Privacy policy

Data protection

Unless otherwise stated below, the provision of your personal data is neither legally nor contractually required, nor is it necessary for the conclusion of a contract. You are not obligated to provide the data. Failure to provide it will have no consequences. This only applies unless otherwise stated during the subsequent processing operations.

"Personal data" means any information relating to an identified or identifiable natural person.

Server log files

You can visit our websites without providing any personal information.
Each time you access our website, usage data is transmitted to us or our web host/IT service provider via your internet browser and stored in log files (so-called server log files). This stored data includes, for example, the name of the page accessed, the date and time of access, the IP address, the amount of data transferred, and the requesting provider.
The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in ensuring the smooth operation of our website and improving our offering.

Your data may be transferred to third countries outside the EU, particularly to Canada and the USA, and processed there. An adequacy decision of the EU Commission exists for Canada. An adequacy decision of the EU Commission exists for the USA: the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to those of the EU Commission's standard contractual clauses.

Contact

Controller/data protection officer

Please contact us if you wish. The person responsible for data processing is: Timur Berger, Delbrückstraße 16A, 14193 Berlin, Germany, +4917623575209. info@biancoboutique.de

You can reach our data protection officer directly at: berger-shop@gmx.de

Customer contact via e-mail

If you initiate business contact with us via email, we will only collect your personal data (name, email address, message text) to the extent you provide it. This data processing serves to process and respond to your contact request.
If the contact serves to carry out pre-contractual measures (e.g. advice in the event of purchase interest, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR.
If contact is made for other reasons, this data processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in processing and answering your request. In this case, you have the right to withdraw your consent at any time, for reasons related to your particular situation, based on Article 6 (1) (f). f GDPR to object to the processing of personal data concerning you.
We will only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.

Collection and processing when using the contact form

When you use the contact form, we collect your personal data (name, email address, message text) only to the extent you provide it. Data processing serves the purpose of establishing contact.
If the contact serves to carry out pre-contractual measures (e.g. advice in the event of purchase interest, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR.

If contact is made for other reasons, this data processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in processing and answering your request. In this case, you have the right to object at any time to the processing of personal data concerning you based on Art. 6 (1) (f) GDPR, for reasons arising from your particular situation.
We will only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.

Using Google Maps API address validation

We use address validation on our website from Google (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland “Google”).
The purpose of data processing is to check your entries in our address forms in real time for input and spelling errors, and to supplement any missing data. If data is entered incorrectly, alternative suggestions for correcting the data will be displayed. For this purpose, the address data you enter is transmitted to the provider, where it is stored and evaluated.

Among other things, the following information may be transmitted to Google and processed there: postal addresses (country, city, postal code, street, house number), email address, telephone number.
Your data may also be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

Your personal data is processed on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in a correct data basis for the fulfilment of our contractual obligations. You have the right to object to the processing of personal data concerning you at any time for reasons related to your particular situation.
The data is processed separately by the provider and not merged with other data. It is deleted by the provider as soon as the status of the entered data has been determined, but no later than 30 days later.
For more information about Google’s terms of use and privacy policy, please visit: https://cloud.google.com/maps-platform/terms or under https://www.google.de/policies/privacy/.

Customer Account Orders

customer account

When you open a customer account, we collect your personal data to the extent specified therein. The data processing serves the purpose of improving your shopping experience and simplifying order processing. The processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of the consent until the revocation. Your customer account will then be deleted.

Collection, processing and disclosure of personal data when placing orders

When you place an order, we collect and process your personal data only to the extent necessary to fulfill and process your order and to process your inquiries. Providing this data is required to conclude a contract. Failure to provide this data will result in no contract being concluded. Processing is based on Art. 6 (1) (b) GDPR and is necessary to fulfill a contract with you.

Your data may be shared with, for example, shipping companies, dropshipping or fulfillment providers, payment service providers, order processing service providers, and IT service providers. In all cases, we strictly adhere to legal requirements. The scope of data transfer is limited to a minimum.

reviews advertising

Data collection when writing a comment or rating

When you comment on or rate an article or post, we collect your personal data (name, email address, comment text) only to the extent you provide it. This processing serves the purpose of enabling commenting/rating and displaying comments/ratings.

By submitting the comment/review, you consent to the processing of the submitted data. This processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of your consent until the revocation. Your personal data will then be deleted.

In addition, when you submit a comment/rating, your IP address will be saved to prevent misuse of the comment or rating function and to ensure the security of our information technology systems. By submitting the comment/rating, you consent to the processing of the transmitted data. This processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of your consent until the revocation. Your IP address will then be deleted.

Using Trustpilot

We use the rating system "Trustpilot" from Trustpilot A/S (Pilestræde 58, 1112 Copenhagen, Denmark; "Trustpilot").
Trustpilot enables us to collect customer reviews and display them on our website to give you insight into the quality of our services.

After placing an order, you may receive an invitation from us or Trustpilot to submit a review and then submit a review. We or Trustpilot may process, among other things, the following data: email address, name, information about your device and location (IP address, browser settings, type of browser used, browser language, time zone), information about your Trustpilot user account (username, photo, preferred language), information about the purchased product or service used (reference or order number, product details), the content of your review and the star rating you gave, your product photos or videos (if you have included them with your product review). This data may also be used to verify your review.

Processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent, provided that you have expressly consented to the sharing of your data and to receiving the request for feedback. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information about data protection when using Trustpilot, please visit: https://de.legal.trustpilot.com/for-reviewers/end- user-privacy-terms.

Using Judge.me

We use the rating system "Judge.me" provided by Judge.me Ltd (c/o Buckworths 2nd Floor, 1-3 Worship Street, London, England, EC2A 2AB; "Judge.me") on our website.
Judge.me enables us to collect customer reviews and display them on our website to give you insight into the quality of our services.

After placing an order, you may receive an invitation from us or Judge.me to submit a review and then submit a review. In doing so, we or Judge.me may process, among other things, the following data: email address, name, telephone number, address, information about your device (IP address, information about your web browser and the operating system used), information about the purchased product or service used (order number, product details), the content of your review and the star rating you gave, your product photos or videos (if you have included them with your product review). This data may also be used to verify your review.
Judge.me uses technologies such as cookies.
Your data may be transferred outside the EU to the United Kingdom. There is an adequacy decision from the EU Commission for the United Kingdom.
Your data may be transferred to the USA. For the USA, the EU Commission has an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Judge.me is not certified under the TADPF. This data transfer is based on special agreements approved for use in the United Kingdom, which provide the same level of protection as personal data in the United Kingdom.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) S1 TDDDG in conjunction with Art. 6 (1) (a) GDPR. Your personal data will be processed with your consent on the basis of Art. 6 (1) (a) GDPR, provided that you have expressly consented to the transfer of your data and to receiving the request for a review.You can revoke your consent at any time without invoking the legal capacity of the processing carried out on the basis of your consent until the revocation.

For more information about data protection when using Judge.me, please visit: https://judge.me/privacy.

Use of the email address for sending newsletters

We use your email address to send you information and offers via newsletter, provided you have expressly consented to this. Data processing serves exclusively for the purpose of advertising. For this purpose, we process your email address and, if applicable, other data that you have voluntarily provided when registering for our newsletter.
Processing is based on Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.

You can unsubscribe from the newsletter at any time by using the corresponding link in the newsletter or by notifying us. Your email address will then be removed from the mailing list. Despite being removed from the mailing list, we may continue to store your email address on a so-called blacklist to prevent you from receiving newsletter emails from us in the future. This storage is based on Art. 6 (1) (f) GDPR, based on our and your legitimate interest in preventing the further use of your email address to send you our newsletter. You have the right to object to the processing of personal data concerning you at any time for reasons related to your particular situation.

Use of email address for sending direct mail

We use your email address, which we received as part of the sale of a product or service, to electronically send advertising for our own products or services similar to those you have already purchased from us, unless you have objected to this use. Providing your email address is necessary for the conclusion of the contract. Failure to provide it will result in no contract being concluded. Processing is based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in direct advertising. You can object to this use of your email address at any time by notifying us. You can find the contact details for exercising your objection in the legal notice. You can also use the link provided in the promotional email. There will be no additional costs for this other than the transmission costs according to the basic rates.

Using Klaviyo

We use the service of Klaviyo Inc. (125 Summer St Floor 7, Boston, MA 02111, USA; “Klaviyo”) to send the newsletter as part of order processing.
We will forward the information you provide during newsletter registration (email address, first and last name, if applicable) to Klaviyo. Data processing serves the purpose of sending the newsletter and its statistical analysis.
To evaluate newsletter campaigns, the newsletters sent contain a 1x1 pixel graphic (tracking pixel) or a tracking link. This allows us to determine whether you have opened the newsletter and whether you have clicked on any integrated links. In this context, we collect your personal data, such as your IP address, browser type and device, and the time of access. This data can be used to create user profiles under a pseudonym. The collected data is not used to identify you personally. The collected data is used solely for statistical analysis to improve newsletter campaigns. Your data is generally transmitted to Klaviyo servers in the USA and stored there. For the USA, the EU Commission has an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Klaviyo has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

Your personal data is processed on the basis of Art. 6 (1) (f) GDPR based on our overriding legitimate interest in a targeted, effective and user-friendly newsletter system. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.

For more information about Klaviyo’s privacy policy, please visit https://www.klaviyo.com/legal/privacy-notice and under https://www.klaviyo.com/legal/data-processing-agreement.

Use of email address for availability notifications

We offer a product availability notification service on our website. If an item is temporarily unavailable, you have the option of entering your email address for the respective item and being informed by email when it becomes available, provided you have consented to this. You will receive a one-time notification by email about the availability of the respective item. Processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent until the revocation. You can unsubscribe from the availability notification at any time by notifying us. Your email address will then be removed from the mailing list.

Shipping service provider merchandise management

Forwarding of the e-mail address to shipping companies for information about the shipping status

We will pass on your email address to the shipping company as part of the contract processing, provided you have expressly consented to this during the ordering process. The purpose of this transfer is to inform you about the shipping status by email. Processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us or the shipping company, without affecting the legality of the processing carried out on the basis of your consent until the revocation.

Use of an external merchandise management system

We use a merchandise management system to process your order. For this purpose, your personal data collected during the order process will be transferred to
Billbee GmbH, Arolser Str. 10, 34477 Twistetal Haufe Lexware Services GmbH & Co. KG Postfach 1363 82152 Planegg/Munich.

The processing of your personal data serves the purpose of fulfilling the contract concluded with you and is based on Art. 6 (1) (b) GDPR.

payment service provider

Using PayPal

We use the payment service PayPal from PayPal (Europe) on our website S.à.rl et Cie, S.CA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal"). The data processing serves the purpose of being able to offer you payment via the payment service. By selecting and using payment via PayPal, the data required for payment processing will be transmitted to PayPal in order to fulfill the contract with you using the selected payment method. This processing is carried out on the basis of Art. 6 (1) (b) GDPR.

All PayPal transactions are subject to the PayPal Privacy Policy, which can be found

under https://www.paypal.com/de/webapps/mpp/ua/privacy-full

Using PayPal Check Out

We use the payment service PayPal Check-Out from PayPal (Europe) on our website S.à.rl et Cie, S.CA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal"). The data processing serves the purpose of being able to offer you payment via the payment service. By selecting and using payment via PayPal, credit card via PayPal, direct debit via PayPal, or "Pay Later" via PayPal, the data required for payment processing will be transmitted to PayPal in order to fulfill the contract with you using the selected payment method. This processing is carried out on the basis of Art. 6 (1) (b) GDPR.

Cookies may be stored that enable your browser to be recognized. The resulting data processing is based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in offering a customer-oriented range of payment methods. You have the right to object to the processing of personal data concerning you at any time for reasons related to your particular situation.

Credit card via PayPal, direct debit via PayPal & “Pay later” via PayPal
For certain payment methods such as credit card via PayPal, direct debit via PayPal, or "Pay later" via PayPal, PayPal reserves the right to obtain a credit report based on mathematical-statistical procedures using credit agencies. For this purpose, PayPal transmits the personal data required for a credit check to a credit agency and uses the information obtained regarding the statistical probability of a payment default to make a considered decision regarding the establishment, implementation, or termination of the contractual relationship. The credit report may contain probability values (score values) calculated based on scientifically recognized mathematical-statistical procedures, which include, among other things, address data. Your legitimate interests will be considered in accordance with legal provisions. Data processing serves the purpose of credit assessment for the initiation of a contract. The processing is carried out on the basis of Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in protecting against payment defaults when PayPal makes advance payments.
You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time by notifying PayPal, for reasons arising from your particular situation. Providing the data is necessary for concluding the contract using your preferred payment method. Failure to provide this data will result in the contract not being concluded using your chosen payment method.

Third-party providers
When paying using a third-party payment method, the data required for payment processing will be transmitted to PayPal. This processing is based on Art. 6 (1) (b) GDPR. To process this payment method, PayPal may then forward the data to the respective provider. This processing is based on Art. 6 (1) (b) GDPR. Local third-party providers can include, for example:

Apple Pay (Apple Distribution International Ltd., Hollyhill Industrial Estate, Hollyhill, Cork, Irland) Google Pay (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Irland)

Purchase on account via PayPal
When paying via invoice, the data required for payment processing is first transmitted to PayPal. To process this payment method, PayPal then transmits the data to Ratepay GmbH (Franklinstraße 28-29, 10587 Berlin; "Ratepay") in order to fulfill the contract with you using the selected payment method. This processing is carried out on the basis of Art. 6 (1) (b) GDPR. Ratepay may conduct a credit check based on mathematical-statistical procedures (probability or score values) using credit agencies according to the process already described above. The data is processed for the purpose of credit assessment for the initiation of a contract. The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in protecting against payment default when Ratepay makes advance payments. Further information on data protection and which credit agencies use Ratpay can be found at https://www.ratepay.com/legal- payment-dataprivacy/ and https://www.ratepay.com/legal-payment-creditagencies/.

Further information on data processing when using PayPal can be found in the associated privacy policy at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Use of the payment service provider Mollie

We use the payment service provider Mollie BV (Keizersgracht 313, 1016 EE Amsterdam, Netherlands; “Mollie”) to process payments on our website. The data processing serves the purpose of being able to offer you various payment methods through payment processing via the payment service provider Mollie. If you have chosen one of the payment options offered by the payment service provider Mollie, the data required for payment processing will be transmitted to Mollie. This includes your payment data (for example, bank account number or credit card number), your IP address, your internet browser and device type, and in some cases your first and last name, your address details and information about the product or service you have purchased from us. This data processing is carried out on the basis of Art. 6 (1) (b) GDPR. Further information on data processing when using the payment service provider Mollie can be found in the associated privacy policy https://www.mollie.com/de/privacy

Our website uses cookies. Cookies are small text files that are stored in the Internet browser or by the Internet browser on a user's computer system. When a user visits a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string that allows the browser to be uniquely identified when the website is visited again.

Cookies are stored on your computer. Therefore, you have full control over the use of cookies. By selecting the appropriate technical settings in your Internet browser, you can be notified before cookies are set and decide whether to accept them individually, as well as prevent the storage of cookies and the transmission of the data they contain. Cookies that have already been stored can be deleted at any time. However, please note that if you do this, you may not be able to use all of the features of this website to their full extent.

The following links will tell you how to manage (including deactivate) cookies in the most important browsers:
Chrome: https://support.google.com/accounts/answer/61416?hl=de
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9- 2a946a29ae09

Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
Safari: https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac

Technically necessary cookies

Unless otherwise stated in the privacy policy below, we only use technically necessary cookies to make our website more user-friendly, effective, and secure. Furthermore, cookies enable our systems to recognize your browser even after you change pages and to offer you services. Some functions of our website cannot be offered without the use of cookies. For these functions, it is necessary that the browser is recognized even after you change pages.

The use of cookies or similar technologies is based on Section 25 (2) of the Telemedia Act (TDDDG). Your personal data is processed on the basis of Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in ensuring the optimal functionality of the website and a user-friendly and effective design of our offering.
You have the right to object to the processing of personal data concerning you at any time for reasons related to your particular situation.

Verwendung des Shopify Consent-Tools (Shopify Privacy & Compliance)

We use the consent tool “Shopify Privacy & Compliance” from Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") on our website. Shopify is a service provider affiliated with Shopify Inc. (151 O'Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada) affiliated company.
The tool enables you to grant consent to data processing via the website, in particular the use of cookies, as well as to exercise your right to withdraw consent you have already granted. Data processing serves the purpose of obtaining and documenting the necessary consent to data processing and thus complying with legal obligations. Cookies may be used for this purpose. User information, including your IP address, is collected and transmitted to Shopify. Your data may be transferred to Shopify. transferred to third countries outside the EU, in particular Canada and the USA, and processed there. An adequacy decision of the EU Commission exists for Canada. An adequacy decision of the EU Commission exists for the USA: the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to those of the EU Commission's standard contractual clauses.

Data processing is carried out to fulfill a legal obligation on the basis of Art. 6 (1) (c) GDPR. Further information on data protection at Shopify can be found at https://www.shopify.com/de/legal/datenschutz.

Analysis of advertising tracking

Use of Google Analytics 4

We use the web analysis service Google Analytics from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website.
The data processing serves the purpose of analyzing this website and its visitors, as well as for marketing and advertising purposes. Google will use the information obtained on behalf of the website operator to evaluate your use of the website, to compile reports on website activity, and to provide the website operator with other services related to website activity and internet usage.

The following information may be collected, among others: IP address, date and time of the page visit, click path, information about the browser and device you use, pages visited, referrer URL (website from which you accessed our website), location data, purchasing activities. Google may link your data with other data, such as your search history, your personal accounts, your usage data from other devices, and any other data Google has about you.

The IP address will be shortened by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area.

Your personal data will be processed with your consent on the basis of Art. 6 (1) (a) GDPR. You may revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.

We use the advanced implementation of consent mode (Advanced Consent Mode). This means that even if consent is not granted, user data is transmitted to Google in the form of "pings." These pings may contain, among other things, the following information: IP address to determine the IP country (the IP address is not logged), date and time of the page visit, URL of the pages visited, user agent, referrer URL (website from which our website was accessed), or information about the triggering of website events such as a conversion. Based on this information, Google models user data in order to be able to conduct a comprehensive usage analysis despite the refusal of consent.

The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. For the USA, the EU Commission has adopted an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to adhering to European data protection principles. Both Google and US government authorities have access to your data.

Further information on terms of use and data protection can be found at https://policies.google.com/technologies/partner-sites and under https://policies.google.com/privacy?hl=de&gl=de.

Using Shopify Statistics

We use the statistical and analytical functions of Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") on our website as part of a contract processing agreement. Shopify is a service provider affiliated with Shopify Inc. (151 O'Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada) affiliated company.
Data processing serves the purpose of analyzing this website and its visitors. For this purpose, data is stored for marketing and optimization purposes and provided in reports, analyses, and statistics. Among other things, the following device information is collected and processed: information about the web browser, IP address, time zone, and some of the cookies installed on your device. As you navigate the website, information about the web pages or products you visit, the referrer URL (website from which you accessed our website), and information about how you interact with the website are also collected. Technologies such as cookies, web beacons, tags, and pixels (electronic files that collect information about how you navigate the website) are used for this purpose.

Your data may be transferred to third countries outside the EU, in particular to Canada and the USA, and processed there. An adequacy decision by the EU Commission exists for Canada. An adequacy decision by the EU Commission exists for the USA.

The Trans-Atlantic Data Privacy Framework (TADPF) is in place. Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to those of the EU Commission's standard contractual clauses.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) S1 TDDDG in conjunction with Art. 6 (1) (a) GDPR. Your personal data will be processed with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.

You can find more information about Shopify’s privacy policy at https://www.shopify.com/de/legal/datenschutz, Information on the order processing contract at https://www.shopify.com/de/legal/dpa and information about the cookies used
under https://www.shopify.com/de/legal/cookies.

Using Microsoft Clarity

We use the analysis tool "Microsoft Clarity" from Microsoft Ireland Operations Limited (One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland; "Microsoft") on our website. Microsoft is an affiliate of Microsoft Corporation (One Microsoft Way, Redmond, Washington 98052, USA).
The data processing serves the purpose of needs-based design, optimization, and analysis of our website. The tool randomly records visitors' movements on the website. This creates a log of mouse movements, scrolling behavior, time spent on the website, and clicks (a so-called heatmap).

Cookies or similar technologies are used for this purpose. The following information may be collected, among others: IP address, time of access, click path, information about the device you use (device type, screen size and resolution, unique device identifier, operating system), information about the browser you use (browser type and version), location data, preferred language for displaying the website, subpages visited, length of stay, content viewed, requested website or file.

This data is used to create user profiles under a pseudonym. The data is not used to personally identify the website visitor and is not merged with the personal data of the person using the pseudonym. Microsoft is contractually prohibited from selling the collected data to other third parties.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Microsoft has certified itself under the TADPF and is thus committed to complying with European data protection principles.

The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) S1 TDDDG in conjunction with Art. 6 (1) (a) GDPR. Your personal data will be processed with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.

Detailed information about the cookies used and their function can be found at https://learn.microsoft.com/en-us/clarity/setup- and-installation/cookie-list. Information on the storage period of the collected information can be found at https://learn.microsoft.com/en- us/clarity/setup-and-installation/data-retentionFor more information about privacy when using Microsoft Clarity, see https://learn.microsoft.com/en-us/clarity/faq#privacy, https://learn.microsoft.com/en-us/clarity/setup-and-installation/clarity-data and https://clarity.microsoft.com/terms. For general information about data protection at Microsoft, see https://privacy.microsoft.com/de- de/privacystatement.

Using the Meta Pixel

We use the meta pixel of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; "Meta") on our website.
Meta and we are jointly responsible for the collection of your data when integrating the service and the transmission of this data to Meta. This is based on an agreement between us and Meta regarding the joint processing of personal data, which defines the respective responsibilities. The agreement is available at https://de-de.facebook.com/legal/terms/businesstools We are then particularly responsible for fulfilling the information obligations pursuant to Art. 13 and 14 GDPR, for adhering to the security requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service, and for complying with the obligations pursuant to Art. 33 and 34 GDPR, to the extent that a personal data breach affects our obligations under the joint processing agreement. Meta is responsible for enabling the rights of data subjects pursuant to Art. 15–20 GDPR, complying with the security requirements of Art. 32 GDPR with regard to the security of the service, and fulfilling the obligations under Art. 33 and 34 GDPR, to the extent that a personal data breach affects Meta's obligations under the joint processing agreement.

The application serves the purpose of targeting website visitors with interest-based advertising on the social networks Facebook and Instagram. For this purpose, the Meta remarketing tag has been implemented on the website. This tag establishes a direct connection to the Meta servers when you visit the website. This transmits to the Meta server which of our pages you have visited. Meta assigns this information to your personal Facebook and/or Instagram user account. When you visit the social networks Facebook or Instagram, you will then be shown personalized, interest-based ads.

The application also serves the purpose of compiling conversion statistics. This allows us to learn the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag, as well as what actions were taken after being redirected to this website. However, we do not receive any information that could personally identify users.

Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
Your personal data is processed with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.

You can deactivate the "Custom Audiences" remarketing feature here. For more information about Meta's collection and use of data, your rights in this regard, and options for protecting your privacy, please see Meta's privacy policy at https://www.facebook.com/about/privacy/.

Use of Google Ads conversion tracking

We use the online advertising program "Google Ads" on our website, including conversion tracking (visit action analysis). Google Conversion Tracking is an analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; Google).
When you click on an ad placed by Google, a conversion tracking cookie is stored on your computer. These cookies have a limited validity, do not contain any personal data, and are therefore not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognize that you clicked on the ad and were redirected to this page. Each Google Ads customer receives a different cookie.

no possibility for cookies to be tracked across Ads customers' websites.
The information collected using the conversion cookie is used to compile conversion statistics. This tells us the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag. However, we do not receive any information that can be used to personally identify users. We use the advanced consent mode. Even if consent is not granted, user data is transmitted to Google in the form of "pings." These pings can, among other things, The following information is included: IP address to determine the IP country (the IP address is not logged), date and time of the page visit, URL of the pages visited, user agent, referrer URL (website from which our website was accessed), or information about the triggering of website events such as a conversion. Based on this information, Google models user data in order to be able to conduct a comprehensive usage analysis despite the refusal of consent.
Your data may be transferred to Google LLC's servers in the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) S1 TDDDG in conjunction with Art. 6 (1) (a) GDPR. Your personal data will be processed with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information and Google’s privacy policy can be found at: https://www.google.de/policies/privacy/

Use of Google AdSense

We use the AdSense function of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. The data processing serves the purpose of renting advertising space on the website and targeting website visitors with interest-based advertising. Using this function, visitors to the provider's website are shown personalized, interest-based advertising from the Google Display Network. Google uses cookies that enable an analysis of your website use. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. For the USA, an adequacy decision of the EU Commission exists, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is therefore committed to adhering to European data protection principles. Google may transfer this information to third parties where required to do so by law, or where such third parties process the data on Google's behalf. Under no circumstances will Google associate your IP address with any other data held by Google.

Further information and Google’s privacy policy can be found at: https://www.google.com/policies/technologies/ads/ and https://www.google.de/policies/privacy/

Use of the remarketing or “similar audiences” function of Google Inc.

We use the remarketing or "similar audiences" function of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
The application is used to analyze visitor behavior and interests. Google uses cookies to analyze website usage, which forms the basis for creating interest-based ads. These cookies record visits to the website and anonymized data about website usage. No personal data of website visitors is stored. If you subsequently visit another website in the Google Display Network, you will see ads that are highly likely to reflect previously viewed product and information areas.

Your data may be transferred to Google LLC servers in the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) S1 TDDDG in conjunction with Art. 6 (1) (a) GDPR. Your personal data will be processed with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.

Further information on Google Remarketing and the associated privacy policy can be found at:

https://www.google.com/privacy/ads/

Use of TikTok Pixel

We use the TikTok pixel on our website from TikTok Technology Limited (10 Earlsfort Terrace, Dublin, D02 T380, Ireland; "TikTok Ireland") and TikTok Information Technologies UK Limited (6th Floor, One London Wall, London, EC2Y 5EB, United Kingdom; "TikTok UK"). Both companies are joint controllers for data processing (hereinafter "TikTok").
The data processing serves the purpose of identifying and analyzing our customers' website access, as well as improving customer engagement through targeted advertising and evaluating the effectiveness of advertisements on TikTok. TikTok uses technologies such as cookies and pixels to recognize your browser. The following information, among others, may be collected and transmitted to TikTok: the date and time of your visit, information about the browser and device type you use, screen resolution, and IP address. TikTok can assign this information to your personal TikTok user account. User profiles can be created from the data collected using pseudonyms. However, this does not allow for personal identification of users.

Your data may be transferred to third countries, such as the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). TikTok is not certified under the TADPF. Data transfers to the USA and to third countries without an adequacy decision are based, among other things, on standard contractual clauses as appropriate safeguards for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data- protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.

Further information on data protection can be found at https://www.tiktok.com/legal/page/eea/privacy- policy/de and https://ads.tiktok.com/i18n/official/policy/controller-to-controller.

Plugins and Miscellaneous

Use of Social Plugins

We use social network plug-ins on our website. The integration of social network plug-ins and the associated data processing serve the purpose of optimizing advertising for our products.
When social plug-ins are integrated, a link is established between your computer and the servers of the social network provider, and the plug-in is displayed on the page by notification to your browser, provided you have expressly consented to this. Both your IP address and information about which of our pages you have visited are transmitted to the provider's servers. This applies regardless of whether you are registered or logged in to the social network. Data is also transmitted to unregistered or unlogged-in users. If you are connected to one or more of your social network accounts at the same time, the collected information can also be assigned to your corresponding profiles. When you use the plug-in functions (e.g., by clicking the button), this information is also assigned to your user account. You can prevent this assignment by logging out of your social media accounts before visiting our website and before activating the buttons.

The social networks listed below are integrated into our website via social plug-ins. Further information on the scope and purpose of data collection and use, as well as your rights and options for protecting your privacy, can be found in the linked privacy policies of the providers.

Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
Meta Platforms Ireland and we are jointly responsible for the collection of your data when integrating the service and the transmission of this data to Facebook. This is based on an agreement between us and Meta Platforms Ireland regarding the joint processing of personal data, which defines the respective responsibilities. The agreement is available at https://www.facebook.com/legal/controller_addendum We are then particularly responsible for fulfilling the information obligations pursuant to Art. 13 and 14 GDPR, for adhering to the security requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service, and for complying with the obligations pursuant to Art. 33, 34 GDPR, insofar as a breach of the protection of personal data affects our obligations under the joint processing agreement. Meta Platforms Ireland is responsible for protecting the data subject's rights in accordance with Art. 15 - 20 GDPR.
enable compliance with the security requirements of Art. 32 GDPR with regard to the security of the service and the obligations under Art. 33, 34 GDPR, insofar as a personal data breach affects Meta Platforms Ireland's obligations under the Joint Processing Agreement.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
For more information about the collection and use of data by Facebook, your rights in this regard and options for protecting your privacy, please see Facebook’s privacy policy at https://www.facebook.com/about/privacy/.

Instagram der Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):

https://help.instagram.com/155833707900388

LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland )

https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy

Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). LinkedIn has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

Pinterest der Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA)

https://policy.pinterest.com/de/privacy-policy

Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified under the TADPF.

X, formerly known as Twitter, (X Corp., 1355 Market Street, Suite 900 San Francisco, CA 94103, USA)

https://twitter.com/privacy
https://twitter.com/personalization
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). X has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

Use of social plug-ins via "Shariff"

We use social network plug-ins on our website. To ensure you retain control over your data, we use the privacy-safe "Shariff" buttons.
Without your express consent, no links will be established to the social network servers and consequently no data will be transmitted.
"Shariff" is a development by specialists at the computer magazine c't. It enables more privacy online and replaces the usual "share" buttons on social networks. More information about the Shariff project can be found here. https://www.heise.de/ct/artikel/Shariff-Social- Media-Buttons-with-Privacy-2467514.html.
When you click the buttons, a pop-up window appears where you can log in to the respective provider using your data. Only after you actively log in will a direct connection to the social networks be established.
By logging in, you consent to the transfer of your data to the respective social media provider. This includes, among other things, your IP address and information about which of our pages you have visited. If you are connected to one or more of your social network accounts at the same time, the collected information will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your social media accounts before visiting our website and before activating the buttons. The social networks listed below are integrated using the "Shariff" function.
Further information on the scope and purpose of the collection and use of data as well as your rights and options for protecting your privacy can be found in the linked data protection notices of the providers.

Use of social plug-ins using the “2-click solution”

We use social network plug-ins on our website using the "2-click solution." This means that no connection to the social network servers is established without your express consent, and therefore no data is transmitted.
With the standard integration of plug-ins, when you access pages of our website that contain such a plug-in, a link is established between your computer and the servers of the social network provider, and the plug-in is displayed on the page by a message to your browser. Both your IP address and the information about which of our pages you have visited are transmitted to the provider's servers. This applies regardless of whether you are registered or logged in to the social network. Data is also transmitted to unregistered or unlogged-in users. If you are also logged into the Facebook social network, this information will be assigned to your personal user account. When you use the plug-in functions (e.g., by clicking the button), this information will also be assigned to your user account. You can only prevent this by logging out before using the plug-in. To ensure you retain control over your data, we have decided to initially deactivate the corresponding button. You can recognize this by the grayed-out button. Without your express consent—by activating the button—no link will be established to the social network's server, and consequently no data will be transmitted.
Only when you activate the button does the button become active (highlighted in color) and a direct connection to the servers of the social network is established.
By activating the social network, you consent to the transfer of your data to the respective social network provider. This will include, among other things, your IP address and information about which of our pages you have visited. If you are connected to one or more of your social network accounts at the same time, the collected information will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your social network user accounts before visiting our website and before activating the buttons.
The social networks listed below are integrated using the "2-click" function. Further information on the scope and purpose of data collection and use, as well as your rights and options for protecting your privacy, can be found in the linked privacy policies of the providers.

Facebook der Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):

https://www.facebook.com/policy.php

Instagram der Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):

http://instagram.com/legal/privacy/

LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland ):

https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). LinkedIn has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

Pinterest der Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA):

https://policy.pinterest.com/de/privacy-policy
https://help.pinterest.com/de/articles/personalization-and-data
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified under the TADPF.

X, formerly known as Twitter, (X Corp., 1355 Market Street, Suite 900 San Francisco, CA 94103, USA)

https://twitter.com/privacy
https://twitter.com/personalization
Your data may be transferred to the USA. For the USA, an adequacy decision has been issued by the EU Commission, and the Trans-Atlantic Data Privacy Framework (TADPF) has been approved. X has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

Use of Google Maps

We use the function for embedding Google Maps from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland, "Google") on our website.
This feature enables the visual display of geographical information and interactive maps. Google also collects, processes, and uses data from visitors to the website when they visit pages that incorporate Google Maps.

Your data may also be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) S1 TDDDG in conjunction with Art. 6 (1) (a) GDPR. Your personal data will be processed with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.

For more information about the collection and use of data by Google, please see Google’s privacy policy at https://www.google.com/privacypolicy.htmlThere, you also have the option to change your settings in the privacy center so that you can manage and protect the data processed by Google.

Using Google Translate

We use the translation service of
Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland).
The data processing serves the purpose of displaying the information provided on the website in another language. To ensure that the translation is automatically displayed based on your choice of language, the browser you use connects to Google's servers. Cookies may be used for this purpose. Among other things, the following information may be collected and processed: IP address, URL of the page visited, date and time.

Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) S1 TDDDG in conjunction with Art. 6 (1) (a) GDPR. Your personal data will be processed with your consent on the basis of Art. 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.

For more information about how Google collects and uses your data, please visit: https://www.google.com/policies/privacy/. Rights of data subjects and storage period

Duration of storage

After completion of the contract, the data will initially be stored for the duration of the warranty period, then taking into account statutory retention periods, in particular tax and commercial law, and then deleted after the period has expired, unless you have consented to further processing and use.

rights of the data subject

If the legal requirements are met, you are entitled to the following rights under Articles 15 to 20 GDPR: Right to information, to rectification, to erasure, to restriction of processing, to data portability.
Furthermore, according to Art. 21 (1) GDPR, you have the right to object to processing based on Art. 6 (1) (f) GDPR and to processing for direct marketing purposes.

Right of appeal to the supervisory authority

According to Art. 77 GDPR, you have the right to complain to the supervisory authority if you believe that your personal data is not being processed lawfully.

You can lodge a complaint, among other things, with the supervisory authority responsible for us, which you can reach under the following contact details:

Berlin Commissioner for Data Protection and Freedom of Information Friedrichstr. 219
Visitor entrance: Puttkamerstr. 16 – 18 (5th floor)
10969 Berlin

Tel.: +49 30 138890
Fax: +49 30 2155050
E-Mail: mailbox@datenschutz-berlin.de

Right to object

If the personal data processing listed here is based on our legitimate interest pursuant to Art. 6 (1) (f) GDPR, you have the right to object to this processing at any time with future effect for reasons arising from your particular situation.
Once you have objected, the processing of the data in question will be stopped unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.

If personal data is processed for direct marketing purposes, you can object to this processing at any time by notifying us. After your objection, we will stop processing the data concerned for direct marketing purposes.

last updated: April 15, 2025

Your cart is empty

Shopping cart • 0 items

To customize the cart, add blocks to the Cart drawer section (under the Header group)

Privacy policy

Affiliate Options

Customer account

Legal texts

Our social media