Privacy policy

The protection of your personal data is important to us. We process your data exclusively on the basis of the statutory provisions (GDPR, BDSG, TMG). In this privacy policy, we inform you about the type, scope and purpose of the processing of personal data on our Machinery-Market.eu platform and about your rights. We supplement the declaration with possible future extensions, such as newsletter functions, extended payment processing or additional analysis tools, if these are implemented.

1. name and contact details of the person responsible

The controller within the meaning of the General Data Protection Regulation (GDPR), other national data protection laws of the member states and other data protection regulations is

GSK Handels- und Service GmbH
An den Gewerbewiesen 17
67374 Hanhofen
Germany

Phone: +49 (0) 6344 / 9261444
Email: info@machinery-market.eu
Represented by: Sabrina Schrenk (Managing Director)
VAT ID No.: DE369727194
Register court: Ludwigshafen a. Rhein Local Court, HRB 69698

We operate a B2B platform for new and used machines of all kinds. Should we add further locations or cooperation partners in the future, we will update this declaration accordingly.

2. data protection officer

Currently, no legally prescribed data protection officer has been appointed, as the requirements of Section 38 BDSG are not met. If our company grows or data processing is expanded (e.g. by new employees or sensitive data categories), we will review this and appoint an officer if necessary.

For all data protection inquiries, please contact:

E-Mail: info@machinery-market.eu
Subject: Data protection / request / complaint

We will respond to your inquiries within the statutory period of one month (Art. 12 (3) GDPR), extendable to three months in the event of complexity.

3. collection and use of personal data

We collect and process personal data only insofar as this is necessary for the provision of our services, the fulfillment of contracts or legal obligations. We describe the most important processing operations in detail below. Should we introduce new functions in the future (e.g. app integration, AI-based recommendations or chatbots), we will supplement this statement.

a) When accessing the website (server log files)

The following data is automatically collected each time our website is accessed:

• IP address (anonymized according to EU law)
• Date and time
• Retrieved file / page
• Referrer URL
• Browser type, version and operating system
• Internet service provider
• Device type (desktop, mobile, tablet)
• Status code of the request
• Amount of data transferred

This data is used for error analysis, system security, abuse prevention and optimization of our website (e.g. improving loading times). It is not linked to other data sources unless there is a security incident (e.g. DDoS attack).

Legal basis: Art. 6 para. 1 lit. f GDPR. Storage period: 7-30 days, then deletion or anonymization.

b) For registration, user account and advertisement placement

We collect data when you create an account or place an advertisement:

• Salutation, first and last name
• Company name, address, telephone, e-mail
• Password (encrypted)
• VAT ID no., payment data (for subscriptions)
• IP address, timestamp
• Advertisement details (text, photos, prices)
• Messages between users
• Verification documents (e.g. trade license) in the future if necessary

Purpose: Account management, publication of advertisements, brokering of inquiries, invoicing. Legal basis: Art. 6 para. 1 lit. b GDPR. Storage period: Until account deletion + legal deadlines (10 years for invoices).

c) Contact form, e-mail and support

For inquiries by form or e-mail, we store your name, e-mail address, telephone number, message and IP address. Purpose: Processing your request. Legal basis: Art. 6 para. 1 lit. b GDPR. Storage period: Until completion + 3 years (for evidence).

In the future, we could introduce chat support (e.g. via LiveChat), whereby similar data is collected.

d) Newsletter and marketing (future)

If we introduce a newsletter (e.g. via WP Mail SMTP or Mailchimp), we collect your e-mail address, name and interests. Purpose: Sending information about new advertisements or platform updates. Legal basis: Art. 6 para. 1 lit. a GDPR (consent). Double opt-in procedure. Revocation possible at any time. Storage period: Until unsubscription.

e) Payments and financing (future)

For payments (e.g. for premium tariffs), we forward data to providers such as Stripe, PayPal or Klarna. Collected: Billing address, payment method, amount. Purpose: Payment processing. Legal basis: Art. 6 para. 1 lit. b GDPR. Storage period: 10 years (accounting).

4. cookies, tracking and analysis

We use cookies and tools to improve the user experience. Details in our cookie banner (revocation possible).

Tools used:

• Google Analytics: Analyze user behavior (IP anonymized)
• Google Ads: Optimize advertising campaigns
• Hotjar: Heatmaps, clicks, sessions
• Heap: Event tracking
• Matomo: Self-hosted analysis
• Meta Pixel: Retargeting on Facebook/Instagram
• LinkedIn Insight: B2B advertising
• Nextend Social Login: Login via social media
• In the future, possibly Mixpanel, Amplitude or Piwik PRO

Legal basis: Consent (Art. 6 para. 1 lit. a GDPR). Data transfer to third countries (e.g. USA): Standard contractual clauses + Data Privacy Framework.

5. disclosure of data

Data will be forwarded to:

• User (for inquiries: contact information)
• Payment provider (Stripe, PayPal)
• Hosting (LiteSpeed, server in EU)
• Analysis tools (see above)
• Social media (for sharing/login)
• Authorities (mandatory)
• Future logistics partner (DHL) if applicable

6. storage period

Data is deleted as soon as it is no longer required:

• Logfiles: 7-30 days
• Account data: Until deletion + 24 months
• Invoices: 10 years
• Analysis: 14-26 months
• Requests: Until completion + 3 years

7. your rights

You have the right to:

• Information
• Correction
• Deletion
• Restriction
• Transferability
• Contradiction
• Revocation
• Complaint (to the supervisory authority)

8. right of objection

Object by e-mail: info@machinery-market.eu.

9. data security

SSL encryption, firewalls, backups. Server in EU.

10. changes

We will adapt the declaration if necessary.