Privacy Policy

Privacy Policy

 

1) Information on the Collection of Personal Data and Contact Details of the Responsible Party

 

1.1 We are pleased that you are visiting our website and thank you for your interest. Below, we inform you about the handling of your personal data when using our website. Personal data refers to all data that can be used to personally identify you.

 

1.2 The responsible party for data processing on this website in accordance with the General Data Protection Regulation (GDPR) is [Shop Name]. The responsible party for the processing of personal data is the individual or legal entity that determines the purposes and means of processing personal data alone or in collaboration with others.

 

1.3 This website uses SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g., orders or inquiries to the responsible party). You can recognize an encrypted connection by the “https://” and the lock icon in your browser’s address bar.

 

2) Data Collection When Visiting Our Website

 

When you visit our website for informational purposes only, without registering or providing information, we collect only the data that your browser sends to our server (so-called “server log files”). When you access our website, we collect the following data necessary for displaying the website:

 

The website visited

Date and time of access

Amount of data sent in bytes

Source/reference from which you accessed the site

Browser used

Operating system used

IP address used (possibly in anonymized form)

 

Processing is done according to Art. 6(1)(f) GDPR, based on our legitimate interest in improving the stability and functionality of our website. Data is not transferred or used in any other way. However, we reserve the right to review the server log files if there are specific indications of illegal use.

 

3) Cookies

 

To make visiting our website attractive and to enable the use of certain functions, we use cookies on various pages. These are small text files stored on your device. Some of the cookies we use are deleted after the browser session ends (session cookies). Other cookies remain on your device and allow us or our partner companies (third-party cookies) to recognize your browser during your next visit (persistent cookies). If cookies are set, they collect and process specific user information such as browser and location data, as well as IP address values. Persistent cookies are deleted automatically after a predefined period, which may vary depending on the cookie.

 

Some cookies help simplify the ordering process by storing settings (e.g., remembering the contents of a virtual shopping cart for a later visit). If personal data is processed by cookies, this processing is done in accordance with Art. 6(1)(b) GDPR for the fulfillment of the contract, or based on our legitimate interest in ensuring the best possible functionality of the website and a customer-friendly experience, as per Art. 6(1)(f) GDPR.

 

We may work with advertising partners who help us make our online offerings more interesting for you. In this case, cookies from partner companies are also stored on your hard drive (third-party cookies). You will be individually informed about the use of such cookies and the scope of information collected.

 

Please note that you can configure your browser to inform you about the use of cookies and allow you to decide on their acceptance on a case-by-case basis or to generally exclude the acceptance of cookies. Each browser handles cookie settings differently, as described in the help menu of your browser.

 

4) Contacting Us

 

When contacting us (e.g., via contact form or email), personal data is collected. The specific data collected in a contact form is evident from the form itself. This data is stored and used exclusively for the purpose of responding to your request or for establishing contact and the related technical administration. The legal basis for processing data is our legitimate interest in responding to your inquiry as per Art. 6(1)(f) GDPR. If your inquiry aims to conclude a contract, the additional legal basis for processing is Art. 6(1)(b) GDPR. Your data will be deleted once your request has been fully processed, provided no legal retention obligations apply.

 

5) Data Processing for Opening a Customer Account and Contract Fulfillment

 

In accordance with Art. 6(1)(b) GDPR, personal data will continue to be collected and processed if you provide it to us for the execution of a contract or when opening a customer account. The specific data collected is evident from the input forms. You can delete your customer account at any time by notifying the responsible party. After complete fulfillment of the contract or deletion of your customer account, your data will be blocked concerning tax and commercial retention periods and deleted after the expiry of these periods unless you have expressly consented to further use of your data or we are legally allowed to continue using the data, as explained below.

 

6) Use of Your Data for Direct Marketing

 

6.1 Newsletter Subscription

 

If you subscribe to our email newsletter, we will regularly send you information about our offers. The only required information for sending the newsletter is your email address. You may provide additional data voluntarily, which we use to address you personally. For sending the newsletter, we use the double opt-in process, which means we will only send you an email newsletter after you have expressly confirmed your subscription. You will receive a confirmation email asking you to click on a link to confirm that you wish to receive newsletters in the future.

 

With the activation of the confirmation link, you consent to the use of your personal data according to Art. 6(1)(a) GDPR. When registering for the newsletter, we store your IP address as provided by your Internet Service Provider (ISP) as well as the date and time of registration to prevent misuse of your email address. The data collected when registering for the newsletter will only be used to send the newsletter.

 

You can unsubscribe from the newsletter at any time via the link provided in the newsletter or by notifying the responsible party. After unsubscribing, your email address will be deleted immediately from our newsletter mailing list unless you have expressly consented to further use of your data, or we reserve the right to continue using your data as permitted by law, which we inform you about in this statement.

 

6.2 Email Newsletter to Existing Customers

 

If you have provided your email address during the purchase of goods or services, we may use it to send regular offers for similar products or services without requiring your express consent. The data processing is based solely on our legitimate interest in personalized direct marketing according to Art. 6(1)(f) GDPR. If you initially objected to the use of your email address for this purpose, no email will be sent. You can object to the use of your email address for direct marketing at any time by notifying the responsible party. You will only be charged for the basic transmission costs according to standard rates. After receiving your objection, the use of your email address for advertising purposes will immediately cease.

 

7. Data Processing for Order Fulfillment

 

7.1 Data Transmission for Delivery and Payment Processing

The personal data collected by us is shared with the delivery company responsible for shipping, to the extent necessary for the delivery of the goods. Your payment data is shared with the credit institution handling the payment, as required for the transaction. If we use payment service providers, further details are provided below. The legal basis for this data transfer is Article 6 (1) (b) GDPR.

 

7.2 Use of Payment Service Providers (Payment Processors)

 

PayPal

When paying via PayPal, credit card via PayPal, direct debit via PayPal, or – if available – “purchase on account” or “installment payment” via PayPal, your payment data is passed to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (“PayPal”), for payment processing. This is done according to Article 6 (1) (b) GDPR and only to the extent necessary.

 

For certain payment methods like credit card, direct debit, or installment plans via PayPal, a credit check may be performed. For this, PayPal might share your payment data with credit agencies, as allowed by Article 6 (1) (f) GDPR, to assess creditworthiness. You can find more privacy details in PayPal’s privacy policy.

If you object to this data processing, you can inform PayPal, but they may still be able to process your personal data for contractually necessary payments.

 

SOFORT

When using “SOFORT” as the payment method, the payment processing is done via SOFORT GmbH, part of the Klarna Group, and your data is shared to the extent necessary for processing the payment (Article 6 (1) (b) GDPR).

More information about SOFORT’s data privacy can be found here.

 

8. Contact for Review Reminders

 

If you have given explicit consent (Article 6 (1) (a) GDPR), we may send you an email reminding you to review your order. You can revoke this consent at any time.

 

9. Use of Social Media Plugins

 

9.1 Facebook Plugins with Shariff Solution

Our website uses Facebook plugins, but these are integrated using an HTML link to protect your data. This ensures that no direct connection to Facebook servers is established unless you click on the link. Facebook Inc. is certified under the EU-US Privacy Shield, ensuring compliance with EU privacy standards. More information can be found in Facebook’s privacy policy.

 

9.2 Google+ Plugins with Shariff Solution

Similar to Facebook, we use Google+ plugins via an HTML link to prevent direct data transfer. Google LLC is also certified under the Privacy Shield. You can view their privacy policy here.

 

9.3 Instagram Plugins with Shariff Solution

We use Instagram plugins in a similar manner. Instagram LLC is also Privacy Shield certified. Their privacy policy provides more details.

 

10. Online Marketing

 

10.1 DoubleClick by Google

Our website uses DoubleClick, a Google tool for online marketing. This tool uses cookies to track ad effectiveness, and Google may collect data like IP addresses. The legal basis for this is our legitimate interest under Article 6 (1) (f) GDPR. You can opt-out of this tracking via browser settings or by visiting this site.

Google LLC is certified under the Privacy Shield. More about DoubleClick’s privacy policy here.

 

10.2 Google AdWords Conversion Tracking

We use Google AdWords to display ads and track conversions. When you click an ad, a cookie is set, allowing us to track purchases. Google LLC is certified under the Privacy Shield, and further information can be found here.

 

These sections detail how customer data is processed for payment, shipping, and marketing purposes, ensuring compliance with the GDPR, and provide options for users to manage or opt-out of certain data uses.


11) WEB ANALYSIS SERVICES

 

Google (Universal) Analytics

 

This website uses Google Analytics, a web analysis service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Analytics uses “cookies,” which are text files stored on your computer that allow the analysis of your website usage. The information generated by the cookie about your use of this website (including your shortened IP address) is generally transmitted to a Google server in the USA and stored there.

 

This website uses Google Analytics exclusively with the “_anonymizeIp()” extension, which ensures that IP addresses are anonymized by truncation and prevents direct personal identification. This extension shortens your IP address within the member states of the European Union or other contracting states of the Agreement on the European Economic Area before transmission to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. In such exceptional cases, the processing is carried out in accordance with Article 6(1)(f) GDPR based on our legitimate interest in statistical analysis of user behavior for optimization and marketing purposes.

 

On our behalf, Google will use this information to evaluate your use of the website, compile reports on website activity, and provide other services related to website usage and internet usage. The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data.

 

You can prevent the storage of cookies by adjusting your browser settings; however, please note that in this case, you may not be able to use all the features of this website fully. You can also prevent the collection of the data generated by the cookie related to your website usage (including your IP address) and the processing of this data by Google by downloading and installing the browser plugin available at the following link:

Google Opt-Out Plugin

 

Alternatively, you can set an opt-out cookie by clicking the following link, which will prevent future collection by Google Analytics on this website (this opt-out cookie works only in this browser and for this domain; if you delete your cookies in this browser, you must click this link again):

Deactivate Google Analytics

 

Google LLC, based in the USA, is certified under the EU-US Privacy Shield, which ensures compliance with the data protection standards applicable in the EU.

 

This website also uses Google Analytics for cross-device analysis of visitor flows, which is performed using a user ID. When a page is first visited, the user is assigned a unique, permanent, and anonymous ID that is used across devices. This makes it possible to assign interaction data from different devices and sessions to a single user. The User-ID does not contain any personal data and does not transmit such data to Google.

 

You can object to data collection and storage using the User-ID at any time with future effect. To do so, you must disable Google Analytics on all systems you use, for example, in a different browser or on your mobile device.

You can deactivate it using a Google browser plugin:

Google Opt-Out Plugin

Alternatively, click the following link to set an opt-out cookie:

Deactivate Google Analytics

Further information on Universal Analytics can be found here:

Google Support on Universal Analytics

 

12) RETARGETING / REMARKETING / RECOMMENDATION ADVERTISING

 

Facebook Custom Audience via the Pixel Method

 

This website uses the “Facebook Pixel” from Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA (“Facebook”). With explicit consent, this pixel can track user behavior after they have seen or clicked on a Facebook advertisement. This process is used to evaluate the effectiveness of Facebook ads for statistical and market research purposes and may help optimize future advertising efforts.

 

The data collected is anonymous to us, meaning it does not provide us with any direct information about the user’s identity. However, the data is stored and processed by Facebook, making a connection to the user’s profile possible. Facebook can use this data for its own advertising purposes, in accordance with its data usage policy:

Facebook Privacy Policy

 

This allows Facebook and its partners to display ads on and off Facebook. A cookie may also be stored on your computer for these purposes. These processing operations are only carried out with explicit consent in accordance with Article 6(1)(a) GDPR.

 

Consent for the use of the Facebook Pixel may only be given by users who are older than 13 years of age. If you are younger, please ask your guardians for permission.

 

Facebook Inc., based in the USA, is certified under the EU-US Privacy Shield, ensuring compliance with the data protection standards applicable in the EU.

 

To disable cookies on your computer, you can set your internet browser to prevent future cookies from being placed on your computer or to delete cookies already placed. Disabling all cookies may limit the functionality of some features on our website. You can also disable the use of cookies by third-party providers such as Facebook on the following Digital Advertising Alliance website:

Digital Advertising Alliance

 

Google AdWords Remarketing

 

Our website uses Google AdWords Remarketing features to advertise this website in Google search results and on third-party websites. The provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). For this purpose, Google places a cookie in your browser, which automatically enables interest-based advertising based on the websites you visit, using a pseudonymous Cookie-ID. The processing is based on our legitimate interest in the optimal marketing of our website, in accordance with Article 6(1)(f) GDPR.

 

Further data processing will only occur if you have consented to Google linking your web and app browsing history to your Google account and using information from your Google account to personalize the ads you see on the web. If you are logged into Google during your visit to our website, Google will use your data along with Google Analytics data to create and define audience lists for cross-device remarketing. To achieve this, Google temporarily links your personal data with Google Analytics data.

 

You can permanently disable the setting of cookies for ad preferences by downloading and installing the browser plug-in available at the following link:

Google Ads Settings

Alternatively, you can adjust cookie settings on the Digital Advertising Alliance website:

Digital Advertising Alliance

 

Google LLC, based in the USA, is certified under the EU-US Privacy Shield, ensuring compliance with the data protection standards applicable in the EU.

 

Further information and Google’s privacy policy regarding advertising can be found here:

Google Ads Privacy

 

13) RIGHTS OF THE DATA SUBJECT

 

13.1 Right to Information (Article 15 GDPR): You have the right to request detailed information about the personal data we process about you, including the purposes of the processing, categories of data, recipients, and storage duration.

 

13.2 Right to Rectification (Article 16 GDPR): You have the right to correct incorrect data or complete incomplete data we have stored about you.

 

13.3 Right to Erasure (Article 17 GDPR): You have the right to request the deletion of your personal data under certain conditions. This right may not apply in cases such as the exercise of free speech, compliance with legal obligations, or the defense of legal claims.

 

13.4 Right to Restrict Processing (Article 18 GDPR): You can request the restriction of processing while your data’s accuracy is disputed, if the processing is unlawful, or if you need your data to establish, exercise, or defend legal claims.

 

13.5 Right to Data Portability (Article 20 GDPR): You have the right to receive your personal data in a structured, machine-readable format or request its transfer to another controller.

 

13.6 Right to Withdraw Consent (Article 7(3) GDPR): You can withdraw your consent for data processing at any time with future effect.

 

13.7 Right to Lodge a Complaint (Article 77 GDPR): You can file a complaint with a supervisory authority if you believe your data is being processed unlawfully.

 

13.8 Right to Object (Article 21 GDPR): You can object to data processing based on legitimate interests or direct marketing purposes.

 

14) DURATION OF PERSONAL DATA STORAGE

 

The duration of storage depends on the applicable legal retention periods (e.g., commercial or tax-related retention periods). After the period expires, the data will be routinely deleted unless required for contract fulfillment or if legitimate interests exist to retain the data.

 

This concludes the translation of the provided sections.