Privacy Policy

1. Controller

kalzium.io Philipp Gsching Rykestr 40 10405 Berlin Germany

Email: privacy@kalzium.io

Authorized Managing Director: Philipp Gsching

2. General Information

The protection of your personal data is very important to us. We process your data exclusively on the basis of legal provisions (GDPR, German Telecommunications Act). This privacy policy informs you about which data we collect, for what purpose, and how we protect it.

4. Collection and Processing of Personal Data

4.1 Use of Our Platform

Data Processed:

  • Registration data (name, email address, company)
  • Usage data (login times, features used)
  • Technical data (IP address, browser type, operating system)
  • Payment information (billing address, payment method)

Legal Basis: Art. 6(1)(b) GDPR (performance of contract)

Purpose: Provision and management of your account, payment processing, technical support

Retention Period: Duration of contractual relationship plus statutory retention periods (typically 10 years for tax-relevant data)

4.2 Website Visits

With each access to our website, our servers automatically collect:

  • IP address
  • Date and time of access
  • Pages accessed
  • Referrer URL
  • Browser and operating system

Legal Basis: Art. 6(1)(f) GDPR (legitimate interest in system security)

Retention Period: 7 days, followed by deletion or anonymization

4.3 Cookies

Our website uses cookies. Technically necessary cookies are stored on the basis of Art. 6(1)(f) GDPR. All other cookies are only set with your consent pursuant to Art. 6(1)(a) GDPR.

You can adjust your cookie settings at any time in our cookie banner.

5. Disclosure of Data

We only share your data if:

  • You have given explicit consent (Art. 6(1)(a) GDPR)
  • This is necessary for contract performance (Art. 6(1)(b) GDPR)
  • There is a legal obligation (Art. 6(1)(c) GDPR)

Data Processors

We use the following service providers:

  • Hosting provider: hetzner.com
  • Payment processor: stripe.com
  • Email service: protonmail.com

Contracts pursuant to Art. 28 GDPR have been concluded with all data processors.

6. Data Transfer to Third Countries

Where data is transferred to third countries outside the EU/EEA, this only occurs if there is an adequacy decision by the EU Commission or on the basis of standard contractual clauses pursuant to Art. 46 GDPR.

7. Your Rights

You have the following rights regarding your personal data:

  • Right of access (Art. 15 GDPR): You can request information about your stored data
  • Right to rectification (Art. 16 GDPR): You can request correction of inaccurate data
  • Right to erasure (Art. 17 GDPR): You can request deletion of your data
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR): You can receive your data in a structured format
  • Right to object (Art. 21 GDPR): You can object to processing
  • Right to withdraw consent (Art. 7(3) GDPR): Consent given can be withdrawn at any time

To exercise your rights, please contact: privacy@kalzium.io

8. Right to Lodge a Complaint

You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your data violates the GDPR.

Competent Supervisory Authority:
Berliner Beauftragte für Datenschutz und Informationsfreiheit (BlnBDI) Alt-Moabit 59-61, 10555 Berlin mailbox@datenschutz-berlin.de

9. Data Security

We implement technical and organizational security measures to protect your data against manipulation, loss, destruction, or unauthorized access. These include:

  • SSL/TLS encryption
  • Regular security updates
  • Access controls and authorization concepts
  • Regular backups

10. Changes to This Privacy Policy

We reserve the right to amend this privacy policy to adapt it to changed legal situations or changes to our services. The current privacy policy will apply to subsequent visits.

Last Updated: 19.01.2026