Legal

Privacy Policy

Last updated: 23 April 2026

This privacy policy explains how Nichi Global M&A Center handles personal data in connection with the website at nichiglobal.com. We have designed this site to collect as little personal data as possible. The information below describes what is unavoidable, why it is processed, and what rights you have.

1. Who is responsible

The controller under the EU General Data Protection Regulation (GDPR) is:

Website Operator

Impartial Financial Advice Limited
Hamilton House, 28 Fitzwilliam Place
Dublin 2, D02 EH62, Ireland
Company Registration (CRO): 492635
Managing Director: Vincent Digby, QFA
T: +353 (0)1 621 7699

For questions about content and for day-to-day data protection inquiries, the responsible content person in Germany is:

Content Responsibility (§ 18 Abs. 2 MStV)

Derya D. Tanis
Surkstamm 62
48734 Reken
North Rhine-Westphalia, Germany
E: tanis@nichiglobal.com

2. What data is collected when you visit this website

When you open this website, your browser automatically transmits technical information that is recorded in the server log files of our hosting provider. This is standard for any website on the public internet. The data recorded includes:

Your IP address (in anonymised or shortened form where possible)
Date and time of the request
The page or file that was requested
The HTTP status code returned
The amount of data transferred
Your browser type and version
Your operating system
The referrer URL, if one was provided by your browser

This data is not combined with other data, and no profile is created. It is used solely to ensure the technical stability and security of the website.

Legal basis: Article 6(1)(f) GDPR (legitimate interest in operating a secure and functional website).
Retention: Log entries are retained for a maximum of 30 days and are then automatically deleted, unless a specific security incident requires longer retention.

3. Cookies and tracking

This website does not set any cookies, does not use analytics software, and does not embed any third-party tracking tools. No advertising networks are used.

All fonts used on this site are hosted on our own server. No font data is requested from third-party services such as Google Fonts. No external resources are loaded when you view this website.

4. Contact by email

If you contact us by email at the address shown on this site, we receive and store your message including the email address you sent it from and any personal information you chose to include. We use this information exclusively to respond to your inquiry.

Legal basis: Article 6(1)(b) GDPR (pre-contractual measures at your request) or Article 6(1)(f) GDPR (legitimate interest in responding to inquiries).
Retention: Email correspondence is retained for as long as necessary to address the inquiry and any follow-up, and in accordance with applicable record-keeping obligations (typically up to six years under Irish and German commercial law).

5. No data transfer to third parties

We do not share personal data with third parties, except where strictly required by law (for example, in response to a valid court order) or where a technical service provider acts on our behalf under a data processing agreement in line with Article 28 GDPR. This currently applies only to our hosting provider.

6. Your rights

Under the GDPR, you have the following rights in relation to your personal data:

The right of access (Article 15 GDPR)
The right to rectification (Article 16 GDPR)
The right to erasure (Article 17 GDPR)
The right to restriction of processing (Article 18 GDPR)
The right to data portability (Article 20 GDPR)
The right to object to processing (Article 21 GDPR)
The right to withdraw consent at any time, where processing is based on consent

To exercise any of these rights, please contact us at tanis@nichiglobal.com.

You also have the right to lodge a complaint with a data protection supervisory authority. The competent authorities are:

For Germany: the data protection authority of the federal state in which you reside. For Derya Tanis specifically: Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (LDI NRW).
For Ireland (where the operator is established): Data Protection Commission Ireland (dataprotection.ie).

7. Data security

This site is served exclusively over encrypted HTTPS connections. We use state-of-the-art transport encryption and keep our hosting environment up to date with current security standards.

8. Changes to this policy

We may revise this policy if the technical setup of the website changes, if new features are added, or if legal requirements change. The current version is always available on this page, with the “last updated” date at the top reflecting the most recent revision.

This document has been prepared in good faith to reflect current best practice for a non-transactional informational website under the GDPR. It does not constitute legal advice. Users seeking legal certainty for their own websites should consult qualified counsel.