FaxMonkey
Send fax

Privacy Policy

Protecting your personal data is important to us. Below we inform you about the processing of your data on faxmonkey.com.

Controller

Growthpaca GmbH
Blankenburger Str. 67
13156 Berlin

Server location

SSL-encrypted transmission - your documents are deleted after sending.

Privacy contact

support@faxmonkey.com

Table of contents

1. General information on data processing

We process personal data only insofar as this is necessary to provide our services. Processing is based on article 6(1)(b) GDPR (performance of a contract) and article 6(1)(f) GDPR (legitimate interests).

Personal data is deleted as soon as the purpose of storage ceases to apply or you ask us to delete it, provided that no statutory retention obligations prevent this.

2. Your rights as a data subject

You have the following rights with regard to your personal data:

  • Right of access (article 15 GDPR) – You can request information about the data we process about you.
  • Right to rectification (article 16 GDPR) – You can request the correction of inaccurate data.
  • Right to erasure (article 17 GDPR) – You can request the deletion of your data.
  • Right to restriction of processing (article 18 GDPR) – You can request the restriction of data processing.
  • Right to data portability (article 20 GDPR) – You can receive your data in a commonly used format.
  • Right to object (article 21 GDPR) – You can object to the processing of your data.

You also have the right to lodge a complaint with a data protection supervisory authority. The authority responsible for us is the Berlin Commissioner for Data Protection and Freedom of Information.

3. Hosting and infrastructure

Our website is hosted with Cloudways (DigitalOcean). The server is located in Frankfurt am Main, Germany.

The hosting provider processes data on our behalf on the basis of a data processing agreement pursuant to article 28 GDPR.

4. SSL/TLS encryption

For security reasons, this website uses SSL/TLS encryption. You can recognise an encrypted connection by the lock symbol in your browser's address bar and by the fact that the address begins with "https://". All data you transmit to us is transferred in encrypted form.

5. Server log files

The hosting provider automatically collects and stores information in so-called server log files, which your browser automatically transmits:

  • Anonymised IP address (shortened)
  • Date and time of access
  • Page/file accessed
  • HTTP status code
  • Browser type and version
  • Operating system used
  • Referrer URL (previously visited page)

This data is evaluated solely to ensure trouble-free operation and to improve our offering. It is not merged with other data sources. Storage is based on article 6(1)(f) GDPR.

6. Fax transmission (Sinch)

We use the Sinch Fax service (Sinch AB, Stockholm, Sweden) for the technical transmission of faxes. When a fax job is placed, the following data are transmitted to Sinch:

  • The uploaded document
  • The recipient fax number
  • Your email address (for status notifications)

Sinch is a company based in the European Union (Sweden), so the GDPR applies directly. Data processing takes place on the basis of Art. 6(1)(b) GDPR (performance of a contract). A data processing agreement pursuant to Art. 28 GDPR has been concluded.

Your documents are automatically deleted after successful transmission. We do not store documents longer than is necessary to fulfil the order.

You can find further information in Sinch's privacy notice: https://www.sinch.com/legal/privacy-notice/

7. Payment processing (Stripe Managed Payments)

We use Stripe Managed Payments (Stripe, Inc., USA) for payment processing. Stripe acts as Merchant of Record (registered merchant) and is the legal counterparty for payment processing. Your payment data are transmitted directly to Stripe. We do not store credit card data on our servers.

Stripe processes your payment data, location data and device information to execute the transaction, perform automatic tax calculation and prevent fraud. Processing is carried out on the basis of Art. 6(1)(b) GDPR (performance of a contract). Stripe is certified under the EU-US Data Privacy Framework.

Further information can be found in Stripe's Privacy Policy: https://stripe.com/de/privacy

8. Web analytics (Matomo)

We use Matomo for analysing website usage, an open-source software for web statistics. Matomo is operated on our own servers in Germany (self-hosted).

We use Matomo without cookies (cookieless tracking). Your IP address is anonymised so that it cannot be traced back to you. No personal data is transmitted to third parties.

Analysis is based on our legitimate interest in the statistical evaluation of user behaviour for the optimisation of our offering (article 6(1)(f) GDPR). Due to the cookieless and anonymised configuration, no consent is required.

9. Email communication

If you contact us by email, the information you provide, including the contact details you provide, will be stored by us for the purpose of processing the enquiry and for possible follow-up questions.

Processing is based on article 6(1)(f) GDPR (legitimate interest in responding to your enquiry). Your data will be deleted as soon as your enquiry has been finally processed, provided that there are no statutory retention obligations.

Last updated: January 2026