Privacy policy
Privacy Policy
The data controller is: Mark Hellbusch, Wagemannstr 2, 65183 Wiesbaden Email: mark@hellbusch.de
Phone: +4917621916227
We appreciate your interest in our online shop. Protecting your privacy is very important to us. Below, we provide detailed information on how we handle your data.
1. Access Data and Hosting
You can visit our websites without providing any personal information. Each time a webpage is accessed, the web server automatically stores a so-called server log file, which contains, for example, the name of the requested file, your IP address, date and time of access, transferred data volume, and the requesting provider (access data) and documents the access. This access data is evaluated solely for the purpose of ensuring the trouble-free operation of the site as well as improving our offer. This serves to protect our legitimate interests in a correct presentation of our offer, which are predominant in the context of a balancing of interests, according to Art. 6 para. 1 sentence 1 lit. f GDPR.
All access data will be deleted no later than seven days after your website visit ends.
2. Data Processing for Contract Execution and Contact
2.1 Data Processing for Contract Execution
For the purpose of contract execution (including inquiries and handling of any existing warranty and performance disruption claims as well as any legal update obligations) according to Art. 6 para. 1 sentence 1 lit. b GDPR, we collect personal data if you voluntarily provide it to us as part of your order. Mandatory fields are marked as such because we require the data in these cases for contract execution, and without it, we cannot send the order. Which data is collected is apparent from the respective input forms. Further information on the processing of your data, especially regarding the transfer to our service providers for order, payment, and shipping processing, can be found in the following sections of this privacy policy. After complete execution of the contract, your data will be restricted for further processing and deleted after the expiration of the tax and commercial retention periods according to Art. 6 para. 1 sentence 1 lit. c GDPR, unless you have expressly consented to further use of your data according to Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this statement.
2.2 Customer Account
If you have given your consent according to Art. 6 para. 1 sentence 1 lit. a GDPR by deciding to open a customer account, we use your data for the purpose of opening the customer account as well as storing your data for future orders on our website. You can delete your customer account at any time, either by sending a message to the contact option described in this privacy policy or via a designated function in the customer account. After deleting your customer account, your data will be deleted unless you have expressly consented to further use of your data according to Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this statement.
2.3 Contact
As part of customer communication, we collect personal data to process your inquiries according to Art. 6 para. 1 sentence 1 lit. b GDPR if you voluntarily provide it to us when contacting us (e.g., via contact form or email). Mandatory fields are marked as such because we require the data in these cases to process your contact. Which data is collected is apparent from the respective input forms. After your inquiry has been fully processed, your data will be deleted unless you have expressly consented to further use of your data according to Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this statement.
Live Chat Tool Tidio
When you use the live chat tool to contact us, the data you voluntarily enter there (name, email address, message) is processed by us in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR for the purpose of responding to your inquiry as part of contract fulfillment. Additionally, using this tool serves to protect our overriding legitimate interests in effective and improved customer communication in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. The data is subsequently deleted. The live chat tool is provided by Tidio LLC, 180 Steuart St CA 94119 San Francisco, USA (“Tidio”), which acts on our behalf. Tidio uses servers in the USA and other countries outside the EU and EEA for which there is no adequacy decision by the European Commission. Our collaboration with Tidio is based on standard data protection clauses of the European Commission.
3. Data processing for the purpose of shipping processing
To fulfill the contract in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR, we forward your data to the shipping service provider commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods.
Data transfer to shipping service providers for the purpose of delivery notification
If you have expressly consented to this during or after your order, we will forward your email address to the selected shipping service provider based on this consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR, so that they can contact you for the purpose of delivery notification or coordination prior to delivery. The consent can be revoked at any time by sending a message to the contact option described in this privacy policy or directly to the shipping service provider at the contact address listed below. After revocation, we will delete your data provided for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this declaration.
General Logistics Systems Germany GmbH & Co. OHGGLS Germany-Straße 1 - 7DE-36286 NeuensteinGermany
United Parcel Service Deutschland S.à r.l. & Co. OHGGörlitzer Straße 141460 NeussGermany
Hermes Germany GmbHEssener Straße 89D-22419 HamburgGermany
DHL Paket GmbHSträßchensweg 1053113 BonnGermany
DPD Deutschland GmbHWailandtstraße 163741 AschaffenburgGermany
4. Data processing for payment processing
When processing payments in our online shop, we work with these partners: technical service providers, credit institutions, payment service providers.
4.1 Data processing for transaction processing
Depending on the selected payment method, we forward the data necessary for processing the payment transaction to our technical service providers, who act on our behalf as part of order processing, or to the commissioned credit institutions or to the selected payment service provider, insofar as this is necessary for processing the payment. This serves to fulfill the contract in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR. In some cases, the payment service providers collect the data required for processing the payment themselves, e.g., on their own website or through a technical integration in the ordering process. In this respect, the privacy policy of the respective payment service provider applies. If you have any questions about our partners for payment processing and the basis of our collaboration with them, please contact the contact option described in this privacy policy.
4.2 Data processing for the purpose of fraud prevention and optimization of our payment processes
We may provide our service providers with additional data, which they use together with the data necessary for processing the payment as our processors for the purpose of fraud prevention and optimization of our payment processes (e.g., invoicing, handling disputed payments, supporting accounting). This serves to protect our overriding legitimate interests in fraud prevention and efficient payment management in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR.
5. Advertising via email
Email newsletter with registration
If you subscribe to our newsletter, we use the data required for this or separately provided by you to send you our email newsletter on a regular basis based on your consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR.
You can unsubscribe from the newsletter at any time, either by sending a message to the contact option described below or via a link provided for this purpose in the newsletter.
After unsubscribing, we delete your email address from the recipient list, unless you have expressly consented to further use of your data in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this declaration.
Our service providers are located and/or use servers in Israel. The European Commission has determined an adequate level of data protection for Israel by decision. Additionally, our service providers use servers in the USA, South Korea, and Taiwan, as well as in other countries outside the EU and EEA for which there is no adequacy decision by the European Commission. Our collaboration with them is based on standard data protection clauses of the European Commission.
6. Cookies and other technologies
6.1 General Information
To make our website visit attractive and enable the use of certain features, we use technologies including so-called cookies on various pages. Cookies are small text files that are automatically stored on your device. Some of the cookies we use are deleted after the browser session ends, i.e., after you close your browser (so-called session cookies). Other cookies remain on your device and allow us to recognize your browser on your next visit (persistent cookies). Privacy protection on devices When using our online services, we use technologies that are absolutely necessary to provide the expressly requested telemedia service. Storing information on your device or accessing information already stored on your device does not require consent in this regard.
For features that are not absolutely necessary, storing information on your device or accessing information already stored on your device requires your consent. We would like to point out that if consent is not granted, parts of the website may not be fully usable. Any consent you may have given remains in effect until you adjust or reset the respective settings on your device.
Subsequent data processing through cookies and other technologies We use such technologies that are absolutely necessary for the use of certain features of our website (e.g., shopping cart function). These technologies collect and process IP address, time of visit, device and browser information, as well as information about your use of our website (e.g., information about the contents of the shopping cart). This serves our overriding legitimate interests in an optimized presentation of our offer in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR as part of a balancing of interests.
We also use technologies to fulfill the legal obligations to which we are subject (e.g., to be able to prove consents to the processing of your personal data) as well as for web analysis and online marketing. Further information on this, including the respective legal basis for data processing, can be found in the following sections of this privacy policy.
We may also use technologies that are not individually listed in this privacy policy. Further information on these technologies, including the respective legal basis for data processing, can be found on the Usercentrics platform.
You can access this by clicking on the fingerprint button in the bottom right or left corner of the page.
You can find the cookie settings for your browser at the following links: Microsoft Edge™ / Safari™ / Chrome™ / Firefox™ / Opera™
If you have consented to the use of technologies in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, you can revoke your consent at any time by sending a message to the contact option described in the privacy policy.
Alternatively, you can click on the fingerprint button in the bottom right or left corner of the page. If cookies are not accepted, the functionality of our website may be limited.
6.2 Use of Usercentrics Consent Management Platform for Managing Consents
We use the Usercentrics Consent Management Platform (“Usercentrics”) on our website to inform you about the cookies and other technologies we use on our website, as well as to obtain, manage, and document your legally required consent to the processing of your personal data by these technologies. This is required under Art. 6 para. 1 sentence 1 lit. c GDPR to fulfill our legal obligation under Art. 7 para. 1 GDPR to be able to prove your consent to the processing of your personal data, to which we are subject. Usercentrics is offered by Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany, which processes your data on our behalf. When you visit our website, the Usersentrics web server stores a so-called server logfile, which also contains your anonymized IP address, date and time of the visit, device and browser information, as well as information about your consent behavior. Your data will be deleted after three years unless you have expressly consented to further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to further data use that is legally permitted and about which we inform you in this declaration.
7. Integration of the Trusted Shops Trustbadge/Other Widgets
If you have given your consent according to Art. 6 para. 1 sentence 1 lit. a GDPR, Trusted Shops widgets are integrated on this website to display Trusted Shops services (e.g., seal of approval, collected reviews) and to offer Trusted Shops products to buyers after an order.
The Trustbadge and the services advertised with it are offered by Trusted Shops AG, Subbelrather Str. 15C, 50823 Cologne ("Trusted Shops"), with whom we are jointly responsible for data protection under Art. 26 GDPR. We inform you in these data protection notices about the essential contractual contents according to Art. 26 para. 2 GDPR.
Within the framework of the joint responsibility between us and Trusted Shops AG, please contact Trusted Shops for data protection questions and to assert your rights, using the contact options provided in the data protection information. Regardless, you can always contact the responsible party of your choice. Your request will then be forwarded to the other responsible party for response if necessary.
7.1 Data Processing When Integrating the Trustbadge/Other Widgets
The Trustbadge is provided by a U.S.-based CDN (Content Delivery Network) provider. An appropriate level of data protection is ensured through standard data protection clauses and other contractual measures.
When the Trustbadge is accessed, the web server automatically stores a so-called server log file, which also contains your IP address, date and time of access, transferred data volume, and the requesting provider (access data), documenting the access. The IP address is anonymized immediately after collection, so the stored data cannot be linked to you personally. The anonymized data is used particularly for statistical purposes and error analysis.
7.2 Data processing after order completion
If you have given your consent, the Trustbadge accesses order information (order total, order number, purchased product if applicable) stored on your end device, as well as your email address, after order completion, and your email address is hashed using a cryptographic one-way function. The hash value is then transmitted to Trusted Shops along with the order information in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR. This is to verify whether you are already registered for Trusted Shops services. If so, further processing is carried out in accordance with the contractual agreement between you and Trusted Shops. If you are not yet registered for the services or do not give your consent for automatic recognition via the Trustbadge, you will subsequently have the opportunity to manually register for the services or complete the protection under your existing user agreement, if applicable.
For this purpose, after completing your order, the Trustbadge accesses the following information stored on the device you are using: order total, order number, and email address. This is necessary so we can offer you buyer protection. Data is only transmitted to Trusted Shops when you actively choose to complete the buyer protection by clicking the appropriately labeled button in the so-called Trustcard. If you decide to use the services, further processing will be based on the contractual agreement with Trusted Shops according to Art. 6 para. 1 lit. b GDPR, so that your registration for buyer protection can be completed and the order secured, and you may be sent review invitations by email afterward.
Trusted Shops uses service providers in the areas of hosting, monitoring, and logging. The legal basis is Art. 6 para. 1 lit. f GDPR for the purpose of ensuring smooth operation. Processing may take place in third countries (USA and Israel). An adequate level of data protection is ensured in the case of the USA through standard data protection clauses and other contractual measures, and in the case of Israel through an adequacy decision. Further information can be found here.
8. Social Media
Our online presence on Facebook (by Meta), Twitter, Instagram (by Meta), YouTube, Pinterest, LinkedIn, Xing
If you have given your consent to the respective social media operator according to Art. 6 para. 1 sentence 1 lit. a GDPR, your data will be automatically collected and stored for market research and advertising purposes when visiting our online presences on the aforementioned social media platforms, from which usage profiles are created using pseudonyms. These can be used to display advertisements within and outside the platforms that presumably match your interests. Cookies are generally used for this purpose. For detailed information on the processing and use of the data by the respective social media operator, as well as contact options and your rights and settings to protect your privacy, please refer to the privacy notices of the providers linked below. If you still need assistance, you can contact us.
Facebook (by Meta) is a service provided by Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland (“Meta Platforms Ireland”). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Facebook (by Meta) is generally transmitted to a server of Meta Platforms, Inc., 1 Hacker Way, Menlo Park, California 94025, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on standard data protection clauses of the European Commission. The data processing as part of visiting a Facebook (by Meta) fan page is based on an agreement between joint controllers according to Art. 26 GDPR. Further information (information on Insights data) can be found here.
Twitter is a service provided by Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland (“Twitter”). The information automatically collected by Twitter about your use of our online presence on Twitter is generally transmitted to a server of Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on standard data protection clauses of the European Commission.
Instagram (by Meta) is a service provided by Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Meta Platforms Ireland"). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Instagram is generally transmitted to and stored on a server of Meta Platforms, Inc., 1 Hacker Way, Menlo Park, California 94025, USA. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on the European Commission's standard data protection clauses. Data processing within the scope of visiting an Instagram (by Meta) fan page is based on an agreement between joint controllers in accordance with Art. 26 GDPR. Further information (information on Insights data) can be found here.
YouTube is a service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). The information automatically collected by Google about your use of our online presence on YouTube is generally transmitted to and stored on a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on the European Commission's standard data protection clauses.
Pinterest is a service provided by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland ("Pinterest"). The information automatically collected by Pinterest about your use of our online presence on Pinterest is generally transmitted to and stored on a server of Pinterest, Inc., 505 Brannan St., San Francisco, CA 94107, USA. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on the European Commission's standard data protection clauses.
LinkedIn is a service provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland ("LinkedIn"). The information automatically collected by LinkedIn about your use of our online presence on LinkedIn is generally transmitted to and stored on a server of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on the European Commission's standard data protection clauses.
Xing is a service provided by New Work SE, Am Strandkai 1, 20457 Hamburg, Germany.
9. Contact Options and Your Rights
9.1 Your Rights
As an affected person, you have the following rights: according to Art. 15 GDPR, the right to request information about your personal data processed by us to the extent specified therein; according to Art. 16 GDPR, the right to request the immediate correction of incorrect or completion of your personal data stored by us; according to Art. 17 GDPR, the right to request the deletion of your personal data stored by us, unless further processing is necessary for exercising the right to freedom of expression and information; for compliance with a legal obligation; for reasons of public interest or for the assertion, exercise, or defense of legal claims; according to Art. 18 GDPR, the right to request the restriction of processing of your personal data, insofar as the accuracy of the data is disputed by you; the processing is unlawful, but you refuse its deletion; we no longer need the data, but you need it for the assertion, exercise, or defense of legal claims or you have objected to the processing according to Art. 21 GDPR; according to Art. 20 GDPR, the right to receive your personal data, which you have provided to us, in a structured, commonly used, and machine-readable format or to request the transfer to another controller; according to Art. 77 GDPR, the right to lodge a complaint with a supervisory authority. Generally, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.
Right to Object Insofar as we process personal data as explained above to safeguard our overriding legitimate interests within the framework of a balance of interests, you can object to this processing with effect for the future. If the processing is for direct marketing purposes, you can exercise this right at any time as described above. If the processing is for other purposes, you have a right to object only if there are reasons arising from your particular situation. After exercising your right to object, we will not further process your personal data for these purposes unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing serves the assertion, exercise, or defense of legal claims. This does not apply if the processing is for direct marketing purposes. Then we will not further process your personal data for this purpose.
9.2 Contact Options
If you have questions about the collection, processing, or use of your personal data, for information, correction, restriction, or deletion of data as well as the revocation of consent given or objection to a specific data use, please contact us directly using the contact details in our imprint.
Privacy policy created with the Trusted Shops legal text generator.
The data controller is: Mark Hellbusch, Wagemannstr 2, 65183 Wiesbaden Email: mark@hellbusch.de
Phone: +4917621916227
We appreciate your interest in our online shop. Protecting your privacy is very important to us. Below, we provide detailed information on how we handle your data.
1. Access Data and Hosting
You can visit our websites without providing any personal information. Each time a webpage is accessed, the web server automatically stores a so-called server log file, which contains, for example, the name of the requested file, your IP address, date and time of access, transferred data volume, and the requesting provider (access data) and documents the access. This access data is evaluated solely for the purpose of ensuring the trouble-free operation of the site as well as improving our offer. This serves to protect our legitimate interests in a correct presentation of our offer, which are predominant in the context of a balancing of interests, according to Art. 6 para. 1 sentence 1 lit. f GDPR.
All access data will be deleted no later than seven days after your website visit ends.
2. Data Processing for Contract Execution and Contact
2.1 Data Processing for Contract Execution
For the purpose of contract execution (including inquiries and handling of any existing warranty and performance disruption claims as well as any legal update obligations) according to Art. 6 para. 1 sentence 1 lit. b GDPR, we collect personal data if you voluntarily provide it to us as part of your order. Mandatory fields are marked as such because we require the data in these cases for contract execution, and without it, we cannot send the order. Which data is collected is apparent from the respective input forms. Further information on the processing of your data, especially regarding the transfer to our service providers for order, payment, and shipping processing, can be found in the following sections of this privacy policy. After complete execution of the contract, your data will be restricted for further processing and deleted after the expiration of the tax and commercial retention periods according to Art. 6 para. 1 sentence 1 lit. c GDPR, unless you have expressly consented to further use of your data according to Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this statement.
2.2 Customer Account
If you have given your consent according to Art. 6 para. 1 sentence 1 lit. a GDPR by deciding to open a customer account, we use your data for the purpose of opening the customer account as well as storing your data for future orders on our website. You can delete your customer account at any time, either by sending a message to the contact option described in this privacy policy or via a designated function in the customer account. After deleting your customer account, your data will be deleted unless you have expressly consented to further use of your data according to Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this statement.
2.3 Contact
As part of customer communication, we collect personal data to process your inquiries according to Art. 6 para. 1 sentence 1 lit. b GDPR if you voluntarily provide it to us when contacting us (e.g., via contact form or email). Mandatory fields are marked as such because we require the data in these cases to process your contact. Which data is collected is apparent from the respective input forms. After your inquiry has been fully processed, your data will be deleted unless you have expressly consented to further use of your data according to Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this statement.
Live Chat Tool Tidio
When you use the live chat tool to contact us, the data you voluntarily enter there (name, email address, message) is processed by us in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR for the purpose of responding to your inquiry as part of contract fulfillment. Additionally, using this tool serves to protect our overriding legitimate interests in effective and improved customer communication in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. The data is subsequently deleted. The live chat tool is provided by Tidio LLC, 180 Steuart St CA 94119 San Francisco, USA (“Tidio”), which acts on our behalf. Tidio uses servers in the USA and other countries outside the EU and EEA for which there is no adequacy decision by the European Commission. Our collaboration with Tidio is based on standard data protection clauses of the European Commission.
3. Data processing for the purpose of shipping processing
To fulfill the contract in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR, we forward your data to the shipping service provider commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods.
Data transfer to shipping service providers for the purpose of delivery notification
If you have expressly consented to this during or after your order, we will forward your email address to the selected shipping service provider based on this consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR, so that they can contact you for the purpose of delivery notification or coordination prior to delivery. The consent can be revoked at any time by sending a message to the contact option described in this privacy policy or directly to the shipping service provider at the contact address listed below. After revocation, we will delete your data provided for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this declaration.
General Logistics Systems Germany GmbH & Co. OHGGLS Germany-Straße 1 - 7DE-36286 NeuensteinGermany
United Parcel Service Deutschland S.à r.l. & Co. OHGGörlitzer Straße 141460 NeussGermany
Hermes Germany GmbHEssener Straße 89D-22419 HamburgGermany
DHL Paket GmbHSträßchensweg 1053113 BonnGermany
DPD Deutschland GmbHWailandtstraße 163741 AschaffenburgGermany
4. Data processing for payment processing
When processing payments in our online shop, we work with these partners: technical service providers, credit institutions, payment service providers.
4.1 Data processing for transaction processing
Depending on the selected payment method, we forward the data necessary for processing the payment transaction to our technical service providers, who act on our behalf as part of order processing, or to the commissioned credit institutions or to the selected payment service provider, insofar as this is necessary for processing the payment. This serves to fulfill the contract in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR. In some cases, the payment service providers collect the data required for processing the payment themselves, e.g., on their own website or through a technical integration in the ordering process. In this respect, the privacy policy of the respective payment service provider applies. If you have any questions about our partners for payment processing and the basis of our collaboration with them, please contact the contact option described in this privacy policy.
4.2 Data processing for the purpose of fraud prevention and optimization of our payment processes
We may provide our service providers with additional data, which they use together with the data necessary for processing the payment as our processors for the purpose of fraud prevention and optimization of our payment processes (e.g., invoicing, handling disputed payments, supporting accounting). This serves to protect our overriding legitimate interests in fraud prevention and efficient payment management in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR.
5. Advertising via email
Email newsletter with registration
If you subscribe to our newsletter, we use the data required for this or separately provided by you to send you our email newsletter on a regular basis based on your consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR.
You can unsubscribe from the newsletter at any time, either by sending a message to the contact option described below or via a link provided for this purpose in the newsletter.
After unsubscribing, we delete your email address from the recipient list, unless you have expressly consented to further use of your data in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this declaration.
Our service providers are located and/or use servers in Israel. The European Commission has determined an adequate level of data protection for Israel by decision. Additionally, our service providers use servers in the USA, South Korea, and Taiwan, as well as in other countries outside the EU and EEA for which there is no adequacy decision by the European Commission. Our collaboration with them is based on standard data protection clauses of the European Commission.
6. Cookies and other technologies
6.1 General Information
To make our website visit attractive and enable the use of certain features, we use technologies including so-called cookies on various pages. Cookies are small text files that are automatically stored on your device. Some of the cookies we use are deleted after the browser session ends, i.e., after you close your browser (so-called session cookies). Other cookies remain on your device and allow us to recognize your browser on your next visit (persistent cookies). Privacy protection on devices When using our online services, we use technologies that are absolutely necessary to provide the expressly requested telemedia service. Storing information on your device or accessing information already stored on your device does not require consent in this regard.
For features that are not absolutely necessary, storing information on your device or accessing information already stored on your device requires your consent. We would like to point out that if consent is not granted, parts of the website may not be fully usable. Any consent you may have given remains in effect until you adjust or reset the respective settings on your device.
Subsequent data processing through cookies and other technologies We use such technologies that are absolutely necessary for the use of certain features of our website (e.g., shopping cart function). These technologies collect and process IP address, time of visit, device and browser information, as well as information about your use of our website (e.g., information about the contents of the shopping cart). This serves our overriding legitimate interests in an optimized presentation of our offer in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR as part of a balancing of interests.
We also use technologies to fulfill the legal obligations to which we are subject (e.g., to be able to prove consents to the processing of your personal data) as well as for web analysis and online marketing. Further information on this, including the respective legal basis for data processing, can be found in the following sections of this privacy policy.
We may also use technologies that are not individually listed in this privacy policy. Further information on these technologies, including the respective legal basis for data processing, can be found on the Usercentrics platform.
You can access this by clicking on the fingerprint button in the bottom right or left corner of the page.
You can find the cookie settings for your browser at the following links: Microsoft Edge™ / Safari™ / Chrome™ / Firefox™ / Opera™
If you have consented to the use of technologies in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, you can revoke your consent at any time by sending a message to the contact option described in the privacy policy.
Alternatively, you can click on the fingerprint button in the bottom right or left corner of the page. If cookies are not accepted, the functionality of our website may be limited.
6.2 Use of Usercentrics Consent Management Platform for Managing Consents
We use the Usercentrics Consent Management Platform (“Usercentrics”) on our website to inform you about the cookies and other technologies we use on our website, as well as to obtain, manage, and document your legally required consent to the processing of your personal data by these technologies. This is required under Art. 6 para. 1 sentence 1 lit. c GDPR to fulfill our legal obligation under Art. 7 para. 1 GDPR to be able to prove your consent to the processing of your personal data, to which we are subject. Usercentrics is offered by Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany, which processes your data on our behalf. When you visit our website, the Usersentrics web server stores a so-called server logfile, which also contains your anonymized IP address, date and time of the visit, device and browser information, as well as information about your consent behavior. Your data will be deleted after three years unless you have expressly consented to further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to further data use that is legally permitted and about which we inform you in this declaration.
7. Integration of the Trusted Shops Trustbadge/Other Widgets
If you have given your consent according to Art. 6 para. 1 sentence 1 lit. a GDPR, Trusted Shops widgets are integrated on this website to display Trusted Shops services (e.g., seal of approval, collected reviews) and to offer Trusted Shops products to buyers after an order.
The Trustbadge and the services advertised with it are offered by Trusted Shops AG, Subbelrather Str. 15C, 50823 Cologne ("Trusted Shops"), with whom we are jointly responsible for data protection under Art. 26 GDPR. We inform you in these data protection notices about the essential contractual contents according to Art. 26 para. 2 GDPR.
Within the framework of the joint responsibility between us and Trusted Shops AG, please contact Trusted Shops for data protection questions and to assert your rights, using the contact options provided in the data protection information. Regardless, you can always contact the responsible party of your choice. Your request will then be forwarded to the other responsible party for response if necessary.
7.1 Data Processing When Integrating the Trustbadge/Other Widgets
The Trustbadge is provided by a U.S.-based CDN (Content Delivery Network) provider. An appropriate level of data protection is ensured through standard data protection clauses and other contractual measures.
When the Trustbadge is accessed, the web server automatically stores a so-called server log file, which also contains your IP address, date and time of access, transferred data volume, and the requesting provider (access data), documenting the access. The IP address is anonymized immediately after collection, so the stored data cannot be linked to you personally. The anonymized data is used particularly for statistical purposes and error analysis.
7.2 Data processing after order completion
If you have given your consent, the Trustbadge accesses order information (order total, order number, purchased product if applicable) stored on your end device, as well as your email address, after order completion, and your email address is hashed using a cryptographic one-way function. The hash value is then transmitted to Trusted Shops along with the order information in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR. This is to verify whether you are already registered for Trusted Shops services. If so, further processing is carried out in accordance with the contractual agreement between you and Trusted Shops. If you are not yet registered for the services or do not give your consent for automatic recognition via the Trustbadge, you will subsequently have the opportunity to manually register for the services or complete the protection under your existing user agreement, if applicable.
For this purpose, after completing your order, the Trustbadge accesses the following information stored on the device you are using: order total, order number, and email address. This is necessary so we can offer you buyer protection. Data is only transmitted to Trusted Shops when you actively choose to complete the buyer protection by clicking the appropriately labeled button in the so-called Trustcard. If you decide to use the services, further processing will be based on the contractual agreement with Trusted Shops according to Art. 6 para. 1 lit. b GDPR, so that your registration for buyer protection can be completed and the order secured, and you may be sent review invitations by email afterward.
Trusted Shops uses service providers in the areas of hosting, monitoring, and logging. The legal basis is Art. 6 para. 1 lit. f GDPR for the purpose of ensuring smooth operation. Processing may take place in third countries (USA and Israel). An adequate level of data protection is ensured in the case of the USA through standard data protection clauses and other contractual measures, and in the case of Israel through an adequacy decision. Further information can be found here.
8. Social Media
Our online presence on Facebook (by Meta), Twitter, Instagram (by Meta), YouTube, Pinterest, LinkedIn, Xing
If you have given your consent to the respective social media operator according to Art. 6 para. 1 sentence 1 lit. a GDPR, your data will be automatically collected and stored for market research and advertising purposes when visiting our online presences on the aforementioned social media platforms, from which usage profiles are created using pseudonyms. These can be used to display advertisements within and outside the platforms that presumably match your interests. Cookies are generally used for this purpose. For detailed information on the processing and use of the data by the respective social media operator, as well as contact options and your rights and settings to protect your privacy, please refer to the privacy notices of the providers linked below. If you still need assistance, you can contact us.
Facebook (by Meta) is a service provided by Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland (“Meta Platforms Ireland”). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Facebook (by Meta) is generally transmitted to a server of Meta Platforms, Inc., 1 Hacker Way, Menlo Park, California 94025, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on standard data protection clauses of the European Commission. The data processing as part of visiting a Facebook (by Meta) fan page is based on an agreement between joint controllers according to Art. 26 GDPR. Further information (information on Insights data) can be found here.
Twitter is a service provided by Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland (“Twitter”). The information automatically collected by Twitter about your use of our online presence on Twitter is generally transmitted to a server of Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on standard data protection clauses of the European Commission.
Instagram (by Meta) is a service provided by Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Meta Platforms Ireland"). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Instagram is generally transmitted to and stored on a server of Meta Platforms, Inc., 1 Hacker Way, Menlo Park, California 94025, USA. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on the European Commission's standard data protection clauses. Data processing within the scope of visiting an Instagram (by Meta) fan page is based on an agreement between joint controllers in accordance with Art. 26 GDPR. Further information (information on Insights data) can be found here.
YouTube is a service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). The information automatically collected by Google about your use of our online presence on YouTube is generally transmitted to and stored on a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on the European Commission's standard data protection clauses.
Pinterest is a service provided by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland ("Pinterest"). The information automatically collected by Pinterest about your use of our online presence on Pinterest is generally transmitted to and stored on a server of Pinterest, Inc., 505 Brannan St., San Francisco, CA 94107, USA. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on the European Commission's standard data protection clauses.
LinkedIn is a service provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland ("LinkedIn"). The information automatically collected by LinkedIn about your use of our online presence on LinkedIn is generally transmitted to and stored on a server of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA. There is no adequacy decision by the European Commission for the USA. Our collaboration with them is based on the European Commission's standard data protection clauses.
Xing is a service provided by New Work SE, Am Strandkai 1, 20457 Hamburg, Germany.
9. Contact Options and Your Rights
9.1 Your Rights
As an affected person, you have the following rights: according to Art. 15 GDPR, the right to request information about your personal data processed by us to the extent specified therein; according to Art. 16 GDPR, the right to request the immediate correction of incorrect or completion of your personal data stored by us; according to Art. 17 GDPR, the right to request the deletion of your personal data stored by us, unless further processing is necessary for exercising the right to freedom of expression and information; for compliance with a legal obligation; for reasons of public interest or for the assertion, exercise, or defense of legal claims; according to Art. 18 GDPR, the right to request the restriction of processing of your personal data, insofar as the accuracy of the data is disputed by you; the processing is unlawful, but you refuse its deletion; we no longer need the data, but you need it for the assertion, exercise, or defense of legal claims or you have objected to the processing according to Art. 21 GDPR; according to Art. 20 GDPR, the right to receive your personal data, which you have provided to us, in a structured, commonly used, and machine-readable format or to request the transfer to another controller; according to Art. 77 GDPR, the right to lodge a complaint with a supervisory authority. Generally, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.
Right to Object Insofar as we process personal data as explained above to safeguard our overriding legitimate interests within the framework of a balance of interests, you can object to this processing with effect for the future. If the processing is for direct marketing purposes, you can exercise this right at any time as described above. If the processing is for other purposes, you have a right to object only if there are reasons arising from your particular situation. After exercising your right to object, we will not further process your personal data for these purposes unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing serves the assertion, exercise, or defense of legal claims. This does not apply if the processing is for direct marketing purposes. Then we will not further process your personal data for this purpose.
9.2 Contact Options
If you have questions about the collection, processing, or use of your personal data, for information, correction, restriction, or deletion of data as well as the revocation of consent given or objection to a specific data use, please contact us directly using the contact details in our imprint.
Privacy policy created with the Trusted Shops legal text generator.