Privacy Policy

Privacy policy for Ananda Ventures
(Version 1.0; as at 19.05.2018)

The EU General Data Protection Regulation (hereinafter GDPR) will take effect across Europe on 25 May 2018. We want to take this opportunity to inform you about how Ananda Ventures processes personal data in accordance with this new regulation (cf. Art. 13 GDPR). Please read our privacy policy carefully. If you have any questions or comments about it, please send these to the email address provided under point 2.

1. Overview

The following privacy policy describes the type and scope of personal data processing at Ananda Ventures. Personal data is information which is or can be directly or indirectly attributed to you as an individual.

Data processing via the Ananda Ventures website can essentially be split into two categories:

Under the GDPR, you have various rights which you may assert against us. These include the right to object to selected forms of data processing, particularly data processing for advertising purposes. The possibility of objection is highlighted in the text.

If you have any questions about our privacy policy, you are welcome to contact us any time using one of the options below.

2. Name and contact details of the party responsible for processing

This privacy policy applies to the processing of data by Ananda Ventures GmbH, Isarwinkel 6, “Isartal Werkstätten”, 81379 Munich (“responsible party”), and to the following websites: www.ananda.vc, www.anandaventures.com and www.socialventurefund.com (hereinafter: “website”). The Ananda Ventures data protection officer can be contacted at the above address, attn: Data Protection Department, or at info@socialventurefund.com.

3. Purpose of data processing, legal bases and justified interests pursued by Ananda Ventures or third parties, and types of recipients

3.1 Visiting our website

When visiting our website, the browser used on your end device automatically sends information to our website’s server, and temporarily stores it in a “log file”. We have no influence on this. The following information is recorded without any involvement from you and stored until automatically deleted:

The legal basis for processing IP addresses is Art. 6 Para. 1 f) GDPR. Our justified interest is based on the data-collection purposes listed below. We wish to advise here that we cannot, and will not, connect the collected data to your identity in any way.

We use your end device’s IP address and the other data listed above for the following purposes:

The data is stored for the duration of the respective session, and then automatically deleted when the browser is closed. We also use “cookies”, tracking tools and a CRM system for our website. Point 3.4 below provides more detailed information on these specific processes and how your data is used in them.

3.2 Investors area

Data processing when logging into the investors area

The aim of Ananda Ventures’ work is to invest in impact businesses which strive to achieve a particular social impact, notably in education, sustainable consumption, life in old age and health. We consider ourselves a platform for bringing investors, young businesses and expertise together. We give investors the opportunity to log into a secured investors area on our website. The purpose of this area is to provide information.

In this context, we process the data required to log into and run our investors area. This data includes:

The legal basis for this is Art. 6 Para. 1 b) GDPR. If we do not use your contact details for promotional purposes (see point 3.3 below), we store the data collected to run the investors area until the legal statutes of limitations elapse. Once said deadline has passed, we store the contractual information required under commercial and tax law for the legally stipulated periods. During this time (usually ten years from the date of contract conclusion), the data is only reprocessed in the event of an assessment by the tax authorities.

3.3 Newsletter mailings

3.3.1 Newsletter subscription via double opt-in

On our website, we give you the option of subscribing to our newsletter. To ensure no errors occur when entering the email address, and that it is the correct address of the owner, we use what is known as the double opt-in process: Once you have entered your email address in the registration field, we will send you a confirmation link. Only if you click this confirmation link will your email address be added to our mailing list. You may revoke your consent to this at any time by simply sending a short email to the address provided under point 2.

3.3.2 MailChimp

To optimise our newsletter service, we use the MailChimp mailing tool based on Art. 6 Para. 1 b) GDPR. This tool is a service run by the list provider The Rocket Science Group, LLC, 512 Means St., Suite 404 Atlanta, GA 30318, USA (hereinafter “MailChimp”). If you have correctly subscribed to our newsletter, the following data is processed by the MailChimp servers:

MailChimp is certified under the “Privacy Shield Framework”, and thus complies with the European standards for legal order-data processing. Additional information on MailChimp and data protection at MailChimp can be found in the provider’s privacy policy and in the further explanations regarding the GDPR. If you have any questions about the way MailChimp processes data, you can also contact MailChimp’s data protection officer directly at privacy@mailchimp.com. You may object to this processing at any time. To do so, please use one of the contact options stated above.

3.3.3 Right of objection

You may object to data processing for the aforementioned purposes at any time, free of charge. This may be done separately for each respective communication channel, and will take effect for the future (but not retrospectively). This may be done via email or letter. Please use the contact options provided for our data protection officer under point 2.

3.4 Online presence and website optimisation

3.4.1 Cookies – General information 


Our website uses “cookies” based on Art. 6 Para. 1 f) GDPR. Our interest in optimising our website is thus considered justified under the aforementioned regulation. Cookies are small files automatically created by your browser and stored on your end device (laptop, tablet, Smartphone or similar) when you visit our site. Cookies do not harm your end device and do not contain any viruses, Trojans or other malware. The cookie stores information produced in relation to the specific end device used. This does not mean, however, that we automatically find out your identity. One of the reasons for using cookies is to make your visit to our website more pleasant.

3.4.2 Session cookies

When you visit our website, we use “session cookies” to identify the fact that you have already visited certain pages of our website or have already logged into your investor account. These cookies are automatically deleted once you leave our site.

If you have an investor account with Ananda Ventures and are logged in or have enabled your browser’s “stay logged in” function, the information stored in the cookies is [text missing] to your customer account.

Most browsers accept cookies automatically, but you can configure your browser so that it does not store cookies on your computer or always alerts you before a new cookie is created. Completely disabling cookies may, however, mean you are unable to use all the functions of our website. The duration for which cookies are stored depends on the purpose and is not the same for all cookies.

3.4.3 Google Analytics

To tailor the design and keep optimising our website, we use the Google Analytics analysis service run by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter “Google”), based on Art. 6 Para. 1 f) GDPR. This involves creating pseudonymised usage profiles and using cookies. The information generated by the cookie in relation to your use of this website, such as

is sent to a Google server in the USA, where it is stored. The information is used to analyse website usage, compile reports on the activities and render other services associated with use of the website and Internet for the purposes of market research and to customise this website. This information may also be sent to third parties insofar as this is stipulated by law or if third parties process this data on the company’s behalf. Under no circumstances will your IP address be combined with other Google data. IP addresses are anonymised to prevent any such linking (“IP masking”).

You may stop cookies from being installed on your computer by adjusting your browser software settings accordingly. Please note, however, that this may mean you are unable to use all the functions of our website to their full extent. You may also prevent Google from recording and processing the data generated by the cookie in relation to your website usage (incl. IP address) by downloading and installing this browser add-on. As an alternative to the browser add-on, particularly for browsers on mobile end devices, you can also stop Google Analytics from recording data by clicking this Link. This creates an opt-out cookie which prevents your data from being recorded during future visits to this website. Please note that the opt-out cookie is only valid in the browser being used, only for our website and is stored on your device. If you delete the cookies in this browser, you will have to create another opt-out cookie. Further information on privacy in relation to Google Analytics is available on the Google Analytics website.

3.4.4 YouTube embedding

Our website provides investors and visitors with an extensive range of information about our portfolio, our work, current events, etc. In addition to texts and photos, we also provide informative videos, e.g. recordings of past information events. To do this, we use embeddings from YouTube, a service run by YouTube LLC. 901 Cherry Ave. San Bruno, CA 94066, USA (hereinafter “YouTube”), based on Art. 6 Para. 1 f) GDPR. The function displays YouTube videos in an iFrame on our website. The “Advanced privacy mode” option is enabled here, meaning YouTube does not store any information about the website’s visitors. Only when you play a video does YouTube create a cookie, establishing a connection with the YouTube servers. The information generated by the cookie in relation to your use of our website, such as

is sent to a YouTube server in the USA, where it is stored. Processing this information to improve our website by enriching and supplementing the content with informative videos is regarded as our justified interest. You can prevent cookies from being installed in advance by configuring your browser software settings accordingly or stop this processing by deleting cookies through your browser settings or modifying the relevant settings in the privacy centre. The YouTube privacy policy contains more information on how YouTube and Google collect and use the data, on your relevant rights and on ways to protect your privacy.

3.4.5 Google Maps embedding

We use the Google Maps API run by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter “Google”) on our website, based on Art. 6 Para. 1 f) GDPR. This enables us to display interactive maps for you directly on our website and enables you to conveniently use the map function. A cookie may be used in this context. The information generated by the cookie in relation to your use of our website includes:

This happens regardless of whether Google provides a user account you are logged into or whether no such user account exists. If you are logged into Google when visiting our website, your data may be attributed directly to your account. This processing to improve our site and the user experience is considered our recognised, justified interest. Further information on privacy in relation to Google Maps is available in the Google privacy policy. You can stop this data processing by modifying the relevant settings in the Google activity settings or the privacy centre.

4. Recipients outside the EU

With the exception of the processing described in point 2.4, we do not share your data with recipients based outside the European Union or European Economic Area. The processing mentioned under point 2.4 involves sending data to servers run by our contracted web analysis technology provider (see above). These servers are located in the USA. The data is transmitted in accordance with the so-called Privacy Shield, and based on the EU Commission’s Standard Contractual Clauses. We can provide you with a copy of these Standard Contractual Clauses.

5. Your rights

5.1 Overview

In addition to the right to revoke consents you have given us, you are also entitled to the following rights, provided the respective legal requirements are met:

To assert your rights, simply let us known by using one of the aforementioned contact options.

5.2 Right of objection

Under the requirements of Art. 21 Para. 1 GDPR, you can object to the processing of data for reasons relating to the affected person’s specific situation.

The aforementioned general right of objection applies to all processing purposes described in this privacy policy which are based on Art. 6 Para. 1 f) GDPR. Unlike the special right of objection aimed at the processing of data for promotional purposes (see above), the GDPR only obliges us to accept such a general objection if you provide us with reasons of overriding importance (e.g. a potential risk to life or health). You can also contact the supervisory authority responsible for Ananda Ventures – the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 27 (Schloss), 91522 Ansbach.

6. Data security

All data sent by you personally, including your payment details, is transmitted via the conventional, secure SSL (Secure Socket Layer) standard. SSL is a secure, tried-and-tested standard which is also used in areas such as online banking. One of the ways you can recognise a secure SSL connection is the extra s on the http (i.e. https://…) in your browser’s address bar or the lock symbol at the bottom of your browser.

We also use suitable technical and organisational security measures to protect your personal data stored with us from tampering, full or partial loss and unauthorised access by third parties.

* indicates required