Privacy Policy and General Terms and Conditions
Terms and conditions Awestaa online shop
§ 1 Scope
(1) These General Terms and Conditions of Sale (hereinafter: General Terms and Conditions) apply to all contracts concluded between us via our online shop,
Awestaa, owner Sima Niyazi, Hainstraße 8, 04109 Leipzig
support@awestaa.com
and you as our customer. The General Terms and Conditions apply regardless of whether you are a consumer, entrepreneur or merchant.
(2) All agreements made between you and us in connection with the purchase contract result in particular from these sales conditions, our written order confirmation and our declaration of acceptance.
(3) The version of the General Terms and Conditions valid at the time the contract is concluded is decisive.
(4) We do not accept any differing conditions from the customer. This also applies if we do not expressly object to the inclusion.
§ 2 Conclusion of contract
(1) The presentation and promotion of items in our online shop does not constitute a binding offer to conclude a purchase contract.
(2) By submitting an order via the online shop by clicking the “order with payment” button, you are placing a legally binding order. You are bound to the order for a period of two (2) weeks after placing the order; Your right to cancel your order, which may exist under Section 3, remains unaffected by this.
(3) We will immediately confirm receipt of your order placed via our online shop by email. Such an email does not constitute a binding acceptance of the order, unless it also declares acceptance in addition to confirming receipt.
(4) A contract is only concluded when we accept your order through a declaration of acceptance or through delivery of the ordered items.
(5) We only deliver to customers who have their usual residence (billing address) in Germany and who also provide a delivery address in Germany.
(6) We reserve the right to make orders dependent on a minimum order value. You can find any minimum order value in the price information provided in our online shop.
(7) If delivery of the goods you have ordered is not possible, for example because the goods in question are not in stock, we will not issue a declaration of acceptance. In this case, a contract is not concluded. We will inform you of this immediately and immediately refund any consideration already received.
§ 3 Right of withdrawal
(1) If you are a consumer (i.e. a natural person who places the order for a purpose that cannot be attributed to your commercial or independent professional activity), you have a right of withdrawal in accordance with the statutory provisions.
(2) If you as a consumer make use of your right of withdrawal in accordance with Section 1, you must bear the regular costs of returning the goods.
(3) Otherwise, the regulations set out in detail below apply to the right of withdrawal
Right of withdrawal
Right of withdrawal
You have the right to cancel this contract within fourteen days without giving any reasons.
The cancellation period is fourteen days from the day on which you or a third party named by you who is not the carrier took possession of the goods.
To exercise your right of withdrawal, you must contact us [Awestaa, Hainstraße 8, 04109 Leipzig, support@awestaa.com ] by means of a clear statement (e.g. a letter sent by post or email) about your decision to revoke this contract. You can use the attached sample cancellation form, although this is not mandatory. You can also fill out and submit the sample cancellation form or another clear declaration electronically on our website (insert internet address). If you make use of this option, we will immediately send you confirmation (e.g. by email) of receipt of such a revocation.
In order to meet the cancellation period, it is sufficient that you send the notification of your exercise of the right of cancellation before the cancellation period expires.
Consequences of revocation
If you cancel this contract, we will have to pay you all payments we have received from you, including delivery costs (except for additional costs resulting from you choosing a method of delivery other than the cheapest standard delivery offered by us have) to be repaid immediately and at the latest within fourteen days from the day on which we received notification of your cancellation of this contract. For this repayment we use the same payment method that you used for the original transaction, unless something different was expressly agreed with you; under no circumstances will you be charged any fees as a result of this repayment. We may refuse repayment until we have received the goods back or until you have provided evidence that you have sent the goods back, whichever is the earlier.
You must deliver the goods to us or to us immediately and in any case no later than fourteen days from the day on which you notify us of your cancellation of this contract (this may include the name and address of the person authorized by you to receive the goods). to be inserted) to be returned or handed over. The deadline is met if you send the goods before the fourteen day period has expired.
You bear the direct costs of returning the goods.
You are only liable for any loss in value of the goods if this loss in value is due to the handling other than what is necessary to establish the nature, characteristics and functionality of the goods.
- End of revocation-
(4) The right of withdrawal does not apply to distance selling contracts
(a) for the delivery of goods that have been manufactured to customer specifications or that are clearly tailored to personal needs or that are not suitable for return due to their nature or that can spoil quickly or whose expiry date would be exceeded,
(b) to deliver audio or video recordings or software, provided you have unsealed the data carriers delivered.
§ 4 Delivery conditions and reservation of advance payment
(1) We are entitled to make partial deliveries if this is reasonable for you.
(2) The delivery time is approximately six ( 6 ) working days, unless otherwise agreed. It begins – subject to the regulation in paragraph 3 – with the conclusion of the contract.
(3) If there are reasonable indications of a risk of non-payment, we reserve the right to only deliver after receipt of the purchase price including shipping costs (advance payment reservation). If we make use of the advance payment reservation, we will inform you immediately. In this case, the delivery period begins with payment of the purchase price and shipping costs.
§ 5 Prices and shipping costs
(1) All prices in our online shop are gross prices including statutory sales tax and do not include any applicable shipping costs.
(2) The shipping costs are stated in our price information in our online shop. The price including sales tax and applicable shipping costs will also be displayed in the order form before you submit the order.
(3) If we fulfill your order through partial deliveries in accordance with Section 4 Paragraph 1, you will only incur shipping costs for the first partial delivery. If the partial deliveries are made at your request, we will charge shipping costs for each partial delivery.
(4) If you effectively revoke your contractual declaration in accordance with Section 3, you can, under the legal requirements, request reimbursement of costs already paid for shipping to you (shipping costs) (see Section 3 Paragraph 3 for other consequences of revocation).
§ 6 Terms of payment and offsetting and right of retention
(1) The purchase price and shipping costs must be paid within two (2) weeks of receipt of our invoice at the latest.
(2) You can, at your discretion, transfer the purchase price and shipping costs to our account specified in the online shop, give us a direct debit authorization or pay by EC/Maestro or credit card. In the case of a direct debit authorization or payment by debit/Maestro or credit card, we will debit your account at the earliest at the time specified in paragraph 1. A direct debit authorization granted also applies to further orders until revoked. We reserve the right to offer additional payment providers.
(3) You are not entitled to offset our claims unless your counterclaims have been legally established or are undisputed. You are also entitled to set off against our claims if you assert complaints about defects or counterclaims from the same purchase contract.
(4) As a buyer, you may only exercise a right of retention if your counterclaim arises from the same purchase contract.
§ 7 Retention of title
The delivered goods remain our property until the purchase price has been paid in full.
§ 8 Warranty
(1) We are liable for material or legal defects in delivered items in accordance with the applicable legal regulations. The limitation period for statutory claims for defects is two years and begins with delivery of the goods.
(2) Any seller guarantees given by us for certain items or manufacturer guarantees granted by the manufacturers of certain items occur in addition to the claims for material or legal defects within the meaning of paragraph 1. Details of the scope of such guarantees can be found in the guarantee conditions that may be attached to the items enclosed.
§ 9 Liability
(1) We are liable to you in all cases of contractual and non-contractual liability in the event of intent and gross negligence in accordance with the statutory provisions.
(2) In other cases, unless otherwise stipulated in paragraph 3, we are liable only for the breach of a contractual obligation, the fulfillment of which is essential for the proper execution of the contract and on whose compliance you as a customer can regularly rely (so-called cardinal obligation), limited to compensation for foreseeable and typical damage. In all other cases, our liability is excluded, subject to the provisions in paragraph 3.
(3) Our liability for damages resulting from injury to life, body or health and under the Product Liability Act remains unaffected by the above liability limitations and exclusions.
§ 10 Copyrights
We have copyright to all images, films and texts published in our online shop. Any use of the images, films and texts is not permitted without our express consent.
§ 11 Applicable law and place of jurisdiction
(1) The law of the Federal Republic of Germany applies, excluding the UN Convention on Contracts for the International Sale of Goods. If you placed the order as a consumer and have your habitual residence in another country at the time of your order, the application of the mandatory legal provisions of that country remains unaffected by the choice of law made in sentence 1.
(2) If you are a merchant and have your registered office in Germany at the time of the order, the exclusive place of jurisdiction is the seller's registered office, Leipzig. Otherwise, the applicable legal provisions apply to local and international jurisdiction.
(3) Dispute resolution: The EU Commission has created an internet platform for the online resolution of disputes. The platform serves as a contact point for the out-of-court settlement of disputes regarding contractual obligations arising from online sales contracts. Further information is available at the following link: http://ec.europa.eu/consumers/odr. We are neither willing nor obliged to take part in a dispute resolution procedure before a consumer arbitration board.
Data protection
––––––––––––––––––––
1) Information about the collection of personal data and contact details of the person responsible
1.1 We are pleased that you are visiting our website and thank you for your interest. Below we will inform you about how your personal data is handled when you use our website. Personal data is all data with which you can be personally identified.
1.2 The person responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Sima Niyazi, Hainstraße 8, 04157 Leipzig, Germany, email: support@awestaa.com. The person responsible for the processing of personal data is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data.
1.3 For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the person responsible), this website uses an SSL or. TLS encryption. You can recognize an encrypted connection by the string “https://” and the lock symbol in your browser bar.
2) Data collection when you visit our website
If you use our website for informational purposes only, i.e. if you do not register or otherwise provide us with information, we only collect data that your browser transmits to our server (so-called “server log files”). When you access our website, we collect the following data, which is technically necessary for us to display the website to you:
- Our visited website
- Date and time at the time of access
- Amount of data sent in bytes
- Source/reference from which you came to the page
- Browser used
- Operating system used
- IP address used (if necessary: in anonymized form)
Processing is carried out in accordance with Article 6 Paragraph 1 Letter f of the GDPR based on our legitimate interest in improving the stability and functionality of our website. The data will not be passed on or used in any other way. However, we reserve the right to subsequently check the server log files if there are concrete indications of illegal use.
3) Hosting & Content Delivery Network
Hosted by Shopify
We use the shop system of the service provider Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland (“Shopify”) for the purpose of hosting and displaying the online shop on a basis Processing on our behalf. All data collected on our website is processed on Shopify’s servers. As part of Shopify's aforementioned services, data may also be processed further on behalf of Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada, Shopify Data Processing (USA) Inc., Shopify Payments (USA) Inc .or Shopify (USA) Inc. In the event that data is transferred to Shopify Inc. in Canada, the appropriate level of data protection is guaranteed by the European Commission's adequacy decision. Further information on Shopify's data protection can be found on the following website: https://www.shopify.de/legal/datenschutz
Further processing on servers other than those mentioned above by Shopify only takes place within the scope stated below.
4) Cookies
In order to make visiting our website attractive and to enable the use of certain functions, we use cookies, which are small text files that are stored on your device. Some of these cookies are automatically deleted after you close the browser (so-called “session cookies”), while some of these cookies remain on your device for a longer period of time and enable you to save page settings (so-called “persistent cookies”). In the latter case, you can find out the storage period in the overview of the cookie settings in your web browser.
If personal data is also processed through individual cookies we use, the processing takes place in accordance with Art. 6 Para. 1 lit. b GDPR either to implement the contract, in accordance with Art. 6 Para. 1 lit in accordance with Art. 6 Para. 1 lit. f GDPR to protect our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the page visit.
You can set your browser so that you are informed about the setting of cookies and can decide individually whether to accept them or exclude the acceptance of cookies for certain cases or in general.
Please note that if you do not accept cookies, the functionality of our website may be restricted.
5) Contact us
5.1 Review reminder by Trustpilot
If you have given us your express consent to this during or after your order in accordance with Art. 6 Para. 1 lit (www.trustpilot.com) to send you a review reminder via email.
You can revoke your consent at any time by sending a message to the person responsible for data processing or to the rating platform.
5.2 Zendesk
To process customer inquiries, we use the email ticket system Zendesk, a customer service platform from Zendesk International Ltd., 55 Charlemont Place, Saint Kevin's, Dublin D02 F985, Ireland (“Zendesk”). If users of our website make contact requests by email, these are stored and organized in the ticket system to enable chronological processing and improve the service experience. Users can always see the current status of the processing of their request via the individually assigned ticket number.
Personal data as provided in the request, but in any case last name, first name and email address, is collected, transmitted to Zendesk, stored there and read exclusively for the organization of inquiries and their processing.
The legal basis for processing this data is our legitimate interest in the efficient design of our customer service, in answering your request as quickly as possible and in optimizing our service offering in accordance with Article 6 (1) (f) GDPR
We have entered into an order processing agreement with Zendesk by which we oblige Zendesk to protect our customers' data and not to pass it on to third parties.
Personal data may be transmitted to Zendesk Inc. servers in the USA. For such data transfers, Zendesk follows Binding Corporate Rules (BCR), which have been recognized by the Irish Data Protection Authority as appropriate safeguards for compliance with European data protection standards.
Your data will be deleted after your request has been processed. This is the case if it can be seen from the circumstances that the matter in question has been conclusively clarified and if there are no legal retention obligations to the contrary.
Further information about Zendesk's data protection can be found at https://www.zendesk.de/company/customers-partners/privacy-policy/.
5.3 When you contact us (e.g. via contact form or email), personal data is processed - exclusively for the purpose of processing and answering your request and only to the extent necessary for this purpose. The legal basis for processing this data is our legitimate interest in answering your request in accordance with Article 6 (1) (f) GDPR. If your contact is aimed at a contract, the additional legal basis for the processing is Article 6 (1) (b) GDPR. Your data will be deleted if the circumstances indicate that the matter in question has been conclusively clarified and provided that there are no legal retention obligations to the contrary.
6) Data processing when opening a customer account
In accordance with Article 6 Paragraph 1 Letter b of the GDPR, personal data will continue to be collected and processed to the extent necessary if you provide it to us when opening a customer account. You can find out which data is required to open an account in the input mask of the corresponding form on our website. Your customer account can be deleted at any time and can be done by sending a message to the above address of the person responsible. After your customer account has been deleted, your data will be deleted provided that all contracts concluded regarding it have been completely processed, there are no statutory retention periods to the contrary and we have no legitimate interest in further storage.
7) Use of customer data for direct advertising
7.1 Registration for our email newsletter
If you sign up for our email newsletter, we will regularly send you information about our offers. The only mandatory information for sending the newsletter is your email address. Providing further data is voluntary and is used to address you personally. To send the newsletter, we use the so-called double opt-in procedure, which ensures that you only receive the newsletter once you have expressly confirmed your consent to receive the newsletter by clicking on a verification link sent to the email address provided
By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6 Para. 1 lit. a GDPR. We store your IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your email address at a later date. The data we collect when registering for the newsletter is used strictly for a specific purpose. You can unsubscribe from the newsletter at any time using the link provided in the newsletter or by sending a message to the person responsible mentioned at the beginning. Once you have unsubscribed, your email address will be immediately deleted from our newsletter distribution list, unless you have expressly consented to further use of your data or we reserve the right to use your data beyond this, which is permitted by law and about which we inform you in this declaration.
7. 7.6 If you cancel your purchase with us before completing the order, you have the option of receiving a one-time email reminder of the contents of your virtual shopping cart.
The only mandatory information for sending this reminder is your email address. Providing further data is voluntary and may be used to address you personally. We use the so-called double opt-in procedure to send emails, which ensures that you only receive a notification once you have expressly confirmed your consent to this by clicking on a verification link sent to the email address provided.
By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6 Para. 1 lit. a GDPR to send a shopping cart reminder. We store your IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your email address at a later date. The data we collect when you register for our email notification service is used strictly for the intended purpose. You can unsubscribe from shopping cart reminders at any time by sending a message to the person responsible listed at the beginning. Once you have unsubscribed, your email address will be immediately deleted from our mailing list set up for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use your data beyond this, which is permitted by law and about which we inform you in this declaration .
8) Data processing for order processing
8.1 To the extent necessary for contract processing for delivery and payment purposes, the personal data we collect will be passed on to the commissioned transport company and the commissioned credit institution in accordance with Article 6 Paragraph 1 Letter b GDPR.
If we owe you updates for goods with digital elements or for digital products on the basis of a corresponding contract, we will process the contact details you provided when ordering (name, address, email address) in order to provide you with our legal information obligations in accordance with Art. 6 Para 1 lit. Your contact details will be used strictly for the purpose of communicating updates owed by us and will only be processed by us for this purpose to the extent that this is necessary for the respective information.
To process your order, we also work with the following service provider(s), who support us in whole or in part in the implementation of concluded contracts. Certain personal data will be transmitted to these service providers in accordance with the following information.
8.2 Transfer of personal data to shipping service providers
- DHL
If the goods are delivered by the transport service provider DHL (DHL Paket GmbH, Sträßchensweg 10, 53113 Bonn), we will provide your email address in accordance with Art. 6 Para. 1 lit. a GDPR before delivery of the goods for the purpose of coordination of a delivery date or delivery announcement to DHL, provided you have given your express consent to this in the ordering process. Otherwise, we will only pass on the name of the recipient and the delivery address to DHL for the purpose of delivery in accordance with Article 6 (1) (b) GDPR. The data will only be passed on to the extent that this is necessary for the delivery of the goods. In this case, prior coordination of the delivery date with DHL or delivery notification is not possible.
The consent can be revoked at any time with future effect from the person responsible above or from the transport service provider DHL.
- DHL Express
If the goods are delivered by the transport service provider DHL Express (DHL Express Germany GmbH, Heinrich-Brüning-Str. 5, 53113 Bonn), we will provide your email address in accordance with Art. 6 Para. 1 lit. a GDPR before Delivery of the goods to DHL Express for the purpose of agreeing a delivery date or for delivery notification, provided you have given your express consent to this in the ordering process. Otherwise, we will only pass on the name of the recipient and the delivery address to DHL Express for the purpose of delivery in accordance with Article 6 (1) (b) GDPR. The data will only be passed on to the extent that this is necessary for the delivery of the goods. In this case, prior coordination of the delivery date with DHL Express or delivery notification is not possible. Consent can be revoked at any time with future effect from the person responsible above or from the transport service provider DHL Express.
8.3 Use of payment service providers (payment services)
-Amazon Pay
If you select the payment method "Amazon Pay", payment is processed via the payment service provider Amazon Payments Europe sca, 38 avenue JF Kennedy, L-1855 Luxembourg (hereinafter: "Amazon Payments"), to whom we will pass on the information you provided during the ordering process along with the Pass on information about your order in accordance with Article 6 Paragraph 1 Letter b GDPR. Your data will be passed on exclusively for the purpose of processing payments with the payment service provider Amazon Payments and only to the extent that it is necessary for this purpose. If cookies, i.e. small text files that are stored on the device, are set when using Amazon Pay, this is done exclusively on the basis of your express consent in accordance with Art. 6 Para. 1 lit. a GDPR. This consent can be revoked at any time using the “cookie consent tool” implemented on the website. You can find further information about Amazon Payments' data protection regulations at the following internet address: https://pay.amazon.de/help/82974
-Apple Pay
If you choose the “Apple Pay” payment method from Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, the payment will be processed using the “Apple Pay” function of your device running iOS, watchOS or macOS by debiting a payment card stored with “Apple Pay”. Apple Pay uses security features built into your device's hardware and software to protect your transactions. In order to approve a payment, you must enter a code previously specified by you and verify it using the “Face ID” or “Touch ID” function of your device.
For the purpose of payment processing, the information you provided during the ordering process, along with the information about your order, will be passed on to Apple in encrypted form. Apple then encrypts this data again with a developer-specific key before the data is transmitted to the payment service provider of the payment card stored in Apple Pay to carry out the payment. Encryption ensures that only the website through which the purchase was made can access the payment details. After the payment is made, Apple sends your device account number and a transaction-specific, dynamic security code to the originating website to confirm the payment success.
If personal data is processed during the transfers described, the processing takes place exclusively for the purpose of payment processing in accordance with Article 6 (1) (b) GDPR.
Apple retains anonymized transaction information, including the approximate purchase amount, the approximate date and time, and whether the transaction was successfully completed. Anonymization completely excludes any personal reference. Apple uses the anonymized data to improve Apple Pay and other Apple products and services.
When you use Apple Pay on iPhone or Apple Watch to complete a purchase made through Safari on Mac, the Mac and the authorization device communicate over an encrypted channel on Apple's servers. Apple does not process or store any of this information in a format that can be used to identify you. You can turn off the ability to use Apple Pay on your Mac in your iPhone's settings. Go to Wallet & Apple Pay and turn off Allow Payments on Mac.
Further information on data protection with Apple Pay can be found at the following internet address: https://support.apple.com/de-de/HT203027
- Google Pay
If you choose the “Google Pay” payment method from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), the payment will be processed via the “Google Pay” application on your device with at least Android 4.4 (“KitKat”) operated mobile device with an NFC function by charging a payment card stored with Google Pay or a payment system verified there (e.g. PayPal). In order to approve a payment via Google Pay in the amount of more than €25, you must first unlock your mobile device using the verification measure that has been set up (e.g. facial recognition, password, fingerprint or pattern).
For the purpose of payment processing, the information you provided during the ordering process, along with the information about your order, will be passed on to Google. Google then transmits your payment information stored in Google Pay in the form of a unique transaction number to the originating website, which is used to verify a payment made. This transaction number does not contain any information about the real payment details of your payment methods stored with Google Pay, but is created and transmitted as a one-time valid numerical token. For all transactions via Google Pay, Google only acts as an intermediary to process the payment process. The transaction is carried out exclusively between the user and the source website by debiting the payment method stored with Google Pay.
If personal data is processed during the transfers described, the processing takes place exclusively for the purpose of payment processing in accordance with Article 6 (1) (b) GDPR.
Google reserves the right to collect, store and evaluate certain process-specific information for every transaction made via Google Pay. This includes the date, time and amount of the transaction, merchant location and description, a description of the goods or services purchased provided by the merchant, photographs that you included with the transaction, the name and email address of the seller and buyer, respectively. the sender and recipient, the payment method used, your description of the reason for the transaction and, if applicable, the offer associated with the transaction.
According to Google, this processing is carried out exclusively in accordance with Article 6 (1) (f) GDPR based on the legitimate interest in proper accounting, verification of transaction data and the optimization and functionality of the Google Pay service.
Google also reserves the right to combine the processed process data with other information that is collected and stored by Google when you use other Google services.
The Google Pay terms of use can be found here:
https://payments.google.com/payments/apis-secure/u/0/get_legal_document?ldo=0&ldt=googlepaytos&ldl=de
Further information on data protection with Google Pay can be found at the following internet address:
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de
-GoPay
If you choose a payment method from the payment service provider GoPay, the payment will be processed via the payment service provider GoPay sro, Planá 67, 370 01 Planá, Czech Republic,
to whom we pass on the information you provided during the ordering process along with the information about your order in accordance with Article 6 Paragraph 1 Letter b GDPR. Your data will be passed on exclusively for the purpose of processing payments with the payment service provider GoPay and only to the extent that it is necessary for this purpose.
- giropay
When paying via “giropay”, payment is processed via giropay GmbH, An der Welle 4, 60322 Frankfurt/Main, to whom we pass on the information you provided during the ordering process along with the information about your order. Your data will be passed on in accordance with Article 6 Paragraph 1 Letter b of the GDPR exclusively for the purpose of payment processing and only to the extent that it is necessary for this purpose. You can find further information about the data protection regulations of giropay GmbH at the following internet address: https://www.giropay.de/rechts/datenschutzerklaerung
- Klarna
If you select a Klarna payment service, payment is processed via Klarna Bank AB (publ), https://www.klarna.com/de/, Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter “Klarna”). In order to enable the payment to be processed, your personal data (first and last name, street, house number, postal code, city, gender, email address, telephone number and IP address, if applicable also the date of birth and your bank details) as well as Data related to the order (e.g. invoice amount, item, delivery method) will be passed on to Klarna for the purpose of identity and creditworthiness checks, provided that you expressly do so in accordance with Art. 6 Para. 1 lit. a GDPR as part of the ordering process have consented. You can see which credit agencies your data can be forwarded to here:
https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies
The credit report can contain probability values (so-called score values). To the extent that score values are included in the results of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. Klarna uses the information received about the statistical probability of a payment default to make a balanced decision about the establishment, implementation or termination of the contractual relationship.
You can revoke your consent at any time by sending a message to the person responsible for data processing or to Klarna. However, Klarna may still be entitled to process your personal data if this is necessary for contractual payment processing.
Your personal information will be used in accordance with the applicable data protection regulations and in accordance with the information in Klarna's data protection regulations for those affected based in Germany https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy
or for those affected based in Austria https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/privacy
treated.
-Paypal
When paying via PayPal, credit card via PayPal, direct debit via PayPal or - if offered - "purchase on account" or "payment in installments" via PayPal, we pass on your payment data to PayPal (Europe) Sarl et Cie, SCA, 22- as part of the payment processing. 24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”), further. The transfer takes place in accordance with Art. 6 Para. 1 lit. b GDPR and only to the extent that this is necessary for payment processing.
PayPal reserves the right to carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal or - if offered - "purchase on account" or "payment in installments" via PayPal. For this purpose, your payment data may be passed on to credit agencies in accordance with Article 6 Paragraph 1 Letter f of the GDPR based on PayPal's legitimate interest in determining your ability to pay. PayPal uses the result of the credit check with regard to the statistical probability of non-payment for the purpose of deciding whether to provide the respective payment method. The credit report can contain probability values (so-called score values). To the extent that score values are included in the results of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. Further data protection information, including information about the credit agencies used, can be found in PayPal's data protection declaration: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for contractual payment processing.
- Paypal checkout
This website uses PayPal Checkout, an online payment system from PayPal that consists of PayPal's own payment methods and local payment methods from third-party providers.
When paying via PayPal, credit card via PayPal, direct debit via PayPal or - if offered - "Pay later" via PayPal, we pass on your payment details to PayPal (Europe) Sarl et Cie, SCA, 22-24 Boulevard Royal, L as part of the payment processing -2449 Luxembourg (hereinafter “PayPal”), further. The transfer takes place in accordance with Art. 6 Para. 1 lit. b GDPR and only to the extent that this is necessary for payment processing.
PayPal reserves the right to carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal or – if offered – “Pay later” via PayPal. For this purpose, your payment data may be passed on to credit agencies in accordance with Article 6 Paragraph 1 Letter f of the GDPR based on PayPal's legitimate interest in determining your ability to pay. PayPal uses the result of the credit check with regard to the statistical probability of non-payment for the purpose of deciding whether to provide the respective payment method. The credit report can contain probability values (so-called score values). To the extent that score values are included in the results of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for contractual payment processing.
If you select the PayPal payment method “purchase on account”, your payment data will first be sent to PayPal to prepare the payment, after which PayPal will forward it to Ratepay GmbH, Franklinstraße 28-29, 10587 Berlin (“Ratepay”) to carry out the payment. The legal basis is Article 6 Paragraph 1 Letter b GDPR. In this case, RatePay carries out an identity and creditworthiness check on its own behalf to determine solvency in accordance with the principle mentioned above and passes your payment data to credit agencies based on the legitimate interest in determining solvency in accordance with Article 6 Paragraph 1 Letter f of the GDPR further. A list of credit agencies that Ratepay can rely on can be found here: https://www.ratepay.com/legal-payment-creditagencies/
If you use the payment method of a local third-party provider, your payment data will first be passed on to PayPal to prepare the payment in accordance with Article 6 (1) (b) GDPR. Depending on your selection of an available local payment method, PayPal will then transmit your payment data to the relevant provider in order to carry out the payment in accordance with Art. 6 Para. 1 lit. b GDPR:
- Immediately (SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany)
- iDeal (Currence Holding BV, Beethovenstraat 300 Amsterdam, Netherlands)
- giropay (Paydirekt GmbH, Stephanstr. 14-16, 60313 Frankfurt am Main
- bancontact (Bancontact Payconiq Company, Rue d'Arlon 82, 1040 Brussels, Belgium)
- blik (Polski Standard Płatności sp. z oo, ul. Czerniakowska 87A, 00-718 Warsaw, Poland)
- eps (PSA Payment Services Austria GmbH, Handelskai 92, Gate 2
1200 Vienna, Austria)
- MyBank (PRETA SAS, 40 Rue de Courcelles, F-75008 Paris, France)
- Przelewy24 (PayPro SA, Kanclerska 15A, 60-326 Poznań, Poland)
For further data protection information, please see PayPal's data protection declaration: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
- Shopify Payments
We use the payment service provider "Shopify Payments", 3rd Floor, Europa House, Harcourt Building, Harcourt Street, Dublin 2. If you choose a payment method offered via the payment service provider Shopify Payments, the payment is processed via the technical service provider Stripe Payments Europe Ltd. , 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, to whom we communicate the information you provided during the ordering process, together with the information about your order (name, address, account number, bank sort code, possibly credit card number, invoice amount, currency and transaction number) in accordance with Article 6 Paragraph 1 Letter b GDPR. Your data will only be passed on for the purpose of processing payments with Stripe Payments Europe Ltd. and only to the extent that it is necessary for this purpose. Further information about Shopify Payments’ data protection can be found at the following internet address: https://www.shopify.com/legal/privacy.
Data protection information about Stripe Payments Europe Ltd. can be found here: https://stripe.com/de/privacy
- IMMEDIATELY
If you select the payment method “SOFORT”, payment is processed via the payment service provider SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany (hereinafter “SOFORT”), to whom we will send the information you provided during the ordering process, along with the information about your order in accordance with Art. 6 Paragraph 1 Letter b GDPR. Sofort GmbH is part of the Klarna Group (Klarna Bank AB (publ), Sveavägen 46, 11134 Stockholm, Sweden). Your data will be passed on exclusively for the purpose of processing payments with the payment service provider SOFORT and only to the extent that it is necessary for this purpose. You can find further information about SOFORT's data protection regulations at the following internet address: https://www.klarna.com/sofort/datenschutz.
-Stripes
If you choose a payment method from the payment service provider Stripe, the payment will be processed via the payment service provider Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, to whom we will send your information and the information you provided during the ordering process about your order (name, address, account number, bank sort code, possibly credit card number, invoice amount, currency and transaction number) in accordance with Art. 6 Para. 1 lit. b GDPR. Further information about Stripe's data protection can be found at the URL https://stripe.com/de/privacy#translation.
Stripe reserves the right to carry out a credit check based on mathematical and statistical procedures in order to protect the legitimate interest in determining the user's solvency. Stripe may transmit the personal data required for a credit check and received as part of payment processing to selected credit agencies, which Stripe will disclose to users upon request. The credit report can contain probability values (so-called score values). To the extent that score values are included in the results of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. Stripe uses the result of the credit check with regard to the statistical probability of payment default for the purpose of deciding on the right to use the selected payment method.
You can object to this processing of your data at any time by sending a message to Stripe or the commissioned credit agencies.
However, Stripe may continue to be entitled to process your personal data if this is necessary to process payments in accordance with the contract.
9) Online marketing
Facebook Pixel for creating custom audiences (with Cookie Consent Tool)
Our online offering uses the so-called “Facebook pixel” from the social network Facebook, which is operated by Meta Platforms Ireland Limited, 4 Grand Canal Quare, Dublin 2, Ireland (“Facebook”).
If a user clicks on an advertisement we have placed on Facebook, an addition is added to the URL of our linked page by Facebook Pixel. If our site allows sharing data with Facebook via pixels, this URL parameter is written into the user's browser via a cookie, which our linked site sets itself. This cookie is then read by Facebook Pixel and enables the data to be forwarded to Facebook.
With the help of the Facebook pixel, Facebook is able to determine the visitors to our online offering as a target group for the display of advertisements (so-called “Facebook Ads”). Accordingly, we use the Facebook pixel to only show the Facebook ads we place to those Facebook users who have shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products) based on the information they visit websites) which we transmit to Facebook (so-called “Custom Audiences”). With the help of the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interest of the users and do not appear annoying. This allows us to further evaluate the effectiveness of Facebook advertisements for statistical and market research purposes by tracking whether users were redirected to our website after clicking on a Facebook advertisement (so-called “conversion”).
The data collected is anonymous to us, so it does not allow us to draw any conclusions about the identity of the user. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes in accordance with the Facebook data usage guidelines (https://www.facebook.com/about/privacy/). The data can enable Facebook and its partners to place advertisements on and outside of Facebook.
The data processing associated with the use of the Facebook Pixel only takes place with your express consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your consent at any time with future effect by deactivating this service in the “cookie consent tool” provided on the website.
10) Web analytics services
Google (Universal) Analytics
This website uses Google (Universal) Analytics, a web analysis service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). Google (Universal) Analytics uses so-called “cookies”, which are text files that are stored on your device and enable your use of the website to be analyzed. The information generated by the cookie about your use of this website (including the shortened IP address) is usually transmitted to a Google server and stored there; this may also be transmitted to the servers of Google LLC. come to the USA.
This website uses Google (Universal) Analytics exclusively with the “_anonymizeIp()” extension, which ensures anonymization of the IP address by shortening it and excludes any direct reference to a person. Through the extension, your IP address will be shortened by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google LLC server in the USA and shortened there. On our behalf, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide us with other services relating to website activity and internet usage. The IP address transmitted by your browser as part of Google (Universal) Analytics is not merged with other Google data.
Google Analytics also enables the creation of statistics with statements about the age, gender and interests of site visitors based on an evaluation of interest-based advertising and with the use of third-party information via a special function, the so-called “demographic characteristics”. This allows the definition and differentiation of user groups of the website for the purpose of target group-optimized targeting of marketing measures. However, records collected using “demographic characteristics” cannot be assigned to a specific person.
Details about the processing initiated by Google Analytics and how Google handles data from websites can be found here: https://policies.google.com/technologies/partner-sites
All processing described above, in particular the setting of Google Analytics cookies to read information on the device used, will only be carried out if you have given us your express consent to this in accordance with Article 6 Paragraph 1 Letter a of the GDPR. Without this consent, Google Analytics will not be used during your visit to the site.
You can revoke your consent at any time with future effect. To exercise your revocation, please deactivate this service in the “cookie consent tool” provided on the website. We have concluded an order processing agreement with Google for the use of Google Analytics, which obliges Google to protect the data of our site visitors and not to pass it on to third parties.
For the transfer of data from the EU to the USA, Google relies on so-called standard data protection clauses of the European Commission, which are intended to ensure compliance with the European data protection level in the USA.
Further information about Google (Universal) Analytics can be found here: https://policies.google.com/privacy?hl=de&gl=de
11) Retargeting/remarketing/recommendation advertising
Google Ads Remarketing
Our website uses the functions of Google Ads Remarketing, with which we advertise this website in Google search results and on third-party websites. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). For this purpose, Google sets a cookie in the browser of your device, which automatically enables interest-based advertising using a pseudonymous cookie ID and based on the pages you visit. Any further data processing will only take place if you have agreed to Google that your internet and app browser history will be linked by Google to your Google account and that information from your Google account will be used to personalize ads that you display on the web regard. In this case, if you are logged in to Google while visiting our website, Google will use your data together with Google Analytics data to create and define target group lists for cross-device remarketing. To do this, Google temporarily links your personal data with Google Analytics data to form target groups. As part of the use of Google Ads Remarketing, personal data may also be transmitted to the servers of Google LLC. come to the USA.
Details about the processing initiated by Google Ads Remarketing and how Google handles data from websites can be found here: https://policies.google.com/technologies/partner-sites
You can permanently object to the setting of cookies by Google Ads Remarketing by downloading and installing the Google browser plug-in available at the following link:
https://support.google.com/ads/answer/7395996?
You can find further information and the data protection regulations regarding advertising and Google here:
https://www.google.com/policies/technologies/ads/
All processing described above, in particular the setting of cookies to read information on the device used, will only be carried out if you have given us your express consent to do so in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time with future effect by deactivating this service in the “cookie consent tool” provided on the website.
Pinterest retargeting pixels
This website contains a pixel (Pinterest tag) from Pinterest Europe Ltd. (Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland (“Pinterest”) integrated. With the help of the pixel, information about the surfing behavior of website visitors can be collected, stored and evaluated in a pseudonymized form. The information can be identified by the user with the help of additional information that Pinterest has stored about the user, for example due to the ownership of an account on the social network "Pinterest". Pinterest analyzes surfing behavior using an algorithm and can then provide targeted product recommendations as personalized advertising banners on the user's Pinterest account Display. Pinterest can also combine the information collected via the pixel with other information that Pinterest has collected via other websites and/or in connection with the use of the social network “Pinterest”, and thus create pseudonymized usage profiles. In no case can However, the information collected is used to personally identify visitors to this website.
All processing described above, in particular the setting of cookies to read information on the device used, will only be carried out if you have given us your express consent to do so in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time with future effect by deactivating this service in the “cookie consent tool” provided on the website.
Snap Pixel (Snapchat)
This website uses the “Snapchat Pixel”, a tracking technology from the Snapchat social network from Snap Inc., 63 Market Street, Venice, CA 90291, USA (“Snapchat”).
If you have come to our website from an advertisement on Snapchat, we will place a cookie on your computer that interacts with JavaScript code that is also implemented by Snapchat. Cookies are small text files that are stored on your device.
If the user is redirected to pages on this website from an ad on Snapchat, the pixel records certain user actions predefined by us and can track them (e.g. completed transactions, leads, search queries on the website, views of product pages). When such an action is carried out, your browser sends an HTTP request from the cookie to the Snapchat server via the Snapchat pixel, with which certain information about the action (including type of action, time, browser type of the device) is transmitted.
Through this transmission, Snapchat can create statistics about usage behavior on our website after an advertisement has been forwarded, which we use to optimize our offering. However, we do not receive any information that can be used to personally identify users.
All processing described above, in particular the setting of cookies to read information on the device used, will only be carried out if you have given us your express consent to do so in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time with future effect by deactivating this service in the “cookie consent tool” provided on the website. We have concluded a data processing agreement with Snapchat for the use of the Snapchat Pixel, which can be viewed at https://www.snap.com/es/terms/data-processing-agreement, which obliges Snapchat to: To protect the data of our site visitors and not to pass it on to third parties. Snapchat generally transmits collected information outside the European Economic Area and relies on so-called standard data protection clauses of the European Commission, which are intended to ensure compliance with European data protection levels.
TikTok pixels
This website uses the “TikTok Pixel”, a tracking technology from the social network “TikTok” from TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland (“TikTok”).
With the help of cookies (small text files that are stored on the device used), information about surfing behavior on our website is collected in a pseudonymized form, transmitted to TikTok, stored there and evaluated in order to then enable interest-based and personalized product recommendations to be displayed on TikTok. The subject of the information collected and processed pseudonymously is the device ID, the device type, time stamp, the operating system used and the IP address. The information can be assigned to the user using additional information that TikTok has stored about the user, for example due to the ownership of an account on the social network “TikTok”. TikTok can also combine the information collected via the pixel with other information that TikTok has collected via other websites and/or in connection with the use of the social network “TikTok” and thus create pseudonymized usage profiles. Under no circumstances can the information collected be used to personally identify visitors to this website.
The TikTok Pixel also allows us to track the effectiveness of advertisements on TikTok. If the user is redirected to pages on this website by an ad on TikTok and the cookies have not yet expired, the pixel records certain user actions predefined by us and can track them (e.g. completed transactions, leads, search queries on the website, views of product pages). When carrying out such an action, your browser sends an HTTP request from the cookie to the TikTok server via the TikTok pixel, which transmits certain information about the action. Through this transmission, TikTok can create statistics about usage behavior on our website after being redirected from a TikTok ad, which we use to optimize our offering.
All processing described above, in particular the setting of cookies to read information on the device used, will only be carried out if you have given us your express consent to do so in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time with future effect by deactivating this service in the “cookie consent tool” provided on the website. We have concluded an order processing agreement with TikTok for the use of the TikTok Pixel, which obliges TikTok to protect the data of our site visitors and not to pass it on to third parties. TikTok generally transmits collected information outside the European Economic Area and relies on so-called standard data protection clauses of the European Commission, which are intended to ensure compliance with European data protection levels.
12) Page functionalities
12.1 Use of YouTube videos
This website uses the YouTube embedding function to display and play videos from the provider “Youtube”, which belongs to Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).
The extended data protection mode is used here, which, according to the provider, only starts saving user information when the video(s) are played. If the playback of embedded YouTube videos is started, the provider “YouTube” uses cookies to collect information about user behavior. According to information from “YouTube”, these serve, among other things, to record video statistics, improve user-friendliness and prevent abusive behavior. If you are logged in to Google, your data will be assigned directly to your account when you click on a video. If you do not want it to be associated with your YouTube profile, you must log out before activating the button. You have the right to object to the creation of these user profiles; to exercise this you must contact YouTube. When using YouTube, personal data may also be transmitted to the servers of Google LLC. come to the USA.
Regardless of whether the embedded videos are played, a connection to the Google network is established every time this website is accessed, which can trigger further data processing operations without our influence.
All processing described above, in particular the reading of information on the device used via the tracking pixel, will only be carried out if you have given us your express consent to this in accordance with Article 6 Paragraph 1 Letter a of the GDPR. Without this consent, YouTube videos will not be used during your visit to the site.
You can revoke your consent at any time with future effect. To exercise your revocation, please deactivate this service in the “cookie consent tool” provided on the website using alternative options notified to you on the website.
Further information on data protection at “Youtube” can be found in the YouTube terms of use at https://www.youtube.com/static?template=terms and in Google’s data protection declaration at https://www.google.de/intl/ de/policies/privacy
12.2 - Google Meet
We use the “Google Meet” service from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter “Google Meet”) to hold online meetings, video conferences and/or webinars.
When using Google Meet, different data is processed. The extent of the data processed depends on what data you provide before or during participation in an online meeting, video conference or webinar. When using Google Meet, data from communication participants is processed and stored on Google servers. This data may include, in particular, your registration data (name, email address, telephone (optional) and password) and meeting data (topic, participant IP address, device information, description (optional)). In addition, visual and auditory contributions from participants, as well as voice input, can be processed in chats. This may also result in a transmission to the Google LLC servers. come to the USA.
When processing personal data that is necessary to fulfill a contract with you (this also applies to processing operations that are necessary to carry out pre-contractual measures), Art. 6 Para. 1 lit. b GDPR serves as the legal basis. If you have given us your consent to process your data, the processing will be carried out on the basis of Article 6 Paragraph 1 Letter a GDPR. Consent given can be revoked at any time with future effect.
Furthermore, the legal basis for data processing when conducting online meetings, video conferences or webinars is our legitimate interest in accordance with Article 6 (1) (f) GDPR in the effective implementation of the online meeting, webinar or video conference. Further information on data usage by Google Meet can be found in Google's data protection regulations at https://www.google.de/policies/privacy/
- Microsoft Teams
We use the “Microsoft Teams” service from Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399 USA (hereinafter “Microsoft Teams”) to conduct online meetings, video conferences and/or webinars.
When using Microsoft Teams, different data is processed. The extent of the data processed depends on what data you provide before or during participation in an online meeting, video conference or webinar. When using Microsoft Teams, data from communication participants is processed and stored on Microsoft Teams servers. This data may include, in particular, your registration data (name, email address, telephone (optional) and password) and meeting data (topic, participant IP address, device information, description (optional)). In addition, visual and auditory contributions from participants, as well as voice input, can be processed in chats.
When processing personal data that is necessary to fulfill a contract with you (this also applies to processing operations that are necessary to carry out pre-contractual measures), Art. 6 Para. 1 lit. b GDPR serves as the legal basis. If you have given us your consent to process your data, the processing will be carried out on the basis of Article 6 Paragraph 1 Letter a GDPR. Consent given can be revoked at any time with future effect.
Furthermore, the legal basis for data processing when conducting online meetings, video conferences or webinars is our legitimate interest in accordance with Article 6 (1) (f) GDPR in the effective implementation of the online meeting, webinar or video conference. Further information on data usage by Microsoft Teams can be found in the Microsoft Teams data protection declaration at https://privacy.microsoft.com/de-de/privacystatement
- Zoom
We use the “Zoom” service from Zoom Video Communications Inc., 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA (hereinafter “Zoom”) to conduct online meetings, video conferences and/or webinars.
When using Zoom, different data is processed. The extent of the data processed depends on what data you provide before or during participation in an online meeting, video conference or webinar. When using Zoom, data from communication participants is processed and stored on Zoom servers. This data may include, in particular, your registration data (name, email address, telephone (optional) and password) and meeting data (topic, participant IP address, device information, description (optional)). In addition, visual and auditory contributions from participants, as well as voice input, can be processed in chats.
When processing personal data that is necessary to fulfill a contract with you (this also applies to processing operations that are necessary to carry out pre-contractual measures), Art. 6 Para. 1 lit. b GDPR serves as the legal basis. If you have given us your consent to process your data, the processing will be carried out on the basis of Article 6 Paragraph 1 Letter a GDPR. Consent given can be revoked at any time with future effect.
Furthermore, the legal basis for data processing when conducting online meetings, video conferences or webinars is our legitimate interest in accordance with Article 6 (1) (f) GDPR in the effective implementation of the online meeting, webinar or video conference. Further information on Zoom's use of data can be found in Zoom's privacy policy at https://zoom.us/docs/de-de/privacy-and-legal.html
12.3 Online applications via a form
On our website we offer those interested in a job the opportunity to apply online using a corresponding form. Inclusion in the application process requires that applicants provide us with all the personal data required for a well-founded and informed assessment and selection via the form.
The required information includes general information about the person (name, address, telephone or electronic contact option) as well as performance-specific evidence of the qualifications required for a position. Health-related information may also be required, which must be given special consideration under labor and social law in the interest of the applicant's social protection.
When you send the form, the applicant data is transmitted to us in encrypted form in accordance with the state of the art, stored by us and evaluated exclusively for the purpose of processing the application.
The legal basis for this processing is generally Art. 6 Para. 1 lit. b GDPR (for processing in Germany in conjunction with Section 26 Para. 1 BDSG), in the sense of which going through the application process is considered to be the initiation of an employment contract.
If special categories of personal data within the meaning of Art. 9 Para. 1 GDPR (e.g. health data such as information about severely disabled status) are requested from applicants as part of the application process, processing takes place in accordance with Art. 9 Para. 2 lit. b. GDPR, so that we can exercise the rights under labor law and social security and social protection law and fulfill our obligations in this regard.
Cumulatively or alternatively, the processing of special categories of data may also be based on Article 9 Paragraph 1 Letter h of the GDPR if it is for the purposes of preventive health care or occupational medicine, for assessing the applicant's ability to work, for medical diagnostics, care or Treatment is carried out in the health or social sector or for the management of systems and services in the health or social sector.
If an applicant is not selected in the course of the evaluation described above or if an applicant withdraws their application prematurely, the data submitted in the form will be deleted after a corresponding notification at the latest after 6 months. This deadline is based on our legitimate interest in answering any follow-up questions regarding the application and, if necessary, in being able to meet our obligations to provide evidence under the regulations on equal treatment of applicants.
In the event of a successful application, the data provided will be further processed on the basis of Article 6 Paragraph 1 Letter b GDPR (for processing in Germany in conjunction with Section 26 Paragraph 1 BDSG) for the purposes of carrying out the employment relationship.
12.4 Applications for job advertisements via email
We advertise currently vacant positions in a separate section on our website, for which interested parties can apply by email to the contact address provided.
Inclusion in the application process requires that applicants provide us with all the personal data required for a well-founded and informed assessment and selection by email along with the application.
The required information includes general information about the person (name, address, telephone or electronic contact option) as well as performance-specific evidence of the qualifications required for a position. Health-related information may also be required, which must be given special consideration under labor and social law in the interest of the applicant's social protection.
Which components an application must contain in individual cases in order to be considered and in which form these components must be sent by email can be found in the respective job advertisement.
After receipt of the application sent using the email contact address provided, the applicant data will be stored by us and evaluated exclusively for the purpose of processing the application. For questions that arise during processing, we use either the email address provided by the applicant with their application or a telephone number provided, at our discretion.
The legal basis for this processing, including contacting us for queries, is generally Article 6 Paragraph 1 Letter b GDPR (for processing in Germany in conjunction with Section 26 Paragraph 1 BDSG), in the sense of which going through the application process is considered to be the initiation of an employment contract.
If special categories of personal data within the meaning of Art. 9 Para. 1 GDPR (e.g. health data such as information about severely disabled status) are requested from applicants as part of the application process, processing takes place in accordance with Art. 9 Para. 2 lit. b. GDPR, so that we can exercise the rights under labor law and social security and social protection law and fulfill our obligations in this regard.
Cumulatively or alternatively, the processing of special categories of data may also be based on Article 9 Paragraph 1 Letter h of the GDPR if it is for the purposes of preventive health care or occupational medicine, for assessing the applicant's ability to work, for medical diagnostics, care or Treatment is carried out in the health or social sector or for the management of systems and services in the health or social sector.
If the evaluation described above does not result in an applicant being selected or if an applicant withdraws their application prematurely, the data transmitted by email as well as all electronic correspondence, including the original application email, will be deleted after a corresponding notification at the latest after 6 months. This deadline is based on our legitimate interest in answering any follow-up questions regarding the application and, if necessary, in being able to meet our obligations to provide evidence under the regulations on equal treatment of applicants.
In the event of a successful application, the data provided will be further processed on the basis of Article 6 Paragraph 1 Letter b GDPR (for processing in Germany in conjunction with Section 26 Paragraph 1 BDSG) for the purposes of carrying out the employment relationship.
12.5 - Best Currency Converter
This website uses the “Best Currency Converter” service provided by Grizzly Apps SRL, Str. Muresului No. 7 Bloc E23, Scara B, Apartament 15, Brasov, Romania (“Best Currency Converter”). Based on our legitimate interest in displaying prices in the local currency of your location, Best Currency Converter collects your IP address in accordance with Art. 6 Para. 1 lit. f GDPR and evaluates it in order to adapt price displays on the website to your location. The IP address is not stored permanently. Furthermore, after the initial currency adjustment, Best Currency Converter sets a functional cookie in the browser of the device used to save the currency setting for the duration of a session. At the end of this session, the cookie is automatically deleted.
Further information about Best Currency Converter's privacy policy can be found at https://currency.grizzlyapps.com/privacy-policy
12.6 - Google Web Fonts
This site uses so-called web fonts for the uniform display of fonts, which are provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). When you access a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.
For this purpose, the browser you use must connect to Google's servers. This may also result in personal data being transmitted to the Google LLC servers. come to the USA. In this way, Google becomes aware that our website was accessed via your IP address. The processing of personal data in the course of contacting the font provider will only be carried out if you have given us your express consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your consent at any time with future effect by deactivating this service in the “cookie consent tool” provided on the website. If your browser does not support web fonts, your computer will use a standard font.
Further information about Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google's privacy policy: https://www.google.com/policies/privacy/
12.7 Shopsync for Shopify
This website uses the Shopify app “Shopsync” from ShopSync LLC, PO Box 252, Jefferson City, TN 37760, USA.
With the help of ShopSync, the newsletter service “Mailchimp” is synchronized with our Shopify account in such a way that, on the one hand, updates to Mailchimp email lists (e.g. an opt-out of a newsletter recipient) are also automatically stored on Shopify and, on the other hand New contact data generated through contract conclusions on Shopify are automatically transferred to Mailchimp's email lists.
In the former case, data processing takes place in accordance with Article 6 Paragraph 1 Letter f of the GDPR on the basis of our legitimate interest in the effective and cross-system maintenance of the profiles of advertising recipients and the efficient consideration of legally significant status changes.
In the second case, exclusively on the basis of the user's express consent in accordance with Article 6 Para. 1 lit (purchase amount, time and date of purchase) transferred to Mailchimp by ShopSync.
Data transferred in this way will not be saved or retained by ShopSync after synchronization. All information synced between Shopify and Mailchimp is transferred using Secure Socket Layer (SSL) technology, and all transferred information remains encrypted during the sync process.
The synchronization process requires the transfer of information over a secure connection to servers hosted by Amazon Web Services in the United States.
Further data protection information about ShopSync can be found here: https://shopsync.io/privacy-policy
13) Tools and miscellaneous
- DATEV
To carry out the accounting, we use the cloud-based accounting software from DATEV eG, Paumgartnerstr. 6-14, 90429 Nuremberg (“DATEV”).
DATEV processes incoming and outgoing invoices as well as our company's bank transactions in order to automatically record invoices, match them to the transactions and create financial accounting from them in a semi-automated process.
If personal data is also processed, the processing is carried out in accordance with Article 6 Paragraph 1 Letter f of the GDPR on the basis of our legitimate interest in the efficient organization and documentation of our business processes.
Further information about DATEV, the automated processing of data and the data protection regulations can be found at https://www.datev.de/web/de/m/ueber-datev/datenschutz/
-PayJoe
To carry out the accounting, we use the “PayJoe” service from NetConnections GmbH, Jesinger Str. 52, 73230 Kirchheim unter Teck (“PayJoe”). PayJoe acts as an interface between the payment service providers used and our accounting software by processing individual transactions from the payment service providers and enriching them with receipt data. Incoming payments, refunds, fees and payout amounts from payment service providers can be automatically recorded and processed in the accounting software used. PayJoe also enables physical or digital incoming invoices to be transmitted automatically and in the correct format to the accounting software used for recording there.
If personal data is also processed in these processes, the processing is carried out in accordance with Article 6 Paragraph 1 Letter f of the GDPR on the basis of our legitimate interests in the efficient organization and documentation of our business transactions as well as in appropriate and complete accounting processing.
We have concluded an order processing agreement with NetConnections GmbH, the operator of PayJoe, with which we oblige the company to protect our customers' data and not to pass it on to third parties.
Further information about PayJoe's data protection regulations can be found at https://www.payjoe.de/datenschutzerklaerung.html
14) Rights of the person concerned
14.1 The applicable data protection law grants you the following data subject rights (rights of information and intervention) towards the person responsible with regard to the processing of your personal data, whereby reference is made to the legal basis listed for the respective exercise requirements:
- Right to information in accordance with Art. 15 GDPR;
- Right to rectification in accordance with Art. 16 GDPR;
- Right to deletion in accordance with Art. 17 GDPR;
- Right to restriction of processing in accordance with Art. 18 GDPR;
- Right to information in accordance with Art. 19 GDPR;
- Right to data portability in accordance with Art. 20 GDPR;
- Right to revoke consent given in accordance with Art. 7 Para. 3 GDPR;
- Right to complain in accordance with Art. 77 GDPR.
14.2 RIGHT TO OBJECT
IF WE PROCESS YOUR PERSONAL DATA AS PART OF A BALANCE OF INTERESTS BASED ON OUR OVERWHELMING LEGITIMATE INTEREST, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO THIS PROCESSING WITH EFFECT FOR THE FUTURE FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION.
IF YOU USE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE AFFECTED DATA. HOWEVER, FURTHER PROCESSING IS RESERVED IF WE CAN PROOF COMPLEX REASONS FOR THE PROCESSING THAT ARE worthy of protection, which OUTWEIGH YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FUNDAMENTAL FREEDOMS, OR IF THE PROCESSING SERVES THE ASSERTMENT, EXERCISE OR DEFENSE OF LEGAL CLAIMS.
IF YOUR PERSONAL DATA IS PROCESSED BY US FOR DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING. YOU MAY EXERCISE YOUR OPT-OUT AS DESCRIBED ABOVE.
IF YOU USE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE AFFECTED DATA FOR DIRECT ADVERTISING PURPOSES.
15) Duration of storage of personal data
The duration of storage of personal data is determined based on the respective legal basis, the purpose of processing and - if relevant - additionally based on the respective legal retention period (e.g. commercial and tax law retention periods).
When processing personal data on the basis of express consent in accordance with Article 6 (1) (a) GDPR, this data will be stored until the person concerned revokes their consent.
If there are statutory retention periods for data that are processed within the framework of legal or transaction-like obligations on the basis of Art. 6 Para. 1 lit and/or we have no legitimate interest in further storage.
When processing personal data on the basis of Article 6 Paragraph 1 Letter f of the GDPR, this data will be stored until the data subject exercises his or her right to object in accordance with Article 21 Paragraph 1 of the GDPR, unless we can provide compelling legitimate reasons provide evidence for the processing that outweighs the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.
When processing personal data for the purpose of direct advertising on the basis of Article 6 Paragraph 1 Letter f of the GDPR, this data will be stored until the person concerned exercises their right to object in accordance with Article 21 Paragraph 2 of the GDPR.
Unless otherwise stated in the other information in this declaration about specific processing situations, stored personal data will be deleted when they are no longer necessary for the purposes for which they were collected or otherwise processed.