Privacy policy

7) Use of customer data for direct advertising

7.1 Subscription to our e-mail newsletter

If you subscribe to our e-mail newsletter, we will regularly send you information about our offers. The only mandatory information required for sending the newsletter is your e-mail address. The provision of further data is voluntary and is used to be able to address you personally. For sending the newsletter, we use the so-called double opt-in procedure, which ensures that you only receive newsletters once you have expressly confirmed your consent to receive the newsletter by clicking on a verification link sent to the e-mail address provided.

By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6(1)(a) GDPR. We store the IP address entered by your internet service provider (ISP) as well as the date and time of registration in order to be able to trace possible misuse of your e-mail address at a later time. The data collected by us when registering for the newsletter are used strictly for the intended purpose.

You can unsubscribe from the newsletter at any time via the link provided for this purpose in the newsletter or by sending a corresponding message to the controller named at the beginning. After unsubscribing, your e-mail address will be deleted immediately from our newsletter distribution list, provided that you have not expressly consented to further use of your data or we reserve the right to further use of data that is permitted by law and about which we inform you in this declaration.

7.2 Klaviyo

Our e-mail newsletters and other promotional e-mail communications are sent via this provider: Klaviyo, Inc., 125 Summer St., Ste 600, Boston, MA 02110, USA.

On the basis of our legitimate interest in effective and user-friendly e-mail marketing, we pass on your data provided during registration to this provider in accordance with Art. 6(1)(f) GDPR so that the provider can handle the sending of e-mails on our behalf.

Subject to your express consent in accordance with Art. 6(1)(a) GDPR, the provider also carries out a statistical evaluation of the success of e-mail campaigns by means of web beacons or tracking pixels in the e-mails sent, which can measure opening rates and specific interactions with the content of the newsletter. End device information (e.g. time of access, IP address, browser type and operating system) is also collected and evaluated, but is not merged with other data sets.

You can revoke your consent to mail tracking at any time with effect for the future.

We have concluded a data processing agreement with the provider that protects the data of our website visitors and prohibits disclosure to third parties.

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision of the European Commission.

7.3 Shopping cart reminders by e-mail

In the event that you discontinue your purchase with us before completing the order, you have the option of receiving a one-time reminder by e-mail of the contents of your virtual shopping cart.

The only mandatory information required for sending this reminder is your e-mail address. The provision of further data is voluntary and may be used to address you personally. For sending the e-mail, we use the so-called double opt-in procedure, which ensures that you only receive a notification once you have expressly confirmed your consent for this purpose by clicking on a verification link sent to the e-mail address provided.

By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6(1)(a) GDPR for sending a shopping cart reminder. We store the IP address entered by your internet service provider (ISP) as well as the date and time of registration in order to be able to trace possible misuse of your e-mail address at a later time. The data collected by us when registering for our e-mail notification service are used strictly for the intended purpose.

You can unsubscribe from the shopping cart reminders at any time by sending a corresponding message to the controller named at the beginning. After unsubscribing, your e-mail address will be deleted immediately from the distribution list set up for this purpose, provided that you have not expressly consented to further use of your data or we reserve the right to further use of data that is permitted by law and about which we inform you in this declaration.

7.4 Advertising by postal mail

On the basis of our legitimate interest in personalized direct advertising, we reserve the right to store your first and last name, your postal address and – insofar as we have received these additional details from you as part of the contractual relationship – your title, academic degree, year of birth and your professional, industry or business designation in accordance with Art. 6(1)(f) GDPR and to use them for sending interesting offers and information about our products by postal mail.
You can object to the storage and use of your data for this purpose at any time.

8) Data processing for order processing

8.1

To the extent necessary for contract processing for delivery and payment purposes, the personal data collected by us are passed on in accordance with Art. 6(1)(b) GDPR to the commissioned transport company and the commissioned credit institution.

If we owe you updates for goods with digital elements or for digital products on the basis of a corresponding contract, we process the contact data you provided when placing the order in order to inform you personally within the framework of our statutory information obligations in accordance with Art. 6(1)(c) GDPR. Your contact data are used strictly for the intended purpose of communicating updates owed by us and are processed by us only to the extent necessary for the respective information.

For the processing of your order, we also work together with the service provider(s) listed below, who support us in whole or in part in the performance of concluded contracts. Certain personal data are transmitted to these service providers in accordance with the following information.

8.2 Use of payment service providers (payment services)

- PayPal

One or more online payment methods of the following provider are available on this website: PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg

If you select a payment method of the provider in which you make an advance payment, the payment data communicated by you as part of the ordering process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order are passed on to the provider in accordance with Art. 6(1)(b) GDPR. In this case, your data are passed on exclusively for the purpose of payment processing with the provider and only to the extent necessary for this purpose.

If you select a payment method in which we make an advance payment, you will also be asked during the ordering process to provide certain personal data (first and last name, street, house number, postal code, city, date of birth, e-mail address, telephone number, if applicable data on an alternative means of payment).

In order to safeguard our legitimate interest in determining your ability to pay in such cases, these data are forwarded by us to the provider for the purpose of a creditworthiness check in accordance with Art. 6(1)(f) GDPR. The provider checks, on the basis of the personal data provided by you and other data (such as shopping cart, invoice amount, order history, payment experience), whether the payment option selected by you can be granted with regard to payment and/or default risks.

The creditworthiness information may contain probability values (so-called score values). Insofar as score values are included in the result of the creditworthiness information, they are based on a scientifically recognized mathematical-statistical procedure. Address data are included in the calculation of the score values, among other things, but not exclusively.

You can object to this processing of your data at any time by sending a message to us or to the provider. However, the provider may still be entitled to process your personal data if this is necessary for contractually compliant payment processing.

- Shopify Payments

One or more online payment methods of the following provider are available on this website: Shopify International Limited, Victoria Buildings, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland

If you select a payment method of the provider in which you make an advance payment (such as credit card payment), the payment data communicated by you as part of the ordering process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order are passed on to the provider in accordance with Art. 6(1)(b) GDPR. In this case, your data are passed on exclusively for the purpose of payment processing with the provider and only to the extent necessary for this purpose.

9) Online marketing

Own affiliate program

In connection with the product presentations on our website, we operate our own affiliate program within the framework of which we provide interested third-party website operators with partner links for placement on their websites, which lead to our offers. Cookies are used for the affiliate program, which are generally set on the partner website after clicking on a corresponding partner link and for which we are not responsible under data protection law. Cookies are small text files that are stored on your end device in order to be able to track the origin of transactions (e.g. “sales leads”) generated via such links. Among other things, we can recognize that you clicked the partner link and were redirected to our website. This information is required for payment processing between us and the affiliate partners. Insofar as the information also contains personal data, the processing described is carried out on the basis of our legitimate financial interest in processing commission payments in accordance with Art. 6(1)(f) GDPR.

If you want to block the evaluation of user behavior via cookies, you can set your browser so that you are informed about the setting of cookies and decide individually about their acceptance or exclude the acceptance of cookies for certain cases or in general.

10) Web analytics services

10.1 Google Analytics 4

This website uses Google Analytics 4, a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), which enables an analysis of your use of our website.

By default, cookies are set by Google Analytics 4 when you visit the website, which are stored as small text modules on your end device and collect certain information. The scope of this information also includes your IP address, which, however, is shortened by Google by the last digits in order to exclude a direct personal reference.

The information is transferred to Google servers and processed there. Transfers to Google LLC based in the USA are also possible.

Google uses the information collected on our behalf to evaluate your use of the website, to compile reports on website activities for us and to provide other services related to website use and internet use. The shortened IP address transmitted by your browser as part of Google Analytics is not merged with other data from Google. The data collected as part of the use of Google Analytics 4 are stored for a period of two months and then deleted.

All processing described above, in particular the setting of cookies on the end device used, takes place only if you have given us your express consent in accordance with Art. 6(1)(a) GDPR. Without your consent, Google Analytics 4 will not be used during your visit to the website. You can revoke your consent at any time with effect for the future. To exercise your right of revocation, please deactivate this service via the “cookie consent tool” provided on the website.

We have concluded a data processing agreement with Google that ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Further legal information on Google Analytics 4 can be found at https://business.safety.google/intl/de/privacy/, https://policies.google.com/privacy?hl=de&gl=de and at https://policies.google.com/technologies/partner-sites

Demographic characteristics
Google Analytics 4 uses the special function “demographic characteristics” and can use it to create statistics that make statements about the age, gender and interests of website visitors. This is done by analyzing advertising and information from third-party providers. This allows target groups for marketing activities to be identified. However, the collected data cannot be assigned to a specific person and are deleted after being stored for a period of two months.

Google Signals
As an extension to Google Analytics 4, Google Signals can be used on this website to create cross-device reports. If you have activated personalized ads and linked your devices to your Google account, Google can, subject to your consent to the use of Google Analytics in accordance with Art. 6(1)(a) GDPR, analyze your user behavior across devices and create database models, including for cross-device conversions. We do not receive any personal data from Google, only statistics. If you want to stop cross-device analysis, you can deactivate the “Personalized advertising” function in the settings of your Google account. Follow the instructions on this page: https://support.google.com/My-Ad-Center-Help/answer/12155764?hl=de
Further information on Google Signals can be found at the following link: https://support.google.com/analytics/answer/7532985?hl=de

UserIDs
As an extension to Google Analytics 4, the “UserIDs” function can be used on this website. If you have consented to the use of Google Analytics 4 in accordance with Art. 6(1)(a) GDPR, have set up an account on this website and log into this account on different devices, your activities, including conversions, can be analyzed across devices.

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision of the European Commission.

10.2 Google Tag Manager

This website uses the “Google Tag Manager”, a service provided by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: “Google”).

Google Tag Manager provides a technical basis for bundling various web applications, including tracking and analytics services, and for calibrating, controlling and linking them to conditions via a uniform user interface. Google Tag Manager itself does not store any information on users’ end devices or read it out. Nor does the service perform any independent data analyses. However, when you access a page, Google Tag Manager transmits your IP address to Google and may store it there. A transfer to servers of Google LLC in the USA is also possible.

This processing is only carried out if you have given us your express consent in accordance with Art. 6(1)(a) GDPR. Without this consent, Google Tag Manager will not be used during your visit to the website. You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the “cookie consent tool” provided on the website.

We have concluded a data processing agreement with the provider that ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision of the European Commission.

Further legal information on Google Tag Manager can be found at https://business.safety.google/intl/de/privacy/ and https://policies.google.com/privacy?hl=de&gl=de

10.3 Shopify Analytics

This website uses the web analytics service of the following provider: Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland

Data is also transferred to: Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada

Using cookies and/or comparable technologies (tracking pixels, web beacons, algorithms for reading end device and browser information), the service collects and stores pseudonymized visitor data, including information on the end device used such as the IP address and browser information, in order to evaluate them for statistical analyses of user behavior on our website and to create pseudonymized user profiles. Among other things, it is possible to evaluate movement patterns (so-called heatmaps), which show the duration of page visits as well as interactions with page content (e.g. text input, scrolling, clicks and mouse-overs). Pseudonymization fundamentally excludes a direct personal reference. There is no merging with clear personal data about you collected in other ways.

All processing described above, in particular the reading out or storage of information on the end device used, is only carried out if you have given us your consent in accordance with Art. 6(1)(a) GDPR. You can revoke your consent at any time with effect for the future by deactivating this service in the “cookie consent tool” provided on the website.

We have concluded a data processing agreement with the provider that protects the data of our website visitors and prohibits disclosure to third parties.

For data transfers to Canada, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

11) Retargeting/remarketing and conversion tracking

Meta Pixel

Within our online offering, we use the service “Meta Pixel” of the following provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (“Meta”)