Privacy Notice (GDPR)

Privacy

Privacy Notice (GDPR) — AuHandel / Balmeringa GmbH

AuHandel is a trading name of Balmeringa GmbH (“we”, “us”, “our”). We respect privacy and process personal data in accordance with applicable data protection laws, including the EU General Data Protection Regulation (GDPR). This Privacy Notice explains what personal data we collect, how we use it, and your rights.

Notice metadata

Effective date: 01 January 2020

Last updated: 31 December 2025

Privacy contact:complaints@auhandel.com

1. Data Controller

For data protection purposes, Balmeringa GmbH is the data controller for personal data processed via auhandel.com and related communications.

Privacy contact:complaints@auhandel.com

Legal / Imprint: /legal

2. What data we collect

We collect personal data only where you provide it to us directly.

Data you may provide includes:

Name
Business email address and/or phone number
Company name, role/title
Message content and any documents you send us
Additional information required for counterparty onboarding if engagement progresses (risk-based)

Special category data

We do not seek to collect special category data (e.g., health, religion, political opinions). Please do not submit such data unless it is strictly necessary.

3. What we do not do

AuHandel does not use the website for:

Marketing emails or newsletters
Advertising or marketing trackers
Profiling or behavioural analytics
Sale of personal data

Children

We do not intentionally collect personal data from children.

4. How we use personal data (purposes)

We process personal data for the following purposes only:

To respond to enquiries and communicate with you
To assess institutional/professional engagement suitability
To perform risk-based compliance checks where appropriate (e.g., KYC/AML/CTF screening consistent with our operating model)
To protect our business and systems, including fraud prevention, security monitoring, and defending legal claims
To comply with legal obligations where applicable

5. Legal bases for processing (GDPR Article 6)

We process personal data using one or more of the following legal bases:

Steps prior to entering a contract (Art. 6(1)(b)) — when you contact us and we assess or progress a potential business relationship.
Legitimate interests (Art. 6(1)(f)) — to respond to communications, maintain business records, protect systems and prevent fraud, and conduct proportionate compliance screening consistent with an institutional operating model.
Legal obligation (Art. 6(1)(c)) — where we must retain or disclose information to meet applicable legal requirements.

6. Cookies and tracking

AuHandel does not use analytics cookies, advertising cookies, or marketing trackers.

Squarespace (or your hosting provider) may use strictly necessary technical functions to deliver the site (e.g., load balancing, basic security). We do not use cookies for tracking or marketing purposes.

8. International transfers

If any service provider processes personal data outside the EEA, we will use appropriate safeguards such as:

An adequacy decision (where applicable), or
Standard Contractual Clauses (SCCs) or other lawful transfer mechanisms.

9. Data retention

We retain personal data only for as long as necessary for the purposes described above, including compliance and legal obligations.

Typical examples:

Enquiry communications: retained for a reasonable period for continuity and business record-keeping
Onboarding/compliance records (if engagement progresses): retained longer where needed for audit readiness and legal obligations
You may request retention details by contacting us.

10. Data security

We implement appropriate technical and organisational measures to protect personal data, including access controls and secure handling procedures. No system is completely secure, but we take reasonable steps to reduce risk of unauthorised access, loss, or misuse.

11. Your rights under GDPR

Subject to applicable law, you may have the right to:

Access your personal data
Rectify inaccurate data
Request erasure in certain circumstances
Restrict processing in certain circumstances
Object to processing based on legitimate interests
Request data portability where applicable
Lodge a complaint with a supervisory authority
To exercise your rights, contact:complaints@auhandel.com
We may need to verify your identity before responding.

12. Complaints

You have the right to lodge a complaint with your local data protection authority in the EEA. We encourage you to contact us first so we can address your concern promptly.

13. Changes to this notice

We may update this Privacy Notice from time to time. The “Last updated” date indicates when changes were made.