Data protection

Privacy Policy

1) Introduction and Contact Details of the Controller

1.1 We are pleased that you are visiting our website and thank you for your interest. In the following, we inform you about the handling of your personal data when using our website. Personal data refers to all data with which you can be personally identified.

1.2 The controller for data processing on this website in terms of the General Data Protection Regulation (GDPR) is Philipp Hess, Garden Dock, Gartenstraße 40, 71126 Gäufelden, Germany, Tel.: 015901266137, E-mail: info@garden-dock.com. The controller for the processing of personal data is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

2) Data Collection when Visiting our Website

2.1 When using our website for informational purposes only, i.e., if you do not register or otherwise provide us with information, we only collect data that your browser transmits to the page server (so-called "server log files"). When you access our website, we collect the following data, which are technically necessary for us to display the website to you:

Our visited website
Date and time of access
Amount of data sent in bytes
Source/reference from which you came to the page
Browser used
Operating system used
IP address used (if applicable: in anonymized form)

The processing is carried out in accordance with Art. 6 Para. 1 lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. There will be no disclosure or other use of the data. However, we reserve the right to retrospectively check the server log files if there are concrete indications of illegal use.

2.2 This website uses SSL/TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g., orders or inquiries to the controller). You can recognize an encrypted connection by the string "https://" and the lock symbol in your browser line.

3) Hosting & Content Delivery Network

For hosting our website and displaying the page content, we use a provider who provides its services itself or through selected subcontractors exclusively on servers within the European Union.

All data collected on our website is processed on these servers.

We have concluded a data processing agreement with the provider, which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

4) Cookies

To make visiting our website attractive and to enable the use of certain functions, we use cookies, which are small text files stored on your device. Some of these cookies are automatically deleted after closing the browser (so-called "session cookies"), while others remain on your device for a longer period and allow page settings to be saved (so-called "persistent cookies"). In the latter case, you can find the storage duration in the overview of the cookie settings of your web browser.

If personal data is processed by individual cookies used by us, the processing takes place either in accordance with Art. 6 Para. 1 lit. b GDPR for the execution of the contract, in accordance with Art. 6 Para. 1 lit. a GDPR in the event of granted consent, or in accordance with Art. 6 Para. 1 lit. f GDPR for safeguarding our legitimate interests in the best possible functionality of the website and a customer-friendly and effective design of the site visit.

You can set your browser so that you are informed about the setting of cookies and can decide individually whether to accept them or to exclude the acceptance of cookies for certain cases or generally.

Please note that if cookies are not accepted, the functionality of our website may be limited.

5) Contacting Us

5.1 Judge.me

For review reminders, we use the services of the following provider: Judge.me Ltd., c/o Buckworths, 2nd Floor, 1-3 Worship Street, London, England, EC2A 2AB, United Kingdom

Solely on the basis of your explicit consent according to Art. 6 Para. 1 lit. a GDPR, we transmit your email address and possibly other customer data to the provider, so that they can contact you with a review reminder via email.

You can revoke your consent at any time with effect for the future either to us or to the provider.

We have concluded a data processing agreement with the provider, which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

For data transfers to the provider's location, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

5.2 When you contact us (e.g., via contact form or email), personal data is processed - exclusively for the purpose of processing and responding to your request and only to the extent necessary for that purpose.

The legal basis for the processing of this data is our legitimate interest in responding to your request in accordance with Art. 6 Para. 1 lit. f GDPR. If your contact aims at concluding a contract, an additional legal basis for the processing is Art. 6 Para. 1 lit. b GDPR. Your data will be deleted when it can be inferred from the circumstances that the matter concerned has been conclusively clarified and provided that there are no legal retention obligations to the contrary.

6) Comment Function

When using the comment function on this website, in addition to your comment, information about the time of creation of the comment and the commenter name you chose will be stored and published on this website. Furthermore, your IP address will be logged and stored. This storage of the IP address is for security reasons and in case the person concerned violates the rights of third parties or posts illegal content through a comment. We need your email address to contact you if a third party should complain about your published content as being illegal.

Legal bases for storing your data are Art. 6 Para. 1 lit. b and f GDPR. We reserve the right to delete comments if they are complained about by third parties as being illegal.

7) Data Processing when Opening a Customer Account

According to Art. 6 Para. 1 lit. b GDPR, personal data will continue to be collected and processed to the necessary extent if you provide us with this information when opening a customer account. You can find out which data is required for opening an account from the input mask of the corresponding form on our website.

You can delete your customer account at any time by sending a message to the above-mentioned address of the controller. After deletion of your customer account, your data will be deleted, provided that all contracts concluded through it have been fully processed, no legal retention periods prevent deletion, and we no longer have a legitimate interest in continued storage.

8) Use of Customer Data for Direct Marketing

8.1 Newsletter Subscription

If you subscribe to our email newsletter, we will regularly send you information about our offers. The only mandatory information for sending the newsletter is your email address. The provision of further data is voluntary and will be used to address you personally. For sending the newsletter, we use the so-called double opt-in procedure, which ensures that you will only receive newsletters if you have explicitly confirmed your consent to receive newsletters by activating a verification link sent to the email address provided.

By activating the confirmation link, you give us your consent for the use of your personal data in accordance with Art. 6 Para. 1 lit. a GDPR. Hereby, we store your IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration, in order to be able to trace a possible misuse of your email address at a later date. The data collected by us when subscribing to the newsletter will be used strictly for the purpose intended.

You can unsubscribe from the newsletter at any time via the dedicated link in the newsletter or by sending a corresponding message to the controller mentioned at the beginning. After unsubscribing, your email address will be immediately deleted from our newsletter distribution list, unless you have expressly consented to further use of your data or we reserve the right to further data usage that is legally permitted and about which we inform you in this declaration.

8.2 Sending of Email Newsletters to Existing Customers

If you have provided us with your email address when purchasing goods or services, we reserve the right to regularly send you offers for similar goods or services, like those already purchased, from our assortment via email. For this purpose, we do not need to obtain separate consent from you according to § 7 Para. 3 UWG. The data processing in this respect is solely based on our legitimate interest in personalized direct marketing in accordance with Art. 6 Para. 1 lit. f GDPR. If you have initially objected to the use of your email address for this purpose, we will not send you any emails.

You are entitled to object to the use of your email address for the aforementioned advertising purpose at any time with future effect by notifying the controller mentioned at the beginning. For this, you will only incur transmission costs according to the basic rates. After receipt of your objection, the use of your email address for advertising purposes will be stopped immediately.

8.3 Klaviyo

Our email newsletters and other promotional email communications are sent via this provider: Klaviyo, Inc., 125 Summer St., Ste 600, Boston, MA 02110, USA

Based on our legitimate interest in effective and user-friendly email marketing, we pass on the data you provide during registration in accordance with Art. 6 Para. 1 lit. f GDPR to this provider, so that they can handle the email dispatch on our behalf.

Subject to your express consent in accordance with Art. 6 Para. 1 lit. a GDPR, the provider also performs a statistical success analysis of email campaigns using web beacons or tracking pixels in the sent emails, which can measure open rates and specific interactions with the content of the newsletter. Device information (e.g., time of access, IP address, browser type, and operating system) is also collected and evaluated, but not merged with other data sets.

You can revoke your consent to email tracking at any time with effect for the future.

We have concluded a data processing agreement with the provider, which protects the data of our site visitors and prohibits disclosure to third parties.

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection based on an adequacy decision of the European Commission.

8.4 Email Notifications for Product Availability

For temporarily unavailable items, you can sign up to receive email notifications when they become available. We will send you a one-time email message regarding the availability of the selected item. The only mandatory information for sending this notification is your email address. The provision of additional data is voluntary and may be used to address you personally. For sending the email, we use the so-called double opt-in procedure, which ensures that you only receive a notification if you have explicitly confirmed your consent by activating a verification link sent to the email address provided.

By activating the confirmation link, you give us your consent for the use of your personal data in accordance with Art. 6 Para. 1 lit. a GDPR. Hereby, we store your IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration, in order to be able to trace a possible misuse of your email address at a later date. The data collected by us when subscribing to our email notification service for product availability will be used strictly for the purpose intended.

You can unsubscribe from availability notifications at any time by sending a corresponding message to the controller mentioned at the beginning. After unsubscribing, your email address will be immediately deleted from our dedicated distribution list, unless you have expressly consented to further use of your data or we reserve the right to further data usage that is legally permitted and about which we inform you in this declaration.

8.5 Email Shopping Cart Reminders

If you abandon your purchase with us before completing the order, you have the option to be reminded once via email about the content of your virtual shopping cart.

The only mandatory information for sending this reminder is your email address. The provision of additional data is voluntary and may be used to address you personally. For sending the email, we use the so-called double opt-in procedure, which ensures that you only receive a notification if you have explicitly confirmed your consent by activating a verification link sent to the email address provided.

By activating the confirmation link, you give us your consent for the use of your personal data in accordance with Art. 6 Para. 1 lit. a GDPR for sending a shopping cart reminder. Hereby, we store your IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration, in order to be able to trace a possible misuse of your email address at a later date. The data collected by us when subscribing to our email notification service will be used strictly for the purpose intended.

You can unsubscribe from shopping cart reminders at any time by sending a corresponding message to the controller mentioned at the beginning. After unsubscribing, your email address will be immediately deleted from our dedicated distribution list, unless you have expressly consented to further use of your data or we reserve the right to further data usage that is legally permitted and about which we inform you in this declaration.

9) Data Processing for Order Fulfillment

9.1 Transmission of Image Files for Order Fulfillment via Email

On our website, we offer customers the option to commission the personalization of products by transmitting image files via email. The submitted image motif is used as a template for the personalization of the selected product.

Through the email address provided on the website, the customer can transmit one or more image files from the storage of the used device to us. We then collect, store, and use the transmitted files exclusively for the production of the personalized product in accordance with the respective service description on our website. If the transmitted image files are passed on to special service providers for the production and processing of the order, you will be explicitly informed about this in the following paragraphs. No further disclosure will take place. If the transmitted files or digital motifs contain personal data (in particular images of identifiable persons), all the aforementioned processing operations are carried out exclusively for the purpose of processing your online order in accordance with Art. 6 Para. 1 lit. b GDPR.

After final processing of the order, the transmitted image files will be automatically and completely deleted.

9.2 To the extent necessary for contract fulfillment for delivery and payment purposes, the personal data collected by us will be passed on to the commissioned transport company and the commissioned credit institution in accordance with Art. 6 Para. 1 lit. b GDPR.

If we owe you updates for goods with digital elements or for digital products based on a corresponding contract, we process the contact details you provided when ordering to inform you personally within the framework of our legal information obligations in accordance with Art. 6 Para. 1 lit. c GDPR. Your contact details will be used strictly for communications about updates owed by us and processed by us for this purpose only to the extent necessary for the respective information.

For the processing of your order, we also work with the following service provider(s) who assist us fully or partially in the execution of concluded contracts. Certain personal data is transmitted to these service providers in accordance with the following information.

9.3 Post & DHL Shipping (official)

For the preparation of shipping, we use the services of the following provider: Deutsche Post DHL Research And Innovation GmbH, Kurt-Schumacher-Str. 1, 53113 Bonn
In accordance with Art. 6 Para. 1 lit. b GDPR, we transmit digital shipping labels with your delivery information exclusively for the purpose of processing your online order from our order processing system to the provider, who then sends them to our local printers to enable printing. Data will only be disclosed to the extent that this is actually necessary for processing.

9.4 Sendcloud

For shipping, we use the service of the following provider: Sendcloud GmbH, Fürstenrieder Str. 70, 80686 Munich

In accordance with Art. 6 (1) (b) GDPR, we only pass on your data to the provider for the purpose of processing your online order, who, on our behalf, prints shipping labels and transmits shipment data to the commissioned transport company. Data is only passed on to the extent that this is actually necessary for processing.

The provider also sends shipping notifications and status updates for delivery on our behalf. For this purpose, in accordance with Art. 6 (1) (f) GDPR, based on our legitimate interest in effective and informative customer communication and transparent and reliable shipping processing, which is also in the customer's interest, we pass on certain customer data (email address, first and last name, and address) together with the tracking number to the provider after the parcel has been dispatched.

The data will not be passed on to third parties by the provider and will be processed exclusively for the purpose stated above. After dispatch has been completed, the data will be deleted by the provider.

We have concluded a data processing agreement with the provider that protects the data of our website visitors and prohibits disclosure to third parties.

9.5 Disclosure of personal data to shipping service providers

- DHL

We use the following provider as a transport service provider: DHL Paket GmbH, Sträßchensweg 10, 53113 Bonn, Germany

We pass on your e-mail address and/or telephone number to the provider before the delivery of the goods, in accordance with Art. 6 (1) (a) GDPR, for the purpose of coordinating a delivery date or for delivery notification, provided that you have given your express consent for this in the order process. Otherwise, for the purpose of delivery, we only pass on the recipient's name and delivery address to the provider in accordance with Art. 6 (1) (b) GDPR. The data is only passed on to the extent that this is necessary for the delivery of the goods. In this case, it is not possible to coordinate the delivery date with the provider or to announce the delivery in advance.

Consent can be revoked at any time with effect for the future from the controller named above or from the provider.
- DHL Express

We use the following provider as a transport service provider: DHL Express Germany GmbH, Heinrich-Brüning-Str. 5, 53113 Bonn, Germany

Consent can be revoked at any time with effect for the future from the controller named above or from the provider.
- DPD

We use the following provider as a transport service provider: DPD Deutschland GmbH, Wailandtstraße 1, 63741 Aschaffenburg, Germany

Consent can be revoked at any time with effect for the future from the controller named above or from the provider.

9.6 Use of payment service providers

- Amazon Pay

One or more online payment methods from the following provider are available on this website: Amazon Payments Europe s.c.a., 38 avenue J.F. Kennedy, L-1855 Luxembourg

If you select a payment method from the provider where you pay in advance (e.g. credit card payment), your payment data communicated during the order process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order will be passed on to them in accordance with Art. 6 (1) (b) GDPR. The transfer of your data in this case is exclusively for the purpose of payment processing with the provider and only to the extent that it is required for this.
- Apple Pay

If you choose "Apple Pay" as your payment method from Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, payment processing is carried out via the "Apple Pay" function of your iOS, watchOS or macOS device by charging a payment card stored in "Apple Pay". Apple Pay uses security features integrated into your device's hardware and software to protect your transactions. To authorise a payment, you must enter a code you previously set and verify it using your device's "Face ID" or "Touch ID" function.

For the purpose of payment processing, the information communicated during the order process, together with information about your order, will be transmitted to Apple in encrypted form. Apple then encrypts this data again with a developer-specific key before the data is transmitted to the payment service provider of the payment card stored in Apple Pay for the purpose of carrying out the payment. The encryption ensures that only the website through which the purchase was made can access the payment data. After the payment has been made, Apple sends your device account number and a transaction-specific, dynamic security code to the originating website to confirm the success of the payment.

If personal data is processed during the described transmissions, the processing is carried out exclusively for the purpose of payment processing in accordance with Art. 6 (1) (b) GDPR.

Apple retains anonymised transaction data, including the approximate purchase amount, approximate date and time, and whether the transaction was successfully completed. Anonymisation completely excludes any personal reference. Apple uses the anonymised data to improve "Apple Pay" and other Apple products and services.

When you use Apple Pay on your iPhone or Apple Watch to complete a purchase you made on a Mac via Safari, the Mac and the authorisation device communicate over an encrypted channel on Apple servers. Apple does not process or store any of this information in a format that can identify you. You can disable the ability to use Apple Pay on your Mac in your iPhone settings. Go to "Wallet & Apple Pay" and disable "Allow Payments on Mac".

Further information on data protection at Apple Pay can be found at the following internet address: https://support.apple.com/de-de/HT203027
- giropay

One or more online payment methods from the following provider are available on this website: paydirekt GmbH, Stephanstr. 14-16, 60313 Frankfurt am Main, Germany

If you choose "Google Pay" as your payment method from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"), payment processing is carried out via the "Google Pay" application on your mobile device running at least Android 4.4 ("KitKat") and having an NFC function, by charging a payment card stored in Google Pay or a payment system verified there (e.g. PayPal). To authorise a payment via Google Pay of more than €25, your mobile device must be unlocked beforehand using the respective verification measure (e.g. facial recognition, password, fingerprint or pattern).

For the purpose of payment processing, the information communicated during the order process, together with information about your order, will be transmitted to Google. Google then transmits your payment information stored in Google Pay in the form of a unique transaction number to the originating website, with which a payment made is verified. This transaction number does not contain any information about the real payment data of your payment methods stored in Google Pay, but is created and transmitted as a unique numerical token. In all transactions via Google Pay, Google acts only as an intermediary for processing the payment. The transaction is carried out exclusively between the user and the originating website by charging the payment method stored in Google Pay.

If personal data is processed during the described transmissions, the processing is carried out exclusively for the purpose of payment processing in accordance with Art. 6 (1) (b) GDPR.

Google reserves the right to collect, store and evaluate certain transaction-specific information for every transaction made via Google Pay. This includes the date, time and amount of the transaction, merchant location and description, a description of the goods or services purchased provided by the merchant, photos you have attached to the transaction, the name and email address of the seller and buyer or sender and recipient, the payment method used, your description of the reason for the transaction, and any offer associated with the transaction.

According to Google, this processing is carried out exclusively in accordance with Art. 6 (1) (f) GDPR on the basis of the legitimate interest in proper accounting, verification of transaction data and the optimisation and functional maintenance of the Google Pay service.

Google also reserves the right to combine the processed transaction data with other information collected and stored by Google when using other Google services.

The Google Pay terms of use can be found here:

https://payments.google.com/payments/apis-secure/u/0/get_legal_document?ldo=0&ldt=googlepaytos&ldl=de
Further information on data protection at Google Pay can be found at the following internet address:
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de
- Klarna

One or more online payment methods from the following provider are available on this website: Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden

If you select a payment method where the provider pays in advance (e.g. invoice or installment purchase or direct debit), you will also be asked to provide certain personal data (first name, last name, street, house number, postcode, city, date of birth, email address, telephone number, possibly data on an alternative payment method) during the order process.

In order to safeguard our legitimate interest in determining the creditworthiness of our customers, we forward this data to the provider for the purpose of a credit check in accordance with Art. 6 (1) (f) GDPR. Based on the personal data you provide and other data (such as shopping cart, invoice amount, order history, payment experiences), the provider checks whether the payment option you selected can be granted with regard to payment and/or default risks.

For the decision in the context of the application review, in addition to internal provider criteria, identity and creditworthiness information from the following credit agencies may also be included in accordance with Art. 6 (1) (f) GDPR:

https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies

The credit report may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they are based on a scientifically recognised mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data.

You can object to this processing of your data at any time by sending a message to us or to the provider. However, the provider may still be entitled to process your personal data if this is necessary for the contractual payment processing.
- Masterpayment

One or more online payment methods from the following provider are available on this website: Masterpayment LTD, 483 Green Lanes, London, N13 4BS, United Kingdom

Creditreform Boniversum GmbH, Hammfelddamm 13, 41460 Neuss, Germany Tel.: +49 (0)2131-109-501, Fax: -557
CRIF GmbH, Friesenweg 4, Haus 12, 22763 Hamburg, Germany Tel.: +49 (0)40-89803-0, Fax: -419
SCHUFA Holding AG, Kormoranweg 5, D-65201 Wiesbaden, Germany Tel.: +49 (0)611-9278-0, Fax: -109

When data is transferred to the provider's location, an adequate level of data protection is ensured by an adequacy decision of the European Commission.
- Paypal

One or more online payment methods from the following provider are available on this website: PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg

If you select a payment method from the provider where you pay in advance, your payment data communicated during the order process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order will be passed on to them in accordance with Art. 6 (1) (b) GDPR. The transfer of your data in this case is exclusively for the purpose of payment processing with the provider and only to the extent that it is required for this.

If you select a payment method where we pay in advance, you will also be asked to provide certain personal data (first name, last name, street, house number, postcode, city, date of birth, email address, telephone number, possibly data on an alternative payment method) during the order process.

In such cases, to safeguard our legitimate interest in determining your creditworthiness, we forward this data to the provider for the purpose of a credit check in accordance with Art. 6 (1) (f) GDPR. Based on the personal data you provide and other data (such as shopping cart, invoice amount, order history, payment experiences), the provider checks whether the payment option you selected can be granted with regard to payment and/or default risks.

The credit report may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. The calculation of the score values includes, among other things but not exclusively, address data.

You can object to this processing of your data at any time by sending us a message or by contacting the provider. However, the provider may still be entitled to process your personal data if this is necessary for contractually compliant payment processing.
- PayPal Checkout

This website uses PayPal Checkout, an online payment system from PayPal, which consists of PayPal's own payment methods and local third-party payment methods.

When paying via PayPal, credit card via PayPal, direct debit via PayPal or – if offered – “Pay Later” via PayPal, we transmit your payment data within the framework of payment processing to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”). The transmission takes place in accordance with Art. 6 Para. 1 lit. b GDPR and only to the extent necessary for payment processing.

PayPal reserves the right to carry out a credit assessment for the payment methods credit card via PayPal, direct debit via PayPal or – if offered – “Pay Later” via PayPal. For this purpose, your payment data may be transmitted to credit agencies in accordance with Art. 6 Para. 1 lit. f GDPR based on PayPal's legitimate interest in determining your solvency. PayPal uses the result of the credit check regarding the statistical probability of payment default for the purpose of deciding on the provision of the respective payment method. The credit report may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. The calculation of the score values includes, among other things but not exclusively, address data. You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for contractually compliant payment processing.

If the PayPal payment method "Purchase on Account" is available and selected, your payment data will first be transmitted to PayPal for payment preparation, whereupon PayPal will forward it to Ratepay GmbH, Franklinstraße 28-29, 10587 Berlin ("Ratepay") for payment processing. The legal basis in each case is Art. 6 Para. 1 lit. b GDPR. In this case, RatePay performs an identity and credit check in its own name to determine solvency, according to the principle already mentioned above, and transmits your payment data to credit agencies based on its legitimate interest in determining solvency in accordance with Art. 6 Para. 1 lit. f GDPR. A list of credit agencies that Ratepay can use can be found here: https://www.ratepay.com/legal-payment-creditagencies/

When using a local third-party payment method, your payment data is first transmitted to PayPal in accordance with Art. 6 Para. 1 lit. b GDPR for payment preparation. Depending on your selection of an available local payment method, PayPal then transmits your payment data to the corresponding provider for payment processing in accordance with Art. 6 Para. 1 lit. b GDPR:

- Apple Pay (Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland)
- Google Pay (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland)
- iDeal (Currence Holding BV, Beethovenstraat 300 Amsterdam, Netherlands)
- Bancontact (Bancontact Payconiq Company, Rue d'Arlon 82, 1040 Brussels, Belgium)
- Blik (Polski Standard Płatności sp. z o.o., ul. Czerniakowska 87A, 00-718 Warsaw, Poland)
- eps (PSA Payment Services Austria GmbH, Handelskai 92, Gate 2
1200 Vienna, Austria)
- MyBank (PRETA S.A.S, 40 Rue de Courcelles, F-75008 Paris, France)
- Przelewy24 (PayPro SA, Kanclerska 15A, 60-326 Poznań, Poland)

Further information on data protection can be found in PayPal's privacy policy: https://www.paypal.com/de/legalhub/paypal/privacy-full
- Shopify Payments

One or more online payment methods from the following provider are available on this website: Shopify International Limited, Victoria Buildings, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland

If you select a payment method from the provider where you pay in advance (e.g., credit card payment), your payment data communicated during the order process (including name, address, bank and payment card information, currency, and transaction number) as well as information about the content of your order will be forwarded to this provider in accordance with Art. 6 Para. 1 lit. b GDPR. The forwarding of your data in this case occurs exclusively for the purpose of payment processing with the provider and only to the extent necessary for this.

10) Web analytics services

10.1 Google (Universal) Analytics

This website uses Google (Universal) Analytics, a web analysis service of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"), which enables an analysis of your use of our website.

By default, when you visit the website, Google (Universal) Analytics sets cookies, which are stored as small text modules on your device and collect certain information. The scope of this information also includes your IP address, which, however, is truncated by Google by the last digits to exclude direct personal identifiability.

The information is transmitted to Google servers and processed there. This may also include transfers to Google LLC, based in the USA.

Google uses the collected information on our behalf to evaluate your use of the website, to compile reports on website activity for us, and to provide other services related to website use and internet use. The truncated IP address transmitted by your browser within the scope of Google Analytics is not merged with other data from Google. The data collected within the scope of using Google (Universal) Analytics is stored for a period of two months and then deleted.

All processing described above, in particular the setting of cookies on the device used, only takes place if you have given us your explicit consent in accordance with Art. 6 Para. 1 lit. a GDPR.
Without your consent, Google (Universal) Analytics will not be used during your visit to the site. You can revoke your given consent at any time with effect for the future. To exercise your right of revocation, please deactivate this service via the "Cookie Consent Tool" provided on the website.

We have concluded a data processing agreement with Google, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

Further legal information on Google (Universal) Analytics can be found at https://business.safety.google/intl/de/privacy/, https://policies.google.com/privacy?hl=de&gl=de and at https://policies.google.com/technologies/partner-sites

Demographic characteristics
Google (Universal) Analytics uses the special function "demographic characteristics" and can thereby create statistics that provide statements about the age, gender, and interests of site visitors. This is done by analyzing advertising and information from third-party providers. This allows target groups for marketing activities to be identified. However, the collected data cannot be assigned to a specific person and is deleted after being stored for a period of two months.

Google Signals
As an extension to Google (Universal) Analytics, Google Signals may be used on this website to create cross-device reports. If you have enabled personalized ads and linked your devices to your Google account, Google may, subject to your consent to the use of Google Analytics in accordance with Art. 6 Para. 1 lit. a GDPR, analyze your usage behavior across devices and create database models, including cross-device conversions. We do not receive any personal data from Google, only statistics. If you wish to stop cross-device analysis, you can disable the "Personalized advertising" function in your Google account settings. To do this, follow the instructions on this page: https://support.google.com/My-Ad-Center-Help/answer/12155764?hl=de
Further information on Google Signals can be found at the following link: https://support.google.com/analytics/answer/7532985?hl=de

UserIDs
As an extension to Google (Universal) Analytics, the "UserIDs" function can be used on this website. If you have consented to the use of Google (Universal) Analytics in accordance with Art. 6 Para. 1 lit. a GDPR, have created an account on this website, and log in to this account on different devices, your activities, including conversions, can be analyzed across devices.

10.2 1&1 IONOS WebAnalytics

This website uses the web analytics service of the following provider: 1&1 IONOS Internet SE, Elgendorfer Str. 57, 56410 Montabaur, Germany

Using cookies and/or similar technologies (tracking pixels, web beacons, algorithms for reading device and browser information), the service collects and stores pseudonymized visitor data, including information about the device used, such as the IP address and browser information, to evaluate it for statistical analyses of user behavior on our website and to create pseudonymized usage profiles. Among other things, this enables the analysis of movement patterns (so-called heatmaps), which show the duration of page visits and interactions with page content (e.g., text input, scrolling, clicks, and mouse-overs). Pseudonymization generally excludes direct personal identifiability. A merging with otherwise collected clear data about you does not take place.

All processing described above, in particular the reading or storing of information on the device used, will only be carried out if you have given us your explicit consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your given consent at any time with effect for the future by deactivating this service in the "Cookie Consent Tool" provided on the website.

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

10.3 Google Tag Manager

This website uses the "Google Tag Manager", a service of the following provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: "Google").

The Google Tag Manager provides a technical basis for bundling various web applications, including tracking and analysis services, and for calibrating, controlling, and linking them to conditions via a uniform user interface. The Google Tag Manager itself does not store any information on user devices or read it out. Nor does the service perform any independent data analyses. However, when a page is accessed, your IP address is transmitted to Google by the Google Tag Manager and may be stored there. A transmission to Google LLC servers in the USA is also possible.

This processing will only be carried out if you have given us your explicit consent in accordance with Art. 6 Para. 1 lit. a GDPR. Without this consent, the Google Tag Manager will not be used during your visit to the site. You can revoke your given consent at any time with effect for the future. To exercise your right of revocation, please deactivate this service in the "Cookie Consent Tool" provided on the website.

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

Further legal information on Google Tag Manager can be found at https://business.safety.google/intl/de/privacy/ and https://policies.google.com/privacy?hl=de&gl=de

10.4 Hotjar

This website uses the web analytics service of the following provider: Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta

All processing described above, in particular the reading or storing of information on the device used, will only be carried out if you have given us your explicit consent in accordance with Art. 6 Para. 1 lit. a DSGVO. You can revoke your given consent at any time with effect for the future by deactivating this service in the "Cookie Consent Tool" provided on the website.

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

11) Retargeting/Remarketing and Conversion Tracking

11.1 Meta Pixel with extended data matching

Within our online offering, we use the "Meta Pixel" service of the following provider in extended data matching mode: Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland ("Meta")

If a user clicks on an advertisement placed by us on Facebook or Instagram, the URL of our linked page is extended by a parameter using "Meta Pixel". This URL parameter is then entered into the user's browser after redirection by a cookie that our linked page itself sets. In addition, this cookie collects specific customer data such as the email address, which we collect on our website linked to the Facebook or Instagram advertisement during processes such as purchases, account logins, or registrations (extended data matching). The cookie is then read out and enables the transmission of data, including specific customer data, to Meta.

We use "Meta Pixel" with extended data matching to make our advertisements (so-called "Ads") on Facebook and/or Instagram more effective and to ensure that they correspond to user interests or have certain characteristics (e.g., interests in certain topics or products identified based on visited websites), which we transmit to Meta (so-called "Custom Audiences").

In addition, we analyze the effectiveness of our advertisements by tracking whether users were redirected to our website after clicking on an advertisement (conversion). Compared to the standard version of "Meta Pixel," the extended data matching function helps us better measure the effectiveness of our advertising campaigns by recording more attributed conversions.

All transmitted data is stored and processed by Meta, so that an assignment to the respective user profile is possible and Meta can use the data for its own advertising purposes in accordance with Meta's data usage policy (https://www.facebook.com/about/privacy/). The data may enable Meta and its partners to display advertisements on and off Facebook.

All processing described above, in particular the setting of cookies for reading information on the device used, will only be carried out if you have given us your explicit consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your given consent at any time with effect for the future by deactivating this service in the "Cookie Consent Tool" provided on the website.

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

The information generated by Meta is generally transmitted to a Meta server and stored there; in this context, a transmission to Meta Platforms Inc. servers in the USA may also occur.

11.2 Google Ads Conversion Tracking

This website uses the online advertising program "Google Ads" and, within the framework of Google Ads, the conversion tracking of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google").

We use Google Ads to draw attention to our attractive offers on external websites with the help of advertising materials (so-called Google Adwords). In relation to the data of the advertising campaigns, we can determine how successful the individual advertising measures are. Our aim is to show you advertising that is of interest to you, to make our website more interesting for you, and to achieve a fair calculation of advertising costs.

The cookie for conversion tracking is set when a user clicks on an ad placed by Google. Cookies are small text files that are stored on your device. These cookies usually expire after 30 days and are not used for personal identification. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognize that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. Cookies can therefore not be tracked across the websites of Google Ads customers. The information obtained using the conversion cookie is used to create conversion statistics for Google Ads customers who have opted for conversion tracking. Customers are informed of the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that can personally identify users.

When using Google Ads, personal data may also be transmitted to the servers of Google LLC. in the USA.

Details on the processing initiated by Google Ads Conversion Tracking and on how Google handles data from websites can be found here: https://policies.google.com/technologies/partner-sites

All processing described above, in particular the setting of cookies for reading information on the device used, will only be carried out if you have given us your explicit consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can withdraw your consent at any time with effect for the future by deactivating this service in the "Cookie Consent Tool" provided on the website.

You can also permanently object to the setting of cookies by Google Ads Conversion Tracking by downloading and installing the browser plug-in available at the following link:
https://support.google.com/My-Ad-Center-Help/answer/12155656?hl=de

To address users whose data we have received in the context of business or business-like relationships with even more targeted advertising, we use a customer matching function within Google Ads. For this purpose, we electronically transmit one or more files with aggregated customer data (primarily email addresses and phone numbers) to Google. Google does not gain access to clear data, but automatically encrypts the information in the customer files during the transmission process using a special algorithm. The encrypted information can then only be used by Google to match it with existing Google accounts that the data subjects have set up. This enables personalized advertising to be displayed across all Google services linked to the respective Google account.

The transmission of customer data to Google only takes place if you have given us explicit consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can withdraw this consent from us at any time with effect for the future. Further information on Google's data protection measures regarding the customer matching function can be found here: https://support.google.com/google-ads/answer/6334160?hl=de&ref_topic=10550182
Google's privacy policies can be viewed here: https://business.safety.google/intl/de/privacy/ and https://www.google.de/policies/privacy/

11.3 Google Ads Conversion Tracking without Cookies

This website uses Google Ads Conversion Tracking exclusively without the use of cookies, which means that the service does not place cookies on your device at any time.

Instead, your browser's local storage is used to store an individual ID assigned by Google, which enables an analysis of your use of the website. For this purpose, certain user information is processed via the ID.

The ID is set when a user clicks on an ad placed by Google. If the user visits certain pages of this website, Google and we can recognize that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. Cookies can therefore not be tracked across the websites of Google Ads customers. The information thus obtained is used to create conversion statistics for Google Ads customers who have opted for conversion tracking. Customers are informed of the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag.

However, you do not receive any information that can personally identify users. When using Google Ads, personal data may also be transmitted to the servers of Google LLC. in the USA. Details on the processing initiated by Google Ads Conversion Tracking and on how Google handles data from websites can be found here: https://policies.google.com/technologies/partner-sites

If the collected information contains personal references, the processing is carried out in accordance with Art. 6 Para. 1 lit. f GDPR on the basis of our legitimate interest in the statistical evaluation of the success of our advertising campaigns.
Google's privacy policies can be viewed here: https://business.safety.google/intl/de/privacy/ and https://www.google.de/policies/privacy/

11.4 Google Marketing Platform

This website uses the online marketing tool Google Marketing Platform from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("GMP").

GMP uses cookies to show users relevant ads, improve campaign performance reports, or prevent a user from seeing the same ads multiple times. Google uses a cookie ID to record which ads are displayed in which browser and can thus prevent them from being displayed multiple times. In addition, GMP can use cookie IDs to record so-called conversions that relate to ad requests. This is the case, for example, when a user sees a GMP ad and later, when using the same browser, visits the advertiser's website and buys something through that website. According to Google, GMP cookies do not contain any personal information.
Due to the marketing tools used, your browser automatically establishes a direct connection with Google's server.

We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you to the best of our knowledge as follows: By integrating GMP, Google receives the information that you have accessed the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is a possibility that the provider will find out and store your IP address. When using GMP, personal data may also be transmitted to the servers of Google LLC. in the USA.

All processing described above, in particular the setting of cookies for reading information on the device used, will only be carried out if you have given us your explicit consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can withdraw your consent at any time with effect for the future by deactivating this service in the "Cookie Consent Tool" provided on the website.

GMP by Google's privacy policy can be found here: https://business.safety.google/intl/de/privacy/ and https://www.google.de/policies/privacy/

12) Site Functionalities

12.1 Facebook Plugins

Our website uses plugins from the social network of the following provider: Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland

These plugins enable direct interactions with content on the social network.

To increase the protection of your data when visiting our website, the plugins are initially deactivated and integrated into the page using a so-called "2-click" or "Shariff" solution.

This integration ensures that when a page of our website containing such plugins is accessed, no connection is yet established with the provider's servers.

If you are logged into an existing user profile on the provider's social network, information about interactions carried out via the plugins is also published there and displayed to your contacts.
You can revoke your consent at any time by deactivating the activated plugin again by clicking on it. However, the revocation does not affect the data that has already been transferred to the provider.

Data may also be transferred to: Meta Platforms Inc., USA

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

12.2 Instagram Plugins

Our website uses plugins from the social network of the following provider: Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland

These plugins enable direct interactions with content on the social network.

To increase the protection of your data when visiting our website, the plugins are initially deactivated and integrated into the page using a so-called "2-click" or "Shariff" solution.

This integration ensures that when a page of our website containing such plugins is accessed, no connection is yet established with the provider's servers.

Only when you activate the plugins and thus give your consent to data transfer in accordance with Art. 6 Para. 1 lit. a GDPR, your browser establishes a direct connection to the provider's servers. In this process, regardless of whether you are logged into an existing user profile, certain information about your device (including your IP address), your browser, and your page history is transmitted to the provider and, if applicable, further processed there.

If you are logged into an existing user profile on the provider's social network, information about interactions carried out via the plugins is also published there and displayed to your contacts.
You can revoke your consent at any time by deactivating the activated plugin again by clicking on it. However, the revocation does not affect the data that has already been transferred to the provider.

Data may also be transferred to: Meta Platforms Inc., USA

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

12.3 LinkedIn Plugins

Our website uses plugins from the social network of the following provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland

These plugins enable direct interactions with content on the social network.

To increase the protection of your data when visiting our website, the plugins are initially deactivated and integrated into the page using a so-called "2-click" or "Shariff" solution.

This integration ensures that when a page of our website containing such plugins is accessed, no connection is yet established with the provider's servers.

Data may also be transferred to: LinkedIn Inc., USA

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

For data transfers to the USA, the provider relies on standard contractual clauses of the European Commission, which are intended to ensure compliance with the European level of data protection.

12.4 Pinterest Plugins

Our website uses plugins from the social network of the following provider: Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland

These plugins enable direct interactions with content on the social network.

To increase the protection of your data when visiting our website, the plugins are initially deactivated and integrated into the page using a so-called "2-click" or "Shariff" solution.

This integration ensures that when a page of our website containing such plugins is accessed, no connection is yet established with the provider's servers.

Only if you activate the plugins and thereby give your consent to the data transfer in accordance with Art. 6 para. 1 lit. a GDPR, will your browser establish a direct connection to the provider's servers. In this process, regardless of a login to an existing user profile, certain information about your device (including your IP address), your browser, and your page history will be transmitted to the provider and, if necessary, further processed there.

If you are logged into an existing user profile on the provider's social network, information about interactions carried out via the plugins will also be published there and displayed to your contacts.
You can revoke your consent at any time by deactivating the activated plugin again by clicking on it. However, the revocation does not affect the data that has already been transferred to the provider.

Data may also be transferred to: Pinterest Inc., USA

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

For the transfer of data to the USA, the provider relies on standard contractual clauses of the European Commission, which are intended to ensure compliance with the European level of data protection.

12.5 Vimeo

This website uses plugins for displaying and playing videos from the following provider: Vimeo.com, Inc., 330 West 34th Street, 10th Floor, New York, NY 10001, USA

When you access a page of our website that contains such a plugin, your browser establishes a direct connection to the provider's servers to load the plugin. In doing so, certain information, including your IP address, is transmitted to the provider.

If the playback of embedded videos is started via the plugin, the provider also uses cookies to collect information about user behavior, create playback statistics and prevent abusive behavior.

If you are logged into a user account with the provider during your visit to the site, your data will be directly assigned to your account when you click on a video. If you do not wish the assignment to your account, you must log out before pressing the playback button.

All the aforementioned processing operations, in particular the setting of cookies for reading out information on the device used, only take place if you have given us your express consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future by deactivating this service via the "Cookie Consent Tool" provided on the website.

12.6 Youtube

This website uses plugins for displaying and playing videos from the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data may also be transmitted to: Google LLC., USA

When you access a page of our website that contains such a plugin, your browser establishes a direct connection to the provider's servers to load the content, at the latest when the video is played. In doing so, certain information, including your IP address, is transmitted to the provider.

If the playback of embedded videos is started via the plugin, the provider also uses cookies to collect information about user behavior, create playback statistics and prevent abusive behavior.

12.7 Judge.me

Our website integrates graphic elements from the following provider to display external customer reviews and/or an externally awarded seal of approval: Judge.me Ltd., c/o Buckworths, 2nd Floor, 1-3 Worship Street, London, England, EC2A 2AB, United Kingdom

When you access a page of our website that contains such graphic elements, your browser establishes a direct connection to the provider's servers to load the elements correctly. In doing so, certain browser information, including your IP address, is transmitted to the provider.

If personal data is also processed in this context, this is done in accordance with Art. 6 Para. 1 lit. f GDPR based on our legitimate interest in the optimal marketing of our offer and the appealing design of our website.

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

In the event of a data transfer to the provider's location, an adequate level of data protection is guaranteed by an adequacy decision of the European Commission.

12.8 Trusted Shops Trustbadge

Our website integrates graphic elements from the following provider to display external customer reviews and/or an externally awarded seal of approval: Trusted Shops AG, Subbelrather Str. 15C, 50823 Cologne, Germany

In the case of an online order with us, further processing may take place.

Thus, depending on your explicit consent in accordance with Art. 6 para. 1 lit. a GDPR, your order information (order sum, order number, if applicable, product purchased) and your e-mail address will be transmitted encrypted to the provider via the Trustbadge after completion of an order, in order to verify an existing registration for the provider's services (in particular the "buyer protection") and, if necessary, to enable a new registration.

In the event of an existing registration or a new registration with the provider for its services (in particular buyer protection), your order information (order sum, order number, product purchased) and your e-mail address will be transmitted to the provider and further processed by the provider on the basis of the contractual agreement with the provider in accordance with Art. 6 para. 1 lit. b GDPR, in order to provide the services (in particular buyer protection).

We are jointly responsible with the provider for the processing described above in accordance with Art. 26 GDPR. The agreement on joint responsibility can be viewed here: https://help.etrusted.com/hc/de/articles/23970817960082

12.9 - Best Currency Converter

This website uses the "Best Currency Converter" service from Grizzly Apps SRL, Str. Muresului Nr. 7 Bloc E23, Scara B, Apartament 15, Brasov, Romania ("Best Currency Converter"). Based on our legitimate interest in displaying prices in the local currency of your location, Best Currency Converter collects and evaluates your IP address in accordance with Art. 6 Para. 1 lit. f GDPR in order to adapt price displays on the website to your location. The IP address is not stored permanently. Furthermore, Best Currency Converter sets a functional cookie in the browser of your device after the first currency adjustment to store the currency setting for the duration of a session. After this session expires, the cookie is automatically deleted.

12.10 Google Web Fonts

This site uses so-called web fonts from the following provider for the uniform display of fonts: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

When you access a page, your browser loads the required web fonts into its browser cache to display texts and fonts correctly and establishes a direct connection to the provider's servers. In doing so, certain browser information, including your IP address, is transmitted to the provider.

Data may also be transferred to: Google LLC, USA

The processing of personal data in connection with the connection to the font provider is only carried out if you have given us your explicit consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future by deactivating this service via the "Cookie Consent Tool" provided on the website. If your browser does not support web fonts, a standard font from your computer will be used.

Further information on Google's privacy policy can be found here: https://business.safety.google/intl/de/privacy/

13) Tools and Miscellaneous

13.1 - sevDesk

We use the cloud-based accounting software service from the following provider for our accounting: sevDesk GmbH, Hauptstraße 115, 77652 Offenburg, Germany

The provider processes incoming and outgoing invoices and, if applicable, also the bank movements of our company in order to automatically record invoices, match them to transactions and create financial accounting from this in a partially automated process.

If personal data is also processed in this context, the processing takes place on the basis of our legitimate interest in efficient organization and documentation of our business processes in accordance with Art. 6 Para. 1 lit. f GDPR.

13.2 Cookie Consent Tool

This website uses a so-called "Cookie Consent Tool" to obtain effective user consents for cookies and cookie-based applications that require consent. The "Cookie Consent Tool" is displayed to users in the form of an interactive user interface when a page is accessed, where consents for specific cookies and/or cookie-based applications can be given by checking a box. In this process, all cookies/services requiring consent are only loaded if the respective user gives their corresponding consent by checking the box. This ensures that such cookies are only set on the user's device if consent has been given.

The tool sets technically necessary cookies to save your cookie preferences. Personal user data is generally not processed in this context.

If, in individual cases, personal data (such as the IP address) is processed for the purpose of storing, assigning or logging cookie settings, this is done in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in a legally compliant, user-specific and user-friendly consent management for cookies and thus in a legally compliant design of our website.

Another legal basis for the processing is also Art. 6 para. 1 lit. c GDPR. As controllers, we are subject to the legal obligation to make the use of technically unnecessary cookies dependent on the respective user's consent.

If necessary, we have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

Further information on the operator and the setting options of the Cookie Consent Tool can be found directly in the corresponding user interface on our website.

13.3 Judge.me

We use the services of the following provider for the verification and publication of customer reviews: Judge.me Ltd., c/o Buckworths, 2nd Floor, 1-3 Worship Street, London, England, EC2A 2AB, United Kingdom

If you submit a review on our website, your first and last name, email address, order date and number, as well as the name and international references (GTIN/ISDNF) will be collected, transmitted to the provider and evaluated there to decide on the legitimacy of a customer review for a specific order. These processing operations are carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in ensuring the authenticity of customer reviews by ensuring the transaction relevance and preventing review misuse. After the review has been checked and approved, the data will be deleted by the provider.

In the event of a data transfer to the provider's location, an adequate level of data protection is guaranteed by an adequacy decision of the European Commission.

13.4 - Adobe Acrobat Sign

For the digital signing of documents, we use the services of the following provider:
Adobe Systems Software Ireland Limited, 4-6 Riverwalk, City West Business Campus, Dublin 24, Ireland

The service enables legally valid signing of documents via electronic signature from any device.

For this purpose, the service collects, stores and transmits, in addition to the electronic signature, usage data of the device used (in particular the IP address) and certain transaction data for verification and proof of signing.

Processing is carried out on the basis of our legitimate interest in efficient and responsive business management and customer-friendly and effective document management in accordance with Art. 6 para. 1 lit. f GDPR.

We have concluded a data processing agreement with the provider, which protects the data of our site visitors and prohibits disclosure to third parties.

14) Rights of the Data Subject

14.1 Applicable data protection law grants you, as the data subject, the following rights (rights of access and intervention) vis-à-vis the controller with regard to the processing of your personal data, with reference to the legal basis cited for the respective exercise requirements:

Right of access pursuant to Art. 15 GDPR;
Right to rectification pursuant to Art. 16 GDPR;
Right to erasure pursuant to Art. 17 GDPR;
Right to restriction of processing pursuant to Art. 18 GDPR;
Right to notification pursuant to Art. 19 GDPR;
Right to data portability pursuant to Art. 20 GDPR;
Right to withdraw consent given pursuant to Art. 7 para. 3 GDPR;
Right to lodge a complaint pursuant to Art. 77 GDPR.

14.2 RIGHT TO OBJECT

IF, IN THE CONTEXT OF A BALANCING OF INTERESTS, WE PROCESS YOUR PERSONAL DATA ON THE BASIS OF OUR OVERRIDING LEGITIMATE INTEREST, YOU HAVE THE RIGHT TO OBJECT TO THIS PROCESSING AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, WITH EFFECT FOR THE FUTURE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL CEASE PROCESSING THE AFFECTED DATA. HOWEVER, FURTHER PROCESSING REMAINS RESERVED IF WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FREEDOMS, OR IF THE PROCESSING SERVES THE ASSERTION, EXERCISE OR DEFENSE OF LEGAL CLAIMS.

IF YOUR PERSONAL DATA IS PROCESSED BY US FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING. YOU CAN EXERCISE THE OBJECTION AS DESCRIBED ABOVE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL CEASE PROCESSING THE AFFECTED DATA FOR DIRECT MARKETING PURPOSES.

15) Duration of storage of personal data

The duration of storage of personal data is determined by the respective legal basis, the purpose of processing and – if applicable – additionally by the respective statutory retention period (e.g. commercial and tax law retention periods).

When personal data is processed on the basis of explicit consent in accordance with Art. 6 para. 1 lit. a GDPR, the affected data will be stored until you revoke your consent.

If there are statutory retention periods for data processed within the framework of legal or quasi-legal obligations based on Art. 6 para. 1 lit. b GDPR, these data will be routinely deleted after the retention periods have expired, provided they are no longer required for contract fulfillment or contract initiation and/or we no longer have a legitimate interest in further storage.

When personal data is processed on the basis of Art. 6 para. 1 lit. f GDPR, this data will be stored until you exercise your right to object under Art. 21 para. 1 GDPR, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the assertion, exercise or defense of legal claims.

When personal data is processed for the purpose of direct marketing on the basis of Art. 6 para. 1 lit. f GDPR, this data will be stored until you exercise your right to object under Art. 21 para. 2 GDPR.

Unless otherwise stated in the other information in this declaration about specific processing situations, stored personal data will be deleted when they are no longer necessary for the purposes for which they were collected or otherwise processed.

Country/Region

Country/Region

Data protection

Privacy Policy

1) Introduction and Contact Details of the Controller

2) Data Collection when Visiting our Website

3) Hosting & Content Delivery Network

4) Cookies

5) Contacting Us

6) Comment Function

7) Data Processing when Opening a Customer Account

8) Use of Customer Data for Direct Marketing

9) Data Processing for Order Fulfillment

10) Web analytics services

11) Retargeting/Remarketing and Conversion Tracking

12) Site Functionalities

13) Tools and Miscellaneous

14) Rights of the Data Subject

15) Duration of storage of personal data