Privacy policy

Privacy policy

Our handling of data

Data security and data protection are part of the daily routine in our business. After all, you entrust us with a great deal of confidential information and do not want it to fall into the wrong hands. As a serious and reliable partner, it is our duty to ensure both the security of data transmission and the completely confidential handling of your personal data.

The responsible party within the meaning of data protection laws, in particular the EU General Data Protection Regulation (DSGVO), is:

kom·pass gründungsberatung
Markus Bodenmüller
Yorckstraße 51
10965 Berlin
Fon: +49(0)30 12059533


Your data subject rights

You can exercise the following rights at any time using the contact details provided above:

  • Information about your data stored by us and its processing,
  • Correction of incorrect personal data,
  • Deletion of your data stored by us,
  • Restriction of data processing, if we are not yet allowed to delete your data due to legal obligations,
  • objection to the processing of your data by us and
  • Data portability, provided that you have consented to the data processing or have concluded a contract with us.

If you have given us consent, you can revoke this at any time with effect for the future.

You can contact the supervisory authority responsible for you at any time with a complaint. Your competent supervisory authority depends on the federal state of your residence, your work or the alleged violation. A list of supervisory authorities (for the non-public sector) with address can be found at:

Purposes of data processing by the data controller and third parties

We process your personal data only for the purposes stated in this Privacy Policy. We do not transfer your personal data to third parties for purposes other than those stated. We will only disclose your personal data to third parties if:

  • you have given your consent to this,
  • the processing is necessary for the execution of a contract with you,
  • the processing is necessary for compliance with a legal obligation,
  • the processing is necessary to protect legitimate interests and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data.

Personal data

We process the following personal data in particular:

  • personal identification data such as addresses,
  • personal data that you have provided to us such as salary statements, credit history, credit rating information,
  • sociodemographic data,
  • Data about your online behavior and preferences,
  • information about your goals, interests and desires, to the extent you have communicated them to us.

Data use

We use your data to fulfill the contracts we have concluded with you. This also applies to pre-contractual information. The purposes of data processing and the tools for data processing are primarily based on your respective wishes. However, without your personal data we are usually not able to enter into a contract with you or to implement the contract with you.

Cooperation partner

For the purpose of the financing mediation and in the context of our advisory activities we avail ourselves of external partners. These partners receive their data from us with your consent so that you can enter into or execute contracts with our cooperation partners.

In the same way, we receive personal data of customers from our partners, which we treat with the same confidentiality and seriousness as we treat all our customers. This includes, in particular, credit inquiries from customers via Internet platforms provided for this purpose, e.g. with the partners listed below. 

Our main partners are

  • the Interhyp Group (the privacy policy of Interhyp AG can be found here, the privacy policy of the subsidiary Prohyp GmbH can be found here),
  • the Ing Diba Group (the privacy policy of ING Diba AG can be found here) and
  • other banks predominantly on the Interhyp AG mortgage platform, with whom we enter into contact with their consent in order to initiate or fulfill contracts. The privacy statements of these banks can be found on their respective websites,
  • Furthermore, the platform Für-Grü is one of our partners (privacy policy).

In this context, we refer you to the data protection declarations of our partners and the partner institutions.

Legal obligations

Within the scope of legal obligations, we must store, process and, if necessary, forward your personal data. This includes, in particular, authorities such as tax authorities, law enforcement agencies and, if applicable, lawyers or tax advisors.

Collection of general information when visiting our website

When you access our website, access data (server log files) are automatically collected. This is exclusively information that does not allow any conclusions to be drawn about your person. Anonymous information of this kind is statistically evaluated by us in order to optimize our website and the technology behind it.

SSL encryption

To protect the security of your data during transmission, we use state-of-the-art encryption (SSL) via HTTPS.

Contact by email

If you contact us by email regarding questions of any kind, you give us your voluntary consent for the purpose of contacting you. For this purpose, it is necessary to provide a valid e-mail address. This serves the allocation of the inquiry and the subsequent answer of the same. The provision of further data is optional. The information you provide will be stored for the purpose of processing the request and for possible follow-up questions.

Use of cookies

Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user's computer system. We use cookies exclusively to ensure the functionality of our website. No data is stored that would allow the user to be identified.

Google Ads

Our website uses Google conversion tracking. If you have reached our website via an ad placed by Google, Google Ads will set a cookie on your computer. The conversion tracking cookie is set when a user clicks on an ad placed by Google. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of our website and the cookie has not yet expired, we and Google can recognize that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. Cookies can therefore not be tracked across Ads customers' websites. The information obtained using the conversion cookie is used to create conversion statistics for Ads customers who have opted for conversion tracking. Customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users.

If you do not wish to participate in the tracking, you can refuse the setting of a cookie required for this - for example, by means of a browser setting that generally deactivates the automatic setting of cookies or by setting your browser so that cookies from the domain "" are blocked. Please note that you may not delete the opt-out cookies as long as you do not want any measurement data to be recorded. If you have deleted all your cookies in the browser, you must set the respective opt-out cookie again.

Further information can be found at, Google's privacy policy can be found at

Changes to our privacy policy

We reserve the right to adapt this data protection declaration so that it always complies with the current legal requirements or in order to implement changes to our services in the data protection declaration, e.g. when introducing new services. The new data protection declaration will then apply to your next visit.

The data protection declaration was created with the data protection declaration generator of activeMind AG.