Privacy Policy / GDPR

Personal data (usually referred to as "data" in the following) will only be processed by us to the extent necessary and for the purpose of providing a functional and user-friendly website, including its contents and the services offered there.

 

According to art. 4 point 1. Regulation (EU) 2016/679, i.e. the Basic Data Protection Regulation (hereinafter referred to as the "DSGVO"), shall be deemed to be "processing" any transaction carried out with or without the aid of automated procedures or any such series of transactions in connection with personal data, such as the collection, collection, organisation, sorting, storage, adaptation or modification, reading, querying, use, disclosure by transmission, dissemination or any other form of provision, comparison or linking, restriction, deletion or destruction.

 

With the following data protection declaration we inform you in particular about the type, scope, purpose, duration and legal basis of the processing of personal data, insofar as we decide either alone or together with others about the purposes and means of the processing. In addition, we inform you below about the third-party components we use for optimisation purposes and to increase the quality of use, insofar as third parties process data as a result of this on their own responsibility.

 

Our privacy policy is structured as follows:

 

I. Information about us as responsible persons
II. rights of users and persons concerned
III. Information on data processing

I. Information about us as responsible persons

Responsible provider of this website in the sense of data protection law is:

Thomas Schostok, Isenbergstraße 20, 45130 Essen, Germany, E-Mail: ths@ths.nu

II. rights of users and persons concerned

With regard to the data processing to be described in more detail below, users and data subjects have the right

  • to confirmation of whether data concerning them is being processed, information about the data being processed, further information about the nature of the data processing, and copies of the data (cf. also Art. 15 GDPR);
  • to correct or complete incorrect or incomplete data (cf. also Art. 16 GDPR);
  • to the immediate deletion of data concerning them (cf. also Art. 17 DSGVO), or, alternatively, if further processing is necessary as stipulated in Art. 17 Para. 3 GDPR, to restrict said processing per Art. 18 GDPR;
  • to receive copies of the data concerning them and/or provided by them and to have the same transmitted to other providers/controllers (cf. also Art. 20 GDPR);
  • to file complaints with the supervisory authority if they believe that data concerning them is being processed by the controller in breach of data protection provisions (see also Art. 77 GDPR).

In addition, the controller is obliged to inform all recipients to whom it discloses data of any such corrections, deletions, or restrictions placed on processing the same per Art. 16, 17 Para. 1, 18 GDPR. However, this obligation does not apply if such notification is impossible or involves a disproportionate effort. Nevertheless, users have a right to information about these recipients.

Likewise, under Art. 21 GDPR, users and data subjects have the right to object to the controller's future processing of their data pursuant to Art. 6 Para. 1 lit. f) GDPR. In particular, an objection to data processing for the purpose of direct advertising is permissible.

 

III. Information on data processing

Your data processed when using our website will be deleted or blocked as soon as the purpose of storage ceases to apply, the deletion of the data does not conflict with any legal storage obligations and no other information on individual processing procedures is provided below.

 

SERVER DATA
For technical reasons, the following data sent by your internet browser to us or to our server provider will be collected, especially to ensure a secure and stable website: These server log files record the type and version of your browser, operating system, the website from which you came (referrer URL), the webpages on our site visited, the date and time of your visit, as well as the IP address from which you visited our site (if applicable: in anonymous form).

The data thus collected will be temporarily stored, but not in association with any other of your data.

The basis for this storage is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the improvement, stability, functionality, and security of our website.

The data will be deleted within no more than seven days, unless continued storage is required for evidentiary purposes. In which case, all or part of the data will be excluded from deletion until the investigation of the relevant incident is finally resolved.

 

COOKIES

a) Session cookies
We use cookies on our website. Cookies are small text files or other storage technologies stored on your computer by your browser. These cookies process certain specific information about you, such as your browser, location data, or IP address.  

This processing makes our website more user-friendly, efficient, and secure, allowing us, for example, to display our website in different languages or to offer a shopping cart function.

The legal basis for such processing is Art. 6 Para. 1 lit. b) GDPR, insofar as these cookies are used to collect data to initiate or process contractual relationships.

If the processing does not serve to initiate or process a contract, our legitimate interest lies in improving the functionality of our website. The legal basis is then Art. 6 Para. 1 lit. f) GDPR.

When you close your browser, these session cookies are deleted.

b) Third-party cookies
If necessary, our website may also use cookies from companies with whom we cooperate for the purpose of advertising, analyzing, or improving the features of our website.

Please refer to the following information for details, in particular for the legal basis and purpose of such third-party collection and processing of data collected through cookies.

c) Disabling cookies
You can refuse the use of cookies by changing the settings on your browser. Likewise, you can use the browser to delete cookies that have already been stored. However, the steps and measures required vary, depending on the browser you use. If you have any questions, please use the help function or consult the documentation for your browser or contact its maker for support. Browser settings cannot prevent so-called flash cookies from being set. Instead, you will need to change the setting of your Flash player. The steps and measures required for this also depend on the Flash player you are using. If you have any questions, please use the help function or consult the documentation for your Flash player or contact its maker for support – if you still use this old technology. If you prevent or restrict the installation of cookies, not all of the functions on our site may be fully usable.

 

SERVER LOG FILES

For technical reasons, the following data sent by your internet browser to us or to our server provider will be collected, especially to ensure a secure and stable website: These server log files record the type and version of your browser, operating system, the website from which you came (referrer URL), the webpages on our site visited, the date and time of your visit, as well as the IP address from which you visited our site.

The data thus collected will be temporarily stored, but not in association with any other of your data.

The basis for this storage is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the improvement, stability, functionality, and security of our website.

The data will be deleted within no more than seven days, unless continued storage is required for evidentiary purposes. In which case, all or part of the data will be excluded from deletion until the investigation of the relevant incident is finally resolved. According to the current state of knowledge, it is technically almost impossible to prevent the creation of these server-logo files. So please.

SSL ENCRYPTION

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and the lock symbol in your browser line. If SSL encryption is enabled, the information you provide to us cannot be read by third parties.

OBJECTION ADVERTISING EMAILS

The use of contact data published within the scope of the imprint obligation to send advertising and information material that has not been expressly requested is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, such as spam e-mails.

ORDER PROCESSING
The data you submit when ordering goods and/or services from us will have to be processed in order to fulfill your order. Please note that orders cannot be processed without providing this data.

The legal basis for this processing is Art. 6 Para. 1 lit. b) GDPR.

After your order has been completed, your personal data will be deleted, but only after the retention periods required by tax and commercial law.

In order to process your order, we will share your data with the shipping company responsible for delivery to the extent required to deliver your order and/or with the payment service provider to the extent required to process your payment.

The legal basis for the transfer of this data is Art. 6 Para. 1 lit. b) GDPR.
The email and phone number will only be transferred to a shipping company, if the delivery address is OUTSIDE the EU and not participating under the GDPR of the EU.

Customer account/registration
If you create a customer account with us via our website, we will use the data you entered during registration (e.g. your name, your address, or your email address) exclusively for services leading up to your potential placement of an order or entering some other contractual relationship with us, to fulfill such orders or contracts. hose data that are absolutely necessary for delivery or order processing will be passed on to third party service providers. As soon as the storage of your data is no longer necessary or required by law, it will be deleted.

During the registration process, your consent will be obtained for this processing of your data, with reference made to this privacy policy. The data collected by us will be used exclusively to provide your customer account. 

If you give your consent to this processing, Art. 6 Para. 1 lit. a) GDPR is the legal basis for this processing.

If the opening of the customer account is also intended to lead to the initiation of a contractual relationship with us or to fulfill an existing contract with us, the legal basis for this processing is also Art. 6 Para. 1 lit. b) GDPR.

You may revoke your prior consent to the processing of your personal data at any time under Art. 7 Para. 3 GDPR with future effect. All you have to do is inform us that you are revoking your consent.

The data previously collected will then be deleted as soon as processing is no longer necessary. However, we must observe any retention periods required under tax and commercial law.

CONTACT
If you contact us via email or the contact form, the data you provide will be used for the purpose of processing your request. We must have this data in order to process and answer your inquiry; otherwise we will not be able to answer it in full or at all.

The legal basis for this data processing is Art. 6 Para. 1 lit. b) DSGVO.

Your data will be deleted once we have fully answered your inquiry and there is no further legal obligation to store your data, such as if an order or contract resulted therefrom.


SELLFY.COM (Shop-Software)

We use “Sellfy” to host our shop system, to present our offers and for the processing of contracts.

The legal basis is Art.  6 para. 1 lit. b) GDPR (contract initiation/contract processing).

"Sellfy" is the service of the company UAB “Sellfy“, Legal entity code: 302673703, Registered office: Pramones g. 97, Vilnius, Lithuania, LT-11115.

 

Sellfy processes the following data on our behalf:

Name, billing and, if applicable, delivery address, email address, payment details, possibly company name, possibly telephone number, IP address, information about orders, information about the shops supported by Sellfy that you visit, as well as information about your device and your internet browser.

At

https://sellfy.com/privacy/


PAYPAL.COM

Payment method: Privacy policy regarding PayPal as payment method

The controller has integrated components of PayPal on this website. PayPal is an online payment service provider. Payments are processed via so-called PayPal accounts, which represent virtual private or business accounts. In addition, PayPal offers the option of processing virtual payments via credit cards if a user does not maintain a PayPal account. A PayPal account is managed via an email address, which is why there is no classic account number. PayPal makes it possible to initiate online payments to third parties or to receive payments as well. PayPal also assumes trustee functions and offers buyer protection services.


The European operating company of PayPal is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal L-2449, Luxembourg.

If the data subject selects "PayPal" as a payment option during the ordering process in our online store, data of the data subject will be automatically transmitted to PayPal. By selecting this payment option, the data subject consents to the transmission of personal data required for payment processing.

The personal data transmitted to PayPal are usually first name, last name, address, email address, IP address, phone number, cell phone number or other data that are necessary for payment processing. Also necessary for the processing of the purchase contract are such personal data that are related to the respective order.

The purpose of transmitting the data is payment processing and fraud prevention. The controller will transmit personal data to PayPal in particular if there is a legitimate interest for the transmission. The personal data exchanged between PayPal and the controller may be transferred by PayPal to credit reporting agencies. The purpose of this transmission is to check identity and creditworthiness.

PayPal may disclose the personal data to affiliated companies and service providers or subcontractors, insofar as this is necessary for the fulfillment of contractual obligations or the data is to be processed on behalf.

The data subject has the possibility to revoke the consent to the handling of personal data at any time vis-à-vis PayPal. A revocation does not affect personal data that must necessarily be processed, used or transmitted for (contractual) payment processing.

The applicable data protection provisions of PayPal can be found at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

DATA PROCESSING FOR THE PROCESSING OF ORDERS

Insofar as it is necessary for the processing of the contract for the purpose of delivery and payment, the personal data collected by us will be passed on to the commissioned transport company and the commissioned credit institution in accordance with Art. 6 para. 1 letter b DSGVO.

If we owe you updates for goods with digital elements or for digital products on the basis of a corresponding contract, we will process the contact data (name, address, e-mail address) provided by you when ordering in order to inform you personally by appropriate means of communication (e.g. by post or e-mail) about forthcoming updates within the legally prescribed period as part of our legal duty to inform pursuant to Art. 6 (1) lit. c DSGVO. Your contact data will be strictly 

 

Quelle: e-recht24.de sowie Muster-Datenschutzerklärung der Anwaltskanzlei Weiß & Partner