The protection of your personal data is a major concern for us. We treat your personal data confidentially and in accordance with the statutory data protection regulations, in particular the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and the Telecommunications Digital Services Data Protection Act (TDDDG). This privacy policy informs you about which personal data we collect, how we process it, and what rights you are entitled to.
The controller responsible for data processing on this website is:
Agape for Nations gUG (haftungsbeschränkt)
Pastors Kamp 23b, 49565 Bramsche, Germany
Represented by: Keven Walde, David Decker
Email: agapefornations@gmail.com
Hosting: Our website is hosted by Hostinger. In this process, personal data (e.g., IP addresses in server log files) are processed on Hostinger's servers. A Data Processing Agreement (DPA) has been concluded with the hosting provider in accordance with Art. 28 GDPR.
Vercel: For the provision of specific interactive functions (especially our AI assistant), we use the platform Vercel (Vercel Inc., 440 N Barranca Ave #4133, Covina, CA 91723, USA). Requests are routed through Vercel's infrastructure to enable communication with the AI interfaces.
SSL/TLS Encryption: For security reasons, this website uses TLS encryption to protect the transmission of confidential content.
Server Log Files: When you visit our website, the hosting provider automatically collects data such as IP address, date/time, browser type, operating system, and referrer URL for technical provision (Art. 6 para. 1 lit. f GDPR).
Cookies: Our website uses technically necessary cookies (§ 25 para. 2 TDDDG) as well as optional cookies (e.g., for analysis), which are only set with your consent.
Contact Form: When making inquiries via the form, we process your name, email address, and message to handle your request (Art. 6 para. 1 lit. b GDPR).
As a non-profit organization, we process personal data of donors (e.g., name, address, donation amount) to process the donation, issue donation receipts, and fulfill tax-related obligations in accordance with the German Fiscal Code (AO). The legal grounds are Art. 6 para. 1 lit. b and lit. c GDPR.
Email communication is conducted for contract processing or organizational purposes. Newsletter dispatch only occurs after express consent (Double-Opt-In) in accordance with Art. 6 para. 1 lit. a GDPR.
Matomo: We use Matomo for the anonymized analysis of user behavior. IP addresses are anonymized, and data is not passed on to third parties (Art. 6 para. 1 lit. a GDPR).
We maintain profiles on Facebook, Instagram, YouTube and TikTok. When visiting these pages, data is processed by the respective providers (Art. 26 GDPR).
Content from third-party providers (e.g., YouTube, Google Fonts) may be integrated. In this process, your IP address may be transmitted to servers outside the EU (based on consent or the EU-US Data Privacy Framework).
We integrate an AI assistant on our website based on the "Gemini" technology of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland).
Type of Data: When you use the chat assistant, your inputs (prompts) and technical metadata are transmitted to Google.
Purpose: Answering user inquiries and automating information processes.
Legal Basis: Art. 6 para. 1 lit. f GDPR (legitimate interest in efficient user communication) or Art. 6 para. 1 lit. b GDPR (performance of a contract).
Data Transfer: Data processing occurs via an API interface. We use settings to ensure that your inputs are not used to train Google's general AI models, according to the provider. Transmission to the USA cannot be ruled out due to Google's global infrastructure; in such cases, the EU Standard Contractual Clauses apply.
We store personal data only as long as necessary to fulfill the respective purpose or as required by statutory retention periods.
You have the right at any time to access, rectification, erasure, restriction of processing, data portability, objection, and withdrawal of granted consent in accordance with the GDPR.
The competent supervisory authority is: The State Commissioner for Data Protection of Lower Saxony (Die Landesbeauftragte für den Datenschutz Niedersachsen).
As of: January 2026