/img/regular_bg.jpg

Privacy policy

Quant Investing Privacy policy

Last updated: 30 April 2026

Serendipity Ventures UG (haftungsbeschränkt) ("us", "we", or "our") operates the www.quant-investing.com website (the "Service").

This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data.

We use your data to provide and improve the Service. Our processing is based on the legal bases set out in this Privacy Policy (in particular Art. 6 GDPR). Unless otherwise defined in this Privacy Policy, terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, accessible from www.quant-investing.com/terms-and-conditions

 

Definitions

Personal Data

Personal Data means data about a living individual who can be identified from those data (or from those and other information either in our possession or likely to come into our possession).

Usage Data

Usage Data is data collected automatically either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).

Cookies

Cookies are small pieces of data stored on a User’s device.

Data Controller

Data Controller means a person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal data are, or are to be, processed.

For the purpose of this Privacy Policy, we are a Data Controller of your data.

Data Processor (or Service Providers)

Data Processor (or Service Provider) means any person (other than an employee of the Data Controller) who processes the data on behalf of the Data Controller.

We may use the services of various Service Providers in order to process your data more effectively.

Data Subject

Data Subject is any living individual who is the subject of Personal Data.

User

The User is the individual using our Service. The User corresponds to the Data Subject, who is the subject of Personal Data.

 

Information Collection and Use

We collect several different types of information for various purposes to provide and improve our Service to you.

Types of Data Collected

Personal Data

While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you ("Personal Data"). Personally identifiable information may include, but is not limited to:

  • Email address
  • First name and last name
  • Phone number
  • Address, State, Province, ZIP/Postal code, City
  • Cookies and Usage Data

We may use your Personal Data to contact you with newsletters, marketing or promotional materials and other information that may be of interest to you. You may opt out of receiving any, or all, of these communications from us by following the unsubscribe link or instructions provided in any email we send.

Usage Data

We may also collect information how the Service is accessed and used ("Usage Data"). This Usage Data may include information such as your computer's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

Cookies and Analytics

Our website uses cookies to ensure its proper technical operation and to analyse its use.

  • Essential cookies are required for the website to function correctly and are set automatically.
  • Analytics cookies (Matomo) help us understand how visitors use our website. These are only set after you give your explicit consent through our cookie banner.

You can withdraw your consent or change your cookie preferences at any time through the cookie settings link available on our website.

For more details, please see our Cookie Policy
 

Use of Data

Serendipity Ventures UG (haftungsbeschränkt) uses the collected data for various purposes:

  • To provide and maintain our Service
  • To notify you about changes to our Service
  • To allow you to participate in interactive features of our Service when you choose to do so
  • To provide customer support
  • To gather analysis or valuable information so that we can improve our Service
  • To monitor the usage of our Service
  • To detect, prevent and address technical issues
  • To provide you with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information

 

Retention of Data

We keep your personal data only as long as necessary for the purposes for which it was collected.

  • Customer and subscriber information is retained for as long as your account or subscription is active and for up to six years afterward to meet accounting and legal obligations.

  • Email and marketing consent records are kept until you withdraw your consent or unsubscribe.

  • Usage data and analytics information are stored for a maximum of 12 months unless required longer for security purposes.

 

Transfer of Data

Your Personal Data may be processed outside the European Economic Area (EEA), in particular in the United States, where several of our service providers are based (see the list of Service Providers below).
Where data is transferred to a third country, we rely on one or more of the following safeguards pursuant to Chapter V GDPR:

  • an adequacy decision of the European Commission pursuant to Art. 45 GDPR — in particular the EU-U.S. Data Privacy Framework (adequacy decision of 10 July 2023) where the recipient is certified under that framework; and/or
  • EU Standard Contractual Clauses pursuant to Art. 46(2)(c) GDPR, together with supplementary technical and organisational measures where appropriate.

Serendipity Ventures UG (haftungsbeschränkt) takes all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.

 

Disclosure of Data

Business Transaction

If Serendipity Ventures UG (haftungsbeschränkt) is involved in a merger, acquisition or asset sale, your Personal Data may be transferred. We will provide notice before your Personal Data is transferred and becomes subject to a different Privacy Policy.

Disclosure for Law Enforcement

Under certain circumstances, Serendipity Ventures UG (haftungsbeschränkt) may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

Legal Requirements

Serendipity Ventures UG (haftungsbeschränkt) may disclose your Personal Data in the good faith belief that such action is necessary to:

  • To comply with a legal obligation
  • To protect and defend the rights or property of Serendipity Ventures UG (haftungsbeschränkt)
  • To prevent or investigate possible wrongdoing in connection with the Service
  • To protect the personal safety of users of the Service or the public
  • To protect against legal liability

 

Security of Your Data

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or misuse. These include encryption, access control, and secure data backups. While no online system can be completely secure, we regularly review and improve our safeguards.

 

Breach notification

In case of a data breach we will do the following:

1. Notify the appropriate regulatory body

2. Inform you of the following:
-    What happened
-    What we are doing about
-    What you can do to protect yourself and how we can help you
-    How you can contact us to answer any questions you may have

 

"Do Not Track" Signals

We do not support Do Not Track ("DNT"). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked.

 

Your Rights

Your Rights under GDPR

You have the following rights concerning your personal data:

  • Right of access and to receive a copy of your data (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (“right to be forgotten”, Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object to processing based on legitimate interests (Art. 21 GDPR)

  • Right to withdraw consent at any time, without affecting the lawfulness of processing carried out before withdrawal (Art. 7(3) GDPR)

You can exercise these rights by contacting us at [email protected]

If you believe we are processing your data unlawfully, you also have the right to lodge a complaint with the Hamburg Data Protection Authority (www.datenschutz-hamburg.de).

 

Service Providers

Third-Party Service Providers

We engage external service providers to assist in delivering our services (for example, email delivery, analytics, payments, and customer support).

These providers act as data processors under written data-processing agreements (Art. 28 GDPR) and may process your personal data only according to our instructions.

Certain providers (e.g., Stripe, PayPal) act as independent controllers when processing payment data under their own legal obligations.

 

Analytics

We may use third-party Service Providers to monitor and analyse the use of our Service.

Matomo Cloud

We use Matomo Cloud, an open-source web analytics service, to track and report website traffic. Matomo collects data that helps us monitor the usage of our website, without sharing it with third-party services. Unlike other analytics platforms, Matomo ensures that all collected data remains under our control, adhering to strict privacy and data protection regulations.

Matomo Cloud operates under its own Data Processing Agreement (DPA), ensuring compliance with data protection laws like GDPR. This agreement guarantees that data collected through Matomo is processed securely and transparently, without the need for external advertising or service networks.

For more details on Matomo's privacy practices, please refer to the following links:

Matomo Privacy Policy: https://matomo.org/privacy-policy/
Matomo Data Processing Agreement (DPA): https://matomo.org/matomo-cloud-dpa/

Matomo Tag Manager

We also use Matomo Tag Manager, which allows us to manage various analytics and marketing tags on our website. This system helps us ensure smooth tracking and analysis of user behavior without compromising user privacy.

For more information on Matomo Tag Manager and its privacy policies, please visit:

https://matomo.org/privacy/

 

Website Security and Optimisation

Cloudflare 

We use Cloudflare (provided by Cloudflare, Inc., USA, and Cloudflare Germany GmbH) for web optimisation and security services to improve and protect this website. This processing is based on our legitimate interest in the security and reliable operation of our Service (Art. 6(1)(f) GDPR).

Where Personal Data is transferred to Cloudflare, Inc. in the United States, the transfer is safeguarded by Cloudflare's certification under the EU-U.S. Data Privacy Framework (Art. 45 GDPR) and, as an additional safeguard, by EU Standard Contractual Clauses pursuant to Art. 46(2)(c) GDPR.

We also use Cloudflare's CAPTCHA service (Turnstile) to check whether form submissions originate from a human and to protect against spam and abuse.

Cloudflare's Privacy Policy can be viewed at: https://www.cloudflare.com/privacypolicy/

 

Auth0

Login and authentication for our Service is managed by Auth0, provided by Okta, Inc., USA. The processing covers authentication data (e.g. email address, login timestamps, IP address) and is necessary for the performance of the contract with you (Art. 6(1)(b) GDPR) and based on our legitimate interest in secure authentication (Art. 6(1)(f) GDPR).

Where Personal Data is transferred to Okta, Inc. in the United States, the transfer is safeguarded by Okta's certification under the EU-U.S. Data Privacy Framework (Art. 45 GDPR) and, as an additional safeguard, by EU Standard Contractual Clauses pursuant to Art. 46(2)(c) GDPR.

Their Privacy Policy can be viewed at: https://www.okta.com/privacy-policy/

 

Payments

We may provide paid products and/or services within the Service. In that case, we use third-party services for payment processing (e.g. payment processors).

We will not store or collect your payment card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.
The payment processors we work with are:

Stripe

Their Privacy Policy can be viewed at https://stripe.com/us/privacy

PayPal or Braintree

Their Privacy Policy can be viewed at https://www.paypal.com/webapps/mpp/ua/privacy-full

 

CookieYes (consent management)

We use CookieYes, provided by CookieYes Limited (3 Warren Yard, Warren Farm Office Village, Wolverton Mill, Milton Keynes, MK12 5NW, United Kingdom), to manage your cookie consent preferences on our website. CookieYes processes your IP address, consent choices, timestamp, and a unique consent ID. This processing is necessary to comply with our legal obligations under the GDPR and the TDDDG (Art. 6(1)(c) GDPR) and is based on our legitimate interest in documenting consent (Art. 6(1)(f) GDPR).

CookieYes's privacy policy: https://www.cookieyes.com/privacy-policy/

 

 

Invoicing and subscription management

Pabbly

Pabbly is provided by Magnet Brains Software Technology Pvt. Ltd. (3rd Floor, E-3/49, Kamdar Apartment, 10 No. Market, Arera Colony, Bhopal, Madhya Pradesh 462016, India). Customer data is hosted on Amazon Web Services infrastructure in the United States (US-West-2, Oregon region). Data processed includes your name, email address, and — if you voluntarily provide it for formal invoicing — postal address. No payment card data is processed by Pabbly; card payments are handled by our payment processors (Stripe, PayPal).

Legal basis: Art. 6(1)(b) GDPR (performance of contract — invoicing) and Art. 6(1)(c) GDPR (compliance with statutory invoicing and bookkeeping obligations under HGB and AO).

Transfer to third countries: Data is transferred to India (contracting entity) and the United States (data hosting). Transfers are safeguarded by EU Standard Contractual Clauses pursuant to Art. 46(2)(c) GDPR, incorporated in Pabbly's signed Data Processing Agreement, together with supplementary technical and organisational measures (encryption in transit and at rest, SOC 2 Type II and ISO 27001:2022 certifications).

Pabbly's Privacy Policy: https://www.pabbly.com/privacy-policy/

 

 

Email

We use third-party service providers to send you emails.

These service providers have access to your Personal Data the use of which is governed by their Privacy Policy.

The email service provider we work with are:

Intuit Mailchimp

Their Privacy Policy can be viewed at: www.mailchimp.com/legal/privacy/

Mailchimp Data Processing Addendum (DPA) can be viewed at: https://mailchimp.com/legal/data-processing-addendum/

 

SendGrid

Their Privacy Policy can be viewed here: https://www.twilio.com/en-us/legal/privacy

Their Data Processing Addendum (DPA) can be viewed here: https://www.twilio.com/en-us/legal/data-protection-addendum

 

 

Office and Collaboration Tools

Google Workspace

We use Google Workspace, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"), for our business email, document management, and internal collaboration. Personal data you provide through our website — for example via our contact form, newsletter sign-up, email correspondence, or calendar invitations — is received and stored within Google Workspace so that we can respond to your inquiries and manage our business communication with you.

Legal basis: Art. 6(1)(b) GDPR where processing is necessary to respond to your request or perform a contract; Art. 6(1)(f) GDPR based on our legitimate interest in secure and reliable business communication; and Art. 6(1)(a) GDPR where you have given consent (e.g. for our newsletter), which you may withdraw at any time.

Processor relationship: Google processes this data exclusively on our behalf under a data processing agreement pursuant to Art. 28 GDPR. Google does not use the data for its own advertising purposes.
Transfer to third countries: Data may be transferred to Google LLC in the United States as a sub-processor. Google LLC is certified under the EU-U.S. Data Privacy Framework (adequacy decision of 10 July 2023, Art. 45 GDPR) and additionally relies on EU Standard Contractual Clauses pursuant to Art. 46(2)(c) GDPR.

Retention: Data is retained for as long as necessary to handle your inquiry and any resulting business relationship, and thereafter in line with statutory retention obligations (in particular HGB and AO).
More information: https://policies.google.com/privacy

 

Customer service

We use a third-party service provider to provide customer support. 

This service provider has access to your Personal Data the use of which is governed by their Privacy Policy.

Groove

We use Groove (provided by Groove Networks, LLC, USA) to provide customer support services, including the support button and chat widget on our website and the management of customer support tickets. Personal data processed includes your name, email address, the content of your support messages, and technical data such as your IP address, browser metadata, and referrer URL.
Legal basis: Art. 6(1)(b) GDPR where processing is necessary to respond to your request or perform a contract with you, and Art. 6(1)(f) GDPR based on our legitimate interest in providing efficient customer support.
Transfer to third countries: Personal data is transferred to Groove Networks, LLC in the United States. The transfer is governed by a Data Processing Agreement concluded with Groove that includes contractual safeguards for international data transfers pursuant to Art. 46 GDPR.
Sub-processors: Groove uses sub-processors to provide its service. These include Filestack (provided by Filestack, LLC, USA) to deliver image assets within the support widget. When the widget loads, the visitor's IP address, browser metadata, and referrer URL are transmitted to Filestack for the purpose of asset delivery. Filestack, LLC is certified under the EU-U.S. Data Privacy Framework, and the transfer is therefore safeguarded by Art. 45 GDPR in conjunction with the European Commission's adequacy decision of 10 July 2023.
Groove's Privacy Policy: https://www.groovehq.com/our/privacy

 

Webinar service

We use a third-party service provider to provide webinar services. 

If you sign up for a webinar this service provider has access to your Personal Data the use of which is governed by their Privacy Policy.

Go To Webinar

Their Privacy Policy can be viewed at: https://www.goto.com/company/legal

 

 

Links to Other Sites

Our Service may contain links to other sites that are not operated by us. If you click on a third party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

 

Children's Privacy

Our services are not directed to individuals under the age of 16 within the European Union. We do not knowingly collect personal information from anyone under this age. If you believe a child has provided us with personal data, please contact us so we can delete it promptly.

 

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.

We will let you know via email and/or a prominent notice on our Service, prior to the change becoming effective and update the "effective date" at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

 

Contact Us

If you have any questions about this Privacy Policy, please contact us:

  • By email: [email protected]
  • By phone number: +49 40 4146 6659
  • By mail: Serendipity Ventures UG (haftungsbeschränkt), Langbehnstr. 15, 22761, Hamburg, Germany

 

For more information about the content and services offered on this website please refer to the links below:

About

Cookie policy

Disclaimer

Imprint

Refund policy

Quant Investing Privacy policy