Thank you for your interest in our website. The protection of your personal data is very important to us. Below you will find information on the handling of your data that is collected through your use of our website. Your data will be processed in accordance with the statutory data protection regulations.
macx. GmbH
Wehrlestraße 13
81679 Munich, Germany
Phone: +49 89 2302141-19
E-mail: alexander@macx-transaction.com
Proliance GmbH / www.datenschutzexperte.de
www.datenschutzexperte.de
Leopoldstr. 21
80802 Munich, Germany
datenschutzbeauftragter@datenschutzexperte.de
When contacting the data protection officer, please state the company to which your request relates. Please refrain from enclosing sensitive information, such as a copy of your ID, with your request.
Our privacy policy should be simple and understandable for everyone. As a rule, the official terms of the General Data Protection Regulation (GDPR) are used in this privacy policy. The official definitions are explained in Art. 4 GDPR.
By using our website, information (e.g. IP address) may be accessed or information (e.g. cookies) may be stored in your end devices. This access or storage may involve further processing of personal data within the meaning of the GDPR.
In cases where such access to information or such storage of information is absolutely necessary for the technically error-free provision of our services, this is done on the basis of Section 25 (2) No. 2 TDDDG.
In cases in which such a process serves other purposes (e.g. the needs-based design of our website), this is only carried out on the basis of Section 25 (1) TDDDG with your consent in accordance with Art. 6 (1) (a) GDPR. Consent can be revoked at any time for the future. The provisions of the GDPR and the German Federal Data Protection Act (BDSG) apply to the processing of your personal data.
Further information on the processing of your personal data and the relevant legal bases in this context can be found in the following sections on the specific processing activities on our website.
This website is hosted by an external service provider (hoster). This website is hosted by IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany. Personal data collected on this website is stored on the hoster's servers. This may include IP addresses, contact requests, meta and communication data, website access and other data generated via a website.
We collect the data listed in order to ensure a smooth connection to the website and the technically error-free provision of our services. The processing of this data is absolutely necessary in order to make the website available to you. The legal basis for the processing of the data is our legitimate interest in the correct presentation and functionality of our website in accordance with Art. 6 para. 1 lit. f GDPR.
We have concluded an order processing contract with the provider in accordance with the provisions of Art. 28 GDPR, in which we oblige the provider to protect our customers' data and not to pass it on to third parties.
When you visit our website, it is technically necessary for data to be transmitted to our web server via your internet browser. The following data is recorded during an ongoing connection for communication between your Internet browser and our web server:
We collect the data listed in order to ensure a smooth connection to the website and the technically error-free provision of our services. The processing of this data is absolutely necessary in order to make the website available to you. The log files are used to evaluate system security and stability as well as for administrative purposes. The legal basis for the processing of the data is our legitimate interest in the protection and functionality of our website in accordance with Art. 6 para. 1 lit. f GDPR.
For reasons of technical security, in particular to defend against attempted attacks on our web server, this data, with the exception of your IP address, is stored by our web host for 8 weeks. Your IP address will be anonymized immediately after the data transmission due to your website visit and only stored in anonymized form.
The data may also be processed in anonymized form for statistical purposes. At no time will this data be stored together with other personal data of the user, compared with other databases or passed on to third parties.
Our website uses so-called “cookies”. Cookies are small text files that are either stored temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your end device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or they are automatically deleted by your web browser.
Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. the shopping cart function or language settings). Other cookies are used to evaluate user behavior or to display advertising.
The processing of data through the use of strictly necessary cookies is based on a legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR in the technically error-free provision of our services. For details on the processing purposes and legitimate interests, please refer to the information on the specific data processing.
The processing of personal data through the use of other cookies is based on consent in accordance with Art. 6 para. 1 lit. a GDPR. Consent can be revoked at any time for the future. If such cookies are used for analysis and optimization purposes, we will inform you about this separately in the context of this data protection declaration and obtain your consent in accordance with Art. 6 Para. 1 lit. a GDPR.
You can set your browser so that you
The cookie settings can be managed for the respective browsers under the following links
You can also manage cookies from many companies and functions that are used for advertising individually. To do this, use the relevant user tools, available at https://www.aboutads.info/choices/ or http://www.youronlinechoices.com/uk/your-ad-choices.
Most browsers also offer a so-called “do-not-track function”. If this function is activated, the respective browser informs advertising networks, websites and applications that you do not wish to be “tracked” for the purpose of behavior-based advertising and the like.
Information and instructions on how to edit this function can be found under the following links, depending on your browser provider:
You can also prevent scripts from loading by default. “NoScript” allows the execution of JavaScripts, Java and other plug-ins only on trusted domains of your choice. Information and instructions on how to edit this function can be obtained from the provider of your browser (e.g. for Mozilla Firefox at https://addons.mozilla.org/de/firefox/addon/noscript/).
Please note that deactivating cookies may limit the functionality of our website.
Changing cookie settings
You can revoke or change your cookie settings at any time. To do this, call up the cookie settings again via the link https://www.macx-transaction.com/en/#consent-change.
The social networks LinkedIn and Facebook are only integrated on our website as a link to the corresponding services. After clicking on the integrated text/image link, you will be redirected to the page of the respective provider. User information is only transferred to the respective provider after you have been forwarded. For information on the handling of your personal data when using these websites, please refer to the respective data protection regulations of the providers you use.
Your personal data will not be transferred to third parties unless
In addition, we use the following external service providers for the processing of our services, which we have carefully selected, commissioned in writing and with whom we have concluded order processing contracts in accordance with Art. 28 GDPR if necessary. These service providers are bound by our instructions and are regularly monitored by us. These include service providers for hosting, sending emails, maintenance and servicing of our IT systems, etc. The service providers will not pass this data on to third parties.
This website uses the Google Tag Manager of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). This service allows website tags to be managed via an interface. The Google Tag Manager only implements tags. This means that no cookies are used and only the user's IP address is transmitted to Google to establish a connection. The Google Tag Manager triggers other tags, which in turn may collect data. However, the Google Tag Manager does not access this data. If deactivation has been carried out at domain or cookie level, it will remain in place for all tracking tags if they are implemented with Google Tag Manager.
We use Google Tag Manager on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR.
Since Google may transfer personal data to affiliated companies and subcontractors in countries outside the EU and the EEA, further safeguards are required to ensure the level of data protection required by the GDPR. For the USA, there is an adequacy decision by the EU Commission pursuant to Art. 45 para. 1 GDPR with regard to companies with certification under the EU-U.S. Data Privacy Framework. Google LLC is certified in accordance with the EU-U.S. Data Privacy Framework and is therefore committed to complying with appropriate data protection standards, which can be viewed at the following link: https://www.dataprivacyframework.gov/s/participant-search
For potential transfers to other third countries outside the EU and the EEA for which there is no adequacy decision by the EU Commission, we have also agreed standard data protection clauses with the provider in accordance with Art. 46 para. 2 lit. c GDPR. These oblige the recipient of the data in the third country to process the data in accordance with the level of protection in Europe.
Our website uses Google Analytics, an internet analysis service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics uses so-called “cookies”.
Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website and compiling reports on website activity. Google will also use this information to provide the website operator with other services related to the use of the website and the internet. The IP address sent by your browser as part of Google Analytics will not be combined with other Google data. Processing is carried out in accordance with Art. 6 para. 1 lit. a GDPR on the basis of your consent.
We only use Google Analytics with activated IP anonymization. This means that your IP address is only processed by Google in abbreviated form.
We have concluded an order processing contract with the service provider in which we oblige them to protect our customers' data and not to pass it on to third parties.
As personal data may be transferred by Google to affiliated companies and sub-processors in countries outside the EU and the EEA, further protective mechanisms are required to ensure the level of data protection required by the GDPR. For the USA, there is an adequacy decision by the EU Commission pursuant to Art. 45 para. 1 GDPR with regard to companies with certification under the EU-U.S. Data Privacy Framework. Google LLC is certified in accordance with the EU-U.S. Data Privacy Framework and is therefore committed to complying with appropriate data protection standards, which can be viewed at the following link: https://www.dataprivacyframework.gov/s/participant-search
For potential transfers to other third countries outside the EU and the EEA for which there is no adequacy decision by the EU Commission, we have also agreed standard data protection clauses with the provider in accordance with Art. 46 para. 2 lit. c GDPR. These oblige the recipient of the data in the third country to process the data in accordance with the level of protection in Europe.
The Google Analytics terms of use and information on data protection can be accessed via the following links:
http://www.google.com/analytics/terms/de.html
https://www.google.de/intl/de/policies
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. Data at user and event level linked to cookies, user identifiers (e.g. user ID) and advertising IDs (e.g. DoubleClick cookies, Android advertising ID, IDFA [Apple identifier for advertisers]) will be deleted no later than 14 months after collection.
You can prevent the storage of cookies by adjusting the settings of your browser software accordingly. However, we would like to point out that in this case you may not be able to use all the functions of this website without restriction. You can also prevent Google from collecting the data generated by the cookie and analyzing your use of the website (including your IP address) and processing this data by Google by downloading and installing the browser plug-in available at https://tools.google.com/dlpage/gaoptout?hl=de.
We use Hubspot for marketing activities on our website. We use this integrated software solution for our own marketing, lead generation and customer service purposes. This includes email marketing, which regulates the sending of newsletters and automated mailings, social media publishing and reporting, contact management such as user segmentation and CRM, landing pages and contact forms. Hubspot uses cookies, small text files that are stored locally in the cache of your web browser on your end device and enable us to analyze your use of the website. Hubspot evaluates the information collected (e.g. IP address, geographical location, type of browser, duration of the visit and pages accessed) on our behalf so that we can generate reports on the visit and the pages visited. Information collected by Hubspot and the content of our website is stored on the servers of Hubspot's service providers. Such processing of your data is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR.
The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. The data will be deleted no later than 13 months after collection.
You can permanently object to the collection of data by Hubspot and the setting of cookies by preventing the storage of cookies through your browser settings.
Service provider: Hubspot
European branch: HubSpot Ireland Limited at 2nd Floor 30 North Wall Quay, Dublin 1, Ireland.
Address USA: HubSpot, Inc, 25 First St., 2nd floor, Cambridge, Massachusetts 02141, USA
Privacy policy: https://legal.hubspot.com/de/privacy-policy
EU-U.S. Data Privacy Framework:
Since personal data may be transferred by HubSpot to affiliated companies and subcontractors in countries outside the EU and the EEA, further safeguards are required to ensure the level of data protection required by the GDPR. For the USA, there is an adequacy decision of the EU Commission pursuant to Art. 45 para. 1 GDPR with regard to companies with certification under the EU-U.S. Data Privacy Framework. HubSpot, Inc. is certified under the EU-U.S. Data Privacy Framework and is therefore committed to complying with appropriate data protection standards, which can be viewed at the following link: https://www.dataprivacyframework.gov/s/participant-search.
For potential transfers to other third countries outside the EU and the EEA for which there is no adequacy decision by the EU Commission, we have also agreed standard data protection clauses with the provider in accordance with Art. 46 para. 2 lit. c GDPR. These oblige the recipient of the data in the third country to process the data in accordance with the level of protection in Europe.
Further information can be found in the provider's privacy policy: https://legal.hubspot.com/dpa
Our website uses the Hotjar web analytics service provided by Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta (“Hotjar”).
Hotjar's technology helps us to gain a better understanding of our users' experiences (e.g. how much time users spend on which pages, which links they click on, etc.). This helps us to tailor our offering to our users' feedback. Hotjar works with cookies and other technologies to collect data about the behavior of our users and their end devices, in particular the IP address of the device (is only recorded and stored in anonymized form during your website use), screen size, device type (unique device identifiers), information about the browser used, location (country only), preferred language for displaying our website. Hotjar stores this information on our behalf in a pseudonymized user profile.
We pay particular attention to the protection of your personal data when using this tool. For example, we can only track which buttons are clicked, the path of the mouse, how far the user scrolls, the screen size of the device, device type and browser information, geographical location (country only) and preferred language to display our website. Areas of the websites on which personal data about you or third parties is displayed are automatically hidden by Hotjar and are therefore not traceable at any time. The use of Hotjar and the associated processing of personal data takes place on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR.
Hotjar itself generally stores customer data in the European Union. However, Hotjar also passes on personal data to sub-service providers or third parties in countries outside the EU/EEA. In these cases, it is necessary to take further protective measures to ensure the level of data protection in accordance with the requirements of the GDPR. To ensure this, we have agreed with the provider that they will conclude standard data protection clauses for such transfers in accordance with Art. 46 para. 2 lit. c GDPR. These oblige the recipient in the third country to process the data in accordance with the level of protection in the EU.
Hotjar offers every user the option of using a “Do Not Track header” to prevent the use of the Hotjar tool so that no data about the visit to the respective website is recorded. This is a setting that is supported by all standard browsers in current versions. To do this, your browser sends a request to Hotjar to deactivate the tracking of the respective user. If you use our websites with different browsers/computers, you must set up the “Do Not Track header” separately for each of these browsers/computers. You can prevent the use of Hotjar by going to the opt-out page https://www.hotjar.com/legal/compliance/opt-out and clicking on “Deactivate Hotjar”.
You can find more information about Hotjar Ltd. and the Hotjar tool at https://www.hotjar.com. The privacy policy of Hotjar Ltd. can be found at https://www.hotjar.com/privacy
We use the conversion tracking technology and the retargeting function of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland on our website. This enables us to display personalized ads on LinkedIn to visitors to our website. For this purpose, a cookie, LinkedIn Insight Tag, is set in your browser with a validity of 120 days, which enables LinkedIn to recognize you if you visit this website and are logged into your LinkedIn account at the same time. LinkedIn uses this data to create anonymous reports on the performance of advertisements and information on website interaction. The information generated by the cookie is usually transferred to a server in the USA and stored there
The legal basis for the processing is your consent in accordance with Art. 6 para. 1 lit. a GDPR.
Since personal data is transferred to the USA, further protective mechanisms are required to ensure the level of data protection required by the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regulations and assurances from the recipient in the USA.
You can deactivate LinkedIn Insight conversion tracking and interest-based personalized advertising by opting out at the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out. Further information on data protection at LinkedIn can be found at: https://www.linkedin.com/legal/privacy-policy
Our website uses the online map service provider OpenStreetMap via an interface. This allows us to display interactive maps directly on the website and enables you to use the map function conveniently. The provider of the map service is OpenStreetMap Foundation (“OSMF”), St John's Innovation Center, Cowley Road, Cambridge, CB4 0WS, United Kingdom.
To use the functionalities of OpenStreetMap, it is necessary to store your IP address. The legal basis for the processing of your personal data is our legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest is to improve the user-friendliness of our website. Your internet browser establishes a connection to servers operated by OSMF in the United Kingdom and in countries in the EU (Ireland, Netherlands).
With regard to the transfer of data to the United Kingdom, there is an adequacy decision by the EU Commission within the meaning of Art. 45 para. 1 GDPR. As the operator of this website, we have no control over such connections and the processing of your data by OSMF. Further information on the processing of user data by OSMF can be found in the privacy policy:
https://wiki.osmfoundation.org/wiki/Privacy_Policy
On our website, we offer you an integrated app for quickly calculating a reliable estimated value for your company. The calculation is based on the information you provide to us using the corresponding form.
To provide this form and the associated application, we use the services of the service provider Bubble (Bubble Group, Inc., 22 W 21st Street, 2nd Floor, New York, NY 10010). Personal data (see below) that is collected when you use the form is transmitted to this service provider.
The above-mentioned form primarily asks for company-related information such as turnover or EBIT, which is initially (as a rule) not personal data. However, if you provide this information as the owner of a sole proprietorship, for example, it is personal data.
For technical reasons, it is also necessary to transmit technical information such as the IP address of your end device or an identifier assigned to it to us, Bubble and the service provider Cloudflare (see below) in order to transmit your data.
To improve the availability of the service, Bubble uses the so-called Content Delivery Network (CDN) of the service provider Cloudflare (Cloudflare, Inc., 101 Townsend St., San Francisco, CA 94107). A CDN is a geographically distributed computer network that can generally provide website resources faster and more reliably than the actual web server.
We process your personal data in connection with our company value calculator on the basis of our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. The legitimate interest lies in providing you with an app for the initial assessment of the company value in advance of our services in the area of corporate transactions. If data is processed for security purposes, our legitimate interests are those mentioned above in the “Server log files” section.
The legal basis for storing or accessing the cookies mentioned here is Section 25 (2) No. 2 TDDDG.
Since a transfer of your personal data outside the EU and the EEA is possible, further protective mechanisms are required to ensure the level of data protection of the GDPR. Insofar as a transfer to the USA takes place, there is an adequacy decision of the EU Commission pursuant to Art. 45 para. 1 GDPR with regard to companies with certification under the EU-U.S. Data Privacy Framework. Bubble Group, Inc. and Cloudflare are certified in accordance with the EU-U.S. Data Privacy Framework and are therefore committed to complying with appropriate data protection standards, which can be viewed at the following link: https://www.dataprivacyframework.gov/s/participant-search. Insofar as Bubble passes on your personal data to other sub-service providers based in a third country that are not certified in accordance with the EU-U.S. Data Privacy Framework, Bubble has agreed so-called standard contractual clauses of the EU Commission with the providers concerned in accordance with Art. 46 para. 2 lit. c GDPR. These oblige the recipient in the third country to process the data in accordance with the level of protection in the EU.
The above-mentioned cookies are valid for a period of 24 hours, so after this time no more personal data will be transmitted in connection with these cookies.
Technical information that can be assigned to you (see above, IP address, identifiers, etc.) is not stored permanently by Cloudflare, but generally only for a maximum of 24 hours as log data for security purposes. Longer-term storage takes place in anonymized form at most. Such log data is also stored by us or Bubble for security purposes (for more information on these purposes, see the “Server log files” section above) for a maximum of 20 days and then deleted.
We have concluded an order processing contract with the service provider Bubble in accordance with Art. 28 GDPR, in which we oblige Bubble in particular not to pass on the personal data received to third parties for its own purposes or to process it in any other way without our instructions. Bubble assures to oblige sub-processors such as Cloudflare in the same way.
If you send us inquiries via contact form or e-mail, your details from the inquiry form or your e-mail, including the personal data you provide there, will be stored by us to process the inquiry and in case of follow-up questions. You must provide an e-mail address and your first and last name in order to contact us. We will never pass on this data without your consent. The legal basis for processing the data is our legitimate interest in responding to your request in accordance with Art. 6 para. 1 lit. f GDPR and, if applicable, Art. 6 para. 1 lit. b GDPR if your request is aimed at concluding a contract. Your data will be deleted after final processing of your request, provided that there are no statutory retention obligations to the contrary. In the case of Art. 6 para. 1 lit. f GDPR, you can object to the processing of your personal data at any time.
We take appropriate technical and organizational measures in accordance with Art. 32 GDPR, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing as well as the different likelihood and severity of the risk to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk. This website uses SSL encryption for security reasons and to protect the transmission of confidential content.
The duration of the storage of personal data is based on the relevant statutory retention periods (e.g. from commercial law and tax law). After expiry of the respective period, the corresponding data is routinely deleted. If data is required for contract fulfillment or contract initiation or if we have a legitimate interest in further storage, the data will be deleted if it is no longer required for these purposes or if you have exercised your right of revocation or objection.
Below you will find information on the data subject rights that the applicable data protection law grants you vis-à-vis the controller with regard to the processing of your personal data:
The right to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if it was not collected by us, and the existence of automated decision-making including profiling and, if applicable, meaningful information about its details.
The right, in accordance with Art. 16 GDPR, to demand the immediate correction of incorrect or incomplete personal data stored by us.
The right to request the deletion of your personal data stored by us in accordance with Art. 17 GDPR, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.
The right to demand the restriction of the processing of your personal data in accordance with Art. 18 GDPR if the accuracy of the data is disputed by you, the processing is unlawful but you refuse to delete it and we no longer need the data, but you need it to assert, exercise or defend legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR.
The right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request transmission to another controller in accordance with Art. 20 GDPR
The right to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of the federal state of our registered office stated above or, if applicable, that of your usual place of residence or workplace.
The right to withdraw consent granted in accordance with Art. 7 para. 3 GDPR: You have the right to withdraw your consent to the processing of data at any time with effect for the future. In the event of revocation, we will delete the data concerned immediately, unless further processing can be based on a legal basis for processing without consent. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
If your personal data is processed by us on the basis of legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, insofar as this is done for reasons arising from your particular situation. Insofar as the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right to object without the requirement to specify a particular situation.
If you wish to exercise your right of revocation or objection, simply send an e-mail to alexander@macx-transaction.com.
The provision of personal data for the decision on the conclusion of a contract, the fulfillment of a contract or for the implementation of pre-contractual measures is voluntary. However, we can only make the decision within the framework of contractual measures if you provide such personal data that is necessary for the conclusion of the contract, the fulfillment of the contract or pre-contractual measures.
Automated decision-making or profiling in accordance with Art. 22 GDPR does not take place.
We reserve the right to adapt or update this privacy policy if necessary in compliance with the applicable data protection regulations. In this way, we can adapt it to the current legal requirements and take into account changes to our services, e.g. when introducing new services. The current version applies to your visit.
Status of this privacy policy: August 2024