Privacy Policy
We take the protection of your personal data seriously. We handle your personal information confidentially and in accordance with legal data protection regulations and this privacy policy.
Last Updated: October 2025
1. Data Controller
The controller responsible for data processing on this website under the GDPR is:
corma GmbH
Hammer Str. 19
40219 Düsseldorf
Germany
Phone: +49 2163 349 0080
Email: mail@corma.de
Website: https://osintprotraining.com
Managing Director: Jörn Weber
2. Data Protection Officer
For questions regarding data protection, please contact:
Email: datenschutz@corma.de
Postal Address: corma GmbH, Data Protection, Hammer Str. 19, 40219 Düsseldorf, Germany
3. Your Rights as a Data Subject
You have the following rights regarding your personal data:
Right to Access (Art. 15 GDPR)
You have the right to request information about your personal data we process.
Right to Rectification (Art. 16 GDPR)
You have the right to request immediate correction of inaccurate data.
Right to Erasure (Art. 17 GDPR)
You have the right to request deletion of your personal data, unless legal retention obligations apply.
Right to Restriction of Processing (Art. 18 GDPR)
You have the right to request restriction of processing your data.
Right to Data Portability (Art. 20 GDPR)
You have the right to receive your data in a structured, commonly used format.
Right to Object (Art. 21 GDPR)
You have the right to object to the processing of your data at any time.
Right to Lodge a Complaint (Art. 77 GDPR)
You have the right to lodge a complaint with a data protection supervisory authority.
Competent Authority: State Commissioner for Data Protection NRW, Düsseldorf
Website: https://www.ldi.nrw.de
4. Data Collection on This Website
4.1 Server Log Files
Our web server automatically collects information in server log files:
- Browser type and version
- Operating system
- Referrer URL
- IP address (anonymized)
- Time of request
Data is deleted after 7 days.
Legal Basis: Art. 6(1)(f) GDPR
4.2 Cookies
Our website uses cookies.
Technically necessary cookies: Required for website functionality
Legal Basis: Art. 6(1)(f) GDPR
4.3 Contact Form & Email
When you contact us, your information is stored for processing.
Data Processed: Name, email, phone (optional), message, time
Retention: Until processing complete, max. 6 months
Legal Basis: Art. 6(1)(b) GDPR
5. Course Platform & User Accounts
5.1 Registration
Mandatory: First name, last name, email, password (encrypted)
Optional: Profile picture, phone, company
Legal Basis: Art. 6(1)(b) GDPR
5.2 Course Progress
We collect: Visited lessons, completed modules, last access time, processing time
Legal Basis: Art. 6(1)(b) GDPR
6. Payment Processing
We use external payment service providers.
Data: Name, email, billing address, payment info, order number
Retention: 10 years (tax law)
Legal Basis: Art. 6(1)(b) GDPR and Art. 6(1)(c) GDPR
7. Email Communication
We send automated emails as part of contract performance: Registration confirmation, purchase confirmation, course access, password reset, certificates.
Legal Basis: Art. 6(1)(b) GDPR
8. Data Security
We implement technical and organizational security measures:
- SSL/TLS encryption (HTTPS)
- Encrypted password storage
- Regular security updates
- Access restrictions
- Regular backups
- Firewall and intrusion detection
9. Contact for Privacy Questions
Email: datenschutz@corma.de
Postal Address: corma GmbH, Data Protection, Hammer Str. 19, 40219 Düsseldorf, Germany