Pssstā€¦
Wondering why youā€™re not on empuxa.com? šŸ¤”

Iā€™ve closed the companyā€”again. But my mission remains the same: helping companies grow and scale their products. Now, Iā€™m keeping things simpleā€”just me, right here.

Need assistance? šŸ‘‰ Let's talk!

ā€”Marco

1. General Information

Marco Raddatz GmbH takes the protection of your data very seriously. On this page, we provide detailed information about when and to what extent we collect and use your data, as well as the circumstances under which this data may be shared with third parties.

If a data subject wishes to use the services of Marco Raddatz GmbH via our website, the processing of personal data may be required. If such processing is necessary and there is no legal basis for it, we will generally obtain the consent of the data subject.

The processing of personal data, such as a personā€™s name, address, email address, or phone number, is always carried out in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. With this privacy policy, we inform you about the type, scope, and purpose of the personal data we collect, use, and process. Additionally, data subjects are informed of their rights under this policy.

As the data controller, Marco Raddatz GmbH has implemented numerous technical and organizational measures to ensure the most comprehensive protection of the personal data processed through this website. However, data transmissions over the Internet may have security vulnerabilities, meaning absolute protection cannot be guaranteed. For this reason, data subjects are free to provide us with personal data through alternative means.

2. Definitions

The privacy policy of Marco Raddatz GmbH is based on the terminology used in the General Data Protection Regulation (GDPR) as enacted by the European Union.

Our privacy policy is intended to be easy to read and understand for both the public and our customers and business partners. To ensure clarity, we provide definitions of key terms used in this document.

a. Data Subject

A data subject is any identified or identifiable natural person whose personal data is processed by the data controller.

b. Personal Data

Personal data refers to any information relating to an identified or identifiable natural person ("data subject"). A person is considered identifiable if they can be identified, directly or indirectly, through an identifier such as a name, identification number, location data, online identifier, or other factors related to their physical, physiological, genetic, mental, economic, cultural, or social identity.

c. Processing

Processing refers to any operation or series of operations performed on personal data, whether by automated means or not. This includes collection, recording, organization, structuring, storage, adaptation, modification, retrieval, consultation, use, disclosure by transmission, dissemination, or other means of making data available, alignment, restriction, erasure, or destruction.

d. Restriction of Processing

Restriction of processing refers to marking stored personal data to limit its future processing.

e. Pseudonymization

Pseudonymization is the processing of personal data in a manner that ensures the data can no longer be attributed to a specific data subject without additional information. This additional information must be stored separately and be subject to technical and organizational measures that prevent the personal data from being linked to an identified or identifiable person.

f. Data Controller

A data controller is a natural or legal person, public authority, agency, or other body that determines the purposes and means of processing personal data, whether alone or jointly with others.

g. Processor

A processor is a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the data controller.

h. Recipient

A recipient is a natural or legal person, public authority, agency, or other body to which personal data is disclosed, regardless of whether it is a third party.

i. Third Party

A third party is any natural or legal person, public authority, agency, or body other than the data subject, the data controller, the processor, and those authorized to process personal data under the direct authority of the controller or processor.

j. Consent

Consent is any freely given, specific, informed, and unambiguous indication of a data subjectā€™s wishes. It is given through a statement or a clear affirmative action that signifies agreement to the processing of their personal data.

3. Data Controller and Contact Information

The data controller under the GDPR and other applicable data protection laws is:

Marco Raddatz GmbH
ReesenbĆ¼ttler Redder 38a
22949 Ammersbek
Germany

Phone: +49 4102 7780090
Email: [email protected]
Website: empuxa.com

A data protection officer is not appointed, as there is no legal requirement to do so. For all privacy-related inquiries, please contact [email protected].

4. Collection and Processing of Personal Data

a. When Visiting the Website

When you visit our website, certain data is automatically transmitted by your browser and stored in server logs. This includes:

  • Accessed website name
  • Requested page content and transfer protocol
  • Browser type and version
  • Operating system
  • IP address
  • Time of request
  • Data volume transferred
  • HTTP status code
  • Referrer URL (previously visited page)
  • Requesting provider

This data is not merged with other data sources. The legal basis for this processing is Art. 6(1)(b) GDPR (contract fulfillment or pre-contractual measures).

b. When Contacting Us

If you contact us (e.g., via email), we store your contact details and request information to process your inquiry and follow up. We do not share this data without your consent.

The legal basis for this processing is our legitimate interest in responding to inquiries (Art. 6(1)(f) GDPR). If the request relates to a contract, Art. 6(1)(b) GDPR applies.

You may request the deletion of your data at any time by sending an email. Your data will be stored until you request its deletion, withdraw your consent, or the purpose of storage is no longer relevant.

c. When Subscribing to Our Newsletter

If you subscribe to our newsletter, we process your email address and, if provided, your name to send you relevant updates. The legal basis for this processing is your explicit consent (Art. 6(1)(a) GDPR).

You can withdraw your consent at any time by clicking the "unsubscribe" link in any email or contacting us at [email protected].

d. CRM and Lead Management

When you interact with our website (e.g., submitting a contact form or signing up for a demo), we may store your information in HubSpot to track communication and improve our customer service.

The legal basis for this processing is legitimate interest (Art. 6(1)(f) GDPR), as it helps us manage inquiries efficiently. If you do not wish for your data to be stored in our CRM, you can request deletion at any time by contacting us.

e. When Registering an Account and Using Our Services

When you create an account and use our services, we process the following personal data:

  • Name
  • Email address
  • Login credentials (encrypted)
  • Address (if provided)
  • Company details (if applicable)
  • Payment and billing information (if applicable)
  • Usage data related to your activity on our platform
  • Any additional data you voluntarily provide in your profile or account settings

We process this data to:

  1. Provide access to your account and our services (Art. 6(1)(b) GDPR)
  2. Improve and personalize your experience (Art. 6(1)(f) GDPR)
  3. Process transactions and fulfill contractual obligations (Art. 6(1)(b) GDPR)
  4. Comply with legal and security requirements (Art. 6(1)(c) GDPR)

You can request deletion of your account and associated data at any time by contacting us at [email protected].

5. Data Sharing

Your personal data is only shared when:

  • You have given explicit consent (Art. 6(1)(a) GDPR).
  • Sharing is necessary to establish, exercise, or defend legal claims (Art. 6(1)(f) GDPR).
  • We are legally obligated to share the data (Art. 6(1)(c) GDPR).
  • Sharing is required for contract fulfillment (Art. 6(1)(b) GDPR).

In cases where data is transferred to third parties, it is limited to the minimum necessary for the specific purpose. We do not sell or exchange personal data.

Use of Amazon SES for Email Communication

We use Amazon Simple Email Service (SES) to send both transactional and marketing emails. This includes account-related notifications (e.g., registration confirmations, password resets) as well as promotional emails for subscribers.

Amazon SES processes your email address securely and does not use it for its own purposes.

For more information, refer to Amazon's privacy policy: https://aws.amazon.com/privacy/

6. Cookies

Our website uses cookies exclusively for session management, security, and essential functionality.

You can configure your browser to:

  • Notify you when cookies are set
  • Allow cookies only in specific cases
  • Block cookies entirely
  • Delete cookies automatically when closing your browser

Disabling cookies may limit the functionality and user experience of this website.

7. Analytics and Third-Party Tools

We use Umami, a self-hosted analytics tool, to evaluate visitor activity on our website. This tool helps us understand user behavior without compromising privacy.

šŸ“Œ Important: Umami does not store personally identifiable information (PII), such as IP addresses. It operates without cookies and does not track users across websites. No data is shared with third-party providers.

Additionally, our website may use Cloudflare for performance optimization and security. Cloudflare processes minimal technical data (e.g., IP addresses, request metadata) to protect our website from security threats (e.g., DDoS attacks) and to improve performance. This is done under legitimate interest (Art. 6(1)(f) GDPR).

For further details, please refer to Cloudflareā€™s Privacy Policy.

Use of Cloudflare Turnstile

To protect our website from spam and abuse, we use Cloudflare Turnstile, a privacy-focused CAPTCHA alternative. Turnstile helps verify that form submissions are made by real users without relying on traditional CAPTCHA challenges.

When you interact with Turnstile (e.g., when submitting a form), Cloudflare may process the following data:

  • IP address
  • User behavior during interaction
  • Browser and device information
  • Website request metadata

This processing is based on our legitimate interest (Art. 6(1)(f) GDPR) in securing our website against automated abuse and malicious activity.

For more details, please refer to Cloudflareā€™s Privacy Policy.

8. Applicant and Hiring Process

We process personal data of applicants to manage hiring procedures. Processing may also occur electronically, such as when an applicant submits documents via email or an online form.

If an employment contract is concluded, the provided data will be stored in compliance with legal regulations. If no contract is concluded, application documents will be automatically deleted two months after rejection, unless legal retention obligations apply.

If no response is provided within four weeks, the application is considered rejected, and the two-month deletion period begins from that date. Data will not be retained in a candidate pool unless explicitly requested by the applicant.

9. Data Subject Rights

Under the GDPR, you have the right to:

  • Access (Art. 15 GDPR) ā€“ Request details about your stored data.
  • Rectification (Art. 16 GDPR) ā€“ Have incorrect or incomplete data corrected.
  • Erasure (Art. 17 GDPR) ā€“ Request deletion of your data, unless legal obligations prevent it.
  • Restriction of Processing (Art. 18 GDPR) ā€“ Restrict processing under specific conditions.
  • Data Portability (Art. 20 GDPR) ā€“ Receive your data in a structured, machine-readable format.
  • Withdrawal of Consent (Art. 7(3) GDPR) ā€“ Revoke consent at any time.
  • Lodge a Complaint (Art. 77 GDPR) ā€“ File a complaint with a data protection authority.

10. Right to Object

If your personal data is processed based on legitimate interests (Art. 6(1)(f) GDPR), you have the right, under Art. 21 GDPR, to object to the processing of your personal data on grounds relating to your particular situation.

If your objection concerns direct marketing, including email campaigns, retargeting ads, or personalized content, you have a general right to object at any time without providing a specific reason. In such cases, we will immediately cease processing your data for this purpose.

11. Contact for Privacy Matters

Your data privacy is important to us. You have the right to access, correct, restrict, or delete your stored personal data at any time.

For privacy-related inquiries, contact us at [email protected] or refer to our Imprint.

12. Data Security

We use SSL encryption (Secure Socket Layer) to protect data transmissions. Encrypted connections can be identified by the lock icon in your browserā€™s address bar.

With SSL/TLS encryption enabled, your transmitted data cannot be read by third parties. We also implement technical and organizational security measures to prevent unauthorized access.

13. Updates and Changes

This privacy policy is effective as of February 18, 2025.

We may update this policy due to changes to our website, new legal requirements, or regulatory changes. The latest version is always available at:

https://empuxa.com/privacy-policy