Privacy & Data Protection Policy (GDPR)

YSide Capital S.à r.l. · Last updated: March 2026

1. Introduction

YSide Capital S.à r.l. ("we", "us", or "our") is committed to protecting the privacy and personal data of users of this website, in accordance with Regulation (EU) 2016/679 (the General Data Protection Regulation, "GDPR") and applicable Luxembourg data protection laws.

This Privacy Policy explains how we collect, use, store, and protect personal data when you visit our website.

2. Data Controller

The data controller responsible for the processing of personal data is:
YSide Capital S.à r.l.
Registered office: Luxembourg
Email: [email protected]

3. Personal Data We Collect

3.1 Data you provide voluntarily

  • Name
  • Email address
  • Company name
  • Professional contact details
  • Any information provided via contact forms or email communications

3.2 Data collected automatically

When you browse the website, certain technical data may be collected automatically, such as IP address, browser type and version, operating system, date and time of access, and pages visited. This data is used for security, statistical, and website optimization purposes.

4. Purposes of Processing

  • Responding to inquiries and contact requests
  • Managing professional communications
  • Ensuring the proper functioning and security of the website
  • Complying with legal and regulatory obligations
  • Improving website performance and user experience

Personal data is not used for automated decision-making or profiling.

5. Legal Basis for Processing

  • Consent (Article 6(1)(a) GDPR)
  • Legitimate interest (Article 6(1)(f) GDPR), such as operating and securing the website
  • Legal obligation (Article 6(1)(c) GDPR), where applicable

6. Data Retention

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable legal and regulatory obligations. When data is no longer required, it is securely deleted or anonymized.

7. Data Recipients and Transfers

Personal data may be accessed by authorized personnel of YSide Capital S.à r.l. and, where necessary, by trusted service providers (e.g., hosting or IT service providers), acting as data processors under appropriate contractual safeguards.

We do not transfer personal data outside the European Economic Area (EEA) unless adequate safeguards are in place in accordance with GDPR requirements.

8. Cookies

This website may use strictly necessary technical cookies to ensure proper functionality. We do not use tracking, advertising, or profiling cookies unless explicitly stated and consented to by the user. Where required, cookie consent mechanisms will be implemented.

9. Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, alteration, or disclosure. Despite these measures, no system can guarantee absolute security.

10. Your Rights under GDPR

Under the GDPR, you have the following rights:

  • Right of access to your personal data
  • Right to rectification of inaccurate or incomplete data
  • Right to erasure ("right to be forgotten")
  • Right to restriction of processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent at any time

Requests can be made by contacting us at: [email protected]

11. Right to Lodge a Complaint

You have the right to lodge a complaint with the competent supervisory authority. In Luxembourg, this is:

Commission nationale pour la protection des données (CNPD)
15, Boulevard du Jazz
L-4370 Belvaux
Luxembourg
www.cnpd.lu

12. Changes to This Policy

We reserve the right to update this Privacy Policy at any time. The version published on the website at the time of access shall apply.

13. Contact

For any questions regarding this Privacy Policy or the processing of personal data, please contact: [email protected]

Last updated: March 2026