• Tracked Platforms: 10
  • Tracked Projects: 981
  • Total Capital: 101,293,493 EUR

Privacy Policy

This Privacy policy refers to Personal data processed by Crowdbulls, (or we) and explains about Your legal rights related with processing of Personal data (hereinafter - Policy).

Your personal information is handled according to our Policy and applicable laws for the collection, use and disclosure of your personal information, which must be followed by Crowdbulls. Third-party - service providers or authorized representatives we contract with shall also follow the personal data protection requirements.

This Policy applies to all persons who use, have used, or are going to use our services, as well as those who are indirectly related (e.g. business owners, representatives or other employees), persons who have any contractual relationship with us, or whose Personal data have become known to us, as well as to anyone who visits our websites (hereinafter referred to as “You” or the “Customer”).

We consistently adhere to the requirements of the European Union and national legislation. The basic legal acts governing the processing of Personal data are the national legislation and the General Data Protection Regulation (2016/679) (hereinafter referred to as the “GDPR”). The reference to “Personal data” in this Policy refers to any information which could be reasonably used to identify You as one of the above persons (hereinafter referred to as “Personal data”).

The Policy provides a general overview of how we process Personal data. Additional information on the processing of Personal data may be provided in service contracts and in other documents.

We ensure the confidentiality of Personal data in accordance with the requirements of the applicable law and we have appropriate technical and organisational measures in place to protect Personal data from unauthorised access, disclosure, accidental loss, alteration, destruction, or any other unlawful processing.

We can use data processors to process Personal data. In such cases, we will take the necessary steps to ensure that such data processors process Personal data in accordance with our instructions and applicable laws, and require the implementation of appropriate Personal data security measures. We ensure that we make efforts to guarantee the confidentiality and integrity of the Personal data of our current, future, and past Customers.

Your Personal data controller is Crowdbulls to which You have either submitted Your Personal data concerning any contractual or pre-contractual relationship that You are bound to, or whose services You (or the legal entity or entity to which You are the ultimate real owner) are going to use.


In the Policy we describe how we process Personal data in dealing with all matters related to all our Customers (existing or former), potential Customers, sending newsletters and marketing information, recruitment processes, cookies used on our websites, all our legal obligations set by the GDPR, any relevant laws on data protection, as well as any other applicable laws and regulations (including the obligations relating to prevention processes against money laundering and terrorist financing).


Depending on the service provided or the nature of our cooperation, we process different categories of Personal data. In each case, we ensure that we process only the data that are necessary. The main categories of Personal data include but not limited to are:

Identification data: name, surname, nickname, personal code (national personal code), photo.

Contact details: address (correspondence/residential), telephone number, e-mail address;

Professional details: data on education and professional activity.

Data relating to relations with legal entities: data provided by You or obtained from public registries or third-party transactions for the purpose of forming a third-party transaction with the corresponding legal entity.

Financial data: data on invoices, accounts, property held, transactions, loans, income, liabilities, when we are required by law to collect such data.

Data we need to meet applicable compliance requirements, e.g., data needed for implementing measures to prevent money laundering and terrorist financing, such as date of birth, country of birth, sex, nationality, passport details, photo, information on people involved in politics.

Data related to Your participation in our events: position title, workplace, name and surname.

Data about the authors and their copyright work: title of the work, author.

Depending on the services provided, we may also process Your other Personal data.

We would appreciate if You inform us about any change in regards to Your Personal data.


We use the information provided by You to send You information about the latest events, services provided, as well as any planned events that may be of interest to You, including training sessions, seminars, art events, breakfast-briefings on relevant topics, etc.

We will use the Personal data You provided to us by sending Your CV or a cover letter. We will keep the data You provide for as long as the recruitment process lasts, or for a longer period only with Your consent to save Your CV in the database of potential employees of Strategy Labs.

We collect the information necessary for us to do business, sign contracts or start any business relationship with You. Such Personal data collection is strictly necessary to fulfil our obligations to You as well as for the provision of services to current and future Customers. In certain cases, we may receive Your data from other sources.


Agreement. Contract between us and You, which provides the basis for processing Your Personal data;

Consent. The consent given by You through which You have granted us the right to process Your Personal data for the purposes stated in Your consent and only for such purposes;

Legitimate interest. In some cases, in order to be able to perform the tasks arising from our activities, we process data on the basis of a legitimate interest. Before we begin to process Personal data on this basis, we verify that legitimate interests do not have a significant impact on the rights and freedoms of those persons.

Legal obligation. This obligation is imposed on us by the European Union and national legislation, such as the Law.

Most of the time, we receive Your Personal data from You, our data subjects, but in some cases, we may also receive Personal data from third parties. For example, Personal data is provided to us by a representative of a potential Customer, when we sign various agreements containing the representatives' data, and other cases.


Crowdbulls (for the purposes of administration, learning more about customers, and marketing);

Partners with whom we jointly provide services or products;

State institutions and authorities, other persons performing functions delegated to them by law (for example, law enforcement agencies, tax administration and financial crime investigation institutions).

Financial institutions, third parties (such as banks), auditors, legal and financial advisers; our authorised data processors, third parties, managing various registers (including loan registers, the Population Register, the Register of Legal Entities or other registers in which Personal data are processed) or other persons, who has right to provide Personal data from such registers.

Other persons who provide services to us, such as IT maintenance companies, communication and postal services providers, third parties, whose services we use to perform our Customer contracts or in the performance of administrative functions.

All service providers to whom we transmit Your Personal data must follow our instructions on how they process Your Personal data. Your Personal data transfer is governed by the data processing agreements we have concluded with independent service providers. All independent service providers are considered data processors and must guarantee that Your Personal data is processed with the same level of accuracy and care that we apply, and they will be held legally responsible for the non-performance of such guarantees. All service providers must have technical and organisational measures in place to ensure the same level of data protection as we do.


Right to access. You have the right to request access to any of Your Personal data that may be stored, including, for example, the right to know whether we process Your Personal data, which categories of Personal data we process, and the purposes for which we process the data.

Right to rectification - You have the right to request access to any of Your Personal data that may be stored, including, for example, the right to know whether we process Your Personal data, which categories of Personal data we process, and the purposes for which we process the data.

Right to disagree. In the cases referred to in legal acts, You have the right to disagree with the corresponding processing of Your Personal data, including, for example, the processing of Your Personal data for marketing purposes.

Right to erasure. You may also request that Your Personal data are deleted if they are no longer required for the purposes for which they were collected, or if You consider that the processing is illegal, or that Personal data must be deleted in order not to violate the legal requirement. In certain cases, under statutory regulation, where the laws of the relevant jurisdiction prohibit us from deleting our stored and processed data, we will not be able to fulfil such an obligation, even upon Your request, but we will inform You if any such obligation applies to us.

Right to data transfer. If Your Personal data are processed automatically with Your consent or on the basis of mutual contractual relations, You may request that we provide such Personal data in a structured, commonly used and electronic form. You can also request that Personal data be transferred to another controller. Please note that this can only be done where technically possible.

Right to withdraw Your consent. In cases where the data are processed with Your consent, You have the right to withdraw Your consent for data processing at any time.

Right to refuse marketing messages. You can opt out of our outgoing communications, in which we provide the information about our events or any other material that we think may be of interest to You, at any time. You can express Your refusal at any time by contacting us.


This Policy may be changed or updated. The latest version of it will always be published on our websites, so we invite You to familiarise Yourself with the latest version from time to time. This Policy was renewed on 31 December, 2022 and shall enter into force on the day of its publication on our website.


All information that You provide to us via social media (including messages, Like and Follow button clicks, and other communications) is controlled by the social network. We currently have Facebook, Twitter and LinkedIn accounts.

We may be linked to third-party sites; links can be made to and from such websites. We have not reviewed, have no influence, and are not responsible for the content or privacy practices of websites that we may be linked to. We do not support third-party sites and we are not responsible for any information, software or other products or materials contained therein as well as the results obtained through the use of such websites. We suggest that You always verify the information obtained through third party websites before acting upon it.