We, the Schwerelosigkite GbR, Mainzer Straße 147-149, D-66121 Saarbrücken, email@example.com, are pleased about your interest in our online shop. Since the protection of your privacy is not only required by law, but also very important to us personally, we would like to ask you to read this text carefully. We would like to make you understand our views and practices regarding your personal data and the way we handle it.
1. Access Data and Hosting: Browsing our Website
You can visit our websites solely for the purpose of gaining information, without the need to provide personal data. This does not include data that your browser transmits in order to allow you to visit the website, e.g. IP address, the date and time of the request, time difference to Greenwich Mean Time, content of the request (concrete page); access status/HTTP status code, the amount of data transferred, website from which the request originates, browser, operating system and its interface, language and version of the browser software. Furthermore, when using the website, cookies are stored on your computer. Access data is exclusively evaluated to ensure trouble-free operation of the site and to improve our offer. In accordance with Art. 6 sec. 1 lit. f GDPR (General Data Protection Regulation), this serves to safeguard our legitimate interests in the correct presentation of our products in the context of a balancing of interests. All access data will be deleted no later than three days after the end of your visit to our website.
2. Collection and Usage of Data for Processing Contracts and Opening a Customer Account
We gather personal data if you provide it voluntarily as part of your order, when you contact us (e.g. via the contact form or e-mail) or when you open a customer account. Mandatory fields are marked as such, as the information given there is essential for processing contracts, handling your contact requests, or opening a customer account.
To place an order in our online shop, you must create a user account in which your data will be stored for subsequent purchases. We use the data provided by you in accordance with Art. 6 sec. 1 p. 1 lit.b GDPR for the execution of the contract. After the execution of the contract is complteted or the deletion of your customer account, your data will be restricted for further processing and deleted after expiry of the tax and commercial retention periods, unless you have expressly consented to further use or we reserve the right to use further data, which is permitted by law and about which we inform you in this declaration.
Of course, you can manage and change all information in the protected customer account area at any time. It is also always possible to delete the account at your request and, apart from the data that is necessary for the fulfilment of the contract and which we are legally obliged to store, others will be deleted. The deletion of your customer account can be done either by sending a message to the contact option described below or by using a designated function in the customer account.
3. Data Transfer
We cannot avoid passing on your personal data to third parties if this is necessary to fulfil the purpose for which you gave us your data or if we are required to do so by law. However, be assured that we selected all our external service partners carefully and that they concluded a written contract with us for order processing, which also obliges them to handle the relevant data confidentially and in accordance with the GDPR.
a) Data Transfer to Payment Service Managers
Depending on the payment service provider you selected in the ordering process, we pass on the necessary data for processing payments to the required location. In some cases, the selected payment service providers also collect this data themselves, insofar as you create an account there. In the latter case, their respective data protection declaration applies in this respect.
b) Data Transfer to Shipping Companies
In order to fulfil the contract in accordance with Art. 6 sec. 1 p. 1 lit.b GDPR, we pass on your data to the shipping company commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods.
c) Data Transfer to Shipping Service Provider
We will pass on your e-mail address and telephone number to the selected shipping service provider for the purpose of announcing the delivery or agreeing on the delivery terms in accordance with Art. 6 sec. 1 p. 1 lit. a GDPR. This is only possible if you have given us - during or after your order - your consent to do so.
Consent can be revoked at any time by sending a message to the contact option included below or directly to the shipping service provider vis the contact address listed below. Upon revocation, we will delete your data provided for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use any further data, which is permitted by law and about which we inform you in this declaration.
DHL Express Germany GmbH
53113 Bonn DPD
To register for our newsletter, we use the so-called double opt-in procedure. This means that you receive a confirmation e-mail to the e-mail address you provided, in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm this within 7 days, your login will be automatically deleted. If you confirm your request to receive the newsletter, we will use the data provided to send you our e-mail newsletter regularly, based on your consent in accordance with Art. 6 sec. 1 lit. a GDPR. You can unsubscribe from the newsletter at any time, either by sending a message to the contact information given below or via a link in the newsletter. After unsubscribing, we will delete your e-mail address, unless you consented to further use of your data, or we reserve the right to use your data beyond this, which is permitted by law and about which we inform you in this declaration.
5. Integration of the Trusted Shops Trustbadge®
The Trusted Shops Trustbadge® is included on this website to display our Trusted Shops seal of approval and the collected reviews of other customers as well as the offer of Trusted Shops products for buyers after an order. This serves to safeguard our legitimate interest in the optimal marketing of our offers in accordance with Art. 6 sec. 1 p. 1 lit. f GDPR. The Trustbadge® and its services offered by it are an offer of Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne.
When calling up the Trustbage®, the web server automatically saves a so-called server log file which documents the access to the website and contains your IP address, date and time of the request, transferred data volume and the provider making the request. This access data will not be evaluated and will be overwritten automatically no later than seven days after the end of your page visit. Further personal data will only be transferred to Trusted Shops if you consented to it, decided to use Trusted Shops products after having completed an order, or already have registered for use. In this case, the contractual agreement between you and Trusted Shops applies.
6. Cookies and Web Analysis
In order to make the visit to our website as comfortable as possible and to enable the use of certain functions, to display suitable products, or for market research, we use so-called cookies and Google (Universal) Analytics, as well as Facebook Pixel and Facebook Conversion on various pages.
Internet Explorer™: http://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies
Opera™ : http://help.opera.com/Windows/10.20/de/cookies.html
If you advise your browser to block all cookies (including essential cookies), you will either not be able to access our website at all or only partially.
b) Use of Google (Universal) Analytics for Web Analysis (dt. durch Cookies erzeugten; durch statt an Google)
For website analysis, this website uses Google (Universal) Analytics, a web analytics service provided by Google LLC (http://www.google.de). This serves to safeguard our legitimate interest, which is predominant in the context of a balancing of interests, in an optimal presentation of our offer in accordance with Art. 6 sec. 1 p. 1 lit. f GDPR.
Google (Universal) Analytics uses methods which enable an analysis of your use of the website, e.g. via cookies. The automatically collected information about your usage of our website is usually transmitted to and stored by a Google server in the USA. Since we activated the IP anonymization feature in Google Analytics on our website, the IP address is shortened before transmission within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases the full IP address will be transmitted to and truncated by a Google server in the USA. In general, the anonymized IP address transmitted by your browser within the scope of Google Analytics will not be merged with other data from Google. After our use of Google Analytics has been used for purpose and the end of the use of Google Analytics, the data collected will be deleted.
The headquarter of Google LLC is located in the United States and certified under the EU-US Privacy Shield. A current certificate can be viewed here. As a result of this agreement between the US and the European Commission, the latter has established an appropriate level of data protection for companies certified under the Privacy Shield. You can prevent the use of data generated by cookies and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing the browser plug-in available at http://tools.google.com/dlpage/gaoptout?hl=de. As an alternative to the browser plug-in, you can click this link to prevent the collection by Google Analytics on this website in the future. This will include an opt-out cookie on your device. If you delete your cookies, you need to click the link again when starting a new browser session.
However, we would like to point out that you might not be able to use all functions of this website to the full extent when using the plug-in.
The use of Google Analytics is in accordance with the conditions agreed on by the German data protection authorities and Google. Third-party information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.
User conditions: https://marketingplatform.google.com/about/analytics/terms/us/
Overview of data protection: https://marketingplatform.google.com/intl/en_uk/about/
c) Use of Facebook Pixel and Facebook Conversion for Web Analysis
We use the "Visitor Action Pixel" of Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook") on our website. With its help, we can track the actions of users after they have seen or clicked a Facebook advertisement. This allows us to track the effectiveness of advertisement on Facebook for statistical and market research purposes. Data collected this way is anonymous to us, which means that we do not see the personal data of individual users. However, this data is stored and processed by Facebook, about which we inform you according to our state of knowledge. Facebook may connect this data to your Facebook account and also use it for its own advertising purposes, in accordance with Facebook’s data usage policy (see https://en-gb.facebook.com/about/privacy/). You can allow Facebook and its partners to run ads on and off Facebook. Cookies may also be stored on your computer for these purposes. Please click here if you wish to revoke your consent.
Bitte klicken Sie hier, wenn Sie Ihre Einwilligung widerrufen möchten.
7. Advertising via Marketing Networks: Google AdWords Remarketing
We advertise our website in Google search results as well as on third-party websites with Google Adwords. For this purpose, the so-called remarketing cookie from Google is set when you visit our website, which automatically enables interest-based advertising by means of a pseudonymous cookie-ID and on the basis of the pages you visit. This serves to safeguard our legitimate interest in the optimal marketing of our website in accordance with Art. 6 sec. 1 p. 1 lit. f GDPR.
At the end of our use of Google AdWords Remarketing, the data collected in this context will be deleted. Additional data processing will only take place if you allowed Google to link your web and app browsing history to your Google account and that information from your Google account will be used to personalise advertisements you see on the internet. In this case, if you are logged in to Google during your website visit, Google uses your data together with Google Analytics data to create and define target groups for cross-device remarketing. For this purpose, your personal data is temporarily linked with Google Analytics data in order to form target groups.
Google AdWords Remarketing is provided by Google LLC (http://www.google.de). The headquarter of Google LLC is located in the United States and certified under the EU-US Privacy Shield. A current certificate can be viewed here. As a result of this agreement between the US and the European Commission, the latter has established an appropriate level of data protection for companies certified under the Privacy Shield.
8. Use of Social Plugins from Facebook and Instagram
On our website, we use so-called social plugins ("plugins"). When you visit a page of our website that contains such a plugin, your browser establishes a direct connection to the servers of Facebook, Google, or Instagram. The content of the plugin is directly transmitted to your browser by the respective provider and integrated into the page. By integrating the plugins, the providers receive the information that your browser has accessed the corresponding page of our website, even if you do not have a profile or are not currently logged in. This information (including your IP address) is directly transmitted to a server of the respective provider (possibly to the USA) by your browser and stored there. If you are logged in to one of the services, the providers can link your visit to our website directly to your profile on the respective social network. If you interact with the plugins, e.g. by pressing the "like" or "share" buttons, the corresponding information is also directly transmitted to a server of the providers and stored there. The information is also published on the social network and displayed to your contacts. This serves to safeguard our legitimate interest in the optimal marketing of our offer in accordance with Art. 6 sec. 1 p. 1 lit. f GDPR.
The purpose and scope of the collection of data, the further processing and use of said data by the providers as well as a contact option, your rights in this context and setting options in order to protect your privacy can be found in the data protection notices of the providers. Facebook Inc., 1601 S California Ave, Palo Alto, California 94304; http://www.facebook.com/policy.php.
If you do not want the social networks to directly link the collected data to your profile on the respective service via our website, you must log out of the relevant service before visiting our website. You can also completely block the loading of the plugins with add-ons for your browser, e.B. with the script blocker "NoScript" (https://noscript.net/).
The website’s operator integrated Jetpack on this website. Jetpack is a WordPress plug-in that offers additional functionality to the operator of a website based on WordPress. Among other things, Jetpack allows the website operator to have an overview of the visitors to the site. By displaying related articles and publications or by the possibility to share content on the site, it is also possible to increase the number of visitors. In addition, security features are built into Jetpack. For example, a jetpack-using website is better protected against brute force attacks. Jetpack also optimises and accelerates the loading of the images implemented on the website.
The operating company of the jetpack plug-in for WordPress is Automattic Inc., 132 Hawthorne Street, San Francisco, CA 94107, USA. It uses the tracking technology of Quantcast Inc., 201 Third Street, San Francisco, CA 94103, USA.
Jetpack sets a cookie on the information technology system of the user. The nature of cookies has already been explained above. Each time you call up of one of the individual pages of this website, the internet browser on the information technology system of the user is automatically prompted by the respective jetpack component to transmit data to Automattic for analysis purposes. As part of this technical procedure, Automattic receives data that is subsequently used to provide an overview of the website visits. The data obtained in this way is used for the analysis of the behaviour of the user who accessed the website of the controller and are evaluated with the aim of optimising the website. The data collected via the Jetpack component will not be used to identify the user without prior explicit consent from the user. The data will also be brought to Quantcast's attention. Quantcast uses the data for the same purposes as Automattic.
The user can prevent the setting of cookies by our website, as already explained above, at any time by configuring their web browser and thus is able to object permanently to the setting of cookies. Configuring the web browser this way also prevents Automattic/Quantcast from setting a cookie on the information technology system of the user. In addition, cookies already set by Automattic can be deleted at any time via the web browser or other software programs.
Furthermore, it is possible to object to the collection of data generated by the Jetpack cookie, which relates to the use of this website, as well as the processing of this data by Automattic/Quantcast and to prevent such data usage. To do this, the data subject must press the opt-out button at https://www.quantcast.com/opt-out/, which sets an opt-out cookie.
The opt-out cookie set with the objection is stored on the information technology system of the user. If the cookies on the user‘s system are deleted after an objection, the user must revisit the link and set a new opt-out cookie. However, with the setting of the opt-out cookie, it is possible that the websites will not be fully accessible to the user.
The website’s operator integrated the Shariff component on this website. The Shariff component provides social media buttons that comply with data protection. Shariff was developed for the German computer magazine c't and is published by GitHub, Inc.
The developer of the component is GitHub, Inc. 88 Colin P. Kelly Junior Street, San Francisco, CA 94107, USA.
Usually, the button solutions provided by the social networks transmit personal data to the respective social network even when a user only visits a website in which a social media button is integrated. By using the Shariff component, personal data is only transmitted to social networks when the user actively presses one of the social media buttons. Further information on the Shariff component is available from the computer magazine c't at http://www.heise.de/newsticker/meldung/Datenschutz-und-Social-Media-Der-c-t-Shariff-ist-im-Einsatz-2470103.html. The purpose of using the Shariff component is to protect the personal data of visitors to our website while also enabling us to integrate a button solution for social networks.
11. Contact Options and Your Rights
As person concerned, you have the following rights:
- in accordance with Art. 15 GDPR and to the extent specified therein, the right to request information about your personal data processed by us
- pursuant to Art. 16 GDPR, the right to request the immediate correction of inaccurate personal data or the completion of your personal data stored by us
- pursuant to Art. 17 GDPR, the right to request the deletion of your personal data stored by us, unless further processing is not needed to
- exercise the right to freedom of expression and information,
- to fulfill a legal obligation,
- for reasons of public interest or
- to assert, exercise or defend legal claims
- in accordance with Article 18 GDPR, the right to request the restriction of the processing of your personal data if
- the data’s accuracy is disputed by you
- the processing is unlawful, but you refuse to delete it
- we no longer need the data, but you need it to assert, exercise or defend legal claims, or
- you have objected to the processing in accordance with Article 21 GDPR
- pursuant to Article 20 GDPR, the right to receive your personal data that you provided to us in a structured, common and machine-readable format or to request the transfer to another controller
- in accordance with Article 77 GDPR, the right to complain to a supervisory authority. You can contact the supervisory authority of your place of residence, workplace, or our registered office.
Right of Objection
Insofar as we process personal data as explained above in order to safeguard our legitimate interest, you may object to this processing with effect for the future. If the processing is carried out for the purposes of direct marketing, you can exercise this right at any time as described above. Insofar as the processing takes place for other purposes, you are only entitled to object if there are reasons arising from your particular situation.
After exercising your right to object, we will not process your personal data for these purposes, unless we can prove compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.
This does not apply if the processing is carried out for the purposes of direct marketing. We will not process your personal data for this purpose.
To gain further information or explanations concerning your rights to objection and withdrawal in the context of data protection, please contact us directly via e-mail (firstname.lastname@example.org).