Every time our website/app is accessed, our system automatically collects data (so-called server log files) and information from the computer system of the accessing computer. When doing so, it collects the following data:

• the visited website
• the date and time of accessing the website
• the quantity of data sent, in bytes
• the source/referrer that brought you to the website (referrer URL)
• the browser used
• operating system used
• the IP address used
• query details and target address

These data are not combined with other data sources.

The purpose of storing them in log files is to ensure the functionality of the website. On top of that, the data help us optimise the website and ensure the security of our information technology systems. The data are not evaluated for marketing purposes in this context. Temporary storage of the IP address by the system is necessary to make the website available to the user’s computer. This necessitates storage of the user’s IP address for the duration of the session.

The lawful basis for temporarily storing the data and the log files is Art. 6, Sec. 1, Lit. f, GDPR. We have a legitimate interest in accordance with Art. 6, Sec. 1, Sent. 1, Lit. f, GDPR, to keep optimising our website/app.

When logging into the investor areas, your input will be matched with the login data that were made available to you. Lawful basis for this kind of data processing is Art. 6, Sec. 1, Lit. b, GDPR. Processing is necessary in order to make the content available to authorised users as part of our investor management.

Other than that, your specific personal data will not be processed when you are using the website/app. In particular, those companies that use our website/app to make information relating to funds, assets or relevant markets available to investors will not engage in further processing of personal user data.

The following companies use the website/app to make information available to investors:

GARBE Industrial Real Estate GmbH

Versmannstrasse 2

D-20457 Hamburg

GARBE Logistic Fondsmanagement GmbH & Co. KG

Versmannstrasse 2

D-20457 Hamburg

Our website uses so-called cookies. Cookies will not harm your computer and contain no viruses. The purpose of cookies is to make our offer more user-friendly, more effective and safer. Cookies are small text files that are set on your computer and stored in your browser.

We use both session cookies and permanent cookies. Session cookies represent temporary cookies that are stored in the user’s Internet browser until the browser window is closed, which causes the session cookies to be deleted. Permanent cookies are used for repeated visits and are stored in the user’s browser for a certain period of time (generally for up to 1 year, sometimes for 2 years). Cookies of this type are not deleted when the browser is closed. The purpose of these cookies is to restore a given user’s preferences as soon as that user returns to the page. We have a legitimate interest pursuant to Art. 6, Sec. 1, Sent. 1, Lit. f, GDPR, to store cookies for a technically error-free and optimised provision of our services (technically necessary cookies).

You can configure your browser to notify you about the placement of any cookies and only allow cookies on a case-to-case basis, exclude the acceptance of cookies for certain cases or in general, and enable the automatic deletion of cookies when closing the browser. Disabling cookies may impair the functionality of this website for you.

Cookies will only be used for reach measurements (tracking) and advertising purposes if you have consented to the use of cookies. The lawful basis for using these cookies is Art. 6, Sec. 1, Sent. 1, Lit. a, GDPR. The cookie settings of our website give you the option to grant your voluntary consent to the use of cookies for analytic and marketing purposes either individually or collectively, and to revoke your consent with effect to the future at any time.

Change settings

If you contact us by e-mail, e.g. via the e-mail address quoted on our website, phone or postal letter, the personal data transmitted to us (e.g. your name, e-mail address, postal address, etc.) will be processed so as to enable us to respond to your inquiry. If you use the contact form on our website that is intended for this purpose to get in touch with us, you thereby consent to the processing of your personal data. The processing of personal data (title, first name, last name, company, phone, e-mail, type of query, your message) from the input mask serves the exclusive purpose of processing your query. Processing will be done in accordance with Art. 6, Sec. 1, Sent. 1, Lit. a and f, GDPR. If your registration concerns the fulfilment of a contract or pre-contractual measures, the lawful basis for data processing is Art. 6, Sec. 1, Sent. 1, Lit. b, GDPR.

We receive personal data from contractual partners within the framework of our business relations. We also process personal data that we receive directly from our clients, agents, service providers, employees and job applicants. Furthermore, we process—to the extent necessary for the provision of a service—personal data that we receive from other group member companies or from other third parties (e.g. the SCHUFA and Creditreform credit protection agencies) in a lawful manner (e.g. for the performance of services, for the fulfilment of contracts or on the basis of your consent). Moreover, we process personal data that we lawfully obtained from publicly accessible sources (e.g. debtor directories, land registers, commercial registers and registers of societies, press, media, Internet) and that we may legitimately process.

We process personal data as stipulated by Art. 6, EU-GDPR, specifically pursuant to Art. 6, Sec. 1, Sent. 1, Lit. a, GDPR, on the basis of consent, Art. 6, Sec. 1, Lit. b, GDPR, to fulfil a contract, Art. 6, Sec. 1, Sent. 1, Lit. c, GDPR, to meet a legal obligation, Art. 6, Sec. 1, Sent. 1, Lit. d, GDPR, to uphold vital interests of the data subjects, Art. 6, Sec. 1, Sent. 1, Lit. f, GDPR, to uphold legitimate interests of our company or of a third party. On top of that, we process your personal data as stipulated by the Federal Data Protection Act (BDSG).

We will not disclose your personal data to any third party unless you consent to the disclosure, there is a legal obligation to disclose the data, the disclosure is part of fulfilling a contract or unless we can invoke legitimate interests in the economic and effective operation of our business operations to justify the disclosure.

Within the GARBE Group, we exchange data if and to the extent that a legitimate interest pursuant to Art. 6, Sec. 1, Lit. f, GDPR, justifies such intra-group disclosure.

Our third-party service providers were carefully selected and commissioned by us, are bound by our instructions, and are periodically monitored by us. Recipients of personal data include in particular: banks, advertising agencies, PR agencies, credit agencies, payroll offices, lawyers, IT service providers, employers’ liability insurance associations and government agencies (e.g. tax authorities, courts, public prosecutors’ offices and the police).

Personal data will not be transferred to countries outside the EU or the EEA (so-called third countries) unless doing so is necessary to fulfil your orders, required by law (e.g. tax reporting requirements), unless you have granted your consent or unless it is done within the scope of contract data processing.

We will process and store your personal data for as long as is necessary to serve the purposes for which it is collected or otherwise processed, in particular for as long as is necessary to fulfil our contractual and legal obligations.

We principally use no fully automated decision-making (including profiling) in the context of visits to our website pursuant to Art. 22, Art. 13, Sec. 2, Lit. f, Art. 14, Sec. 2, Lit. g, GDPR. In case we do deploy such processes in one-off cases, we will notify you separately of the fact, provided that doing so is legally mandated.

You have the following rights vis-à-vis us as the controller within the meaning of the GDPR:

• to demand information about your personal data processed by us (Art. 15, GDPR);
• to demand the prompt correction of inaccurate or incomplete personal data stored by us (Art. 16, GDPR);
• to demand the deletion of your personal data stored by us unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims (Art. 17, GDPR);
• to demand the restriction of the processing of your personal data if the accuracy of the data is disputed by you, if the processing is unlawful but you object to their deletion, or if we no longer need the data but you require them to assert, exercise or defend legal claims, or if you have lodged an objection to such data processing pursuant to Art. 21, GDPR (Art. 18, GDPR);
• to demand to have your personal data that you provided to us disclosed to you in a structured, common and machine-readable format or to request its transfer to another controller (Art. 20, GDPR);
• to revoke the consent you granted to us (Art. 21 GDPR). Once you objected, we will no longer process your personal data in future. This does not apply if processing is permitted on the basis of other regulations (e.g. Art. 6, Sec. 1, Sent. 1, Lit. f, GDPR).
• In the case of an automated decision (profiling), the right to state your own position and to challenge the decision (Art. 22, Sec. 3, GDPR);
• In the case of a complaint to a regulator (Art. 77, GDPR).

The currency and effective date of this Data Protection Statement is 7 October 2024. Further development of our website and changing legal or official requirements may necessitate revisions of this Data Protection Statement from time to time. We reserve the right to undertake such revisions at any time.