This Privacy Policy explains how m15s / Monolithic Systems collects, uses, stores, and protects personal data when you visit our website, book a call, contact us, or use services connected to our marketing, advertising, automation, and AI systems.
We process personal data in accordance with the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and other applicable data protection laws.
1. Controller
The controller responsible for data processing on this website is:
m15sObiri Mensah
Falkstrasse 33
44809 Bochum
Germany
Email: obiri@monolithicsystems.de
2. What personal data we collect
Depending on how you interact with us, we may collect the following categories of personal data:
Website usage data
When you visit our website, technical data may be processed automatically, including:
- IP address
- browser type and version
- operating system
- referrer URL
- pages visited
- date and time of access
- device and server log information
This data is used to operate the website securely, diagnose technical issues, and prevent abuse.
Contact and booking data
If you contact us or book a call, we may process:
- name
- email address
- phone number, if provided
- company or brand name
- website or social media links
- information you submit in a booking form, contact form, email, or call notes
Client and project data
If you become a client or we discuss a project, we may process data necessary to plan, deliver, and improve our services, including:
- business information
- marketing and sales information
- ad account and campaign information
- CRM, funnel, automation, or analytics data
- communication records
- invoices and payment-related information
Advertising and platform data
If you authorize access to platforms such as Meta, Google, CRM systems, analytics tools, or automation tools, we may process data made available through those platforms for the purpose of delivering our services.
This may include ad account data, campaign performance data, lead data, conversion data, audience data, and related business information, depending on the permissions granted.
3. Why we process personal data
- to operate and secure this website
- to respond to inquiries
- to schedule and manage consultation calls
- to evaluate whether our services are a fit
- to provide marketing, advertising, automation, AI, and consulting services
- to communicate with prospects, clients, and partners
- to manage contracts, invoices, and accounting obligations
- to improve our website, offers, and internal systems
- to comply with legal obligations
- to prevent fraud, misuse, or unauthorized access
4. Legal bases for processing
Art. 6(1)(a) GDPR: consent, where you have given consent, for example for optional cookies or certain third-party integrations.
Art. 6(1)(b) GDPR: performance of a contract or pre-contractual measures, for example when you request information, book a call, or become a client.
Art. 6(1)(c) GDPR: compliance with legal obligations, for example tax and accounting obligations.
Art. 6(1)(f) GDPR: legitimate interests, for example website security, business communication, service improvement, and fraud prevention.
5. Website hosting and server log files
Our website provider may automatically collect and store information in server log files. These logs may include browser type, operating system, referrer URL, hostname, time of request, and IP address.
The legal basis is Art. 6(1)(f) GDPR. Our legitimate interest is the secure and reliable operation of the website.
6. Cookies and similar technologies
Our website may use cookies or similar technologies.
Necessary cookies are used to make the website function properly and do not require consent. Optional analytics, marketing, or tracking cookies are only used where legally permitted and, where required, after you have given consent.
If we use analytics, advertising pixels, embedded videos, or similar third-party technologies, we will update this Privacy Policy and provide the required consent controls.
7. Cal.com booking
We use Cal.com to allow visitors to schedule calls.
When you book a call, the information you enter, such as your name, email address, selected time, and any additional form responses, is processed by Cal.com for scheduling and calendar management.
Provider: Cal.com, Inc.
Privacy information:
https://cal.com/privacy
Legal basis: Art. 6(1)(b) GDPR for booking and pre-contractual communication, and Art. 6(1)(f) GDPR for efficient scheduling and communication.
8. Meta, advertising platforms, and client ad accounts
If you authorize us to access advertising platforms, such as Meta, Google, or related business tools, we process the data necessary to provide marketing, reporting, automation, and advertising services.
Depending on the services agreed, this may include:
- ad account identifiers
- campaign, ad set, and ad performance data
- lead and conversion data
- pixel, dataset, or event data
- Page or business asset information
- audience and reporting data available through granted permissions
We only use this data to provide the services requested, maintain integrations, analyze performance, create reports, and improve campaigns or systems.
We do not sell client advertising data.
If you connect a Meta account or grant our app access to your business assets, you may revoke that access at any time through Meta Business settings or by contacting us at obiri@monolithicsystems.de.
9. AI and automation tools
We may use AI-assisted and automation tools to support strategy, reporting, operations, workflow automation, content organization, and internal analysis.
Where personal data is processed through such tools, we only use data necessary for the relevant purpose and apply reasonable safeguards. Sensitive data should not be submitted unless it is required for the agreed service.
10. Processors and third-party providers
We may work with service providers who process personal data on our behalf, including providers for:
- website hosting
- scheduling
- email and communication
- analytics
- advertising platforms
- automation tools
- CRM systems
- accounting and invoicing
- cloud storage
- AI and productivity tools
Where required, we use data processing agreements with processors under Art. 28 GDPR.
11. International data transfers
Some providers may process data outside the European Economic Area. Where this happens, we rely on appropriate safeguards such as adequacy decisions, Standard Contractual Clauses, or other mechanisms permitted under GDPR.
12. Data retention
We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, unless longer retention is required by law.
Typical retention periods include:
- inquiry and booking data: as long as necessary to respond and manage the business relationship
- client project data: for the duration of the project and a reasonable period afterward
- invoice and accounting data: according to statutory retention obligations
- technical logs: for a limited period necessary for security and website operation
If data is no longer required, it will be deleted or anonymized unless legal obligations require retention.
13. Your rights under GDPR
- right of access
- right to rectification
- right to erasure
- right to restriction of processing
- right to data portability
- right to object to processing
- right to withdraw consent at any time
- right to lodge a complaint with a supervisory authority
To exercise your rights, contact us at: obiri@monolithicsystems.de
14. Right to object
If we process personal data based on legitimate interests under Art. 6(1)(f) GDPR, you may object to the processing for reasons arising from your particular situation.
If you object to direct marketing, we will stop processing your personal data for that purpose.
15. Data deletion requests
You may request deletion of your personal data by emailing: obiri@monolithicsystems.de
Please include enough information for us to identify the relevant data or account connection. We may need to retain certain information where required by law, for example accounting records.
16. Security
We use reasonable technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure.
No online transmission or storage system is completely secure. We therefore cannot guarantee absolute security, but we take data protection seriously and limit access to personal data where possible.
17. Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, tools, or legal requirements. The latest version will always be available on this page.