The person responsible for the collection, processing and use of your personal data in terms of Art. 4 Nr. 7 DSGVO is:
Dr. Ricarda Opitz
Phone: +49 30 700141-001
If you wish to object to the collection, processing or use of your data by us in accordance with these data protection rules, either in whole or for individual measures, you may address your objection to the person responsible.
2 General purposes of processing
We use personal data for the purpose of operating the website.
3 What data we use and why
The hosting services used by us serve to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services that we use for the purpose of operating the website.
In doing so, we or our hosting provider process inventory data, contact data, usage data, meta data and communication data of customers, interested parties and visitors to this website on the basis of our legitimate interest in an efficient and secure provision of our website in accordance with Art. 6 (1) point 1f) DSGVO in conjunction with Art. 28 DSGVO.
3.2 Data processing
We collect information about you when you use this website. We automatically collect information about your usage patterns and interaction with us and record data about your computer or mobile device. We collect, store and use data about each access to our website (so-called server log files). The access data includes:
- Name and URL of the retrieved file
- Date and time of the retrieval
- Data volume transferred
- Message about successful retrieval (HTTP response code)
- Type and version of browser
- Operating system
- Referer URL (meaning the page previously visited)
- Websites accessed by the user‘s system via our website
- User‘s internet service provider
- IP address and the requesting provider
We use this log data without assigning it to you personally or otherwise profiling it for statistical evaluations for the purpose of operating, securing and optimizing our website, but also to anonymously record the number of visitors to our website (traffic) and the extent and type of use of our website and services, as well as for billing purposes to measure the number of clicks received from cooperation partners. Based on this information, we can provide personalized and location-based content and analyze traffic, troubleshoot and fix errors, and improve our services.
We reserve the right to check the log data retrospectively if there is a justified suspicion of unlawful use on the basis of concrete indications. We store IP addresses in the log files for a limited period of time if this is necessary for security purposes or for the provision of services or billing for a service, e.g., if you use one of our offers. After cancellation of the order process or after receipt of payment, we delete the IP address if it is no longer required for security purposes. We also store IP addresses if we have a concrete suspicion of a criminal offense in connection with the use of our website. In addition, as part of your account, we store the date of your last visit (e.g., during registration, log-in, when clicking on links, etc.).
We use so-called session cookies to optimize our website. A session cookie is a small text file that is sent by the respective servers when you visit a website and is temporarily stored on your hard drive. This file contains a so-called session ID, with which various requests of your browser can be assigned to a joint session. Through this, your computer can be recognized when you return to our website. Those cookies are deleted after you close your browser. They are used, for example, to enable you to use the shopping cart function across multiple pages.
The following data and information are stored in the cookies:
- Log in information
- Language settings
- Search terms entered
- Information about the number of visits to our website and the use of individual functions of our website
When the cookie is activated, it is assigned an identification number. An assignment of your personal data to this identification number will not be made. Your name, IP address or similar data that would allow the cookie to be assigned to you are not placed in the cookie. Based on the cookie technology, we only receive pseudonymized information, for example, about which pages of our store were visited, which products were viewed, etc.
You can set your browser so that you are informed in advance about the setting of cookies and can decide in individual cases whether you want to refuse the acceptance of cookies for certain cases or generally, or that cookies are prevented completely. This may limit the website‘s functionality.
3.4 Request by e-mail
If you contact us (e.g., by e-mail), we process your information to handle the request and in the event that follow-up quesions arise.
If the data processing is carried out for the implementation of pre-contractual measures, which are carried out upon your request, or, if you are already our customer, for the implementation of the contract, the legal basis for this data processing is Art. 6 (1) point 1b) DSGVO.
We only process further personal data if you consent to this (Art. 6 (1) point 1a) DSGVO) or we have a legitimate interest in processing your data (Art. 6 (1) point 1f) DSGVO). A legitimate interest is, for example, to respond to your e-mail.
4 Storage duration
5 Revocation of your consent to the processing of data
According to the applicable laws, you have various rights regarding your personal data. If you wish to exercise these rights, please send your request by email or by post, clearly identifying yourself, to the address mentioned in point 1.
6 Data security
The operators of this website and its pages take the protection of your personal data very seriously and work to ensure the security of your data within the framework of the applicable data protection laws and technical possibilities.
Your personal data is transmitted in encrypted form. We use the SSL (Secure Socket Layer) coding system, but we would like to point out that data transmission on the Internet (e.g., when communicating by email) can have security gaps. A complete protection of the data against access by third parties is not possible.
To secure your data, we maintain technical and organizational security measures in accordance with Art. 32 DSGVO, which we continually adapt to the state of the art.
We also do not guarantee that our offer will be available at certain times; disruptions, interruptions or failures cannot be ruled out. The servers we use are carefully backed up on a regular basis.
7 Disclosure of data to third parties, no data transfer to non-EU countries
We only use your personal data within our company.
If and as far as we involve third parties within the framework of the fulfillment of contracts (such as logistics service providers), they will ony recieve personal data to the extent that the transfer is necessary for the corresponding service.
In the event that we outsource certain parts of data processing („comissioned processing“), we contractually oblige commissioned processors to use personal data only in accordance with the requirements of data protection laws and to ensure the protection of the rights of the person affected.
A data transfer to bodies or persons outside the EU outside the case mentioned in this declaration in point 4 does not take place and is not planned.
Matomo Tracking Opt-Out