Privacy Policy

Privacy Policy

Unless otherwise stated below, the provision of your personal data is neither legally nor contractually required, nor is it necessary for the conclusion of a contract. You are not obligated to provide the data. Failure to provide it will have no consequences. This only applies unless otherwise stated during the subsequent processing operations.
“Personal data” means any information relating to an identified or identifiable natural person.

Server log files

You can visit our websites without providing any personal information.

Each time you access our website, usage data is transmitted to us or our web host/IT service provider via your internet browser and stored in log files (so-called server log files). This stored data includes, for example, the name of the page accessed, the date and time of access, the IP address, the amount of data transferred, and the requesting provider.
The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in ensuring the smooth operation of our website and improving our offering.

contact

Person responsible

Please contact us if you wish. The person responsible for data processing is: E. Andre Monien, Bänschstr. 54, 10247 Berlin , Germany, Phone: +49 30 68948389 , order44@online.de

Customer's proactive contact via email
If you initiate business contact with us via email, we will only collect your personal data (name, email address, message text) to the extent you provide it. This data processing serves to process and respond to your contact request.
If the contact serves to carry out pre-contractual measures (e.g. advice in the event of purchase interest, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR.
If contact is made for other reasons, this data processing is based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in processing and responding to your inquiry. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time for reasons arising from your particular situation.
We will only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.

Collection and processing when using the contact form
When you use the contact form, we collect your personal data (name, email address, message text) only to the extent you provide it. Data processing serves the purpose of establishing contact.

If the contact serves to carry out pre-contractual measures (e.g. advice in the event of purchase interest, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR.

If contact is made for other reasons, this data processing is based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in processing and responding to your inquiry. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time for reasons arising from your particular situation.

We will only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.

Using Google Maps API address validation
We use address validation on our website from Google (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland “Google”).
The purpose of data processing is to check your entries in our address forms in real time for input and spelling errors, and to supplement any missing data. If data is entered incorrectly, alternative suggestions for correcting the data will be displayed. For this purpose, the address data you enter is transmitted to the provider, where it is stored and evaluated.
Among other things, the following information may be transmitted to Google and processed there: postal addresses (country, city, postal code, street, house number), email address, telephone number.
Your data may also be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in maintaining a correct data basis to fulfill our contractual obligations. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
The data is processed separately by the provider and not merged with other data. It is deleted by the provider as soon as the status of the entered data has been determined, but no later than 30 days later.
Further information on Google's terms of use and data protection can be found at: https://cloud.google.com/maps-platform/terms or at https://www.google.de/policies/privacy/ .

WhatsApp Business
If you contact us via WhatsApp, we use the WhatsApp Business version of WhatsApp Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; "WhatsApp"). If you are located outside the European Economic Area, this service is provided by WhatsApp Inc. (1601 Willow Road, Menlo Park, CA 94025, USA).
The data processing serves to process and respond to your contact request. For this purpose, we collect and process your mobile phone number stored with WhatsApp, your name if provided, and other data to the extent you provide it. We use a mobile device for the service, whose address book only stores data from users who have contacted us via WhatsApp. Personal data will therefore not be transferred to WhatsApp without your prior consent.
Your data will be transmitted by WhatsApp to Meta Platforms Inc. servers in the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Meta Platforms Inc. has certified itself according to the TADPF and is thus committed to complying with European data protection principles. If the contact serves to carry out pre-contractual measures (e.g., advice in the event of a purchase interest, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is based on Art. 6 (1) (b) GDPR.

If contact is made for other reasons, this data processing is based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in providing quick and easy contact and answering your inquiry. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time for reasons arising from your particular situation.
We use your personal data only to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
Further information on terms of use and data protection when using WhatsApp can be found athttps://www.whatsapp.com/legal/#terms-of-service and https://www.whatsapp.com/legal/#privacy-policy .

Customer account orders

Customer account
When you open a customer account, we collect your personal data to the extent specified therein. The data processing serves the purpose of improving your shopping experience and simplifying order processing. Processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of your consent until the revocation. Your customer account will then be deleted.

Collection, processing and transfer of personal data when placing orders

When you place an order, we collect and process your personal data only to the extent necessary to fulfill and process your order and to process your inquiries. Providing this data is required to conclude a contract. Failure to provide this data will result in no contract being concluded. Processing is based on Art. 6 (1) (b) GDPR and is necessary to fulfill a contract with you.

Your data will be shared, for example, with your chosen shipping companies and dropshipping providers, payment service providers, order processing service providers, and IT service providers. In all cases, we strictly adhere to legal requirements. The scope of data transfer is limited to a minimum.

Reviews Advertising

Website logo for Google Customer Reviews
The website logo for Google Customer Reviews of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”) is integrated into our website.
The purpose of the integration is to display the number and results of the reviews we have received via Google so far and to promote participation in this program.
To display the logo on our website and to show you personalized ads on Google, Google uses cookies. This may include, among other things, processing your IP address and transmitting it to Google.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is thus committed to complying with European data protection principles.

The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (s) 1 of the Telemedia Act (TDDDG) in conjunction with Article 6 (1) (a) of the GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) of the GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information on terms of use and data protection when using Google Customer Reviews can be found at https://www.google.com/shopping/customerreviews/static/tos/de/1_01_tos.html and at https://policies.google.com/privacy?hl=de

Google Customer Reviews rating tool
We use the Google Customer Reviews rating tool from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”) for our website.
After your order, we would like to ask you to rate and comment on your purchase. For this purpose, we will contact you via email using Google's survey opt-in module. The following information, among others, may be processed and transmitted to Google: order details (e.g., order ID, delivery country, expected delivery date, GTIN of the ordered products) and your email address.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is thus committed to complying with European data protection principles.
Processing is based on Art. 6 (1) (a) GDPR with your consent, provided you have expressly consented to the sharing of your data and to receiving the request for feedback. You can revoke your consent at any time with future effect, without affecting the legality of the processing carried out on the basis of your consent until the revocation.

Further information on terms of use and data protection when using Google Customer Reviews can be found at https://www.google.com/shopping/customerreviews/static/tos/de/1_01_tos.html and at https://policies.google.com/privacy?hl=de

Use of your personal data for sending postal advertising

We use your personal data (name, address), which we received in the context of the sale of a product or service, to send you postal advertising, unless you have objected to this use. The provision of this data is necessary for the conclusion of the contract. Failure to provide this data will result in no contract being concluded.

Processing is based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in direct marketing. You can object to this use of your address data at any time by notifying us. The contact details for exercising your objection can be found in the legal notice.

Use of the email address for sending newsletters
We use your email address, regardless of contract processing, exclusively for our own advertising purposes to send newsletters, provided you have expressly consented to this. Processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation. You can unsubscribe from the newsletter at any time by using the corresponding link in the newsletter or by notifying us. Your email address will then be removed from the mailing list.

Use of the email address for sending direct mail
We use your email address, which we received as part of the sale of a product or service, to electronically send advertising for our own products or services that are similar to those you have already purchased from us, unless you have objected to this use. Providing the email address is necessary to conclude the contract. Failure to provide it will result in no contract being concluded. Processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in direct advertising. You can object to this use of your email address at any time by notifying us. The contact details for exercising your objection can be found in the legal notice. You can also use the link provided for this purpose in the advertising email. There are no costs for this other than the transmission costs according to the basic rates.

Use of the mobile phone number for sending SMS advertising
Regardless of the contract, we will use your mobile phone number exclusively for our own advertising purposes to send SMS advertising, provided you have expressly consented to this.
Processing is based on Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of your consent until the revocation. Your mobile phone number will then be removed from the mailing list.

Inventory management

Use of an external inventory management system
We use a merchandise management system to process your order. For this purpose, your personal data collected during the order process will be transferred to

plentysystems AG, Johanna-Waescher-Straße 7, 34131 Kassel .

The processing of your personal data serves the purpose of fulfilling the contract concluded with you and is based on Art. 6 (1) (b) GDPR.

Payment service provider credit report

Using PayPal
We use the PayPal payment service provided by PayPal (Europe) S.à.rl et Cie, SCA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. Data processing serves the purpose of offering you payment via the payment service. By selecting and using payment via PayPal, the data required for payment processing will be transmitted to PayPal in order to fulfill the contract with you using the selected payment method. This processing is based on Art. 6 (1) (b) GDPR.

All PayPal transactions are subject to the PayPal Privacy Policy, which can be found at https://www.paypal.com/de/webapps/mpp/ua/privacy-full

Using PayPal Plus

We use the PayPal Plus payment service provided by PayPal (Europe) S.à.rl et Cie, SCA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. Data processing serves the purpose of offering you payment via this payment service. By selecting and using payment via PayPal, credit card via PayPal, or direct debit via PayPal, the data required for payment processing will be transmitted to PayPal in order to fulfill the contract with you using the selected payment method. This processing is based on Art. 6 (1) (b) GDPR.

For certain payment methods such as credit card via PayPal and direct debit via PayPal, PayPal reserves the right to obtain a credit report based on mathematical and statistical procedures using credit agencies. For this purpose, PayPal transmits the personal data required for a credit check to a credit agency and uses the information received on the statistical probability of a payment default to make a balanced decision on the establishment, implementation, or termination of the contractual relationship. The credit report may contain probability values (score values) calculated on the basis of scientifically recognized mathematical and statistical procedures and which include, among other things, address data. Your legitimate interests will be taken into account in accordance with the statutory provisions. The data processing serves the purpose of a credit check for the initiation of a contract. The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in protection against payment default when PayPal makes advance payments.

You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time by notifying PayPal, for reasons related to your particular situation. Providing this data is necessary for concluding the contract using your preferred payment method. Failure to provide this data will result in the contract not being concluded using your chosen payment method.

Using PayPal Express
We use the PayPal Express payment service provided by PayPal (Europe) S.à.rl et Cie, SCA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. The purpose of this data processing is to offer you payment via the PayPal Express payment service. To integrate this payment service, PayPal must collect, store, and analyze data (e.g., IP address, device type, operating system, browser type, and device location) when you visit the website. Cookies may also be used for this purpose. Cookies enable the recognition of your browser.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in offering a customer-oriented range of payment methods. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
By selecting and using PayPal Express, the data required for payment processing will be transmitted to PayPal in order to fulfill the contract with you using the selected payment method. This processing is based on Art. 6 (1) (b) GDPR. Further information on data processing when using the PayPal Express payment service can be found in the associated privacy policy at www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE#Updated_PS .

Using PayPal Check-Out
We use the PayPal Check-Out payment service provided by PayPal (Europe) S.à.rl et Cie, SCA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. Data processing serves the purpose of offering you payment via the payment service. By selecting and using payment via PayPal, credit card via PayPal, direct debit via PayPal, or "Pay Later" via PayPal, the data required for payment processing will be transmitted to PayPal in order to fulfill the contract with you using the selected payment method. This processing is based on Art. 6 (1) (b) GDPR.

Cookies may be stored that enable your browser to be recognized. The resulting data processing is based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in offering a customer-oriented range of payment methods. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.

Credit card via PayPal, direct debit via PayPal & “Pay later” via PayPal
For certain payment methods such as credit card via PayPal, direct debit via PayPal or "Pay later" via PayPal, PayPal reserves the right to obtain a credit report based on mathematical-statistical procedures using credit agencies. For this purpose, PayPal transmits the personal data required for a credit check to a credit agency and uses the information received on the statistical probability of a payment default to make a balanced decision about the establishment, implementation or termination of the contractual relationship. The credit report may contain probability values (score values) that are calculated on the basis of scientifically recognized mathematical-statistical procedures and whose calculation includes, among other things, address data. Your legitimate interests will be taken into account in accordance with the statutory provisions. The data processing serves the purpose of the credit check for the initiation of a contract. The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in protection against payment default if PayPal makes an advance payment.
You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time by notifying PayPal, for reasons related to your particular situation. Providing this data is necessary for concluding the contract using your preferred payment method. Failure to provide this data will result in the contract not being concluded using your chosen payment method.

Third-party providers
When paying using a third-party payment method, the data required for payment processing will be transmitted to PayPal. This processing is based on Art. 6 (1) (b) GDPR. To process this payment method, PayPal may then forward the data to the respective provider. This processing is based on Art. 6 (1) (b) GDPR. Local third-party providers can include, for example:

Sofort (SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany)
giropay (Paydirekt GmbH, Stephanstr. 14-16, 60313 Frankfurt am Main)

Purchase on account via PayPal
When paying via invoice, the data required for payment processing is first transmitted to PayPal. To process this payment method, PayPal then transmits the data to Ratepay GmbH (Franklinstraße 28-29, 10587 Berlin; "Ratepay") in order to fulfill the contract with you using the selected payment method. This processing is carried out on the basis of Art. 6 (1) (b) GDPR. Ratepay may conduct a credit check based on mathematical-statistical procedures (probability or score values) using credit agencies according to the process already described above. The data is processed for the purpose of credit assessment for the initiation of a contract. The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in protecting against payment default when Ratepay makes advance payments. Further information on data protection and which credit agencies use Ratpay can be found at https://www.ratepay.com/legal-payment-dataprivacy/ and https://www.ratepay.com/legal-payment-creditagencies/ .

Further information on data processing when using PayPal can be found in the associated privacy policy at https://www.paypal.com/de/webapps/mpp/ua/privacy-full .

Using Amazon Payments
We use the payment service Amazon Payments from Amazon Payments Europe sca (38 avenue John F. Kennedy, L-1855 Luxembourg; “Amazon Payments”) on our website.
The data processing serves the purpose of being able to offer you payment via the Amazon Payments payment service.
To integrate this payment service, Amazon Payments must collect, store, and analyze data (e.g., IP address, device type, operating system, browser type, and device location) when you visit the website. Cookies may also be used for this purpose. These cookies enable your browser to be recognized.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in offering a customer-oriented range of payment methods. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
By selecting and using "Amazon Payments," the data required for payment processing will be transmitted to Amazon Payments in order to fulfill the contract with you using the selected payment method. This processing is based on Art. 6 (1) (b) GDPR.
Further information on data processing when using the Amazon Payments payment service can be found in the associated privacy policy at: https://pay.amazon.com/de/help/201212490

Data collection and processing during credit checks
If we make advance payments, e.g., when paying by invoice or direct debit, we reserve the right, if necessary, to obtain a credit report based on mathematical-statistical procedures using Atriga, Pittlerstr. 47, 63225 Langen . For this purpose, we transmit the personal data required for a credit check to Atriga and use the information received on the statistical probability of a payment default to make a balanced decision about the establishment, implementation, or termination of the contractual relationship. The credit report may contain probability values (score values) calculated on the basis of scientifically recognized mathematical-statistical procedures, the calculation of which includes, among other things, address data. Your legitimate interests will be taken into account in accordance with the statutory provisions. The data processing serves the purpose of the credit check for the initiation of a contract. The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in protecting against payment default when we make advance payments. You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time by notifying us, for reasons related to your particular situation. Providing this data is necessary for concluding the contract using your preferred payment method. Failure to provide this data will result in the contract not being concluded using your chosen payment method.

Using SOFORT

We use the payment service provider SOFORT GmbH (Theresienhöhe 12, 80339 Munich, Germany; “SOFORT”) to process payments on our website. Sofort GmbH is a company of the Klarna Group (Klarna Bank AB (publ), Sveavägen 46, 11134 Stockholm, Sweden). The data processing serves the purpose of being able to offer you various payment methods by processing payments via the payment service provider SOFORT. If you have chosen this payment option, the data required for payment processing will be transmitted to SOFORT. This data processing is based on Art. 6 (1) (b) GDPR. Further information on data processing when using the payment service provider SOFORT can be found at https://www.sofort.com/1.0/shared/content/legal/terms/de-DE/SOFORT/ and https://www.klarna.com/sofort/ .

Cookies

Our website uses cookies. Cookies are small text files that are stored in the internet browser or by the internet browser on a user's computer system. When a user visits a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string that allows the browser to be uniquely identified when the website is visited again.

Cookies are stored on your computer. Therefore, you have full control over the use of cookies. By selecting the appropriate technical settings in your internet browser, you can be notified before cookies are set and decide whether to accept them individually, as well as prevent the storage of cookies and the transmission of the data they contain. Cookies already stored can be deleted at any time. However, please note that in this case, you may not be able to use all the functions of this website to their full extent.

The following links will tell you how to manage (including deactivate) cookies in the most important browsers:

Chrome: https://support.google.com/accounts/answer/61416?hl=de
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09

Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablassen

Safari: https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac

Technically necessary cookies

Unless otherwise stated in the privacy policy below, we only use technically necessary cookies to make our website more user-friendly, effective, and secure. Furthermore, cookies enable our systems to recognize your browser even after you change pages and to offer you services. Some functions of our website cannot be offered without the use of cookies. These require that the browser is recognized even after you change pages.

The use of cookies or similar technologies is based on Section 25 (2) of the Telemedia Act (TDDDG). Your personal data is processed on the basis of Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in ensuring the optimal functionality of the website and a user-friendly and effective design of our offering.

You have the right to object to the processing of personal data concerning you at any time for reasons related to your particular situation.

Use of Consent Manager
We use the consent management tool Consentmanager from Consentmanager AB (Håltegelvägen 1b, 72348 Västerås, Sweden; "Consentmanager") on our website.
The tool enables you to give your consent to data processing via the website, in particular the setting of cookies, as well as to exercise your right to withdraw consent you have already given.
The purpose of data processing is to obtain and document the necessary consent for data processing and thus to comply with legal obligations.
Cookies may be used for this purpose. Among other things, the following information may be collected and transmitted to Consent Manager: the date and time of the page visit, information about the browser and device you use, an anonymized IP address, and opt-in and opt-out data. This data will not be shared with third parties.
Data processing is carried out to fulfill a legal obligation on the basis of Art. 6 (1) (c) GDPR.
Further information on data protection at Consentmanager can be found at: https://www.consentmanager.net/privacy.php

Analysis advertising tracking

Use of Google Analytics 4

We use the web analysis service Google Analytics from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website.

The data processing serves the purpose of analyzing this website and its visitors, as well as for marketing and advertising purposes. Google will use the information obtained on behalf of the website operator to evaluate your use of the website, to compile reports on website activity, and to provide the website operator with other services related to website activity and internet usage.

The following information may be collected, among others: IP address, date and time of the page visit, click path, information about the browser and device you use, pages visited, referrer URL (website from which you accessed our website), location data, and purchasing activities. Google may link your data to other data, such as your search history, your personal accounts, your usage data from other devices, and any other data Google has about you.

Your IP address will be shortened by us on our own servers beforehand. This means that Google only receives pseudonymized data.

Google uses technologies such as cookies, web storage in the browser, and tracking pixels that enable an analysis of your website use. The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) of the Telemedia Act (TDDDG) in conjunction with Article 6 (1) (a) of the GDPR.

We also use the Google Signals service in this context. Google Signals enables cross-device tracking. Your data can therefore be analyzed across devices if you have enabled "personalized advertising" in your account settings and your devices are linked to your Google Account. This makes it possible to recognize which device you use to search for products and later return to complete purchases on another device, such as a tablet.

The cross-device reports created in this context contain only aggregated data. We therefore only receive statistics based on Google Signals. To prevent Google Signals from collecting and storing data across devices, you can deactivate the "personalized ads" function in your Google Account settings. For more information, please visit https://support.google.com/ads/answer/2662922?hl=de .

Further information on data processing and data protection for Google Signals can be found at https://support.google.com/analytics/answer/7532985?hl=de .

We use the advanced implementation of consent mode (Advanced Consent Mode). This means that even if consent is not granted, user data is transmitted to Google in the form of "pings." These pings may contain, among other things, the following information: IP address to determine the IP country (the IP address is not logged), date and time of the page visit, URL of the pages visited, user agent, referrer URL (website from which our website was accessed), or information about the triggering of website events such as a conversion. Based on this information, Google models user data in order to be able to conduct a comprehensive usage analysis despite the refusal of consent.

The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. For the USA, the EU Commission has implemented an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to adhering to European data protection principles. Both Google and US government authorities have access to your data.

Further information on terms of use and data protection can be found at https://policies.google.com/technologies/partner-sites and at https://policies.google.com/privacy?hl=de&gl=de .

Using the Meta Pixel

We use the meta pixel of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; "Meta") on our website.

Meta and we are jointly responsible for the collection of your data when integrating the service and the transmission of this data to Meta. This is based on an agreement between us and Meta on the joint processing of personal data, which defines the respective responsibilities. The agreement is available at https://de-de.facebook.com/legal/terms/businesstools . According to this agreement, we are particularly responsible for fulfilling the information obligations pursuant to Art. 13 and 14 GDPR, for adhering to the security requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service, and for complying with the obligations under Art. 33 and 34 GDPR, insofar as a breach of the protection of personal data affects our obligations under the agreement on joint processing. Meta is responsible for enabling the rights of data subjects in accordance with Articles 15 - 20 GDPR, for complying with the security requirements of Article 32 GDPR with regard to the security of the service and for complying with the obligations under Articles 33 and 34 GDPR, insofar as a breach of the protection of personal data affects Meta's obligations under the joint processing agreement.

The application serves the purpose of targeting website visitors with interest-based advertising on the social networks Facebook and Instagram. For this purpose, the Meta remarketing tag has been implemented on the website. This tag establishes a direct connection to the Meta servers when you visit the website. This transmits to the Meta server which of our pages you have visited. Meta assigns this information to your personal Facebook and/or Instagram user account. When you visit the social networks Facebook or Instagram, you will then be shown personalized, interest-based ads.

The application also serves the purpose of compiling conversion statistics. This allows us to learn the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag, as well as what actions were taken after being redirected to this website. However, we do not receive any information that could personally identify users.

Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

Your personal data is processed with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
You can deactivate the "Custom Audiences" remarketing feature here. Further information on how Meta collects and uses data, your rights in this regard, and options for protecting your privacy can be found in Meta's privacy policy at https://www.facebook.com/about/privacy/ .

Use of Google Ads Conversion Tracking
We use the online advertising program "Google Ads" on our website, including conversion tracking (visit action analysis). Google Conversion Tracking is an analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; Google).
When you click on an ad served by Google, a conversion tracking cookie is stored on your computer. These cookies have a limited validity period, contain no personal data, and are therefore not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognize that you clicked on the ad and were redirected to this page. Each Google Ads customer receives a different cookie. This means that cookies cannot be tracked across the websites of Google Ads customers.
The information collected through the conversion cookie is used to compile conversion statistics. This tells us the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag. However, we do not receive any information that can be used to personally identify users.
Your data may be transferred to Google LLC's servers in the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (s) 1 of the Telemedia Act (TDDDG) in conjunction with Article 6 (1) (a) of the GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) of the GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information and Google’s privacy policy can be found at: https://www.google.de/policies/privacy/

Use of Google AdSense
We use the AdSense function of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. The data processing serves the purpose of renting advertising space on the website and targeting website visitors with interest-based advertising. Using this function, visitors to the provider's website are shown personalized, interest-based advertising from the Google Display Network. Google uses cookies that enable an analysis of your website use. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. For the USA, an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF), exists. Google has certified itself according to the TADPF and is therefore committed to adhering to European data protection principles. Google may transfer this information to third parties where required to do so by law, or where third parties process the data on Google's behalf. Under no circumstances will Google associate your IP address with any other data held by Google.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (s) 1 of the Telemedia Act (TDDDG) in conjunction with Article 6 (1) (a) of the GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) of the GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information and Google’s privacy policy can be found at: https://www.google.com/policies/technologies/ads/ and https://www.google.de/policies/privacy/

Use of the remarketing or “similar audiences” function of Google Inc.
We use the remarketing or "similar audiences" function of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
The application is used to analyze visitor behavior and interests. Google uses cookies to analyze website usage, which forms the basis for creating interest-based ads. These cookies record visits to the website and anonymized data about website usage. No personal data of website visitors is stored. If you subsequently visit another website in the Google Display Network, you will see ads that are highly likely to reflect previously viewed product and information areas.
Your data may be transferred to Google LLC servers in the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (s) 1 of the Telemedia Act (TDDDG) in conjunction with Article 6 (1) (a) of the GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) of the GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information on Google Remarketing and the associated privacy policy can be found at: https://www.google.com/privacy/ads/

Plug-ins and other

Using Google Tag Manager
We use the Google Tag Manager of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
This application manages JavaScript and HTML tags, which are used, in particular, to implement tracking and analysis tools. Data processing serves the purpose of tailoring and optimizing our website to meet your needs.
The Google Tag Manager itself does not store cookies, nor does it process personal data. However, it does allow the activation of additional tags that can collect and process personal data.
Further information on terms of use and data protection can be found here .

Use of social plug-ins via “Shariff”
We use social network plug-ins on our website. To ensure you retain control over your data, we use the privacy-safe "Shariff" buttons.
Without your express consent, no links will be established to the social network servers and consequently no data will be transmitted.
"Shariff" is a development by specialists at the computer magazine c't. It enables greater privacy online and replaces the usual "share" buttons on social networks. More information about the Shariff project can be found here : https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html .
When you click the buttons, a pop-up window appears where you can log in to the respective provider using your data. Only after you actively log in will a direct connection to the social networks be established.
By logging in, you consent to the transfer of your data to the respective social media provider. This includes, among other things, your IP address and information about which of our pages you have visited. If you are connected to one or more of your social network accounts at the same time, the collected information will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your social media accounts before visiting our website and before activating the buttons. The social networks listed below are integrated using the "Shariff" function.
Further information on the scope and purpose of the collection and use of data as well as your rights and options for protecting your privacy can be found in the linked data protection notices of the providers.

Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://www.facebook.com/policy.php
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland) https://help.instagram.com/155833707900388 .
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

LinkedIn ( LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland )
https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). LinkedIn has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

X, formerly known as Twitter, ( X Corp., 1355 Market Street, Suite 900 San Francisco, CA 94103, USA )

https://twitter.com/privacy
https://twitter.com/personalization
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). X has certified itself according to the TADPF and is thus committed to complying with European data protection principles .

Use of social plug-ins using the “2-click solution”
We use social network plug-ins on our website using the "2-click solution." This means that no connection to the social network servers is established without your express consent, and therefore no data is transmitted.
With the standard integration of plug-ins, when you visit the pages of our website that contain such a plug-in, a link is established between your computer and the servers of the provider of the social network. The plug-in is displayed on the page by a message to your browser. Both your IP address and the information which of our pages you have visited are transmitted to the provider's servers. This applies regardless of whether you are registered with the social network or logged in. Transmission also takes place for unregistered or not logged in users. If you are also logged in to the Facebook social network, this information is assigned to your personal user account. When you use the plug-in functions (e.g. by clicking the button), this information is also assigned to your user account. You can only prevent this by logging out before using the plug-in. So that you retain control over your data, we have decided to initially deactivate the corresponding button. You can recognize this by the grayed out button. Without your express consent – by activating the button – no link will be established to the social network's server and consequently no data will be transmitted.
Only when you activate the button does the button become active (highlighted in color) and a direct connection to the servers of the social network is established.
By activating the social network, you consent to the transfer of your data to the respective social network provider. This will include, among other things, your IP address and information about which of our pages you have visited. If you are connected to one or more of your social network accounts at the same time, the collected information will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your social network user accounts before visiting our website and before activating the buttons.
The social networks listed below are integrated using the "2-click" function. Further information on the scope and purpose of data collection and use, as well as your rights and options for protecting your privacy, can be found in the linked privacy policies of the providers.

Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):

http://instagram.com/legal/privacy/

LinkedIn ( LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland ):

https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy

https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). LinkedIn has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

X, formerly known as Twitter, ( X Corp., 1355 Market Street, Suite 900 San Francisco, CA 94103, USA )

Use of Google reCAPTCHA

We use the reCAPTCHA service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. This query is used to distinguish between human input and automated machine processing. For this purpose, your input is transmitted to Google and used there. In addition, the IP address and any other data required by Google for the reCAPTCHA service are transmitted to Google. This data is processed by Google within the European Union and may also be transferred to Google LLC servers in the USA. For the USA, the EU Commission has adopted an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

Further information about Google reCAPTCHA and the associated privacy policy can be found at: https://www.google.com/recaptcha/intro/android.html and https://www.google.com/privacy .

Use of Google invisible reCAPTCHA
We use the invisible reCAPTCHA service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
This serves the purpose of distinguishing between input by a human and automated, machine-based processing. In the background, Google collects and analyzes usage data that Invisible reCAPTCHA uses to distinguish regular users from bots. For this purpose, your input is transmitted to Google, where it is further processed. In addition, the IP address and any other data required by Google for the Invisible reCAPTCHA service are transmitted to Google.

This data is processed by Google within the European Union and may also be transferred to Google LLC servers in the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (s) 1 of the Telemedia Act (TDDDG) in conjunction with Article 6 (1) (a) of the GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) of the GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information about Google reC APTCHA and the associated privacy policy can be found at: https://www.google.com/recaptcha/intro/android.html and https://www.google.com/privacy

We use Hotjar to better understand the needs of our users and to optimize the offering and experience on this website. With the help of Hotjar's technology, we gain a better understanding of our users' experiences (e.g. how much time users spend on which pages, which links they click, what they like and what they don't like, etc.) and this helps us to tailor our offering to our users' feedback. Hotjar uses cookies and other technologies to collect data about the behavior of our users and their devices, in particular the device's IP address (only recorded and stored in an anonymized form during your use of the website), screen size, device type (Unique Device Identifiers), information about the browser used, location (country only), and preferred language for displaying our website. Hotjar stores this information on our behalf in a pseudonymized user profile. Hotjar is contractually prohibited from selling the data collected on our behalf.

For more information, see the 'about Hotjar' section on Hotjar's help page .

Use of Google Maps
We use the function for embedding Google Maps from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland, "Google") on our website.
This feature enables the visual display of geographical information and interactive maps. Google also collects, processes, and uses data from visitors to the website when they visit pages that incorporate Google Maps.
Your data may also be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (s) 1 of the Telemedia Act (TDDDG) in conjunction with Article 6 (1) (a) of the GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) of the GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information about Google's collection and use of data, please see Google's privacy policy at https://www.google.com/privacypolicy.html . There, you can also change your settings in the Privacy Center so that you can manage and protect the data processed by Google.

Use of YouTube
We use the function for embedding YouTube videos from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “YouTube”) on our website. YouTube is an affiliated company of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”).
This feature displays videos stored on YouTube in an iFrame on the website. The "Enhanced Data Protection Mode" option is activated. This means that YouTube does not store any information about website visitors. Only when you watch a video is information about it transmitted to YouTube and stored there. Your data may be transferred to the USA. For the USA, the EU Commission has adopted an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). YouTube has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (s) 1 of the Telemedia Act (TDDDG) in conjunction with Article 6 (1) (a) of the GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) of the GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information about the collection and use of data by YouTube and Google, your rights in this regard and options for protecting your privacy, please see YouTube's privacy policy at https://www.youtube.com/t/privacy .

Use of Vimeo
We use plug-ins from Vimeo Inc. (555 West 18th Street New York, New York 10011, USA; “Vimeo”) on our website to embed videos from the “Vimeo” portal.
When you access pages of our website containing such a plug-in, a connection to Vimeo's servers is established, and the plug-in is displayed on the page by sending a message to your browser. This transmits both your IP address and information about which of our pages you have visited to Vimeo's servers.
If you are logged in to Vimeo, Vimeo assigns this information to your personal user account. When you use the plug-in functions (e.g., by starting a video by clicking the corresponding button), this information is also assigned to your Vimeo account.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Vimeo has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (s) 1 of the Telemedia Act (TDDDG) in conjunction with Article 6 (1) (a) of the GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) of the GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information on the purpose and scope of the collection and further use and processing of the data by Vimeo as well as your rights and options for protecting your privacy can be found in Vimeo's privacy policy: https://vimeo.com/privacy

Integration of the Händlerbund member logo
The Händlerbund member logo (Händlerbund eV, Kohlgartenstraße 11-13, 04315 Leipzig) is integrated into our website. When you visit our website, the browser used on your device automatically sends information to the Händlerbund eV server. This information is temporarily stored in a so-called server log file for 7 days. The following information is collected without your intervention and stored until automatically deleted:

IP address of the requesting computer,
Date and time of access,
Name and URL of the retrieved file,
Website from which access is made (referrer URL),
browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

The temporary storage of the IP address by the system is necessary to enable delivery of the website. For this purpose, the IP address must be stored for the duration of the session. Storage in log files occurs to ensure the functionality of the website. Furthermore, the data is used to optimize the website and ensure the security of the information technology systems. This data is not stored together with other personal data. The legal basis for data processing is Art. 6 (1) (f) GDPR.

Use of Google Fonts
We use Google Fonts from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website.
The data processing serves the purpose of ensuring a consistent display of fonts on our website. To load the fonts, a connection to Google servers is established when the page is accessed. Cookies may be used for this purpose. Among other things, your IP address and information about the browser you use are processed and transmitted to Google. This data is not linked to your Google account.

Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is thus committed to complying with European data protection principles.

Further information on data processing and data protection can be found at https://www.google.de/intl/de/policies/ and at https://developers.google.com/fonts/faq .

Rights of data subjects and storage period

Duration of storage
After the contract has been fully processed, the data will initially be stored for the duration of the warranty period, then in accordance with statutory retention periods, in particular those under tax and commercial law, and then deleted after the expiry of the period unless you have consented to further processing and use.

Rights of the data subject
If the legal requirements are met, you are entitled to the following rights under Articles 15 to 20 GDPR: Right to information, to rectification, to erasure, to restriction of processing, to data portability.
Furthermore, according to Art. 21 (1) GDPR, you have the right to object to processing based on Art. 6 (1) (f) GDPR and to processing for direct marketing purposes.

Right to lodge a complaint with the supervisory authority
According to Art. 77 GDPR, you have the right to complain to the supervisory authority if you believe that the processing of your personal data is unlawful.

Right of objection
If the personal data processing listed here is based on our legitimate interest pursuant to Art. 6 (1) (f) GDPR, you have the right to object to this processing at any time with future effect for reasons arising from your particular situation.
Once you have objected, the processing of the data in question will be stopped unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.

If personal data is processed for direct marketing purposes, you can object to this processing at any time by notifying us. Once you object, we will stop processing the data in question for direct marketing purposes.

last updated: 02.01.2025

Privacy Policy

contact

Legal information

Quick links

Newsletter