Privacy Policy

We are pleased that you are visiting our website. Any processing of your data should be carried out in such a way that it is understandable and comprehensible for you. Therefore, we provide you here with an overview of all essential circumstances concerning the processing of your data. We have prepared this information with the aim of making it as comprehensible as possible. Should you nevertheless have any questions of understanding, please do not hesitate to contact us. This also applies to all other questions concerning the processing of your data.

All laws and regulations from the EU DSGVO (Data Protection Regulation) and the BDSG referred to in this information can be read free of charge at

In this data protection information, people of each gender are addressed. Insofar as only one form has been chosen, this is only done for the sake of easier readability.

This data protection declaration applies to the internet offer of Prometheus Vermögensmanagement GmbH, which is accessible under the domain as well as the various subdomains ("our website").

Who is responsible and how can I reach you?

Person responsible

Responsible for the processing of your data within the meaning of the EU General Data Protection Regulation (GDPR) is:

P.A.M. Prometheus Asset Management GmbH
Elisabeth-Selbert-Strasse 19
40764 Langenfeld



Data protection officer

Your interests as a data subject are also represented by a data protection officer. You can contact this officer at any time. He/she will process your request with the utmost confidentiality. Our data protection officer is:

Mr. Andreas Sutter



SSL/TLS Encryption

This site uses SSL or TLS encryption to ensure the security of data processing and to protect the transmission of confidential content, such as orders, login data or contact requests that you send to us as the operator. You can recognize an encrypted connection by the fact that there is a "https://" instead of a "http://" in the address line of the browser and by the lock symbol in your browser line.

We use this technology to protect your transmitted data.



The data protection declaration is based on the terms used by the European Directive and Ordinance when issuing the General Data Protection Regulation (DS-GVO). Our data protection declaration should be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain the terminology used in advance.

We use the following terms, among others, in this privacy policy:


1      Personal data
Personal data is any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

2      Data subject
Data subject is any identified or identifiable natural person whose personal data is processed by the controller (our company).

3      Processing
Processing means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

4      Restriction of processing

Restriction of processing is the marking of stored personal data with the aim of limiting their future processing.

5      Profiling
Profiling is any type of automated processing of personal data that consists of using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects relating to that natural person's job performance, economic situation, health, personal preferences, interests, reliability, behavior, location or change of location.

6      Pseudonymization
Pseudonymization is the processing of personal data in a way in which the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.

7      Processor
A processor is a natural or legal person, public authority, institution or other body that processes personal data on behalf of the controller.

8      Recipient
Recipient is a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not it is a third party. However, public authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law shall not be considered as recipients.

9      Third party
Third party means a natural or legal person, public authority, agency or other body other than the data subject, the controller, the processor and the persons authorized to process the personal data under the direct responsibility of the controller or the processor.

10   Consent
Consent is any expression of will in the form of a statement or other unambiguous affirmative action made voluntarily by the data subject for the specific case in an informed manner and in an unambiguous manner, by which the data subject indicates that he or she consents to the processing of personal data relating to him or her.


What is it about?

This privacy statement meets the legal requirements for transparency in the processing of personal data. This is any information relating to an identified or identifiable natural person. This includes, for example, information such as your name, age, address, telephone number, date of birth, e-mail address, IP address or user behavior when visiting a website. Information for which we cannot (or can only with a disproportionate effort) establish a reference to your person, e.g. by anonymization, is not personal data. The processing of personal data (e.g. collection, retrieval, use, storage or transmission) always requires a legal basis and a defined purpose.

Stored personal data will be deleted as soon as the purpose of the processing has been achieved and there are no legitimate grounds for further storage of the data. We will inform you about the specific storage periods or criteria for storage in the individual processing operations. Irrespective of this, we store your personal in individual cases for the assertion, exercise or defense of legal claims and if there are statutory retention obligations.


Who gets my data?

We only disclose your personal data that we process on our website to third parties if this is necessary for the fulfillment of the purposes and is covered by the legal basis in the individual case (e.g. consent or protection of legitimate interests). In addition, we disclose personal data to third parties in individual cases if this serves the assertion, exercise or defense of legal claims. Possible recipients may then be, for example, law enforcement agencies, lawyers, auditors, courts, etc.

Insofar as we use service providers for the operation of our website who process personal data on our behalf within the scope of commissioned processing pursuant to Art. 28 DSGVO, they may be recipients of your personal data. For more information on the use of processors and web services, please refer to the overview of the individual processing operations.


Do you use cookies?

Cookies are small files that are sent by us to the browser of your end device during your visit to our website and stored there. They are stored either temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your end device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your terminal device until you delete them yourself, an automatic solution is provided by your web browser or by revoking any consent you may have given. As an alternative to the use of cookies, information can also be stored in the local storage of your browser. Some functions of our website cannot be offered without the use of cookies or local storage (technically necessary cookies). Technically necessary cookies are required for the proper functioning of the website. This category only includes cookies that ensure basic functions and security features of the website. The processing is therefore strictly necessary to provide you with the services of our website. We are permitted to carry out this processing on the basis of Art. 5 (3) of the EU Directive 2002/58/EC of the European Union (ePrivacy Directive). Other cookies, on the other hand, enable us to perform various analyses, so that we are able, for example, to recognize the browser you are using when you visit our website again and to transmit various information to us (non-essential cookies). Non-essential cookies are only used with your voluntary consent (Art. 6 para. 1 a and Art. 7 DSGVO). With the help of cookies, we can, among other things, make our website more user-friendly and effective for you, for example by tracking your use of our website and determining your preferred settings (e.g. country and language settings). If third parties process information via cookies, they collect the information directly from your browser. Cookies do not cause any damage to your end device. They cannot execute programs or contain viruses.

We provide information about the respective services for which we use cookies in the individual processing procedures. You can find detailed information about the cookies used in the cookie settings or in the Consent Manager of this website.


Right of withdrawal

You can revoke this consent at any time by changing the cookie settings and blocking or deleting the cookies.




Storage duration


This cookie name is associated with the Typo3 web content management system. It is generally used as a user session identifier to allow storage of user preferences, but in many cases it may not be needed because it can be set by the platform through defualt, although this can be prevented by website administrators. In most cases, it is destroyed at the end of a browsing session. It contains a random identifier instead of specific user data.



Not available




What rights do I have?

Under the conditions of the legal provisions of the General Data Protection Regulation (GDPR), you have the following rights as a data subject:

  • Information according to Art. 15 DSGVO about the data stored about you in the form of meaningful information about the details of the processing and a copy of your data;
  • Correction according to Art. 16 DSGVO of incorrect or incomplete data stored by us;
  • Erasure pursuant to Art. 17 DSGVO of the data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defense of legal claims;
  • Restriction of processing pursuant to Art. 18 DSGVO, insofar as the accuracy of the data is disputed, the processing is unlawful, we no longer need the data and you object to their erasure because you need them for the assertion, exercise or defense of legal claims or you have objected to the processing pursuant to Art. 21 DSGVO.
  • Data portability pursuant to Art. 20 DSGVO, insofar as you have provided us with personal data within the scope of consent pursuant to Art. 6 (1) a DSGVO or on the basis of a contract pursuant to Art. 6 (1) b DSGVO and these have been processed by us with the aid of automated processes. You will receive your data in a structured, common and machine-readable format or we will transfer the data directly to another responsible party, insofar as this is technically feasible.
  • Objection according to Art. 21 DSGVO against the processing of your personal data, insofar as this is carried out on the basis of Art. 6 para. 1 lit. e, f DSGVO and there are reasons for this that arise from your particular situation or the objection is directed against direct advertising. The right to object does not exist if overriding compelling legitimate grounds for the processing are demonstrated or the processing is carried out for the assertion, exercise or defense of legal claims. Where the right to object does not exist for individual processing operations, this is indicated there.
  • Revocation pursuant to Art. 7 (3) DSGVO of your granted consent with effect for the future.
  • Complaint pursuant to Art. 77 DSGVO to a supervisory authority if you believe that the processing of your personal data violates the DSGVO. As a rule, you can contact the supervisory authority of your usual place of residence, your place of work or our company headquarters.


How is my data processed in detail?

In the following, we inform you about the individual processing operations, the scope and purpose of the data processing, the legal basis, the obligation to provide your data and the respective storage period. An automated decision in individual cases, including profiling does not take place.


Provision of the website

Type and scope of processing

When calling up and using our website, we collect the personal data that your browser automatically transmits to our server. The following information is stored temporarily in a so-called log file:IP-Adresse des anfragenden Rechners

  • IP address of the requesting computer.
  • Date and time of access
  • Name and URL of the accessed file
  • Website from which the access is made (referrer URL)
  • Browser used and, if applicable, the operating system of your computer, as well as the name of your access provider.

Our website is not hosted by ourselves, but by a service provider (i:punkt, Agentur für Marketing und Internetlösungen GmbH & Co. KG), which processes the aforementioned data on our behalf in accordance with Art. 28 DSGVO.

Purpose and legal basis

The processing is carried out to protect our overriding legitimate interest to display our website and ensure security and stability on the basis of Art. 6 para. lit. f DSGVO. The collection of data and storage in log files is mandatory for the operation of the website. There is no right to object to the processing due to the exception under Art. 21 (1) DSGVO. Insofar as the further storage of log files is required by law, the processing is based on Art. 6 para. 1 lit. c DSGVO. There is no legal or contractual obligation to provide the data, however, calling up our website is technically not possible without providing the data..

Storage period

The aforementioned data is stored for the duration of the website display and for technical reasons beyond that for a maximum of 7 days.


Contact form

Type and scope of processing

On our website, we offer you to contact us via a provided form. The information collected via mandatory fields is necessary to process the request. In addition, you can voluntarily provide additional information that you believe is necessary to process the contact request.

When using the contact form, your personal data will not be passed on to third parties.

Purpose and legal basis

The processing of your data by using our contact form is carried out for the purpose of communication and processing of your request on the basis of your consent pursuant to Art. 6 para. 1 lit. a DSGVO. Insofar as your inquiry relates to an existing contractual relationship with us, the processing is carried out for the purpose of fulfilling the contract on the basis of Art. 6 (1) lit. b DSGVO. There is no legal or contractual obligation to provide your data, but the processing of your request is not possible without providing the information of the mandatory fields. If you do not wish to provide this data, please contact us by other means.

Storage period

Insofar as you use the contact form on the basis of your consent, we store the collected data of each inquiry for a period of three years, starting with the completion of your inquiry or until you revoke your consent.

If you use the contact form in the context of a contractual relationship, we store the collected data of each request for a period of three years from the end of the contractual relationship.



Type and scope of processing

If you register on our website to receive our newsletter, we collect your e-mail address [as well as your name...] and store this information together with the date of registration and your IP address. Subsequently, you will receive an e-mail in which you must confirm your subscription to the newsletter (double opt-in). If you do not confirm the registration within [48 hours], it will automatically expire and the data will not be processed for newsletter dispatch.

The newsletter is sent directly by us. Your data will not be passed on to third parties or order processors within the meaning of Art. 28 DSGVO.

Purpose and legal basis

We process your data for the purpose of sending the newsletter on the basis of your consent pursuant to Art. 6 (1) lit. a DSGVO. By unsubscribing from the newsletter, you can declare your revocation at any time with effect for the future pursuant to Art. 7 (3) DSGVO. There is no legal or contractual obligation to provide your data, but sending the newsletter is not possible without the provision of your data.

Storage period

After registration for the newsletter, we store the data for a maximum of 72 hours until the registration is confirmed. After successful confirmation, we store your data until revocation of your consent (unsubscription from the newsletter) and for technical reasons beyond that for a maximum of 7 days.


Note on data transfer to the USA

Among other things, tools from companies based in the USA may be integrated on our website. If these tools are active, your personal data may be transferred to the US servers of the respective companies. We would like to point out that the USA is not a safe third country in the sense of EU data protection law. US companies are obliged to hand over personal data to security authorities without you as a data subject being able to take legal action against this. It can therefore not be ruled out that US authorities (e.g. intelligence services) process, evaluate and permanently store your data located on US servers for monitoring purposes. We have no influence on these processing activities.


Actuality and change of the privacy policy

This data protection declaration is currently valid and has the status: 05/2023

Due to the further development of our Internet pages and offers or due to changed legal or official requirements, it may become necessary to change this data protection declaration. You can access and print out the current data protection declaration at any time on the website at