Version: March 2026
1. Controller
Racement GmbH
Bücheloher Str. 20
98693 Ilmenau
Germany
E-mail: info@racement.com
Racement GmbH operates several websites for the organisation and execution of mountain bike sports events, as well as for handling registrations and payments for both our own and external events.
2. General Information on Data Processing
We process personal data exclusively in accordance with the applicable legal provisions, in particular the GDPR. The use of our websites is generally possible without providing personal data. Where personal data are collected, this is done to provide our services, to carry out events or due to legal requirements.
3. Provision of the Website and Server Log Files
When accessing our websites, the following data are automatically processed:
- IP address
- Date and time of access
- Accessed pages
- Browser type and version
- Operating system
- Referrer URL
These data are technically necessary to provide the website and ensure system security. Log files are typically stored for up to 14 days.
Legal basis: Art. 6(1)(f) GDPR.
Hosting provider:
Hetzner Online GmbH, Germany
A data processing agreement is in place.
4. Content Management System and Technical Support
Our websites are operated using Craft CMS and Craft Commerce. Personal data submitted via forms or registrations may be stored within this system.
Technical support:
Secondred GmbH, Erfurt, Germany
A data processing agreement is in place.
5. Registration, Event Entry and External Organisers
To participate in events organised by Racement GmbH or external events for which we handle registration or payment processing, registration is required.
We process the following data:
- Name
- Address
- E-mail address
- Phone number
- Date of birth
- Team / club
- Race category
- Start number
- Payment information
- Assignment to an event (own or external)
Processing purposes include event organisation, participant administration, start lists, timekeeping, result lists, communication, payment processing and transfer to external organisers where applicable.
Legal basis: Art. 6(1)(b) GDPR.
6. Transfer to Timekeeping Service Providers
We work with specialised service providers for timekeeping. The following data may be transferred:
- Name
- Start number
- Race category
- Team / club (if applicable)
Legal basis: Art. 6(1)(b) GDPR.
7. Publication of Start and Result Lists
Start and result lists may include:
- Name
- Team / club
- Race category
- Ranking
- Race times
Legal basis: Art. 6(1)(f) GDPR.
8. Communication with Participants
We use Brevo (formerly Sendinblue) for e-mail and SMS communication.
Processed data:
- E-mail address
- Phone number
- Name
- Message content
Legal basis: Art. 6(1)(b) GDPR.
9. Payment Processing
Payments are processed via PayPal. PayPal acts as an independent controller.
Legal basis: Art. 6(1)(b) GDPR.
10. Photo and Video Recordings at Events
Photo and video recordings may be taken at our events for reporting, documentation and public relations.
Legal basis: Art. 6(1)(f) GDPR.
11. Contacting Us
If you contact us by e-mail or via a contact form, the data you provide will be stored for processing your request.
Legal basis: Art. 6(1)(b) GDPR or Art. 6(1)(f) GDPR.
12. Cookies
Our websites use technically necessary cookies. Analytics or marketing cookies are only set with your consent via the cookie banner.
13. Embedded Content and Social Media
Our websites may include embedded content from third-party providers (e.g., YouTube, Instagram).
Legal basis: Art. 6(1)(f) GDPR.
14. YouTube
Our websites may include embedded YouTube videos. When accessing such content, data may be transferred to Google.
Legal basis: Art. 6(1)(f) GDPR or Art. 6(1)(a) GDPR.
15. Google Analytics
Our websites use Google Analytics. Processing takes place only with your consent and with IP anonymisation enabled.
Legal basis: Art. 6(1)(a) GDPR.
16. Minors
Registration of minors is only permitted with the consent of their legal guardians.
17. SSL/TLS Encryption
Our websites use SSL/TLS encryption.
18. Storage Period
Personal data are stored only as long as necessary or as required by law.
19. Rights of Data Subjects
You have the right to access, rectification, erasure, restriction, data portability and objection.
20. Right to Lodge a Complaint
You may lodge a complaint with a supervisory authority.
21. Changes to this Privacy Policy
We reserve the right to update this privacy policy.