Privacy Policy

1. Controller

The controller responsible for processing personal data on this website is MomoGo, Tenzin Dolma, Schaffhauserstrasse 58, 8180 Bülach, Switzerland.

MomoGo is a Swiss-Tibetan food brand focused on frozen momo, catering and restaurant partnerships in Bülach, Zurich Unterland and the Zurich region.

2. Scope

This Privacy Policy applies to momogo.ch, the localized pages under /de and /en, our inquiry forms, newsletter signups, campaign links and related online communication.

External websites or services linked from this website are governed by the privacy information of the respective providers.

3. Personal data we process

• Contact details: name, email address, optional phone number, address and communication content.
• Inquiry details: requested momo types and quantities, pickup or delivery, delivery address, date, time window, event details, number of people, catering services, restaurant name, restaurant address and expected monthly volumes.
• Voluntary details: notes, dietary or allergy information, special requests and any details you choose to provide in a form.
• Technical data: IP address, browser and device data, date and time of access, pages visited, referrer, server logs, consent settings and theme settings.
• Marketing and campaign data: UTM parameters, campaign source, CTA clicks, form starts, form submissions and similar usage events, where technically collected and permitted by your consent.
• Newsletter data: email address, language, signup time and signup source.

4. Purposes of processing

• Answering inquiries and preparing offers for frozen momo, catering, events and restaurant partnerships.
• Planning, fulfilling and following up on orders, deliveries, pickups, catering services and B2B contacts.
• Operating, securing, troubleshooting and improving the website.
• Measuring campaigns and website usage if you allow analytics or marketing tags.
• Sending confirmation emails, internal notifications and, if you sign up, MomoGo updates.
• Complying with legal duties, retaining business records and protecting legitimate interests.

5. Recipients and service providers

We disclose personal data only where this is necessary for the purposes described above, where consent has been given or where a legal obligation applies.

• Vercel for hosting, delivery and technical website infrastructure.
• Supabase for storing inquiry and newsletter data.
• HubSpot for CRM, lead management, forms and pipeline processes.
• Resend for transactional emails such as inquiry confirmations and internal notifications.
• PostHog for product and website analytics after analytics consent.
• Google Tag Manager and possible marketing tags only after marketing consent.
• Google Maps when the map or a map link is opened.

Service providers process data on our behalf or as independent controllers under their own terms. We select providers carefully and limit access to what is necessary.

6. Processing abroad

Some service providers may process personal data in Switzerland, the EEA, the United States or other countries. Where data is transferred to countries without an adequate level of data protection, we use appropriate safeguards where required, in particular standard contractual clauses or equivalent protection mechanisms.

Additional provider privacy terms may apply to individual services, especially when you open external content such as Google Maps.

7. Cookies, consent and local storage

The website uses necessary technical storage so that core functions, consent settings and theme selection work. Analytics and marketing tags are activated only if you consent through the consent banner.

You can change your consent at any time by deleting local website data in your browser or by giving a new consent when the banner is shown again.

• Necessary: consent status and theme setting.
• Analytics: PostHog page views and usage events after consent.
• Marketing: Google Tag Manager and possible advertising or conversion tags after consent.

8. Retention

We retain personal data only for as long as necessary for the relevant purposes. Inquiry data is generally kept for as long as the inquiry, an offer, a business relationship, follow-up or quality assurance requires.

Business and accounting records may be retained longer due to legal duties, typically up to ten years. Newsletter data is stored until unsubscribe or deletion. Technical logs and analytics data are deleted or anonymized when they are no longer needed for operation, security or analysis.

9. Your rights

Under Swiss data protection law, you may in particular request access to your personal data, ask for inaccurate data to be corrected, request deletion or restriction of processing, object to processing or withdraw consent for the future.

We usually respond to requests within 30 days. Legal exceptions remain reserved, for example where overriding private or public interests, statutory duties or legal claims prevent full compliance.

10. Automated decisions and profiling

MomoGo does not use the website to make automated individual decisions that have legal effects or similarly significant effects on you.

Analytics and marketing data may be used to evaluate campaigns and improve the website, but only within the scope of your consent and without high-risk profiling.

11. Data security

We use appropriate technical and organizational measures to protect personal data against loss, misuse, unauthorized access and unauthorized disclosure. These include encrypted connections, access restrictions, carefully selected service providers and forms designed to collect only what is needed.

No digital transmission is completely risk-free. Please do not send us particularly sensitive information that is not required for your inquiry.

12. Changes

We may update this Privacy Policy if our website, services, business processes or legal requirements change. The current version is available on this page.