Privacy Policy
Who is responsible for your data
Mendriso is operated by Paul Münzner. For questions about data processing, contact: contact [at] mendriso [dot] com
What data Mendriso collects and why
If you visit mendriso.com without registering Mendriso does not use tracking pixels, advertising cookies, or third-party analytics. Ghost.org, the platform on which Mendriso is hosted, may process your IP address and browser data for technical operation and security purposes. This is a legitimate interest of the platform operator (Art. 6 para. 1 lit. f GDPR / Art. 31 para. 2 lit. a revDSG).
If you subscribe to the free newsletter Your email address is collected and stored to send you Mendriso articles. Legal basis: your consent (Art. 6 para. 1 lit. a GDPR). You can withdraw consent at any time by clicking the unsubscribe link in any email.
If you become a paid member In addition to your email address, Stripe processes your payment data (card details, billing address) to handle subscription billing. Mendriso does not store or have access to your full payment details. Stripe acts as an independent data controller for payment processing. See Stripe's privacy policy at stripe.com/privacy.
Your name (if provided) and membership tier are stored in Ghost to manage your access. Legal basis: performance of a contract (Art. 6 para. 1 lit. b GDPR).
Service providers and data processors
| Provider | Purpose | Location | Basis |
|---|---|---|---|
| Ghost Foundation | Platform hosting, email delivery, membership management | EU (Amsterdam) | Data Processing Agreement |
| Stripe | Payment processing | US | Independent controller |
Ghost Foundation stores all customer data in EU-based data centres (Amsterdam) and is GDPR-compliant. Where data transfers outside the EU are required, Ghost Foundation applies Standard Contractual Clauses under its Data Processing Agreement (ghost.org/dpa).
Mendriso does not sell, rent, or share your personal data with any other third party.
How long your data is stored
Newsletter subscribers: your email address is stored until you unsubscribe. Paid members: account data is stored for the duration of the membership and deleted upon request after termination, unless retention is required by Swiss accounting law (10 years for financial records under OR Art. 958f).
Your rights
Under the GDPR and the Swiss revDSG you have the right to:
- Access the personal data Mendriso holds about you
- Correct inaccurate data
- Request deletion of your data
- Withdraw consent at any time (without affecting prior processing)
- Lodge a complaint with your supervisory authority
Swiss residents may contact the Federal Data Protection and Information Commissioner (FDPIC) at edoeb.admin.ch. EU residents may contact the data protection authority in their country of residence.
To exercise any of these rights, write to: contact [at] mendriso [dot] com
Cookies
Mendriso does not set advertising or tracking cookies. Ghost may set a functional cookie to manage your login session if you are a registered member. This cookie is strictly necessary for the service to function and does not require consent.
Mendriso uses first-party, cookie-free analytics to understand how visitors interact with content on this site. When you are logged in as a member, we may record which posts you view. This data is never shared with third parties.
Changes to this policy
If this policy changes materially, subscribers will be informed by email. The current version is always available at mendriso.com/privacy.
Last updated: April 2026.