2.1 When visiting our Website
If you visit our Website, the web browser of your client device (computer, laptop, tablet, smartphone etc.) will send automatically certain information to the web server of our Website. This information is temporarily stored in electronic protocols, so-called log files. The following information is gathered thereby and stored until it is automatically deleted:
- IP address of the accessing client device,
- date and time of the access,
- timezone gap in relation to the Greenwich Mean Time (GMT),
- name and URL of the accessed pages/files,
- access status / HTTP status,
- transferred data amount,
- the website from which the access occurs (referrer URL),
- type and version of the web browser used, including its language,
- type and version of the operating system of your client device.
This data will be stored for a period of 14 days and thereafter automatically deleted.
We will process this data for the following purposes:
- enabling a smooth connection to our Website,
- enabling a comfortable use of our Website,
- analysing the system stability and system safety as well as
- for further administrative purposes.
The legal basis for the processing of the data listed above is Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in this processing consists of the purposes of the data processing as specified above.
2.2 E-mail newsletter
By giving your consent, you can subscribe to our e-mail newsletter (hereinafter referred to as “Newsletter”) by which we will inform you about our products, sales, and events.
The subscription procedure with respect to our Newsletter consists of the so-called double opt-in procedure. This procedure consists of the following steps: after your completion of the subscription form, we will send you an e-mail to the e-mail address you entered into the subscription form, in which we will ask you to confirm your subscription by activating a link contained in this e-mail. If you do not activate this link within a period of 14 days, your data provided in the course of the subscription will be deleted automatically. Furthermore, we will store the following information: the IP addresses provided by your client device at the time of subscription and confirmation of your subscription as well as those times themselves. The purpose of the double opt-in procedure is to enable us to prove your subscription and to analyse the potential abuse of your personal data.
When subscribing to our Newsletter, you only need to provide us with your e-mail address. You can voluntarily provide us with further information which we would use to address you personally. After your confirmation of your subscription, we will store your e-mail address in order to be able to send you our Newsletters.
The legal basis for the data processing in the course of a Newsletter subscription is the consent of the subscriber pursuant to Article 6 Subsection 1 Sentence 1 (a) GDPR.
You may at any time withdraw your consent to receiving our Newsletter by unsubscribing from our Newsletter. You may affect this un-subscription by activating the un-subscription link included in any of our Newsletter e-mails or by sending a message to our contact details specified in Section 2.1 of this Privacy Statement.
Newsletter emailing after purchase
If you have bought products in our Onlineshop, we will probably send you Newsletters also in case you have not subscribed to it, provided however that such Newsletters advertise products similar to those you have bought in our Onlineshop. In this case, the Newsletters will be sent to the e-mail address you provided in the course of the purchase.
For this type of Newsletter emailing, we store this e-mail address in our Newsletter address database. To be able to prove the legitimateness of the Newsletter emailing, we also store the IP addresses provided by your client device at the time of the purchase as well as this time itself.
The legal basis for the data processing in the course of the Newsletter emailing after a purchase is Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in the data processing is the direct marketing of our products towards our clients.
You may at any time object to receiving our Newsletter by activating the un-subscription link included in any of our Newsletter e-mails or by sending a message to our contact details specified in Section 2.1 of this Privacy Statement.
Please note that we analyze the user behavior of the recipients of our Newsletters. For this purpose, our Newsletters contain so-called web beacons/tracking pixels each of which consists of a one-pixel graphics file. For this analysis, we link the information specified in Section 2.1 of this Privacy Statement or parts thereof and the web beacons to your e-mail address and an individual ID. Also, the hyperlinks included in our Newsletters contain this ID. With the data gathered thereby, we generate a user profile in order to be able to match the interests of our clients through the contents of our Newsletters. For this purpose, we analyse your interests by collecting the following data: the time when you open a Newsletter and the hyperlinks you activate in a Newsletter. In some circumstances, we will link this information with actions you rendered on our Website.
The legal basis for the data processing in the course of the tracking specified above is, in case of Newsletter subscription, the consent of the subscriber pursuant to Article 6 Subsection 1 Sentence 1 (a) GDPR.
In case of Newsletter emailing after a purchase, the legal basis for the data processing in the course of the tracking specified above is Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in the data processing is our need to match our Newsletter with the interests of our clients.
You may object to the tracking specified above by unsubscribing from our Newsletter; you may affect this unsubscription by activating the unsubscription link included in any of our Newsletters or by sending a message to our contact details as specified in Section 2.1 of this Privacy Statement. The information we have gathered by the before mentioned tracking will be stored as long as you are a subscriber of our Newsletter. As soon as you unsubscribe from our Newsletter, we will anonymize your data gathered by the tracking and only use the so anonymized data for statistical purposes.
You may also prevent the before mentioned tracking if you disable the display of pictures within your e-mail client software. In this case, no graphics/pictures of our Newsletters will be shown and it may be that you cannot use all functions of our Newsletters. If you (re-)enable the display of pictures in e-mails manually, the before mentioned tracking will (again) occur.
Newsletter service provider
The processing of our Newsletters will be affected by using services and IT-systems of the following service provider which is pursuant to Article 4 Subsection (8) GDPR:
MailChimp, The Rocket Science Group, LLC
675 Ponce de Leon Ave NE
Atlanta, GA 30308 USA
MailChimp is a marketing automation service provided by the Rocket Science Group.
For more information visit https://mailchimp.com/legal/privacy/?_ga=2.38633443.1378729253.1535139209-2058154263.1533076501
2.3 Contact form
Our website contains a contact form via which you may address inquiries to us. To do so, you have to enter a valid e-mail address. You may voluntarily provide other information via the contact form.
We will use the information you provide us via the contact form to answer your inquiries. We will delete this information as soon as it is no longer necessary for answering your inquiry; alternatively, we will restrict the processing of this information in case we have to maintain this information for statutory reasons.
You may at any time object to the further processing of the information you provided us via the contact form, for example via e-mail to firstname.lastname@example.org, however, such objection will not affect the data processing occurred before your objection.
The legal basis for the processing of your information provided to us via the contact form is Article 6 Subsection 1 Sentence 1 (a) GDPR.
2.4 When using our Onlineshop
If you place orders in our Onlineshop, it is necessary for the completion of the contract with you that you provide us with such personal data which we need for the processing of your order. We have expressly indicated in our webshop which information we need mandatorily; you may provide us with further information voluntarily. We will process the information you provide us within the webshop for the processing of your order.
Payments will we be processed by an external service provider. For this purpose, you will be directed temporarily to the website of the respective service provider upon placing your order (check out). We ourselves do principally not collect or store data on payments. Only in case you provide us with payment information separately in the course of returns or complaints, we will store and process this information, however only for the purpose to process the respective returns or complaints.
You may voluntarily create a personal customer account by which we can store your data for further orders. If you do so, we will store the data you provide us within the customer account until you object to such storage. You may effect such objection at any time by deleting your customer account.
Due to statutory provisions on accounting and taxes, we are obliged to store your order and payment data for a period of ten years.
The legal basis for the processing of your order and payment data is Article 6 Subsection 1 Sentence 1 (b) GDPR.
The legal basis for the storage of this data due to statutory provisions on accounting and taxes is Article 6 Subsection 1 Sentence 1 (c) GDPR.
The cookies used by our Website do not cause any harm to your client device, they do in particular not contain computer viruses, trojans or other malware.
Our website uses the following categories of cookies the scope and function of which we explain in the following:
Technically necessary cookies
Technically necessary cookies enable the use of our Website by enabling basic functions like menu navigation and access to secured areas of our Website. The use of our Website will not operate properly without these cookies.
Preference cookies enable our Website to remember certain information which influences the way our Website behaves or looks like, for example by remembering the language you use or the region from which you access our Website.
Statistical cookies help us to understand how the visitors of our Website interact with our Websites contents by anonymously gathering information on the user behavior. We use and analyze this information anonymously for statistical purposes.
Our Website uses marketing cookies to track the visits of the users of our Website. This tracking helps us to understand the preferences and interests of the visitors of our Website and enables us to show to the visitors of our Websites advertising on our Website or on third party websites which is relevant for and appealing to them.
With respect to the duration of the storage of the cookies on your client device, the following applies:
Transient cookies will be deleted automatically as soon as you close your web browser. One of the main categories of transient cookies is session cookies. Session cookies store a so-called session ID with which our Website can allocate various access events of your web browser to a common session. Our Website can thereby recognize your client device when you return to our Website. Session cookies will be deleted when you log out from our Website or close your web browser.
Persistent cookies will be deleted automatically after a preset period of time; this period may be different from cookie to cookie. You may at any time delete cookies in the safety/privacy settings of your web browser.
At the beginning of your visit of our Website, our Website will inform you on the cookies which are used by our Website and specify to which cookie category each cookie belongs (technically necessary cookies, preference cookies, statistical cookies or marketing cookies). Thereby, you will be notified on the name, the provider, the purpose and the time of deletion of each such cookie.
You will be able to deactivate each cookie category except for technically necessary cookies. These deactivations remain until you delete all cookies within the security/privacy settings of your web browser.
You can at any time modify your settings made upon the beginning of the visit of our Website with respect to any category of cookies (however except for technically necessary cookies) by closing our Website in your web browser, deleting all cookies within the security / privacy settings of your web browser and revisiting our Website thereafter. By this procedure, our Website will again show you the categories of cookies as specified above and enable you to modify your deactivation preferences.
Please refer to the user menu of your web browser for further details on deleting cookies within the security/privacy settings of your web browser.
Most web browsers allow you to particularly block cookies which are not set by our Website itself but by third-party providers (hereinafter referred to as “Third Party Cookies”). Please refer to the user menu of your web browser for further details thereon.
In the security/privacy settings of your web browser, you can generally block any types or categories of cookies and thereby prevent the storage of cookies on your client device. Please refer to the user menu of your web browser for further details thereon. Please note that after this general blocking you will probably not be able to use all functions of our Website.
4.2 Google Tag Manager
For the administration and control of the web analysis tools as specified in Section 4 of this Privacy Statement above, we use Google Tag Manager.
Google Tag Manager is a service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as “Google”), cf. https://www.google.com/intl/en/contact/. Google LLC is certified under the EU U.S. Privacy Shield, cf. https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active. Therefore, the data transfer to Google is subject to an adequacy decision pursuant to Article 45 Subsection 9 GDPR.
Google Tag Manager enables us to administrate and control those HTML commands of our Website via which the web analysis tools as specified in Section 4 above of this Privacy Statement (so-called “tags”) via a graphical user interface. Google Tag Manager implements these tags on our Website. Google Tag Manager does not use any cookies and does not gather any personal information. Only the web analysis tools itself which are specified in Section 4 above of this Privacy Statement and which we administrate by using Google Tag Manager gather data (cf. Sections 4.1 to 4.6 of this Privacy Statement). Google Tag Manager does not have access to this data.
5. YouTube Videos
We may include YouTube videos on our Website which are stored on https://www.youtube.com and may be run directly from our Website.
The website https://www.youtube.com is operated by YouTube, LLC., 901 Cherry Ave, San Bruno, CA 94066, USA (hereinafter referred to as “YouTube”). YouTube is a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as “Google”), cf. https://www.google.com/intl/en/contact/.
We implement YouTube videos only by using the so-called “extended data protection mode”. That means: no data with respect to you will be transferred to YouTube unless you start one of the YouTube videos on our Website. Only if you do so, the data as specified in the following paragraph will be transferred to YouTube. We do not have any influence on this data transfer.
By starting a YouTube video which is included in our Website, YouTube obtains the information that you have visited the respective subpage of our Website. Furthermore, the data as listed in Section 2.1 of this Privacy Statement above or parts thereof will be transferred to YouTube. This occurs regardless of whether you have created a personal user account with Google in which you are logged in. If you are logged in in such an account, the before mentioned data will be directly linked to your Google account. If you want to prevent this link of data with your personal Google account, you have to log out from your Google account before starting the respective YouTube video. YouTube stores your data within user profiles and uses it for marketing, market research and/or needs-based design of its website. This use occurs in particular (also for visitors not logged in to Google accounts) for the purpose of needs-based advertisement and in order to inform other users of YouTube on your activities on our Website. You may object to the creation of user profiles by directly contacting YouTube / Google.
By the implementation of YouTube videos on our Website, you will be enabled to start these videos and to probably use other functionalities of YouTube. We implement YouTube videos in order to improve our Website.
The legal basis for this data processing is Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in the implementation of YouTube videos on our Website is justified by the purposes specified above.
Google LLC and YouTube, LLC., a subsidiary of Google LLC, are certified under the EU U.S. Privacy Shield, cf. https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active#other-covered-entities. Therefore, the data transfer to YouTube / Google is subject to an adequacy decision pursuant to Article 45 Subsection 9 GDPR.
In order to design our Website based on the needs of the visitors of our Website and in order to optimize our Website otherwise, we use services of Shopify Inc. and its affiliates, including Shopify Data Processing (USA) Inc., Shopify Payments (USA) Inc., Shopify (USA) Inc., and Shopify International Limited (collectively, “Shopify”). (hereinafter referred to “Shopify“). These services gather and store data on an anonymized basis and produce user profiles from this data by using pseudonyms.
The above-specified analysis of user behavior is based on Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in this anonymized analysis of user behavior consists of our intent to design our Website pursuant to the needs of its visitors and to optimize it otherwise.
You may prevent the storage of the cookies which are used by the Shopify services by the following measures:
- By disabling marketing cookies at the beginning of your visit to our Website (cf. Section 3 of this Privacy Statement).
- By blocking Third Party Cookies or all cookies by choosing the respective setting within the security/privacy settings of your web browser (cf. Section 3 of this Privacy Statement). Please note that, after such blocking, you may probably not use all functions of our Website.
For more information visit: https://www.shopify.com/legal/privacy