Elementor #1361 - Cafe Carlier

Privacy Policy

Privacy Policy

Unless otherwise stated below, the provision of your personal data is neither required by law or contract, nor is it necessary for the conclusion of a contract. You are not obliged to provide the data. Failure to provide the data will have no consequences. This applies only insofar as no other information is provided in the following processing operations.
“Personal data” is any information relating to an identified or identifiable natural person.

Server log files

You can visit our websites without providing any personal information.

Each time you access our website, usage data is transmitted to us or our web host/IT service provider by your internet browser and stored in log files (so-called server log files). This stored data includes, for example, the name of the page accessed, the date and time of access, the IP address, the amount of data transferred, and the requesting provider.
Processing is carried out on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in ensuring the smooth operation of our website and improving our offering.

Your data may be transferred to third countries outside the European Union for which an adequacy decision has been issued by the EU Commission.

Contact

Responsible party

Please contact us if you wish. The party responsible for data processing is: Weinist GmbH, Auf den Gänsewiesen 18a, 65835 Liederbach, Germany, +49 176 99 55 22 00, info@cafecarlier.com

Proactive contact by the customer via email
If you proactively contact us via email, we will only collect your personal data (name, email address, message text) to the extent that you provide it. The data processing serves to process and respond to your contact request.
If the contact serves to carry out pre-contractual measures (e.g., advice on purchase interest, preparation of an offer) or relates to a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) lit. b GDPR.
If the contact is made for other reasons, this data processing is carried out on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in processing and responding to your request. In this case, you have the right to object at any time to the processing of personal data concerning you based on Art. 6 (1) lit. f GDPR for reasons arising from your particular situation.
We only use your email address to process your inquiry. Your data will then be deleted in accordance with statutory retention periods, unless you consent to further processing and use.

Collection and processing when using the contact form
When you use the contact form, we collect your personal data (name, email address, message text) only to the extent that you provide it. The data processing serves the purpose of establishing contact.

If the purpose of establishing contact is to carry out pre-contractual measures (e.g., advice on purchase interest, preparation of an offer) or relates to a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) lit. b GDPR.

If the contact is made for other reasons, this data processing is carried out on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in processing and responding to your request. In this case, you have the right to object at any time to the processing of personal data concerning you based on Art. 6 (1) lit. f GDPR for reasons arising from your particular situation.

We only use your email address to process your inquiry. Your data will then be deleted in accordance with statutory retention periods, unless you have consented to further processing and use.

Customer account Orders

Customer account
When you open a customer account, we collect your personal data to the extent specified there. The purpose of data processing is to improve your shopping experience and simplify order processing. Processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the lawfulness of the processing carried out on the basis of your consent until revocation. Your customer account will then be deleted.

Collection, processing, and disclosure of personal data for orders

When you place an order, we collect and process your personal data only to the extent necessary to fulfill and process your order and to handle your inquiries. The provision of data is necessary for the conclusion of a contract. Failure to provide data will result in no contract being concluded. Processing is based on Art. 6 (1) lit. b GDPR and is necessary for the performance of a contract with you.

Your data may be passed on to shipping companies, dropshipping or fulfillment providers, payment service providers, service providers for order processing, and IT service providers, for example. In all cases, we strictly comply with the legal requirements. The scope of data transfer is limited to a minimum.

Your data may be transferred to third countries outside the European Union for which the EU Commission has issued an adequacy decision.

Advertising

Use of your email address for sending newsletters
We use your email address exclusively for our own advertising purposes to send newsletters, regardless of contract processing, provided you have expressly agreed to this. Processing is carried out on the basis of Art. 6 (1) lit. a GDPR with your consent. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until revocation. You can unsubscribe from the newsletter at any time by using the corresponding link in the newsletter or by notifying us. Your email address will then be removed from the distribution list.

Use of Brevo (formerly Sendinblue)
We use the services of Sendinblue GmbH (Köpenicker Straße 126, 10179 Berlin; “Brevo”) for sending newsletters as part of order processing.
We pass on the information you provide when registering for the newsletter (email address, first and last name if applicable) to Brevo. The data processing serves the purpose of sending the newsletter and its statistical evaluation.
In order to evaluate newsletter campaigns, the email newsletters sent contain a 1×1 pixel graphic (tracking pixel) and/or a tracking link. This allows us to determine whether you have opened the newsletter and whether you have clicked on any integrated links. In this context, your personal data such as your IP address, browser type, and device, as well as the time of opening, may also be collected. This data can be used to create usage profiles under a pseudonym. The data collected will not be used to identify you personally. The data collected will only be used for statistical evaluation to improve newsletter campaigns.

Your personal data is processed on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in a targeted, effective, and user-friendly newsletter system. You have the right to object to this processing of your personal data at any time for reasons arising from your particular situation.

Further information and Brevo’s privacy policy can be found at: https://www.brevo.com/de/legal/privacypolicy/.

Shipping service providers

Disclosure of email address to shipping companies for information about shipping status
We pass on your email address to the transport company for the purpose of contract processing, provided you have expressly agreed to this during the ordering process. The purpose of this transfer is to inform you about the shipping status by email. The processing is based on Art. 6 (1) lit. a GDPR with your consent. You can revoke your consent at any time by notifying us or the transport company, without affecting the legality of the processing carried out on the basis of your consent until revocation.

Payment service providers

Use of PayPal Express
We use the PayPal Express payment service from PayPal (Europe) S.à.r.l. et Cie, S.C.A. (22-24 Boulevard Royal L-2449, Luxembourg; “PayPal”) on our website. The purpose of data processing is to enable us to offer you payment via the PayPal Express payment service.
In order to integrate this payment service, it is necessary for PayPal to collect, store, and analyze data (e.g., IP address, device type, operating system, browser type, location of your device) when you visit the website. Cookies may also be used for this purpose. Cookies enable your browser to be recognized.
The use of cookies or comparable technologies is based on your consent in accordance with Section 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent until revocation.
When you select and use PayPal Express, the data required for payment processing is transmitted to PayPal in order to fulfill the contract with you using the selected payment method. This processing is based on Art. 6 (1) lit. b GDPR.

For more information on data processing when using the PayPal Express payment service, please refer to the relevant privacy policy at https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE#Updated_PS.

Use of PayPal Check-Out
We use the PayPal Check-Out payment service from PayPal (Europe) S.à.r.l. et Cie, S.C.A. (22-24 Boulevard Royal L-2449, Luxembourg; “PayPal”) on our website. The purpose of data processing is to enable us to offer you payment via the payment service. When you select and use payment via PayPal, credit card via PayPal, direct debit via PayPal, or “Pay Later” via PayPal, the data required for payment processing is transmitted to PayPal in order to fulfill the contract with you using the selected payment method. This processing is based on Art. 6 (1) lit. b GDPR.

Cookies may be stored in this process, which enable your browser to be recognized. The resulting data processing is based on Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in offering a customer-oriented range of different payment methods. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.

Credit card via PayPal, direct debit via PayPal, and “Pay later” via PayPal
For certain payment methods, such as credit card via PayPal, direct debit via PayPal, or “Pay later” via PayPal, PayPal reserves the right to obtain credit information based on mathematical-statistical methods using credit agencies. To this end, PayPal transmits the personal data required for a credit check to a credit agency and uses the information received about the statistical probability of a payment default to make a balanced decision about the establishment, execution, or termination of the contractual relationship. The credit report may contain probability values (score values) that are calculated on the basis of scientifically recognized mathematical-statistical methods and which include address data, among other things, in their calculation. Your interests worthy of protection will be taken into account in accordance with the statutory provisions. The data processing serves the purpose of credit assessment for the initiation of a contract. The processing is carried out on the basis of Art. 6 (1) lit. f GDPR from our overriding legitimate interest in protection against payment default if PayPal makes advance payments.

You have the right to object at any time to the processing of your personal data based on Art. 6 (1) lit. f GDPR for reasons arising from your particular situation by notifying PayPal. The provision of data is necessary for the conclusion of the contract with your desired payment method. Failure to provide data will result in the contract not being concluded with your chosen payment method. ¨C94C ¨C95C ¨C112C¨C96C When paying via a third-party payment method, the data required for payment processing is transmitted to PayPal. This processing is based on Art. 6 (1) lit. b GDPR. In order to execute this payment method, the data may then be passed on by PayPal to the respective provider. This processing is carried out on the basis of Art. 6 (1) lit. b GDPR. Local third-party providers may include, for example:

Apple Pay (Apple Distribution International Ltd., Hollyhill Industrial Estate, Hollyhill, Cork, Ireland)
Google Pay (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland)

Purchase on account via PayPal
When paying by purchase on account, the data required for payment processing is first transmitted to PayPal. To execute this payment method, the data is then transmitted by PayPal to Ratepay GmbH (Franklinstraße 28-29, 10587 Berlin; “Ratepay”) in order to fulfill the contract with you using the selected payment method. This processing is carried out on the basis of Art. 6 (1) lit. b GDPR. Ratepay may carry out a credit check on the basis of mathematical-statistical methods (probability or score values) using credit agencies in accordance with the procedure described above. The purpose of data processing is to check creditworthiness for the initiation of a contract. Processing is carried out on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in protection against payment default if Ratepay makes advance payments. Further information on data protection and which credit agencies Ratpay uses can be found at https://www.ratepay.com/legal-payment-dataprivacy/ and https://www.ratepay.com/legal-payment-creditagencies/.

For more information on data processing when using PayPal, please refer to the corresponding privacy policy at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Use of the payment service provider Stripe

We use the Stripe payment service provided by Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, on our website. The purpose of data processing is to enable us to offer you payment via the payment service. When you select and use Stripe, the data required for payment processing is transmitted to Stripe in order to fulfill the contract with you using the selected payment method. This processing is carried out on the basis of Art. 6 (1) lit. b GDPR.

Stripe reserves the right to obtain credit information based on mathematical-statistical methods using credit agencies. To this end, Stripe transmits the personal data required for a credit check to a credit agency and uses the information obtained about the statistical probability of a payment default to make a balanced decision about the establishment, execution, or termination of the contractual relationship. The credit report may contain probability values (score values) that are calculated on the basis of scientifically recognized mathematical-statistical methods and which include address data, among other things, in their calculation. Your interests worthy of protection will be taken into account in accordance with the statutory provisions. The purpose of data processing is to check creditworthiness for the initiation of a contract. Processing is carried out on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in protection against payment default when Stripe makes advance payments.

You have the right to object at any time to the processing of your personal data based on Art. 6 (1) (f) GDPR for reasons arising from your particular situation by notifying Stripe. The provision of data is necessary for the conclusion of the contract with your desired payment method. Failure to provide data will result in the contract not being concluded with your chosen payment method.

All Stripe transactions are subject to the Stripe Privacy Policy. This can be found at https://stripe.com/de/privacy.

Use of the payment method Link

We use the payment service Link from Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland; “Stripe”) on our website.

The purpose of data processing is to offer you fast and easy payment via the payment service if you have a customer account with Link.

In order to integrate this payment service, it is necessary for Stripe to collect, store, and analyze data (e.g., IP address, device type, operating system, browser type, location of your device, language settings, date and time of the page view) when you visit the website and use the payment service. Cookies may also be used for this purpose, which enable your browser to be recognized.

When you select and use Link, the data required for payment processing is transmitted to Stripe in order to fulfill the contract with you using the selected payment method. This processing is carried out for the purpose of fulfilling the contract concluded between you and us on the basis of Art. 6 (1) lit. b GDPR.

For more information on data processing when using the Link payment service, please visit https://link.co/de/privacy and https://link.co/de/privacy-center.

Cookies

Our website uses cookies. Cookies are small text files that are stored in the Internet browser or by the Internet browser on a user’s computer system. When a user visits a website, a cookie may be stored on the user’s operating system. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is visited again.

Cookies are stored on your computer. Therefore, you have full control over the use of cookies. By selecting the appropriate technical settings in your Internet browser, you can be notified before cookies are set and decide individually whether to accept them, as well as prevent the storage of cookies and the transmission of the data they contain. Cookies that have already been stored can be deleted at any time. However, we would like to point out that you may not be able to use all functions of this website to their full extent.

The links below provide information on how to manage (including deactivate) cookies in the most popular browsers:

Chrome: https://support.google.com/accounts/answer/61416?hl=de
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09

Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen

Safari: https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac

Technically necessary cookies

Unless otherwise stated in the privacy policy below, we only use these technically necessary cookies for the purpose of making our website more user-friendly, effective, and secure. Cookies also enable our systems to recognize your browser even after you have changed pages and to offer you services. Some functions of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognized even after changing pages.

The use of cookies or comparable technologies is based on Section 25 (2) TDDDG. The processing of your personal data is based on Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in ensuring the optimal functionality of the website and a user-friendly and effective design of our website.

You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.

Use of the Real Cookie Banner from devowl.io
We use the cookie consent tool “Real Cookie Banner” from devowl.io GmbH (Tannet 12, 94539 Grafling, Germany; “devowl.io”) on our website.
This tool allows you to give your consent to data processing via the website, in particular the setting of cookies, and to exercise your right to revoke consent already given. The purpose of data processing is to obtain and document the necessary consent to data processing and thus comply with legal obligations. Cookies may be used for this purpose. The following information, among other things, may be collected and transmitted to devowl.io: date and time of the page view, information about the browser and device you are using, anonymized IP address, opt-in and opt-out data.
Data processing is carried out to fulfill a legal obligation based on Art. 6 (1) lit. c GDPR.
For more information on data processing by devowl.io, please visit https://devowl.io/de/datenschutzerklaerung/.

Analysis Advertising tracking Affiliate

Use of Google Analytics 4

We use the web analytics service Google Analytics from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website.

Data processing serves the purpose of analyzing this website and its visitors, as well as for marketing and advertising purposes. To this end, Google will use the information obtained on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity, and to provide other services related to website activity and internet usage to the website operator.

The following information, among other things, may be collected: IP address, date and time of the page view, click path, information about the browser and device you are using, pages visited, referrer URL (website from which you accessed our website), location data, and purchasing activities. Your data may be linked by Google to other data, such as your search history, your personal accounts, your usage data from other devices, and any other data that Google has about you.

Your IP address is first shortened by us on our own servers. Google thus receives only pseudonymized data.

Google uses technologies such as cookies, web storage in the browser, and tracking pixels, which enable an analysis of your use of the website. The use of cookies or comparable technologies is based on your consent in accordance with § 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR.

The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until revocation.

We use the advanced implementation of consent mode (Advanced Consent Mode). In this case, even if consent has not been given, user data is transmitted to Google in the form of “pings.” These pings may contain the following information, among other things: IP address to derive the IP country (the IP address is not logged), date and time of the page view, URL of the pages visited, user agent, referrer URL (website from which our website was accessed), or information about the triggering of website events such as a conversion. Based on this information, Google models user data in order to be able to perform a comprehensive usage analysis despite the refusal of consent.

The information generated about your use of this website is usually transferred to a Google server in the USA and stored there. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is therefore committed to complying with European data protection principles. Both Google and US government agencies have access to your data.

For more information on terms of use and data protection, please visit https://policies.google.com/technologies/partner-sites and https://policies.google.com/privacy?hl=de&gl=de.

Use of Matomo

We use the Matomo analysis tool from InnoCraft Ltd. (150 Willis St, 6011 Wellington, New Zealand; “Matomo”) on our website.

Data processing serves the purpose of analyzing this website and its visitors. The following information, among other things, may be collected: (anonymized) IP address, information about the browser and device you are using, files you have clicked on or downloaded, clicks on links to third-party websites, referrer URL (website from which you accessed our website), URL of our website, number of visits, time of your first visit, date and time of the visit, time zone, location data. This data can be used to create usage profiles under a pseudonym. The data collected using Matomo technologies is not used to personally identify visitors to this website and is not merged with personal data about the bearer of the pseudonym.

Cookies are used for this purpose, which enable the internet browser to be recognized.

The use of cookies or comparable technologies is based on your consent in accordance with § 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent until revocation.

For more information on data protection at Matomo, please visit https://matomo.org/matomo-cloud-privacy-policy/ and https://matomo.org/gdpr-analytics/.

Use of Hotjar
We use the analysis tool from Hotjar Ltd. (Level 2, St Julian’s Business Centre, 3, Elia Zammit Street, St Julians STJ1000, Malta; “Hotjar”) on our website.
The purpose of data processing is to design, optimize, and analyze our website in line with user needs.
The tool records random movements of visitors to the website. This creates a log of mouse movements, scrolling behavior, dwell time, and clicks on the website (known as a heat map).

Hotjar uses cookies for this purpose. The following information may be collected: IP address (in anonymized form), information about the device you are using (screen size, devices, unique device identifier), information about the browser you are using, location data (country only), preferred language for displaying the website, operating system used. Detailed information about the cookies used, their function, and their storage period can be found here: https://help.hotjar.com/hc/en-us/articles/115011789248-Hotjar-Cookies.

User profiles are created from this data under a pseudonym. The data is not used to personally identify visitors to the website and is not merged with personal data relating to the bearer of the pseudonym. Hotjar is contractually prohibited from selling the collected data to other third parties.
Your data may be transferred to the USA. An adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF), is in place for the USA. Hotjar is not certified under the TADPF. Data transfer is based, among other things, on appropriate safeguards. Hotjar will provide you with further information on the measures taken upon request.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent until revocation.
Further information on data protection when using Hotjar can be found here: https://www.hotjar.com/legal/policies/privacy#enduserenglish.

Use of WooCommerce Order Attribution Tracking
We use the statistics and analysis function “Order Attribution Tracking” from WooCommerce Ireland Ltd. (Grand Canal Dock, 25 Herbert Pl, Dublin, D02 AY86; “WooCommerce”) on our website. WooCommerce is a company affiliated with Automattic Inc. (60 29th Street #343, San Francisco, CA 94110) CA 94110) and WooCommerce Inc. (60 29th Street #343, San Francisco, CA 94110).
The purpose of data processing is to analyze orders in this online store. To this end, we process data that provides us with information about which marketing channel you used to reach our online store. With the help of this data, we can optimize our marketing measures and use them in a more targeted manner to acquire new customers. The following data, among other things, is collected and processed: IP address; browser type; date and time of the page view; referrer URL (website through which you accessed our online store); entry page (first subpage of our online store that you accessed) ; device type (desktop, tablet, or mobile device); the number of subpages of our online shop that you visited before placing your final order. However, this data is only stored if you place an order. Your data is not analyzed across multiple sessions. This function uses cookies.

The use of cookies or comparable technologies is based on your consent in accordance with Section 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent until revocation.
General information on data protection at WooCommerce can be found at https://automattic.com/privacy/. Specific information on the “Order Attribution Tracking” analysis function and information on the data processed and cookies used in this context can be found at https://woo.com/document/order-attribution-tracking/.

Use of Meta Pixel

We use Meta Pixel from Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; “Meta”) on our website.

Meta and we are jointly responsible for the collection of your data when the service is integrated and for the transfer of this data to Meta. The basis for this is an agreement between us and Meta on the joint processing of personal data, which defines the respective responsibilities. The agreement is available at https://de-de.facebook.com/legal/terms/businesstools. According to this agreement, we are responsible in particular for fulfilling the information obligations under Articles 13 and 14 of the GDPR, for complying with the security requirements of Article 32 of the GDPR with regard to the correct technical implementation and configuration of the service, and for complying with the obligations under Articles 33 and 34 GDPR, insofar as a breach of the protection of personal data affects our obligations under the joint processing agreement. Meta is responsible for enabling the rights of data subjects in accordance with Articles 15–20 GDPR, complying with the security requirements of Article 32 GDPR with regard to the security of the service, and complying with the obligations under Articles 33 and 34 of the GDPR, insofar as a breach of the protection of personal data affects Meta’s obligations under the joint processing agreement.

The application serves the purpose of targeting website visitors with interest-based advertising on the social networks Facebook and Instagram. To this end, Meta’s remarketing tag has been implemented on the website. This tag establishes a direct connection to the Meta servers when you visit the website. This transmits information about which of our pages you have visited to the Meta server. Meta assigns this information to your personal Facebook and/or Instagram user account. When you visit the social networks Facebook or Instagram, you will then be shown personalized, interest-based ads.

The application also serves the purpose of generating conversion statistics. This tells us the total number of users who clicked on one of our ads and were redirected to a page tagged with a conversion tracking tag, as well as what actions were taken after being redirected to this website. However, we do not receive any information that can be used to personally identify users.

Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself under the TADPF and is therefore committed to complying with European data protection principles.

The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent until revocation.
You can deactivate the “Custom Audiences” remarketing function here. For more information about Meta’s collection and use of data, your rights in this regard, and options for protecting your privacy, please refer to Meta’s privacy policy at https://www.facebook.com/about/privacy/.

Use of Google Ads conversion tracking

We use the online advertising program “Google Ads” on our website and, within this framework, conversion tracking (visitor action evaluation). Google Conversion Tracking is an analysis service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; Google).
When you click on an ad placed by Google, a conversion tracking cookie is stored on your computer. These cookies have a limited validity, do not contain any personal data, and therefore do not serve to personally identify you. If you visit certain pages on our website and the cookie has not yet expired, Google and we can recognize that you clicked on the ad and were redirected to this page. Each Google Ads customer receives a different cookie. This means that cookies cannot be tracked across the websites of Ads customers.

The information collected using the conversion cookie is used to generate conversion statistics. This tells us the total number of users who clicked on one of our ads and were redirected to a page tagged with a conversion tracking tag. However, we do not receive any information that can be used to personally identify users. We use the advanced implementation of consent mode (Advanced Consent Mode). In this case, user data is also transmitted to Google in the form of “pings” even if consent has not been given. These pings may contain the following information, among other things: IP address to derive the IP country (the IP address is not logged), date and time of the page view, URL of the pages visited, user agent, referrer URL (website from which our website was accessed), or information about the triggering of website events such as a conversion. Based on this information, Google models user data in order to be able to perform a comprehensive usage analysis despite the refusal of consent.
Your data may be transferred to the servers of Google LLC in the USA. An adequacy decision by the EU Commission is in place for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is therefore committed to complying with European data protection principles.

The use of cookies or comparable technologies is based on your consent in accordance with Section 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until revocation.
Further information and Google’s privacy policy can be found at: https://www.google.de/policies/privacy/

Use of the ADCELL partner program

We use the “ADCELL” partner program from Firstlead GmbH (Rosenfelder Str. 15-16, 10315 Berlin; “ADCELL”).
ADCELL and we are jointly responsible for the collection of your data and the transmission of this data to ADCELL when the service is integrated. This is based on an agreement between us and ADCELL on the joint processing of personal data. The agreement can be accessed at https://www.adcell.de/datenverarbeitung. According to this agreement, we and ADCELL are equally responsible for fulfilling the obligations under the GDPR, in particular for fulfilling the information obligations under Art. 13 and 14 of the GDPR and for granting the rights of data subjects pursuant to Articles 15–21 of the GDPR.

When you click on an advertisement containing a partner link, ADCELL places a cookie on your computer for conversion tracking purposes. The cookies are used to ensure correct billing within the partner program by recording the success of an advertising medium. The cookies recognize that you have clicked on the advertisement and allow the origin of the order to be traced back to the advertiser. ADCELL also uses tracking pixels. These allow information such as visitor traffic on the pages to be evaluated.
The information generated by cookies and tracking pixels about the use of this website (including the IP address) and the delivery of advertising formats is transmitted to an ADCELL server and stored there. Among other things, ADCELL can recognize that the affiliate link on this website has been clicked. ADCELL may pass on this (anonymized) information to contractual partners under certain circumstances, but data such as the IP address will not be merged with other stored data.
The use of cookies or comparable technologies is based on your consent in accordance with § 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing based on the consent until revocation.

Plug-ins and other stuff

Using Google Tag Manager
We use Google Tag Manager from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website.
This app manages JavaScript tags and HTML tags, which are used to implement tracking and analysis tools in particular. The purpose of data processing is to design and optimize our website in line with user needs.
Google Tag Manager itself does not store cookies or process personal data. However, it enables the triggering of additional tags that can collect and process personal data.
You can find more information on terms of use and data protection here.

Use of social plug-ins via “Shariff”
We use social network plug-ins on our website. To ensure that you retain control over your data, we use the data protection-secure “Shariff” buttons.
Without your express consent, no links to the social network servers are established and, consequently, no data is transmitted.
“Shariff” was developed by the specialists at the computer magazine c’t. It enables greater privacy on the internet and replaces the usual “share” buttons of social networks. You can find more information about the Shariff project here https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html.

When you click on the buttons, a pop-up window appears in which you can log in with your data at the respective provider. Only after you have actively logged in will a direct connection to the social networks be established.
By logging in, you consent to the transfer of your data to the respective social media provider. Among other things, your IP address and information about which of our pages you have visited will be transmitted. If you are connected to one or more of your social network accounts at the same time, the information collected will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your social media accounts before visiting our website and activating the buttons. The social networks listed below are integrated using the “Shariff” function.
For more information on the scope and purpose of the collection and use of data, as well as your rights and options for protecting your privacy, please refer to the linked privacy policies of the providers.

Facebook by Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://www.facebook.com/policy.php

LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland)
https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). LinkedIn has certified itself under the TADPF and is therefore committed to complying with European data protection principles.

Pinterest by Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA)
https://policy.pinterest.com/de/privacy-policy
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified under the TADPF.

X, formerly known as Twitter, (X Corp., 1355 Market Street, Suite 900 San Francisco, CA 94103, USA)

https://twitter.com/privacy
https://twitter.com/personalization

Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). X has certified itself under the TADPF and is therefore committed to complying with European data protection principles.

Use of Wordfence
We use the Wordfence security plugin from Defiant Inc. (00 5th Ave Ste 4100, Seattle, WA 98104, USA “Wordfence”) on our website as part of order processing. Data processing is used in particular to protect against viruses and malware, and to detect and defend against brute force and DDoS attacks. To this end, Wordfence uses cookies to classify website visitors as suspicious or safe. Among other things, the IP address of the website visitor is stored on Wordfence’s servers for this purpose. IP addresses classified as safe are placed on a white list. Suspicious IP addresses, on the other hand, end up on a blacklist. For this purpose, our website establishes a permanent connection to Wordfence’s servers so that Wordfence can compare its databases with the accesses made on our website and block them if necessary. Your data will be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Wordfence is not certified under the TADPF. Data transfer is based, among other things, on standard contractual clauses as appropriate safeguards for the protection of personal data, which can be viewed at: https://www.wordfence.com/standard-contractual-clauses/.
The use of cookies or comparable technologies is based on your consent in accordance with Section 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent until revocation.
For more information on the collection and use of data by Wordfence, your rights in this regard, and options for protecting your privacy, please refer to Wordfence’s privacy policy at https://www.wordfence.com/privacy-policy/ and https://www.wordfence.com/help/general-data-protection-regulation/#standard-contractual-clauses.

Integration of the buyer seal logo
The buyer seal logo (Händlerbund Management AG, Kohlgartenstraße 11–13, 04315 Leipzig) is integrated into our website. When you visit our website, the browser used on your device automatically sends information to the server of Händlerbund Management AG. This information is temporarily stored in a so-called server log file for 7 days. The following information is collected without your intervention and stored until it is automatically deleted:

IP address of the requesting computer,
date and time of access,
name and URL of the file accessed,
website from which access is made (referrer URL),
Browser used, protocol and, if applicable, the operating system of your computer and the name of your access provider.
The temporary storage of the IP address by the system is necessary to enable the website to be delivered. For this purpose, the IP address must remain stored for the duration of the session. Storage in log files is carried out to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of the information technology systems. This data is not stored together with other personal data. The legal basis for data processing is Art. 6 (1) (f) GDPR.

Use of Google Fonts
We use Google Fonts from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website.
The purpose of data processing is to ensure the uniform display of fonts on our website. To load the fonts, a connection to Google’s servers is established when the page is accessed. Cookies may be used for this purpose. Among other things, your IP address and information about the browser you are using are processed and transmitted to Google. This data is not linked to your Google account.

Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is therefore committed to complying with European data protection principles.

The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is based on your consent in accordance with Art. 6 (1) lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent until revocation.

Further information on data processing and data protection can be found at https://www.google.de/intl/de/policies/ and at https://developers.google.com/fonts/faq.

Rights of data subjects and storage period

Duration of storage
After complete contract processing, the data will initially be stored for the duration of the warranty period, then in accordance with statutory retention periods, in particular those under tax and commercial law, and then deleted after expiry of the period, unless you have consented to further processing and use.

Rights of the data subject
If the legal requirements are met, you have the following rights under Articles 15 to 20 of the GDPR: right to information, right to rectification, right to erasure, right to restriction of processing, right to data portability.
In addition, pursuant to Art. 21 (1) GDPR, you have the right to object to processing based on Art. 6 (1) f GDPR and to processing for the purposes of direct marketing.

Right to lodge a complaint with the supervisory authority
Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with the supervisory authority if you believe that the processing of your personal data is not lawful.

You can lodge a complaint with the supervisory authority responsible for us, which you can reach at the following contact details:

Hessian Commissioner for Data Protection and Freedom of Information
P.O. Box 3163
65021 Wiesbaden, Germany
Tel.: +49 611 14080
Fax: +49 611 1408900 or +49 611 1408901
Email: poststelle@datenschutz.hessen.de

Right to object
If the processing of personal data listed here is based on our legitimate interest pursuant to Art. 6 (1) lit. f GDPR, you have the right to object to this processing at any time with effect for the future for reasons arising from your particular situation.
Once you have objected, the processing of the data concerned will be terminated unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights, and freedoms, or if the processing serves to assert, exercise, or defend legal claims.

Last update: October 22, 2024

letzte Aktualisierung: 22.10.2024