we at Marchi Group attach great importance to the protection of your personal data and would therefore like to explain to you in a transparent and understandable way what data we collect, how we use it and what rights you have with regard to your data.
1. person in charge
The responsible party within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws as well as other data protection regulations is:
mm Group Sales & Marketing GmbH
Auf dem Brümmer 6a
Phone: +49 231 90 256 888
2. data processing on our website
2.1 Access data
When visiting our website, access data is automatically collected and stored in server log files. This data includes:
- the IP address of the requesting end device
- Date and time of access
- Name and URL of the retrieved file
- Website from which the access is made (referrer URL)
- Browser used and operating system of the end device
- Name of the Internet service provider
This data is processed to ensure a smooth connection and comfortable use of our website and to ensure system security and stability. The legal basis for the processing of this data is Art. 6 para. 1 p. 1 lit. f DSGVO.
2.2 Contact form
If you send us inquiries via the contact form, your data from the form including the contact data you provided there will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. The processing of the data entered in the contact form is thus based exclusively on your consent (Art. 6 para. 1 p. 1 lit. a DSGVO). You can revoke this consent at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
3. use of Google Analytics
3.1 Scope and purpose of the processing
We use Google Analytics only with IP anonymization enabled. This means that the IP address of users within the Member States of the European Union or in other contracting states to the Agreement on the European Economic Area is shortened by Google and thus anonymized. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there.
On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator.
3.2 Legal basis
The legal basis for the processing of personal data is Art. 6 para. 1 lit. f DSGVO.
3.3 Duration of storage, possibility of objection and elimination
The data is automatically deleted after 14 months.
You can also prevent the collection by Google Analytics by clicking on the following link. An opt-out cookie will be set that prevents future collection of your data when visiting this website: Disable Google Analytics.
4. use of Google Ads
4.1 Scope and purpose of the processing
4.2 Duration of storage, possibility of objection and elimination
The data is automatically deleted after 90 days.
5. use of remarketing
5.1 Scope and purpose of the processing
5.2 Duration of storage, possibility of objection and elimination
The data is automatically deleted after 14 months.
6. use of the Facebook pixel
Our website uses the Facebook Pixel (also called Meta Pixel), a service provided by Meta Platforms Inc (1601 Willow Road, Menlo Park, CA 94025, USA). The Facebook Pixel enables us to analyze the behavior of visitors to our website and to track certain actions. In the process, certain user data is collected, processed and transferred to Meta in the USA.
The purpose of data collection and sharing through the Facebook Pixel is to understand user behavior on our website, optimize our advertising campaigns, and show you more relevant content and ads on Facebook. The following cookies may be used for this purpose:
- Cookie name: _fbp
- Purpose: used to distinguish and track your individual users.
- Lifetime: 90 days
- Cookie name: _fbpc
- Purpose: set only when a user arrives at your website via an ad and the destination URL contains the click identifier "fbclid".
- Lifetime: 90 days
We would like to point out that there are risks when transferring data to the USA in accordance with Art. 44 of the General Data Protection Regulation (GDPR). Meta Platforms Inc. has submitted to the EU-US Privacy Shield Framework to ensure adequate protection of personal data. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum/update
7. third-party analysis tools and tools
We use various third-party analysis tools and tools on our website to analyze and optimize the use of our website. These are the following tools:
We use Zapier to connect between different apps and services and to create automated workflows. Personal data may also be transmitted in the process, such as email addresses or usage data. Zapier processes this data only on our behalf and as instructed by us and is subject to EU data protection regulations.
We use Weglot to translate our website into different languages. In the process, personal data such as the IP address and the user's language setting may be transmitted. Weglot only processes this data on our behalf and as instructed by us and is subject to EU data protection regulations.
We have entered into an order processing agreement with Citrix and use Podio in accordance with the legal data protection requirements. Through the use of Podio, personal data may be transferred to the USA. We would like to point out that the USA is not a safe third country within the meaning of European Union data protection law and that there may be a lower level of protection for personal data due to the data protection laws of the USA. However, we have agreed with Citrix on appropriate safeguards to ensure that there is an adequate level of protection for personal data.
Demographic characteristics in Google Analytics:
This website uses the "demographic characteristics" function of Google Analytics. This allows reports to be generated that contain statements about the age, gender and interests of site visitors. This data comes from interest-based advertising from Google as well as visitor data from third-party providers. This data cannot be assigned to a specific person. You can deactivate this function at any time via the ad settings in your Google account or generally prohibit the collection of your data by Google Analytics as shown in the item "Objection to data collection".
We also use Webflow as a platform to design and manage our website. In doing so, personal data may be processed on servers outside the EU. However, we have entered into an agreement with Webflow that ensures that your personal data is processed in accordance with European data protection regulations.
We also use AWS as a cloud computing service to host and operate our website. In doing so, personal data may be processed on servers outside the EU. However, we have entered into an agreement with AWS that ensures that your personal data is processed in accordance with European data protection regulations.
8. recipients of personal data
As a matter of principle, your personal data will not be transferred to third parties unless we are legally obliged to do so or you have given us your consent.
9. your rights
You have the following rights with respect to your personal data:
Right of access (Art. 15 DSGVO)
Right of rectification (Art. 16 DSGVO)
Right to erasure (Art. 17 DSGVO)
Right to restriction of processing (Art. 18 DSGVO)
Right to data portability (Art. 20 DSGVO)
Right to object to processing (Art. 21 DSGVO)
If you wish to exercise your rights or have any questions about data protection at Marchi Group, please feel free to contact our data protection officer.
10. data security
We use technical and organizational security measures to protect your data against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. Our security measures are continuously improved in line with technological developments.
12SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the specified e-mail address and that you agree to receive the newsletter. No further data is collected or only on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.
The data entered in the newsletter registration form is processed exclusively on the basis of your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke your consent to the storage of the data, the email address and their use for sending the newsletter at any time, for example via the "unsubscribe" link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide us with for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted after you unsubscribe from the newsletter. Data stored by us for other purposes (e.g. e-mail addresses for the members' area) remain unaffected by this.
This website uses the services of MailChimp for sending newsletters. The provider is Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.
MailChimp is a service with which, among other things, the sending of newsletters can be organised and analysed. If you enter data for the purpose of receiving newsletters (e.g. email address), this data is stored on MailChimp's servers in the USA.
MailChimp is certified according to the "EU-US Privacy Shield". The "Privacy Shield" is an agreement between the European Union (EU) and the USA, which is intended to ensure compliance with European data protection standards in the USA.
With the help of MailChimp, we can analyse our newsletter campaigns. When you open an email sent with MailChimp, a file contained in the email (known as a web beacon) connects to MailChimp's servers in the USA. This makes it possible to determine whether a newsletter message has been opened and which links, if any, have been clicked on. In addition, technical information is recorded (e.g. time of retrieval, IP address, browser type and operating system). This information cannot be assigned to the respective newsletter recipient. It is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.
If you do not want any analysis by MailChimp, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. You can also unsubscribe directly on the website.
The data processing is based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide us with for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of MailChimp after you unsubscribe from the newsletter. Data stored by us for other purposes (e.g. email addresses for the member area) remain unaffected by this.
Conclusion of a data processing agreement
We have concluded a so-called "Data-Processing-Agreement" with MailChimp, in which we oblige MailChimp to protect the data of our customers and not to pass them on to third parties. This agreement can be viewed at the following link: https://mailchimp.com/legal/forms/data-processing-agreement/sample-agreement/.
15. transfer of personal data to a third country
A transfer of personal data to a third country (i.e. outside the EU or the European Economic Area) will only take place if this is necessary for the execution of your inquiries or orders and you have given us your express consent to do so or if this is required by law.