Privacy policy
How MACC processes your personal data, in accordance with the GDPR (EU 2016/679) and the Belgian law of 30 July 2018.
Who processes your data
Controller: MA CLOUD CONNECT SRL (trade name: MACC), Vierwindenlaan 41, 1780 Wemmel, Belgium. Belgian company number 0789.569.409.
Contact: contact@macc.tech
No DPO appointed at this time (company not subject to the Art. 37 GDPR obligation). Rights requests are handled directly by management.
Categories of data
Contact form (/contact page): name, company, work email, type of engagement, free-text message. Data voluntarily provided by the user.
Technical server logs: IP address, user-agent, timestamp, requested URL. Retained 30 days for security (abuse detection, scanners).
Technical cookie lang: language preference. No analytics purpose. See the cookies page.
No third-party trackers are loaded (no Google Analytics, Meta Pixel, etc.).
Why we process this data
Reply to your contact request (legal basis: legitimate interests of the controller and the user, Art. 6.1.f GDPR).
Site security and abuse prevention (legitimate interests, Art. 6.1.f).
Legal compliance (accounting and tax obligations if an engagement is signed, Art. 6.1.c).
How long we keep your data
Unsuccessful contact request: 12 months after last exchange.
Signed engagement: operational data deleted 90 days after engagement end. Tax/accounting data retained 7 years (Belgian legal obligation).
Technical logs: 30 days.
Who has access to your data
Your data is accessible only to authorised MACC personnel, strictly within the scope of their mission.
Technical sub-processors: web hosting (Cloudflare Ireland Ltd., European entity — see Legal notice), email provider, enterprise password manager. Up-to-date list available on request at contact@macc.tech. Cloudflare is covered by EU Standard Contractual Clauses for any non-EU transfer; other sub-processors are located within the EU.
No sale, rental or transfer of your data to third parties for commercial purposes.
Data and EU borders
No transfer of your data outside the European Union within the operation of this site and standard engagements.
For an engagement involving a specific transfer (e.g., testing on customer infrastructure outside the EU), a dedicated contractual framework (EU Standard Contractual Clauses) will be established before any processing.
What you can request
Under Articles 15-22 GDPR, you have the following rights: access, rectification, erasure, restriction, portability, objection.
To exercise these rights, email contact@macc.tech with proof of identity. Reply within 30 days (extendable to 60 days with reasoned justification, Art. 12.3 GDPR).
You also have the right to lodge a complaint with the Belgian Data Protection Authority (dataprotectionauthority.be).
How we protect your data
Hardened workstations (full-disk encryption, MFA, EDR), enterprise password manager, centralised access logs.
Sensitive communications via end-to-end encrypted channels on request (Signal, ProtonMail, OpenPGP). See the Trust page.
In the event of a data breach likely to result in a risk to your rights, notification to the DPA and to data subjects within 72 hours (Art. 33 GDPR).
A question about this page?
Any request relating to our policies goes by email.
Contact MACC