Privacy policy

1) Introduction and contact details of the responsible person

1.1We are pleased that you are visiting our website and thank you for your interest. Below, we will inform you about the handling of your personal data when using our website. Personal data refers to all data with which you can be personally identified.

1.2The person responsible for data processing on this website in accordance with the General Data Protection Regulation (GDPR) is Alexander Metzger, Staufenstr. 5/1, 73061 Ebersbach, Germany, Tel.: 07163-2067977, Email: info@pfotensegen.de. The person responsible for the processing of personal data is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

2) Data collection when visiting our website

2.1When you merely use our website for information purposes, meaning if you do not register or otherwise transmit information to us, we only collect data that your browser sends to the web server (so-called "server log files"). When you access our website, we collect the following data, which is technically necessary for us to display the website to you:

Our visited website
Date and time at the time of access
Amount of data sent in bytes
Source/Reference, from which you arrived at the page
Browser used
Operating system used
Used IP address (if applicable: in anonymized form)

The processing is carried out in accordance with Art. 6 Para. 1 lit. f GDPR based on our legitimate interest in improving the stability and functionality of our website. No transfer or other use of the data takes place. However, we reserve the right to subsequently review the server log files if there are specific indications of illegal use.

2.2This website uses an SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the person responsible). You can identify an encrypted connection by the string "https://“This website uses an SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the controller). You can identify an encrypted connection by the string "https://“This website uses an SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the person responsible). You can identify an encrypted connection by the string "https://“This website uses an SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the controller). You can identify an encrypted connection by the string "

3) Hosting & Content-Delivery-Network

Cloudflare

We use a Content Delivery Network from the following provider: Cloudflare Inc., 101 Townsend St. San Francisco, CA 94107, USA

This service enables us to deliver large media files such as graphics, page content, or scripts more quickly via a network of regionally distributed servers. The processing is carried out to safeguard our legitimate interest in improving the stability and functionality of our website in accordance with Art. 6 Para. 1 lit. f GDPR. We have concluded a data processing agreement with the provider, which ensures the protection of our visitors' data and prohibits unauthorized sharing with third parties.

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection based on an adequacy decision by the European Commission.

4) Cookies

To make your visit to our website attractive and to enable the use of certain functions, we use cookies, which are small text files stored on your device. Some of these cookies are automatically deleted after closing the browser (so-called "session cookies"), while others remain on your device for a longer period and allow page settings to be saved (so-called "persistent cookies"). In the latter case, you can find the storage duration in the overview of your web browser's cookie settings.

If personal data is also processed through individual cookies used by us, the processing is carried out in accordance with Art. 6 Para. 1 lit. b GDPR either for the performance of the contract, in accordance with Art. 6 Para. 1 lit. a GDPR in the case of given consent, or in accordance with Art. 6 Para. 1 lit. f GDPR to safeguard our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the page visit.

You can configure your browser to notify you when cookies are set and decide on their acceptance individually, or exclude the acceptance of cookies for specific cases or in general.

Please note that if you do not accept cookies, the functionality of our website may be limited.

5) Making contact

5.1Loox

For review reminders, we use the services of the following provider: Loox Online Ltd., Rehov Har Sinai 2, 6581602 Tel Aviv-Yafo, Israel

Exclusively on the basis of your explicit consent according to Art. 6 Para. 1 lit. a GDPR, we will transmit your email address and, if applicable, further customer data to the provider so that they can contact you with a review reminder via email.

You can revoke your consent at any time with effect for the future against us or the provider.

We have concluded a data processing agreement with the provider, which ensures the protection of our visitors' data and prohibits unauthorized disclosure to third parties.

When transferring data to the provider's location, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

5.2In the context of contacting us (e.g. via contact form or email), personal data will be processed – exclusively for the purpose of handling and responding to your request and only to the extent necessary for this purpose.

The legal basis for the processing of this data is our legitimate interest in addressing your concern in accordance with Art. 6 Para. 1 lit. f GDPR. If your contact aims at a contract, then the additional legal basis for the processing is Art. 6 Para. 1 lit. b GDPR. Your data will be deleted once it can be inferred from the circumstances that the matter in question has been conclusively resolved and provided there are no statutory retention obligations to the contrary.

6) Data processing when opening a customer account

Pursuant to Art. 6 para. 1 lit. b GDPR, personal data will continue to be collected and processed to the extent necessary when you provide them to us upon opening a customer account. Which data are required for the account opening can be seen from the input mask of the respective form on our website.

Deletion of your customer account is possible at any time and can be done by sending a message to the above-mentioned address of the responsible party. After deletion of your customer account, your data will be deleted, provided that all related contracts have been fully processed, no statutory retention periods apply, and there is no longer a legitimate interest on our part in continued storage.

7) Use of customer data for direct marketing

7.1Registration for our email newsletter

If you subscribe to our email newsletter, we will regularly send you information about our offers. The only mandatory detail required for sending the newsletter is your email address. Providing additional information is voluntary and will be used to address you personally. For sending the newsletter, we use the so-called Double Opt-in procedure, which ensures that you will only receive the newsletter after you have explicitly confirmed your consent to receiving it by clicking on a verification link sent to the specified email address.

By activating the confirmation link, you grant us your consent for the use of your personal data in accordance with Art. 6 Para. 1 lit. a GDPR. In doing so, we store the IP address registered by your Internet Service Provider (ISP) as well as the date and time of registration to be able to track any potential misuse of your email address at a later point. The data collected during the newsletter registration will be used strictly for the intended purpose.

You can unsubscribe from the newsletter at any time using the designated link in the newsletter or by sending a corresponding message to the responsible party mentioned at the beginning. Upon unsubscribing, your email address will be promptly deleted from our newsletter distribution list, unless you have expressly consented to further use of your data or we reserve the right to use your data beyond this, which is legally permitted and about which we inform you in this statement.

7.2Sending the email newsletter to existing customers

If you have provided us with your email address when purchasing goods or services, we reserve the right to regularly send you offers for similar goods or services, like those you have already purchased, from our range via email. According to § 7 para. 3 UWG, we are not required to obtain separate consent from you for this purpose. The data processing in this regard is based solely on our legitimate interest in personalized direct advertising according to Art. 6 para. 1 lit. f GDPR. If you have initially objected to the use of your email address for this purpose, no email will be sent by us.

You are entitled to object to the use of your email address for the aforementioned advertising purpose at any time with future effect by notifying the responsible party mentioned at the beginning. For this, you will only incur transmission costs according to the basic rates. Upon receipt of your objection, the use of your email address for advertising purposes will be stopped immediately.

7.3Shopping cart reminders via email

In the event that you abandon your shopping with us before completing your order, you have the option to receive a one-time email reminder about the contents of your virtual shopping cart.

The only required information for sending this reminder is your email address. Providing additional data is voluntary and may be used to address you personally. For the email dispatch, we use the so-called Double Opt-in procedure, which ensures that you will only receive a notification after you have explicitly confirmed your consent by clicking on a verification link sent to the specified email address.

By activating the confirmation link, you are granting us your consent for the use of your personal data in accordance with Art. 6 Para. 1 lit. a GDPR for the sending of a shopping cart reminder. In doing so, we store the IP address registered by your Internet Service Provider (ISP) as well as the date and time of your registration to be able to track any potential misuse of your email address at a later point. The data collected during your registration for our email notification service will be used strictly for the intended purpose.

You can unsubscribe from the shopping cart reminders at any time by sending a corresponding message to the responsible party mentioned at the beginning. After unsubscribing, your email address will be promptly deleted from our distribution list set up for this purpose, unless you have explicitly consented to further use of your data or we reserve the right to use your data beyond this, which is legally permitted and about which we inform you in this statement.

8) Data processing for order handling

8.1Transmission of image files for order processing via upload function

On our website, we offer customers the option to commission the personalization of products by submitting image files via an upload function. The submitted image motif is used as a template for personalizing the selected product.

Via the upload form on the website, the customer can transmit one or more image files from the memory of the device being used directly to us through automated, encrypted data transmission. We then collect, store, and use the transmitted files solely for the creation of the personalized product in accordance with the respective service description on our website. If the transmitted image files are shared with specific service providers for the purpose of production and order processing, you will be explicitly informed about this in the following paragraphs. No further sharing takes place. If the transmitted files or digital designs contain personal data (in particular depictions of identifiable individuals), all aforementioned processing operations occur exclusively for the purpose of handling your online order in accordance with Art. 6 Para. 1 lit. b GDPR.

After the order has been fully processed, the submitted image files will be automatically and completely deleted.

8.2Insofar as is necessary for the processing of the contract for delivery and payment purposes, the personal data collected by us will be passed on to the commissioned transport company and the commissioned credit institution in accordance with Art. 6 Para. 1 lit. b GDPR.

insofar as we owe you updates for goods with digital elements or for digital products based on a corresponding contract, we process the contact data you provided during the order to personally inform you within the framework of our legal information obligations according to art. 6 para. 1 lit. c gdpr. your contact data will be used strictly for the purpose of communicating about updates we owe and will only be processed by us to the extent necessary for each respective notification.

To process your order, we also work with the following service provider(s) listed below, who support us either fully or partially in the execution of concluded contracts. Certain personal data will be transmitted to these service providers in accordance with the following information.

8.3To fulfill our contractual obligations to our customers, we work with external shipping partners. We will pass on your name and delivery address, and, if necessary for the delivery, your telephone number, exclusively for the purpose of delivering the goods in accordance with Art. 6 para. 1 lit. b GDPR to a shipping partner selected by us.

8.4Picanova

For order processing, we use the following provider: Picanova GmbH, Hohenzollernring 25, 50672 Cologne, Germany

Name, address, and if applicable, additional personal data will be transferred to the provider solely for the purpose of processing the online order in accordance with Art. 6 Para. 1 lit. b GDPR. Your data will only be shared to the extent that it is actually necessary for processing the order.

8.5shirtee

For order processing, we use the following provider: Boender & Beutel GmbH, Vitalisstrasse 202, 50827 Cologne, Germany

Name, address, and if applicable, further personal data will be transferred to the provider in accordance with Art. 6 Para. 1 lit. b GDPR for the purpose of processing the online order. Your data will only be shared to the extent that it is actually necessary for processing the order. The provider will also be used for accounting purposes. Thus, the provider processes incoming and outgoing invoices and possibly also the bank transactions of our company in order to automatically record invoices, match them to the transactions, and from this, create the financial accounting in a partially automated process.

insofar as personal data is also processed in this context, the processing is carried out in accordance with art. 6 para. 1 lit. f gdpr on the basis of our legitimate interest in an efficient organization and documentation of our business transactions.

8.6Use of payment service providers (payment services)

- Apple Pay

If you choose the payment method "Apple Pay" from Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, the payment processing will take place via the "Apple Pay" function on your end device operated with iOS, watchOS, or macOS by charging a payment card stored in "Apple Pay." Apple Pay uses security features integrated into the hardware and software of your device to protect your transactions. To authorize a payment, you must enter a previously set code and verify using the "Face ID" or "Touch ID" function on your end device.

For the purpose of payment processing, the information you provided during the ordering process, along with details about your order, will be transmitted to Apple in encrypted form. Apple then re-encrypts this data with a developer-specific key before sending it to the payment service provider of the payment card stored in Apple Pay to carry out the payment. The encryption ensures that only the website through which the purchase was made can access the payment information. After the payment has been completed, Apple sends your device account number and a transaction-specific, dynamic security code to the originating website to confirm the success of the payment.

insofar as personal data are processed during the described transmissions, the processing is carried out exclusively for the purpose of payment processing in accordance with art. 6 para. 1 lit. b dsgvo.

Apple stores anonymized transaction data, including the approximate purchase amount, the approximate date and time, and whether the transaction was successfully completed. Anonymization ensures that any personal reference is completely excluded. Apple uses the anonymized data to improve "Apple Pay" and other Apple products and services.

When you use Apple Pay on your iPhone or Apple Watch to complete a purchase you made via Safari on your Mac, the Mac and the authorization device communicate through an encrypted channel on Apple's servers. Apple does not process or store any of this information in a format that can identify you personally. You can disable the ability to use Apple Pay on your Mac in your iPhone settings. Go to “Wallet & Apple Pay,” and turn off “Allow Payments on Mac.”

Further information on data protection with Apple Pay can be found at the following web address:https://support.apple.com/de-de/HT203027
- Klarna

One or more online payment methods from the following provider are available on this website: Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden.

When selecting a payment method from the provider where you provide upfront payment (such as credit card payment), your payment data disclosed during the ordering process (including name, address, bank and payment card information, currency, and transaction number) as well as information about the content of your order will be transmitted to them in accordance with Art. 6 para. 1 lit. b GDPR. The transfer of your data in this case occurs exclusively for the purpose of processing the payment with the provider and only to the extent necessary for this purpose.

When selecting a payment method where the provider extends credit (such as invoice purchase, installment purchase, or direct debit), you will also be prompted during the ordering process to provide certain personal data (first and last name, street, house number, postal code, city, date of birth, email address, telephone number, and possibly data for an alternative payment method).

To safeguard our legitimate interest in determining the creditworthiness of our customers, these data will be forwarded by us to the provider for the purpose of a credit check in accordance with Art. 6 Para. 1 lit. f GDPR. The provider checks on the basis of the personal data you provided and additional data (such as shopping cart, invoice amount, order history, payment experiences) whether the payment option you selected can be granted in view of payment and/or default risks.

For the decision as part of the application review, identity and creditworthiness information from the following credit bureaus may be included alongside provider-internal criteria according to Art. 6 Para. 1 lit. f GDPR:

https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies

The credit report may contain probability values (so-called score values). To the extent that score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. Address data, among other things but not exclusively, are included in the calculation of the score values.

You can object to this processing of your data at any time by sending a message to us or to the provider. However, the provider may still be entitled to process your personal data if this is necessary for the contractual payment processing.
- Paypal

On this website, one or more online payment methods from the following provider are available: PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg

When selecting a payment method from the provider where you provide advance payment, your payment data disclosed during the ordering process (including name, address, bank and payment card information, currency, and transaction number) as well as information about the content of your order will be transmitted to them in accordance with Art. 6 Para. 1 lit. b GDPR. The transmission of your data in this case is exclusively for the purpose of processing the payment with the provider and only to the extent necessary for this purpose.

When selecting a payment method for which we provide advance payment, you will also be prompted to provide certain personal data (first and last name, street, house number, postal code, city, date of birth, email address, phone number, and possibly data for an alternative payment method) during the ordering process.

In order to safeguard our legitimate interest in determining your ability to pay in such cases, these data will be forwarded by us to the provider for the purpose of a credit check in accordance with Art. 6 Para. 1 lit. f GDPR. The provider checks on the basis of the personal data you provided as well as additional data (such as shopping cart, invoice amount, order history, payment experiences) whether the payment option you selected can be granted with regard to payment and/or default risks.

On this website, one or more online payment methods from the following provider are available: Klarna Bank AB (publ), Sveavägen 46, 11134 Stockholm, Sweden.

9) Web analytics services

9.1Google Analytics 4

This website uses Google Analytics 4, a web analysis service of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"), which enables an analysis of your use of our website.

By default, no cookies are used when visiting the website through Google Analytics 4 unless you explicitly consent to cookies. Instead, information about your usage behavior is collected and processed through so-called pings (small data packets sent to the host of a device). The scope of this information also includes your IP address, which, however, is shortened by Google by the last digits to exclude direct personal identifiability.

The information is transmitted to Google servers and processed further there. In the process, transfers to Google LLC, which is based in the USA, are also possible.

Google uses the collected information on our behalf to evaluate your use of the website, compile reports on website activities for us, and provide other services related to website usage and internet usage. The IP address transmitted and shortened by your browser as part of Google Analytics will not be merged with other data from Google. The data collected as part of the use of Google Analytics 4 will be stored for a period of two months and then deleted.

All of the aforementioned processes, including data transmission via "Pings" and the possible setting of Google Analytics cookies, are carried out only if you have provided us with your explicit consent in accordance with Art. 6 Para. 1 lit. a GDPR.

Without your consent, the use of Google Analytics 4 will not occur during your visit to the site. You can revoke your given consent at any time with future effect. To exercise your right to revoke, please disable this service via the "Cookie-Consent-Tool" provided on the website.

We have concluded a data processing agreement with Google that ensures the protection of our website visitors' data and prohibits unauthorized disclosure to third parties.

Further legal information about Google Analytics 4 can be found athttps://business.safety.google/intl/de/privacy/, https://policies.google.com/privacy?hl=de&gl=deand underhttps://policies.google.com/technologies/partner-sites

Demographic characteristics
Google Analytics 4 utilizes the special feature "demographic characteristics" and can generate statistics based on age, gender, and interests of website visitors. This is done by analyzing advertising and information from third parties. As a result, target audiences for marketing activities can be identified. However, the collected data cannot be assigned to a specific person and will be deleted after being stored for a duration of two months.

Google Signals
As an extension to Google Analytics 4, Google Signals can be used on this website to generate cross-device reports. If you have enabled personalized ads and linked your devices to your Google account, Google can, subject to your consent for the use of Google Analytics according to Art. 6 Para. 1 lit. a GDPR, analyze your usage behavior across devices and create database models, including those for cross-device conversions. We do not receive any personal data from Google, only statistics. If you want to stop the cross-device analysis, you can disable the "Personalized Advertising" feature in the settings of your Google account. Follow the instructions on this page:https://support.google.com/My-Ad-Center-Help/answer/12155764?hl=de
Further information on Google Signals can be found at the following link:https://support.google.com/analytics/answer/7532985?hl=de

UserIDs
As an extension to Google Analytics 4, the "UserIDs" feature can be used on this website. If you have consented to the use of Google Analytics 4 in accordance with Art. 6 Para. 1 lit. a GDPR, set up an account on this website, and log in with this account on various devices, your activities, including conversions, can be analyzed across devices.

9.2Lucky Orange

This website uses the web analytics service provided by the following provider: Lucky Orange LLC, 8665 W 96th St, Suite 100. Overland Park, Kansas, USA

With the help of cookies and/or comparable technologies (tracking pixels, web beacons, algorithms for reading device and browser information), the service collects and stores pseudonymized visitor data, including information about the device used, such as the IP address and browser details, to evaluate it for statistical analyses of user behavior on our website and to create pseudonymized usage profiles. Among other things, this allows the analysis of movement patterns (so-called heatmaps), which show the duration of page visits as well as interactions with page content (e.g., text input, scrolling, clicks, and mouse-overs). Pseudonymization generally rules out direct identification of individuals. No merging with clear data about your person collected in other ways takes place.

All of the aforementioned processing operations, particularly the reading or storing of information on the terminal device used, will only be carried out if you have given us your explicit consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your granted consent at any time with future effect by disabling this service in the "Cookie-Consent-Tool" provided on the website.

We have concluded a data processing agreement with the provider, which ensures the protection of our visitors' data and prohibits unauthorized disclosure to third parties.

10) Retargeting/ Remarketing and Conversion Tracking

Meta Pixel

Within our online offering, we use the service "Meta Pixel" from the following provider: Meta Platforms Ireland Limited, 4 Grand Canal Quare, Dublin 2, Ireland ("Meta")

When a user clicks on one of our ads placed on Facebook and/or Instagram, the URL of our linked page is expanded by a parameter using "Meta Pixel." This URL parameter is then entered into the user's browser after redirection through a cookie set by our linked page itself.

This allows Meta, on the one hand, to determine the visitors of our online offering as a target group for displaying ads (so-called "Ads"). Accordingly, we use the service to display the Facebook and/or Instagram ads placed by us only to those users who have also shown an interest in our online offering or who exhibit certain characteristics (e.g., interests in specific topics or products determined based on the visited websites), which we transmit to Meta (so-called "Custom Audiences").

On the other hand, the "Meta Pixel" can be used to track whether users were redirected to our website after clicking on an ad and what actions they perform there (so-called "conversion tracking").

The collected data is anonymous to us, meaning it does not allow us to draw conclusions about the identity of the users. However, the data is stored and processed by Meta, so a connection to the respective user profile is possible, and Meta can use the data for its own advertising purposes.

All of the processing described above, particularly the setting of cookies to retrieve information on the device you are using, will only be carried out if you have given us your explicit consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your consent at any time with future effect by disabling this service in the "Cookie-Consent-Tool" provided on the website.

We have concluded a data processing agreement with the provider, which ensures the protection of our visitors' data and prohibits unauthorized disclosure to third parties.

The information generated by Meta is generally transferred to a Meta server and stored there; in this context, it may also be transferred to servers of Meta Platforms Inc. in the USA.

11) Side functionalities

11.1Google Maps API

To enable real-time verification of certain inputs in the address form during the ordering process of our webshop for input errors, we use the services of the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data can also be transmitted to: Google LLC., USA

The provider validates the entered address, verifies the spelling, and supplements any missing data if necessary. For non-unique addresses, correct alternative suggestions are displayed. For this purpose, the address data you entered is transmitted to the provider, where it is stored and evaluated.

This processing is carried out in accordance with Art. 6 Para. 1 lit. f GDPR on the basis of our legitimate interest in properly recording the correct address data of the customer to conscientiously fulfill our contractual delivery obligations and to prevent issues in contract execution.

The provider processes the affected data separately and does not combine it with other data sets, and deletes it as soon as its status or correctness has been confirmed, but no later than after 30 days.

Further information on Google's privacy policies can be found here:https://business.safety.google/intl/de/privacy/

11.2Google reCAPTCHA

On this website, we use the CAPTCHA service from the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data can also be transmitted to: Google LLC, USA.

For the visual design of the Captcha window, "Google Fonts," meaning fonts loaded from the internet by Google, are used. No further information beyond what is already transmitted to Google through the functionality of ReCaptcha is processed in this case.

The service checks whether input is made by a natural person or abusively through mechanical and automated processing, and blocks spam, DDoS attacks, and similar automated malicious access attempts. To ensure that an action is performed by a human and not by an automated bot, the provider collects the IP address of the device used, identification data of the browser and operating system type, as well as the date and duration of the visit, and transmits this information to the provider's servers for evaluation. In this process, cookies may be used, which are small text files stored in the browser of the end device.

insofar as the processing operations described above are based on cookies, these will only be set if you have given us your explicit consent in accordance with art. 6 para. 1 lit. a gdpr. you can revoke your consent at any time with effect for the future by deactivating this service in the "cookie-consent-tool" provided on the website.

If the processing operations described above are carried out without the use of cookies, the legal basis is our legitimate interest in determining individual responsibility on the internet and avoiding abuse and spam according to Art. 6 Para. 1 lit. f GDPR.

We have concluded a contract with the provider for the processing of orders, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Further information on Google's privacy policies can be found here:https://business.safety.google/intl/de/privacy/

12) Tools and Miscellaneous

Cookie-Consent-Tool

This website uses a so-called "Cookie-Consent-Tool" to obtain effective user consent for cookies and cookie-based applications that require consent. The "Cookie-Consent-Tool" is displayed to users in the form of an interactive user interface upon accessing the site, allowing them to grant consent for specific cookies and/or cookie-based applications by checking boxes. Through the use of this tool, all cookies/services requiring consent are only loaded if the respective user grants consent by checking the corresponding boxes. This ensures that such cookies are only set on the user's respective end device in the event that consent has been granted.

The tool uses technically necessary cookies to store your cookie preferences. Personal user data is generally not processed in this context.

If, in individual cases, personal data (such as the IP address) is processed for the purpose of storing, assigning, or logging cookie settings, this is done in accordance with Art. 6 Para. 1 lit. f GDPR based on our legitimate interest in a legally compliant, user-specific, and user-friendly consent management for cookies and thus in a legally compliant design of our online presence.

The further legal basis for the processing is Art. 6 para. 1 lit. c GDPR. As the responsible party, we are subject to the legal obligation to make the use of technically unnecessary cookies dependent on the respective user consent.

To the extent necessary, we have concluded a data processing agreement with the provider, which ensures the protection of our visitors' data and prohibits unauthorized disclosure to third parties.

Further information on the operator and the configuration options of the cookie consent tool can be found directly in the corresponding user interface on our website.

13) Rights of the data subject

13.1The applicable data protection law grants you the following data subject rights (rights to information and intervention) against the controller regarding the processing of your personal data, whereby the respective conditions for exercising these rights are referenced in the cited legal basis:

Right to information according to Art. 15 GDPR;
Right to rectification according to Art. 16 GDPR;
Right to erasure pursuant to Art. 17 GDPR;
Right to restriction of processing pursuant to Art. 18 GDPR;
Right to information pursuant to Art. 19 DSGVO;
Right to data portability according to Art. 20 GDPR;
Right to withdraw given consents according to Art. 7 Para. 3 GDPR;
Right to complain pursuant to Art. 77 GDPR.

13.2RIGHT TO OBJECT

IF WE PROCESS YOUR PERSONAL DATA WITHIN THE FRAMEWORK OF A BALANCING OF INTERESTS BASED ON OUR OVERWHELMING LEGITIMATE INTEREST, YOU HAVE THE RIGHT TO OBJECT TO THIS PROCESSING AT ANY TIME FOR THE FUTURE DUE TO REASONS ARISING FROM YOUR SPECIAL SITUATION.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE AFFECTED DATA. HOWEVER, FURTHER PROCESSING WILL REMAIN RESERVED IF WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OUTWEIGH YOUR INTERESTS, FUNDAMENTAL RIGHTS, AND FREEDOMS, OR IF THE PROCESSING IS FOR THE ESTABLISHMENT, EXERCISE, OR DEFENSE OF LEGAL CLAIMS.

IF WE PROCESS YOUR PERSONAL DATA TO ENGAGE IN DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR SUCH MARKETING PURPOSES. YOU CAN EXERCISE THE OBJECTION AS DESCRIBED ABOVE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE AFFECTED DATA FOR DIRECT MARKETING PURPOSES.

14) Duration of storage of personal data

The duration of storage of personal data is determined based on the respective legal basis, the purpose of processing, and – if applicable – additionally based on the respective statutory retention period (e.g., commercial and tax-related retention periods).

When processing personal data based on explicit consent according to Art. 6 Para. 1 lit. a GDPR, the affected data will be stored until you revoke your consent.

If there are statutory retention periods for data processed on the basis of Art. 6 para. 1 lit. b GDPR in connection with legal transactions or similar obligations, these data will be routinely deleted after the retention periods have expired, provided that they are no longer necessary for the performance or initiation of a contract and/or there is no longer a legitimate interest on our part in continued storage.

When processing personal data based on Art. 6 Para. 1 lit. f GDPR, these data will be stored until you exercise your right to object under Art. 21 Para. 1 GDPR, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims.

When processing personal data for the purpose of direct marketing based on Art. 6 Para. 1 lit. f GDPR, these data will be stored until you exercise your right to object under Art. 21 Para. 2 GDPR.

Unless otherwise indicated by other information in this statement regarding specific processing situations, stored personal data will be deleted insofar as they are no longer necessary for the purposes for which they were collected or otherwise processed.

Stand: 31.10.2025, 03:37:22 Uhr

Couldn't make up your mind?

Privacy policy

1) Introduction and contact details of the responsible person

2) Data collection when visiting our website

3) Hosting & Content-Delivery-Network

4) Cookies

5) Making contact

6) Data processing when opening a customer account

7) Use of customer data for direct marketing

8) Data processing for order handling

9) Web analytics services

10) Retargeting/ Remarketing and Conversion Tracking

11) Side functionalities

12) Tools and Miscellaneous

13) Rights of the data subject

14) Duration of storage of personal data