Privacy Policy

The controller under applicable privacy law is the entity listed in our legal notice/imprint.

Privacy contact: support@goldandmyrrh.com

Where GDPR applies, processing is based on Art. 6(1)(b) (contract/booking), (c) (legal obligations), (f) (legitimate interests such as security), and (a) (consent, e.g. marketing).

Relevant framework includes GDPR, BDSG, TDDDG/TTDSG, and statutory retention obligations under tax/commercial law.

Contact data: name, email, phone number.

Booking data: vehicle type, license plate, address/coordinates, postal code, time slot, service notes (e.g., parking garage access).

Payment data: payment status and Stripe references; full card data is not stored by us.

Technical data: IP address, timestamps, browser/device data, and security logs.

Providing and managing bookings and car wash services.

Processing payments, invoicing, refunds, and support requests.

Operating, securing, and improving our systems.

Sending marketing messages only where consent or another lawful basis applies.

We use service providers for hosting/IT, email delivery, and payment processing (including Stripe).

We maintain required data processing agreements where applicable.

If personal data is transferred outside your country (including to the U.S.), we rely on appropriate legal safeguards such as adequacy decisions or Standard Contractual Clauses where required.

We retain data only for as long as necessary for the stated purposes or to comply with legal obligations.

Data is then deleted or anonymized.

If GDPR applies, you may have rights of access, rectification, erasure, restriction, portability, objection, and withdrawal of consent.

You may also lodge a complaint with a supervisory authority.

For U.S. residents, we account for applicable state privacy laws (e.g., CCPA/CPRA, VCDPA, CPA, CTDPA, UCPA, and others depending on residence).

Depending on state law, rights may include access, deletion, correction, opt-out of sale/sharing/targeted advertising, and non-discrimination.

Requests can be submitted to support@goldandmyrrh.com.

We use strictly necessary technologies for core site operation. Optional technologies are used only where required permissions exist.

Further controls and opt-out information are provided in our consent/settings interfaces where applicable.

We implement technical and organizational safeguards to protect personal data against unauthorized access, loss, misuse, or alteration.

We may update this policy when legal or operational requirements change. The current version published on this page applies.