Contact

Contact

Contact

Privacy Policy for Lex Agentica

Last updated on 20 February 2026

Lex Agentica (“Lex Agentica”, “we”, “us”) is operated by Maria del Pilar Berrio Muñoz, based in Munich, Germany.

We are committed to protecting your personal data and handling it in accordance with the General Data Protection Regulation (GDPR) and applicable German data protection law.

1. Data Controller

Lex Agentica
Maria del Pilar Berrio Muñoz
Dom Pedro Str. 9
80637 Munich
Germany

Email: hello@lexagentica.com

Lex Agentica is the data controller within the meaning of Art. 4(7) GDPR.

2. What Personal Data We Process

We only process data that is necessary for:

  • Responding to enquiries

  • Scheduling and conducting meetings

  • Delivering consulting services

  • Improving website performance (anonymised analytics)

2.1 Contact & Enquiry Data

When you submit the contact form or email us, we process:

  • Full name

  • Work email address

  • Company name

  • Role/title

  • Message content

Purpose:
To assess strategic fit and respond to your enquiry.

Legal basis:
Art. 6(1)(b) GDPR (pre-contractual measures)
Art. 6(1)(f) GDPR (legitimate interest in business communication)

2.2 Scheduling Data (Microsoft Bookings)

If you book an Intro Strategy Call, we process:

  • Name

  • Email

  • Selected time slot

  • Optional notes

Bookings are managed through Microsoft 365 Bookings.

Legal basis:
Art. 6(1)(b) GDPR

2.3 Email Communication (Microsoft 365)

Business emails are hosted via Microsoft 365 (Exchange Online).
When you contact us, your email address and message content are processed and stored.

Microsoft may process data in EU data centres and, where applicable, under appropriate safeguards for international transfers.

Legal basis:
Art. 6(1)(b) and (f) GDPR

2.4 Website Analytics (Plausible Analytics)

We use Plausible Analytics, a privacy-focused, cookie-free analytics provider based in the EU.

Plausible collects:

  • Aggregated page views

  • Referrer source

  • Device and browser type

  • Country-level location

No cookies are used.
No personal profiles are created.
IP addresses are not stored.

Legal basis:
Art. 6(1)(f) GDPR (legitimate interest in website optimisation)

Because Plausible operates without cookies or personal tracking, no cookie consent banner is required.

2.5 Future: LinkedIn Insight Tag

We may implement the LinkedIn Insight Tag in the future to measure campaign effectiveness.

If activated:

  • It will only operate after explicit user consent.

  • A consent banner will be implemented.

  • Data may be transferred to LinkedIn Ireland and potentially to the United States under appropriate safeguards.

Until implemented, no LinkedIn tracking occurs.

3. Data Transfers Outside the EU

Where service providers process data outside the EU/EEA (e.g. Microsoft), transfers occur only under:

  • EU Standard Contractual Clauses (SCCs)

  • Adequacy decisions

  • EU-US Data Privacy Framework (where applicable)

We do not transfer data without appropriate safeguards.

4. Data Retention

We retain personal data only as long as necessary for:

  • Responding to enquiries

  • Delivering services

  • Legal and tax obligations

Business correspondence may be retained in accordance with German commercial and tax law retention periods (generally 6–10 years where applicable).

Analytics data is anonymised and not stored in identifiable form.

5. Disclosure of Data

We do not sell or rent personal data.

Data is shared only with:

  • Hosting provider (Framer)

  • Microsoft (email and bookings)

  • Plausible (analytics)

All providers act under data processing agreements compliant with Art. 28 GDPR.

6. Your Rights Under GDPR

You have the right to:

  • Access your data (Art. 15 GDPR)

  • Rectify inaccurate data (Art. 16 GDPR)

  • Erasure (“right to be forgotten”) (Art. 17 GDPR)

  • Restrict processing (Art. 18 GDPR)

  • Data portability (Art. 20 GDPR)

  • Object to processing based on legitimate interests (Art. 21 GDPR)

To exercise your rights, contact:
hello@lexagentica.com

You also have the right to lodge a complaint with a supervisory authority.
In Bavaria: Bayerisches Landesamt für Datenschutzaufsicht (BayLDA).

7. Security

We implement appropriate technical and organisational measures, including:

  • HTTPS encryption

  • Restricted system access

  • Secure Microsoft 365 configuration

  • DNS security (SPF, DKIM, DMARC)

However, internet transmission cannot be guaranteed to be completely secure.

  1. Automated Decision-Making

We do not carry out automated decision-making or profiling within the meaning of Article 22 GDPR.
All enquiries and engagement decisions are reviewed and assessed manually.

9. Changes to This Policy

We may update this Privacy Policy to reflect changes in services, tools, or legal requirements.
The current version is always available on this website.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how Lex Agentica handles your personal data, please feel free to contact us:

  • Data Controller: Lex Agentica (operated by Maria del Pilar Berrio Muñoz)

  • Address: Munich, Germany (full address available upon request)

  • Email: mb@lexagentica.com

We will be happy to assist you with any inquiries. Your privacy is important to us, and we welcome any feedback or suggestions regarding data protection and privacy improvements.