DAGG INVEST GmbH
Data Privacy Last Updated: 15 Oct 2026

Your Data, Our Duty: The Privacy Policy of DAGG INVEST GmbH

At DAGG INVEST GmbH, trust is the foundation of every relationship. This policy outlines our unwavering commitment to safeguarding your personal information, detailing precisely how we collect, use, and protect the data you share with us as part of our fee-only advisory services. We believe transparency is non-negotiable.

Foundational Principles of Data Stewardship

Our approach to data privacy is defined by three core tenets that align directly with our fee-only philosophy: Limited Collection, Defined Purpose, and Secure Processing. We do not gather data for speculative analytics; every data point serves a specific, documented function in your financial planning journey.

Protection

Purpose Limitation

Data is collected solely to fulfill contractual obligations, provide regulated advice, and comply with German (GDPR) and U.S. regulatory requirements.

Legal Basis

Legal Basis Clarity

Processing occurs under explicit consent, contractual necessity, legal obligation, or legitimate interest, with consent always being granular and retractable.

What We Process and Why

A clear breakdown of the data categories we handle, the legal basis for each, and the retention period.

Personal Identification

Name, contact details, client ID.

Basis: Contract. Retention: Duration of engagement + 10 years (legal).

Financial Data

Assets, liabilities, income, risk profile, tax status.

Basis: Contract/Consent. Retention: Duration of engagement + 10 years.

Communication Records

Emails, meeting notes, advice files.

Basis: Legal Obligation. Retention: 7 years (MiFID II).

Assumptions & Constraints: Retention periods are subject to specific tax and regulatory requirements. Data may be retained longer if a legal dispute or investigation is ongoing. All data processing activities are documented in our internal compliance register.

Necessary Data, Managed Risks

We collect specific data to provide regulated, personalized advice. Here are the inherent trade-offs and how we mitigate them.

Depth vs. Overreach

Trade-off: Detailed financial data is essential for accurate planning but increases sensitivity exposure.

Mitigation: Data is encrypted in transit and at rest. Access is role-based and logged.

Compliance vs. Complexity

Trade-off: Meeting EU (GDPR) and US (SEC) regulations requires complex data handling procedures.

Mitigation: We operate a clear data map and work with specialized legal counsel for cross-border issues.

Service vs. Storage

Trade-off: Long retention periods (7-10 years) are required by law, not choice, limiting immediate deletion.

Mitigation: Upon contract end, non-essential data is purged. Legal holds are clearly communicated.

Exercising Your Data Rights

Under GDPR and applicable laws, you have the right to access, rectify, erase, or restrict the processing of your personal data. For privacy-related requests, please contact us directly.

Submit a Request

Please provide a detailed description of your request and ensure we can verify your identity to protect your privacy.

Contact Data Protection Officer Arrow

Important Note

For security, we may require additional verification before processing a request. We will respond to all requests within one month of receipt. If your request is complex, we will inform you of the extension and the reasons.

Cookie Policy Legal & Imprint Contact Us

Our Commitment to Evolving Standards

Data protection is not static. As regulatory frameworks in the EU and U.S. evolve, and as new technologies emerge, we continuously review and update our policies and procedures. Our commitment to your privacy remains constant, even as the rules around it change.

Last Policy Review: 15 October 2026. Next scheduled review: Q2 2027.