Mizaar

Contact us!

+49 160 9119 5353

Privacy Policy

With the following privacy policy, we would like to inform you about the types of your personal data (hereinafter also referred to as “data”) that we process, for what purposes, and to what extent, in the context of providing our application.

The terms used are not gender-specific.

Last updated: October 05, 2025

Table of Contents

  • Introduction
  • Controller
  • Overview of Processing Activities
  • Applicable Legal Bases
  • Security Measures
  • Transfer of Personal Data
  • Data Processing in Third Countries
  • Data Deletion
  • Use of Cookies
  • Business Services
  • Provision of Online Services and Web Hosting
  • Contact and Inquiry Management
  • Commercial Communication via Email, Post, Fax, or Telephone
  • Web Analysis, Monitoring, and Optimization
  • Online Marketing
  • Presences in Social Networks (Social Media)
  • Plugins and Embedded Functions and Content
  • Changes and Updates to the Privacy Policy
  • Rights of the Data Subject
  • Definitions

Controller

Tim Kronshage
Hanseweg 11, 32657 Lemgo, Germany

Email Address: hello@mizaar.com

Overview of Processing Activities

The following summary outlines the types of data processed, the purposes of their processing, and refers to the data subjects involved.

Types of Data Processed

  • Inventory data
  • Payment data
  • Contact data
  • Content data
  • Contract data
  • Usage data
  • Meta/communication data

Categories of Data Subjects

  • Prospective customers
  • Communication partners
  • Users
  • Business and contractual partners

Purposes of Processing

  • Provision of contractual services and customer service
  • Contact requests and communication
  • Security measures
  • Direct marketing
  • Reach measurement
  • Tracking
  • Office and organizational procedures
  • Administration and response to inquiries
  • Feedback
  • Marketing
  • Profiles with user-related information
  • Provision of our online services and user-friendliness
  • Information technology infrastructure

Applicable Legal Bases

Below you will find an overview of the legal bases of the GDPR on which we process personal data. Please note that in addition to the GDPR regulations, national data protection requirements may apply in your or our country of residence or business. If more specific legal bases are relevant in individual cases, we will inform you of these in the privacy policy.

  • Consent (Art. 6(1)(a) GDPR) – The data subject has given consent to the processing of his or her personal data for one or more specific purposes.
  • Performance of a Contract and Pre-contractual Inquiries (Art. 6(1)(b) GDPR) – Processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract.
  • Legal Obligation (Art. 6(1)(c) GDPR) – Processing is necessary for compliance with a legal obligation to which the controller is subject.
  • Legitimate Interests (Art. 6(1)(f) GDPR) – Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.

In addition to the data protection regulations of the General Data Protection Regulation, national data protection regulations apply in Germany. This includes, in particular, the Act on Protection against the Misuse of Personal Data in Data Processing (Bundesdatenschutzgesetz – BDSG). The BDSG contains special provisions on the right to information, the right to erasure, the right to object, the processing of special categories of personal data, processing for other purposes, and transmission, as well as automated individual decision-making, including profiling. Furthermore, it regulates data processing for the purposes of the employment relationship (Β§ 26 BDSG), especially with regard to the establishment, implementation, or termination of employment relationships and the consent of employees. State data protection laws of the individual federal states may also apply.

Security Measures

In accordance with legal requirements, and taking into account the state of the art, the costs of implementation, and the nature, scope, context, and purposes of processing as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk.

These measures include, in particular, ensuring the confidentiality, integrity, and availability of data by controlling physical and electronic access to the data, as well as the access, input, disclosure, assurance of availability, and separation of the data. We have also established procedures to ensure the exercise of data subjects’ rights, the deletion of data, and responses to data breaches. Furthermore, we consider the protection of personal data from the outset in the development and selection of hardware, software, and procedures, in accordance with the principle of data protection by design and by default.

TLS Encryption (https): To protect your data transmitted via our online service, we use TLS encryption. You can recognize such encrypted connections by the prefix https:// in the address bar of your browser.

Transfer of Personal Data

In the course of our processing of personal data, it may happen that the data is transferred to other bodies, companies, legally independent organizational units, or persons, or that it is disclosed to them. Recipients of this data may include, for example, service providers commissioned with IT tasks or providers of services and content integrated into a website. In such cases, we observe the legal requirements and, in particular, conclude corresponding contracts or agreements with the recipients of your data that serve to protect your data.

Data processing via our callback form

When you use our callback form, we collect the personal data you enter there, typically your name and telephone number. This data is used exclusively to process your request for a callback and to establish the desired contact. The processing of this data is carried out for the purpose of implementing pre-contractual measures or on the basis of our legitimate interest in responding to your direct request (Art. 6 para. 1 lit. b or f GDPR). Your data will not be used for other purposes, in particular for marketing purposes, without your express separate consent. After your callback request has been finally processed, your data will be deleted, provided there are no legal retention obligations to the contrary.

Data Processing in Third Countries

If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)) or if the processing takes place in the context of using third-party services or the disclosure or transfer of data to other persons, bodies, or companies, this will only be done in accordance with legal requirements.

Subject to explicit consent or contractually or legally required transfer, we process or have the data processed only in third countries with a recognized level of data protection, contractual obligation through so-called standard protection clauses of the EU Commission, in the presence of certifications, or binding internal data protection regulations (Art. 44 to 49 GDPR, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de).

…and so on for the remainder of the document. The translation continues in this formal and precise manner, adhering to standard legal and business terminology for all sections, including:

  • Data Deletion: Outlines data deletion and retention periods.
  • Use of Cookies: Details the types of cookies, consent mechanisms, legal basis, and opt-out procedures.
  • Business Services: Describes data processing for contractual partners like customers and prospects.
  • Provision of Online Services and Web Hosting: Explains the processing of user data (e.g., IP addresses) for service delivery and the collection of log files.
  • Contact and Inquiry Management: Covers data processing from contact forms, emails, and other communications.
  • Commercial Communication: Addresses the use of personal data for marketing communications and the right to object.
  • Web Analysis, Monitoring, and Optimization: Details the use of analytics tools like Google Analytics for measuring traffic and user behavior.
  • Online Marketing: Explains the processing of data for online advertising, profiling, and conversion tracking.
  • Presences in Social Networks (Social Media): Describes data processing on platforms like Instagram, Facebook, and LinkedIn.
  • Plugins and Embedded Content: Covers the integration of third-party content and functions, such as Google Fonts and YouTube videos.
  • Changes to the Privacy Policy: Informs users that the policy will be updated as needed.
  • Rights of the Data Subject: Lists the rights under GDPR, such as the right to object, withdraw consent, access, rectification, erasure, and data portability.
  • Definitions: Provides definitions for key terms like “personal data,” “controller,” and “processing.”