Skip to main contentSkip to contact

Senior operators only. No agency structure. No junior layer.

Privacy Policy

Last updated: March 2026

1. Data Controller

The data controller within the meaning of the General Data Protection Regulation (GDPR) is:

C. Misselwitz & C. Wheeler letsrocc GbR
Kupferhammer 39
60439 Frankfurt am Main
Germany

Email:
Web: www.letsrocc.com

VAT ID: DE36143411

2. Overview of Data Processing

The following overview summarises the types of data processed and the purposes of their processing:

  • Contact data (name, email address)
  • Company data (company name, position, revenue range)
  • Content data (enquiries, challenges, context information)
  • Usage data (access times, pages)
  • Meta/communication data (IP addresses, browser information)

3. Legal Basis

Processing is carried out on the following legal bases:

  • Art. 6(1)(a) GDPR (Consent): You have given consent to the processing.
  • Art. 6(1)(b) GDPR (Contract Performance): Processing is necessary for the performance of a contract or pre-contractual measures.
  • Art. 6(1)(f) GDPR (Legitimate Interests): Processing is necessary to protect our legitimate interests, provided your interests do not override.

4. Contact Form

When you contact us (e.g. via contact form or email), the information you provide is stored for the purpose of processing your enquiry and for follow-up questions.

Data types processed: Name, email address, company, position, revenue range, challenge, context information, language preference.
Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures), Art. 6(1)(a) GDPR (consent).
Retention period: Your data is deleted once it is no longer necessary for the purpose for which it was collected, but no later than 24 months.

5. Email Communication

When you contact us via the contact form, you will receive an automatic confirmation email. We use Postmark as our email service provider for transactional emails.

Provider: Postmark (Wildbit LLC), USA
Privacy notice: postmarkapp.com/privacy-policy

6. CRM System

We use HubSpot as our CRM system for managing customer relationships and enquiries. Data from the contact form is transmitted to HubSpot.

Provider: HubSpot, Inc., USA
Data processed: Name, email address, company, position, enquiry
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in efficient customer management)
Privacy notice: legal.hubspot.com/privacy-policy

7. Web Analytics

Google Tag Manager & Google Analytics

This website uses Google Tag Manager to manage website tags. Google Tag Manager itself does not set cookies or collect personal data. However, other services such as Google Analytics may be integrated through the Tag Manager.

Provider: Google Ireland Limited, Ireland
Data processed: IP address (anonymised), usage data, device information
Legal basis: Art. 6(1)(a) GDPR (consent)
Privacy notice: policies.google.com/privacy
Opt-out: Google Analytics Opt-out Browser Add-on

8. Hosting and Server

This website is hosted by Abacus.AI. Information is automatically collected with each access that the browser transmits (server log files).

Data collected: IP address, date/time, page accessed, browser type, operating system.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in secure operation).
Retention period: Log files are deleted after 30 days.

9. Cookies

This website uses cookies. Technically necessary cookies are required for the operation of the website and are set without consent. Analytics and marketing cookies are only set after your explicit consent.

Technically necessary cookies:
• cookie_consent – Stores your cookie consent (1 year)
• locale – Stores your language preference (session)

Analytics cookies (only with consent):
• _ga, _gid – Google Analytics cookies to distinguish users

You can withdraw your consent at any time via the cookie banner that appears at the bottom of the page.

10. External Services

Calendly

We use Calendly for appointment booking. When booking, your data is transmitted to Calendly.
Provider: Calendly LLC, USA
Privacy notice: calendly.com/privacy

Google Fonts

This website uses Google Fonts for consistent typography. The fonts are hosted locally, so no connection to Google servers is established.

11. Data Transfer to Third Countries

Some of the service providers we use are based in the USA (Postmark, HubSpot, Calendly). Transfer is based on:

  • EU-U.S. Data Privacy Framework (for certified companies)
  • Standard contractual clauses (Art. 46(2)(c) GDPR)
  • Consent (Art. 49(1)(a) GDPR)

12. Your Rights

You have the following rights regarding your personal data:

  • Right of access (Art. 15 GDPR): You can request information about your processed data.
  • Right to rectification (Art. 16 GDPR): You can request correction of inaccurate data.
  • Right to erasure (Art. 17 GDPR): You can request deletion of your data.
  • Right to restriction (Art. 18 GDPR): You can request restriction of processing.
  • Right to data portability (Art. 20 GDPR): You can receive your data in a machine-readable format.
  • Right to object (Art. 21 GDPR): You can object to processing.
  • Right to withdraw consent (Art. 7(3) GDPR): You can withdraw consent at any time.
  • Right to lodge a complaint (Art. 77 GDPR): You can complain to a supervisory authority.

To exercise your rights, please contact us at:

13. Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority. For the UK, this is the Information Commissioner's Office (ICO). For Germany (Hesse), the competent authority is:

Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
Postfach 3163
65021 Wiesbaden
Germany
Web: datenschutz.hessen.de

14. Changes to This Privacy Policy

We reserve the right to amend this privacy policy to reflect changes in the legal situation or changes to our services. The current version applies from the date stated above.

For questions about the processing of your data, contact us at: