Why We Process Your Data (Legal Bases)

  • Website delivery and security (Art. 6(1)(f) GDPR): operating a secure, reliable website; server logs for troubleshooting and abuse prevention.
  • Analytics and improvements (Art. 6(1)(a) or 6(1)(f) GDPR): understanding how visitors use the site to improve content and performance. Where required by law, we rely on your consent.
  • Responding to inquiries (Art. 6(1)(b) or 6(1)(f) GDPR): handling messages you send via our contact options.

Cookies and Tracking

We use essential cookies necessary to operate the site. We may also use analytics cookies as described below. You can control cookies in your browser settings and, where applicable, via consent tools on the site.

Analytics (Google Analytics)

If enabled, we use Google Analytics (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) to analyse website usage.

  • Data processed: page views, interactions, truncated IP addresses, device/browser information and similar usage data.
  • Legal basis: consent (Art. 6(1)(a) GDPR) where required; otherwise legitimate interests (Art. 6(1)(f) GDPR).
  • Opt-out: disable cookies in your browser or use Google's opt-out add-on: https://tools.google.com/dlpage/gaoptout
  • Transfers: Google may process data outside the EU/EEA. Standard Contractual Clauses (SCCs) apply.

Tag Management (Google Tag Manager)

We use Google Tag Manager (GTM) to deploy and manage analytics tags. GTM itself does not typically set cookies; it facilitates loading other tags. Legal basis follows the respective tags loaded. Processing may occur outside the EU/EEA; SCCs apply via Google.

Hosting and CDN (Cloudflare)

We use Cloudflare (Cloudflare, Inc.) as CDN and security layer. Server and edge logs may include IP addresses and request metadata for operation, performance, security (e.g., DDoS protection) and troubleshooting. Legal basis: legitimate interests (Art. 6(1)(f) GDPR). Logs are kept only as long as necessary.

Data Sharing

We share personal data with service providers under appropriate data processing agreements. We do not sell personal data. Service providers may include:

  • Cloudflare (CDN and security).
  • Google Analytics (usage analytics; IP anonymisation enabled by default).
  • Pipedrive (CRM for sales pipeline management).
  • Google Workspace (email and productivity; processing of communications when you email us).

International Transfers

Where data is transferred outside the EU/EEA, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs).

Retention

We retain personal data only for as long as needed for the purposes explained above or as required by law.

Your Rights (GDPR)

You may have the right to access, rectify, erase, restrict, or object to processing; to data portability; and to withdraw consent at any time (without affecting prior processing). You also have the right to lodge a complaint with a supervisory authority. To exercise your rights, contact: contact [at] puraite [dot] com

Children's Privacy

Our website is not directed to children under 16.

Changes

We may update this Privacy Policy. The "Last updated" date indicates the latest revision.