Privacy policy

General information

The following information provides an overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to personally identify you. Detailed information is provided in the sections below.

Data recording on this website

Who is responsible for recording data on this website?

The data on this website is processed by the website operator. The contact information is listed under “Information about the controller” in this privacy policy.

How do we record your data?

We collect data that you share with us, for example when you use the configurator, request a recommendation, or submit feedback.

Other data is recorded automatically by our IT systems or after your consent during your visit. This primarily includes technical information such as browser type, operating system, IP address, referrer URL, and time of access.

What do we use your data for?

Some data is processed to provide the website securely and without errors. Configurator and recommendation data is processed to generate the requested PC upgrade guidance. Technical data may be used to protect the service, prevent abuse, troubleshoot errors, and improve the service.

What rights do you have?

You have the right to receive information about your stored personal data, its source, recipients, and purposes. You may also have the right to rectification, erasure, restriction of processing, data portability, revocation of consent, objection to processing, and a complaint with a competent supervisory authority.

External hosting

This website is hosted externally. Personal data collected on this website is stored on the servers of the host. This may include IP addresses, access metadata, communication data, contact requests, configurator input, recommendation requests, and other data generated through this website.

External hosting serves the purpose of fulfilling the contract with potential and existing customers (Art. 6(1)(b) GDPR) and our legitimate interest in secure, fast, and efficient provision of our online services by a professional provider (Art. 6(1)(f) GDPR). If consent is requested for cookies or access to information on your device, processing is based on Art. 6(1)(a) GDPR and § 25(1) TDDDG; consent can be revoked at any time.

Our host processes data only to the extent necessary to fulfil its performance obligations and to follow our instructions.

Cloudflare

We use Cloudflare services provided by Cloudflare, Inc., 101 Townsend St., San Francisco, CA 94107, USA. Cloudflare provides a worldwide content delivery network, DNS, security, and filtering infrastructure. The information transfer between your browser and this website is technically routed through Cloudflare's network.

Cloudflare may analyze data traffic between your browser and this website and act as a filter between our infrastructure and potentially malicious Internet traffic. In this context, Cloudflare may use cookies or other technologies to recognize Internet users, but only for the purposes described here.

The use of Cloudflare is based on our legitimate interest in providing website offerings as securely and reliably as possible (Art. 6(1)(f) GDPR).

Data transmission to the US is based on the Standard Contractual Clauses of the European Commission. Cloudflare is also certified under the EU-US Data Privacy Framework. Further information is available at https://www.cloudflare.com/privacypolicy/ and https://www.dataprivacyframework.gov/participant/5666.

We have concluded a data processing agreement with Cloudflare. This contract requires Cloudflare to process personal data of website visitors only on our instructions and in compliance with the GDPR.

Data protection

The operators of this website take the protection of your personal data seriously. We handle your personal data confidentially and in compliance with statutory data protection regulations and this privacy policy.

Whenever you use this website, personal data may be collected. This privacy policy explains which data we collect, how we collect it, and what we use it for.

Data transmission via the Internet, including email communication, may be subject to security gaps. Complete protection against third-party access is not possible.

Information about the controller

The controller is the natural person or legal entity that determines the purposes and means of processing personal data, either alone or jointly with others.

Storage duration

Unless a more specific storage period is stated in this privacy policy, your personal data will remain with us until the purpose for which it was collected no longer applies. If you assert a justified request for deletion or revoke consent, your data will be deleted unless we have other legally permissible reasons for storing it, such as tax or commercial law retention periods.

General information on the legal basis for processing

If you have consented to data processing, we process your personal data on the basis of Art. 6(1)(a) GDPR. If special categories of data are processed, Art. 9(2)(a) GDPR may apply. If you have consented to the storage of cookies or access to information on your device, the processing is additionally based on § 25(1) TDDDG. Consent can be revoked at any time.

If your data is required for fulfilment of a contract or pre-contractual measures, we process it on the basis of Art. 6(1)(b) GDPR. If processing is required to fulfil a legal obligation, Art. 6(1)(c) GDPR applies. Processing may also be based on our legitimate interest pursuant to Art. 6(1)(f) GDPR.

Recipients of personal data

We cooperate with external parties in the scope of our business activities. We disclose personal data only if required for contract fulfilment, if we are legally obligated to do so, if we have a legitimate interest pursuant to Art. 6(1)(f) GDPR, or if another legal basis permits disclosure. Processors receive personal data only on the basis of a valid data processing agreement.

Your rights

• You may revoke consent to processing at any time with effect for the future.
• You may object to processing based on Art. 6(1)(e) or Art. 6(1)(f) GDPR for reasons arising from your particular situation. You may object to direct advertising at any time.
• You may lodge a complaint with a competent supervisory authority, in particular in the EU member state of your habitual residence, place of work, or the place of the alleged violation.
• You may request information about your stored personal data, its source, recipients, and purpose, and may request rectification or erasure.
• You may request restriction of processing under the statutory requirements and may request data portability where processing is automated and based on consent or contract.

Requests can be sent to info@maxmyframes.com.

SSL and TLS encryption

For security reasons and to protect confidential content, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the “https://” address and the lock icon in your browser.

Cookies and local browser storage

This website may use technically necessary cookies and local browser storage. Cookies are small data packages stored on your device. Session cookies are deleted when you close the browser; persistent cookies remain until they are deleted by you or your browser.

Technically necessary cookies and local storage may be used to provide requested functions, keep configurator progress available in your browser, maintain anonymous recommendation sessions, prevent duplicate submissions, protect against abuse, and keep the website secure. The legal basis is Art. 6(1)(f) GDPR unless a different legal basis is stated. If consent is requested for cookies or similar technologies, processing is based on Art. 6(1)(a) GDPR and § 25(1) TDDDG.

Server log files

The provider of this website automatically collects and stores information in server log files that your browser transmits automatically.

• Browser type and version
• Operating system
• Referrer URL
• Hostname of the accessing computer
• Time of the server request
• IP address

This data is processed on the basis of Art. 6(1)(f) GDPR. We have a legitimate interest in technically error-free presentation, optimization, and security of the website.

Configurator, recommendations, and feedback

When you use the configurator, we process hardware selections, workload goals, budget, region, preferred brands, and other recommendation parameters entered into the app. This data is used to generate the requested PC upgrade guidance and to protect the recommendation flow against abuse.

Recommendation summaries may be retained for the configured summary-retention window and deleted by routine cleanup. Feedback text and related metadata may be retained for up to 180 days unless a shorter deletion request applies.

Affiliate links and external retailers

Some recommendation and summary pages may contain outbound links to external retailers, including Amazon. These links may include an affiliate tracking parameter. If you click such a link, your browser leaves MaxMyFrames and connects to the external retailer. The destination retailer may process technical data such as your IP address, browser and device information, time of access, referrer URL, the requested page, and the affiliate tag contained in the link.

For Amazon links, Amazon is responsible for processing personal data on Amazon websites. Amazon may use cookies and similar technologies according to its own privacy notices. For Amazon.de, see Amazon.de Privacy Notice. For other regional Amazon marketplaces, please review the privacy notice on the destination Amazon website.

Lindwurm Digital GmbH may receive affiliate commission or attribution reporting when qualifying purchases are made through affiliate links. MaxMyFrames does not receive your Amazon login credentials, payment details, shipping address, or the contents of your Amazon account.

MaxMyFrames currently does not embed Amazon tracking pixels, Amazon advertising scripts, Amazon widgets, or Amazon iframes on this website. Amazon cookies are not set by MaxMyFrames before you click an outbound Amazon link. If this changes, this privacy policy will be updated and consent will be requested where required.

Cloudflare Turnstile

We use Cloudflare Turnstile on this website. The provider is Cloudflare, Inc., 101 Townsend St., San Francisco, CA 94107, USA.

Turnstile is used to check whether data input on this website is made by a human or by an automated program. For this purpose, Turnstile analyzes the behavior of website visitors based on a number of characteristics. This analysis starts automatically when a visitor enters a page or flow that uses Turnstile.

Turnstile may evaluate information such as IP address, time spent on the website, and user interaction signals. The data collected during the analysis is forwarded to Cloudflare.

The storage and analysis of data is based on Art. 6(1)(f) GDPR. We have a legitimate interest in protecting our web offerings from abusive automated access and spam. If consent is obtained, processing is based on Art. 6(1)(a) GDPR and § 25(1) TDDDG; consent can be revoked at any time.

The processing of data is based on Standard Contractual Clauses. Further information is available at https://www.cloudflare.com/cloudflare-customer-scc/ and https://www.cloudflare.com/cloudflare-customer-dpa/.

Cloudflare is certified under the EU-US Data Privacy Framework. Further information is available at https://www.dataprivacyframework.gov/participant/5666.