Privacy policy
Data protection declaration
Any survey, use, storage, deletion or other use (hereinafter "processing") of data serves exclusively to provide our services. Our services have been designed with the aim of using as few personal data as possible. "Personal data" (hereinafter referred to as "data") all individual information about personal or factual conditions of a certain or determinable natural person (so -called "data subject") are understood.
The following explanations on data protection describe which types of personal data are processed when calling our website, what happens to this personal data and how you can object to data processing.
1. General information on data processing on this website
1.1 Person responsible
The person responsible in the sense of the EU General Data Protection Regulation (GDPR) is:
Gusti Leder GmbH
Address: Erich-Schlesinger-Straße 62
18059 Rostock
E-mail: info@gusti-leder.de
Homepage: https://www.gusti-leder.de/
1.2 Commissioner for data protection
The data protection officer is Anna Tiede from WS Datenschutz GmbH.
If you have any questions about data protection, you can reach WS Datenschutz GmbH at the following email address: gusti-leder@ws-datenschutz.de
WS Datenschutz GmbH
Dirksenstrasse 51
D-10178 Berlin
Homepage: https://webersohnundscholtz.de
1.3 Protection of your data
We have taken technical and organizational measures that ensure that the regulations of the GDPR are observed by both us and external service providers who work for us.
If we work together to provide our services with other companies, such as email and server providers, this is only done according to an extensive selection process. With this selection process, each individual service provider is carefully selected for its suitability in connection with technical and organizational skills in data protection. This selection procedure is documented in writing and a contract is only concluded in accordance with Art. 28 Para. 3 GDPR on the processing of personal data on behalf (AV contract) if it meets the requirements of Art. 28 GDPR.
Your information will be saved on specially protected servers. Access to this is only possible a few particularly authorized people.
Our website is encrypted by SSL/TLS, which you can see from the "https: //" at the beginning of the URL.
1.4 Deletion of personal data
We only process the personal data as long as it is necessary. As soon as the purpose of data processing is met, according to the scaleben the local deletion concept is closed and deleted, unless the legal regulations conflict with deletion.
2. Data processing on this website and creation of log files
2.1 Description and scope of data processing
When you visit our website, our web servers temporarily save every access in a protocol file. The following personal data is collected and stored until automated deletion:
- IP address of the requesting computer
- Date and time of access
- Name and URL of the called file
- Transmittent amount of data
- Message whether the call was successful
- Description data of the browser and operating system used
- Website from which access takes place
- Name of your internet access provider
To provide our website, we use the services of the hosting provider Creoline GmbH. The data processing is carried out by:
Creoline GmbH, Bergstraße 9a, 48341 Altenberge, Germany. Further information is available in the data protection declaration of Creoline GmbH at https://www.creoline.com/legal/privacy.
2.2 Legal basis for data processing
This data is processed on the basis of Art. 6 Para. 1 S.1 lit. f) GDPR. Our legitimate interest is based on making our website accessible to you.
2.3 Purpose of data processing
Data processing is for the purpose of enabling the use of the website (connection structure). It serves system security, the technical administration of the network infrastructure and the optimization of the website. The IP address is only evaluated in the event of attacks on our network infrastructure or the network infrastructure of our internet provider.
2.4 Duration of data storage
The personal data is deleted as soon as they are no longer necessary for the above purposes. This is the case if you close the website. Our hosting provider may use the data for statistical surveys. However, the data is anonymized for this. The data will be deleted by our hosting provider after 12 months.
2.5 The possibility of disposal by the person concerned
The data for providing the website and storage in log files is imperative for the operation of the website. Therefore, there is only a subsequent option for the user. To exercise your right of objection, please contact us or directly to the data protection officer of Creoline GmbH at:privacy@creoline.com.
3. Use of cookies
3.1 Description and scope of data processing
Our website uses cookies. These are saved on your computer when using our website. Cookies are small text files that are stored on your hard drive, the browser you are used, saved, and through which we or the place that the cookie sets will flow into certain information. Cookies cannot run programs or transfer viruses to your computer. You will be used by us to enable you to login and to analyze the use of our website in anonymized or pseudonymized form and to present interesting offers on this website. In this way, various data can be transmitted:
- Frequency of website visits
- What functions of the website you claim by you
- Used search terms
- Your cookie setting
- Your language setting
- Your shopping cart content
When calling the website, information is informed about the use of cookies and referred to the data protection declaration.
3.2 Legal basis for data processing
The legal basis for the processing of data by cookies that do not only serve the functionality of our website is Art. 6 Para. 1 S. 1 lit. a) GDPR.
The legal basis for data processing for cookies that only serve the functionality of this website is Art. 6 Para. 1 S.1 lit. f) GDPR.
3.3 Purpose of data processing
Our legitimate interest results from the guarantee of a smooth connection structure and a comfortable use of our website as well as for the reasons for evaluating system security and stability. The data processing also takes place to enable statistical evaluation of website use.
3.4 Duration of data storage
There are two types of cookies. Both are used on this website:
- Transient cookies (see A)
- Persistent cookies (see B)
a) Transient cookies, they are automatically deleted when they close the browser. This includes in particular session cookies. These save a so-called session ID, with which different inquiries from your browser can be assigned to the joint session. This enables your computer to be recognized if you return to our website. The session cookies are deleted when they log out or close the browser.
b) Persistent cookies, these are automatically deleted after a given duration, which can differ depending on the cookie.
3.5 The possibility of disposal by the person concerned
You have the option of revoking the consent to data processing by cookies that do not serve the functionality of the website. In addition, we only set cookies after you have agreed to set cookies when you access the page. In this way you can prevent data processing via cookies on our website.
You can also delete the cookies in the safety settings of your browser at any time. We would like to point out that you may not be able to use all functions of this website. The setting of cookies can also be prevented at any time by setting your internet browser.
4. Contact
4.1 Description and scope of data processing
On our website it is possible to contact us using a contact form. This requires various data for answering the request, which are automatically saved for processing.
The following data is collected at least (marked as a mandatory field) as part of the contact form:
- E-mail address
- First and Last Name
You can voluntarily provide the following information:
- Order number
- Salutation
- Telephone number
The data is not passed on to third parties.
4.2 Legal basis for data processing
The legal basis used here is Art. 6 Para. 1 S.1 lit. b) GDPR.
4.3 Purpose of data processing
We only process your data to process your contact request.
4.4 Duration of data storage
Your data will be deleted by us as soon as the purpose of data processing has been met, mostly immediately after answering the request. In rare cases, however, it can happen that we keep your data for a longer period of time. This can result from legal, official or contractual obligations.
4.5 The possibility of disposal by the person concerned
You can contact us at any time and object to further processing your data. In this case, we cannot continue communication with you. In this case, all personal data that we have processed in the course of contacting us will be deleted, unless the deletion conflicts with legal obligations for the storage of your data.
4.6 WhatsApp
4.6.1 Description of data processing
We offer you the opportunity to contact us using your mobile phone via WhatsApp. It is only possible if you have or install WhatsApp on your mobile phone. The advantage for you is that you can get in touch with us via WhatsApp. Is responsible for data processing together with us: WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbor Dublin 2, Ireland.
By contacting WhatsApp, we automatically receive the following information from WhatsApp:
- Your phone number
- Your user name at WhatsApp
- Your profile picture
- Your profile information
- Possibly your status
- If necessary when you were last online at WhatsApp
- your message
- If necessary whether you have received and/or read our messages
Further information on the functioning of WhatsApp Web and the privacy settings of your social media account can be found in the data protection information and the terms of use of WhatsApp at: https://www.whatsapp.com/legal/?lang=de#terms-of-service as well as https://www.whatsapp.com/legal/?lang=de
4.6.2 Legal basis for data processing
Contact via WhatsApp and the associated disclosure of your data is voluntarily. The processing is therefore based on Art. 6 Para. 1 S. 1 lit. a) GDPR.
4.6.3 Purpose of data processing
With data processing, we aim to enable a simple way of communication for many people. This simplifies you and us the quick exchange of general service instructions and tips for problems with the use of our website.
4.6.4 Duration of data storage
We will be deleted your data immediately after answering your service request. In rare cases, however, it can happen that we keep your data for a longer period of time. This can result from legal or contractual obligations.
4.6.5 Specification options by the person concerned
Contact via WhatsApp is voluntary and can be ended at any time. You have the option of revoking your consent to data processing, see Art. 7 GDPR. A revocation works from the time at which it is pronounced. It has an effect on the future. You can revoke your consent at any time. This can be done by post, by post, by email or otherwise. The scope of the disclosure of your data is based on your individual privacy settings in the WhatsApp Messenger. More on this here: https://www.whatsapp.com/legal/?lang=de#privacy-policy-managing-and-deleting-your-information
4.7 WhatsApp Web
4.7.1 Description of data processing
We offer you the opportunity to contact us using your mobile phone via WhatsApp Web. It is only possible if you have or install WhatsApp on your mobile phone. The advantage for you is that you can now comfortably keep in touch with us via WhatsApp on your mobile phone. By linking, we automatically receive the following information from WhatsApp:
- Your phone number
- Numerical social media ID
- First and Last Name
- Gender
- Username at WhatsApp
- The account was verified (verified), for example "yes"
- Link to your public profile with the selected social media service.
Further information on the functioning of WhatsApp Web and the privacy settings of your social media account can be found in the data protection information and the terms of use. Data processing is carried out by: WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbor Dublin 2, Ireland.
Further information on data processing by WhatsApp can be found at: https://www.whatsapp.com/legal/#terms-of-service
4.7.2 Legal basis for data processing
Registration via WhatsApp Web and the associated disclosure of your data is voluntarily. The processing takes place on the basis of your consent Art. 6 Para. 1 S. 1 lit. a) GDPR.
4.7.3 Purpose of data processing
The aim of data processing is a simple and everyday communication channel for many people via WhatsApp. This simplifies you and us the agreement of appointments and the like.
4.7.4 Duration of data storage
The data will be deleted as soon as the purpose of data processing is met and there are no legal, official or contractual regulations of deletion.
4.7.5 Consideration options by the person concerned
Contact via WhatsApp is voluntary and can be ended at any time. You have the option of revoking your consent to data processing, see Art. 7 GDPR. A revocation works from the time at which it is pronounced. It has an effect on the future. You can revoke your consent at any time. This can be done by post, by post, by email or otherwise. The scope of the disclosure of your data is based on your individual privacy settings in the WhatsApp Messenger.
5. Registration on the website
5.1 Description and scope of data processing
You can register on our website. This requires that the you enter personal data in the registration mask. The following data is at least collected:
- E-mail address
- First and Last Name
- Salutation
- address
The data you provide in the registration mask are used exclusively for processing and generally not passed on to third parties.
5.2 Legal basis for data processing
If you provide personal data that belong to the mandatory field input masks, data processing is based on Art. 6 Para. 1 p. 1 lit b) GDPR.
5.3 Purpose of data processing
We process your data exclusively for the purpose of completing your registration and guiding your website account with us.
5.4 Duration of data storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose of their survey. This is the case if you close your account with us and do not conflict with legal or official retention periods of deletion.
5.5 The possibility of disposal by the person concerned
Both during and after the registration has been made, you are free to change, correct or delete the personal data.
6. Notification of goods available
6.1 Description and scope of data processing
If in our online shop there is the possibility to be informed of the availability of an item that is currently not available by email, we offer a corresponding notification service. When registering for this service, we save your e-mail address and for verification purposes your IP address and date and time of registration in order to prevent your email address possible.
Registration takes place in the double opt-in procedure: After your registration, you will receive a confirmation email with a link that you have to actively click to activate the notification.
6.2 Legal basis for data processing
The legal basis for data processing is your express consent in accordance with Art. 6 Para. 1 lit. a) GDPR.
6.3 Purpose of data processing
The purpose of processing is to inform you once by email about the availability of the product you have selected.
6.4 Duration of data storage
Your email address will be deleted immediately after sending the availability notification or after deregistration, unless you have expressly agreed to use your data or have legal retention obligations.
6.5 The possibility of disposal by the person concerned
You can unsubscribe from the notification service at any time. For this purpose, an informal message to the responsible body mentioned in this data protection declaration is sufficient. After deregistration, your email address will be removed immediately from the distributor.
7. Corporation cod memories by email
7.1 Description and scope of data processing
If you cancel the ordering process in our online shop before you complete the order, we optionally offer you to be reminded of the content of your virtual shopping cart by email. It is necessary to specify your email address for sending the shopping cart. The specification of further data is voluntary and may serve a personalized address. In addition, we store your IP address as well as the date and time of the registration in order to understand a possible misuse of your email address.
Shipping takes place in the double opt-in procedure: You will first receive a confirmation email with a link, which you have to actively confirm your consent to maintain the memory.
7.2 Legal basis for data processing
Your data is processed on the basis of your consent in accordance with Art. 6 Para. 1 lit. a) GDPR.
7.3 Purpose of data processing
The purpose of data processing lies exclusively in the one -time memory of the not yet completed order in your virtual shopping cart.
7.4 Duration of data storage
After deregistering from the shopping cart reminder service, your email address will be deleted immediately from the proposed distributor, provided that there is no further consent or contradict statutory retention obligations.
7.5 The possibility of disposal by the person concerned
You can unsubscribe from shopping carts at any time. For this purpose, an informal message to the responsible body in accordance with the information in this data protection declaration is sufficient. After deregistration, your email address will be deleted immediately from the distributor.
8. Data processing as part of applications
8.1 Data processing as part of applications by email
8.1.1 Description and scope of the data processing
It is possible via our website to use e-mail (personal@gusti-leder.de) to apply to us. For this purpose, the personal data you provide will be processed and saved for further processing for the respective application process.
8.1.2 Legal basis for data processing
The legal basis for data processing are Art. 88 GDPR and § 26 BDSG.
8.1.3 Purpose of data processing
We process your data exclusively for the purpose of carrying out the application process.
8.1.4 Duration of data storage
If the application should lead to the inclusion of an employment relationship, the personal data is stored accordingly with respect for the statutory regulations. If the application is not taken into account when choosing a potential candidate, this will be deleted according to the rules of the local deletion concept, whereby the regulations for the AGG, in particular the existing obligation to provide evidence according to § 22 AGG, are taken into account.
This does not apply if there are legal provisions of deletion or you have given your consent to longer storage. In this case, the further storage of your personal data is based on Art. 6 Para. 1 S. 1 lit. c) or lit. a) GDPR.
8.1.5 The possibility of disposal by the data subject
You can contact us at any time and object to further processing your data. In this case, all personal data that we processed by us in the course of the application process will be deleted, unless deletion counter -compelling legal regulations.
8.2 Recruitee
8.2.1 Description and scope of data processing
For our application portal, we use the services of the application management software "Recruitee" with which we have concluded an order processing contract. Data processing is carried out by: Recruitee B.V., Kezersgracht 313, 1016 EE Amsterdam, Netherlands.
You can find our application portal at the following link: https://gustileder.recruitee.com. On this page you will find our current job advertisements including all important information about the respective job offers. In addition, you can apply directly to the respective places by using an application form.
Recruitee processes the following personal data on our behalf:
- First and Last Name
- Any contact details
- CVs
- Email correspondence
- Professional background
- Motivation and cover letter
- Other application documents
- Date and time of the use of the application page
- Cookies
- http requests and answers
For more information, see the data protection declaration of Recruitee at the following link: https://recruitee.com/de/privacy-policy
8.2.2 Legal basis for data processing
The legal basis for the use of recruitee is our legitimate interest in the provision of an application portal in accordance with Art. 6 Para. 1 S. 1 lit. f) GDPR.
8.2.3 Purpose of data processing
The purpose of data processing is to optimize our application management.
8.2.4 Duration of data storage
The data will be deleted as soon as the purpose of data processing has been achieved and there are no legal, contractual or official retention periods of deletion.
8.2.5 The possibility of disposal by the data subject
You have the option of contradicting data processing by reporting to our data protection officer at any time. If you have any questions about data protection at Recruitee, you can contact Recruitee at any time under the following email address: hello@recruitee.com.
If you do without data processing by recruitee and do not want to use our application portal, you also have the option of your application directly to us by email personal@gusti-leder.deto send.
8.3 Google Meet
8.3.1 Description and scope of data processing
We use Google Meet, a service of Google Ireland Limited for the implementation of virtual interviews. During use, personal data may also be sent to the parent company Google LLC in the USA. Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
When using Google Meet, various personal data are collected and processed, including:
- IP addresses
- Email addresses
- Device name
- Audio and video data
- Chat content
8.3.2 Purpose of data processing
The processing of personal data is carried out for the purpose of providing video conference services. This includes the organization and implementation of online meetings and the storage of meeting content, provided that a recording is initiated.
8.3.3 Legal basis for data processing
The processing is based on Art. 6 Para. 1 Lit. f) GDPR (legitimate interest), since the provision of a secure and efficient means of communication is in the interests of the company.
8.3.4 Duration of data storage
Google Meet's data is usually saved as long as it is necessary for the purpose of data processing. There is no video recording of the conversation.
8.3.5 The possibility of disposal by the data subject
You have the option of contradicting data processing at any time by reporting to our data protection officer. For more information on data protection, we refer to Google's data protection declaration below: https://www.google.de/intl/de/policies/privacy/
9. Data processing as part of events
9.1 Description and scope of data processing
As part of the organization and implementation of events, we collect and process personal data from the participants in order to be able to send you a corresponding invitation. The processed data usually include:
- Name,
- Contact details (such as email address and telephone number),
- as well as specific information on the event participation.
If the event is carried out by a third party, you will be informed in advance that your participation data may be passed on to this for this purpose.
9.2 Legal basis for data processing
Your personal data is processed on the basis of Art. 6 Para. 1 Lit. f) GDPR, whereby our legitimate interest lies in the efficient implementation and organization of our events.
9.3 Purpose of data processing
Your data is collected and processed for the purpose of planning, organizing and carrying out the event.
9.4 Duration of data storage
Your personal data will be saved as long as it is necessary to fulfill the purpose for which you have been collected. After completing the event and fulfillment of all associated obligations, your data will be deleted, provided that there are no legal retention obligations.
9.5 The possibility of disposal by the person concerned
You can contact us at any time and object to further processing your data. All personal data processed by us in the course of the event will be deleted in this case, unless there are compelling legal regulations.
10. Newsletter
10.1 Description and scope of data processing
We offer the opportunity to subscribe to our newsletter on our website. When ordering the newsletter, the provision of personal data for processing is requested. This is the data that is queried in the newsletter input mask. Input fields that are marked with a "*" are mandatory fields:
- E-mail address
These mandatory fields are necessary to send you the newsletter.
The newsletter will be sent by email. You will only receive the newsletter after registration. In order to meet the requirements for the GDPR, we use the so-called DOI procedure ("double opt-in"). If you register for our newsletter, you will receive a confirmation email on the electronic mailbox specified in the input field. This email contains a confirmation link that you have to click. After this procedure, you have successfully registered for the newsletter. To carry out the procedure, IP address, date and time of the registration are saved. This is to prevent abuse. In principle, the data is not passed on to third parties.
10.2 Legal basis for data processing
The legal basis for data processing is your consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR. Existing customers can receive newsletters from us that have not given any explicit consent. However, this is only done within the narrow limits of Section 7 (3) UWG, which is to be understood in the light of Art. 95 GDPR mirror image to Art. 6 Para. 1 S.1 lit. f) GDPR. Our legitimate interest is to inform our existing customers through advertising emails about our products and thus maintain contact with these customers.
10.3 Purpose of data processing
The newsletter has the function of informing you at regular intervals about offers and news.
10.4 Duration of data storage
We only process your data as long as is necessary for the purpose of the purpose and deletion does not conflict with legal or official retention obligations.
10.5 The possibility of disposal by the person concerned
The consent to the processing of personal data as part of the newsletter order can be revoked at any time. To do this, you can click the link to cancel in any newsletter or to reveal the consent to us in other ways.
10.6 Shipping service provider Klaviyo
10.6.1 Description and scope of data processing
The newsletter is shipped using the provider Klaviyo. The data processing is carried out by:
Klaviyo, Inc., 60 South Street, Suite 910, Boston, Massachusetts 02111, USA.
The email addresses of our newsletter receivers, as well as their other data described as part of this information, are saved on the clavy's servers. Klaviyo uses this information for shipping and evaluating the newsletter on our behalf. The newsletters contain a so-called "Web Beacon", i.e. a pixel-sized file that is called up by the claviyo server when the newsletter is opened. As part of this access, information such as information on your system, your contact details, demographic data and time of access is collected.
Statistical surveys also include determining whether the newsletters are opened, how often they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our endeavor nor that to observe individual users from claviyo. We trust the reliability and the IT and data security of Klaviyo. For additional information on data protection at Klaviyo, see here: https://www.klaviyo.com/privacy
10.6.2 Legal basis for data processing
Data processing by claviyo is based on an effective and secure transmission of the newsletter to you, in accordance with Art. 6 Para. 1 S. 1 lit. f) GDPR.
10.6.3 Purpose of data processing
We use Klaviyo as our shipping service provider to ensure effective address management and to stay in touch with you via the newsletter.
10.6.4 Duration of data storage
According to Klaviyo, she only stores your personal data as long as we use your personal data for the newsletter shipping. Klaviyo deletes your data when you make an application for deletion and we delete it from our address file.
10.6.5 The possibility of disposal by the data subject
You can object to us against the processing of your data by claviyo. We then check your justified contradiction and inform you of whether and why we will continue the data processing. In addition, it is always unanswered to use the "opt-out" link at the end of each email, which means that we can delete your email address from our address card, which is why Klaviyo does not process your personal data. However, this has no influence on address cartridges that the claviyo manages on behalf of other clients. If you have any questions about data protection on Klaviyo or want to perceive your rights towards Klaviyo, you can contact Klaviyo at this address: privacy@klaviyo.com
11. Shopping in the online shop
11.1 Description and scope of data processing
If you are shopping and a delivery is agreed, we process the name, address and email address from you. In the case of package deliveries, we also pass on the name, address and email address from you to our contractually bound order processor and service provider.
11.2 Legal basis for data processing
The legal basis for the associated data processing is Art. 6 Para. 1 S. 1 lit. b) GDPR, i.e. the processing of your data is required for the fulfillment of the purchase contracts and delivery agreements.
11.3 Purpose of data processing
We process your data in order to conclude the purchase contract, including delivery agreement with you, in order to handle the purchase contract, including invoicing by email or post and payment, to ensure punctual delivery and to inform you about delivery dates and/or changes to the delivery.
We pass on your data to our service providers so that they can handle the delivery and, if necessary, communicate with you to announce and coordinate the delivery of your ordered goods.
11.4 Duration of data storage
Your data will only be saved as long as this is necessary for the purpose of the purpose and as long as we are liable for the storage of your data by legal, contractual or official obligations.
11.5 The possibility of disposal by the person concerned
Data processing is imperative to be able to handle your purchase contract, which is why you cannot do without. There is therefore no disposal option.
11.6 PayPal
11.6.1 Description and scope of data processing
We offer PayPal as a possible payment service. PayPal is a virtual account model and means of payment. In order to use the payment service using PayPals, the prior registration with PayPal is required. Data processing is carried out by: PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.
If you use PayPal as a means of payment, your personal data will be transmitted to PayPal. The personal data is
- Name,
- Last name,
- Address,
- E-mail address,
- IP address,
- Telephone number,
- possibly mobile number and
- Other data required for final payment processing.
In addition to passing on the data to information, it is also possible that PayPal will forward the personal data to affiliated companies, including subcontractors, insofar as this is necessary to fulfill the contractual obligations. The same applies to order processing. PayPal uses binding internal data protection regulations (Binding Corporate Rules): https://www.paypal.com/de/webapps/mpp/ua/bcrto secure data processing. Regarding PayPal's data protection instructions, reference is made to the link below: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
11.6.2 Legal basis for data processing
The legal basis is based on Art. 6 Para. 1 S. 1 lit. b) GDPR.
11.6.3 Purpose of data processing
The transmission of the data is necessary to prevent any abuse. We share that PayPal may transmit the personal data to information. This is because PayPal reserves your identity and creditworthiness.
11.6.4 Duration of data storage
Your data will only be saved as long as this is necessary for the purchase and invoicing, unless the legal or contractual storage periods of deleting your data are opposed.
11.6.5 The possibility of disposal by the data subject
Data processing is imperative to be able to handle your payment via PayPal, which is why you cannot do without if you have chosen this payment method. There is therefore no disposal option.
11.7 Shopify
11.7.1 Description and scope of data processing
To process our customer orders and organize payment transactions, we use Shopify, e-commerce software. Data processing is carried out by: Shopify International Limited, Victoria Buildings, 2nd floor, 1-2 Haddington Road, Dublin 4, DO4 XN32, Ireland.
Shopify transmits the data to Canada and the United States of America. With Shopify, we have concluded an order processing contract to ensure that the required guarantees for data security according to Art. 46 Para. 2 GDPR are provided.
We use Shopify to create our online shop and process customer orders and transactions. Shopify collects the following data from you that you provide yourself:
- First and Last Name
- company
- Billing address
- Delivery address and date
- E-mail address
- Telephone number
- Payment information
- Order information (ton size, duty time, emptying rhythm)
- Information on the industry
- Browser and device information
- IP address
- User behavior on the Shopify platform
You can find detailed information about this data collection at: https://www.shopify.de/legal/datenschutz
11.7.2 Legal basis for data processing
The legal basis for data processing is your consent in accordance with Art. 6 Para. 1 S. 1 lit. b) GDPR.
11.7.3 Purpose of data processing
Data processing is necessary to organize our customer orders.
11.7.4 Duration of data storage
We only store your data as long as is necessary for the fulfillment of the processing purpose and there are no legal retention obligations.
11.7.5 The possibility of disposal by the data subject
Data processing is imperative to be able to process order online, which is why you cannot do without if you want to hire us online. There is therefore no disposal option.
If you have any questions about data processing at Shopify, you can send a request to Shopify:
- by form https://legal.shopify.com/Shopify-lawEnfForm/en/
- by email: privacy-team@shopify.com
- Or send your concern by post: Data Protection Officer C/O Intertrust Ireland 2nd Floor 1-2 Victoria Buildings Haddington Road Dublin 4, D04 XN32, Ireland.
11.8 prepayment (transfer by the customer)
11.8.1 Description and scope of data processing
If you opt for prepayment, you will transfer the agreed invoice to us from a credit institution of your choice. This gives us the following payment data:
- Name of account holder,
- Iban,
- Order number and
- Invoice amount
We do not process the payment data ourselves, but are processed directly by the service provider who processes the payment.
The data processing is carried out by:
Commerzbank Aktiengesellschaft
Business premises: Kaiserplatz, 60311 Frankfurt am Main
Postal address: 60261 Frankfurt am Main
Telephone: 069 1 36 20
E-mail: info@commerzbank.com
Internet: https://www.commerzbank.de/
Our service provider cannot assign this information to other information (such as your address or email address). Please note the data protection declaration of our service provider:
https://www.commerzbank.de/hinweise/rechtliche-hinweise/#datenschutz
11.8.2. Legal basis for data processing
The legal basis for data processing is Art. 6 Para. 1 S. 1 b) GDPR.
11.8.3 Purpose of data processing
The processing of the data is required for payment in advance and thus for the implementation of the contract.
11.8.4 Duration of data storage
Your data will only be saved as long as this is necessary for the purchase and invoicing, unless the legal or contractual storage periods of deleting your data are opposed.
11.8.5 The possibility of disposal by the data subject
Data processing is imperative to be able to handle your payment in advance, which is why you cannot do without if you have chosen this payment method. There is therefore no disposal option.
11.9 Sofortüberweisung - Immediate.com / Klarna
11.9.1 Description and scope of data processing
We use the payment service "Sofortüberweisung - Immediate.com" by Klarna (hereinafter "Sofortüberweisung"). For this we have integrated components of "Sofortüberweisung" on our website. For payment processing, “Sofortüberweisung” uses a technical procedure through which we immediately receive a payment confirmation. In this way, we can immediately determine whether there is a payment receipt, whereupon the investment can be made. Data processing is carried out by: Sofort GmbH, Theresienhöhe 12 in 80339 Munich, Germany as a member of Klarna Bank (publ), Sveafen 46, 111 34 Stockholm, Sweden.
If you want to use the "Sofortüberweisung" payment option for payment processing, your personal data will be sent to "Sofortüberweisung". The following personal data is processed:
- PIN and TAN
- Technical review of the account balance or account coverage
- Transmission of the transaction to us
- First name,
- Last name,
- Address,
- E-mail address,
- IP address,
- Telephone number,
- Mobile number
- Other data necessary for payment processing.
It is possible that "Sofortüberweisung" will also pass on the personal data to information in order to carry out the identity and credit rating of the data subject. It is also possible that "Sofortüberweisung" will forward the personal data to connected companies and/or subcontractors, provided this is necessary to fulfill contractual obligations. You can find more information at: https://www.sofort.de/datenschutz.html as well as under https://www.klarna.com/de/datenschutz/ .
11.9.2 Legal basis for data processing
The legal basis for data processing is Art. 6 Para. 1 S. 1 b) GDPR.
11.9.3 Purpose of data processing
We use Sofortüberweisung - Immediate.com to make the payment processing easily and quickly.
11.9.4 Duration of data storage
We only save your data as long as this is necessary for the purchase and invoicing, unless the legal or contractual storage periods are contradicted by your data. For accounting purposes for the online provider and to fulfill legal retention obligations, Klarna Name, account number, bank code, subject, date and transfer amount within the legal retention periods. In the case of SEPA transfers and, depending on your bank, BIC and IBAN are required to set the transfer to your online banking account, Klarna also stores BIC and IBAN within the legal retention periods. The legal retention periods range from three to ten years.
11.9.5 The possibility of disposal by the data subject
Data processing is imperative to be able to handle your payment, which is why you cannot do without if you have chosen this payment method.
11.10 Google Pay
11.10.1 Description and scope of data processing
You also have the option of processing the purchase via Google Payment. Data processing for the European Economic Area and Switzerland is carried out by:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
In addition to the registration information and those processed by the Google Payment via third parties, the following data can be processed by Google for each transaction:
- Date, time and amount of the transaction, dealer location and description, a description of the purchased goods or services provided by the seller, photos that you have attached to the transaction, the name and email address of the seller and buyer or the sender and recipient, the payment method, your description for the reason for the transaction and, if necessary, the offer connected to the transaction
If you make a purchase or transaction via Google Payments, Google provides us with certain personal data about you. If you buy from our website, we can also check whether you have a Google Payments account with a payment method that can be used for payment.
Further information on Google Payments and data protection on Google can be found here: https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de; https://policies.google.com/privacy
11.10.2 Legal basis for data processing
The legal basis for data processing is Art. 6 Para. 1 S. 1 b) GDPR.
11.10.3 Purpose of data processing
The processing of the data is necessary for payment via Apple Pay and thus for the implementation of the contract.
Google processes the data to provide you with Google Payment services and protect you from fraud, phishing or other violations. This information can also be used to support third -party providers in providing products or services that you have requested from these providers. Google also use the information to check your Google Payment account to decide whether you meet the terms of use and other legitimate business requirements in conjunction with the Google Payment transactions you have arranged.
11.10.4 Duration of data storage
We only save your data as long as it is necessary for the purchase and invoicing, unless the legal or contractual storage periods are contradicted by deleting your data.
Google deletes the data as soon as it no longer bento be agreed and do not conflict with official, legal or contractual regulations of deletion.
11.10.5 The possibility of disposal by the data subject
Data processing is imperative to be able to handle your payment via Google Pay, which is why you cannot do without if you have chosen this payment method.
In your Google Payment settings, you can prevent Google LLC or its subsidiaries from third-party providers whose websites or apps you visit, you can pass on information about whether you have a Google Payment account that can be used to pay with this provider.
11.11 Amazon Pay
11.11.1 Description and scope of data processing
They have the opportunity to process the purchase via Amazon Pay. Data processing is carried out by: Amazon Payments Europe S.C.A., 38 Avenue J.F. Kennedy, L-1855 Luxembourg.
In addition to the registration information, Amazon Pay processes the following data for each transaction: date, time and amount of the transaction, dealer name, description of the purchased goods or services, payment method as well as your email address and delivery address. This data is transmitted to Amazon for payment processing. Amazon Pay uses the data to carry out payment and fraud prevention.
Further information on data protection at Amazon Pay can be found here:https://pay.amazon.com/de/help/201751600
11.11.2 Legal basis for data processing
The legal basis for data processing is Art. 6 Para. 1 S. 1 lit. b) GDPR.
11.11.3 Purpose of data processing
The processing of the data is necessary for payment by Amazon Pay and thus for the implementation of the contract.
11.11.4 Duration of data storage
We only store your data as long as this is necessary for the purchase and invoicing, unless there are legal or contractual storage periods of deleting your data.
11.11.5 Opportunity to remedy by the person concerned
Data processing is imperative to be able to handle your payment by Amazon Pay, which is why you cannot do without if you have chosen this payment method.
11.12 Apple Pay
11.12.1 Description and scope of data processing
You have the option of handling the purchase via Apple Pay. Data processing is carried out by: Apple Inc., One Apple Park Way, Cupertino, CA 95014, USA.
Apple Pay processes the following data for each transaction: Date and time of the transaction, amount, dealer name, payment method used as well as your device ID with model number and, if necessary, your billing address. Apple does not save complete credit card numbers and only uses anonymized transaction data to improve its services. However, the user's bank receives certain personal data such as the name and billing address for payment processing.
Further information on data protection at Apple Pay can be found here: https://support.apple.com/de-de/HT203027
11.12.2 Legal basis for data processing
The legal basis for data processing is Art. 6 Para. 1 S. 1 lit. b) GDPR.
11.12.3 Purpose of data processing
The processing of the data is necessary for payment via Apple Pay and thus for the implementation of the contract.
11.12.4 Duration of data storage
We only store your data as long as this is necessary for the purchase and invoicing, unless there are legal or contractual storage periods of deleting your data.
11.12.5 Opportunity to remedy by the data subject
Data processing is imperative to be able to handle your payment via Apple Pay, which is why you cannot do without if you have chosen this payment method.
11.13 ideal
11.13.1 Description and scope of data processing
On our website we offer online payment methods via the following payment service provider: Currency Holding BV, Beethovenstraat 300, Amsterdam, Netherlands.
If you opt for a payment method of ideal in the ordering process, in which you provide advance payment (e.g. by online transfer or credit card payment), the payment data specified as part of the order process
- name
- address
- Bank or card data
- currency
- Transaction number
- Information on your order
transmitted to Currence Holding BV.
11.13.2 Legal basis for data processing
The legal basis for the transfer of the data is Art. 6 Para. 1 lit. b) GDPR, since the processing is necessary to fulfill the contract or to carry out pre -contractual measures.
11.13.3 Purpose of data processing
The purpose of data processing is the secure and contractual handling of your payment via the ideal payment system.
11.13.4 Duration of data storage
We only save the data transmitted during payment processing as long as is necessary for the implementation of the payment process and within the framework of legal retention periods. Further information on the memory duration can be found in the data protection declaration of Ideal or Currency at https://www.ideal.nl/en/ideal-privacy-cookiestatement.
11.13.5 The possibility of disposal by the data subject
Since the processing is necessary for the implementation of the contract, there is no possibility of opposition if there are no other legal retention obligations or interests worthy of protection.
12.Passing on to shipping service providers
12.1 Description and scope of data processing
For the purpose of delivery of the ordered goods, we pass on your personal data to selected shipping service providers. This affects in particular:
- Österreichische Post AG, Rochusplatz 1, 1030 Vienna, Austria
- Deutsche Post AG / DHL Paket, Charles-de-Gaulle-Straße 20, 53113 Bonn, Germany
- DHL Express Germany GmbH, Heinrich-Brüning-Str. 5, 53113 Bonn, Germany
- Schweizerische Post AG, Wankdorfallee 4, 3030 Bern, Switzerland
- Poste Italiane S.P.A., VIALE Europe 190, 00144 Rome, Italy
- Koninklijke Postnl BV, Waldorpstraat 3, 2521ca den Haag, Netherlands
- Oops - United Parcel Service Germany Inc. & Co. OHG, Görlitzer Straße 1, 41460 Neuss, Germany
12.2 Legal basis for data processing
The legal basis for the transfer of your personal data to shipping service providers results from Art. 6 Para. 1 lit. b) GDPR, insofar as the transmission to fulfill the contract is therefore necessary to deliver the ordered goods. If you expressly consent in the order process that your email address and/or telephone number may be sent to the shipping service provider for the purpose of tracking or appointment, data processing is based on your consent in accordance with Art. 6 Para. 1 lit. a) GDPR.
12.3 Purpose of data processing
The transfer takes place exclusively for the purpose of delivery of the ordered goods or for the prior coordination of the delivery date or a shipping notification.
12.4 Duration of data storage
We only save the data transmitted to shipping service providers as part of the delivery to shipping service providers as long as is required for the processing of the delivery or legal retention obligations exist. The shipping service provider also only stores the data obtained as long as is necessary for the fulfillment of the delivery order, unless legal regulations require longer storage.
12.5 The possibility of disposal by the person concerned
You can cancel your consent to pass on your contact details to the shipping service provider at any time with effect for the future - either compared to the responsible body mentioned in this data protection declaration or directly at the respective service provider.
We have integrated social media platforms on our services via links that cause social media providers to receive data from you if necessary. If you click on the social media link, the website of the respective social media provider is accessed. By calling the website of the respective social media provider via our services, the respective reference data will be transmitted to the respective social media provider. The social media provider receives the information that you have visited us.
Note on data processing in the USA:
If you click on a social media link, data may be processed by the respective provider in the USA. According to the ECJ, the data protection standard in the United States is insufficient and there is a risk that your data will be processed by the US authorities for control and monitoring purposes, possibly even without legal opportunities. If you do not click on the links of the social media providers, a data transmission does not take place.
Further information on data processing by the social media providers can be found here:
- Meta:https://de-de.facebook.com/help/pages/insights, https://de-de.facebook.com/about/privacy, https://de-de.facebook.com/full_data_use_policy
- Instagram: https://help.instagram.com/155833707900388, https://www.instagram.com/about/legal/privacy/
- YouTube:https://www.google.de/intl/de/policies/privacy/
- Pinterest: https://policy.pinterest.com/de/privacy-policy
We have integrated social media platforms on our website via so-called "social plug-ins", which lead to the social media providers receive data from you if necessary. We are keen on these to the following.
14.1 YouTube
14.1.1 Description and scope of data processing
We use the provider YouTube to integrate videos on our website. Is responsible for data processing together with us: YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA, represented by Google LLC., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Usually your IP address is sent to YouTube with embedded videos when you are called up by some pages of our website and cookies is installed on your computer. When you click on the video, your IP address will be transmitted to YouTube and YouTube learns that you have watched the video. If you are logged in on YouTube, this information will also be assigned to your user account. We have no knowledge of the then possible collection and use of your data by YouTube. For further information on data protection, we refer to the following YouTube or Google data directive:https://www.google.de/intl/de/policies/privacy/.
14.1.2 Legal basis for data processing
The legal basis for data processing is your consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
14.1.3 Purpose of data processing
We use social media to make our company better known. We would also like to offer you the opportunity to interact with social media via our website.
14.1.4 Duration of data storage
The data collected by YouTube (Google) about plugins and advertising is deleted by the person responsible after a fixed memory duration. According to Google, this time is 9 or 18 months.
14.1.5 The possibility of disposal by the data subject
You have the opportunity to revoke your consent to data processing at any time. Please contact our data protection officer for this. To prevent data processing through YouTube, you have the option of logging out of YouTube before calling our website and deleting all cookies from your browser course. Further settings and contradictions for the use of data for advertising purposes are possible within the YouTube profile settings. The settings are platform -independent, i.e. they are taken over for all devices such as Desktop computer or mobile devices.
14.2 Facebook
14.2.1 Description and scope of data processing
We integrated Facebook on this website. The Facebook button can be found on the website. Is responsible for data processing together with us: Face Platforms Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If a data subject lives outside of the USA or Canada and makes Facebook processing, it is responsible for this: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland.
If you click on the Facebook button, the Facebook website is called up. By calling the Facebook website via our website, Meta will transmit the respective reference data by us. Meta receives the information that you have visited our website. The plugins used by Meta can be called up at: https://developers.facebook.com/docs/plugins/?locale=de_DE
If you are logged in parallel via a Facebook account at the time of the visit of our website (it does not matter whether it is your own Facebook account), META receives further information, which sub-pages you have visited on our website. Meta collects this information so that theoretically exists to assign this information to your Facebook account. The same applies to the "Like" button or when using the comment field; META can also assign this information to the respective, logged in Facebook account.
For further information on data protection on Facebook, we refer to the meta data directive below: https://de-de.facebook.com/about/privacy/
According to its own information, Meta stores:
- Date and time of the visit,
- The specific Internet address on which the social plugin is located, and
- Further technical data such as the IP address,
- the browser type,
- The operating system,
to further optimize the services of Meta.
14.2.2 Legal basis for data processing
The legal basis for data processing is your consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
14.2.3 Purpose of data processing
Our interest in the use of the service results from the advertising function of social media. We use them to increase the level of awareness of our company.
14.2.4 Duration of data storage
According to its own information, Meta stores your data for 90 days. After 90 days, the data is anonymized so that they cannot be associated with them.
14.2.5 The possibility of disposal by the data subject
You have the opportunity to revoke your consent to data processing at any time. Please contact our data protection officer for this. To prevent data processing through META, you have the option of logging out on Facebook before calling our website. To do this, you have to log out of Facebook's website and delete all cookies from your browser course. Further attitudes and contradictions for the use of data for advertising purposes are possible within the Facebook profile settings or via the US side or the EU page of Facebook. The settings are platform -independent, i.e. they are taken over for all devices such as Desktop computer or mobile devices.
14.3 Instagram
14.3.1 Description and scope of data processing
We have integrated the services of Instagram on this website. Is responsible for data processing together with us: Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA as a product of Meta Platforms Ireland Limited, 1 Hacker Way, Menlo Park, CA 94025, USA.
If you click on the Instagram button, the Instagram website is called up. By calling the Instagram website via our website, Instagram will be sent your respective reference data from us. Instagram is given the information that you have visited our website. If you are logged in parallel via an Instagram account at the time of visiting our website, Instagram receives further information, in such a way that pages you have visited on our website. Instagram collects this information, so theoretically there is the possibility to assign this information to your Instagram account. For further information on data protection, we refer to the following data protection guideline of Instagram: https://help.instagram.com/15583370700388 and https://www.instagram.com/about/legal/privacy/
14.3.2 Legal basis for data processing
Data processing is based on your consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
14.3.3 Purpose of data processing
We use social media to make our company better known. We would also like to offer you the opportunity to interact with social media via our website.
14.3.4 Duration of data storage
According to META, the data processed by plugins will be deleted after a period of 90 days. After 90 days, the data is anonymized so that they cannot be associated with them. As far as we know, this also applies to data processed by Instagram plug-ins.
14.3.5 The possibility of disposal by the data subject
You have the opportunity to revoke your consent to data processing at any time. Please contact our data protection officer for this. In order to prevent data processing by Instagram, you have the option of logging into Instagram before calling our website and deleting all cookies from your browser course. Further settings and contradictions for the use of data for advertising purposes are possible within the Instagram profile settings or via the US side or the EU page of Instagram. The settings are platform -independent, i.e. they are taken over for all devices such as Desktop computer or mobile devices.
14.4 Pinterest
14.4.1 Description and scope of data processing
We have integrated the services of the Pinterest social network on this website. You can recognize the Pinterest Plugin by the “PIN IT button” on our side. Together with us is responsible for data processing: Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA
If you click the Pinerest “PIN IT button” while you are logged into your Pinterest account, you can link the content of our pages to your Pinterest profile. This allows Pinterest to assign visiting our pages to your user account. We would like to point out that as providers of the pages we receive no knowledge of the content of the transmitted data and its use by Pinterest.
For more information on data protection, we refer to the Pinterest data directive below: https://policy.pinterest.com/de/privacy-policy
14.4.2 Legal basis for data processing
The legal basis for data processing is your granted consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
14.4.3 Purpose of data processing
We use social media to make our company better known. We would also like to offer you the opportunity to interact with social media via our website.
14.4.4 Duration of data storage
Pinterest bound the data processing that arises when using the "remark" button. That means as long as you have an account with Pinterest or pinterest the data for the purposes for which you have been raised
benthe data is saved. As soon as Pinterest no longer uses the data and no more legal or official retention periods are opposed to deletion, Pinterest according to its own statement deletes or dismisses.
14.4.5 The possibility of disposal by the data subject
You have the opportunity to revoke your consent to data processing at any time. Please contact our data protection officer for this. In order to prevent data processing by Pinterest, you have the option of logging out of Pinterest before calling our website. To do this, you have to log out of Pinterest's website and delete all cookies from your browser course. Further settings and contradictions for the use of data for advertising purposes are possible within the Pinterest profile settings or via the US side or the EU page of Pinterest. The settings are platform -independent, i.e. they are taken over for all devices such as Desktop computer or mobile devices.
14.5 Vimeo Video
14.5.1 Description and scope of data processing
We use the provider Vimeo for the integration of videos. Is responsible for data processing together with us: Vimeo Inc 330 West 34th Street, 10th Floor, New York, New York 10001, USA.
We use plugins from the provider Vimeo on some of our websites. If you call up the website with such a plugin-for example our media library-a connection to the Vimeo servers is established and the plugin is shown. This transmits to the Vimeo server which we have visited our website. If you are logged in at Vimeo, Vimeo assigns this information to your personal user account. When using the plugin, such as clicking the start button of a video, this information is also assigned to your user account. For further information on data protection, we refer to the following Vimeo data directive: https://vimeo.com/privacy
14.5.2 Legal basis for data processing
The legal basis for data processing is your consent, in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
14.5.3 Purpose of data processing
We use social media to make our company better known. We would also like to offer you the opportunity to interact with social media via our website. Vimeo would also like to open you the opportunity to stream videos.
14.5.4 Duration of data storage
According to its own statement, Vimeo only stores her personal data as long as you have an account at Vimeo. If you have no account there, the data is only saved in anonymous form, so that the GDPR does not apply to this data.
14.5.5 The possibility of disposal by the data subject
You have the opportunity to revoke your consent to data processing at any time. Please contact our data protection officer for this. In order to prevent data processing by Vimeo, you have the option of logging out of Vimeo before calling our website and deleting all cookies from your browser course. Further settings and contradictions for the use of data for advertising purposes are possible within the Vimeo profile settings or via the US side or the EU page of Vimeo. The settings are platform -independent, i.e. they are taken over for all devices such as Desktop computer or mobile devices.
15. Tracker and analysis tools
We use the following analysis tools to improve our website. In the following:
15.1 Facebook Custom Audience / Facebook pixel
15.1.1 Description and scope of data processing
Our website uses the visitor campaign pixel from Meta ("Facebook pixel") for conversion measurement. Data processing is carried out by: Meta Platforms Ireland Limited, 1 Hacker Way, Menlo Park, CA 94025, USA.
With the help of the Facebook pixel, the behavior of the side visitors can be tracked after they visit our website. This enables the effectiveness of the meta-advertisements for statistical and market research purposes and future advertising measures can be optimized. Meta receives the following categories of data: The forwarding URL, browser information and the person's Facebook user ID if it has a Facebook account and is logged into Facebook.
The data is saved and processed by META, so that a connection to the respective user profile is possible and META can use the data for your own advertising purposes, according to the meta data usage guideline. This enables META to switch advertisements on the META side and outside of meta. This use of the data cannot be influenced by us as a site operator.
The data we have received: email address, gender, first and last name, postcode, city and country. We use these for our advertising purposes. We can use it to make a personal reference.
Under https://www.facebook.com/about/privacy/ Find META's data protection information.
15.1.2 Legal basis for data processing
The legal basis for the use of the application is your consent, in accordance with Art. 6 Para. 1 S. 1 lit. a) GDPR.
15.1.3 Purpose of data processing
We process your data for the purposes of the needs -based and continuous optimization of our website. This also results in our legitimate interest in data processing.
15.1.4 Duration of data storage
The data will be deleted as soon as you no longer benand no legal, official or contractual regulation of a deletion.
15.1.5 The possibility of disposal by the data subject
You have the opportunity to revoke your consent to data processing at any time. Please contact our data protection officer for this. You can use the remarketing function “Custom Audiences” in the area of settings for advertisements under https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen Deactivate if you have a Facebook account. If you do not have a Facebook account, you can deactivate Meta usage -based advertising on the European Interactive Digital Advertising Alliance website: http://www.youronlinechoices.com/de/praferenzmanagement/
15.2 Google Analytics 4.0
15.2.1 Description and scope of data processing
Our website uses Google Analytics 4.0. This is a service to analyze access to Google LLC websites. ("Google") and enables us to improve our website. Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The information raised is sometimes:
- IP address
- Access time
- Access duration
- From which website you came to our website
- Interaction on the website
- Demographic features, provided that the website visitor is logged into his Google account account
- Device categories, browser type, operating system, screen resolution
And are transferred to a Google server in the USA and stored there. The evaluation of your activities on our website will be sent to us in the form of reports. Google may pass on the information collected to third parties if this is required by law or if third parties process this data on behalf of Google. The IP-anonymization is carried out by Google by default and cannot be deactivated, so IP addresses are only processed shortened in order to exclude possible direct person liability with them if necessary. Underhttps://www.google.de/intl/de/policies/, https://support.google.com/analytics/answer/6004245?hl=de&ref_topic=2919631#zippy=%2Ccookies-und-kennzeichnungen-von-google-analytics, as well as under https://support.google.com/analytics/answer/9019185?hl=de#zippy=%2Cthemen-in-diesem-artikel Find more information on the terms of use and data protection from Google Analytics.
15.2.2 Legal basis for data processing
The legal basis for the processing of personal data is your consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
15.2.3 Purpose of data processing
The processing of your personal data enables us to analyze your surfing behavior. We are able to compile information about the use of the individual components of our website by evaluating the data obtained. This helps us to constantly improve our website and its user -friendliness. By anonymizing the IP address, the interests of the users are sufficiently taken into account in their protection of personal data.
15.2.4 Duration of data storage
The data will be deleted 14 months after your last visit on our website.
15.2.5 The possibility of disposal by the data subject
You have the option of revoking consent to data processing at any time. For this, please contact our data protection officer. You can also prevent the installation of Google Analytics's cookies by setting your browser software yourself. In this case, however, it can happen that you cannot use all functions of our website. Also through browser extensions e.g. http://tools.google.com/dlpage/gaoptout?hl=de Google Analytics can be deactivated and controlled.
15.3Google Analytics 4 - User IDS
15.3.1 Description and scope of data processing
As an extension of Google Analytics 4, the function can "User IDS" are used. By awarding individual users IDS, cross-device usage analyzes (so-called "cross-device tracking") can be carried out.
The prerequisite is that you:
- have created a personal user account on our website,
- Register with your access data on several devices and
- have given us their consent to the use of Google Analytics in accordance with Art. 6 Para. 1 lit. a) GDPR.
In this way, it can be analyzed on which device an display was clicked first and on which device the conversion was then carried out.
15.3.2 Legal basis for data processing
Your data is processed as part of the user ID function exclusively on the basis of your express consent in accordance with Art. 6 Para. 1 lit. a) GDPR.
15.3.3 Purpose of data processing
The purpose is to carry out interdisciplinary evaluations of user behavior to improve our online offer, in particular to analyze the customer journey over various end devices.
15.3.4 Duration of data storage
The memory duration depends on the storage periods defined in Google Analytics. Personal data is not stored permanently, but automatically anonymized or deleted as part of the Google guidelines. For more information, see Google's data protection guidelines.
15.3.5 The possibility of disposal by the data subject
You can cancel your consent at any time with effect for the future via the cookie settings on our website or through appropriate browser settings.
15.4 Google Tag Manager
15.4.1 Description and scope of data processing
Google Tag Manager is a solution with which we can manage so-called website tags via a surface (and thus integrate Google marketing services into our online offer). The Tag Manager serves as "administrator" of the implemented tags. This enables us to manage co-integrated Google products or other analysis tools on our website. The tags integrated on the website are referred to as code sections that make it possible to track your activities on our website. By using our website, the Google Tag Manager is downloaded, which automatically means that the IP address of the user is forwarded to Google. With regard to the processing of personal data, reference is made to the information on Google services. Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google Tag Manager usage guidelines can be called up here: https://www.google.com/intl/de/tagmanager/use-policy.html
15.4.2 Legal basis for data processing
The legal basis for the processing of personal data is your consent in accordance with Art. 6 Para. 1 S. 1 lit. a) GDPR.
15.4.3 Purpose of data processing
The Google Tag Manger simplifies the administration and organization of the analysis tools used for the website. In order to integrate an analysis tool, JavaScript codes must be integrated into the website. With the use of Google Tag Manger, it is possible for us to manage these integrated codes from one place.
15.4.4 Duration of data storage
Since data storage is not carried out directly by the Google Tag Manager, but the data is forwarded to the tracking tools, the individual integrated tracking tools must be checked for how long the data is saved.
15.4.5 The possibility of disposal by the data subject
You have the option of revoking consent to data processing with effect for the future at any time. To do this, you would have to contact the tools' data protection officers. You can find more information regarding the management of your data from the data protection declarations of the tools used.
15.5 Matomo
15.5.1 Description and scope of data processing
We use the web analysis service Matomo (formerly Piwik). Data processing is carried out by: Innocraft Ltd., 150 Willis St, 6011 Wellington, New Zealand.
Matomo sits in New Zealand, a third country with a reasonable level of protection certified by the EU Commission in accordance with Art 45 Para. 3 GDPR, https://eur-lex.europa.eu/legal-content/EN/ALL/?uri=CELEX%3A32013D0065
Matomo sets a cookie. To explain the cookies, reference is made to the corresponding passage above. The following data is saved:
- Two bytes of the IP address of the calling system
- The accessed website
- The website from which you have reached the accessed website (referrer)
- The underside called from the accessed website
- The length of stay on the website
- The frequency of calls to the website
The software is set so that the IP addresses are not fully saved, but 2 bytes of the IP address are masked (e.g. 192.168.xxx.xxx). In this way, an assignment of the shortened IP address to the calling computer is no longer possible. For further information on the data protection regulations of Matomo, we refer to the links below: https://matomo.org/privacy/ and https://matomo.org/privacy-policy/
15.5.2 Legal basis for data processing
The legal basis for data processing is your consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
15.5.3 Purpose of data processing
The web analysis service Matomo is mainly used to optimize the website and for cost-benefit analysis. Matomo is still used to enable an analysis of the user visitor flow on the website. It is in our interest to make our website available to you clearly and user-friendly.
15.5.4 Duration of data storage
We only process personal data as long as it is necessary. As soon as the purpose of data processing is met, according to the scaleben the local deletion concept is blocked and deleted, unless the legal, official or contractual provisions of a deletion are opposed.
15.5.5 The possibility of disposal by the data subject
You have the opportunity to revoke your consent to data processing at any time. Please contact our data protection officer. The setting of cookies can also be prevented at any time by setting your internet browser. The cookies already set can also be deleted in the settings of the Internet browser for the future. We indicate that the prevention of the setting of cookies can result in not all functions are available fully available. If you have any questions about data protection on Matomo, you can contact Matomo under the following email address: privacy@matomo.org
15.6Google Signals
15.6.1 Description and scope of data processing
We have activated Google signals in Google Analytics. Google signals are session data from websites and apps that link the search engine with users who are registered in their Google account and have allowed personalized advertising. This makes it possible for us to pursue the behavior of our potential customers across various devices through anonymized reports. Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Cookies enables us to analyze your use of our website. The information collected by means of a cookies are:
- IP address,
- Access time,
- Access duration
The Google Analytics also includes further visitor data such as
Location, search history, YouTube history and data about your actions on our website.
You can find more information about Google Signals here: https://support.google.com/analytics/answer/7532985?sjid=7869781100783674585-EU#next&zippy=%2Cthemen-in-diesem-artikel
15.6.2 Legal basis for data processing
The legal basis for the processing of personal data by Google Signals is your consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
15.6.3 Purpose of data processing
The processing of your personal data by Google Signals enables us to analyze your surfing behavior across devices. The reports created in this way help us to better assess their behavior, their wishes and interests. This allows us to constantly improve and optimize our offer for you.
15.6.4 Duration of data storage
The data is deleted by default 26 months after your last visit on our website.
15.6.5 The possibility of disposal by the data subject
You have the option of revoking consent to data processing with effect for the future at any time. You can prevent the installation of Google Analytics cookies and thus Google Signals by setting your software browser. In this case, however, it can happen that you cannot use all functions of our website. Also through browser extensions e.g. http://tools.google.com/dlpage/gaoptout?hl=de can Google Analytics and thus Google Signals can be deactivated and checked.
You can also prohibit personalized advertising in your Google Account. In these cases, data processing by Google Signals is no longer possible.
16. Advertising and marketing tools
Tools are also integrated on our website that ensure that our website is displayed as a relevant search result or as advertising when searching for an Internet. In the following, the programs used in connection with our website broke up for you:
16.1 Google ad Manager (formerly double click)
16.1.1 Description and scope of data processing
Our website uses Google Ad Manager. Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google ad Manager is used to switch advertisements when you visit our website. Google ad Manager uses information about your visits to this and other websites so that advertisements can be switched on products and services that interest you. If you want to learn more about these methods or want to know what options you have so that this information cannot be used by Google Ad Manager, click here: https://www.google.de/policies/technologies/ads/.
16.1.2 Legal basis for data processing
Data processing is based on your consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
16.1.3 Purpose of data processing
Our interest is to collect cooperation with other companies in order to participate economically.
16.1.4 Duration of data storage
The data will be deleted as soon as you no longer benand no legal, official or contractual regulation of a deletion.
16.1.5 The possibility of disposal by the person concerned
You have the opportunity to revoke your consent to data processing at any time. Please contact our data protection officer for this.
The setting of cookies can be prevented at any time by setting your internet browser. The cookies already set can also be deleted in the settings of the Internet browser. We indicate that the prevention of the setting of cookies can result in not all functions are available fully available.
16.2 Google Ads and Google Conversion Tracking
16.2.1 Description and scope of data processing
We have integrated the services of Google Ads (formerly Google AdWords) on this website. Google Ads is a service for internet advertising. Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
If you have reached our website through a Google display, Google sets a so-called conversion cookie on your system. Regarding the explanations of the cookies, reference is made to the passage for the cookies. The conversion cookie is used to create and analyze visiting statistics. The conversion cookie saves the IP address when visiting the website. This data is saved in the USA. It is possible that Google will also pass this data on to third parties. Regarding Google's further data protection instructions, reference is made to:https://www.google.de/intl/de/policies/privacy/
16.2.2 Legal basis for data processing
The legal basis for data processing is your consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
16.2.3 Purpose of data processing
We use Google Ads to be able to place our company's advertising in the search engine results of Google.
16.2.4 Duration of data storage
30 days after setting the conversion cookies, the cookie loses its validity. This means that they can no longer be identified. Due to the conversion cookies, both we and Google can understand which sub-pages have been called up within these 30 days.
16.2.5 The possibility of disposal by the data subject
You have the opportunity to revoke your consent to data processing at any time. Please contact our data protection officer for this.
The setting of cookies can be prevented at any time by setting your internet browser. The cookies already set can also be deleted in the settings of the Internet browser. We indicate that the prevention of the setting of cookies can result in not all functions are available fully available.
You can use this link http://www.google.com/settings/ads/plugin Standing the data processing in your browser permanently. As a result, it is possible that functions of our website will no longer be fully available.
In the browser settings, it is also possible to object to the cookies for conversation tracking and thus user-related advertising by Google. For this, please click on the following link: www.google.de/settings/ads. We would like to point out that a new setting is necessary when you delete the cookies in your browser.
16.3 Google Adsense
16.3.1 Description and scope of data processing
We use Google Adsense on the website. This is an online service that is used for advertising purposes. Google Adsense enables the mediation of advertising on third -party websites. Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
With the use of Google Adsense, a cookie is set for the person concerned. Regarding the information about the cookies, reference is made to the passage for the cookies. The information stored in the cookie can be recorded, collected and evaluated by Google Inc. or third parties. In addition, Google Adsense also uses so -called "webbacons" (small invisible graphics) for the collection of information, through the use of which simple actions such as visitor traffic can be recorded, collected and evaluated.
The information generated by the cookie and/or webbeacon about your use of this website is transferred to a Google server in the USA and stored there. Google uses the information obtained in this way to evaluate your usage behavior with regard to the AdSense ads. Google will also transfer this information to third parties if this is required by law or if third parties process this data on behalf of Google. Your IP address is not associated with other data stored by Google. Regarding further information about Google Adsense, reference is made to the link below: https://www.google.de/intl/de/adsense/start/
16.3.2 Legal basis for data processing
The legal basis for data processing is your consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
16.3.3 Purpose of data processing
Our interest lies in the improvement of our awareness by enabling user -specific advertisements. We open up a larger user and interested party by advertising. We also increase our level of awareness.
16.3.4 Duration of data storage
The data will be deleted as soon as you no longer bento be agreed and do not conflict with official, legal or contractual regulations of deletion.
16.3.5 The possibility of disposal by the data subject
You have the opportunity to revoke your consent to data processing at any time. Please contact our data protection officer for this. The setting of cookies and displaying webbeacons can be prevented at any time by appropriate settings in your internet browser. The cookies already set can also be deleted in the settings of the Internet browser. We indicate that the prevention of the setting of cookies can result in not all functions are available fully available.
16.4 Google remarketing
16.4.1 Description and scope of data processing
Our website uses Google Remarketing. With the use and use of Google Remarketing, it is possible for us to show you advertising. This is also possible when visiting other websites if you have been registered on our website beforehand. Google remarketing ultimately enables user -related advertising. Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google remarketing works in such a way that a cookie is set. With this cookie insert, Google has the option of recognizing you again, provided you call up a website that also uses Google remarketing. As a result, Google can understand its IP address and surfing behavior. For further information on the applicable data protection regulations of Google, we refer to: https://www.google.de/intl/de/policies/privacy/
16.4.2 Legal basis for data processing
Data processing is based on your consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR.
16.4.3 Purpose of data processing
Our interest is the increase in our awareness through the use of advertising. The purpose of processing is to enable user -specific advertisements. We open up a larger user and interested party by advertising. We also increase our level of awareness.
16.4.4 Duration of data storage
The data will be deleted as soon as you no longer benand no official, legal or contractual provisions of a deletion.
16.4.5 The possibility of disposal by the data subject
You have the opportunity to revoke your consent to data processing at any time. Please contact our data protection officer for this.
The setting of cookies can be prevented at any time by setting your internet browser. The cookies already set can also be deleted in the settings of the Internet browser. We indicate that the prevention of the setting of cookies can result in not all functions are available fully available.
You can object to user -related advertising by Google at any time. To do this, we refer to: www.google.de/settings/ads.
16.5 Tikkok pixel
16.5.1 Description and scope of data processing
We use Tikkok pixels for marketing purposes and have also integrated the service for this on our website. TIKTOK Pixel is a tracking plugin that provides us with the performance of our ads that help us measure the effectiveness of our advertising campaigns. Data processing is carried out by: TikK Inc., 5800 Bristol Pkwy, Suite 100, Culver City, CA 90230, USA.
To do this, Tiktok processes the following data:
- Technical data: Device and network connection data (your device model, your operating system, keyboard stop patterns or rhythms, your IP address and your system language)
- Service -related, diagnostic and performance data, including crash reports and performance protocols
- Automatically generated device ID and user ID
- Usage data: You are viewed by content, useful life and frequency, interactions with other users, search history on the platform and your settings, information in connection with the interaction of the end user with digital properties, including the advertising displayed in conjunction with the services
- Performance metrics and metrics on advertisements
Based on this data, merged reports are created and made available to us, which relate to how to interact with ads on our website.
Further information on data protection at the service provider can be found at: https://www.tiktok.com/legal/page/eea/privacy-policy/de
16.5.2 Legal basis for data processing
Data processing is based on your consent in accordance with Art. 6 Para. 1 S. 1 lit. a) GDPR.
16.5.3 Purpose of data processing
The service helps us to better understand your interacting on our website and to be able to play out advertising in a targeted manner.
16.5.4 Duration of data storage
The data will be deleted as soon as the purpose of data processing has been achieved and there are no legal, contractual or official regulations of a deletion. All target groups defined by the data used by event data are kept by Tikok until they delete them via their account tools or 12 months from the date on which this target group was last changed or used. Advertising public data will be deleted immediately after completing the comparison.
16.5.5 The possibility of disposal by the data subject
You have the opportunity to revoke consent at any time. For this, please contact our data protection officer. You can also contact Tikok Inc. directly. Please use this form: https://www.tiktok.com/legal/report/privacy
16.6 Microsoft Advertising
16.6.1 Description and scope of data processing
This website uses retargeting technology of the following provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.
This technology enables us to specifically address visitors to our website, which have already been interested in our shop or our products, with later visits to other websites with personalized, interest -based advertisements.
The advertisement display is based on a cookie -based analysis of the previous usage behavior. No personal data is stored. Instead, a cookie is placed on your end device, which collects pseudonymized information about your interests in order to individually match the advertising displayed.
16.6.2 Legal basis for data processing
Data processing will only take place if you have given us your express consent in accordance with Art. 6 Para. 1 lit. a) GDPR.
16.6.3 Purpose of data processing
The aim is to show you to your interests and to increase the relevance of our advertising campaigns.
16.6.4 Duration of data storage
The cookies set are stored on your end device for a certain period of time, unless you delete them manually or revoke your consent. Further information on the specific memory can be found in the data protection declaration of Microsoft.
16.6.5 The possibility of disposal by the data subject
You can revoke your consent at any time with effect for the future. To do this, use the cookie consent tool on our website to deactivate Microsoft Advertising. Alternatively, you can also delete or block cookies directly via your browser settings.
16.7 Microsoft Advertising Universal Event Tracking
16.7.1 Description and scope of data processing
This website uses the conversion tracking technology Universal Event Tracking (UET) of the following provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.
If you get to our website via a Microsoft display, certain user campaigns can be recorded on our website with the help of cookies and/or comparable technologies such as tracking pixels, web beacons, pings or HTTP inquiries.
Among other things, information about the end device used, browser, your IP address is collected. In this way, certain actions defined by us can be measured and evaluated and evaluated. This enables us to analyze the effectiveness of our advertising measures and to optimize our online offer.
16.7.2 Legal basis for data processing
The processing takes place exclusively on the basis of your express consent in accordance with Art. 6 Para. 1 lit. a) GDPR.
16.7.3 Purpose of data processing
The purpose of processing is the statistical evaluation of the user behavior after clicking on a Microsoft advertisement, in particular to optimize advertising campaigns and to improve the user experience on our website.
16.7.4 Duration of data storage
The cookies set by UET or information recorded are only stored as long as is necessary for the evaluation, or until you revoke your consent. You can find details about the specific storage period in the data protection declaration of Microsoft.
16.7.5 The possibility of disposal by the data subject
You can revoke your consent at any time with effect for the future by using the cookie consent tool on our website and deactivating the option for Microsoft Advertising. Alternatively, you can also block or delete tracking cookies in the settings of your browser.
17. Other tools from third -party providers
We also use third -party providers who help us to show the side and the functionality of the website. These are listed below:
17.1 Google Web Fonts
17.1.1 Description and scope of data processing
We use so -called web fonts on the website for the uniform representation of fonts. Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
When calling a page, your browser loads the benostigured web fonts in their browser cache to correctly display texts and fonts. For this purpose, the browser you use connection to the Google servers must. This gives Google knowledge that our website has been called up via your IP address. If your browser Web Fonts does not support, a standard font is used by your computer.
More information about Google Web Fonts can be found at https://developers.google.com/fonts/faqand in the data protection declaration of Google: https://www.google.com/policies/privacy/.
17.1.2 Legal basis for data processing
The legal basis is based on Art. 6 Para. 1 S. 1 lit. a) GDPR.
17.1.3 Purpose of data processing
The purpose of data processing is the uniform representation of fonts on this website. Otherwise we could not show you our online offer effectively.
17.1.4 Duration of data storage
The data will be deleted as soon as it is no longer possible for the purpose of data processing benare to be said unless the legal, official or contractual provisions of a deletion.
17.1.5 The possibility of disposal by the data subject
You can revoke your consent at any time via our Consent Banner. You can set your browser so that the fonts are not loaded by the Google servers. If your Google Fonts browser does not support or you prevent access to the Google servers, the text is displayed in the standard font of the system.
17.2 Myfonts
17.2.1 Description and scope of data processing
We use so -called web fonts on the website for the uniform representation of fonts. In this case we use the services of "MyFONTS", operated by the Monotype Imaging Holdings Inc., 600 Unicorn Park Drive
Woburn, MA 01801, USA. Page-view tracking data are charged when using myfonts due to the license conditions. The number of page views is counted for statistical purposes and transmitted to myfonts. Data such as the IP address and technical information on the end device of website visitors can be recorded. This data enables myfonts to monitor the use of the licensed fonts and ensure compliance with the license conditions.
17.2.2 Legal basis for data processing
The legal basis is based on your consent in accordance with Art. 6 Para. 1 S. 1 lit. a) GDPR.
17.2.3 Purpose of data processing
The purpose of data processing is the uniform representation of fonts on this website in order to be able to offer a visually interesting and at the same time user -friendly website.
17.2.4 Duration of data storage
Monotype does not save the IP address after the count.
17.2.5 The possibility of disposal by the data subject
You can revoke your consent at any time via our Consent Banner. You can set your browser so that the fonts are not loaded by the monotype servers. If your browser monotype fonts does not support or you prevent access to the monotype servers, the text is displayed in the standard font of the system.
Website visitors have the right to obtain information about the processing of your personal data and can request the correction or deletion of your data under certain conditions. Inquiries can be addressed directly to MyFONTS or the Monotype Imaging Holdings Inc. For more detailed information, it is advisable to view the full data protection declaration of MyFONTS: https://www.myfonts.com/de/a/font/legal/website-use-privacy-policy
17.3 Cloudflare
17.3.1 Description and scope of data processing
On our website we use the services of Cloudflare to ensure safe and error -free use of our website. Cloudflare acts as CDN ("Content Delivery Network") and contributes to the safety of this website and to optimize loading times. For this purpose, Cloudflare generates protocol data, such as the number of page views. By collecting this data, Cloudflare searches for attack patterns, the analysis of which serves to protect the website. This analysis usually takes place within a few minutes, so that the website security guidelines can be adjusted immediately.
Service provider: Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA.
Further information on data protection at Cloudflare can be found at: https://www.cloudflare.com/privacypolicy/?utm_referrer=https://www.google.de/
17.3.2 Legal basis for data processing
Data processing takes place on the basis of Art. 6 Para. 1 S. 1 lit. f) GDPR. Our legitimate interest lies in the secure provision of our website. By using Cloudflare, we also preserve the principle of integrity and confidentiality of your data within the meaning of Art. 5 Para. 1 Lit. f) GDPR.
17.3.3 Purpose of data processing
The purpose of data processing corresponds to our legitimate interest in the confidentiality and integrity of data processing as well as the unrestricted functionality of our website.
17.3.4 Duration of data storage
According to its own statements, Cloudflare usually deletes the raw data after four hours, but at the latest after three days, provided that there are no legal provisions of deletion.
17.3.5 The possibility of disposal by the data subject
You can prevent the processing of your data by Cloudflare by deactivating the execution of scripts in your browser or installing a script blocker.
17.4 Reviews.io
17.4.1 Description and scope of data processing
We use the services of reviews.io 2020 GmbH, Skalitzer Str. 104, 10997 Berlin to send evaluations after a purchase. For this purpose we transmit the following data:
- E-mail address
- name
- product
- Order number
Reviews.io uses this information exclusively for a one-time request to submit a product or service evaluation. There is no transfer or use for other purposes.
Further information on data protection at reviews.io can be found at: https://www.reviews.io/front/user-privacy-policy.
17.4.2 Legal basis for data processing
Data processing takes place on the basis of your consent in accordance with Art. 6 Para. 1 S. 1 lit. a) GDPR. The delivery of the consent is voluntary and can be revoked at any time with effect for the future.
17.4.3 Purpose of data processing
Our goal is to enable authentic customer reviews that contribute to the continuous improvement of our offer and to form the trust in potential new customers.
17.4.4 Duration of data storage
The data we transmit are only saved by Reviews.io as long as is necessary to carry out the evaluation reminder and do not conflict with legal retention obligations.
17.4.5 The possibility of disposal by the data subject
You can revoke your consent to contact us for evaluation purposes at any time by email to us or via a deregistration link in the assessment invitation. After the revocation there is no further contact through reviews.io.
17.5 Google Maps
17.5.1 Description and scope of data processing
This website uses the Google Maps product from Google LLC. Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
When calling a page, your browser loads the benotigated geo-information in your browser cache to correctly display the card. For this purpose, the browser you use connection to the Google servers must. This gives Google knowledge that our website has been accessed via your IP address and which card was displayed. The terms of use of Google Maps can be found at https://www.google.com/intl/de_de/help/terms_maps.html
17.5.2 Legal basis for data processing
The legal basis is your consent in accordance with Art. 6 Para. 1 S. 1 lit. a) GDPR.
17.5.3 Purpose of data processing
The use of Google Maps makes it easier for you to find our location and to interact with it in different ways, e.g. through route planning.
17.5.4 Duration of data storage
The data will be deleted as soon as it is no longer possible for the purpose of data processing benare to be said unless the legal, official or contractual provisions of a deletion.
17.5.5 The possibility of disposal by the data subject
You have the option of revoking consent to data processing at any time. To do this, please contact our data protection officer.
If you want to do without the use of Google Maps, parts of our website cannot be used.
17.6 Microsoft Power BI
17.6.1 Description and scope of data processing
We use the Microsoft Power BI service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA for the internal visualization of business processes and for the implementation of custom analyzes.
Personal customer data can be processed as part of these analyzes. The presentation takes place exclusively for internal evaluation of operational processes (sales statistics, user behavior, support inquiries).
In these cases, Microsoft works as part of order processing in accordance with Art. 28 GDPR. The processing takes place exclusively according to our instructions.
17.6.2 Legal basis for data processing
The legal basis for the processing of personal data in connection with Power BI is our legitimate interest in accordance with Art. 6 Para. 1 Lit. f) GDPR in the internal control and optimization of our business processes. If necessary, it can also be applied to Art. 6 Para. 1 lit. b) GDPR (contract implementation).
17.6.3 Purpose of data processing
The purpose of data processing is the visualization and evaluation of business -related data for internal process optimization, controlling and decision support.
17.6.4 Duration of data storage
The memory duration depends on the underlying internal processing purposes and statutory retention periods. There is no further storage.
17.6.5 The possibility of disposal by the data subject
You have the option of contradicting the processing of your personal data in accordance with the legal requirements or to revoke consent with effect for the future. This can be done in particular via the opt-out mechanisms provided in the context of the respective processing or by notification to the responsible body mentioned in the data protection declaration.
We run the following our own appearances on social media:
- Facebook:https://de-de.facebook.com/gusti.leder/
- Instagram:https://www.instagram.com/gustileder/
- LinkedIn: https://de.linkedin.com/company/gusti-leder-stores-gmbh
- Pinterest:https://de.pinterest.com/gustileder/
- Xing: https://www.xing.com/pages/gustiledergmbh
- YouTube: https://www.youtube.com/user/newgustileder
- X: https://x.com/gusti_leder
Here we use the services of
- Meta Platforms Inc., 1 Hacker Way, Menlo Park, CA 94025, USA or Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland (“Facebook”)
- Meta Platforms Inc., 1 Hacker Way, Menlo Park, CA 94025, USA or Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland (“Instagram”)
- Linkedin Ireland, Wilton Plaza, Wilton Place, Dublin 2, Ireland or LinkedIn Corporation, 1000 W. Maude Ave., Sunnyvale, California 94085, USA (“LinkedIn”)
- Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA (“Pinterest”)
- Xing SE, Dammtorstraße 30, 20354 Hamburg, Germany ("XING")
- YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA (“YouTube”) represented by: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, data processing within the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”)
- X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA (“X”)
back.
On the basis of the judgment of the European Court of Justice of June 5, 2018 (available at http://curia.europa.eu/juris/document/document.jsf?text=&docid=202543&pageIndex=0&doclang=DE&mode=req&dir=&occ=first&part=1&cid=298398 ) apply to appearances on social media and the operators of social media themselves as those responsible for data processing.
We would like to point out that you use our appearances on social media and their functions on your own responsibility. This applies in particular to the use of interactive functions (e.g. comment, share, evaluate, evaluate). Alternatively, you can also access the information that we provide on social media on our own internet offer.
18.1 Data protection officer
The data protection officers of the respective social media can be reached via the respective social media.
The data protection officer of Facebook and Instagram Reach the following, linked contact form: https://www.facebook.com/help/contact/540977946302970
The data protection officer of LinkedIn Reach the following, linked contact form: https://www.linkedin.com/help/linkedin/ask/TSO-DPO
The data protection officer of Pinterest Reach the following, linked contact form: https://help.pinterest.com/de/data-protection-officer-contact-form
The data protection officer of Xing Use the following email address: Datenschutzbeauftragter@xing.com
The data protection officer of Google and YouTube Reach the following, linked contact form: https://support.google.com/policies/contact/general_privacy_form?sjid=10990068199381290885-EU
The data protection officer of X Reach the following, linked contact form: https://help.x.com/de/forms/privacy
18.2 Data processed by social media
When visiting our appearances on social media, the operators of social media record their IP address, among other things, and other information that is available on your PC in the form of cookies. This information is used to provide us with statistical information about the use of the page as the operator of the appearance. The data collected in this context will be processed by social media operators and, if necessary, transferred to countries outside the European Union. Which information the operator of the respective social network receives and how it is used is described in the data protection declarations of the respective social networks. There you will also find information about the contact options.
You can find more information on this at the following links:
- Facebook: https://de-de.facebook.com/help/pages/insights
https://de-de.facebook.com/about/privacy
https://de-de.facebook.com/full_data_use_policy - Google and YouTube:https://www.google.de/intl/de/policies/privacy/
- Instagram:https://help.instagram.com/155833707900388
https://www.instagram.com/about/legal/privacy/ - LinkedIn: https://www.linkedin.com/legal/privacy-policy
- Medium: https://policy.medium.com/medium-privacy-policy-f03bf92035c9
- Pinterest:https://policy.pinterest.com/de/privacy-policy
- Xing:https://www.xing.com/privacy
https://www.xing.com/app/share?op=data_protection - X:https://x.com/de/privacy
In what way the operators of social media use data from visiting our appearance on social media for their own purposes, to what extent activities on the appearances in social media are assigned to individual users, how long the operators store this data and whether data is passed on to third parties from a visit to social media, the operators of social media are not concluded and is not known to us.
When accessing our appearances on social media, the IP address assigned to your end device will be sent to the operator of the respective social network. The social networks also store information about the end devices of the users (e.g. as part of the "Registration" function; If necessary, the operators of social media are therefore able to assign IP addresses to individual users.
If you are currently registered with the respective social network as a user, there is a cookie on your end device with your individual identification in this social network. This enables the operator of the social network to understand that you visited a certain page and how you used it. Based on this data, content or advertising can be tailored to your previous website visits.
If you want to avoid this, you should unsubscribe from the respective social network or deactivate the "Stay logged in" function, delete the cookies available on your device and end your browser and restart. In this way, registration information that you can identify directly will be deleted. This allows you to use our appearances on social media without revealing your user recognition. If you access interactive functions of the page (I like, comment, share, share, news, etc.), a registration mask appears. After any registration, you can be recognized again as a specific user for the social network used.
Information on how to manage or delete existing information within the social network can be found on the above-mentioned support pages of the respective social network.
18.3 Data processed by us
18.3.1 Type and scope of data processing
The data you have entered in social networks, in particular your username and the content published under your account, will be processed by us insofar as we may react to your messages. In addition, your published contributions, reviews and comments refer to your account in the respective social network. If you mention us via an @ or a # or the like, this mention will be published on our website under your user name. The data you have released freely in the respective social network will therefore be included in our offer by us and made accessible to other users of the respective social network. If you mark our appearance on social media with "like" or "consequences" or a similar interaction, this will be communicated by the respective social network with your user name and link to your account.
18.3.2 Legal basis of processing
The data processing from our website is based on Art. 6 Para. 1 S. 1 lit. f) GDPR. Our legitimate interest results from the advertising function of social media. We use them to increase the level of awareness of our company.
18.3.3 Purpose of processing
The data (e.g. user name, images, images, interests, contact details), which may be accessible to us in this context, will only be processed by us exclusively for the purpose of customer and prospective customers. Our legitimate interest is to offer you a platform on which we show you current information and with the help of which you can address your request to us and we can meet your request as soon as possible.
18.3.4 Duration of storage
As far as possible, your data will be deleted when our appearance is set on social media.
19. Data transfer to a third country
So that we can provide our services, we use the support of service providers from the European area as well as from third countries. In order to ensure the protection of your personal data in the event of data transmission to a third country, we conclude special order processing contracts with each of the carefully selected service providers. All service providers used have sufficient evidence that you ensure data security via suitable technical and organizational measures. Our service providers from third countries are either in countries that have a reasonable level of data protection recognized by the EU Commission (Art. 45 GDPR) or have provided suitable guarantees (Art. 46 GDPR).
Appropriate level of protection: The provider comes from a country whose appropriate data protection level was recognized by the EU Commission. You can find more information at: ADEQUAY DECISIONS (Europa.eu)
EU standard contract clauses: Our provider has submitted to the EU standard contract clauses to ensure a secure data transfer. You can find more information on this at: https://eur-lex.europa.eu/eli/Dec_IMPL/2021/914/OJ? Uri = Celex%3A32021D0914 & Locale = EN
BINDING CORPORATE RULES: With Art. 47, the GDPR provides the possibility of ensuring data protection during data transfer into a third -country country via binding internal data protection regulations. These are checked and removed by the responsible supervisory authorities as part of the coherence procedure according to Art. 63 GDPR.
Consent: In addition, a data transfer to a third country without an appropriate level of protection only takes place if it has given us your consent in accordance with Art. 49 Para. 1 lit. a) GDPR or another exception in accordance with Art. 49 GDPR for data transmission.
20. Your rights
You have the following rights towards us regarding the personal data relating to you:
20.1 Right to revoke the consent (see Art. 7 GDPR)
If you have given your consent to the processing of your data, you can revoke it at any time. Such a revocation influences the admissibility of the processing of your personal data for the future after you have spoken to us. It can be (distant) verbally or in writing by post or email to us.
20.2 Right to information (see Art. 15 GDPR)
In the event of a search for information, you must provide sufficient information about your identity and provide evidence that it is your information. The information concerns the following information:
- the purposes for which the personal data is processed;
- the categories of personal data that are processed;
- the recipients or the categories of recipients, compared to the personal data relating to them have been disclosed or are still disclosed;
- the planned duration of the storage of the personal data relating to you or, if specific information is not possible, criteria for determining the storage period;
- the existence of a right to correct or delete the personal data relating to it, a right to restrict the processing by the person responsible or a right to object against this processing;
- the existence of a right to complain to a supervisory authority;
- all available information about the origin of the data if the personal data is not collected from the data subject;
- The existence of automated decision -making including profiling in accordance with Art. 22 Para. 1 and 4 GDPR and - at least in these cases - meaningful information about the logic involved as well as the scope and the desired effects of such a processing for the person concerned.
20.3 Right to correction or deletion (see Art. 16, 17 GDPR)
You have the right to correction and/or completion towards us as a responsible one, provided that the processed personal data that you affect are incorrect or incomplete. The person responsible has to make the correction immediately.
You can also request the deletion of the personal data relating to you, provided you have one of the following reasons:
- The personal data relating to them are no longer necessary for the purposes for which they were collected or processed in any other way.
- They cancel their consent, on which the processing according to Art. 6 Para. 1 S.1 lit. a) or Art. 9 Para. 2 lit. a) GDPR, and there is no other legal basis for processing.
- According to Art. 21 Para. 1 GDPR, they object to the processing and there are no priority legitimate reasons for the processing, or according to Art. 21 Para. 2 GDPR, they object to the processing.
- The personal data relating to it have been illegally processed.
- The deletion of the personal data relating to it is necessary to fulfill a legal obligation under Union law or the law of the Member States, which the person responsible is subject to.
- The personal data relating to it were collected in relation to offered services of the information company in accordance with Art. 8 Para. 1 GDPR.
If we have made the personal data relating to you publicly and we are obliged to delete them in accordance with Art. 17 Para. 1 GDPR, we also take all reasonable measures to inform other those responsible for data processing that you have requested the deletion of all links to these personal data or copies or replications of this personal data.
The right to deletion does not exist if the processing is required:
- to exercise the right to freedom of expression and information;
- to fulfill a legal obligation that the processing according to the law of the Union or the Member States, to which the person responsible is subject, or to perform a task that is in the public interest or in the exercise of public violence that has been transferred to the person responsible;
- for reasons of public interest in the area of public health in accordance with Art. 9 Para. 2 lit. h and I and Art. 9 Para. 3 GDPR;
- For archive purposes, scientific or historical research purposes or for statistical purposes in accordance with Art. 89 Para. 1 GDPR, insofar as the right mentioned above probably makes or seriously impair the objectives of this processing, or seriously
- To assert, exercise or defend legal claims.
20.4 Right to restriction of processing (see Art. 18 GDPR)
Under the following requirements, you can request the restriction of processing the personal data relating to you:
- if you deny the correctness of the personal person concerned for a duration that enables us to check the correctness of your personal data;
- The processing is illegal and you reject the deletion of the personal data and instead request the restriction of the use of personal data;
- we no longer the personal data for the purposes of processing benEötigen, however, they assert them, exercise or defend legal claims benEstigen, or
- If you have lodged an objection to processing in accordance with Art. 21 Para. 1 GDPR and it is not yet clear whether our legitimate reasons outweigh your reasons.
If the processing of the personal data relating to it has been restricted, this data - apart from your storage - may only be processed with your consent or to assert, exercise or defend legal claims or to protect the rights of a different natural or legal person or for the reasons of an important public interest in the Union or a Member State.
If the restriction of processing according to the above requirements, we will be taught by us before the restriction is canceled.
20.5 Right to inform (see Art. 19 GDPR)
If you have asserted us with your right to correction, deletion or restriction of data processing, we are obliged to inform all recipients of your personal data the correction, deletion or restriction of data processing. This only applies to the extent that this communication does not turn out to be impossible or would be associated with disproportionate effort.
You have the right to find out which recipients have received your data.
20.6 Right to data portability (see Art. 20 GDPR)
You have the right to get your personal data from us in a common, machine -readable format in order to have it forwarded to another person responsible, if necessary
- The processing on consent in accordance with Art. 6 Para. 1 S.1 lit. a) GDPR or Art. 9 Para. 2 lit. a) GDPR or on a contract in accordance with Art. 6 Para. 1 S. 1 lit. b) GDPR is based on and
- The processing is carried out using automated procedures.
When exercising your right to data portability, you have the right to obtain the personal data transmitted directly from us to another person responsible, insofar as this is technically feasible.
The right to data portability does not apply to the processing of personal data, which is necessary for the performance of a task that is in the public interest or in the exercise of public violence that has been transferred to us.
20.7 Right to object to the processing (see Art. 21 GDPR)
Insofar as we support the processing of your personal data in a legitimate interest (in accordance with Art. 6 Para. 1 S. 1 lit. f) GDPR), you can object to the processing. The same applies, we should support data processing on Art. 6 Para. 1 S. 1 lit. e) GDPR.
When exercising such a contradiction, we ask you to explain the reasons why we should not process your personal data as carried out by us. In the event of your justified objection, we will check the situation and will either set or adapt data processing or show you our mandatory reasons worth protecting, on the basis of which we continue the processing.
20.8 Right to complain to the responsible supervisory authority (see Art. 77 GDPR)
Without prejudice to any other administrative or judicial legal remedy, you are entitled to a complaint with a supervisory authority, in particular in the member state of your place of residence, your job or the place of the alleged violation, if you believe that the processing of your personal data is violating the GDPR.
The supervisory authority, in which the complaint was submitted, informs you about the status and results of the complaint, including the possibility of a judicial legal remedy in accordance with Art. 78 GDPR.
21. How to perceive these rights
To perceive this right, please contact our data protection officer:
Anna Tiede from WS Datenschutz GmbH
Or by post:
WS Datenschutz GmbH
Dirksenstrasse 51
D-10178 Berlin
22. Change reservation
We reserve the right to change this data protection declaration taking into account the legal provisions.
Status August 2025
Please note that this text is a translated version of our German Privacy Policy and has been created for informational purposes.
