Privacy policy

Unless otherwise stated below, the provision of your personal data is neither legally nor contractually required, nor necessary for the conclusion of a contract. You are not obliged to provide the data. Non-provision will have no consequences. This only applies as long as no other details are given in the subsequent processing operations. "Personal data" means any information relating to an identified or identifiable natural person.

Server Log Files

You can visit our websites without providing any personal information. Each time you access our website, usage data is transmitted to us or our web host/IT service provider by your internet browser and stored in protocol data (so-called server log files). This stored data includes, for example, the name of the accessed page, date and time of access, IP address, the amount of data transferred, and the requesting provider. Processing is based on Art. 6 (1) lit. f GDPR due to our predominant legitimate interest in ensuring a trouble-free operation of our website as well as to improve our offering. Your data may be transferred to third countries outside the EU, in particular to Canada and the USA, and processed there. There is an adequacy decision by the EU Commission for Canada. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations that are comparable to those of the EU Commission's standard contractual clauses.

Contact

Controller

Contact us if you wish. The controller for data processing is: Christoph Vollmer, Obere Hauptstraße 264, 67363 Lustadt, Germany, +49-6347-6060030, cv(at)e-quatorial.de

Initiative Contact by Customer via Email

If you initiate business contact with us via email, we will collect your personal data (name, email address, message text) only to the extent provided by you. The data processing serves the purpose of handling and answering your contact request. If the contact serves the implementation of pre-contractual measures (e.g., consultation in case of purchase interest, preparation of an offer) or concerns an already concluded contract between you and us, this data processing takes place on the basis of Art. 6 (1) lit. b GDPR. If the contact is made for other reasons, this data processing takes place on the basis of Art. 6 (1) lit. f GDPR due to our predominant legitimate interest in handling and answering your request.

In this case, you have the right to object at any time, for reasons arising from your particular situation, to this processing of personal data concerning you based on Art. 6 (1) lit. f GDPR.

We use your email address only to process your request. Your data will then be deleted in compliance with legal retention periods unless you have consented to further processing and use.

Collection and Processing When Using the Contact Form

When using the contact form, we collect your personal data (name, email address, message text) only to the extent provided by you. The data processing serves the purpose of establishing contact. If the contact serves the implementation of pre-contractual measures (e.g., consultation in case of purchase interest, preparation of an offer) or concerns an already concluded contract between you and us, this data processing takes place on the basis of Art. 6 (1) lit. b GDPR. If the contact is made for other reasons, this data processing takes place on the basis of Art. 6 (1) lit. f GDPR due to our predominant legitimate interest in handling and answering your request.

In this case, you have the right to object at any time, for reasons arising from your particular situation, to this processing of personal data concerning you based on Art. 6 (1) lit. f GDPR.

We use your email address only to process your request. Your data will then be deleted in compliance with legal retention periods unless you have consented to further processing and use.

Collection and Processing When Applying by Email

Visitors to the site can apply by email for job vacancies advertised on our website if they are interested. We collect your personal data only to the extent provided by you. This includes your contact details (e.g., name, email address, phone number), information about your professional qualifications and education, information about professional training, and work-specific evidence. The data processing serves the purpose of contacting you and deciding on the establishment of an employment relationship with you. The provision of data is necessary to carry out the application process. The processing of your personal data is based on Art. 6 (1) lit. b GDPR in conjunction with § 26 (1) BDSG for the execution of pre-contractual measures (passing through the application process as an initiation of an employment contract). If you have given us consent to process personal data for inclusion in our applicant pool, e.g., by ticking a checkbox, the processing is based on Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. If, in the context of the application process, special categories of personal data within the meaning of Art. 9 (1) GDPR are requested from applicants, such as information on the degree of severe disability, this is done on the basis of Art. 9 (2) lit. b GDPR so that we can exercise rights arising from labor law and social security and social protection law and comply with our obligations in this regard. We store your personal data as long as it is necessary to decide about your application. If no employment relationship with you is established, your data will be deleted after six months at the latest, provided you have not consented to further processing and use. If an employment relationship is established following the application process, the data you have provided will be processed on the basis of Art. 6 (1) lit. b GDPR in conjunction with § 26 (1) BDSG for the purposes of implementing the employment relationship and then included in the personnel file.

Customer Account - Orders

Customer Account

When opening a customer account, we collect your personal data to the extent specified there. The data processing serves the purpose of improving your shopping experience and simplifying the order processing. The processing is based on Art. 6 (1) lit. a GDPR with your consent. You can revoke your consent at any time by notifying us without affecting the lawfulness of the processing carried out on the basis of the consent until the revocation. Your customer account will then be deleted.

Collection, Processing, and Transfer of Personal Data for Orders

When ordering, we collect and process your personal data only to the extent necessary to fulfill and process your order and to handle your inquiries. The provision of the data is necessary for the conclusion of the contract. Failure to provide the data will result in no contract being concluded. The processing is based on Art. 6 (1) lit. b GDPR and is necessary for the performance of a contract with you. Your data will be transferred, for example, to the shipping companies and drop shipping providers chosen by you, payment service providers, service providers for order processing, and IT service providers. In all cases, we strictly observe the legal requirements. The scope of data transfer is limited to a minimum. Your data may be transferred to third countries outside the EU, in particular to Canada and the USA, and processed there. There is an adequacy decision by the EU Commission for Canada. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations that are comparable to those of the EU Commission's standard contractual clauses.

Reviews - Advertising

Data Collection When Writing a Comment or Review

When commenting on/reviewing an article or post, we collect your personal data (name, email address, comment text) only to the extent provided by you. The processing serves the purpose of allowing comments/reviews and displaying comments/reviews.

By submitting the comment/review, you consent to the processing of the submitted data. The processing is based on Art. 6 (1) lit. a GDPR with your consent. You can revoke your consent at any time by notifying us without affecting the lawfulness of the processing carried out on the basis of the consent until the revocation. Your personal data will then be deleted.

When your comment/review is published, only the name you provided will be published.

Google Customer Reviews Website Logo

Our website includes the Google Customer Reviews website logo of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). The inclusion serves the purpose of displaying the number and result of reviews we have received through Google and promoting participation in this program. Google uses cookies to display the logo on our website and show you personalized ads on Google. Your IP address may be processed and transmitted to Google. Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google is certified under the TADPF and committed to adhering to European data protection principles. The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. Further information on terms of use and data protection when using Google Customer Reviews can be found at https://www.google.com/shopping/customerreviews/static/tos/de/1_01_tos.html and https://policies.google.com/privacy?hl=en

Review Reminder

After your order, we would like to ask you to review your purchase with us. For this purpose, we use your personal data (name, email address, order information) independently of the contract processing to send you a review reminder email, provided you have explicitly agreed to this. The processing is based on Art. 6 (1) lit. a GDPR with your consent. You can revoke your consent at any time using the link in the email or by notifying us without affecting the lawfulness of the processing carried out on the basis of the consent until the revocation.

Use of Your Personal Data for Postal Advertising

We use your personal data (name, address) received as part of the sale of a good or service to send you postal advertising, provided you have not objected to this use. The provision of this data is necessary for the conclusion of the contract. Failure to provide it will result in no contract being concluded. The processing is based on Art. 6 (1) lit. f GDPR due to our predominant legitimate interest in direct advertising.

You can object to this use of your address data at any time by notifying us.

The contact details for exercising the objection can be found in the imprint.

Use of the Email Address for Sending Direct Advertising

We use your email address, which we have received as part of the sale of a good or service, for the electronic transmission of advertising for our own similar goods or services, provided you have not objected to this use. The provision of the email address is necessary for the conclusion of the contract. Failure to provide it will result in no contract being concluded. The processing is based on Art. 6 (1) lit. f GDPR due to our predominant legitimate interest in direct advertising.

You can object to this use of your email address at any time by notifying us. The contact details for exercising the objection can be found in the imprint.

You can also use the link provided in the advertising email. There are no other costs than the transmission costs according to the basic tariffs.

Use of Klaviyo

We use the service of Klaviyo Inc. (125 Summer St Floor 7, Boston, MA 02111, USA; "Klaviyo") for newsletter dispatch as part of order processing.
We pass on the information provided by you during the newsletter registration (e-mail address, first and last name if applicable) to Klaviyo. The data processing serves the purpose of sending the newsletter and its statistical evaluation.

In order to evaluate newsletter campaigns, the newsletters sent contain a 1x1 pixel graphic (tracking pixel) or a tracking link. This enables us to determine whether you have opened the newsletter and whether you have clicked any integrated links. Within this context, we collect your personal data such as IP address, browser type and device as well as the time. A usage profile can be generated from this data under a pseudonym. The data collected will not be used to identify you personally. The collected data is only used for statistical analysis to improve newsletter campaigns.

Your data is usually transmitted to Klaviyo servers in the USA and stored there. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Klaviyo has certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles. The processing of your personal data is based on Art. 6 para. 1 lit. f GDPR from our overriding legitimate interest in a targeted, effective advertising and user-friendly newsletter system.

On grounds relating to your particular situation, you have the right to object at any time to this processing of personal data concerning you.

You can find more information on data protection at Klaviyo at https://www.klaviyo.com/legal/privacy-notice and at https://www.klaviyo.com/legal/data-processing-agreement.

Shipping Service Providers - ERP System

Transfer of the Email Address to Shipping Companies for Information About the Shipping Status

We pass on your email address to the shipping company as part of the contract processing, provided you have explicitly agreed to this during the ordering process. The transfer serves the purpose of informing you by email about the shipping status. The processing is based on Art. 6 (1) lit. a GDPR with your consent. You can revoke your consent at any time by notifying us or the shipping company without affecting the lawfulness of the processing carried out on the basis of the consent until the revocation.

Use of an External Inventory Management System

We use an inventory management system for contract processing as part of a processing contract. Your personal data collected during the order will be transferred to
plentysystems AG, Johanna-Waescher-Straße 7, 34131 Kassel. The processing of your personal data serves the purpose of fulfilling the contract with you and is based on Art. 6 (1) lit. b GDPR.

Payment Service Providers

Use of PayPal Express

We use the PayPal Express payment service of PayPal (Europe) S.à.r.l. et Cie, S.C.A. (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. The data processing serves the purpose of offering you the payment via PayPal Express. To integrate this payment service, it is necessary that PayPal collects, stores, and analyzes data (e.g., IP address, device type, operating system, browser type, location of your device) when you access the website. Cookies may be used for this purpose. Cookies enable the recognition of your browser. The processing of your personal data is based on Art. 6 (1) lit. f GDPR due to our predominant legitimate interest in offering various payment methods oriented towards the customer.

You have the right to object at any time, for reasons arising from your particular situation, to this processing of personal data concerning you.

When selecting and using PayPal Express, the necessary data for payment processing will be transmitted to PayPal to fulfill the contract with you with the selected payment method. This processing is based on Art. 6 (1) lit. b GDPR. Further information on data processing when using the PayPal Express payment service can be found in the associated privacy policy at www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_GB.

Use of PayPal Check-Out

We use the PayPal Check-Out payment service of PayPal (Europe) S.à.r.l. et Cie, S.C.A. (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. The data processing serves the purpose of offering you payment via the payment service. When selecting and using payment via PayPal, credit card via PayPal, direct debit via PayPal, or "Pay Later" via PayPal, the necessary data for payment processing will be transmitted to PayPal to fulfill the contract with you with the selected payment method. This processing is based on Art. 6 (1) lit. b GDPR. Cookies may be stored to enable the recognition of your browser. The data processing that takes place is based on Art. 6 (1) lit. f GDPR due to our predominant legitimate interest in offering various customer-oriented payment methods.

You have the right to object at any time, for reasons arising from your particular situation, to this processing of personal data concerning you.

Credit Card via PayPal, Direct Debit via PayPal & “Pay Later” via PayPal

For individual payment methods such as credit card via PayPal, direct debit via PayPal, or “Pay Later” via PayPal, PayPal reserves the right to obtain a credit report based on mathematical-statistical procedures using credit agencies. For this purpose, PayPal transmits the necessary personal data for a credit check to a credit agency and uses the received information about the statistical probability of a payment default to make a balanced decision about the establishment, implementation, or termination of the contractual relationship. The credit report can include probability values (score values), which are calculated on the basis of scientifically recognized mathematical-statistical procedures and include, among other things, address data in their calculation. Your protectable interests will be considered in accordance with the legal provisions. The data processing serves the purpose of a credit check for a contract initiation. The processing is based on Art. 6 (1) lit. f GDPR due to our predominant legitimate interest in protection against payment default when PayPal makes advance payments.

You have the right to object at any time, for reasons arising from your particular situation, to this processing of personal data concerning you by notifying PayPal.

The provision of data is necessary for the conclusion of the contract with the payment method you desire. Failure to provide the data will result in no contract being concluded with the payment method you have selected. Third-party providers When paying via the payment method of a third-party provider, the necessary data for payment processing will be transmitted to PayPal. This processing is based on Art. 6 (1) lit. b GDPR. For the execution of this payment method, the data may then be transmitted by PayPal to the respective provider. This processing is based on Art. 6 (1) lit. b GDPR. Local third-party providers can include, for example:

Sofort (SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany)
giropay (Paydirekt GmbH, Stephanstr. 14-16, 60313 Frankfurt am Main)

Purchase on Account via PayPal

When paying via the purchase on account payment method, the necessary data for payment processing will first be transmitted to PayPal. For the execution of this payment method, the data will then be transmitted by PayPal to Ratepay GmbH (Franklinstraße 28-29, 10587 Berlin; "Ratepay") to fulfill the contract with you with the selected payment method. This processing is based on Art. 6 (1) lit. b GDPR. Ratepay may obtain a credit report based on mathematical-statistical procedures (probability or score values) using credit agencies as described above. The data processing serves the purpose of a credit check for a contract initiation. The processing is based on Art. 6 (1) lit. f GDPR due to our predominant legitimate interest in protection against payment default when Ratepay makes advance payments.

Further information on data protection and which credit agencies Ratepay uses can be found at https://www.ratepay.com/legal-payment-dataprivacy/ and https://www.ratepay.com/legal-payment-creditagencies/. Further information on data processing when using PayPal can be found in the associated privacy policy at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Use of the Payment Service Provider Stripe

We use the Stripe payment service of Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland on our website. The data processing serves the purpose of offering you payment via the payment service. When selecting and using Stripe, the necessary data for payment processing will be transmitted to Stripe to fulfill the contract with you with the selected payment method. This processing is based on Art. 6 (1) lit. b GDPR. Stripe reserves the right to obtain a credit report based on mathematical-statistical procedures using credit agencies. For this purpose, Stripe transmits the necessary personal data for a credit check to a credit agency and uses the received information about the statistical probability of a payment default to make a balanced decision about the establishment, implementation, or termination of the contractual relationship. The credit report can include probability values (score values), which are calculated on the basis of scientifically recognized mathematical-statistical procedures and include, among other things, address data in their calculation. Your protectable interests will be considered in accordance with the legal provisions. The data processing serves the purpose of a credit check for a contract initiation. The processing is based on Art. 6 (1) lit. f GDPR due to our predominant legitimate interest in protection against payment default when Stripe makes advance payments.

You have the right to object at any time, for reasons arising from your particular situation, to this processing of personal data concerning you by notifying Stripe.

The provision of data is necessary for the conclusion of the contract with the payment method you desire. Failure to provide the data will result in no contract being concluded with the payment method you have selected. All Stripe transactions are subject to the Stripe privacy policy. This can be found at https://stripe.com/en/privacy

Cookies

Our website uses cookies. Cookies are small text files stored in the internet browser or by the internet browser on the user's computer system. If a user visits a website, a cookie can be stored on the user's operating system. This cookie contains a characteristic string that enables the browser to be uniquely identified when the website is visited again. Cookies are stored on your computer. Therefore, you have full control over the use of cookies. By selecting the appropriate technical settings in your internet browser, you can be notified before cookies are set and individually decide whether to accept them, as well as prevent the storage of cookies and the transmission of the data they contain. Cookies already stored can be deleted at any time. We would like to point out, however, that you may then not be able to use all the functions of this website to their full extent. You can find out how to manage cookies (including disabling them) in the most important browsers under the following links: Chrome: https://support.google.com/accounts/answer/61416?hl=en Microsoft Edge: https://support.microsoft.com/en-us/microsoft-edge/delete-cookies-in-microsoft-edge-63947406-40ac-c3b8-57b9-2a946a29ae09 Mozilla Firefox: https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences Safari: https://support.apple.com/guide/safari/manage-cookies-and-website-data-sfri11471/mac

Technically Necessary Cookies

Unless otherwise stated below in the privacy policy, we use only these technically necessary cookies to make our offering more user-friendly, effective, and secure. Cookies also enable our systems to recognize your browser after a page change and offer you services. Some functions of our internet site cannot be offered without the use of cookies. For these, it is necessary that the browser is recognized even after a page change. The use of cookies or similar technologies is based on § 25 (2) TDDDG. The processing of your personal data is based on Art. 6 (1) lit. f GDPR due to our predominant legitimate interest in ensuring the optimal functionality of the website as well as a user-friendly and effective design of our offering.

You have the right to object at any time, for reasons arising from your particular situation, to this processing of personal data concerning you.

Analysis - Advertising Tracking - Affiliate

Use of Google Analytics 4

We use the web analysis service Google Analytics of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. The data processing serves the purpose of analyzing this website and its visitors for marketing and advertising purposes. Google will use this information on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity, and to provide other services related to website activity and internet usage. The following information may be collected: IP address, date and time of page view, click path, information about the browser you are using and the device you are using (device), visited pages, referrer URL (website from which you accessed our website), location data, purchase activities. Google may combine your data with other data such as your search history, your personal accounts, your usage data from other devices, and any other data Google has about you.

Your IP address will be anonymized by us before it is sent to our servers. Google will therefore receive only pseudonymized data.

Google uses technologies such as cookies, web storage in the browser, and tracking pixels that allow an analysis of your use of the website. The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR.

The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation.

We use the advanced implementation of the consent mode (Advanced Consent Mode). In this context, user data is also transmitted to Google in the form of "pings" even if consent has not been given. These pings may contain, among other things, the following information: IP address to derive the IP country (an IP address logging does not take place), date and time of page access, URL of the visited pages, user agent, referrer URL (website from which our website was accessed), or information about triggering website events such as a conversion. Based on this information, Google models user data to perform a comprehensive user analysis despite the refusal of consent.

The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google is certified under the TADPF and committed to adhering to European data protection principles. Both Google and US authorities have access to your data.

Further information on terms of use and data protection can be found at https://policies.google.com/technologies/partner-sites and https://policies.google.com/privacy?hl=en.

Use of Shopify Statistics

We use the statistics and analysis functions of Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") on our website as part of a processing contract. Shopify is an affiliate of Shopify Inc. (151 O’Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada). The data processing serves the purpose of analyzing this website and its visitors. Data is stored for marketing and optimization purposes and provided in reports, analyses, and statistics. The following device information is collected and processed: information about the web browser, IP address, time zone, and some of the cookies installed on your device. When you navigate the website, information is also collected about the web pages or products you view, the websites or search terms that referred you to the website, and information about how you interact with the website. Technologies such as cookies, web beacons, tags, and pixels (electronic files to record information about how you navigate the website) are used for this purpose. Your data may be transferred to third countries outside the EU, in particular to Canada and the USA, and processed there. There is an adequacy decision by the EU Commission for Canada. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations that are comparable to those of the EU Commission's standard contractual clauses. The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. Further information on Shopify's data protection can be found at https://www.shopify.com/legal/privacy, information on the processing contract at https://www.shopify.com/legal/dpa, and information on the cookies used at https://www.shopify.com/legal/cookies.

Use of Meta Pixel

We use the Meta Pixel of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; "Meta") on our website. Meta and we are jointly responsible for collecting your data and transmitting it to Meta when using the service. This is based on an agreement between us and Meta regarding the joint processing of personal data, which specifies the respective responsibilities. The agreement is available at https://www.facebook.com/legal/terms/businesstools. Accordingly, we are responsible for fulfilling the information obligations under Art. 13, 14 GDPR, for complying with the security requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service, and for complying with the obligations under Art. 33, 34 GDPR, insofar as a data protection breach affects our obligations under the joint processing agreement. Meta is responsible for enabling data subject rights under Art. 15-20 GDPR, for complying with the security requirements of Art. 32 GDPR with regard to the security of the service, and for complying with the obligations under Art. 33, 34 GDPR, insofar as a data protection breach affects Meta's obligations under the joint processing agreement. The application serves the purpose of targeting visitors to the website with interest-based advertising in the social networks Facebook and Instagram. For this purpose, the Meta remarketing tag has been implemented on the website. When you visit the website, a direct connection is established with the Meta servers via this tag. This transmits to the Meta server which of our pages you have visited. Meta assigns this information to your personal Facebook and/or Instagram user account. When you visit the social networks Facebook or Instagram, you will then be shown personalized, interest-based ads. The application also serves the purpose of creating conversion statistics. In this process, we learn the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag and what actions were taken after being redirected to this website. However, we do not receive any information with which users can be personally identified. Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta is certified under the TADPF and committed to adhering to European data protection principles. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. You can deactivate the "Custom Audiences" remarketing function here. Further information on data collection and use by Meta, your rights in this regard, and ways to protect your privacy can be found in Meta's data protection information at https://www.facebook.com/about/privacy/.

Use of Google Ads Conversion Tracking

We use the online advertising program "Google Ads" and conversion tracking as part of it (visitor action evaluation) on our website. Google conversion tracking is an analysis service of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google"). When you click on an ad placed by Google, a cookie for conversion tracking is placed on your computer. These cookies have a limited validity, do not contain any personal data, and are therefore not used for personal identification. If you visit certain pages on our website and the cookie has not yet expired, Google and we can recognize that you clicked on the ad and were redirected to that page. Each Google Ads customer receives a different cookie. Therefore, there is no possibility that cookies can be tracked across the websites of different Ads customers. The information collected using the conversion cookie is used to compile conversion statistics. We learn the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag and what actions were taken after being redirected to this website. However, we do not receive any information with which users can be personally identified. We use the advanced implementation of the consent mode (Advanced Consent Mode). In this context, user data is also transmitted to Google in the form of "pings" even if consent has not been given. These pings may contain, among other things, the following information: IP address to derive the IP country (an IP address logging does not take place), date and time of page access, URL of the visited pages, user agent, referrer URL (website from which our website was accessed), or information about triggering website events such as a conversion. Based on this information, Google models user data to perform a comprehensive user analysis despite the refusal of consent. Your data may be transferred to Google LLC's servers in the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google is certified under the TADPF and committed to adhering to European data protection principles. The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. Further information and Google's privacy policy can be found at: https://www.google.com/policies/privacy/.

Use of the Google Remarketing or "Similar Audiences" Function

We use the Google Remarketing or "Similar Audiences" function of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. The application serves the purpose of analyzing visitor behavior and visitor interests. For the analysis of website use, which forms the basis for the creation of interest-based advertisements, Google uses cookies. Cookies are used to record website visits as well as anonymized data on website use. There is no storage of personal data of visitors to the website. If you subsequently visit another website in the Google Display Network, you will be shown ads that are likely to take into account previously accessed product and information areas. Your data may be transferred to Google LLC's servers in the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google is certified under the TADPF and committed to adhering to European data protection principles. The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. Further information on Google Remarketing and the associated privacy policy can be found at: https://www.google.com/privacy/ads/.

Use of Microsoft Advertising

We use Microsoft Advertising of the Microsoft Corporation (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA; “Microsoft“) on our website. The data processing serves marketing and advertising purposes and the purpose of measuring the success of the advertising measures (conversion tracking). We learn the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag. A personal identification of these users is thus not possible. Microsoft Advertising uses technologies such as cookies and tracking pixels that allow an analysis of your use of the website. When you click on an ad placed by Microsoft Advertising, a cookie for conversion tracking is placed on your computer. This cookie has a limited validity and is not used for personal identification. If you visit certain pages on our website and the cookie has not yet expired, Microsoft and we can recognize that you clicked on the ad and were redirected to that page. The following information may be collected: IP address, identifiers assigned by Microsoft, information about the browser you are using and the device you are using (device), referrer URL (website from which you accessed our website), URL of our website. Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Microsoft is certified under the TADPF and committed to adhering to European data protection principles. The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. Further information on data protection and the cookies used by Microsoft can be found here.

Use of Pinterest Tag

We use the Pinterest Tag of Pinterest Europe Limited (Palmerston House, 2nd, Fenian Street, Floor, Dublin 2, Ireland "Pinterest") on our website. The application serves the purpose of targeting visitors to the website with interest-based advertising on the social network Pinterest. For this purpose, the Pinterest conversion tag has been implemented on the website. When you visit the website, a direct connection is established with the Pinterest servers via this tag. This transmits to the Pinterest server which of our pages you have visited. Pinterest assigns this information to your personal Pinterest user account if you are logged in to the social network. When you visit Pinterest, you will then be shown personalized, interest-based Pinterest ads. If you access our website via a pin on the social network Pinterest, a cookie for conversion tracking is placed on your computer. These cookies have a limited validity, do not contain any personal data, and are therefore not used for personal identification. If you visit certain pages on our website and the cookie has not yet expired, Pinterest and we can recognize that you clicked on the pin and were redirected to that page. The information collected using the conversion cookie is used to compile conversion statistics and thus optimize our website. The following information may be processed: the total number of users who clicked on one of our pins and were redirected to our website, subpages visited on our website (e.g., category or product pages), search queries on our website, your shopping cart contents, completed transactions. Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified under the TADPF. The data transfer is based, among other things, on standard contractual clauses as appropriate safeguards for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en.

The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. Further information on data collection and use by Pinterest, your rights in this regard, and ways to protect your privacy can be found in Pinterest's privacy policy at https://policy.pinterest.com/en/privacy-policy.

Use of TikTok Pixel

We use the TikTok Pixel of TikTok Technology Limited (10 Earlsfort Terrace, Dublin, D02 T380, Ireland; “TikTok Ireland”) and TikTok Information Technologies UK Limited (6th Floor, One London Wall, London, EC2Y 5EB, United Kingdom; “TikTok UK”) on our website. Both companies are the joint controllers of the data processing (hereinafter referred to as “TikTok”). The data processing serves the purpose of identifying and analyzing website visits by our customers as well as better targeting customers by placing targeted advertisements and evaluating the effectiveness of advertisements on TikTok. TikTok uses technologies such as cookies and pixels that allow the recognition of your browser. The following information may be collected and transmitted to TikTok: date and time of the visit, information about the browser you are using and the device type, screen resolution, IP address. TikTok can assign this information to your personal TikTok user account. Usage profiles can be created from the collected data using pseudonyms. A personal identification of the users is thus not possible. Your data may be transferred to third countries, such as the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). TikTok is not certified under the TADPF. The data transfer to the USA and third countries without an adequacy decision is based, among other things, on standard contractual clauses as appropriate safeguards for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en.

The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. Further information on data protection can be found at https://www.tiktok.com/legal/page/eea/privacy-policy/en and https://ads.tiktok.com/i18n/official/policy/controller-to-controller.

Use of the Awin Partner Program

We use the partner program "Awin" of AWIN AG (Eichhornstraße 3, 10785 Berlin; "Awin"). When you click on an ad containing a partner link, Awin places a cookie for conversion tracking on your computer. The cookies serve the purpose of correct billing within the framework of the partner program by recording the success of an advertising medium. The cookies recognize that you clicked on the ad, and the origin of the order can be traced back to the advertiser. Awin also uses fingerprinting. This allows the device you are using to be recognized. Among other things, Awin can recognize that the partner link was clicked on or viewed on this website. Awin collects, among other things, your transaction data (such as order value, product type, sales channel, use of a voucher) and your user name in the form of an individual sequence of numbers, so that no identity is recognizable, but information on specific user actions and the device used by the user is included. Your data may be transferred to third countries, such as the USA. There is no adequacy decision by the EU Commission for the USA. The data transfer is based, among other things, on standard contractual clauses as appropriate safeguards for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en.

The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. The privacy policy with detailed information on the use of data by Awin can be found at https://www.awin.com/en/privacy-policy.

Plug-ins and Others

Use of Google Tag Manager

We use the Google Tag Manager of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. This application manages JavaScript tags and HTML tags, which are used to implement tracking and analysis tools in particular. The data processing serves the purpose of demand-oriented design and optimization of our website. The Google Tag Manager itself neither stores cookies nor processes personal data. However, it enables the triggering of further tags that may collect and process personal data. Further information on terms of use and data protection can be found here.

Use of Social Plug-ins Using "Shariff"

We use plug-ins from social networks on our website. To give you control over your data, we use the data protection-secure "Shariff" buttons. Without your explicit consent, no links to the servers of the social networks will be established, and consequently, no data will be transmitted. "Shariff" is a development of the specialists of the computer magazine c't. It enables more privacy on the net and replaces the usual "Share" buttons of social networks. More information about the Shariff project can be found here https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html.

When you click the buttons, a pop-up window appears in which you can log in with your data to the respective provider. Only after this active login by you will a direct connection to the social networks be established. By logging in, you give your consent to the transfer of your data to the respective social media provider. This includes, among other things, your IP address and the information on which of our pages you visited. If you are simultaneously connected to one or more of your social network accounts, the collected information will also be assigned to your respective profiles. You can prevent this assignment only by logging out of your social media accounts before visiting our website and activating the buttons. The social networks named below are integrated with the "Shariff" function. Further information on the scope and purpose of the collection and use of data, as well as your rights and options for protecting your privacy, can be found in the linked data protection information of the providers.

Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland): https://www.facebook.com/policy.php

Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta is certified under the TADPF and committed to adhering to European data protection principles.

Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland): https://help.instagram.com/155833707900388.

Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta is certified under the TADPF and committed to adhering to European data protection principles.

Pinterest of Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA): https://policy.pinterest.com/en/privacy-policy.

Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified under the TADPF.

Use of Google reCAPTCHA

We use the reCAPTCHA service of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. The query serves the purpose of distinguishing whether the input is made by a human or by automated, machine processing. Your input will be transmitted to Google and used there. Additionally, the IP address and any other data required by Google for the reCAPTCHA service will be transmitted to Google. These data are processed by Google within the European Union and may also be transferred to the Google LLC servers in the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google is certified under the TADPF and committed to adhering to European data protection principles. The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. Further information on Google reCAPTCHA and the associated privacy policy can be found at: https://www.google.com/recaptcha/intro/android.html and https://www.google.com/privacy.

Use of Google Invisible reCAPTCHA

We use the invisible reCAPTCHA service of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. This serves the purpose of distinguishing whether the input is made by a human or by automated, machine processing. In the background, Google collects and analyzes usage data, which is used by invisible reCAPTCHA to distinguish regular users from bots. Your input will be transmitted to Google and used there. Additionally, the IP address and any other data required by Google for the invisible reCAPTCHA service will be transmitted to Google. These data are processed by Google within the European Union and may also be transferred to the Google LLC servers in the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google is certified under the TADPF and committed to adhering to European data protection principles. The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. Further information on Google reCAPTCHA and the associated privacy policy can be found at: https://www.google.com/recaptcha/intro/android.html and https://www.google.com/privacy.

Use of YouTube

We use the function to embed YouTube videos of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "YouTube") on our website. YouTube is an affiliate of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). The function shows videos stored on YouTube in an iFrame on the website. The option "Extended data protection mode" is activated. This means that no information about the visitors of the website is stored by YouTube. Only when you view a video, information about it will be transmitted to YouTube and stored there. Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). YouTube is certified under the TADPF and committed to adhering to European data protection principles. The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation. Further information on data collection and use by YouTube and Google, your rights in this regard, and ways to protect your privacy can be found in YouTube's data protection information at https://www.youtube.com/t/privacy.

Integration of the Händlerbund Membership Logo

Our website includes the Händlerbund membership logo (Händlerbund e.V., Kohlgartenstraße 11 - 13, 04315 Leipzig). When you access our website, information is automatically sent by the browser used on your device to the server of Händlerbund e.V. This information is temporarily stored in a so-called server log file for 7 days. The following information is collected without your intervention and stored until automated deletion:

IP address of the requesting computer,
date and time of access,
name and URL of the retrieved file,
website from which access is made (referrer URL),
browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

IP address of the requesting computer,
date and time of access,
name and URL of the retrieved file,
website from which access is made (referrer URL),
browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

The temporary storage of the IP address by the system is necessary to enable the delivery of the website. For this purpose, the IP address must remain stored for the duration of the session. The storage in log files takes place to ensure the functionality of the website. The data also serves to optimize the website and ensure the security of the information technology systems. These data are not stored together with other personal data. The legal basis for data processing is Art. 6 (1) S. 1 lit. f GDPR.

Use of Google Fonts

We use Google Fonts of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website. The data processing serves the purpose of a uniform presentation of fonts on our website. To load the fonts, a connection to Google servers is established when the page is called up. Cookies may be used for this purpose. Your IP address and information about the browser you are using will be processed and transmitted to Google. This data will not be linked to your Google account.
Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google is certified under the TADPF and committed to adhering to European data protection principles. The use of cookies or similar technologies is based on your consent according to § 25 (1) S. 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent according to Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent until the revocation.
Further information on data processing and data protection can be found at https://policies.google.com/privacy and https://developers.google.com/fonts/faq.

Rights of Data Subjects and Retention Period

Duration of Storage

After complete contractual processing, the data will initially be stored for the duration of the warranty period, then considering statutory retention periods, especially those under tax and commercial law, and will be deleted after the expiration of the period unless you have consented to further processing and use.

Rights of the Data Subject

You have the following rights under Art. 15 to 20 GDPR, provided the legal requirements are met: right to access, rectification, erasure, restriction of processing, data portability. Furthermore, under Art. 21 (1) GDPR, you have the right to object to processing based on Art. 6 (1) f GDPR and to processing for direct marketing purposes.

Right to Complain to the Supervisory Authority

According to Art. 77 GDPR, you have the right to complain to the supervisory authority if you believe that the processing of your personal data is not lawful.

A complaint can be lodged, among other things, with the supervisory authority responsible for us, which you can contact at the following details:

Data Protection and Freedom of Information Commissioner for Rhineland-Palatinate
PO Box 30 40
55020 Mainz
Tel.: +49 6131 89200
Fax: +49 6131 8920299
Email: poststelle@datenschutz.rlp.de

Right to Object

If the personal data processing listed here is based on our legitimate interest under Art. 6 (1) lit. f GDPR, you have the right to object to these processing operations at any time with effect for the future for reasons arising from your particular situation. After an objection is made, the processing of the data concerned will be terminated unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing serves to assert, exercise, or defend legal claims.

If the personal data processing is for direct marketing purposes, you can object to this processing at any time by notifying us. After an objection is made, we will stop processing the data concerned for direct marketing purposes.

last updated: 29.11.2023