Privacy Policy

 

Privacy Statement

Information about the collection of personal data and contact details of the data controller

1.1 We are pleased that you are visiting our website and thank you for your interest. The following information explains how we handle your personal data when you use our website. Personal data is any information that can be used to identify you personally.

1.2 The data controller responsible for processing personal data on this website within the meaning of the General Data Protection Regulation (GDPR) is [Shop Name]. The controller is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data.

1.3 This website uses SSL or TLS encryption to ensure the security of the transmission of personal data and other confidential content (e.g., orders or inquiries to the data controller). You can recognize an encrypted connection by the "https://" prefix and the padlock icon in the address bar of your browser.

Data Collection When Visiting Our Website

When you use our website for informational purposes only, i.e., when you do not register or provide us with information in another way, we only collect the data that your browser transmits to our server (so-called "server log files"). When you visit our website, we collect the following data that is technically necessary to display the website to you:

  • The website visited
  • Date and time of access
  • Amount of data transmitted in bytes
  • The source/reference from which you reached the page
  • Used browser
  • Used operating system
  • Used IP address (if necessary: in anonymized form)

Processing is carried out based on Art. 6(1)(f) of the GDPR, based on our legitimate interest in improving the stability and functionality of our website. No transfer or other use of the data takes place. However, we reserve the right to investigate the server log files further if there are concrete indications of illegal use.

Cookies

To make your visit to our website attractive and enable the use of certain features, we use so-called cookies on various pages. These are small text files that are stored on your device. Some of the cookies we use are deleted after the end of the browser session, i.e., after you close your browser (so-called session cookies). Other cookies remain on your device and allow us or our partners (third-party cookies) to recognize your browser on your next visit (persistent cookies). When cookies are placed, they collect and process certain user information in individual cases, such as browser and location data and IP addresses. Persistent cookies are automatically deleted after a pre-set period, which may vary depending on the cookie.

Some cookies are used to store settings and facilitate the ordering process (e.g., remembering the contents of a virtual shopping cart for a later visit to the website). If personal data is processed through specific cookies we implement, this is done based on Art. 6(1)(b) of the GDPR, either for the performance of the contract or based on Art. 6(1)(f) of the GDPR to protect our legitimate interests in the best possible functionality of the website and a customer-friendly and effective design of the website visit.

We may collaborate with advertising partners who help make our online offerings more interesting for you. In this case, cookies from partner companies may also be stored on your hard drive during your visit to our website (third-party cookies). When we collaborate with these advertising partners, you will be informed separately and specifically about the use of such cookies and the scope of the data collected in the paragraphs below.

Note: You can set your browser to notify you when cookies are placed and to decide individually whether you accept them, or exclude the acceptance of cookies for certain cases or in general. Each browser differs in the way it manages cookie settings. This is explained in the help menu of each browser, which describes how you can change your cookie settings. You can find the instructions for various browsers via the following links:

Note: If you do not accept cookies, the functionality of our website may be limited.

Contacting Us
When you contact us (for example, via the contact form or email), personal data is collected. The data collected in the case of a contact form can be seen in the respective form. This data is used exclusively to respond to your inquiry or for communication and related technical administration. The legal basis for processing the data is our legitimate interest in answering your inquiry in accordance with Art. 6(1)(f) of the GDPR. If your contact is aimed at concluding a contract, an additional legal basis for processing is Art. 6(1)(b) of the GDPR. Your data will be deleted after completing your request, unless it is clear that the matter in question has been definitively resolved and there are no legal retention obligations preventing the deletion.

Data Processing when Opening a Customer Account and for the Execution of the Contract
According to Art. 6(1)(b) of the GDPR, personal data is further collected and processed when you provide it to us for the execution of a contract or when opening a customer account. The data that will be collected is visible in the respective input fields. It is always possible to delete your customer account by sending a message to the contact address of the controller mentioned above. We store and use the data you provide for the execution of the contract. After full execution of the contract or deletion of your customer account, your data will be blocked in view of tax and commercial law retention periods and deleted after the expiration of these periods, unless you have expressly consented to further use of your data or the further use of your data by us is legally permissible, in which case we will inform you in more detail below.

6. Use of Your Data for Direct Advertising

6.1 Subscription to Our Email Newsletter
When you subscribe to our email newsletter, we will regularly send you information about our offers. The required information for sending the newsletter is only your email address. Providing other data is voluntary and is used to address you personally. To send the newsletter, we use the so-called Double Opt-In method. This means that we will only send you a newsletter after you have explicitly confirmed that you agree to receive the newsletter. We will send you a confirmation email asking you to confirm that you want to receive the newsletter in the future by clicking on a link.

By activating the confirmation link, you give us permission to use your personal data in accordance with Art. 6(1)(a) of the GDPR. When subscribing to the newsletter, we store the IP address registered by your Internet Service Provider (ISP), as well as the date and time of subscription, to be able to trace any misuse of your email address later. The data we collect during the subscription to the newsletter is used exclusively for the purposes of advertising via the newsletter. You can unsubscribe from the newsletter at any time via the link provided in the newsletter or by sending a message to the responsible party mentioned above. After unsubscribing, your email address will be immediately removed from our newsletter distribution list unless you have expressly consented to further use of your data or we have reserved further use of your data, which is legally permitted, as we inform you about in this statement.

6.2 Sending the Email Newsletter to Existing Customers
If you have provided us with your email address when purchasing goods or services, we reserve the right to send you regular offers for similar goods or services you have previously purchased by email. We do not need to obtain separate consent from you for this. Data processing occurs exclusively based on our legitimate interest in personalized direct marketing under Art. 6(1)(f) of the GDPR. If you have initially objected to the use of your email address for this purpose, we will not send emails. You have the right to refuse the use of your email address for this marketing purpose at any time in the future by sending a message to the responsible party mentioned at the beginning of this statement. Only the costs for transmission according to the basic rates will be charged. After receiving your objection, the use of your email address for marketing purposes will immediately cease.

7) Data Processing for Order Fulfillment
7.1 The personal data we collect will be shared with the transport company responsible for delivery, to the extent necessary for the delivery of the goods. Your payment details will be transmitted to the designated bank for payment processing, as far as necessary for the settlement of the payment. If payment service providers are involved, we will explicitly inform you about this below. The legal basis for the transfer of data is Art. 6(1)(b) of the GDPR.

7.2 Use of Payment Service Providers (Payment Providers)
PayPal
When paying via PayPal, credit card payment via PayPal, direct debit via PayPal, or if offered, "Purchase on Account" or "Installment Payment" via PayPal, we transmit your payment details to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereafter "PayPal"). Data transfer takes place in accordance with Art. 6(1)(b) of the GDPR and only as necessary for payment processing.

PayPal reserves the right to conduct a credit check when using PayPal’s credit card payment, direct debit, or – if offered – "Purchase on Account" or "Installment Payment" options. For this purpose, your payment details may, if necessary, be transferred to credit reporting agencies based on Art. 6(1)(f) of the GDPR, pursuant to PayPal's legitimate interest in assessing your payment capacity. The results of the credit check, regarding the statistical probability of payment defaults, are used by PayPal to decide whether to offer the respective payment method. Credit reports may include probability values (so-called score values). If score values are processed in the credit check results, they are based on a scientifically recognized mathematical-statistical method. The calculation of the score values takes into account, among other things, address details.

For more information on PayPal's privacy practices, including the credit reporting agencies used, you can consult PayPal’s privacy statement:
https://www.paypal.com/de/webapps/mpp/ua/privacy-full

You can object to this data processing at any time by sending a message to PayPal. However, PayPal remains entitled to process your personal data for contractual payment processing if necessary.

SOFORT
If you choose the payment method SOFORT, payment processing is carried out via the payment service provider SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany (hereafter "SOFORT"). We transmit the information you provide us during the order process, along with the data regarding your order, to SOFORT in accordance with Art. 6(1)(b) of the GDPR. SOFORT GmbH is part of the Klarna Group (Klarna Bank AB (publ), Sveavägen 46, 11134 Stockholm, Sweden). Data transfer occurs exclusively for the purposes of payment processing via SOFORT and only to the extent necessary.

For more information on SOFORT’s privacy practices, you can consult their privacy statement:
https://www.klarna.com/sofort/datenschutz

8) Contacting Us for Review Reminder
Own Review Reminder (Not Sent via Customer Review System)
We use your email address for a one-time reminder to leave a review of your order for the review system we use, provided you have explicitly given us your consent during or after your order in accordance with Art. 6(1)(a) of the GDPR.
You can withdraw your consent at any time by sending a message to the data controller.

9) Use of Social Media: Social Plugins
9.1 Facebook Plugins with Shariff Solution
On our website, we use social plugins ("Plugins") from the social network Facebook, operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA ("Facebook").

To increase the protection of your data when visiting our website, these buttons are not directly embedded as plugins but are placed on the page only via an HTML link. This integration method ensures that no connection to Facebook’s servers is made when you visit a page on our website containing these buttons. When you click the button, a new browser window opens, and the Facebook page loads, where you can (if necessary, after logging in) interact with the plugins available there.

Facebook Inc., located in the USA, is certified under the US-EU Privacy Shield agreement, ensuring that the level of protection for personal data in the EU is complied with.

The purpose and scope of data collection, further processing and use of the data by Facebook, as well as your rights and settings options for the protection of your privacy, can be found in Facebook's privacy policy:
https://www.facebook.com/policy.php

Here’s the translation into English:

9.2 Google+ Plugins as Shariff Solution

Our website uses so-called social plugins ("Plugins") from the social network Google+, managed by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google").

To increase the protection of your data when visiting our website, these buttons are not directly embedded as plugins but are only placed via an HTML link on the page. This method of integration ensures that no connection to the Google+ servers is made when you visit a page of our website containing these buttons. When you click the button, a new browser window opens, and the Google+ page loads, where you can (if necessary, after entering your login details) interact with the plugins available there.

Google LLC, based in the USA, is certified under the U.S.-EU Privacy Shield Agreement, ensuring that the level of data protection required in the EU is complied with.

The purpose and scope of data collection and the further processing and use of data by Google, as well as your rights and options for the protection of your privacy, can be found in Google's privacy policy:
https://www.google.com/intl/de/policies/privacy/

9.3 Instagram Plugin as Shariff Solution

Our website uses social plugins ("Plugins") from the online service Instagram, managed by Instagram LLC, 1601 Willow Rd, Menlo Park, CA 94025, USA ("Instagram").

To increase the protection of your data when visiting our website, these buttons are not directly integrated as plugins but are only placed via an HTML link on the page. This integration method ensures that no connection to the Instagram servers is made when you visit a page of our website containing these buttons. When you click the button, a new browser window opens, and the Instagram page loads, where you can (if necessary, after entering your login details) interact with the plugins available there.

Instagram LLC, based in the USA, is certified under the U.S.-EU Privacy Shield Agreement, ensuring that the level of data protection required in the EU is complied with.

The purpose and scope of data collection and the further processing and use of data by Instagram, as well as your rights and options for the protection of your privacy, can be found in Instagram's privacy policy:
https://help.instagram.com/155833707900388/

10) Online Marketing

10.1 DoubleClick by Google
This website uses the online marketing tool DoubleClick by Google, managed by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("DoubleClick").

DoubleClick uses cookies to display ads that are relevant to users, to improve campaign performance reports, or to prevent a user from seeing the same ad multiple times. Google collects information via a cookie ID about which ads are displayed in which browser and can thus prevent the same ads from being shown repeatedly. The processing is carried out based on our legitimate interest in optimally promoting our website, according to Article 6(1)(f) of the GDPR.

Additionally, DoubleClick can use cookie IDs to track so-called "conversions," which relate to ad requests. For example, this occurs when a user sees a DoubleClick ad and later visits the same advertiser's website and makes a purchase. According to Google, DoubleClick cookies do not contain personal data.

When using marketing tools, your browser automatically establishes a direct connection to the Google server. We have no influence over the scope and further use of the data collected by Google via this tool and, therefore, inform you according to our current knowledge: through the integration of DoubleClick, Google receives the information that you have visited the relevant section of our website or clicked on one of our ads. If you are registered with a Google service, Google can associate your visit with your account. Even if you are not registered with Google or not logged in, it is possible that the provider may detect and store your IP address.

If you do not want to participate in this tracking process, you can deactivate cookies for conversion tracking by setting your browser to block cookies from the domain www.googleadservices.com at https://www.google.de/settings/ads, noting that this setting will be removed if you clear your cookies. Alternatively, you can find information on how to set cookies at the Digital Advertising Alliance at www.aboutads.info and adjust your settings there. Finally, you can set your browser to notify you about cookie placement and decide individually whether to accept them, exclude the placement of cookies for certain cases, or in general. If you do not accept cookies, the functionality of our website may be limited.

Google LLC, based in the USA, is certified under the U.S.-EU Privacy Shield Agreement, which ensures compliance with the level of protection of personal data required in the EU.

More information about DoubleClick by Google's privacy policy can be found here:
https://www.google.de/policies/privacy/

10.2 Use of Google AdWords Conversion Tracking
This website uses the online advertising program "Google AdWords" and conversion tracking by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). We use Google's AdWords service to attract attention to our attractive offers through ads (so-called Google AdWords) on external websites. Based on the data from the advertising campaigns, we can determine how successful various advertising actions are. This aims to show you ads that are relevant to you, make our website more interesting for you, and achieve a fair calculation of advertising costs.

The conversion tracking cookie is placed when a user clicks on a Google-advertised AdWords ad. Cookies are small text files stored on your computer system. These cookies usually expire after 30 days and do not serve personal identification purposes. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognize that the user has clicked on the ad and was redirected to this page. Each Google AdWords customer receives a different cookie. Cookies cannot, therefore, be tracked across AdWords customer websites. The data collected via the conversion cookie is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. The customers are shown the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that would allow personal identification of users.

If you do not wish to participate in this tracking process, you can block its use by disabling the Google conversion tracking cookie in your internet browser settings. You will then not be included in the conversion tracking statistics. We use Google AdWords based on our legitimate interest in targeted advertising according to Article 6(1)(f) of the GDPR.

Google LLC, based in the USA, is certified under the U.S.-EU Privacy Shield Agreement, which ensures compliance with the level of protection of personal data required in the EU.

More information about Google's privacy policy can be found at:
https://www.google.de/policies/privacy/

You can permanently deactivate cookies for advertising preferences by blocking them via an appropriate setting in your browser or by downloading and installing the browser plugin available at the following link:
https://www.google.com/settings/ads/plugin?hl=de

Note: Some features of this website may not work or may only work to a limited extent if you have deactivated cookies.

11) Web Analytics Tools

Google (Universal) Analytics

Google Universal Analytics

This website uses Google Analytics, a web analytics tool by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). Google Analytics uses so-called "cookies," text files stored on your computer, which allow an analysis of your use of the website. The information collected by the cookie about your use of this website (including the truncated IP address) is usually transmitted to a Google server in the USA and stored there.

This website uses Google Analytics only with the "_anonymizeIp()" extension, which ensures the anonymization of the IP address by truncating it and excluding direct association with a person. Thanks to this extension, your IP address is truncated by Google within the member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. In these exceptional cases, this processing is based on Article 6(1)(f) of the GDPR, due to our legitimate interest in statistical analysis of user behavior for optimization and marketing purposes.

On our behalf, Google will use this information to evaluate your use of the website, to compile reports on website activities, and to provide other services related to the use of the website and the internet. The IP address sent by your browser as part of Google Analytics will not be merged with other Google data.

You can prevent the storage of cookies by making an appropriate setting in your browser software. However, we inform you that, in this case, you may not be able to fully use all features of this website. Additionally, you can prevent the collection of data generated by the cookie about your use of the website (including your IP address) by Google and the processing of these data by Google by downloading and installing the browser plugin available at the following link:
https://tools.google.com/dlpage/gaoptout?hl=de

Alternatively, for mobile devices, you can click on the following link to set an opt-out cookie that will prevent the collection by Google Analytics on this website in the future (this opt-out cookie works only in this browser and only for this domain; if you delete your cookies in this browser, you must click this link again):
Deactivate Google Analytics

Google LLC, based in the USA, is certified for the U.S.-EU Privacy Shield Agreement, ensuring compliance with the level of data protection required in the EU.

This website also uses Google Analytics for cross-device analysis of visitor flows, which is performed using a user ID. When a user visits a page for the first time, a unique, permanent, and anonymous ID is assigned to the user, which is set across devices. This allows interaction data from different devices and sessions to be attributed to a single user. The user ID does not contain personal data and does not send it to Google.

The collection and storage of data via the user ID can be revoked at any time with effect for the future. To do this, you must deactivate Google Analytics on all systems where you use it, such as in a different browser or on your mobile device. You can deactivate it using a browser plugin from Google:
https://tools.google.com/dlpage/gaoptout?hl=de. Alternatively, for mobile devices, you can click on the following link to set an opt-out cookie, preventing the collection by Google Analytics on this website in the future (this opt-out cookie works only in this browser and only for this domain; if you delete your cookies in this browser, you must click this link again):
Deactivate Google Analytics

More information about Universal Analytics can be found here:
https://support.google.com/analytics/answer/2838718?hl=de&ref_topic=6010376

  1. RETARGETING / REMARKETING / RECOMMENDATION ADVERTISING
    Facebook Custom Audience via the Pixel Method
    This website uses the "Facebook Pixel" from Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA ("Facebook"). With explicit consent, this can track users' behavior after they click on a Facebook advertisement.

Facebook Custom Audience via the Pixel Method (continued)
This process is used to evaluate the effectiveness of Facebook ads for statistical and market research purposes and can help optimize future ad campaigns.

The data collected is anonymous to us, meaning it does not provide any information about the users' identity. However, the data is stored and processed by Facebook, enabling it to link to the respective user profile and use the data for its own advertising purposes, in accordance with Facebook’s privacy policy (https://www.facebook.com/about/privacy/).

You can allow Facebook and its partners to show ads on and off Facebook. A cookie may also be stored on your computer for these purposes. These processing activities will only take place if you have explicitly consented according to Article 6(1)(a) of the GDPR.

Consent for the use of the Facebook Pixel may only be given by users who are over the age of 13. If you are younger, we ask for consent from your parents or guardians.

Facebook Inc., based in the USA, is certified under the EU-U.S. Privacy Shield framework, which ensures compliance with the EU’s data protection level.

To disable the use of cookies on your computer, you can configure your internet browser to prevent cookies from being stored on your computer, or delete cookies that have already been placed. However, disabling all cookies may result in certain features on our website not functioning properly. You can also disable the use of cookies by third parties, such as Facebook, through the following website by the Digital Advertising Alliance:
https://www.aboutads.info/choices/

Google AdWords Remarketing
Our website uses Google AdWords Remarketing features. With this, we advertise for this website in Google search results and on other websites. The provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).

For this purpose, Google places a cookie in your device’s browser, enabling the display of interest-based ads based on a pseudonymous cookie ID and the pages you have visited. The processing is based on our legitimate interest in optimal marketing of our website, in accordance with Article 6(1)(f) of the GDPR.

Further data processing occurs only if you have granted Google permission to link your web and app browsing traffic with your Google account and use information from your Google account to personalize the ads you see on the web. If you are logged into Google while visiting our website, Google uses your data along with Google Analytics data to create and define audience lists for cross-device remarketing.

To permanently disable the placement of cookies for ad settings, you can download and install the browser plugin via the following link:
https://www.google.com/settings/ads/onweb/

You can also sign up with the Digital Advertising Alliance at www.aboutads.info for more information on setting cookies and managing your preferences. Furthermore, you can configure your browser to notify you about the placement of cookies and decide individually whether to accept them or exclude them for specific cases or in general. If you do not accept cookies, certain features of our website may be limited.

Google LLC, based in the USA, is certified under the EU-U.S. Privacy Shield framework, which ensures compliance with the EU’s data protection level.

More information and the privacy policy regarding ads and Google can be found here:
https://www.google.com/policies/technologies/ads/

  1. RIGHTS OF THE DATA SUBJECT
    13.1 The applicable data protection laws provide you with extensive rights regarding the processing of your personal data by the data controller.

Rights of the data subject (Information and intervention rights), which we inform you about below:

Right of access according to Art. 15 GDPR:
You have the right to access the personal data we process about you, the purposes of processing, the categories of processed personal data, the recipients or categories of recipients to whom your data have been or will be disclosed, the planned retention period or the criteria used to determine the retention period, the existence of a right to rectification, deletion, restriction of processing, objection to processing, filing a complaint with a supervisory authority, the origin of your data if not collected by us from you, the existence of automated decision-making, including profiling, and any significant information about the logic involved, as well as the consequences and intended effects of such processing, and your right to information about safeguards under Art. 46 GDPR when your data is transferred to third countries.

Right to rectification according to Art. 16 GDPR:
You have the right to immediately correct inaccurate data concerning you and/or complete incomplete data we hold about you.

Right to deletion according to Art. 17 GDPR:
You have the right to request the deletion of your personal data if the conditions of Art. 17(1) GDPR are met. However, this right does not apply if the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise, or defense of legal claims.

Right to restriction of processing according to Art. 18 GDPR:
You have the right to request the restriction of the processing of your personal data as long as the accuracy of your data is disputed, if you refuse the deletion of your data due to unlawful processing and instead request the restriction of processing, if you need the data for the establishment, exercise, or defense of legal claims, after we no longer need the data for the purpose, or if you have objected based on your particular situation, as long as it has not been determined whether our legitimate interests outweigh yours.

Right to notification according to Art. 19 GDPR:
If you have invoked your right to rectification, deletion, or restriction of processing with the data controller, they are required to inform all recipients of your personal data about the rectification or deletion of the data or restriction of processing unless this is impossible or requires disproportionate effort. You have the right to be informed about these recipients.

Right to data portability according to Art. 20 GDPR:
You have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format or to request the transfer of such data to another controller, where technically feasible.

Right to withdraw consent according to Art. 7(3) GDPR:
You have the right to withdraw your consent to data processing at any time with effect for the future. Upon withdrawal, we will immediately delete the relevant data unless further processing is based on a legal basis for processing without consent. The withdrawal of consent does not affect the lawfulness of processing based on consent until the withdrawal.

Right to lodge a complaint according to Art. 77 GDPR:
If you believe that the processing of your personal data is in violation of the GDPR, you have the right to lodge a complaint with a supervisory authority, particularly in the member state of your residence, place of work, or the place of the alleged infringement, without prejudice to other administrative or judicial remedies.

13.2 RIGHT TO OBJECT
If we process your personal data based on a legitimate interest, you have the right to object to this processing for reasons arising from your particular situation, with future effect.

If you exercise your right to object, we will stop processing the relevant data. However, further processing may be possible if we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing is for the establishment, exercise, or defense of legal claims.

If your personal data is processed by us for direct marketing purposes, you have the right to object at any time to the processing of your personal data for those marketing purposes. You can exercise this objection as described above.

If you exercise your right to object, we will stop processing the relevant data for direct marketing purposes.

  1. DURATION OF STORAGE OF PERSONAL DATA
    The duration of the storage of personal data depends on the applicable statutory retention periods (e.g., commercial and tax law retention periods). After the expiration of the retention period, the data will be routinely deleted, unless they are still required for the performance of the contract or the preparation of a contract and/or if there is no legitimate interest for further storage.