FaxMonkey
Send fax

Privacy Policy

Protecting your personal data is important to us. Below we inform you about the processing of your data on faxmonkey.com.

Controller

Growthpaca GmbH
Blankenburger Str. 67
13156 Berlin

Server location

SSL-encrypted transmission - your documents are deleted after sending.

Privacy contact

support@faxmonkey.com

Table of contents

1. General information on data processing

We process personal data only insofar as this is necessary to provide our services. The processing is based on Article 6 paragraph 1 letter b GDPR (performance of a contract) and Article 6 paragraph 1 letter f GDPR (legitimate interests).

Personal data are deleted as soon as the purpose of storage ceases to apply or you ask us to delete them, provided there are no statutory retention obligations to the contrary.

2. Your rights as a data subject

You have the following rights in relation to your personal data:

  • Right of access (Article 15 GDPR) – You can request information about your processed data.
  • Right to rectification (Article 16 GDPR) – You can request the correction of inaccurate data.
  • Right to erasure (Article 17 GDPR) – You can request the deletion of your data.
  • Right to restriction of processing (Article 18 GDPR) – You can request restriction of data processing.
  • Right to data portability (Article 20 GDPR) – You can receive your data in a commonly used format.
  • Right to object (Article 21 GDPR) – You can object to the processing of your data.

You also have the right to lodge a complaint with a data protection supervisory authority. The supervisory authority responsible for us is the Berlin Commissioner for Data Protection and Freedom of Information.

3. Hosting and infrastructure

Our website is hosted with Cloudways (DigitalOcean). The server is located in Frankfurt am Main, Germany.

The hosting provider processes data on our behalf on the basis of a data processing agreement pursuant to Article 28 GDPR.

4. SSL-/TLS encryption

This website uses SSL-/TLS encryption for security reasons. You can recognise an encrypted connection by the padlock symbol in the address bar of your browser and by the fact that the address line begins with "https://". All data that you transmit to us are transferred in encrypted form.

5. Server log files

The hosting provider automatically collects and stores information in so-called server log files, which your browser automatically transmits:

  • Anonymised IP address (shortened)
  • Date and time of access
  • Page/file accessed
  • HTTP status code
  • Browser type and version
  • Operating system used
  • Referrer URL (previously visited page)

These data are evaluated solely to ensure trouble-free operation and to improve our offering. They are not merged with other data sources. Storage is based on Article 6 paragraph 1 letter f GDPR.

6. Fax transmission (Sinch)

We use the Sinch Fax service (Sinch AB, Stockholm, Sweden) for the technical transmission of faxes. When a fax job is placed, the following data are transmitted to Sinch:

  • The uploaded document
  • The recipient fax number
  • Your email address (for status notifications)

Sinch is a company based in the European Union (Sweden), so the GDPR applies directly. Processing is based on Article 6(1)(b) GDPR (performance of a contract). A data processing agreement pursuant to Article 28 GDPR has been concluded.

Your documents are automatically deleted after successful sending. We do not store documents longer than necessary to execute the order.

Further information can be found in Sinch's privacy notice: https://www.sinch.com/legal/privacy-notice/

7. Payment processing (Stripe Managed Payments)

We use Stripe Managed Payments (Stripe, Inc., USA) for payment processing. Stripe acts as the Merchant of Record (registered merchant) and is the legal contracting party for payment processing. Your payment data are transmitted directly to Stripe. We do not store credit card data on our servers.

Stripe processes your payment data, location data and device information for the execution of the transaction, automatic tax calculation and fraud prevention. Processing is based on Article 6(1)(b) GDPR (performance of a contract). Stripe is certified under the EU-US Data Privacy Framework.

Further information can be found in Stripe's privacy policy: https://stripe.com/de/privacy

8. Web analytics (Matomo)

We use Matomo to analyse website usage, an open-source software for web statistics. Matomo is operated on our own servers in Germany (self-hosted).

We use Matomo without cookies (cookieless tracking). Your IP address is anonymised so that it is not possible to draw conclusions about your person. No personal data are transmitted to third parties.

Analysis is based on our legitimate interest in the statistical evaluation of user behaviour for the optimisation of our offering (Article 6 paragraph 1 letter f GDPR). Due to the cookieless and anonymised configuration, consent is not required.

9. Email communication

If you contact us by email, the information you provide, including the contact details you have provided, will be stored by us for the purpose of processing the enquiry and for possible follow-up questions.

Processing is based on Article 6 paragraph 1 letter f GDPR (legitimate interest in responding to your enquiry). Your data are deleted as soon as your enquiry has been finally processed, provided there are no statutory retention obligations.

Last updated: January 2026