Skip to main content

Privacy Policy

Last Updated: March 12, 2026

This Privacy Policy explains how Avantexis (“we”, “us”, “our”) collects, uses, and protects personal data when you visit our website and when you request information about our online courses, live webinars, masterclasses, intensives, and educational programs.

1. Introduction & Controller Identity

Avantexis Learning GmbH is the data controller responsible for processing personal data described in this Privacy Policy. This means we determine the purposes and means of processing your personal data when you interact with our website and when you contact us about enrollment.

Data Controller: Avantexis Learning GmbH
Registered Address: Neue Mainzer StraĂźe 66, Innenstadt, 60311 Frankfurt am Main, Germany
Email: [email protected]
Phone: +49 69 3487 9126

We currently do not appoint a Data Protection Officer (DPO) as a separate role. If your request relates to privacy, you may contact us using the email above and include “Privacy” in the subject line for faster routing.

Effective Date: March 12, 2026.

2. Personal Data We Collect

We collect personal data in a few predictable contexts: when you browse our pages, when you submit a form requesting dates and pricing, and when you communicate with us by email or phone. The data we collect depends on what you choose to share and which cookie preferences you select.

  • Identity and contact data: name, email address, phone number (if provided), and any organization name you include in your message.
  • Form submission content: selected track or program interest, preferred dates, time zone notes, current level, and any other information you type into the message field.
  • Technical data: IP address, browser type and version, device type, operating system, language settings, approximate location derived from IP, and time zone.
  • Usage data: pages visited, time spent on pages, referral sources, click paths, and interactions with site elements (for example, opening the cookie modal or navigating to a page).
  • Cookies and identifiers: essential cookies used to keep the site functional and a consent cookie recording your preferences. If you consent, analytics and marketing cookies may also be set by third-party providers after manual configuration.
  • Conversion events: signals indicating that a request was sent or a key page was viewed, used to measure performance of our website and advertising only when you consent to the relevant cookie category.

We do not intentionally collect special-category data (such as health data, religious beliefs, or political opinions), financial account details, or government identification numbers through our standard website forms. Please do not include such information in messages to us. If you include it voluntarily, we will limit access and use it only to respond to your request and to meet legal obligations where applicable.

3. Why We Process Personal Data & Legal Basis (GDPR Art. 6)

We process personal data only when we have a valid legal basis. The table below describes typical purposes and the corresponding legal basis under the GDPR (and UK GDPR where applicable).

  • Responding to contact requests and enrollment inquiries: to send dates, pricing, syllabi, and program details. Legal basis: Art. 6(1)(b) (steps at your request prior to entering into a contract) and Art. 6(1)(a) (consent) where you explicitly consent to be contacted through the form.
  • Providing website functionality and security: to keep the site stable, prevent fraud, detect abuse, and protect our infrastructure. Legal basis: Art. 6(1)(f) (legitimate interests) in operating a secure and reliable website.
  • Analytics: to understand how pages are used and improve content and navigation. Legal basis: Art. 6(1)(a) (consent), where required.
  • Marketing and advertising measurement: to measure ad performance, run remarketing, and build custom or lookalike audiences. Legal basis: Art. 6(1)(a) (consent), where required.
  • Legal compliance: to respond to lawful requests or to comply with tax, accounting, or regulatory obligations (where applicable). Legal basis: Art. 6(1)(c) (legal obligation).

Automated decision-making (GDPR Art. 22): We do not engage in automated decision-making or profiling that produces legal or similarly significant effects. If we use audience tools for advertising, those are used for measurement and relevance, not for decisions that significantly affect you.

4. Cookies & Tracking

Our website uses cookies and similar technologies. Cookies are small text files stored on your device. Some cookies are necessary for the site to function (essential), while others are used for analytics and marketing and require your consent in the EEA/UK and other jurisdictions with similar requirements.

We use three categories that match our Cookie Policy:

  • Essential cookies (always active): required for core functions, such as session continuity and storing your cookie preferences. Examples include _site_session and cookie_consent. Retention ranges from session to 12 months, depending on the cookie.
  • Analytics cookies (consent-based): help us understand usage patterns and improve the site. Where enabled after consent, this may include Google Analytics 4 with IP anonymization. Example cookies: _ga and _ga_XXXXXXXXXX. Typical retention: up to 2 years for the cookie, with analytics data retention commonly set to 14 months.
  • Marketing cookies (consent-based): used for advertising measurement, remarketing, audience building, and conversion attribution. Example cookies include _gcl_au (Google Ads), _fbp and _fbc (Meta). Typical retention: 90 days.

In addition to cookies, some measurement tools use pixel tags (small pieces of code that fire on page load) and may also support server-side event forwarding. If implemented, server-side signals may include hashed identifiers (for example, a hashed email) and limited technical data (for example, IP address and User-Agent) to improve conversion matching. These tools are activated only after consent for the relevant category where required by law.

If you prefer not to allow analytics or marketing cookies, you can reject non-essential cookies in the cookie banner, or later adjust your selection through “Manage cookie preferences” in the footer.

5. Consent (EEA/UK)

Users in the EEA and the UK receive a consent notice under GDPR/UK GDPR. Analytics and marketing cookies activate only after explicit, informed, freely given consent (GDPR Art. 6(1)(a)). Your selection is recorded in the cookie_consent browser cookie (typically 12 months).

You may withdraw consent at any time by opening the cookie preferences panel via “Manage cookie preferences” in the footer or by clearing cookies in your browser settings. Withdrawal does not affect the lawfulness of processing based on consent before its withdrawal.

6. Sharing With Advertising & Service Partners

We use service providers to host, secure, and improve our website and to measure marketing performance. We share personal data only as needed for the services described below, and where legally required we do so only after consent.

  • Google LLC: analytics and advertising measurement (for example, Google Analytics 4, Google Ads, and Google Tag Manager). Data shared may include cookie identifiers, page views, usage information, and conversion events depending on your consent preferences.
  • Meta Platforms, Inc.: advertising measurement and remarketing (for example, Meta Pixel and related conversion tooling). Data shared may include page views, conversions, cookie identifiers, and (where configured) hashed identifiers for matching, depending on your consent preferences.
  • Cloudflare: content delivery and security services, including IP-based threat detection and performance optimization to help protect the site.

We do not sell personal data. We also do not permit these providers to use site data for their own independent commercial purposes beyond providing their services to us, subject to their applicable terms and configurations.

7. International Transfers

Some of our service providers may process data outside the EEA/UK, including in the United States. Where personal data is transferred internationally, we use appropriate safeguards. These may include adequacy decisions (such as the EU-U.S. Data Privacy Framework where applicable) and contractual protections (such as the EU Standard Contractual Clauses (EU 2021/914) as a fallback). For UK-related transfers, we may rely on the UK extension to the relevant adequacy frameworks and/or the UK International Data Transfer Addendum (IDTA) as appropriate.

8. Data Retention

We keep personal data only for as long as needed for the purposes described in this Privacy Policy, unless a longer retention period is required by law. Typical retention periods are:

  • Contact submissions: up to 2 years from our last interaction, to handle follow-up questions and provide continuity.
  • Email correspondence: for the duration of our relationship and up to 1 year after the last message, unless a longer period is needed for dispute handling or legal compliance.
  • Server logs: typically up to 90 days for security monitoring and troubleshooting.
  • Analytics data: typically 14 months (where analytics is enabled after consent), depending on the configuration of the provider.
  • Marketing cookies: retained for the cookie lifetime listed in our Cookie Policy (for example, 90 days for certain identifiers), where enabled after consent.
  • Cookie consent record: up to 3 years for audit and compliance purposes, which may include evidence that consent was presented and stored on the device.
  • Legal and tax records: retained as required by applicable law (commonly 6–10 years for invoices and accounting records).

9. Your Rights (GDPR & UK GDPR)

If GDPR/UK GDPR applies to you, you have rights regarding your personal data, including:

  • Right of access (Art. 15)
  • Right to rectification (Art. 16)
  • Right to erasure (Art. 17)
  • Right to restriction of processing (Art. 18)
  • Right to data portability (Art. 20)
  • Right to object (Art. 21)
  • Right to withdraw consent at any time (Art. 7(3))
  • Right to lodge a complaint with a supervisory authority (Art. 77)

To exercise your rights, email [email protected]. We aim to respond within 30 days. For complex requests, we may extend the response time by up to 60 additional days as permitted by law.

Supervisory authorities (informational): EU guidance is available via the European Data Protection Board (EDPB). UK guidance is available via the Information Commissioner’s Office (ICO). If you are in Germany, your local data protection authority may also handle complaints.

10. Children

This website is not directed at individuals under 16. We do not knowingly collect personal data from minors. If we learn that we have collected personal data from a child under 16 without verifiable parental consent, we will delete it promptly.

11. Do Not Track

This website does not respond to “Do Not Track” (DNT) browser signals. Third-party providers may have their own DNT handling, which is governed by their policies and your device settings.

12. Data Deletion Requests

You can request deletion of your personal data by emailing [email protected] with the subject line “Data Deletion Request”. We may need to verify your identity before processing the request. We complete deletion within 30 days where possible, and we retain limited data only where required by law or necessary to establish, exercise, or defend legal claims.

13. Business Transfers

If we are involved in a merger, acquisition, asset sale, financing, restructuring, bankruptcy, or similar transaction, personal data may be transferred to a successor entity or counterparty as part of that transaction. If such a transfer materially changes how your personal data is used, we will provide notice on our website.

14. California (CCPA/CPRA)

If you are a California resident, you may have rights under the California Consumer Privacy Act as amended by the CPRA. In the past 12 months, we may have collected the following categories of personal information depending on your interactions and cookie preferences:

  • Identifiers: name, email address, IP address, cookie identifiers.
  • Internet or other electronic network activity: browsing and interaction data on our website.
  • Inferences: interests and preferences inferred from site interactions for advertising relevance, where enabled after consent.

We do not sell personal information as defined by the CCPA. We may share information for cross-context behavioral advertising when marketing cookies are enabled after consent. California residents may opt out of such sharing by rejecting marketing cookies via our cookie preferences panel.

You may submit requests to know, delete, or correct by emailing [email protected] with the subject “California Privacy Request”. We will verify your identity before responding. Authorized agents may submit requests with proof of authorization.

We do not discriminate against you for exercising your privacy rights.

15. Virginia (VCDPA)

If you are a Virginia resident, you may have rights under the Virginia Consumer Data Protection Act (VCDPA), including rights to access, correct, delete, and obtain a copy of personal data, and to opt out of targeted advertising. You can submit a request by emailing [email protected] with the subject “Virginia Privacy Request”.

We do not sell personal data or engage in profiling that produces legal or similarly significant effects. If we decline to act on a request, you may appeal by emailing us with the subject “Appeal of Refusal — Privacy Request”. We will respond within 60 days. If you are not satisfied with the appeal outcome, you may contact the Virginia Attorney General.

16. Nevada

Nevada residents may submit a verified opt-out request by emailing [email protected] with the subject “Nevada Do Not Sell Request”. We do not currently sell personal information under Nevada Revised Statutes Chapter 603A.

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or service providers. Material changes will be announced via a visible notice on our website at least 14 days before the updated policy takes effect. The “Last Updated” date at the top of this page shows when this policy was last revised.

18. Contact

If you have questions about this Privacy Policy or our privacy practices, contact:

Avantexis Learning GmbH
Neue Mainzer StraĂźe 66, Innenstadt, 60311 Frankfurt am Main, Germany
Email: [email protected]
Phone: +49 69 3487 9126