Imprint

Information pursuant to Section 5 of the Digital Services Act (DDG)

galaniprojects GmbH
Keithstraße 2–4
10787 Berlin
Germany

Registration
Registered in the German Commercial Register
Register court: Local Court Berlin-Charlottenburg
Registration number: HRB 175723 B

Represented by

Anastasia Galani

Responsible for content pursuant to Section 18 (2) MStV

Anastasia Galani
Keithstraße 2–4
10787 Berlin

Contact

Phone: +49 (0) 30 2123 2827
Fax: +49 (0) 30 2191 3767
Email: info@galaniprojects.de

VAT identification number pursuant to Section 27a German VAT Act (UStG)

DE306245726

Liability for content

In accordance with Section 7 (1) TMG / Section 8 DDG, we are responsible for our own content on these pages under general laws. However, we do not assume any liability for the accuracy, completeness, or timeliness of the content.

Liability for links

Our website contains links to external third-party websites over whose content we have no control. Therefore, we cannot accept any liability for such external content. The respective provider or operator of the linked pages is always responsible for their content.

Copyright

The content and works created by us on these pages are subject to German copyright law. Any use outside the limits of copyright law requires our prior written consent. Downloads and copies of this page are permitted for private, non-commercial use only.

Privacy Policy

1. Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws is:

galaniprojects GmbH
Keithstraße 2–4
10787 Berlin
Germany

Phone: +49 (0) 30 2123 2827
Email: info@galaniprojects.de
Website: https://sqf-agents.ai

2. General information on data processing

We process personal data only to the extent necessary to provide our website as well as our content and services, or where another legal basis applies (e.g., consent or legitimate interest). Legal bases include in particular Art. 6(1)(a), (b), (c) and (f) GDPR.

Where we use external service providers (e.g., hosting), this is done as part of processing on behalf of a controller pursuant to Art. 28 GDPR.

3. Hosting

Our website is hosted by an external service provider (hosting provider) within the European Union / European Economic Area. The hosting provider provides infrastructure and platform services, computing capacity, storage space, database services, security services, and technical maintenance.

Purpose and legal basis

Secure and efficient operation of this website.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in a secure and stable operation of the website).

4. Provision of the website and server log files

When you access our website, our system automatically collects data and information from the computer system of the accessing device. The following data may be collected in particular:

• IP address
• Date and time of the request
• Time zone difference to Greenwich Mean Time (GMT)
• Content of the request (specific page)
• Access status / HTTP status code
• Amount of data transferred
• Website from which the request originates (referrer URL)
• Browser type, language, and version
• Operating system and interface

This data is stored in the system’s log files.

Purposes of processing

• Delivering the website to users’ browsers
• Ensuring the functionality of the website
• Ensuring IT security (e.g., defense against attacks)
• Statistical evaluation to technically optimize our systems

Legal basis

Art. 6(1)(f) GDPR (legitimate interest in the secure and error-free technical operation of the website).

Storage period

Log files are generally stored for a maximum period of 7–14 days and then deleted or anonymized, unless further retention is required for evidentiary purposes in connection with security-related incidents.

5. Contact (email, phone, contact form)

You can contact us using the contact options provided on the website (email, phone, contact form). In doing so, we process the data you provide, in particular:

• Name
• Email address
• Phone number (if applicable)
• Content of your message
• Other voluntary information (if applicable)

Purpose of processing

Handling your request and corresponding with you.

Legal bases

• Art. 6(1)(b) GDPR, insofar as the communication is related to initiating or performing a contract,
• Art. 6(1)(f) GDPR (legitimate interest in responding to inquiries).

Storage period

We store your inquiries, including personal data, as long as necessary for processing and handling. After that, the data will be deleted unless statutory retention obligations apply or the data is required for the assertion, exercise, or defense of legal claims.

6. Applications

If you apply to us on your own initiative or for advertised positions (e.g., by email), we process the application data you submit (e.g., contact details, CV, references).

Purpose of processing

• Decision on the establishment of an employment relationship (Art. 6(1)(b) GDPR in conjunction with Section 26 BDSG),
• If applicable, defense against legal claims arising from the application process (Art. 6(1)(f) GDPR).

Storage period

Application data will generally be deleted no later than 6 months after completion of the application process, provided no employment relationship is established and no other legitimate interests (e.g., evidence in proceedings under the AGG) or your explicit consent for longer storage (e.g., inclusion in an applicant pool) exist.

7. Blog and comments (blog.galaniprojects.de)

On our blog, you may be able to comment on posts or subscribe to comment notifications.

Processed data

• Displayed name / optionally a pseudonym
• Email address
• Comment content
• Timestamp and technical metadata (e.g., IP address, user agent)

Purposes of processing

• Publishing your comment,
• Protection against misuse (e.g., spam, unlawful content),
• Notification about new comments (if subscribed, via double opt-in).

Legal bases

• Art. 6(1)(f) GDPR (operation of a public blog, protection against misuse),
• Art. 6(1)(a) GDPR (consent for comment subscriptions/notifications).

Storage period

Comments generally remain visible for as long as the relevant post is online, unless deletion is required for legal or content-related reasons. You can unsubscribe from comment notifications at any time via the link provided in the email.

8. Cookies and similar technologies

Our website uses cookies and comparable technologies exclusively to the extent technically necessary to provide basic website functions (e.g., language settings, navigation, form protection). Data stored in technically necessary cookies is not used to identify website users or analyze their behavior.

Legal bases

• For storing and reading technically necessary information: Section 25(2) TDDDG (formerly TTDSG),
• for subsequent processing of personal data: Art. 6(1)(f) GDPR (legitimate interest in providing a functional website).

No tracking or marketing cookies

We currently do not use cookies for analytics, tracking, or marketing purposes. We also do not use tools such as Google Analytics, Facebook Pixel, or comparable services. If such services are used in the future, we will obtain your consent in advance and update this privacy policy accordingly.

9. Embedded content and third-party links

Our website may contain linked third-party content (e.g., websites of references, service providers, review portals). By clicking such a link, you leave our website. The respective providers are solely responsible for processing personal data on third-party pages.

Embedded content (e.g., videos, maps) is—where possible—integrated in a way that data is only transmitted after your active click. If services are used that transfer data to third countries (e.g., the USA), we will inform you transparently and—where required—obtain your consent.

10. Recipients of personal data

Within our company, only those departments have access to your data that require it to fulfill our contractual and legal obligations.

We use selected external service providers (e.g., hosting, IT service providers) to provide our website and operate our processes. These providers act as processors pursuant to Art. 28 GDPR. They have been carefully selected, contractually bound, and may process data only in accordance with our instructions.

Otherwise, data will only be passed on to third parties if this is necessary to fulfill a contract with you, if we are legally obliged to do so, or if you have explicitly consented.

11. Transfers to third countries

Personal data is transferred to countries outside the European Union (EU) or the European Economic Area (EEA) only if this is necessary to fulfill a contract, you have consented, or another legal permission applies—and only under the conditions of Art. 44 et seq. GDPR (e.g., adequacy decision of the EU Commission or standard contractual clauses).

If we use services involving such third-country transfers, we will provide separate information in this privacy policy.

12. Storage period

Unless otherwise stated for specific processing activities, the following applies:

• We process and store personal data only as long as necessary for the respective purposes.
• Once the purpose no longer applies, the data is deleted unless statutory retention obligations (e.g., commercial and tax law) prevent deletion or the data is needed to assert, exercise, or defend legal claims.

13. Your rights as a data subject

Under the GDPR, you have the following rights with regard to your personal data in particular:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (“right to be forgotten”, Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object to certain processing (Art. 21 GDPR)
• Right to withdraw consent with effect for the future (Art. 7(3) GDPR)
• Right not to be subject to a solely automated decision, including profiling (Art. 22 GDPR); we do not use such procedures.

You can exercise your rights at any time using the contact details provided above.

14. Right to lodge a complaint with a supervisory authority

You also have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data (Art. 77 GDPR).

The authority responsible for us is in particular:

Berlin Commissioner for Data Protection and Freedom of Information
Alt-Moabit 59–61
10555 Berlin
Phone: +49 30 13889-0
Email: mailbox@datenschutz-berlin.de
Web: https://www.datenschutz-berlin.de

15. Obligation to provide data

When using our website, there is generally no legal or contractual obligation to provide personal data. However, certain functions (e.g., contact form) cannot be used without specific information (such as name and email address).

16. No automated decision-making / profiling

We do not use your data for automated decision-making including profiling within the meaning of Art. 22 GDPR.

17. Validity and changes to this privacy policy

This privacy policy is currently valid (as of: November 2025). Due to the further development of our website or changes in legal or regulatory requirements, it may become necessary to update this privacy policy. The current version can be accessed at any time on our website under “Imprint & Privacy”.

‍