Imprint & Privacy

Last updated: June 2026

Imprint

Information pursuant to § 5 TMG

Leon Holub
Gartenstraße 116
60596 Frankfurt am Main
Germany

Contact

Email: mail@leonholub.com
Phone: 0172 5159460
Website: leonholub.com

VAT ID

VAT identification number pursuant to § 27 a of the German VAT Act:
DE308820438

Consumer dispute resolution / universal arbitration board

We are neither willing nor obliged to participate in dispute resolution proceedings before a consumer arbitration board.

Privacy Policy

1. Controller

Controller within the meaning of the General Data Protection Regulation (GDPR):
Leon Holub
Gartenstraße 116
60596 Frankfurt am Main
Email: mail@leonholub.com

2. General information on data processing

This website is largely a static, informational website. We do not set cookies and do not use analytics or tracking tools (see sections 5 and 6).

At individual points, however, we provide forms and interactive tools (including the waiting list for the GAP-analysis tool, the ROI calculator and the CRA readiness check) through which you can voluntarily submit personal data to us — in particular your email address. Which data we process for which purposes and on which legal basis is described in the following sections.

3. Hosting

This website is hosted by an external service provider (host). Personal data collected on this website is stored on the host's servers. This may include, in particular, IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses and other data generated via a website.

The host is used in the interest of secure, fast and efficient provision of our online offering by a professional provider (Art. 6 (1) (f) GDPR). Where corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6 (1) (a) GDPR.

4. Server log files

The hosting provider automatically collects and stores information in so-called server log files, which your browser transmits automatically. These are:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • IP address
  • Time of the server request

This data is not merged with other data sources. The collection of this data is based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimisation of its website — for this purpose, the server log files must be recorded.

5. No cookies

This website does not use cookies. Neither first-party nor third-party cookies are set. There is no cookie banner because none is required.

6. No analytics or tracking tools

No analytics or tracking tools (such as Google Analytics, Matomo, etc.) are used on this website. No analysis of user behaviour takes place.

7. No external resources

This website does not load any external fonts (e.g. Google Fonts), external scripts, CDN resources or embedded content from third parties. All resources are provided locally from our own server.

8. SSL/TLS encryption

For security reasons and to protect the transmission of data, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the fact that the browser's address line changes from “http://” to “https://” and by the lock symbol in your browser line.

9. Contacting us

If you contact us by email, your details, including the contact data you provide, will be stored by us for the purpose of processing the request and in case of follow-up questions. We do not pass on this data without your consent. The processing of this data is based on Art. 6 (1) (b) GDPR.

10. Forms and tools on this website

At individual points we provide forms and interactive tools through which you can voluntarily submit personal data to us:

  • GAP-analysis tool waiting list: your email address and your indication of whether you consent to receiving marketing information.
  • ROI calculator and CRA readiness check: the values you enter to generate your assessment, your email address for sending the result report (PDF) and, optionally, your marketing consent.

To prevent misuse and to document any consent given, we additionally process technical metadata (IP address, time of submission, browser identifier). The inputs in the tools are, as far as technically possible, processed in your browser; the data is only transmitted to our server once you submit a form or request a report.

The legal basis is — depending on the function — the initiation or performance of a contractual or commissioned relationship (Art. 6 (1) (b) GDPR), your consent (Art. 6 (1) (a) GDPR) or our legitimate interest in the secure provision of the functions (Art. 6 (1) (f) GDPR).

11. Newsletter and email marketing

On individual pages we offer sign-up to our email newsletter, through which we inform you about products, services and news. Providing your email address is required for the sign-up. The legal basis is your consent pursuant to Art. 6 (1) (a) GDPR in conjunction with Section 7 (2) of the German Act Against Unfair Competition (UWG).

Sign-up uses the double opt-in procedure: after you register, you receive an email asking you to confirm your sign-up. We only add you to the distribution list after your confirmation. Sign-up and confirmation are logged (email address, time and IP address) in order to be able to demonstrate your consent in accordance with Art. 7 (1) GDPR.

We handle the sign-up, the confirmation and the dispatch via the service CleverReach (see section 12).

You can withdraw your consent at any time with effect for the future — via the unsubscribe link in every newsletter email or informally by sending us a message (contact details see imprint). The lawfulness of the processing carried out up to the withdrawal remains unaffected.

12. Recipients of your data

Your data is generally processed on the servers of our hosting provider (see section 3). For sending emails (e.g. result reports or notifications) we use an email dispatch service provider that processes the data on our behalf and in accordance with our instructions.

For signing up to our newsletter and for its dispatch we use the service CleverReach provided by CleverReach GmbH & Co. KG, Schafjückenweg 2, 26180 Rastede, Germany. The email address provided at sign-up and the log data of your consent are stored on CleverReach's servers — according to the provider in Germany or the EU. CleverReach processes this data exclusively as a processor in accordance with our instructions. Further information can be found in CleverReach's privacy policy at cleverreach.com/en/privacy-policy.

Where service providers process personal data on our behalf, this is done on the basis of a data processing agreement pursuant to Art. 28 GDPR. We do not pass on your data to third parties beyond this unless we are legally obliged to do so.

13. Storage period

We store personal data only for as long as is necessary for the respective purposes or as required by statutory retention periods:

  • Enquiries and contact data without a subsequent contractual relationship: until your request has been conclusively processed.
  • Data based on a marketing consent: until you withdraw your consent.
  • Server log files: see section 4.

Once the purpose no longer applies or any retention periods have expired, the data is deleted.

14. Your rights

Within the framework of the applicable statutory provisions, you have the right at any time to:

  • Free information about your stored personal data (Art. 15 GDPR)
  • Rectification of incorrect data (Art. 16 GDPR)
  • Erasure of your stored data (Art. 17 GDPR)
  • Restriction of data processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection to processing (Art. 21 GDPR)
  • Withdrawal of any consent given with effect for the future (Art. 7 (3) GDPR)

For this purpose and for further questions on the subject of data protection, you can contact us at any time.

15. Right to lodge a complaint with a supervisory authority

If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority. The competent supervisory authority is:

The Hessian Commissioner for Data Protection and Freedom of Information
Postfach 3163
65021 Wiesbaden
datenschutz.hessen.de