top of page
Data protection and data privacy

​

Effective Date: October 9th, 2019

Last Updated: March 3rd, 2026

 

1. Controller

 

The data controller responsible for processing personal data is:

FIT Talent Management GmbH

Hüttenweg 14

D-14195 Berlin

Germany

Managing Director: Bertram Pachaly

E-mail: info@fit-talent.com

Company register Berlin-Charlottenburg: HRB 126966

VAT ID: DE271966456

For the purposes of the General Data Protection Regulation (“GDPR”), FIT Talent Management GmbH acts as the data controller.

 

2. Scope of This Policy

 

This Privacy Policy applies to the following applications and platforms (collectively, the “Services”):

  • FIT Float

  • FIT Finance

  • FIT Food

  • FIT Company

  • Food Decisions

  • Life Decisions

  • FIT Patient Sim

  • PromptFIT

  • MarketSim

  • FIT Talent Management Portal

 

3. What Personal Data We Collect

 

3.1 If You Are NOT Logged In

 

If you use any of our Services without logging in:

  • We do not store personal data.

  • We do not create user profiles.

  • We do not retain gameplay history.

  • We do not save identifiers linked to you.

 

Your activity remains session-based and is not stored after you leave the Service.

 

3.2 If You Are Logged In

 

If you create an account and log in, we store only the following data:

  1. Username

  2. Nickname (display name)

  3. Access rights / role information (e.g., student, teacher, administrator)

  4. Game status (progress and simulation state)

​

We do not store:

  • Real names (unless chosen as username)

  • Email addresses (unless required for account creation)

  • Payment information (unless separately applicable)

  • IP addresses for profiling

  • Behavioral tracking data

  • AI conversation logs linked to identity (unless required for functionality and explicitly disclosed)

​

We apply strict data minimization in accordance with Article 5 GDPR.

 

4. Purpose and Legal Basis for Processing

Under the General Data Protection Regulation, we process personal data based on the following legal grounds:

 

4.1 Performance of a Contract (Art. 6(1)(b) GDPR)

We process username, nickname, access rights, and game status in order to:

  • Provide login functionality

  • Save game progress

  • Manage access levels

  • Maintain account-based features

Without this data, logged-in functionality cannot operate.

 

4.2 Legitimate Interests (Art. 6(1)(f) GDPR)

If technically necessary, minimal system logs may be processed temporarily for:

  • IT security

  • Prevention of abuse

  • System stability

 

Such logs are not used for profiling.

 

5. Data Storage and Retention

We retain logged-in user data:

  • For as long as the account remains active

  • Or until deletion is requested

  • Or as required by applicable legal obligations

 

If an account is deleted, associated personal data is erased without undue delay unless legal retention obligations apply.

 

6. Data Sharing

We do not sell personal data.

We do not share personal data with third parties except:

  • IT hosting providers acting under Data Processing Agreements (Art. 28 GDPR)

  • Where legally required by law or court order

​

All processors are contractually bound to GDPR compliance.

 

7. International Data Transfers

 

If data is transferred outside the EU/EEA, we ensure appropriate safeguards under GDPR, such as:

  • Standard Contractual Clauses (SCCs)

  • Adequacy decisions by the European Commission

 

8. Automated Decision-Making

 

Although some Services use AI-generated simulations, we do not engage in:

  • Automated decision-making producing legal effects

  • Automated profiling within the meaning of Article 22 GDPR

 

Game simulations do not constitute decisions about real individuals.

 

9. Data Security

 

We implement appropriate technical and organizational measures under Article 32 GDPR, including:

  • Access control systems

  • Encrypted data transmission (HTTPS/TLS)

  • Role-based permissions

  • Secure hosting infrastructure

 

10. Your Rights Under GDPR

 

If you are located in the EU, you have the right to:

  • Access your personal data (Art. 15 GDPR)

  • Rectify inaccurate data (Art. 16 GDPR)

  • Erase data (“Right to be Forgotten,” Art. 17 GDPR)

  • Restrict processing (Art. 18 GDPR)

  • Data portability (Art. 20 GDPR)

  • Object to processing (Art. 21 GDPR)

  • Lodge a complaint with your local supervisory authority

 

Requests may be submitted to: info@fit-talent.com

We respond within one month as required by GDPR.

 

11. Children’s Data

 

Our Services are intended for users aged 16 and above within the EU, or the applicable digital consent age in each Member State.

 

We do not knowingly collect personal data from children below the applicable age without required parental authorization.

 

12. Data Minimization Commitment

 

FIT Talent Management GmbH follows strict data minimization principles:

  • No tracking without login

  • No behavioral analytics linked to identity

  • No unnecessary data collection

  • No storage of simulation conversations when not logged in

 

If logged in, only the minimal data described in Section 3.2 is retained.

 

13. Changes to This Policy

 

We may update this Privacy Policy to reflect legal, technical, or operational changes. Updates will be made available within the Services.

 

14. Contact

 

For all data protection inquiries:

 

FIT Talent Management GmbH

Hüttenweg 14

D-14195 Berlin

Germany

Managing Director: Bertram Pachaly

E-mail: info@fit-talent.com

Company register Berlin-Charlottenburg: HRB 126966

VAT ID: DE271966456

 

Supervisory authority:

 

Berlin Commissioner for Data Protection and Freedom of Information

Address:

Alt-Moabit 59-61

10555 Berlin

https://www.datenschutz-berlin.de/ueber-uns/kontakt/

bottom of page