Privacy Policy (GDPR)

We respect your privacy and process personal data in compliance with the EU General Data Protection Regulation (GDPR) and applicable local laws.

1. Data Controller

The data controller is Zolar. For questions, contact us via the details on the Contact page.

2. Categories of Data We Process

  • Technical data: IP address, user agent, device and browser info (only after consent for marketing measurement).
  • Usage data: page paths visited, referring URL, language, timezone, approximate screen size.
  • Marketing identifiers: Facebook cookies `_fbp` and `_fbc` (only after consent), event IDs for measurement.
  • Optional identifiers you provide: email/phone/name or a site-generated anonymous ID (only after consent).

3. Purposes and Legal Basis

  • Essential site operation: legitimate interests (Art. 6(1)(f) GDPR).
  • Marketing measurement (Meta Pixel and Conversions API): consent (Art. 6(1)(a) GDPR).
  • Responding to inquiries or contracts: contract performance or legitimate interests.

4. Cookies and Similar Technologies

We only read or write marketing cookies (e.g., `_fbp`, `_fbc`) after you consent. Before consent, no marketing cookies are used and IP/User-Agent enrichment is disabled.

5. Facebook (Meta) Measurement

After consent, we may send events via Meta Pixel (client) and Conversions API (server). We share limited event data and identifiers to measure campaign performance. For details, see Meta’s privacy policy and opt-out options.

  • Meta Privacy Policy: https://www.facebook.com/privacy/policy
  • Ad preferences: https://www.facebook.com/adpreferences/ad_settings

6. Cloudflare

Our site is hosted on Cloudflare Pages; requests are processed through Cloudflare’s infrastructure. See Cloudflare’s privacy policy for more information.

7. Data Recipients

  • Service providers (e.g., hosting, analytics/measurement) acting on our behalf.
  • Meta Platforms, Inc. (after consent) for marketing measurement.

8. Retention

We retain data only as long as necessary for the stated purposes or as required by law. Marketing identifiers may be stored up to 90 days or as configured by the service.

9. Your Rights

  • Access, rectification, erasure, restriction, objection, and data portability (Arts. 15–21 GDPR).
  • Withdraw consent at any time without affecting the lawfulness of prior processing.
  • Lodge a complaint with a supervisory authority.

Du kan när som helst ångra samtycke och rensa spårningsdata (t.ex. _fbp/_fbc och lokala identifierare).

10. Contact

To exercise your rights or ask questions, please contact us via the Contact page.

11. Updates

We may update this policy from time to time. Please review it periodically.