Privacy Policy
The protection of your personal data is of particular importance to us. We process your data confidentially and in accordance with legal data protection regulations, in particular the General Data Protection Regulation (GDPR), and this privacy policy.
1. Controller
Node Health UGKastanienallee 98A
10435 Berlin
Email: legal@nodehealth.de
Data Protection Officer
We have appointed a Data Protection Officer for our company. You can contact them as follows:
legal.solutions GmbHSophienstraße 1
10178 Berlin
Email: g.wirtz@pagestreet.de
2. Collection and Storage of Personal Data and the Nature and Purpose of Processing (Hosting)
When you access our website, certain technical data is processed. The web server, for example, processes your IP address to deliver the website content to your device. This processing is necessary to technically enable your visit to the website (log files).
The legal basis for this is Art. 6 (1) lit. f GDPR (legitimate interest in the operation and security of the website).
The following data may be collected:
- IP address
- Date and time of access
- Name and URL of the accessed file
- Amount of data transferred
- Referrer URL (previously visited page)
- Browser used and, if applicable, operating system
This data is not stored beyond what is technically necessary. It is deleted after a maximum of seven days, unless legal retention requirements or a security incident require a longer storage period.
3. Analytics
We currently do not use any third-party analytics, tracking, or advertising tools (e.g., Google Analytics) on this website. We do not deploy cookies or other technologies that collect personal data without your explicit consent.
4. Legal Basis for Processing
The processing of technical access data (see Section 2) is carried out on the basis of Art. 6 (1) lit. f GDPR (legitimate interest – operation, security, and optimization of the website).
5. Disclosure of Data to Third Parties / Data Transfers to Third Countries
Personal data is currently not shared with third parties, except as technically necessary for operating the website:
Hosting and Content Delivery
We use the hosting and content delivery services of Cloudflare, Inc., 101 Townsend Street, San Francisco, CA 94107, USA. Cloudflare processes technically necessary connection data (e.g., IP address, request data) on our behalf to deliver the website and protect against security threats. We have concluded a data processing agreement (DPA) with Cloudflare pursuant to Art. 28 GDPR. Data transfers to the United States are based on the EU Standard Contractual Clauses (SCCs) and, where applicable, Cloudflare's certification under the EU–U.S. Data Privacy Framework.
Beyond the Cloudflare transfer described above, no further transfers to countries outside the EU take place. Should this change in the future, we will provide transparent information here. For more information on how Cloudflare processes data, please refer to: cloudflare.com/privacypolicy.
6. Forms and Surveys (Tally)
For user feedback we occasionally provide online forms and surveys. These are hosted on our behalf by Tally BV, Oudburg 30, 9000 Ghent, Belgium.
When you fill out and submit a form, we process the survey responses you provide (e.g., information about your app usage habits and, where you choose to provide it, your email address). Tally acts as our data processor under a data processing agreement pursuant to Art. 28 GDPR. As Tally is established in Belgium, this data is processed within the EU and no transfer to a third country takes place.
The legal basis for this processing is your consent pursuant to Art. 6 (1) lit. a GDPR and — insofar as your responses include health-related data — Art. 9 (2) lit. a GDPR. Participation is voluntary; you may withdraw your consent at any time with effect for the future (Art. 7 (3) GDPR), for example by contacting us using the details above. For more information on how Tally processes data, please refer to: tally.so/help/privacy-policy.
7. Rights of Data Subjects
As a user of our website, you have the following rights regarding personal data processing:
- Right of access (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure / restriction of processing (Art. 17, 18 GDPR)
- Right to object (Art. 21 GDPR)
- Right to withdraw consent (Art. 7 (3) GDPR)
- Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
To exercise any of these rights, please contact our Data Protection Officer at g.wirtz@pagestreet.de. The competent supervisory authority is listed in Section 8.
8. Competent Data Protection Supervisory Authority
If you consider that the processing of personal data concerning you infringes the GDPR, you have the right – without prejudice to any other administrative or judicial remedy – to lodge a complaint with a supervisory authority, in particular in the EU Member State of your habitual residence, your place of work, or the place of the alleged infringement. The supervisory authority competent for us is the
Berlin Commissioner for Data Protection and Freedom of InformationAlt-Moabit 59–61
10555 Berlin
Germany
9. Availability of this Privacy Policy
This privacy policy is accessible at any time via a clearly visible link in the footer of our website under the label "Privacy Policy".
10. Changes to this Privacy Policy
We reserve the right to update this privacy policy if technical changes to the website occur or if new services are introduced. The most current version is always available on our website under the link "Privacy Policy".
Berlin, May 2026 (Version Web 2.4)