Privacy Policy (Datenschutzerklärung)

Last updated: 11.02.2026

1. Introduction

We take the protection of your personal data seriously. This Privacy Policy explains how we collect, process, and protect your personal data when you visit our website:

www.leadgenwithendora.com

This policy complies with the General Data Protection Regulation (GDPR) and applicable German data protection laws.

2. Data Controller

The data controller within the meaning of Art. 4(7) GDPR is:

Lead Generation With Endora (LGWE)
Endora Mackrodt
Bachemer Strasse 54-56
50931 Cologne, Germany

Email: leadgenwithendora@gmail.com

Phone: +49 172 8821759

3. Categories of Personal Data Collected

We may collect and process the following categories of personal data:

Identification data (name, company name)

Contact data (email address, phone number)

Business information (company role, industry, website)

Payment data (processed via third-party payment providers)

Communication data (emails, messages, call notes)

Technical data (IP address, browser type, device type)

Usage data (pages visited, time spent, referral source)

Tracking and enrichment data (see Section 7)

4. Legal Bases for Processing (Art. 6 GDPR)

We process personal data on the following legal bases:

4.1 Contract Performance (Art. 6(1)(b) GDPR)

To provide our services, respond to inquiries, manage client relationships, and process payments.

4.2 Consent (Art. 6(1)(a) GDPR)

For:

Newsletter subscriptions

Marketing communications

Certain tracking technologies and cookies

Consent may be withdrawn at any time.

4.3 Legal Obligation (Art. 6(1)(c) GDPR)

To comply with tax, accounting, and regulatory obligations.

4.4 Legitimate Interests (Art. 6(1)(f) GDPR)

We process data based on legitimate interest for:

Improving our website and services

Ensuring IT security

Lead generation and business development

B2B marketing activities

Analyzing website engagement

Identifying companies interested in our services

Our legitimate interest lies in operating and growing a professional B2B services business. We conduct balancing assessments to ensure your rights and freedoms are not overridden.

5. Data Sharing and Processors

We share personal data only where necessary and under strict contractual safeguards.

This may include:

Payment processors (e.g., Stripe or similar providers)

CRM systems

Email marketing providers

Scheduling software

Analytics providers

Website hosting providers

Visitor identification and enrichment providers (see Section 7)

Professional advisors (legal, accounting)

All processors are contractually bound under Art. 28 GDPR.

6. International Data Transfers

Some of our service providers are located outside the European Union, particularly in the United States.

Where personal data is transferred outside the EU/EEA, we ensure adequate safeguards such as:

Standard Contractual Clauses (SCCs)

Data Processing Agreements (DPAs)

Additional technical and organizational safeguards where required

7. Cookies, Tracking & Visitor Identification Technologies

Our website uses cookies and similar technologies.

7.1 Essential Cookies

Required for website functionality and security.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest).

7.2 Analytics & Marketing Cookies

With your consent, we may use:

Website analytics tools

Marketing and performance tracking tools

LinkedIn or similar B2B marketing tools

Legal basis: Art. 6(1)(a) GDPR (consent).

You may withdraw consent at any time via our cookie settings.

7.3 B2B Visitor Identification & Enrichment Tools

We may use B2B visitor identification technologies such as Visual Visitor or similar providers.

These tools may:

Identify company-level information associated with website visitors

Collect IP-based business identification data

Enrich publicly available business contact information

Help us understand corporate interest in our services

This processing is limited to professional B2B context and business-related information.

Legal basis:

Art. 6(1)(f) GDPR (legitimate interest in B2B lead generation)

Art. 6(1)(a) GDPR where required for tracking technologies

Visitors may opt out via:

Our cookie settings

The respective provider’s opt-out mechanisms

8. Data Retention

We retain personal data only as long as necessary:

For contractual purposes

For statutory retention obligations

For legitimate business purposes

Business inquiry data is generally retained for up to 24 months unless further engagement occurs.

Accounting data is retained according to German tax law (typically 10 years).

9. Data Security

We implement technical and organizational measures (TOMs) including:

Encrypted data transmission (SSL/TLS)

Access restrictions

Role-based access control

Regular security reviews

Secure third-party vendors

10. Your Rights Under GDPR

You have the right to:

Access your data (Art. 15 GDPR)

Rectification (Art. 16 GDPR)

Erasure (Art. 17 GDPR)

Restriction of processing (Art. 18 GDPR)

Data portability (Art. 20 GDPR)

Object to processing (Art. 21 GDPR)

Withdraw consent at any time

Lodge a complaint with a supervisory authority

11. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority.

Competent authority for us:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (LDI NRW)
https://www.ldi.nrw.de

12. Obligation to Provide Data

Providing personal data may be required:

For contract fulfillment

For communication purposes

For legal obligations

Failure to provide required data may result in inability to provide services.

13. Automated Decision-Making

We do not carry out fully automated decision-making that produces legal effects concerning you within the meaning of Art. 22 GDPR.

14. Updates to This Privacy Policy

We may update this Privacy Policy to reflect changes in legal requirements or our services. The current version will always be available on our website.


​