Privacy Policy

Unless otherwise specified below, the provision of your personal data is neither required by law or contract nor required for a contract to be concluded. You are not obliged to provide the data. Failure to provide it will not result in any consequences. This only applies if no other information is provided in the subsequent processing operations.

“Personal data” means any information relating to an identified or identifiable individual.

Server log files

You can visit our websites without providing any personal information.

Every time you access our website, usage data is transmitted to us or our web host/IT service provider by your Internet browser and recorded in log data (server log files). This stored data includes, for example, the name of the page retrieved, date and time of retrieval, the IP address, the transferred data quantity and the requesting provider.

Data is processed on the basis of Article 6(1)(f) GDPR (General Data Protection Regulation) as a result of our overriding legitimate interest in ensuring the trouble-free operation of our website and to improve our offering.

Contact

Controller/data protection officer

Please contact us if required. The controller for data processing is: Mathias Gärtner, Heinheimer Strasse 38, 64289 Darmstadt Germany, +49 (0)6151 9712640, [email protected]

You can contact our data protection officer directly at: [email protected]

Tel.: +49 (0)6151 9712640

Proactive contact by the customer via email

If you proactively contact us by email, we will only collect your personal data (name, email address, message text) to the extent provided by you. Data processing is used to process and respond to your contact request. If contact is made for implementation of pre-contractual measures (e.g. advice in case of an interest to buy, creation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Article 6(1)(b) GDPR. If contact is made for other reasons, this data processing is carried out based on Article 6(1)(f) GDPR as a result of our overriding legitimate interest in processing and responding to your request. In this case, you have the right to object to this processing of personal data relating to you at any time for reasons arising from your particular situation based on Article 6(1)(f) GDPR.

We only use your email address to process your request. Your data will then be erased in compliance with the statutory retention periods if you have not consented to further processing and use.

Collection and processing when using the contact form

When the contact form is used, we collect your personal data (name, email address, message text) only to the extent provided by you. The data processing serves the purpose of making contact. If contact is made for implementation of pre-contractual measures (e.g. advice in case of an interest to buy, creation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Article 6(1)(b) GDPR. If contact is made for other reasons, this data processing is carried out based on Article 6(1)(f) GDPR as a result of our overriding legitimate interest in processing and responding to your request. In this case, you have the right to object to this processing of personal data relating to you at any time for reasons arising from your particular situation based on Article 6(1)(f) GDPR. We only use your email address to process your request. Your data will then be erased in compliance with the statutory retention periods if you have not consented to further processing and use.

Collection and processing of applications by email

If interested in job vacancies advertised on our website, webpage visitors can apply by email. During the process, we collect your personal data only to the extent provided by you. This includes your contact details (e.g. name, email address, telephone number), information on your professional qualifications and training, information on advanced professional training and supporting documents for the specific achievements.

The purpose of the data processing is to make contact and to decide whether to establish an employment relationship with you. Provision of the data is required to carry out the application process. Your personal data is processed on the basis of Article 6(1)(b) GDPR in conjunction with Section 26(1) BDSG (Bundesdatenschutzgesetz [German Federal Data Protection Act]) for the implementation of pre-contractual measures (undergoing the application process as initiation of an employment contract).

If you have given us consent to the processing of personal data for inclusion in our applicant pool, e.g. by ticking a checkbox, the processing will occur on the basis of Article 6(1)(a) GDPR. You may withdraw your consent from us at any time without this affecting the lawfulness of the processing carried out based on the consent given prior to the withdrawal.

If special categories of personal data within the meaning of Article 9(1) GDPR are requested from applicants within the scope of the application process, such as information on the level of severe disability, this is done on the basis of Article 9(2)(b) GDPR. This is so that we can exercise the rights arising from employment law as well as social security and social protection law and comply with our obligations in this regard.

We store your personal data for as long as this is necessary to make a decision about your application. Your data will then be erased after six months at the latest if you have not consented to further processing and use. If an employment relationship arises following the application process, the data provided will be processed on the basis of Article 6(1)(b) GDPR, in conjunction with Section 26(1) BDSG for the purposes of performance of the employment relationship, and subsequently transferred to the personnel file.

Collection and processing if the application form is used

If the application form is used, we collect your personal data only to the extent provided by you. This includes your contact details (e.g. name, email address, telephone number), information on your professional qualifications and training, information on advanced professional training and supporting documents for the specific achievements.

The purpose of the data processing is to make contact and to decide whether to establish an employment relationship with you. Provision of the data is required to carry out the application process. Your personal data is processed on the basis of Article 6(1)(b) GDPR in conjunction with Section 26(1) BDSG for the implementation of pre-contractual measures (undergoing the application process as initiation of an employment contract).

Customer account and orders

Customer account

When opening a customer account, we collect your personal data to the extent specified therein. The purpose of data processing is to improve your shopping experience and simplify the processing of orders. The processing takes place with your consent on the basis of Article 6(1)(a) GDPR. You can withdraw your consent at any time by notifying us without this affecting the lawfulness of the processing carried out based on the consent given prior to the withdrawal. Your customer account will then be deleted.

Collection, processing, and transfer of personal data when orders are placed

When an order is placed, we only collect and process your personal data to the extent necessary to fulfil and process your order and to process your requests. The provision of the data is required for conclusion of the contract. Failure to provide it will mean that no contract can be concluded. The processing takes place on the basis of Article 6(1)(b) GDPR and is required for the performance of a contract with you.

Your data is transferred, for example, to the delivery companies and dropshipping providers selected by you, to payment service providers, order-processing service suppliers and IT service providers. In all cases, we strictly observe statutory requirements. The scope of data transmission is limited to a minimum level.

Advertising

Use of email addresses for sending newsletters

We use your email address, irrespective of the contract processing, exclusively for our own advertising purposes for sending out newsletters, provided that you have expressly agreed to this. The processing takes place with your consent on the basis of Article 6(1)(a) GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent prior to withdrawal. You can unsubscribe from the newsletter at any time by using the relevant link in the newsletter or by notifying us. Your email address will then be removed from the mailing list.

Use of email addresses to send direct mail

We use your email address, obtained as part of the sale of a product or service, to electronically send advertising for our own goods or services that are similar to those that you have already purchased from us, unless you have objected to this use. Provision of the email address is required for the conclusion of the contract. Failure to provide it will mean that no contract can be concluded. The processing takes place on the basis of Article 6(1)(f) GDPR as a result of our overriding legitimate interest in direct advertising. You can object to this use of your email address at any time by notifying us. The contact details for exercise of the objection can be found in the legal notice. You can also use the link provided for this purpose in the promotional email. There is no cost for this other than the transmission costs at basic rates.

Use of Brevo (formerly Sendinblue)

To send our newsletters, we use the service from Sendinblue GmbH (Köpenicker Straße 126, 10179 Berlin, Germany; "Brevo") within the scope of order processing.

We forward to Brevo the information provided by you during newsletter registration (email address, if applicable first name and surname). The purpose of the data processing is to distribute newsletters and the statistical evaluation thereof.

In order to evaluate newsletter campaigns, the dispatched email newsletters contain a 1x1 pixel graphic (tracking pixel) and/or a tracking link. This allows us to determine whether you have opened the newsletter and whether you have clicked on any integrated links. In this context, your personal data, such as IP address, browser type, and device as well as the time of opening, may be collected. Usage profiles can be created from this data under a pseudonym. The data collected will not be used to identify you personally. The data collected will only be used for statistical evaluation to improve newsletter campaigns.

Your personal data is processed on the basis of Article 6(1)(f) GDPR as a result of our overriding legitimate interest in a targeted, user-friendly newsletter system with promotional appeal. You have the right to object to this processing of personal data relating to you at any time for reasons arising from your particular situation.

You can find more detailed information and Brevo’s Privacy Policy at: https://www.brevo.com/de/legal/privacypolicy/

Delivery service providers and goods management

Transfer of email addresses to delivery companies for delivery status information

We will forward your email address to the transport company within the scope of contract processing, provided that you have expressly agreed to this in the order process. The purpose of the transfer is to inform you by email about the delivery status. The processing takes place with your consent on the basis of Article 6(1)(a) GDPR. You can withdraw your consent at any time by notifying us or the transport company without affecting the lawfulness of the processing carried out based on your consent prior to the withdrawal.

Use of an external merchandise management system

For contract processing, we use a merchandise management system within the scope of order processing. For this purpose, your personal data collected as part of the order will be transmitted to Filemaker.

Payment service providers

Use of PayPal

On our website, we use the PayPal payment service from PayPal (Europe) S.à.r.l. et Cie, S.C.A. (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal"). The purpose of the data processing is to be able to offer you the option of paying via the payment service. By selecting and using payment via PayPal, the data required for payment processing is transmitted to PayPal in order to be able to fulfil the contract with you using the selected payment method. This processing takes place on the basis of Article 6(1)(b) GDPR.

All PayPal transactions are subject to the PayPal Privacy Statement. You can find it at https://www.paypal.com/de/webapps/mpp/ua/privacy-full

Use of payment service provider, Stripe

On our website, we use the Stripe payment service from Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland). The purpose of the data processing is to be able to offer you the option of paying via the payment service. By selecting and using Stripe, the data required for payment processing is transmitted to Stripe in order to be able to fulfil the contract with you using the selected payment method. This processing takes place on the basis of Article 6(1)(b) GDPR.

Stripe reserves the right to obtain a credit rating on the basis of mathematical and statistical procedures using credit agencies. For this purpose, Stripe transmits the personal data required for a credit check to a credit agency and uses the information received on the statistical probability of a default to make a balanced decision on establishing, implementing, or terminating the contractual relationship. The credit rating information can include probability values (score values) that are calculated based on scientifically recognised mathematical and statistical procedures and which in their calculation also include address data, among other things. Your legitimate interests are taken into account in accordance with the statutory provisions. The purpose of the data processing is for a credit check for the initiation of a contract. The processing takes place on the basis of Article 6(1)(f) GDPR as a result of our overriding legitimate interest in protection against payment default if Stripe makes an advance payment.

You have the right to object at any time for reasons arising from your particular situation to this processing of personal data relating to you based on Article 6(1)(f) GDPR by notifying Stripe. The provision of the data is required for conclusion of the contract using the payment method you requested. Failure to provide it will mean that no contract can be concluded using your selected payment method. All Stripe transactions are subject to the Stripe Privacy Policy. You can find it at: https://stripe.com/de/privacy

Cookies

Our website uses cookies. Cookies are small text files that are stored in the Internet browser or by the Internet browser on the computer system of a user. If a user accesses a website, a cookie can be stored on the user's operating system. This cookie contains a string of characters that allows the browser to be uniquely identified when the website is accessed again.

Cookies are stored on your computer. Therefore, you have full control over the use of cookies. By selecting appropriate technical settings in your Internet browser, you can be notified before setting cookies and decide whether to accept them individually, as well as prevent cookies being stored and the data contained therein being transmitted. Cookies already stored can be deleted at any time. However, we would like to point out that you may not be able to fully use all the functions of this website.

You can find information on how to manage (including deactivating) cookies in the major browsers under the following links:

:: Chrome: https://support.google.com/accounts/answer/61416?hl=de

:: Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09

:: Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen

:: Safari: https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac

Strictly necessary cookies

Unless otherwise specified below in the Privacy Policy, we only use these strictly necessary cookies for the purposes of making our offer more user-friendly, effective, and secure. In addition, cookies enable our systems to recognise your browser even after changing webpage and to offer you services. Some functions of our website cannot be offered without the use of cookies. These require that the browser is recognised even after changing webpage.

Cookies or comparable technologies are used based on Section 25(2) TTDSG (Telekommunikation-Telemedien-Datenschutz-Gesetz [German Telecommunications and Telemedia Data Protection Act]). Your personal data is processed on the basis of Article 6(1)(f) GDPR as a result of our overriding legitimate interest in ensuring that the website functions optimally and our offer is displayed using a user-friendly and effective design.

You have the right to object to this processing of personal data relating to you at any time for reasons arising from your particular situation.

Use of Consent Manager

The consent management tool we use on our website is Consent Manager from Consent Manager AB (Håltegelvägen 1b, 72348 Västerås, Sweden; "Consent Manager").

The tool allows you to grant consent to data processing via the website, in particular, to set cookies and to exercise your right to withdraw consent already granted.

The purpose of data processing is to obtain and document the required consent to data processing and thus to comply with statutory obligations.

Cookies can be used for this purpose. Among other things, the following information can be collected and transmitted to Consent Manager: Date and time of webpage access, information on the browser you use and the device you use, anonymised IP address, opt-in and opt-out data. This data will not be passed on to other third parties.

The data is processed to fulfil a legal obligation on the basis of Article 6(1)(c) GDPR.

You can find more information on data protection at Consent Manager at: https://www.consentmanager.net/privacy.php

Advertising tracking

Use of Google Analytics 4

On our website, we use the web analysis service, Google Analytics of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google").

Data is processed for the purposes of analysing this website and its visitors as well as for marketing and advertising purposes. To this end, Google, on behalf of the operator of this website, will use the information obtained to evaluate your use of the website, to compile reports on website activities, and to provide further services associated with website and Internet use to the website operator.

Among other things, the following information may be collected: IP address, date and time of webpage access, click path, information about the browser you used and the device you used, pages visited, referrer URL (website through which you accessed our website), location data, purchase activities. The IP address transmitted by your browser within the framework of Google Analytics is not combined with other data from Google.

Google uses technologies, such as cookies, web storage in the browser and tracking pixels, which enable analysis of your use of the website.

The information this generates about your use of this website is generally transmitted to a Google server in the USA and stored there. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and thus undertaken to comply with European data protection principles. Both Google and US government authorities have access to your data. Your data may be linked by Google to other data, such as your search history, your personal accounts, your usage data of other devices and all other data that Google has about you.

When using Google Analytics 4, the IP address transmitted by your website is automatically collected and processed in anonymised form. Prior to that, the IP address is abbreviated by Google within Member States of the European Union or in other contracting states of the Agreement on the European Economic Area.

Cookies or comparable technologies are used with your consent on the basis of Section 25(1)(1) TTDSG in conjunction with Article 6(1)(a) GDPR. Your personal data will be processed with your consent on the basis of Article 6(1)(a) GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent prior to withdrawal.

You can find more detailed information on the terms of use and data protection at https://policies.google.com/technologies/partner-sites and https://policies.google.com/privacy?hl=de&gl=de

In this context, we also use the Google Signals service. Google Signals enables cross-device tracking. Your data can thus be analysed across devices if you have activated "Personalised Ads" in your account settings and your end devices are linked to your Google account. This makes it possible to identify the device on which you are looking for products and later return to in order to complete purchases on another device, such as a tablet.

The cross-device reports created in this context only contain aggregated data. We therefore only receive statistics created on the basis of Google Signals. To prevent data collection and storage by Google Signals across devices, you can deactivate the "Personalised Ads" function in your Google account settings. More information on this can be found at https://support.google.com/ads/answer/2662922?hl=de

Further information on data processing and data protection for Google Signals can be found at https://support.google.com/analytics/answer/7532985?hl=de

Use of the Meta Pixel

On our website, we use the Meta Pixel of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; "Meta").

We and Meta are joint controllers, responsible for collecting your data when the service is integrated and transmitting this data to Meta. The basis for this is an agreement between us and Meta on the joint processing of personal data, in which the respective responsibilities are defined. The agreement can be accessed at https://de-de.facebook.com/legal/terms/businesstools. According to it, we are in particular responsible for fulfilling the information obligations pursuant to Articles 13, 14 GDPR, for compliance with the security requirements of Article 32 GDPR with regard to the correct technical implementation and configuration of the service, and for compliance with the obligations pursuant to Articles 33, 34 GDPR, insofar a breach of the protection of personal data concerns our obligations pursuant to the agreement on joint processing. Meta is responsible for enabling the rights of data subjects in accordance with Articles 15 - 20 GDPR, for complying with the security requirements of Article 32 GDPR with regard to the security of the service and the obligations in accordance with Articles 33, 34 GDPR, insofar a breach of the protection of personal data concerns the obligations of Meta in accordance with the agreement on joint processing.

The purpose of the application is to appeal to visitors to the website in a targeted manner using interest-based advertising on the social networks, Facebook and Instagram. To this end, the remarketing tag of Meta was implemented on the website. By way of this tag, a direct connection to the meta servers is established through visiting the website. This conveys to the meta server which of our pages you have visited. Meta assigns this information to your personal Facebook and/or Instagram user account. When you visit the social networks, Facebook or Instagram, you will then see personalised, interest-based ads.

The application also serves the purpose of creating conversion statistics. We thereby learn about the total number of users who clicked on one of our ads and were forwarded to a page furnished with a conversion tracking tag, as well as what actions are taken after being forwarded to this website. However, we do not receive any information via which users can be personally identified.

Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and thus undertaken to comply with European data protection principles.

Your personal data will be processed with your consent on the basis of Article 6(1)(a) GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent prior to withdrawal.

You can deactivate the “Custom Audiences” remarketing function here. You can find more detailed information on the collection and use of the data by Meta, your rights in this regard and options for protecting your privacy in the data privacy notices of Meta at https://www.facebook.com/about/privacy/

Use of Google Ads conversion tracking

We use the online advertising programme "Google Ads" on our website and in this context conversion tracking (evaluation of user actions). Google conversion tracking is an analysis service of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; Google).

If you click on an ad placed by Google, a cookie for conversion tracking is stored on your computer. These cookies have limited validity, do not contain personal data, and are therefore not used to identify individuals. If you visit certain pages of our website and the cookie has not yet expired, we and Google can detect that you have clicked on the ad and were redirected to this page. Each Google Ads customer receives a different cookie. Thus, it is not possible for cookies to be tracked via the websites of Ads customers.

The information obtained using the conversion cookie serves the purpose of creating conversion statistics. We thereby learn the total number of users who clicked on one of our ads and were redirected to a page marked with a conversion tracking tag. However, we do not receive any information via which users can be personally identified.

Your data may be transmitted to the Google LLC servers in the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and thus undertaken to comply with European data protection principles.

You can find more detailed information and Google’s privacy policy at: https://www.google.de/policies/privacy/

Use of the remarketing or "similar target groups" function of Google Inc.

On our website, we use the remarketing or "similar target groups" function of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google").

The purpose of the application is to analyse visitor behaviour and interests. Google uses cookies to perform analysis of website use, which forms the basis for creating interest-based advertisements. The cookies are used to record visits to the website and anonymised data about the use of the website. The personal data of visitors to the website is not stored. If you subsequently visit another website in the Google Display Network, it is highly likely that you will be shown ads that take into account previously accessed product and information areas.

Your data may be transmitted to Google LLC servers in the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and thus undertaken to comply with European data protection principles.

Further information on Google remarketing and the associated privacy policy can be found at: https://www.google.com/privacy/ads/

Use of the Pinterest tag

We use the Pinterest tag of Pinterest Europe Limited (Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland "Pinterest") on our website.

The purpose of the application is to appeal to visitors to the website in a targeted manner using interest-based advertising on the Pinterest social network. To this end, the conversion tag of Pinterest was implemented on the website. When visiting the website, a direct connection to the Pinterest servers is established via this tag. This transmits the pages that you have visited on our website to the Pinterest server. Pinterest assigns this information to your personal Pinterest user account when you are logged into the social network. When you visit Pinterest, you will then see personalised, interest-based Pinterest ads.

If you access our website via a pin on the Pinterest social network, a cookie for conversion tracking is stored on your computer. These cookies have limited validity, do not contain personal data, and are therefore not used to identify individuals. If you visit certain pages of our website and the cookie has not expired, we and Pinterest can detect that you have clicked on the pin and were redirected to this page. The information obtained using the conversion cookie serves the purpose of creating conversion statistics and thus optimising our website. The following information, among other things, may be processed: Total number of users who clicked on one of our pins and were redirected to our website, sub-pages visited on our website (e.g. category or product pages), search queries on our website, your shopping basket content, completed transactions.

Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified according to the TADPF. The data is transmitted on, among other things, the basis of standard contractual clauses as suitable guarantees for the protection of personal data, which can be viewed at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de

You can find more detailed information about the collection and use of data by Pinterest, and about your rights and options for protecting your privacy in the Pinterest privacy notices at https://policy.pinterest.com/de/privacy-policy

Plugins and miscellanea

Use of Google Tag Manager

On our website, we use Google Tag Manager of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google").

This application manages JavaScript tags and HTML tags that are used particularly for the implementation of tracking and analysis tools. Data processing serves the purpose of the needs-based design and optimisation of our website.

Google Tag Manager itself does not store cookies, nor is personal data processed as a result. However, it enables the triggering of additional tags that can collect and process personal data.

You can find more detailed information on terms of use and data protection here (https://www.google.com/intl/de/tagmanager/use-policy.html).

Use of social plugins

We use plugins from social networks on our website. Integrating social plugins and the resulting data processing serves the purpose of optimising advertising for our products.

With the integration of social plugins, a link is established between your computer and the servers of the social network providers, and in so doing the plugin is displayed on the page via notification to your browser, provided that you have expressly consented to this. Both your IP address and the information regarding which of our pages you have visited are thereby transmitted to the provider servers. This applies regardless of whether you are registered or logged into the social network. Transmission also takes place for users who are unregistered or not logged in. If you are connected to one or more of your social network accounts at the same time, the information collected can also be assigned to your corresponding profiles. When using the plugin functions (e.g. by pressing the button), this information is also assigned to your user account. You can prevent this assignment by logging out of your social media accounts before visiting our website and before activating the buttons.

The social networks named below are integrated into our website by means of a social plugin. You can find more detailed information about the scope and purpose of the collection and use of the data as well as about your rights and options for protecting your privacy in the linked data protection notices of the providers.

Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)

We and Meta Platforms Ireland are joint controllers, responsible for collecting your data when the service is integrated and transmitting this data to Facebook. The basis for this is an agreement between us and Meta Platforms Ireland on the joint processing of personal data, in which the respective responsibilities are defined. The agreement can be accessed at https://www.facebook.com/legal/controller_addendum. According to it, we are in particular responsible for fulfilling the information obligations pursuant to Articles 13, 14 GDPR, for compliance with the security requirements of Article 32 GDPR with regard to the correct technical implementation and configuration of the service, and for compliance with the obligations pursuant to Articles 33, 34 GDPR, insofar a breach of the protection of personal data concerns our obligations pursuant to the agreement on joint processing. Meta Platforms Ireland is responsible for enabling the rights of data subjects in accordance with Articles 15 - 20 GDPR, complying with the security requirements of Article 32 GDPR with regard to the security of the service and the obligations in accordance with Articles 33, 34 GDPR, insofar a breach of the protection of personal data concerns the obligations of Meta Platforms Ireland in accordance with the agreement on joint processing.

You can find more detailed information about the collection and use of data by Facebook, and about your rights and options for protecting your privacy in the Facebook data privacy notices at https://www.facebook.com/about/privacy/

Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland): https://help.instagram.com/155833707900388

LinkedIn of LinkedIn Corporation (2029 Stierlin Court, Mountain View, CA 94043, USA) https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy

Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). LinkedIn is not certified according to the TADPF.

Pinterest of Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA) https://policy.pinterest.com/de/privacy-policy

Use of Cloudflare

On our website, we use the Cloudflare CDN (a content delivery network) of Cloudflare Inc. (101 Townsend St, San Francisco, CA 94107, USA; "Cloudflare"). This is a trans-regional network of servers in various data centres to which our web server connects and via which certain content of our website is delivered.

The purpose of the data processing is to optimise the loading times of our website and thus to make our offer more user-friendly.

Among other things, the following information may be collected: IP address, system configuration data, information about traffic to and from customer websites (server log files).

Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Cloudflare has been certified according to the TADPF and thus has undertaken to comply with European data protection principles.

Your personal data is processed on the basis of Article 6(1)(f) GDPR as a result of our overriding legitimate interest in the needs-based and targeted design of the website. You have the right to object to this processing of personal data relating to you at any time for reasons arising from your particular situation based on Article 6(1)(f) GDPR.

You can find more information on data protection when using Cloudflare at https://www.cloudflare.com/de-de/privacypolicy/

Use of YouTube

On our website, we use the function for embedding YouTube videos of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "YouTube"). YouTube is an affiliate of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google").

The function displays videos stored on YouTube in an iFrame on the website. At the same time, Advanced Data Protection mode is activated. As a result, YouTube does not store any information about visitors to the website. Only when you watch a video will information about this be transmitted to YouTube and stored there. Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). YouTube has certified itself according to the TADPF and has thus undertaken to comply with European data protection principles.

You can find more detailed information on the collection and use of data by YouTube and Google, and about your rights and options for protecting your privacy in the YouTube data privacy notices at https://www.youtube.com/t/privacy

Data subject rights and storage period

Duration of storage

After complete contract processing, the data will first be stored for the duration of the warranty period, then taking into account statutory retention periods, in particular with regard to tax and commercial law, and subsequently erased after the expiry of the period, unless you have consented to further processing and use.

Rights of the data subject

If statutory requirements are met, you are entitled to the following rights pursuant to Articles 15 to 20 GDPR: Right to information, correction, erasure, restriction of processing, and data portability.

In addition, pursuant to Article 21(1) GDPR, you have a right to object to the processing that is based on Article 6(1)(f) GDPR, as well as to the processing for the purposes of direct advertising.

Right of complaint to the supervisory authority

Pursuant to Article 77 GDPR, you have the right to complain to the supervisory authority if you believe that your personal data is not being processed lawfully.

You can lodge a complaint with the supervisory authority responsible for us, which you can reach using the following contact details:

Hessischer Beauftragter für Datenschutz und Informationsfreiheit

Postfach 3163

65021 Wiesbaden, Germany

Tel.: +49 (0)611 14080

Fax: +49 (0)611 1408900 or +49 (0)611 1408901

Email: [email protected]

Right to object

If the personal data processing listed here is based on our legitimate interest in accordance with Article 6(1)(f) GDPR, you have the right to object to this processing at any time for reasons arising from your particular situation, with future effect.

After the objection has been made, the processing of the data concerned will be terminated unless we can prove compelling legitimate reasons for the processing that outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.

If personal data processing is carried out for the purposes of direct advertising, you can object to this processing at any time by notifying us. After the objection has been made, we will end the processing of the data concerned for the purpose of direct advertising.

Last update: 13/10/2023

This website uses royalty free music from FRAMETRAXX

shopping cart