macrocyra
DE Start a project

Privacy

Privacy notice

How the Macrocyra website handles your personal data.

Effective June 2026. This notice covers the Macrocyra marketing website only.

Our commitment

Protecting your personal data is a priority for Macrocyra UG (haftungsbeschränkt). You can browse this website without actively giving us personal data, although technical access data is processed when the site loads. We process personal data when you choose to contact us, for example through the contact form, by email, or through the website assistant when it is available. Whenever we do, we follow the EU General Data Protection Regulation (GDPR) and German data protection law.

This notice covers this marketing website (macrocyra.com) only. Our products, such as InnovationFlow, have their own privacy notices.

Controller

Macrocyra UG (haftungsbeschränkt)
Balbronner Str. 4, 14195 Berlin, Germany
Represented by Clemens Chaskel, Managing Director
Phone: +49 30 69204740
Email: admin@macrocyra.com

Data protection contact

We are not legally required to appoint a Data Protection Officer under Art. 37 GDPR. For any data protection question, write to admin@macrocyra.com. We respond to GDPR rights requests within one month. If a request is complex or we receive several requests from you, we may extend this by up to two further months and will tell you why.

Accessing the website (hosting)

This website is hosted by Vercel Inc. (USA) on a global edge network. Each time you load a page, the host automatically processes technical access data in server logs:

  • IP address
  • date and time of the request
  • the page requested and the referring URL
  • browser type and version, and operating system

We use this only to deliver the site securely and reliably and to defend against misuse, not to identify you. Legal basis: our legitimate interest in a secure, working website (Art. 6(1)(f) GDPR). Access logs under our control are deleted or anonymised within 30 days unless a security incident requires longer retention.

Contact form and email

When you send the contact form or email us, we process the details you provide, your name, email address, optional company name, and your message, for one purpose: to read and answer your enquiry. Providing this data is voluntary and is not required by law or contract, but we cannot answer your enquiry without the required fields.

Form submissions are delivered to us by email through Plus Five Five, Inc. (Resend) (USA). Correspondence is stored in our business email systems. Legal basis: taking steps at your request before any contract (Art. 6(1)(b) GDPR) and our legitimate interest in responding to enquiries (Art. 6(1)(f) GDPR). We delete ordinary enquiries within 12 months after the last contact. If an enquiry leads to a business relationship, contract, invoice, legal claim or statutory retention duty, we keep the relevant correspondence for the required period, generally six years for business letters and up to ten years for tax and accounting records.

Website assistant

When the website assistant is available and you send it a message, we process the content of your message, the selected language, and the recent conversation history your browser sends with the request. Providing this data is voluntary, but the assistant cannot answer without it. We use it only to answer questions about Macrocyra and to prevent misuse.

The assistant is powered by Anthropic PBC (USA). Your messages may be transmitted to Anthropic to generate the answer. Please do not enter confidential, special-category, or unnecessary personal data. We do not use chat content for advertising and do not store chat histories in a website database. Application logs under our control are deleted or anonymised within 30 days unless needed to investigate abuse or a security incident. Legal basis: responding to your request (Art. 6(1)(b) GDPR) and our legitimate interest in operating a helpful, secure website assistant (Art. 6(1)(f) GDPR).

Local storage and cookies

This website sets no tracking, advertising or analytics cookies. We use one local storage entry, macrocyra-consent, to remember that you have seen the privacy notice and to avoid showing the notice repeatedly. This local storage entry remains in your browser until you delete it or clear your browser data.

This storage is strictly necessary for this preference function and does not require consent under Section 25(2) TDDDG. We use privacy-friendly, cookieless web analytics (see Web analytics below), which also sets no cookies and stores nothing on your device. If we ever add analytics, advertising or other storage that is not strictly necessary, it will load only after you actively agree. Where we rely on consent (Art. 6(1)(a) GDPR), you can refuse it and withdraw it later with effect for the future.

Web analytics

We use Vercel Web Analytics to understand, at an aggregate level, how the website is used (such as page views and referrers) so we can improve it. It is privacy-friendly and cookieless: it sets no cookies, does not use your IP address to identify you, and does not track you across other websites.

Provider: Vercel Inc. (USA), acting as our processor. Legal basis: our legitimate interest in measuring and improving the website (Art. 6(1)(f) GDPR). Because it stores no information on your device, it does not require consent under Section 25(2) TDDDG.

Recipients and sub-processors

We share personal data only where necessary and, for processors, under a data processing agreement (Art. 28 GDPR):

  • Vercel Inc. — website hosting, server logs, serverless functions and web analytics
  • Plus Five Five, Inc. (Resend) — delivery of contact-form emails
  • Anthropic PBC — website assistant message processing
  • business email provider — mailbox and correspondence storage

We do not sell personal data and do not share it for advertising.

International data transfers

Some providers are based in the USA, so personal data may be transferred to or accessed from a country outside the European Economic Area. We use data processing agreements and appropriate transfer safeguards, in particular the EU Standard Contractual Clauses and, where the provider is certified and the transfer is covered, the EU-US Data Privacy Framework. You can request information about the applicable safeguards and a copy of the relevant terms by emailing admin@macrocyra.com.

No automated decisions

We do not use the personal data collected through this website for automated decision-making, including profiling, within the meaning of Art. 22 GDPR.

Your rights

Under the GDPR you have the right to:

  • access your data (Art. 15) and receive a copy
  • have inaccurate data corrected (Art. 16)
  • have your data erased (Art. 17)
  • restrict processing (Art. 18)
  • data portability (Art. 20)
  • object to processing based on legitimate interests (Art. 21)
  • withdraw any consent at any time

To exercise any of these, email admin@macrocyra.com. We respond within one month. If a request is complex or you make several requests, we may extend the period by up to two further months and will tell you if so.

Data security

This site is served only over encrypted HTTPS, with security headers including HSTS and a content security policy. We select providers with documented security programmes and use encryption in transit. No internet transmission can be guaranteed completely secure, but we take appropriate technical and organisational measures to protect your data.

Complaints

If you believe we process your data unlawfully, you can lodge a complaint with a supervisory authority. The one competent for us is:

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Alt-Moabit 59-61, 10555 Berlin, Germany
datenschutz-berlin.de

You may also contact the authority where you live or work.

Changes to this notice

We may update this notice to reflect changes to the website or the law. The current version published here always applies. Last updated: June 2026.