Privacy Policy

This privacy policy informs you about which data we collect, how we use it, and what rights you have. We comply with the applicable legal requirements, in particular the General Data Protection Regulation (GDPR) and the German Telecommunications Digital Services Data Protection Act (TDDDG).

Controller

The controller responsible for data processing on this website is:

MotionLab ML GmbH 
Bouchéstraße 12, Halle 20 
12435 Berlin, Germany

Use of the Website and Data Security

You can generally visit our website without providing any personal data. If we collect data (for example, via a contact form), this is done voluntarily. We do not share your data with third parties without your explicit consent. Please note that the transmission of data over the internet (for example, by email) may not be completely secure. Complete protection of data against access by third parties is not technically possible.

Purposes of Data Processing by Us and Third Parties

We process your personal data only for the purposes specified in this privacy policy:

  • Performance of contracts and handling of inquiries
  • Provision of information
  • Protection against misuse and prevention of hazards
  • Improvement of our website and services

Disclosure to Third Parties

We only share your data with third parties in the following cases:

  • You have given your explicit consent (Art. 6 para. 1 lit. a GDPR)
  • The disclosure is necessary for the performance of a contract with you (Art. 6 para. 1 lit. b GDPR)
  • We are legally obligated to do so, e.g., to authorities (Art. 6 para. 1 lit. c GDPR)
  • The disclosure serves legitimate interests and your interests do not override these (Art. 6 para. 1 lit. f GDPR)

Data Protection Contact

If you have any questions regarding data protection, please contact us at: dataprotection@motionlab.berlin

Your Rights as a Data Subject

You have the following rights regarding your personal data:

Access, Rectification, and Erasure

You may request, free of charge and at any time, information about your stored data, including which data we hold, where it originates from, to whom we disclose it, and for what purposes we use it. You may also request the correction of incorrect data or the deletion of your data, provided there are no statutory retention obligations preventing this.

Restriction of Processing

You may request that we restrict the processing of your data, for example if you dispute the accuracy of the data or if the processing is unlawful.

Data Portability

You have the right to receive the data you have provided to us, which we process by automated means, in a commonly used, machine-readable format, or to have it transmitted directly to another provider.

Withdrawal of Consent

If data processing is based on your consent, you may withdraw this consent at any time with future effect. The lawfulness of processing carried out prior to the withdrawal remains unaffected. An informal email to us is sufficient.

Right to Object

You may object at any time to the processing of your data for reasons arising from your particular situation (Art. 21 GDPR). This applies in particular if we use your data for direct marketing purposes.

Right to Lodge a Complaint with a Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your data violates data protection law.

The competent authority is the supervisory authority of the federal state in which we are based:

Berlin Commissioner for Data Protection and Freedom of Information 

Alt-Moabit 59-61 
10555 Berlin, Germany
www.datenschutz-berlin.de

Data Collection on Our Website (Server Log Files)

When you visit our website, our web server automatically collects technical information. This happens with every website visit on the internet and is technically necessary for the website to be displayed on your device. The following data is stored (so-called server log files):

  • Browser type and version (e.g., Chrome, Firefox, Safari, Edge)
  • Operating system of your device
  • Internet service provider
  • IP address of your device
  • Date and time of access
  • Website from which you accessed our site (referrer URL)
  • Name of your device (hostname)

We need this information to display the website correctly, to establish the connection to our website, to ensure the security and stability of our IT systems, to identify and resolve technical errors, and to trace specific indications of unlawful use. The processing is based on our legitimate interest in a secure and functional online presence (Art. 6 para. 1 lit. f GDPR). Server log files are automatically deleted after 30 days. The data is not combined with other data sources or shared with third parties. Access is limited to us and our technical service provider (hosting provider) as processor.

Cookies and Other Technologies

Cookies are small text files that your browser stores on your device (computer, smartphone, tablet) when you visit a website. They allow the website to store certain information – for example, your language preference or login details.

We use technically necessary cookies on our website. These cookies are required for the website to function. They enable basic functions such as navigation between pages or access to protected areas. Without these cookies, the website cannot function properly. The processing is based on our legitimate interest in a functional online presence (Art. 6 para. 1 lit. f GDPR). We also use so-called session cookies to recognize that you have already visited certain pages. These cookies are automatically deleted when you close your browser.

On your first visit to our website, a cookie banner appears, through which you can give or refuse your consent to non-essential cookies. You can change your settings at any time. In addition, you can manage cookies directly in your browser:

  • Blocking cookies: You can set your browser to block cookies in general
  • Deleting cookies: You can delete cookies already stored at any time in your browser settings
  • Enabling cookie warnings: Your browser can notify you before a cookie is set

If you disable cookies, some functions of our website may not be available.

Cookie Consent Management

This website uses the cookie consent management tool Borlabs Cookie. The provider is Borlabs GmbH, Hamburger Str. 11, 22083 Hamburg, Germany. Borlabs Cookie enables us to obtain, document, and manage website visitors’ consent to the use of cookies and external services. In doing so, a cookie is set that stores your consent or its withdrawal for 12 months, as well as technical data such as browser information and the time of your decision. The use of Borlabs Cookie is necessary to fulfill our legal obligation regarding consent management (Art. 6 para. 1 lit. c GDPR). Further information can be found in Borlabs’ privacy policy at: https://de.borlabs.io/datenschutz/

Vimeo Video Integration

On our website, we embed videos from the Vimeo platform. The provider is Vimeo Inc., 330 West 34th Street, 5th Floor, New York, NY 10001, USA. The integration is managed through our cookie banner. Depending on your selection in the cookie banner, videos are either automatically blocked or displayed as directly clickable. Only once you consent to the integration is a connection established to Vimeo’s servers; this transmits, among other things, your IP address, information about your browser and device, and, where applicable, cookies. The integration is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG. You can withdraw your consent at any time with future effect via the cookie settings. Vimeo also processes data in the USA; an adequate level of data protection is ensured through standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Vimeo’s privacy policy at: https://vimeo.com/privacy

YouTube Video Integration

On our website, we embed videos from the YouTube platform. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). The integration is managed through our cookie banner. Depending on your selection in the cookie banner, videos are either automatically blocked or displayed as directly clickable. Only once you consent to the integration is a connection established to YouTube’s servers; this transmits, among other things, your IP address, information about your browser and device, and, where applicable, cookies. The integration is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG. You can withdraw your consent at any time with future effect via the cookie settings. Google also processes data in the USA; an adequate level of data protection is ensured through the EU-US Data Privacy Framework as well as standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Google’s privacy policy at: https://policies.google.com/privacy

Google Maps

On our website, we embed maps from the Google Maps platform. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). The integration is managed through our cookie banner. Depending on your selection in the cookie banner, map content is either automatically blocked or displayed as directly clickable. Only once you consent to the integration is a connection established to Google’s servers; this transmits, among other things, your IP address, information about your browser and device, and, where applicable, cookies. The integration is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG. You can withdraw your consent at any time with future effect via the cookie settings. Google also processes data in the USA; an adequate level of data protection is ensured through the EU-US Data Privacy Framework as well as standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Google’s privacy policy at: https://policies.google.com/privacy

Google reCAPTCHA

To protect our forms from spam and abuse, we use the service Google reCAPTCHA. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). In doing so, information such as your IP address and any other data required by reCAPTCHA is transmitted to Google. The integration is managed through our cookie banner. Only once you consent to the integration is a connection established to Google’s reCAPTCHA servers. The processing is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG. You can withdraw your consent at any time with future effect via the cookie settings. Google also processes data in the USA; an adequate level of data protection is ensured through the EU-US Data Privacy Framework as well as standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Google’s privacy policy at: https://policies.google.com/privacy

Elementor (CDN)

This website uses the WordPress plugin Elementor for the design and presentation of the website. To deliver technical resources (such as scripts and stylesheets), Elementor uses a Content Delivery Network (CDN) via cdn.elementor.com. The provider is Elementor Ltd., Yigal Alon St 114, Tel Aviv, Israel. When the page is loaded, a connection is established to Elementor’s CDN servers, during which your IP address may be transmitted. No cookies are set. The data processing is based on our legitimate interest in a technically flawless and high-performing presentation of our website (Art. 6 para. 1 lit. f GDPR). Further information can be found in Elementor’s privacy policy at: https://elementor.com/privacy-policy/

jQuery (CDN)

This website uses the JavaScript library jQuery, which is loaded via an external Content Delivery Network (CDN) from code.jquery.com. The provider is the OpenJS Foundation, 548 Market St, San Francisco, CA 94104, USA. When the page is loaded, a connection is established to the OpenJS Foundation’s CDN servers, during which your IP address may be transmitted. No cookies are set. The data processing is based on our legitimate interest in technically flawless functionality of our website (Art. 6 para. 1 lit. f GDPR). Further information can be found at: https://openjsf.org/privacy-policy/

Marketing and Statistics

Google Analytics

This website uses the web analytics service Google Analytics. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). Google Analytics uses cookies that enable an analysis of your use of our website. The information generated in this way is transmitted to a Google server and stored there. Your IP address is shortened by Google beforehand, so that no direct personal reference is possible.

Processing only takes place after your consent via our cookie banner in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG. You can withdraw your consent at any time with future effect via the cookie settings. Google also processes data in the USA; an adequate level of data protection is ensured through the EU-US Data Privacy Framework as well as standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Google’s privacy policy at: https://policies.google.com/privacy

Google Tag Manager

We use Google Tag Manager, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). Google Tag Manager is a technical tool that does not collect any personal data itself, but manages and deploys other tags and scripts on our website including Google Analytics only after the required consent has been given via our cookie banner. The use of Google Tag Manager is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG. Further information can be found in Google’s privacy policy at: https://policies.google.com/privacy

Meta Pixel

On our website, we use the Meta Pixel service provided by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, Ireland (parent company: Meta Platforms Inc., 1 Hacker Way, Menlo Park, CA 94025, USA). The Meta Pixel is a tracking tool that collects information about your behavior on our website such as pages visited, products viewed, or actions taken (e.g. event bookings) and transmits this data to Meta. This enables us to measure the effectiveness of our advertising campaigns (conversion tracking) and to show targeted advertisements to users who have previously visited our website (remarketing), including on Facebook and Instagram.

The Meta Pixel is only activated once you have given your consent via our cookie banner. The processing is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG. You can withdraw your consent at any time with future effect via the cookie settings. Meta also processes data in the USA; an adequate level of data protection is ensured through the EU-US Data Privacy Framework as well as standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Meta’s privacy policy at: https://www.facebook.com/privacy/policy/

Microsoft Advertising

On our website, we use Microsoft Advertising, a service provided by Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland (parent company: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052, USA). Microsoft Advertising uses the Universal Event Tracking (UET) tag to collect information about your behavior on our website such as pages visited or actions taken (e.g. event bookings) and transmits this data to Microsoft. This enables us to measure the effectiveness of our advertising campaigns (conversion tracking) and to show targeted advertisements to users who have previously visited our website (remarketing), including on Bing and affiliated Microsoft networks.

Microsoft Advertising is only activated once you have given your consent via our cookie banner. The processing is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG. You can withdraw your consent at any time with future effect via the cookie settings. Microsoft also processes data in the USA; an adequate level of data protection is ensured through the EU-US Data Privacy Framework as well as standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Microsoft’s privacy policy at: https://privacy.microsoft.com/en-us/privacystatement

Social Media

We maintain a presence on various social media platforms to communicate with customers and prospective clients and to inform them about our services. If you visit our profiles on social media platforms or interact with us there (e.g., commenting on posts, sending messages), your data is processed by the respective platform. The platform operators are independently responsible for data processing on their services.

Facebook

We operate a company page on Facebook. The provider is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, Ireland (parent company: Meta Platforms Inc., 1 Hacker Way, Menlo Park, CA 94025, USA). When you visit our page, Meta collects personal data such as your IP address, device and browser information, usage behavior, and cookie data, and provides us with aggregated statistics on page visits. We only receive individual personal data if you actively contact us. The data processing is based on our legitimate interest in public relations and customer communication (Art. 6 para. 1 lit. f GDPR). If you contact us directly and provide information, this is based on your consent (Art. 6 para. 1 lit. a GDPR). Meta also processes data in the USA; an adequate level of data protection is ensured through the EU-US Data Privacy Framework as well as standard contractual clauses pursuant to Art. 46 GDPR. You can adjust your privacy settings on Facebook at https://www.facebook.com/settings?tab=privacy. Further information can be found in Meta’s privacy policy at: https://www.facebook.com/privacy/policy/

Instagram

We operate a company profile on Instagram. The provider is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, Ireland (parent company: Meta Platforms Inc., 1 Hacker Way, Menlo Park, CA 94025, USA). When you visit our page, Meta collects personal data such as your IP address, device and browser information, usage behavior, and cookie data, and provides us with aggregated statistics on page visits. We only receive individual personal data if you actively contact us. The data processing is based on our legitimate interest in public relations and customer communication (Art. 6 para. 1 lit. f GDPR). If you contact us directly and provide information, this is based on your consent (Art. 6 para. 1 lit. a GDPR). Meta also processes data in the USA; an adequate level of data protection is ensured through the EU-US Data Privacy Framework as well as standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Instagram’s privacy policy at: https://help.instagram.com/519522125107875

LinkedIn

We operate a company profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. When you visit our LinkedIn profile, LinkedIn collects your IP address, information about your device and browser, the date and time of your visit, your user behavior (posts viewed, clicks), and information from your LinkedIn profile (if you are logged in). LinkedIn uses this data for personalized advertising and content, analysis of user behavior, improvement of LinkedIn’s services, as well as security and fraud prevention. We receive anonymized statistics on page visits and interactions from LinkedIn, but no individual personal data about visitors unless you contact us actively. The provision of the LinkedIn profile and the use of statistics is based on our legitimate interest in public relations and professional networking pursuant to Art. 6 para. 1 lit. f GDPR. LinkedIn processes data partly on servers in the USA. The transfer is based on the EU standard contractual clauses. You can adjust your LinkedIn privacy settings and object to the use of your data for advertising purposes. LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy

YouTube Channel

We operate a company channel on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). When you visit our channel, YouTube collects your IP address, information about your device and browser, the date and time of your visit, your user behavior (videos viewed, likes, comments, subscriptions), and, if applicable, information from your Google account if you are logged in. Google uses this data for personalized advertising and content, analysis of user behavior, and to improve its own services. We receive anonymized statistics on channel visits and interactions from YouTube, but no individual personal data about visitors unless you contact us actively. The provision of the YouTube channel and the use of statistics is based on our legitimate interest in public relations and the presentation of our content pursuant to Art. 6 para. 1 lit. f GDPR. If you contact us directly and provide information, this is based on your consent (Art. 6 para. 1 lit. a GDPR). Google also processes data partly on servers in the USA; an adequate level of data protection is ensured through the EU-US Data Privacy Framework as well as standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Google’s privacy policy at: https://policies.google.com/privacy

Reddit

We operate a company profile on Reddit. The provider is Reddit Ireland Limited, 39 St Stephen’s Green, Dublin 2, Ireland (parent company: Reddit, Inc., 548 Market St, San Francisco, CA 94104, USA). When you visit our Reddit profile, Reddit collects your IP address, information about your device and browser, the date and time of your visit, your user behavior (posts viewed, comments, upvotes), and, if applicable, information from your Reddit account if you are logged in. Reddit uses this data for personalized advertising and content, analysis of user behavior, and to improve its own services. We receive anonymized statistics on profile visits and interactions from Reddit, but no individual personal data about visitors unless you contact us actively. The provision of the Reddit profile and the use of statistics is based on our legitimate interest in public relations and community exchange pursuant to Art. 6 para. 1 lit. f GDPR. If you contact us directly and provide information, this is based on your consent (Art. 6 para. 1 lit. a GDPR). Reddit also processes data partly on servers in the USA; an adequate level of data protection is ensured through standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Reddit’s privacy policy at: https://www.redditinc.com/policies/privacy-policy

Meetup

We maintain a company profile on Meetup. The provider is Meetup Inc., PO Box 4668, PMB 37895, New York, NY 10163-4668, USA (parent company: Bending Spoons S.p.A., Via Carlo Pisacane 1, 20129 Milan, Italy). When you visit our Meetup profile, Meetup collects your IP address, information about your device and browser, the date and time of your visit, your user behavior (events viewed, attendance, comments), and, if applicable, information from your Meetup account if you are logged in. Meetup uses this data to provide and improve its own services and to analyze user behavior. We receive information from Meetup about registered attendees of our events as well as anonymized statistics on profile visits and interactions, but no individual personal data about visitors unless you contact us actively. The provision of the Meetup profile and the organization of community events is based on our legitimate interest in public relations and the organization of community events pursuant to Art. 6 para. 1 lit. f GDPR. If you register for an event, the processing of the data provided is carried out for the purpose of conducting the event (Art. 6 para. 1 lit. b GDPR). Meetup processes data partly on servers in the USA; an adequate level of data protection is ensured through standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Meetup’s privacy policy at: https://help.meetup.com/hc/en-us/articles/360044422391-Privacy-Policy

Web Hosting

Our website is hosted by Mittwald CM Service GmbH & Co. KG, Königsberger Str. 4–6, 32339 Espelkamp, Germany. Mittwald provides us with the technical infrastructure required to operate this website, including servers and storage space, computing capacity and databases, security measures, as well as technical maintenance and updates. When you access our website, technical data is automatically transmitted to Mittwald’s servers (see section “Server Log Files”). Mittwald processes this data exclusively on our behalf and is contractually obligated to protect your data. Our cooperation with Mittwald is based on a data processing agreement in accordance with Art. 28 GDPR. The data processing serves our legitimate interest in a secure, efficient, and professional provision of our website (Art. 6 para. 1 lit. f GDPR). Mittwald’s servers are located in Germany. Your data is not processed outside the European Union. Further information can be found in Mittwald’s privacy policy at: https://www.mittwald.de/datenschutz

Event Calendar & Payment Processing

Nexudus

To display our events, we embed an iframe from the provider Nexudus on our website. The provider is Nexudus, Unit 205, 1-3 Brixton Road, London SW9 6DE, United Kingdom. The integration is managed through our cookie banner. Only once you consent to the integration is a connection established to Nexudus’ servers. This transmits, among other things, your IP address and your approximate location. The United Kingdom is covered by an adequacy decision of the European Commission. The integration of Nexudus is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG. You can withdraw your consent at any time with future effect via the cookie settings. If you book an event, reserve a coworking space, or apply for a membership via the embedded platform, the processing of the data provided is carried out for the preparation and performance of the corresponding contract (Art. 6 para. 1 lit. b GDPR). Further information can be found in Nexudus’ privacy policy at: https://learn.nexudus.com/platform/gdpr-and-nexudus

Spreedly

In connection with the integration of Nexudus, a connection to the service Spreedly may be established, which is used by Nexudus for the technical connection of payment service providers. The provider is Spreedly, Inc., 300 Morris St, Suite 400, Durham, NC 27701, USA. Spreedly itself is not a payment service provider, but technically mediates between Nexudus and the payment providers used. Your IP address may be transmitted when this connection is established. Spreedly processes data in the USA; an adequate level of data protection is ensured through standard contractual clauses pursuant to Art. 46 GDPR. The processing is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG, as part of the consent given for the integration of Nexudus. Further information can be found in Spreedly’s privacy policy at: https://www.spreedly.com/privacy

Stripe

Within our membership area, we offer the option of processing payments via the payment service provider Stripe. The provider is Stripe, c/o Legal Process, 510 Townsend St., San Francisco, CA 94103, USA. The following data is transmitted to Stripe as part of payment processing: name, email address, payment data (e.g., bank details or credit card information), as well as the date, time, and amount of the transaction. Stripe, as a payment service provider, independently determines the scope of data processing and acts under its own responsibility. The transfer of your data is carried out for the performance of the contract regarding the booking or membership (Art. 6 para. 1 lit. b GDPR). Stripe also processes data in the USA; an adequate level of data protection is ensured through the EU-US Data Privacy Framework as well as standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Stripe’s privacy policy at: https://stripe.com/de/privacy

GoCardless

Within our membership area (provided via Nexudus), we offer the option of processing payments via direct debit (SEPA) through the payment service provider GoCardless. The provider is GoCardless Ltd, Sutton Yard, 65 Goswell Road, London, EC1V 7EN, United Kingdom. If you choose this payment method, the data required to process the direct debit (e.g., name, bank details, IBAN) is transmitted to GoCardless. The United Kingdom is covered by an adequacy decision of the European Commission. The transfer of your data is carried out for the performance of the contract regarding the booking or membership (Art. 6 para. 1 lit. b GDPR). Further information can be found in GoCardless’ privacy policy at: https://gocardless.com/de-de/rechtliches/datenschutz/

Communication

Newsletter

We use the service Mailchimp to send our newsletter. The provider is The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA. When you sign up for our newsletter, you provide your email address and, if applicable, your name to Mailchimp. This data is stored on Mailchimp’s servers and used to send the newsletter. Mailchimp may also collect data on opening and click behavior within the newsletter in order to evaluate newsletter performance. Registration takes place via a double opt-in process: after signing up, you receive a confirmation email containing a link, which you must click to confirm your registration. The data processing is based on your consent (Art. 6 para. 1 lit. a GDPR). You can withdraw your consent at any time with future effect by unsubscribing via the link provided in every newsletter email or by contacting us. The lawfulness of processing carried out prior to the withdrawal remains unaffected. Mailchimp also processes data in the USA; an adequate level of data protection is ensured through standard contractual clauses pursuant to Art. 46 GDPR. Further information can be found in Mailchimp’s privacy policy at: https://mailchimp.com/legal/privacy/

Asana

On our website, we provide links to forms hosted by the provider Asana. The provider is Asana, Inc., 633 Folsom St, Suite 100, San Francisco, CA 94107, USA. By clicking the link, you leave our website; no automatic data transfer to Asana takes place via our website. Once you access or fill out the linked form, Asana’s privacy policy applies, over which we have no influence. Further information can be found in Asana’s privacy policy at: https://asana.com/de/privacy-policy

Contact Form

If you send us a message via our contact form, we store the data you provide in order to process your inquiry and respond to any follow-up questions. The following data is stored:

  • The information you provide in the contact form (e.g., name, email address, phone number, message text)
  • Date and time of the inquiry
  • Your IP address (for the prevention of misuse)

The processing is based on your request to contact us. If you contact us regarding a contract or a potential business relationship, the legal basis is Art. 6 para. 1 lit. b GDPR (preparation of a contract). In all other cases, we process your data based on your consent in accordance with Art. 6 para. 1 lit. a GDPR, which you grant by submitting the form. Your data will not be shared with third parties unless this is necessary to process your inquiry (e.g., forwarding to the relevant department within our company). We store your data for as long as is necessary to process your inquiry. After processing has been completed, the data is deleted, provided there are no statutory retention obligations (e.g., under commercial or tax law). In this case, deletion takes place after the relevant retention periods have expired.

Contact by Email

You can also contact us directly by email at info@motionlab.berlin. If you send us an email, we store your email address as well as any other information you provide in your message in order to process your inquiry. The following data is stored:

  • Your email address
  • Your name (if provided)
  • The content of your message
  • Date and time the email was received
  • Any other data you voluntarily provide

The processing is carried out in order to handle your inquiry. If you contact us regarding a contract or a potential business relationship, the legal basis is Art. 6 para. 1 lit. b GDPR (preparation of a contract). In all other cases, the processing is based on our legitimate interest in being contactable pursuant to Art. 6 para. 1 lit. f GDPR. Your data will not be shared with third parties and will not be combined with other data collected on our website. We store your email correspondence for as long as is necessary for processing. After completion, the data is deleted, provided there are no statutory retention obligations. Please note that emails are sent unencrypted and may be read by third parties during transmission. For the transmission of confidential information, we recommend contacting us by phone or using our contact form.

Changes to This Privacy Policy

We reserve the right to update this privacy policy in order to adapt it to changed legal requirements or to changes in our services and data processing procedures, for example when introducing new services or functions. The version applicable at the time of your renewed visit shall then apply. We therefore recommend that you review this privacy policy regularly.

Last updated: June 2026

contact