Privacy Policy for FiCoDriver Fractional CFO Services

Last updated: January 2025

Effective date: January 1, 2025

FiCoDriver website and fractional CFO services are provided by Stephan Geyer, who acts as the data controller for your personal information. This Privacy Policy explains how we collect, use, and protect your personal data when you use our website or engage our fractional CFO services.

We are committed to protecting your privacy and ensuring the security of your personal information in accordance with the General Data Protection Regulation (GDPR) and applicable European data protection laws.

What Personal Information We Collect

Information You Provide Directly

When you contact us for fractional CFO services or use our website, we may collect:

  • Contact Information: Name, email address, phone number, company name, job title

  • Business Information: Company size, revenue, industry, financial challenges, project requirements

  • Communication Data: Messages, meeting notes, consultation requests, service inquiries

  • Professional Information: LinkedIn profile, business background, previous service providers

Information Collected Automatically

When you visit our website, we automatically collect:

  • Device Information: IP address, browser type, operating system, device identifiers

  • Website Usage Data: Pages viewed, time spent, referral sources, click patterns

  • Analytics Data: Geographic location, session duration, bounce rate, conversion events

  • Technical Data: Cookies, local storage, session tokens, error logs

How We Use Google Analytics

FiCoDriver uses Google Analytics 4 (GA4) to understand how visitors interact with our website and improve our fractional CFO services. This helps us:

  • Analyze Website Performance: Track page views, user journeys, and conversion rates

  • Understand Our Audience: Demographics, interests, and business needs of potential clients

  • Improve User Experience: Identify popular content and optimize service information

  • Measure Marketing Effectiveness: Track which channels bring qualified leads for CFO services

Google Analytics Data Retention

We have configured Google Analytics to retain data for 14 months. You can opt out of Google Analytics tracking by:

Why We Process Your Personal Data

Providing Fractional CFO Services

We process your data to:

  • Service Delivery: Provide financial consulting, reporting, and strategic advisory services

  • Client Communication: Schedule meetings, send reports, and maintain ongoing service relationships

  • Project Management: Track deliverables, deadlines, and service milestones

  • Quality Assurance: Ensure service quality and client satisfaction

Business Operations

We use your information for:

  • Lead Management: Qualify prospects and match services to business needs

  • Marketing Communications: Send relevant content about fractional CFO services (with consent)

  • Website Optimization: Improve user experience and service information

  • Legal Compliance: Meet regulatory requirements and maintain business records

Legal Basis for Data Processing

Under GDPR, we process your personal data based on:

  • Contractual Necessity: To perform fractional CFO services you've engaged us for

  • Legitimate Interest: To improve our services, manage leads, and operate our business

  • Consent: For marketing communications and non-essential cookies (where required)

  • Legal Obligation: To comply with accounting, tax, and business regulations

How We Share Your Information

Service Providers

We may share your data with trusted partners who help deliver our fractional CFO services:

  • Accounting Software Providers: For financial reporting and data management

  • Cloud Storage Services: For secure document storage and collaboration

  • Communication Tools: For video calls, messaging, and project management

  • Professional Partners: Lawyers, accountants, and other advisors (with your consent)

Business Transfers

If FiCoDriver is sold, merged, or transferred, your personal data may be transferred to the new entity, subject to the same privacy protections.

Legal Requirements

We may disclose your information if required by law, court order, or to protect our rights and the safety of others.

International Data Transfers

As a European-based fractional CFO service, we primarily process data within the European Economic Area (EEA). However, some of our service providers may be located outside the EEA, including:

  • Google Analytics: Data may be processed in the United States under Google's GDPR compliance measures

  • Cloud Services: Data storage with EU-based or adequacy decision countries when possible

  • Communication Tools: Video conferencing and collaboration platforms with appropriate safeguards

When we transfer data outside the EEA, we ensure appropriate safeguards through adequacy decisions, Standard Contractual Clauses, or other approved mechanisms.

Data Security and Protection

We implement comprehensive security measures to protect your personal data:

Technical Safeguards

  • Encryption: Data encrypted in transit and at rest using industry-standard protocols

  • Access Controls: Multi-factor authentication and role-based access restrictions

  • Regular Updates: Security patches and software updates applied promptly

  • Monitoring: Continuous monitoring for security threats and unauthorized access

Organizational Safeguards

  • Data Minimization: We collect only the data necessary for our fractional CFO services

  • Regular Training: Staff educated on data protection and privacy best practices

  • Incident Response: Procedures in place for data breach notification and response

  • Privacy by Design: Data protection considered in all business processes

How Long We Keep Your Data

We retain your personal data for different periods depending on the purpose:

  • Active Client Data: During the service relationship plus 7 years for accounting and legal requirements

  • Prospect Data: 2 years from last contact, unless you request earlier deletion

  • Website Analytics: 14 months through Google Analytics, anonymized data may be kept longer

  • Marketing Data: Until you unsubscribe or request deletion

  • Legal Documents: As required by European accounting and tax regulations

Your Privacy Rights Under GDPR

As a European resident, you have the following rights regarding your personal data:

Access and Portability

  • Right to Access: Request a copy of all personal data we hold about you

  • Right to Portability: Receive your data in a structured, machine-readable format

Correction and Deletion

  • Right to Rectification: Correct inaccurate or incomplete personal data

  • Right to Erasure: Request deletion of your personal data (subject to legal requirements)

Control and Objection

  • Right to Restrict Processing: Limit how we use your data in certain circumstances

  • Right to Object: Object to processing based on legitimate interests or for marketing

  • Rights Regarding Automated Decision-Making: Not to be subject to purely automated decisions

How to Exercise Your Rights

To exercise any of these rights, contact us at: stephan@ficodriver.com

We will respond to your request within 30 days and may ask for verification of your identity to protect your data.

Cookies and Tracking Technologies

FiCoDriver uses cookies and similar technologies to improve your website experience:

Essential Cookies

Required for basic website functionality, including:

  • Session management and security

  • Form submission and contact requests

  • Website performance and error prevention

Analytics Cookies

Used to understand website usage and improve our services:

  • Google Analytics: Tracks page views, user behavior, and conversion events

  • Performance Monitoring: Identifies technical issues and optimization opportunities

Marketing Cookies

Used to deliver relevant content and measure marketing effectiveness (only with your consent):

  • LinkedIn and other professional platform tracking

  • Retargeting for fractional CFO services

  • Content personalization based on interests

You can manage cookie preferences through your browser settings or our cookie consent banner.

Third-Party Links and Services

Our website may contain links to third-party websites, including:

  • Professional networks (LinkedIn)

  • Industry publications and resources

  • Partner and vendor websites

  • Social media platforms

We are not responsible for the privacy practices of these third parties. Please review their privacy policies before providing any personal information.

Updates to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices, services, or legal requirements. When we make significant changes, we will:

  • Post the updated policy on our website with a new "Last Updated" date

  • Notify active clients via email if changes materially affect how we handle their data

  • Provide clear information about what has changed

We encourage you to review this Privacy Policy periodically, especially before engaging our fractional CFO services.

Contact Information for Privacy Matters

If you have questions about this Privacy Policy, want to exercise your rights, or have privacy concerns, please contact us:

Data Controller: Stephan Geyer (FiCoDriver)
Email: stephan@ficodriver.com
Subject Line: "Privacy Policy Question" or "GDPR Rights Request"
Response Time: Within 30 days

Supervisory Authority

If you believe we have not handled your personal data appropriately, you have the right to lodge a complaint with your local data protection authority. For most European residents, this would be the data protection authority in your country of residence.

For German residents: Bundesbeauftragte für den Datenschutz und die Informationsfreiheit (BfDI)

This Privacy Policy is designed to be transparent about our data practices while ensuring compliance with GDPR and other applicable privacy laws. We are committed to protecting your privacy while delivering exceptional fractional CFO services to European startups and scale-ups.