In order to visit our Websites and/or use our Services, it will be necessary for you to provide us with some personal data as outlined here. If you choose not to provide this information, you will not be able to visit our Websites and/or use our Services.
The processing of personal data is carried out in accordance with the provisions of the EU General Data Protection Regulation (GDPR) and applicable national data protection laws, such as the California Consumer Privacy Act (CCPA) for individuals residing in California. Our legal basis for processing your personal data is Art. 6 (1) (a) (consent), (b) (necessary for the performance of a contract), and/or (c) (legal obligation) of the GDPR. Additionally, we may process your personal data based on our legitimate interests as outlined in Article 6(1)(f) of the GDPR. These legitimate interests include ensuring the security and integrity of our systems and services, conducting fraud prevention, and improving our Products and Services. Personal data may be processed in the European Union or in countries outside the EU/EEA, such as Switzerland or the United States, subject to appropriate safeguards under GDPR Article 46, such as standard contractual clauses, or adherence to approved data privacy frameworks. Please note that we may also share data globally within our group of companies under the appropriate safeguards and protections to maintain the security and confidentiality of your personal information.
We do not use any automated decision-making processes, including profiling, in our data processing activities. Therefore, you will not be subject to any decision based solely on automated processing that produces legal effects concerning you or similarly significantly affects you.
To ensure your privacy, we invest in high-quality security and use the latest technology to protect your personal information. We take appropriate measures to prevent unauthorised access, disclosure, modification, or destruction of data. To ensure the secure transmission of your personal data, all transactions are processed using industry-standard 128-bit encryption. This robust encryption technology helps safeguard your data from unauthorised access and maintains the privacy and security of your personal information throughout its transmission and storage.
We will not disclose, share, or sell your personal information to third parties unless we have obtained your explicit consent or are required by law to do so. We may use your personal information to send you promotional information about third parties that we believe may be of interest to you, only if you have consented to receive such communications.
You have the right, at any time and free of charge, to access, rectify, erase, restrict processing, object to processing, and data portability regarding your personal data as provided under the GDPR. If you wish to exercise any of these rights, please contact us! Additionally, you have the right to lodge a complaint with a supervisory authority if you believe your rights have been violated. We are committed to responding to any such request within a reasonable timeframe and in accordance with applicable data protection laws.
Your Responsibilities for Personal Data of Third Parties and IT Security
As a user of our Services, you are responsible for ensuring that any personal data of third parties obtained, published, or shared through our Services complies with applicable data protection laws. You must have the necessary legal basis, such as explicit consent, to process such data. We are not responsible for any violations of data protection laws by our users.
By using our Websites, you acknowledge that any form of web scraping or crawling, including the use of automated bots, software, or any other means to extract, collect, or scrape data from our Website, is strictly prohibited without obtaining our explicit consent, as such activities may involve the processing of personal data and are subject to compliance with the GDPR.
We take measures to protect the security of our Website and your personal data, but ultimately, it is your responsibility to ensure the security of your own devices and internet connection. We recommend that you follow all IT security best practices, such as using strong passwords and keeping your software up to date.
Storage and Processing of Postings and IP Addresses
We collect and store your assigned IP address for necessary operation of our Websites, as well as for security reasons in case of any violation of third-party rights or unlawful content. An IP address is a unique series of numbers that identifies your device, such as a computer or smartphone, when it connects to the internet.
Furthermore, for the purposes of operation, error tracking, and maintenance, we may collect and process system logs and IP addresses during specific maintenance periods. We ensure that this data is processed in compliance with applicable data protection laws and deleted or anonymised when it is no longer necessary for these purposes.
Use of Aggregated Demographic Information for Analytical or Statistical Purposes
We may use aggregated demographic information provided by users for analytical or statistical purposes. This information will not contain any personal data that can identify individual users. We will ensure that your privacy rights are protected, and we will not distribute any information that could identify you.
Shop Personal Data Collection and Processing
We require the data provided for the purpose of fulfilling contractual obligations or implementing pre-contractual measures. Without this data, we may not be able to enter into a contract with you!
To ensure an optimal shopping experience and fulfil contractual obligations, we collect the IP address assigned to you by your internet service provider, as well as your name and postal address. We process this data in accordance with applicable data protection laws, and take measures to protect your privacy rights.
Additionally, we may collect personal information such as your name, contact information (including email address), demographic information (such as postcode, preferences, and interests), and other information relevant to customer surveys and offers. We collect this information to understand your needs and provide you with better Products and Services. We will not share this information with third parties unless required by law or with your explicit consent.
We require this information to understand your needs and provide you with a better Service, and in particular for the following reasons:
- Internal record keeping: We may use the information to improve our Products and Services. This processing is necessary for the legitimate interests pursued by us as a business.
- Direct marketing: We may periodically send promotional emails about new products, special offers, or other information which we think you may find interesting using the email address which you have provided, but only if you have given your prior consent. You have the right to withdraw your consent to receive marketing communications at any time.
- Market research: From time to time, we may also use your information to contact you for market research purposes. We may contact you by email, phone, or mail. We will only use your personal information for market research purposes with your explicit consent.
- Security: We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic, and managerial procedures to safeguard and secure the information we collect online. This processing is necessary for compliance with a legal obligation to ensure the security of your data.
We will retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, including any archiving requirements, as required by law, or for the establishment, exercise, or defence of legal claims.
By placing your order, you agree and understand that we may store, process, and use the data collected from your order form for the purposes of processing your order. We will not share your personal data with any third parties unless it is necessary to fulfil your order, or unless we are required to do so by law.
We work with other companies that help us provide Products and Services to you. For example, we may provide your name, address, and telephone number to companies for the shipment of Products to you, like GLS, UPS, or DHL. We also may disclose this information to ensure that you benefit from special purchase discounts or terms.
Where you request online payment-handling services, some of the information you provide will be passed to payment providers for purchase authorisation. Our payment providers are:
We ensure that all these third-party service providers are GDPR compliant and only use your personal data for the purpose of providing the requested services.
For the management of legal and fiscal aspects of our contractual relationships, we may provide data to external professional legal and fiscal consultants to fulfil the requirements of the applicable laws or regulations, in particular related to tax matters. We take appropriate measures to ensure that your personal information is handled securely and in accordance with applicable data protection laws.
We will not use your personal information for any other purposes without your explicit consent. We will also ensure that your personal information is processed in accordance with applicable data protection laws and will take appropriate security measures to protect your personal information from unauthorised access, alteration, or deletion.
If you cancel a shopping process, the data collected will be deleted immediately. If a contract has been concluded, all data collected from this contract will be stored for the duration of the contract and for a period of seven years in accordance with tax regulations. Name, address, articles purchased, and date of purchase will be stored for a period of ten years for product responsibility purposes.
Analytics, Cookies, and Tracking Pixels
We use analytics, cookies, and tracking pixels on our site to enhance your experience and improve our services. By continuing to use our site, you are providing your consent to the use of these technologies. Personal data from analytics, cookies, and tracking pixels will only be deleted upon your request. Without a request from you, we consider your continued use of our site as consent for the use of those technologies. However, you have the right to withdraw your consent and request deletion of your personal data at any time. Please contact us to make such a request. We will respond to your request within a reasonable timeframe and in accordance with applicable data protection laws.
What are analytics? We use analytics to gather and analyse data to gain insights into patterns, trends, and behaviours. This data helps us understand how you interact with our Websites and Services, identify areas for improvement, optimise our marketing campaigns, and make data-driven decisions. Analytics provides valuable insights into how users find and use our Websites and Services, which pages or features are most popular, and how different marketing channels perform. By leveraging analytics data, we can improve our Websites, user experience, and overall performance.
Below is a list of the cookies we collect and the information they store:
- CART: The association with your shopping cart.
- CATEGORY_INFO: Stores the category info on the page, which allows us to display pages more quickly.
- COMPARE: The items that you have in the Compare Products list.
- CURRENCY: Your preferred currency
- CUSTOMER: An encrypted version of your customer id with the store.
- CUSTOMER_AUTH: An indicator if you are currently logged into the store.
- CUSTOMER_INFO: An encrypted version of the customer group you belong to.
- CUSTOMER_SEGMENT_IDS: Stores the Customer Segment ID
- EXTERNAL_NO_CACHE: A flag, which indicates whether caching is disabled or not.
- FRONTEND: Your session ID on the server.
- GUEST-VIEW: Allows guests to edit their orders.
- LAST_CATEGORY: The last category you visited.
- LAST_PRODUCT: The most recent product you have viewed.
- NEWMESSAGE: Indicates whether a new message has been received.
- NO_CACHE: Indicates whether it is allowed to use cache.
- PERSISTENT_SHOPPING_CART: A link to information about your cart and viewing history if you have asked the site.
- POLL: The ID of any polls you have recently voted in.
- POLLN: Information on what polls you have voted on.
- RECENTLYCOMPARED: The items that you have recently compared.
- STF: Information on products you have emailed to friends.
- STORE: The store view or language you have selected.
- VIEWED_PRODUCT_IDS: The products that you have recently viewed.
- WISHLIST: An encrypted list of products added to your wishlist.
- WISHLIST_CNT: The number of items in your wishlist.
We respect your right to control your personal data, and you can prevent the setting of cookies by adjusting your browser settings (please see your browser’s help documentation for instructions). However, please note that disabling cookies may impact the functionality of our website and many other websites that you visit. Disabling cookies may also result in the disabling of certain features and functionalities on this site. Therefore, we recommend that you keep cookies enabled for the best possible experience when using our services.
What are tracking pixels? We also use tracking pixels, which are small graphics embedded in web pages that allow us to record and analyse log files. This helps us to perform statistical analysis and understand how visitors interact with our site. With tracking pixels, we can determine if and when our site was opened, and which links were clicked. This helps us analyse the flow of visitors on our website.
When Contacting Us
When you contact us through our contact forms or directly by email, we collect and store the data you provide for the purpose of processing your enquiry and any follow-up questions you may have. We keep this information for a maximum of six months, after which it will be securely deleted. We will not disclose any individual user details, including your email address, to any third parties without your prior consent, unless we are legally required to do so.
If you would like to receive our newsletter, you can subscribe on our website by providing us with your email address and consent to receive the newsletter. Once you subscribe, we will send you an email with a link to confirm your subscription. If you make a purchase on our website, we may send targeted newsletters for marketing campaigns that are specifically relevant to you and based on your jurisdiction.
You can unsubscribe from our newsletter at any time by sending a cancellation request to firstname.lastname@example.org or using the unsubscribe button at the footer of our newsletter. Once we receive your request, we will promptly delete your personal data related to the newsletter.
We respect your privacy and will not share your email address or other personal information with third parties without your prior consent.
If you create an account on our website, we may contact you via email with information or queries related to your registration, subscription account, postings, reminders, follow-ups on products, warnings, or copyright requests. We may also send a reminder if you have items in your cart that you have not yet checked out.
If you do not wish to receive emails from us, you can adjust your preferences in the Email Preferences section of your User Profile or follow the instructions included in any unwanted email message. However, please be aware that you will still receive system emails (such as those regarding forgotten passwords) and legal notices (such as updates to our policies) from us.
If you make a purchase on our website, we may use your email address to create custom targeted audiences on Facebook, by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland.We will not share your email address with any other third-party partner without your prior consent, and you will not receive unsolicited marketing emails from them. The email lists we provide to Facebook are hashed to convert your data into short encrypted messages that cannot be altered. Facebook does not collect or store any email information on their servers.
If you do not want to receive marketing emails, please let us know and we will promptly remove your information. If you wish to opt-out of future advertising campaigns from us, you can adjust your preferences in your Facebook account ads preferences.
Additional Third-Party Personal Data Collection and Processing
Please be aware that our service providers may collect and process additional data in accordance with their own privacy policies. We recommend that you review the privacy policies of these service providers to understand how they collect, use, and protect your personal data. We are committed to complying with the GDPR and other applicable data protection laws, and we will ensure that any data sharing with our service providers is done in compliance with these laws.
The data we collect is stored on the servers of our hosting service provider, Hetzner Online GmbH, located at Industriestr. 25, 91710 Gunzenhausen, Germany. They provide the necessary hardware, software, and network infrastructure to ensure the data is reliably stored, protected from unauthorised access, and accessible when needed. Please note that Hetzner Online GmbH is committed to complying with GDPR regulations and maintaining the highest level of security for your data.
Use of Integrated Components on Our Website
When you visit our website, we may use integrated components (embeds) to enhance your browsing experience. When you access a page with an embedded component, your browser will automatically download and display it. During this process, the provider of the component may collect information such as the specific sub-page of our website visited and your IP address. We have integrated (embedded):
We ensure that any use of integrated components is in compliance with applicable data protection laws, and we take steps to protect your privacy rights.
Links to/from other Sites
Data Breach Reporting
One crucial aspect of our compliance is promptly reporting any data breaches that may occur. Under the GDPR, we are legally obligated to report data breaches to the appropriate authorities within 72 hours of becoming aware of the breach.
Contacting our Data Protection Officer
If you wish to exercise your rights under the EU General Data Protection Regulation (GDPR) or have any questions or concerns about our data processing practices, please contact our data protection officer (DPO) using the contact information provided below:
1070 Vienna, Austria
We are committed to responding to any such request within a reasonable timeframe and in accordance with applicable data protection laws.
We can provide a non-binding translation to your language where needed.
Podemos proporcionar una traducción no vinculante cuando sea necesario.
Nous pouvons fournir une traduction sans valeur légale si nécessaire.
Bei Bedarf bieten wir auch gerne eine unverbindliche Arbeitsübersetzung an.
Se necessario, possiamo fornire una traduzione non certificata e non vincolante.