Privacy Policy
Last updated: February 2026
This privacy policy explains how we collect, use, and protect your personal data in accordance with the EU General Data Protection Regulation (GDPR/DSGVO) and German data protection law.
1. Data Controller
The data controller responsible for this website is: Jasvin Bhasin Advisory, Staffelstr. 16, 73312 Geislingen an der Steige, Germany. Email: info@bridgethenext.com.
2. Data Collection and Server Logs
When you visit our website, our hosting provider (Cloudflare, Inc.) automatically collects and stores information in server log files that your browser transmits to us. This includes: browser type and version, operating system, referrer URL, hostname of the accessing computer, time of the server request, and anonymized IP address. This data is collected on the basis of Art. 6(1)(f) GDPR (legitimate interest in ensuring the security and optimization of our website). Cloudflare retains HTTP request logs for a maximum of 72 hours and then automatically deletes them. This data cannot be attributed to specific individuals and is not combined with other data sources.
3. Analytics
We use Cloudflare Web Analytics, a privacy-friendly analytics service that does not use cookies and does not collect personal data. It only collects anonymized, aggregated usage data (such as page views and performance metrics) to help us improve our website. This processing is based on Art. 6(1)(f) GDPR (legitimate interest in improving our web offering). No personal data is stored or transferred to third parties for analytics purposes.
4. Newsletter
If you subscribe to our newsletter via Substack, your email address will be processed by Substack Inc. (based in the United States) according to their privacy policy. We use this only to send you our newsletter content. The legal basis for this processing is Art. 6(1)(a) GDPR (your consent). You can withdraw your consent at any time by unsubscribing from the newsletter. Since Substack is based in the US, your data will be transferred to the United States. Substack participates in the EU-US Data Privacy Framework, which ensures an adequate level of data protection.
5. Your Rights
Under GDPR, you have the right to: access your personal data (Art. 15), rectification of inaccurate data (Art. 16), erasure of your data (Art. 17), restriction of processing (Art. 18), data portability (Art. 20), and objection to processing (Art. 21). To exercise these rights, please contact us at info@bridgethenext.com. You also have the right to lodge a complaint with a supervisory authority. The competent supervisory authority is: Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 18, 91522 Ansbach, Germany, https://www.lda.bayern.de.
6. Third-Party Services
Our website is hosted on Cloudflare, Inc. (101 Townsend St, San Francisco, CA 94107, USA). Cloudflare processes data on the basis of Art. 6(1)(f) GDPR and complies with the EU-US Data Privacy Framework. Cloudflare operates data centers within the EU and routes traffic through the nearest available data center. Newsletter services are provided by Substack Inc. (based in San Francisco, USA), which also participates in the EU-US Data Privacy Framework. Both services have their own privacy policies governing their data processing.
7. Cookies
Our website does not use cookies for tracking or advertising purposes. Only technically necessary cookies may be set by our hosting provider to ensure the proper functioning of the website. These are based on Art. 6(1)(f) GDPR (legitimate interest).
8. Changes to This Policy
We may update this privacy policy from time to time. Changes will be posted on this page with an updated revision date. We encourage you to review this page periodically.
For any questions about this privacy policy, please contact us at: info@bridgethenext.com