3.1 Categories of personal data

Markant processes data about current and former customers or interested parties as well as their representatives and employees to the extent permitted:

• Personal information: In particular, title, first and last names, business address, telephone number and email address, company function, login data in the protected customer area, company tax no., tax no., VAT no., GLN no., geographical scope of business activities, turnover and bank details;
• Register data: Those personal data from publicly accessible registers, public administration sources or other third-party sources (e.g. service providers), such as information on members of the representative body;
• Log data:
  • Data that Markant Server automatically records when you visit Markant websites, e.g. your IP address, date and time, the website from which you visit Markant (referrer URL), type and version of browser, operating system used, the type of browser software used, host name of the accessing computer, domain name of your internet service provider and the pages of the Markant website you visit;
  • Cookies, pixels, unique identifiers and other similar technologies to collect and process information from different channels and devices to recognise you and allow you to interact with Markant, to remember your preferences and to customise content that Markant provides to you;
  • Records of correspondence and other communications between you and Markant, e.g. via the contact form and social media communications;
• Financial information/transactions: This includes bank details and financial flows;
• Internal/external identifiers: Are assigned by Markant or third parties;
• Correspondence: Details of interactions between Markant and you, including any correspondence, both written and verbal.
• Images of people: Photographic and/or videographic images.

3.2 Purpose of processing & legal basis

Your personal data is processed for the purposes listed below, in each case stating the legal basis and, if the data was not collected from you, with a corresponding reference to the data source:

• Customer onboarding procedure:
  (Categories of personal data concerned: Personal information, register data, log data, financial information, internal/external identifiers, correspondence)
  • With regard to the conclusion of a contract with you. The legal basis for this is the implementation of pre-contractual measures (art. 6(1)(b) GDPR);
  • In order to examine and initiate potential business relationships and the necessary contact with the data subjects, Markant processes personal data provided to Markant by interested parties in the context of contract initiation, by existing contractual partners (collection from a third party) or by Markant Group companies on behalf of Markant. The legal basis for this is Markant's legitimate interest in initiating and maintaining business relationships (art. 6(1)(f) GDPR).

• Contract fulfilment and processing:

(Categories of personal data concerned:Personal information, register data, log data, financial information/transactions, internal/external identifiers, correspondence)

• To fulfil and process the (pre-)contractual relationship, including the provision and execution of Markant's products and services (e.g. setting up the necessary technical settings and access) and the collection of contractual claims. The legal basis for this is the implementation of pre-contractual measures and fulfilment of the contract in accordance with art. 6(1)(b) GDPR.

• Customer relationship management and acquisition

(Categories of personal data concerned:Personal information, register data, log data, financial information/transactions, internal/external identifiers, correspondence)

• To manage your business relationship with Markant, including communication with you regarding the services and products you have purchased from Markant and to handle customer service-related questions and complaints. Depending on the context, the legal basis for this is the fulfilment and processing of the contractual relationship (art. 6(1)(b) GDPR)or Markant's legitimate interest in ensuring efficient administration, communication and customer service in the context of your business relationship with Markant (art. 6(1)(f) GDPR);
  • To learn more about you as a customer, your preferences and your usage behaviour in relation to Markant services and products and to evaluate which of our services, products and events may be of interest to you. This also includes segmentation, e.g. by analysing which Markant websites, newsletters, services and products you use and through the use of tracking technologies (server-side). The legal basis is Markant's legitimate interest in the continuous improvement and individualisation of Markant offers and in efficient and targeted marketing (art. 6(1)(f) GDPR);
  • To contact you for direct marketing purposes regarding (similar) services and products that Markant believes may be of interest to you. The legal basis for this is Markant's legitimate interest in communicating directly with Markant customers to promote sales and customer loyalty, if the Markant services and products advertised are similar to those for which Markant has already concluded a contract with you and Markant has received your contact details as part of the fulfilment of the contract (art. 6(1)(f) GDPR). Otherwise, Markant relies on your consent (Art. 6(1)(a) GDPR);
  • To analyse the results of our marketing activities in order to measure their effectiveness and relevance. The legal basis is Markant's legitimate interest in the continuous improvement and individualisation of Markant offers and in efficient and targeted marketing (art. 6(1)(f) GDPR).

• Product development and improvement

(Categories of personal data concerned: Personal information, log data, financial information/transactions, internal/external identifiers, correspondence)

• For measures to improve Markant services and products and the technologies used by Markant, including reviewing and updating Markant systems and processes including their user-friendliness. The legal basis for this is Markant's legitimate interest in improving and maintaining the Markant information architecture (art. 6(1)(f) GDPR);
  • For market research purposes in order to find out how Markant can improve its existing services and products or what other services and products Markant can offer. The legal basis for this is Markant's legitimate interest in optimising the adaptation and marketing of the Markant offering (art. 6(1)(f) GDPR).

• Publications

(Categories of personal data concerned:Personal information, internal/external identifiers, depiction of persons)

• For communication and marketing purposes, by Markant publishing your photo and video recordings on Markant websites, social media (e.g. Facebook, Instagram, LinkedIn and YouTube), in press releases and advertisements (e.g. in ONE Markant magazine), event documentation for events organised by Markant (e.g. for Markant trade forums) and printed matter (e.g. flyers, brochures and posters). The processing takes place on the basis of your consent (art. 6(1)(a) GDPR); 
  • As part of the publication of the Markant Sustainability Report, in which Markant processes personal data in pseudonymised form, in particular for the determination of key figures. The legal basis for this is Markant's legitimate interest in transparently recording Markant's sustainability performance and informing Markant contact persons comprehensively about Markant's sustainability-related commitment (art. 6(1)(f) GDPR). 

• Other purposes:

(Categories of personal data concerned: Personal information, register data, log data, financial information/transactions, internal/external identifiers, correspondence)

• To carry out transaction and statistical analyses and similar analyses (e.g. commercial analyses, process efficiency analyses). The legal basis for this is Markant's legitimate interest in continuously improving Markant's business processes and offerings by enabling Markant to make informed decisions based on these analyses (art. 6(1)(f) GDPR);
  • To exercise Markant's obligations and/or rights towards you or third parties and to respond to actual or potential proceedings, requests or investigations by the competent authorities or judicial authorities. The legal basis for this is Markant's legitimate interest in the assertion or defence of legal claims and to respond to the aforementioned requests (art. 6(1)(f) GDPR);
  • For the collection of data to ensure the security of buildings, premises, employees, visitors, property and information located on or accessible from the premises, to prevent unauthorised access to secure premises and, if necessary, to investigate (e.g. keeping building access logs and video surveillance recording to prevent, detect and investigate theft of equipment or assets of Markant, visitors or employees). The legal basis for this is Markant's legitimate interest in the protection of the aforementioned assets (art. 6(1)(f) GDPR).

Markant uses both automated and manual methods to process your personal data for the above purposes. Automated methods are combined with manual methods. These systems can analyse your data, for example, to identify patterns that are manually checked and interpreted by humans. There is no automated decision-making in accordance with art. 22 GDPR.

4. Markant websites, social media and tracking

For more details on how Markant processes your personal data when you visit Markant websites, on social media or when using tracking technologies and other methods (e.g. cookies, pixels, tags), please refer to the Privacy Notice "Markant websites, social media and tracking".

5. Access to and disclosure of personal data

5.1. Within the Markant Group

As the parent company of the Markant Group, Markant shares personal data with other Markant Group companies that process your data on behalf of and at the request of Markant. In particular, Markant passes on personal data to Markant European Payment Services GmbH (MEPS), which is also a contractual partner of the European Invoicing and Settlement Agreement.

Companies of the Markant Group that receive your personal data are in particular

• National companies of the Markant
• Service companies (incl. MEPS) of Markant

5.2. Outside the Markant Group

Markant also shares your personal data with external third parties for the purposes specified in this Privacy Notice. These third parties include the following categories of recipients:

• IT hardware, software, outsourcing providers (incl. providers of electronic signatures and data services)
• Financial institutions and insurance service providers
• Marketing and communications companies
• Customers of Markant 
• Service providers for dispatch, print jobs, data destruction and storage of digital files
• Lawyers, auditors and similar specialised consultants who provide legal, auditing or consulting services
• Public bodies and institutions (e.g. tax office, supervisory authority)

Markant would like to point out that Markant works together with processors who have concluded a Data Processing Agreement with Markant and have thus undertaken in writing to comply with data protection.

5.3. Cross-border data transfers

The personal data transmitted within or outside the Markant Group is processed in particular in Switzerland, in the countries of the European Economic Area (EEA) and in the USA if Markant uses service providers or sales partners for the provision of Markant services, for the provision and maintenance of Markant products and for sales and marketing, among other things. However, worldwide processing is conceivable.

When transferring personal data outside the EEA, Markant will include the standard data protection clauses issued by the European Commission (where applicable) for the transfer of personal data outside the EEA in Markant contracts with these recipient (these are the clauses issued pursuant to art. 46(2) GDPR). You can request a copy of these standard data protection clauses at datenschutz(at)markant.com.

For transfers of your personal data from the EEA to Switzerland, Markant bases the transfers on the adequacy decision of the EU Commission on Switzerland, which can be accessed here.

Further information about the rules on data transfers outside the EEA, including the safeguards on which Markant relies, can be found on the European Commission's website here.

6. Storage period

Markant will only process and store your personal data for as long as necessary to fulfil the relevant purpose or in accordance with legal, regulatory or internal requirements. In certain cases, your personal data may be stored and processed beyond the termination of the business relationship, in particular for compliance purposes, to fulfil legal and regulatory requirements or if this is in Markant's legitimate interest.

As a rule, Markant stores your personal data for a period of up to ten years after termination of the business relationship due to legal regulations and taking into account the statutory limitation period during which claims can be asserted against Markant. After expiry of this period, Markant will only continue to store your personal data if there is a legal obligation to retain it, if there are still outstanding claims or complaints that make further storage reasonably necessary, or if this is necessary for regulatory reasons.

7. Your data protection rights

If the applicable requirements are met and no exceptions apply, you have the following rights:

• Right of access (art. 15 GDPR)
• Right to rectification and updating of your personal data if it is incorrect (art. 16 GDPR)
• Right to erasure ("right to be forgotten", art. 17 GDPR)
• Right to restriction of data processing (art. 18 GDPR)
• Right to data portability (art. 20 GDPR)
• Right to object: If Markant processes your data on the basis of art. 6(1)(f) GDPR (art. 21 1) GDPR) or if Markant processes your data for direct marketing purposes (art. 21(2) GDPR), you can declare your objection at any time without any formal requirements by sending a message to datenschutz(at)markant.com or by clicking on the unsubscribe link in the corresponding e-mail. In the event of cancellation, your data will no longer be processed for the corresponding purposes with effect for the future.

If the data processing is based on your consent, you can revoke your consent at any time with effect for the future.

Please note the following information:

In order to process an enquiry, Markant will usually ask you to prove your identity and/or provide information that will help Markant to better understand your enquiry. If Markant does not fulfil your request, Markant will explain the reasons why.

To exercise your rights, you can contact datenschutz(at)markant.com or the address given at the beginning.

You also have the right to lodge a complaint with the competent data protection authority. Please see the contact details of the Federal Data Protection and Information Commissioner of Switzerland (FDPIC) here and those of the European data protection authorities here.

8. Status of this Privacy Notice

This Privacy Notice was last updated in July 2025. Markant reserves the right to amend it from time to time. Any changes or updates to this Privacy Notice will be made available to you here.

Please note that this English translation of our Privacy Notice is for informational purposes only. In case of any inconsistencies between the English and the German version, the German version shall be legally binding and shall prevail.

Please visit the Markant website regularly to familiarise yourself with the Privacy Notice.