Mosaik Motors & Mosaik Drivers – As of: June 2026

Privacy Policy

The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is any data that can be used to personally identify you. Detailed information on data protection can be found in our privacy policy, which is linked below.

§ 1

General Information & Data Controller

The protection of your personally identifiable information (PII) is of the highest priority to us. This policy applies to the business operations of "Mosaik Motors" and "Mosaik Drivers" as well as the websites mosaikmotors.com and mosaikmotors.de.

Data Controller (Art. 4 No. 7 GDPR): Mosaik Motors & Mosaik Drivers

Proprietor: Renan Serpen Weihenstephaner Str. 12 81673 Munich Germany

E-Mail: info@mosaikmotors.com

An external Data Protection Officer is not legally required due to the size of the company. For any privacy-related inquiries, please contact the owner directly.

§ 2

Server-Logfiles

When you visit our website, the following data is automatically collected:

– Browser type and version, operating system, and internet service provider – IP address, date/time of access, and referrer URL

Legal Basis: Art. 6(1)(f) GDPR (legitimate interest in ensuring the stability and security of the website). This data is deleted after 7 days. This data will not be merged with other data sources.

§ 3

Contact (E-Mail, Contact Form, WhatsApp)

When you contact us, your details (name, e-mail address, phone number, message content) will be stored to process your inquiry. Legal Basis: Art. 6(1)(b) GDPR (pre-contractual measures) or Art. 6(1)(f) GDPR (legitimate interest).

WhatsApp Business

We offer a contact option via WhatsApp Business (WhatsApp Ireland Limited) on a dedicated company device. This channel may also be used to transmit documents (e.g., copies of driver's licenses for bookings) (Legal Basis: Art. 6(1)(b) GDPR). Metadata may be transferred to Meta in the USA, secured by Standard Contractual Clauses pursuant to Art. 46 GDPR. Alternatively, you may send us documents via e-mail or postal mail.

§ 4

Performance of Contract (Car Rental, Logistics & Chauffeur Services)

For the performance of a contract (rental, vehicle storage, maintenance, transport, or chauffeur services via Mosaik Drivers), we process your name, address, contact details, payment information, as well as driver's license and ID data. Legal Basis: Art. 6(1)(b) GDPR. Providing a valid driver's license and ID is strictly mandatory for entering into a vehicle rental agreement.

§ 5

Special Categories of Data & Guest Data (Mosaik Drivers)

– Health Data: For medically relevant trips (e.g., passengers with mobility impairments), we process this data exclusively based on your explicit consent pursuant to Art. 9(2)(a) GDPR. – Event Guest Data: If we receive guest data (name, route) from event clients, we process it solely for order fulfillment (Art. 6(1)(b) and (f) GDPR) and delete it after the event concludes.

§ 6

Utilized Software & Tools

We utilize third-party service providers within the scope of data processing agreements (DPA pursuant to Art. 28 GDPR):

– Jango Fleet(Cengiz Gürtusgil, Frankfurt): Software for dispatching, scheduling, and billing preparation for Mosaik Drivers. Hosted in Germany. (Art. 6(1)(b) GDPR).

– Lexware (Haufe-Lexware GmbH, Freiburg): Cloud solution for invoicing and accounting. (Art. 6(1)(b) and (c) GDPR).

– Rentware (Reisebrenner GmbH, Berlin): Software for managing vehicle rentals and customer data. (Art. 6(1)(b) GDPR).

– Payment Service Providers: The transfer of payment data to banks/acquirers occurs strictly for payment processing (Art. 6(1)(b) GDPR).

§ 7.

Tracking, Social Media & Marketing

– Meta Pixel (Facebook/Instagram Ads): We use the Meta Pixel (Meta Platforms Ireland Ltd.) to measure ad reach and optimize targeted advertising.

– Google Analytics 4 (GA4): We use GA4 (Google Ireland Ltd.) for website analysis with IP anonymization activated by default.

– Consent & International Transfers: Both tools are only loaded after your active consent via our cookie consent banner (Legal Basis: Art. 6(1)(a) GDPR). Consent can be revoked there at any time. Data transfers to the USA are safeguarded by Standard Contractual Clauses (Art. 46 GDPR).

§ 8

Cookies

Technically necessary cookies are deployed based on Art. 6(1)(f) GDPR. Analytics and marketing cookies (see § 7) require your prior consent via our cookie consent tool.

§ 9

Data Disclosure & Retention Period

Your data will only be shared with other third parties if you have given consent (Art. 6(1)(a) GDPR), if it is necessary for the performance of a contract (lit. b), or if there is a legal obligation (lit. c). Data is only stored for the duration of the contract fulfillment or in accordance with statutory commercial and tax retention periods of 6 to 10 years (§ 257 HGB, § 147 AO under German law).

§ 10

Your Rights as a Data Subject

You have the right to access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction of processing (Art. 18), data portability (Art. 20), objection to processing (Art. 21), and the right to withdraw consent at any time (Art. 7(3)). You also have the right to lodge a complaint with the competent supervisory authority: *Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Ansbach, Germany.

§ 11

Data Security & Amendments

We secure our systems using up-to-date technical and organizational measures (TOM). This privacy policy is current as of June 2026 and may be updated to reflect legal or technical changes.