M
← Back to shop

Datenschutzerklärung (Privacy Policy)

Last updated: April 2026

1. Controller

The controller responsible for data processing on this website is:

MIXEL IT & Corporate Services GmbH
Bahnhofstrasse 10, 8001 Zürich, Switzerland
Email: michael@mixel.ch

2. Overview

We take the protection of your personal data seriously and treat it confidentially in accordance with the Swiss Federal Act on Data Protection (FADP/DSG), the Swiss Ordinance to the Federal Act on Data Protection (OFADP/VDSG), and, where applicable, the EU General Data Protection Regulation (GDPR). This Privacy Policy explains what data we collect, why, and how we use it.

3. Data We Collect

3.1 Data You Provide

When you place an order, create an account, or contact us, we may collect:

  • Full name
  • Email address
  • Shipping and billing address
  • Phone number (if provided)
  • Payment information (processed by our payment provider)
  • Order history and preferences

3.2 Data Collected Automatically

When you visit our website, the following data is collected automatically:

  • IP address (anonymized where possible)
  • Browser type and version
  • Operating system
  • Referring URL
  • Pages visited and time spent on site
  • Date and time of access

4. Purpose of Data Processing

We process your data for the following purposes:

  • Processing and fulfilling your orders
  • Communicating about orders, shipping, and support inquiries
  • Payment processing and fraud prevention
  • Improving our website and product offerings
  • Compliance with legal obligations
  • Sending marketing communications (only with your explicit consent)

5. Legal Basis

We process your personal data on the following legal bases:

  • Contract performance: Processing is necessary to fulfil your order (Art. 6(1)(b) GDPR; Art. 31 FADP).
  • Consent: Where you have given explicit consent, e.g. for marketing emails (Art. 6(1)(a) GDPR).
  • Legitimate interest: For website analytics and fraud prevention (Art. 6(1)(f) GDPR).
  • Legal obligation: Where required by law, e.g. financial records retention (Art. 6(1)(c) GDPR).

6. Third-Party Services & Data Sharing

We share your data only where necessary for order fulfilment or as required by law. This includes:

6.1 Payment Processors

We use Stripe and/or other payment providers to process payments securely. Your payment data is transmitted directly to the payment provider and is not stored on our servers. These providers are PCI DSS compliant.

6.2 Shipping & Fulfilment

Orders are fulfilled through our logistics partner from an EU-based warehouse. Your shipping address and order details are shared with the fulfilment partner solely for the purpose of delivering your order.

6.3 Hosting & Infrastructure

Our website is hosted on Vercel (Vercel Inc.). Server logs may be stored on servers located in the EU or the United States. Vercel complies with applicable data protection standards.

6.4 Analytics

We may use privacy-friendly analytics tools to understand how visitors use our website. Where analytics are used, data is anonymized or pseudonymized wherever possible.

7. Cookies

Our website uses cookies to ensure proper functioning and to improve your browsing experience. Cookies are small text files stored on your device. We use:

  • Essential cookies: Required for the website to function (e.g. shopping cart, session management). These cannot be disabled.
  • Analytics cookies: Used to understand website usage. These are only set with your consent.

You can control cookies through your browser settings. Disabling essential cookies may limit the functionality of the website.

8. Data Retention

We retain your personal data only as long as necessary to fulfil the purposes described in this policy, or as required by law. In particular:

  • Order data: 10 years (Swiss accounting retention requirements)
  • Account data: Until you request deletion of your account
  • Marketing consent records: Until consent is withdrawn
  • Server logs: Maximum 90 days

9. Data Transfers

Where personal data is transferred to countries outside Switzerland or the EEA that do not ensure an adequate level of data protection, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission or the Swiss Federal Data Protection and Information Commissioner (FDPIC).

10. Your Rights

Under applicable data protection law, you have the right to:

  • Access: Request information about the personal data we hold about you.
  • Rectification: Request correction of inaccurate data.
  • Deletion: Request deletion of your data, subject to legal retention requirements.
  • Restriction: Request restriction of processing in certain circumstances.
  • Data portability: Receive your data in a structured, machine-readable format.
  • Objection: Object to processing based on legitimate interests or for direct marketing.
  • Withdraw consent: Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, please contact us at michael@mixel.ch. We will respond within 30 days.

11. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes SSL/TLS encryption for all data transmissions, secure hosting infrastructure, and restricted access to personal data within our organisation.

12. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be posted on this page with a revised "Last updated" date. We encourage you to review this policy periodically.

13. Contact & Supervisory Authority

For questions or concerns regarding your data, please contact:

MIXEL IT & Corporate Services GmbH
Email: michael@mixel.ch

You also have the right to lodge a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC): www.edoeb.admin.ch