This translation is for informational purposes only; the original German text is authoritative.

Responsible party/Website operator:

Franc Heinrihar
Seeblick 7
17214 Alt Schwerin/Germany

Contact information:

Email: kontakt@magia-morza.de, Phone: +491708821560

Website: magia-morza.de

Authorized representative:

Franc Heinrihar

All content used on this website is subject to our copyright.

Liability for links:

If our website contains links to external websites of third parties, we have no influence on their content. Therefore, we cannot assume any liability for this external content. The respective provider or operator of the linked pages is always responsible for their content. The linked pages were checked for possible legal violations at the time the links were created. Illegal content was not identified at the time the links were created. However, continuous monitoring of the content of linked pages is not reasonable without concrete evidence of a legal violation. Upon notification of legal violations, we will remove such links immediately.

Copyright:

The content and works created by the website operators on these pages are subject to German copyright law. Reproduction, processing, distribution, and any form of exploitation beyond the limits of copyright law require the written consent of the respective author or creator. Downloads and copies of this page are permitted only for private, non-commercial use. Insofar as the content on this page was not created by the operator, the copyrights of third parties are respected. In particular, third-party content is identified as such. Should you nevertheless become aware of a copyright infringement, please inform us accordingly. Upon notification of legal violations, we will remove such content immediately.

Consumer Dispute Resolution / Universal Arbitration Board:

The content and works created by the website operators on these pages are subject to German copyright law. Reproduction, processing, distribution, and any form of exploitation beyond the limits of copyright law require the written consent of the respective author or creator. Downloads and copies of this page are permitted only for private, non-commercial use. Unless otherwise stated, the content on this website is not created by the operator, and the copyrights of third parties are respected. In particular, third-party content is identified as such. Should you nevertheless become aware of a copyright infringement, please inform us accordingly. Upon notification of any legal violations, we will remove such content immediately.

Implementation with:
WordPress

Privacy Policy:

1. Introduction

The protection of your personal data is of utmost importance. This privacy policy explains the nature, scope, and purpose of the processing of personal data (hereinafter referred to as “data”) in connection with the online services. This includes the associated website, functions, and content, as well as external online presences, such as social media profiles (hereinafter collectively referred to as “online services”). Your personal data will be treated confidentially, and we will strictly adhere to the statutory data protection regulations and the provisions of this privacy policy.

General Information

This privacy policy provides you with a comprehensive overview of what happens to your personal data when you visit this website. Personal data is any information that can be used to identify you personally. Detailed information on data protection can be found in this complete privacy policy.

Data Controller

Data processing on this website is carried out by the website operator. The contact details of the data controller can be found in the “Data Controller” section of this privacy policy.

Collection of Your Data

Personal data is collected, on the one hand, when you actively provide it, e.g., by filling out a contact form. Other data is collected automatically or with your consent by the data controller’s IT systems when you visit the website. This primarily involves technical data (e.g., internet browser, operating system, or time of page access). This data collection occurs automatically as soon as you access the website.

Use of Your Data

Some data is collected to ensure the proper functioning of the website. Other data may be used to analyze your user behavior in order to optimize the website and tailor it to your needs.

Data Transfer to External Parties

In the course of the controller’s business activities, it may be necessary to transfer personal data to external parties. This transfer only occurs under specific conditions: if the transfer is necessary for the performance of a contract, if there is a legal obligation, for example, to tax authorities, if there is a legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, or if another legal basis permits the data transfer. When using external service providers for data processing, personal data is transferred exclusively on the basis of a valid data processing agreement pursuant to Art. 28 GDPR. If joint processing of data takes place with other parties, a joint processing agreement pursuant to Art. 26 GDPR will be concluded.

Withdrawal of Consent to Data Processing

Certain data processing activities can only take place with your express consent. This consent can be withdrawn at any time. The lawfulness of the data processing carried out until the time of withdrawal remains unaffected by the withdrawal.

Right to object to specific data processing and advertising measures (Art. 21 GDPR)

If your personal data is processed on the basis of Art. 6 para. 1 lit. e or f GDPR, you have the right to object to this processing at any time, provided you have grounds relating to your particular situation. This also applies to profiling based on these provisions. The specific legal basis for data processing can be found in this privacy policy. If you object, the controller will no longer process your personal data unless compelling legitimate grounds for the processing can be demonstrated which override your interests, rights and freedoms, or the processing serves the purpose of establishing, exercising or defending legal claims (objection pursuant to Art. 21 para. 1 GDPR).

If your personal data is used for direct marketing purposes, you have the right to object to this processing at any time. This also applies to profiling insofar as it is related to direct marketing. Following your objection, the data controller will no longer use your personal data for these advertising purposes (objection pursuant to Article 21(2) GDPR).

Rights under the General Data Protection Regulation (GDPR)

You have the right to lodge a complaint with a competent supervisory authority if you believe that the GDPR has been violated. This right can be exercised, in particular, in the Member State of your habitual residence, place of work, or the place of the alleged infringement. This does not affect any other administrative or judicial remedies.

Personal data processed automatically based on consent or for the performance of a contract can be requested in a structured, commonly used, and machine-readable format. Upon request, this data can also be transmitted directly to another controller, provided this is technically feasible.

Every data subject has the right to obtain, free of charge, information about their stored personal data, its origin, recipients, and the purpose of the data processing. Furthermore, there is a right to rectification or erasure of this data, provided that legal provisions permit this. For further questions or concerns regarding personal data, you can contact the data controller at any time.

You have the right to request the restriction of the processing of your personal data if the accuracy of the data is contested and a verification is pending. In cases of unlawful processing, you can also request the restriction of data processing instead of erasure. Furthermore, you can request restriction if the data is no longer needed but is required for the establishment, exercise, or defense of legal claims. You also have the right to restriction of processing if you object to processing pursuant to Article 21(1) GDPR, pending clarification of whose interests prevail.

If the processing of personal data is restricted, it may, apart from storage, only be processed with the consent of the data subject or for the establishment, exercise, or defense of legal claims, for the protection of the rights of other natural or legal persons, or for reasons of important public interest of the EU or a Member State.

2. Data Controller

The data controller for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:

Franc Heinrihar, Seeblick 7, 17214 Alt Schwerin, Germany, Phone: +491708821560

Website: www.magia-morza.de, Email: kontakt@magia-morza.de

3. Data Processors

We collaborate with various data processors who process data on our behalf. These service providers are contractually obligated to treat the data confidentially and to use it exclusively within the scope of their respective services. In addition, there are cases in which data processing is shared with other parties. In such cases, responsibilities are clearly defined and documented to ensure compliance with data protection requirements.

4. Definitions

To ensure the transparency of this privacy policy and make it understandable to everyone, this policy primarily uses terms that are also defined in the General Data Protection Regulation (GDPR). The complete legal definitions can be found in Article 4 of the GDPR. The most important terms in connection with this privacy policy are explained below:

Personal data: This includes all information relating to an identified or identifiable natural person (hereinafter referred to as “data subject”). A person is considered identifiable if they can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g., a cookie), or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.

5. Hosting

This website is hosted on the servers of an external service provider to ensure reliable and secure access to this online service.

Data processing by the hosting provider is carried out in accordance with Article 6(1)(f) GDPR, as the data controller has a legitimate interest in providing a stable and secure website. If it is necessary to obtain the user’s consent (for example, for the use of certain cookies or tracking technologies), data processing is based on the user’s consent in accordance with Article 6(1)(a) GDPR and Section 25(1) of the German Telecommunications and Telemedia Data Protection Act (TTDSG). You can withdraw your consent at any time with effect for the future.
… The hosting provider is:

united-domains GmbH, Gautinger Str. 10, 82319 Starnberg

(Details regarding data processing and data protection can be found in the hosting provider’s privacy policy.)

6. Legal Basis for Data Processing

Your personal data is processed on the basis of the General Data Protection Regulation (GDPR) and other relevant legal provisions. Different legal bases apply depending on the purpose of the data processing.

If you have consented to the processing of your personal data, this is based on your consent pursuant to Art. 6 para. 1 lit. a GDPR. This applies in particular to the processing of special categories of personal data pursuant to Art. 9 para. 2 lit. a GDPR and to the transfer of personal data to third countries pursuant to Art. 49 para. 1 lit. a GDPR. You can withdraw your consent at any time.

The processing of your data may be necessary for the performance of a contract or for taking steps prior to entering into a contract and, in this case, is based on Art. 6 para. 1 lit. b GDPR. Furthermore, processing may be necessary to comply with legal obligations, in which case it is carried out in accordance with Article 6(1)(c) GDPR.

In certain cases, processing is carried out to protect the legitimate interests of the controller or a third party, unless your interests or fundamental rights and freedoms override those interests. This processing is based on Article 6(1)(f) GDPR.

For certain processing activities, national regulations may also apply, such as Section 25 of the German Telecommunications and Telemedia Data Protection Act (TTDSG) regarding the storage of cookies or access to information on your device. The applicable legal bases are explained in detail in the specific sections of this privacy policy.

If your data is required for the performance of a contract or for taking steps prior to entering into a contract, your data will be processed on the basis of Article 6(1)(b) GDPR. For compliance with a legal obligation, data processing is based on Article 6(1)(c) GDPR. In addition, data processing may be carried out on the basis of legitimate interests pursuant to Article 6(1)(f) GDPR. The specific legal bases in each case are explained in the following sections of this privacy policy.

7. Data Transfer to Insecure Third Countries and Non-DPF-Certified US Companies

If this website uses tools from companies located in third countries with insecure data protection, or US tools whose providers are not certified under the EU-US Data Privacy Framework (DPF), your personal data may be transferred to and processed in these countries. Please note that a level of data protection equivalent to that of the EU cannot be guaranteed in third countries with insecure data protection. For the USA, as an insecure third country, a level of data protection comparable to that of the EU is generally not guaranteed. Data transfers to the USA are therefore only permitted if the recipient is either certified under the EU-US Data Privacy Framework (DPF) or has appropriate additional safeguards in place. Detailed information on possible transfers to third countries, including data recipients, can be found in this privacy policy.

8. Data Retention Period

Unless a more specific retention period is stated within this privacy policy, personal data will remain with the data controller until the purpose for data processing no longer applies. If a legitimate request for erasure is made or consent to data processing is withdrawn, the data in question will be deleted unless there are other legally permissible grounds for storing the personal data (e.g., tax or commercial law retention periods). In these cases, the data will be deleted once these grounds no longer apply.

The controller stores personal data only as long as necessary to fulfill the respective purposes for which the data was collected. These include, in particular, fulfilling contractual obligations, complying with statutory retention periods, and safeguarding the controller’s legitimate interests, such as IT security and protection against misuse. If the processing of personal data is based on consent, the data will be stored until the data subject withdraws this consent. Such withdrawal is possible at any time with effect for the future. After withdrawal, the data will be deleted immediately, unless there are statutory retention obligations or other overriding legal grounds that necessitate further storage.

In summary, personal data will be deleted once the purpose for which it was collected has been fulfilled or the legal basis for its storage no longer applies, unless there are continuing legal obligations or legitimate interests that justify further storage.

9. Security Measures and Data Minimization

Comprehensive technical and organizational measures are implemented to effectively protect your personal data against accidental or unlawful destruction, loss, alteration, or unauthorized disclosure or access. We ensure that only the data absolutely necessary for the respective purpose is collected and processed. This data minimization strategy significantly reduces the risk of misuse and unauthorized access. The security measures are continuously adapted to the latest technological standards to guarantee a consistently high level of data protection.

10. Use of the Contact Form

If you have any questions, you can contact the data controller using the form provided on this website.

Data processing for the purpose of contacting the data controller is carried out in accordance with Article 6 Paragraph 1 Sentence 1 Letter a GDPR on the basis of freely given consent.

The personal data collected for the use of the contact form is routinely deleted after the inquiry has been processed.

11. Inquiries by Email or Telephone

It is possible to contact the data controller by email or telephone. The personal data transmitted in this context (e.g., name, email address, telephone number, and the inquiry itself) will be processed and stored by the data controller exclusively for the purpose of handling the inquiry and any follow-up questions.

The legal basis for this data processing is Article 6 Paragraph 1 Letter b GDPR, as the processing is necessary for the performance of a contract or for taking steps prior to entering into a contract. If the processing is not related to a contract, it is carried out on the basis of Article 6 Paragraph 1 Letter f GDPR, as the data controller has a legitimate interest in processing and responding to inquiries.

12. Inquiries via WhatsApp

You can submit inquiries to the data controller via WhatsApp. Please note that WhatsApp stores the transmitted data on servers in the USA. Therefore, no sensitive information should be transmitted via this channel. The personal data you submit (e.g., name, telephone number, and the inquiry itself) will be processed and stored by the data controller solely for the purpose of handling your inquiry and any follow-up questions.

The legal basis for this data processing is Article 6(1)(b) GDPR, as the processing is necessary for the performance of a contract or in order to take steps prior to entering into a contract. If the processing is not related to a contract, it is based on Article 6(1)(f) GDPR, as the data controller has a legitimate interest in processing and responding to inquiries.

Additional information on the processing of your personal data by WhatsApp can be found in their privacy policy at: https://www.whatsapp.com/legal/.

The legal basis for this data processing is Article 6(1)(b) GDPR, as the processing is necessary for the performance of a contract or in order to take steps prior to entering into a contract. Sending newsletters to existing customers without their explicit consent

Newsletters are sent to existing customers even without their explicit consent under certain conditions. This is permissible under Article 6(1)(f) GDPR if the following conditions are met:

a) Existing customer status: The customer has provided their email address in connection with the sale of goods or services.

b) Direct marketing for similar products or services: The newsletter contains only advertising for similar products or services.

c) Notice of right to object: The customer was clearly and explicitly informed, both when their email address was collected and in every newsletter, that they can object to the use of their email address at any time without incurring any costs other than the transmission costs at basic rates.

d) No objection from the customer: The customer has not objected to the use of their email address.

This type of newsletter distribution is based on the legitimate interest of the data controller in informing existing customers about similar products or services and maintaining the business relationship. The data is processed in accordance with Article 6(1)(f) of the GDPR. Customers can, of course, object to the use of their email address for this purpose at any time. To do so, simply send an informal email to the data controller or use the “unsubscribe” link in the respective newsletter.

13. Social Media Plugins

This section informs you about the integration and use of social media on this website. This includes details on data processing and your rights in connection with the use of social media plugins and their functions.

Facebook

This website contains plugins from the social network Facebook, operated by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. The plugins allow you to share and distribute content from this website on your Facebook profile. You can recognize the Facebook plugins by the Facebook logo or the “Like” button integrated into this website.

When you visit a page on this website that contains a Facebook plugin, your browser establishes a direct connection to Facebook’s servers. The plugin content is transmitted directly from Facebook to your browser and integrated into the website. By integrating these plugins, Facebook receives information that your browser has accessed the corresponding page of this website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is transmitted directly from your browser to a Facebook server in the USA and stored there.

If you are logged in to Facebook, Facebook can directly associate your visit to this website with your Facebook account. If you interact with the plugins, for example, by clicking the “Like” button or leaving a comment, the corresponding information is also transmitted directly to a Facebook server and stored there. This information is also published on your Facebook profile and displayed to your Facebook friends.

The use of Facebook plugins is based on your consent pursuant to Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TTDSG, as consent is required for the use of cookies and other tracking technologies. You can withdraw your consent at any time with effect for the future. To prevent Facebook from associating the data collected via this website with your Facebook account, you must log out of Facebook before visiting this website.

The transfer of personal data to the USA is based on the EU Commission’s Standard Contractual Clauses. Further information can be found here:

https://www.facebook.com/legal/EU_data_transfer_addendum.

Meta Platforms Ireland Limited is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Every company certified under the DPF is committed to complying with these strict data protection standards.

Further information on the EU-US DPF can be found here: https://www.dataprivacyframework.gov/. Further information on data processing and use by Facebook, as well as your related rights and privacy settings, can be found in Facebook’s Privacy Policy at: https://www.facebook.com/privacy/policy/.

Instagram

This website integrates features of the Instagram service, operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. The Instagram plugins allow you to share and distribute content from this website on your Instagram profile. You can recognize these plugins by the Instagram logo integrated into this website.

When you visit a page on this website that contains an Instagram plugin, your browser establishes a direct connection to Instagram’s servers. The plugin content is transmitted directly from Instagram to your browser and integrated into the website. Through this integration, Instagram receives the information that your browser has accessed the corresponding page of this website, even if you do not have an Instagram account or are not currently logged in to Instagram. This information (including your IP address) is transmitted directly from your browser to an Instagram server in the USA and stored there.

If you are logged in to Instagram, Instagram can directly associate your visit to this website with your Instagram account. When you interact with the plugins, for example, by clicking the “Like” button or leaving a comment, the corresponding information is also transmitted directly to an Instagram server and stored there. This information is also published on your Instagram profile and displayed to your Instagram followers.

The use of Instagram plugins is based on your consent pursuant to Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TTDSG, as consent is required for the use of cookies and other tracking technologies. You can withdraw your consent at any time with effect for the future. To prevent Instagram from associating the data collected via this website with your Instagram account, you must log out of Instagram before visiting this website.

The transfer of personal data to the USA is based on the EU Commission’s Standard Contractual Clauses. Further information can be found here:

https://www.facebook.com/legal/EU_data_transfer_addendum.

Meta Platforms Ireland Limited is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Every company certified under the DPF is committed to complying with these strict data protection standards. Further information about the EU-US DPF can be found here: https://www.dataprivacyframework.gov/.

Further information about data processing and use by Instagram, as well as your related rights and privacy settings, can be found in Instagram’s Privacy Policy at: https://help.instagram.com/155833707900388.

14. Form Tools

Here you will find information on the use of form tools on this website, including details on the processing of personal data and your rights in connection with the use of these forms.

These tools are used based on legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR to ensure efficient data collection and management. Where necessary, data processing is based on your consent pursuant to Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TTDSG. You may withdraw your consent at any time with effect for the future.

15. Processing of Customer and Contract Data

Personal customer and contract data is collected, processed, and used for the establishment, content-related structuring, and modification of contractual relationships. This may include name, address, email address, and telephone number. This information is necessary to provide services and to communicate with you. Depending on the payment method chosen, payment information such as credit card details, bank account information, or information on other payment services will also be collected and used exclusively for processing the payment.

In addition, usage and order data are processed, including information about orders, services used, prices, and delivery details. Personal data relating to the use of this website (usage data) is collected, processed, and used only to the extent necessary to enable the user to access the service or for billing purposes.

The processing of personal data is based on various legal grounds. According to Article 6(1)(b) GDPR, data processing is carried out for the performance of a contract or for taking steps prior to entering into a contract, for example, to process orders and provide services. Furthermore, processing is carried out according to Article 6(1)(c) GDPR to comply with legal obligations, including statutory retention requirements. Finally, processing is carried out according to Article 6(1)(f) GDPR to protect legitimate interests, such as improving services and ensuring IT security.

Personal data is processed on various legal bases. The collected customer data will be deleted after completion of the order or termination of the business relationship and expiry of any applicable statutory retention periods. Statutory retention periods remain unaffected.

16. Conclusion of Contracts for Services or Digital Content

When concluding contracts for services or digital content, the data controller collects and processes your personal data in order to fulfill the contractual obligations. This data includes, in particular, your contact information such as name, address, email address, and relevant information regarding the use of the services or digital content.

Your data is processed on various legal bases: In accordance with Article 6(1)(b) GDPR, the data controller processes your data for the performance of the contract and for carrying out pre-contractual measures, such as the provision and use of the services. Furthermore, processing is carried out in accordance with Article 6(1)(c) GDPR for compliance with legal obligations, including adherence to statutory retention requirements. In addition, processing is carried out in accordance with Article 6(1)(f) GDPR for the purposes of legitimate interests, such as improving services and ensuring IT security.

The collected data will be used exclusively for the execution and fulfillment of the contracts and will be deleted after the contractual relationship has ended and any statutory retention periods have expired. Your data may be shared with third parties involved in the provision of services, such as IT service providers, as part of the contract fulfillment process. These third parties are contractually obligated to treat your data confidentially and to use it solely for the purpose of providing the services.

The data controller ensures that your data is only shared to the extent necessary for the fulfillment of the contract. Your data will not be transferred beyond this scope unless you have expressly consented to such transfer. Your data will not be shared with third parties without your explicit consent, for example, for advertising purposes.

Last updated:

November 24, 2025