Skip to content

Cart

Your cart is empty

Privacy policy

1) Introduction and Contact Details of the Responsible Party

1.1 We are pleased that you are visiting our website and thank you for your interest. Below we inform you about the handling of your personal data when using our website. Personal data is any data that can be used to personally identify you.

1.2 The responsible party for data processing on this website in accordance with the General Data Protection Regulation (GDPR) is Maximilian Fromm, MazorDesign, Schillerstr. 67a, 91054 Erlangen, Germany, Tel.: 091319166142, E-Mail: info@mazordesign.com. The responsible party for processing personal data is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data.

2) Data Collection When Visiting Our Website

2.1 When using our website purely for informational purposes, i.e., if you do not register or otherwise provide us with information, we only collect data that your browser transmits to the server (so-called "Server Logfiles"). When you access our website, we collect the following data, which is technically necessary for us to display the website to you:

  • The website you visited
  • Date and time of access
  • Amount of data sent in bytes
  • Source/reference from which you came to the page
  • Browser used
  • Operating system used
  • IP address used (if applicable, in anonymized form)

The processing takes place in accordance with Art. 6 (1) (f) GDPR based on our legitimate interest in improving the stability and functionality of our website. There is no transfer or other use of the data. However, we reserve the right to check the server logfiles retrospectively if specific indications suggest unlawful use.

2.2 This website uses SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g., orders or inquiries to the responsible party). You can recognize an encrypted connection by the string "https://" and the lock symbol in your browser line.

3) Hosting & Content Delivery Network

3.1 Shopify

For hosting our website and displaying the content, we use the system of the following provider: Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland ("Shopify")

Data is also transmitted to: Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada

All data collected on our website is processed on the provider's servers. We have entered into a data processing agreement with the provider, which ensures the protection of our visitors' data and prohibits unauthorized disclosure to third parties.

In the event of data transmission to Canada, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

3.2 Cloudflare

We use a content delivery network from the following provider: Cloudflare Inc., 101 Townsend St. San Francisco, CA 94107, USA

This service allows us to deliver large media files such as graphics, page content, or scripts faster through a network of geographically distributed servers. The processing takes place to protect our legitimate interest in improving the stability and functionality of our website in accordance with Art. 6 (1) (f) GDPR. We have entered into a data processing agreement with the provider, which ensures the protection of our visitors' data and prohibits unauthorized disclosure to third parties.

For data transmissions to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with European data protection standards based on an adequacy decision by the European Commission.

4) Cookies

To make visiting our website attractive and to enable the use of certain functions, we use cookies, which are small text files placed on your device. Some of these cookies are automatically deleted after closing the browser (so-called "Session Cookies"), while others remain on your device for a longer period and enable the storage of page settings (so-called "Persistent Cookies"). In the latter case, you can find the storage duration in the overview of the cookie settings of your web browser.

If individual cookies we use also process personal data, the processing is carried out in accordance with Art. 6 (1) (b) GDPR either for the performance of the contract, in accordance with Art. 6 (1) (a) GDPR in the case of consent given, or in accordance with Art. 6 (1) (f) GDPR to protect our legitimate interests in the best possible functionality of the website and a customer-friendly and effective design of the site visit.

You can set your browser to inform you when cookies are set and decide individually on their acceptance or exclude the acceptance of cookies for specific cases or in general.

Please note that if you do not accept cookies, the functionality of our website may be restricted.

5) Contacting Us

5.1 Loox

For review reminders, we use the services of the following provider: Loox Online Ltd., Rehov Har Sinai 2, 6581602 Tel Aviv-Yafo, Israel

Exclusively based on your explicit consent in accordance with Art. 6 (1) (a) GDPR, we transmit your email address and possibly other customer data to the provider so that they can contact you with a review reminder via email.

You can revoke your consent at any time with future effect against us or the provider.

We have entered into a data processing agreement with the provider, which ensures the protection of our visitors' data and prohibits unauthorized disclosure to third parties.

In the event of data transmission to the provider's location, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

5.2 In the context of contacting us (e.g., via contact form or email), personal data will be processed exclusively for the purpose of processing and responding to your request and only to the extent necessary.

The legal basis for processing this data is our legitimate interest in responding to your request in accordance with Art. 6 (1) (f) GDPR. If your contact aims at a contract, the additional legal basis for processing is Art. 6 (1) (b) GDPR. Your data will be deleted when it is evident from the circumstances that the matter in question has been conclusively clarified and provided that there are no legal retention obligations to the contrary.

6) Data Processing When Opening a Customer Account

In accordance with Art. 6 (1) (b) GDPR, personal data will continue to be collected and processed to the extent necessary when you provide this information to us when opening a customer account. You can find out what data is required for account opening from the input mask of the respective form on our website.

Deletion of your customer account is possible at any time and can be done by sending a message to the above-mentioned address of the responsible party. After deleting your customer account, your data will be deleted, provided that all contracts concluded about it have been completely settled, no legal retention periods contradict, and there is no legitimate interest in further storage on our part.

7) Use of Customer Data for Direct Marketing

7.1 Subscription to Our Email Newsletter

If you subscribe to our email newsletter, we will regularly send you information about our offers. The only mandatory information for sending the newsletter is your email address. Providing additional data is voluntary and will be used to address you personally. For sending the newsletter, we use the so-called double opt-in procedure, which ensures that you will only receive the newsletter after you have expressly confirmed your consent to receive the newsletter by clicking on a verification link sent to the specified email address.

By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6 (1) (a) GDPR. In this context, we store the IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration to be able to trace any misuse of your email address at a later date. The data we collect during the newsletter subscription is used strictly for the intended purpose.

You can unsubscribe from the newsletter at any time via the link provided in the newsletter or by sending a corresponding message to the responsible party mentioned at the beginning. After unsubscribing, your email address will be immediately deleted from our newsletter distribution list, unless you have expressly agreed to further use of your data or we reserve a further data use that is legally permitted and about which we inform you in this declaration.

7.2 Sending the Email Newsletter to Existing Customers

If you have provided us with your email address when purchasing goods or services, we reserve the right to regularly send you offers for similar goods or services, such as those you have already purchased, from our range via email. For this, we do not need to obtain separate consent from you in accordance with § 7 (3) UWG. The data processing in this respect is based solely on our legitimate interest in personalized direct marketing in accordance with Art. 6 (1) (f) GDPR. If you initially objected to the use of your email address for this purpose, we will not send any mail.

You have the right to object to the use of your email address for the aforementioned advertising purpose at any time with effect for the future by notifying the responsible party mentioned at the beginning. For this, you will only incur transmission costs according to basic rates. After receiving your objection, the use of your email address for advertising purposes will be immediately discontinued.

7.3 Shopify Email

The sending of our email newsletters is carried out by this provider: Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland

Data is also transmitted to: Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada

Based on our legitimate interest in effective and user-friendly newsletter marketing, we share your data provided during the newsletter subscription with this provider in accordance with Art. 6 (1) (f) GDPR so that they can handle the newsletter distribution on our behalf.

Subject to your explicit consent in accordance with Art. 6 (1) (a) GDPR, the provider additionally conducts statistical success evaluations of newsletter campaigns using web beacons or pixel counters in the sent emails, which can measure open rates and specific interactions with the contents of the newsletter. In doing so, device information (e.g., time of access, IP address, browser type, and operating system) is collected and evaluated but not merged with other data sets.
You can revoke your consent to newsletter tracking at any time with effect for the future.

We have entered into a data processing agreement with the provider, which protects the data of our website visitors and prohibits disclosure to third parties.

In the event of data transmission to Canada, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

7.4 Email Availability Notification

For temporarily unavailable items, you can sign up to receive email notifications about product availability. In this case, we will send you a one-time email about the availability of the item you selected. The only mandatory information for sending this notification is your email address. Providing additional data is voluntary and may be used to address you personally. For the email dispatch, we use the so-called double opt-in procedure, which ensures that you will only receive a notification once you have expressly confirmed your consent by clicking on a verification link sent to the specified email address.

By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6 (1) (a) GDPR. In this context, we store the IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration to trace any misuse of your email address at a later date. The data we collect when signing up for our email notification service for product availability is used strictly for the intended purpose.

You can unsubscribe from availability notifications at any time by sending a corresponding message to the responsible party mentioned at the beginning. After unsubscribing, your email address will be immediately deleted from our distribution list for this purpose, unless you have expressly consented to further use of your data or we reserve further data use that is legally permitted and about which we inform you in this declaration.

7.5 Cart Reminders via Email

In the event that you abandon your purchase with us before completing the order, you have the option to be reminded via email of the contents of your virtual shopping cart.

The only mandatory information for sending this reminder is your email address. Providing additional data is voluntary and may be used to address you personally. For the email dispatch, we use the so-called double opt-in procedure, which ensures that you will only receive a notification once you have expressly confirmed your consent by clicking on a verification link sent to the specified email address.

By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6 (1) (a) GDPR for sending a cart reminder. In this context, we store the IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration to trace any misuse of your email address at a later date. The data we collect when signing up for our email notification service for cart reminders is used strictly for the intended purpose.

You can unsubscribe from cart reminders at any time by sending a corresponding message to the responsible party mentioned at the beginning. After unsubscribing, your email address will be immediately deleted from our distribution list for this purpose, unless you have expressly consented to further use of your data or we reserve further data use that is legally permitted and about which we inform you in this declaration.

8) Data Processing for Order Fulfillment

8.1 Transmission of Image Files for Order Fulfillment via Email

On our website, we offer customers the option to personalize products by transmitting image files via email. The submitted image is used as a template for the personalization of the selected product.

Using the email address provided on the website, the customer can send one or more image files from the storage of the device used to us. We collect, store, and use the transmitted files solely for the production of the personalized product as described on our website. If the transmitted image files are shared with specific service providers for the production and processing of the order, you will be explicitly informed about this in the following paragraphs. No further disclosure will occur. If the transmitted files or digital images contain personal data (in particular images of identifiable individuals), all of the aforementioned processing operations will be conducted solely for the purpose of fulfilling your online order in accordance with Art. 6 (1) (b) GDPR.

After the order has been fully processed, the transmitted image files will be automatically and completely deleted.

8.2 Transmission of Image Files for Order Fulfillment via Messaging Function
If the customer has the option to personalize products by transmitting image files via the messaging function, the submitted image is used as a template for the personalization of the selected product.
Using the Instagram messaging function, the customer can send one or more image files from the storage of the device used to us. We collect, store, and use the transmitted files solely for the production of the personalized product as described in our services. If the transmitted image files are shared with specific service providers for the production and processing of the order, you will be explicitly informed about this in the following paragraphs. No further disclosure will occur. If the transmitted files or digital images contain personal data (in particular images of identifiable individuals), all of the aforementioned processing operations will be conducted solely for the purpose of fulfilling your online order in accordance with Art. 6 (1) (b) GDPR. After the order has been fully processed, the transmitted image files will be automatically and completely deleted.

8.3 Transmission of Image Files for Order Fulfillment via Upload Function

On our website, we offer customers the option to personalize products by transmitting image files via an upload function. The submitted image is used as a template for the personalization of the selected product.

Using the upload form on the website, the customer can send one or more image files from the storage of the device used directly via automated, encrypted data transfer to us. We collect, store, and use the transmitted files solely for the production of the personalized product as described on our website. If the transmitted image files are shared with specific service providers for the production and processing of the order, you will be explicitly informed about this in the following paragraphs. No further disclosure will occur. If the transmitted files or digital images contain personal data (in particular images of identifiable individuals), all of the aforementioned processing operations will be conducted solely for the purpose of fulfilling your online order in accordance with Art. 6 (1) (b) GDPR.

After the order has been fully processed, the transmitted image files will be automatically and completely deleted.

8.4 As far as necessary for contract fulfillment regarding delivery and payment, the personal data we collect will be shared in accordance with Art. 6 (1) (b) GDPR with the commissioned transport company and the commissioned credit institution.

If we owe you updates for goods with digital elements or for digital products based on a corresponding contract, we will process the contact data you provided when ordering (name, address, email address) to inform you personally about upcoming updates within the legally required timeframe in accordance with Art. 6 (1) (c) GDPR via suitable communication methods (e.g., by post or by email). Your contact details will be used strictly for communications regarding updates owed by us and processed by us only to the extent necessary for the respective information.

To fulfill your order, we also work with the following service provider(s), who support us wholly or partially in executing concluded contracts. Certain personal data will be transmitted to these service providers according to the following information.

8.5 Use of Payment Service Providers

- Amazon Pay

One or more online payment methods from the following provider are available on this website: Amazon Payments Europe s.c.a., 38 avenue J.F. Kennedy, L-1855 Luxembourg

If you select a payment method from the provider where you make an advance payment (e.g., credit card payment), your payment data (including name, address, bank and card details, currency, and transaction number) communicated during the ordering process, as well as information about the content of your order will be transmitted to them in accordance with Art. 6 (1) (b) GDPR. The transmission of your data in this case is solely for the purpose of processing payments with the provider and only to the extent necessary for this.

- Apple Pay

 

If you opt for the payment method "Apple Pay" from Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, the payment processing is carried out through the "Apple Pay" function of your device operated with iOS, watchOS, or macOS by charging a payment card stored with "Apple Pay." Apple Pay uses security features integrated into the hardware and software of your device to protect your transactions. To authorize a payment, you must enter a previously set code and verify using the "Face ID" or "Touch ID" function of your device.

For payment processing, your information provided during the ordering process along with your order details is transmitted in encrypted form to Apple. Apple then re-encrypts this data with a developer-specific key before sending it to the payment service provider of the payment card stored in Apple Pay to process the payment. The encryption ensures that only the website through which the purchase was made can access the payment data. After the payment is completed, Apple sends your device account number and a transaction-specific, dynamic security code to the originating website to confirm the payment success.

If personal data is processed in the described transmissions, the processing occurs solely for the purpose of payment processing in accordance with Art. 6 (1) (b) GDPR.

Apple retains anonymized transaction data, including the approximate purchase amount, approximate date and time, and an indication of whether the transaction was successfully completed. Anonymization completely excludes any personal reference. Apple uses the anonymized data to improve "Apple Pay" and other Apple products and services.

If you use Apple Pay on the iPhone or Apple Watch to complete a purchase made through Safari on the Mac, the Mac and the authorization device communicate over a secure channel on Apple servers. Apple does not process or store any of this information in a format that can identify you. You can disable the option to use Apple Pay on your Mac in the settings of your iPhone. Go to "Wallet & Apple Pay" and disable "Allow payments on Mac."

Further information about data protection regarding Apple Pay can be found at the following address: https://support.apple.com/de-de/HT203027
- Google Pay

If you choose the payment method "Google Pay" from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"), the payment processing is carried out through the "Google Pay" application of your mobile device operating with at least Android 4.4 ("KitKat") and equipped with an NFC function by charging a payment card stored with Google Pay or a verified payment system there (e.g., PayPal). To authorize a payment via Google Pay over 25,- €, unlocking your mobile device using the verification method (such as facial recognition, password, fingerprint, or pattern) you have set up is required.

For payment processing, your information provided during the ordering process along with your order details is transmitted to Google. Google then transmits your payment information stored in Google Pay in the form of a unique transaction number to the originating website to verify a completed payment. This transaction number contains no information regarding the actual payment data of your payment methods stored in Google Pay but is created and transmitted as a uniquely valid numeric token. In all transactions via Google Pay, Google acts solely as an intermediary for processing the payment. The execution of the transaction occurs solely in the relationship between the user and the originating website by charging the payment method stored in Google Pay.

If personal data is processed in the described transmissions, the processing occurs solely for the purpose of payment processing in accordance with Art. 6 (1) (b) GDPR.

Google reserves the right to collect, store, and evaluate specific transaction-related information for each transaction made via Google Pay. This includes the date, time, and amount of the transaction, merchant location and description, a description provided by the merchant of the purchased goods or services, photos you attached to the transaction, the name and email address of the seller and buyer or sender and recipient, the payment method used, your description of the reason for the transaction, and any offers related to the transaction.

According to Google, this processing occurs solely in accordance with Art. 6 (1) (f) GDPR based on the legitimate interest in proper accounting, verifying transaction data, and optimizing and maintaining the functionality of the Google Pay service.

Google also reserves the right to combine the processed transaction data with additional information collected and stored by Google while using other Google services.

The terms of use for Google Pay can be found here:

https://payments.google.com/payments/apis-secure/u/0/get_legal_document?ldo=0&ldt=googlepaytos&ldl=de
Further information about data protection regarding Google Pay can be found at the following address:
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de
- Klarna

One or more online payment methods from the following provider are available on this website: Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden

If you select a payment method from the provider where you make an advance payment (e.g., credit card payment), your payment data (including name, address, bank and card information, currency, and transaction number) communicated during the ordering process, as well as information about the content of your order will be transmitted to them in accordance with Art. 6 (1) (b) GDPR. The transmission of your data in this case is solely for the purpose of processing payments with the provider and only to the extent necessary for this.

If you select a payment method where the provider makes an advance payment (e.g., invoice or installment purchase or direct debit), you will also be required during the ordering process to provide certain personal data (first and last name, street, house number, postal code, city, date of birth, email address, phone number, possibly data for an alternative payment method).

To protect our legitimate interest in determining the creditworthiness of our customers, these data will be forwarded to the provider in accordance with Art. 6 (1) (f) GDPR for the purpose of a credit check. The provider checks, based on the personal data you provided and other data (such as cart, invoice amount, order history, payment experiences), whether the payment method you selected can be granted in light of payment and/or default risks.

For the decision during the application review, identity and credit information from the following credit agencies may also be included alongside provider-internal criteria in accordance with Art. 6 (1) (f) GDPR:

https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies

The credit assessment may contain probability values (so-called score values). To the extent that score values are included in the result of the credit assessment, they are based on a scientifically recognized mathematical-statistical procedure. Address data is included, among other things, but not exclusively, in the calculation of the score values.

You can object to this processing of your data at any time by sending a message to us or to the provider. However, the provider may still be entitled to process your personal data if this is necessary for contract-compliant payment processing.
- Paypal

One or more online payment methods from the following provider are available on this website: PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg

If you select a payment method from the provider where you make an advance payment, your payment data (including name, address, bank and card information, currency, and transaction number) communicated during the ordering process, as well as information about the content of your order will be transmitted to them in accordance with Art. 6 (1) (b) GDPR. The transmission of your data in this case is solely for the purpose of processing payments with the provider and only to the extent necessary for this.

If you select a payment method where we make an advance payment, you will also be required during the ordering process to provide certain personal data (first and last name, street, house number, postal code, city, date of birth, email address, phone number, possibly data for an alternative payment method).

To protect our legitimate interest in determining your creditworthiness, these data will be forwarded to the provider in accordance with Art. 6 (1) (f) GDPR for the purpose of a credit check. The provider checks, based on the personal data you provided and other data (such as cart, invoice amount, order history, payment experiences), whether the payment method you selected can be granted in light of payment and/or default risks.

The credit assessment may contain probability values (so-called score values). To the extent that score values are included in the result of the credit assessment, they are based on a scientifically recognized mathematical-statistical procedure. Address data is included, among other things, but not exclusively, in the calculation of the score values.

You can object to this processing of your data at any time by sending a message to us or to the provider. However, the provider may still be entitled to process your personal data if this is necessary for contract-compliant payment processing.
- Paypal Checkout

This website uses PayPal Checkout, an online payment system from PayPal, which consists of PayPal's own payment methods and local third-party payment methods.

When paying via PayPal, credit card via PayPal, direct debit via PayPal, or – if offered – "Pay Later" via PayPal, we transmit your payment data as part of the payment processing to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal"). The transmission is carried out in accordance with Art. 6 (1) (b) GDPR and only to the extent necessary for payment processing.

PayPal reserves the right to conduct a credit assessment for the payment methods credit card via PayPal, direct debit via PayPal, or – if offered – "Pay Later" via PayPal. For this, your payment data may be forwarded in accordance with Art. 6 (1) (f) GDPR based on PayPal's legitimate interest in determining your creditworthiness to credit agencies. The result of the credit assessment regarding the statistical probability of default will be used by PayPal for deciding on the provision of the respective payment method. The credit assessment may contain probability values (so-called score values). To the extent that score values are included in the result of the credit assessment, they are based on a scientifically recognized mathematical-statistical procedure. Address data is included, among other things, but not exclusively, in the calculation of the score values. You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for contract-compliant payment processing.

If "Invoice Purchase" is available and selected, your payment data will initially be transmitted to PayPal to prepare for payment, after which PayPal forwards this data to Ratepay GmbH, Franklinstraße 28-29, 10587 Berlin ("Ratepay") for processing the payment. The legal basis is Art. 6 (1) (b) GDPR in each case. In this case, RatePay will conduct an identity and credit check in its own name to determine creditworthiness according to the principle mentioned above and will forward your payment data to credit agencies based on its legitimate interest in determining creditworthiness in accordance with Art. 6 (1) (f) GDPR. A list of credit agencies that Ratepay may rely on can be found here: https://www.ratepay.com/legal-payment-creditagencies/

When using a local third-party payment method, your payment data will initially be forwarded to PayPal for preparation of the payment in accordance with Art. 6 (1) (b) GDPR. Depending on your selection of an available local payment method, PayPal then forwards your payment data for processing the payment in accordance with Art. 6 (1) (b) GDPR to the corresponding provider:

- Apple Pay (Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland)
- Google Pay (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland)
- iDeal (Currence Holding BV, Beethovenstraat 300 Amsterdam, Netherlands)
- Bancontact (Bancontact Payconiq Company, Rue d'Arlon 82, 1040 Brussels, Belgium)
- Blik (Polski Standard Płatności sp. z o.o., ul. Czerniakowska 87A, 00-718 Warsaw, Poland)
- Eps (PSA Payment Services Austria GmbH, Handelskai 92, Gate 2 1200 Vienna, Austria)
- MyBank (PRETA S.A.S, 40 Rue de Courcelles, F-75008 Paris, France)
- Przelewy24 (PayPro SA, Kanclerska 15A, 60-326 Poznań, Poland)

For further data protection information, please refer to the privacy policy of PayPal: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
- Shopify Payments

One or more online payment methods from the following provider are available on this website: Shopify International Limited, Victoria Buildings, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland

If you select a payment method from the provider where you make an advance payment (e.g., credit card payment), your payment data (including name, address, bank and card details, currency, and transaction number) communicated during the ordering process, as well as information about the content of your order will be transmitted to them in accordance with Art. 6 (1) (b) GDPR. The transmission of your data in this case is solely for the purpose of processing payments with the provider and only to the extent necessary for this.
- SOFORT

One or more online payment methods from the following provider are available on this website: SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany

If you select a payment method from the provider where you make an advance payment (e.g., credit card payment), your payment data (including name, address, bank and card details, currency, and transaction number) communicated during the ordering process, as well as information about the content of your order will be transmitted to them in accordance with Art. 6 (1) (b) GDPR. The transmission of your data in this case is solely for the purpose of processing payments with the provider and only to the extent necessary for this.

9) Web Analytics Services

Google Tag Manager

This website uses the "Google Tag Manager," a service from the following provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: "Google").

The Google Tag Manager provides a technical basis for bundling various web applications, including tracking and analytics services, and calibrating, controlling, and linking them to conditions via a uniform user interface. The Google Tag Manager itself does not store information on user devices or read it. The service also does not conduct independent data analyses. However, by using the Google Tag Manager, your IP address is transmitted to Google upon page view and may be stored there. Transmission to servers of Google LLC in the USA is also possible.

This processing only takes place if you have given us your explicit consent in accordance with Art. 6 (1) (a) GDPR. Without this consent, the use of Google Tag Manager will not occur during your visit to the site. You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the "Cookie Consent Tool" provided on the website.

We have entered into a data processing agreement with the provider, which ensures the protection of our visitors' data and prohibits unauthorized disclosure to third parties.

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with European data protection standards based on an adequacy decision of the European Commission.

Further legal information about Google Tag Manager can be found at https://policies.google.com/privacy?hl=de&gl=de

10) Retargeting/Remarketing and Conversion Tracking

Google Ads Conversion Tracking

This website uses the online advertising program "Google Ads" and within the framework of Google Ads the conversion tracking of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). We use the offer from Google Ads to draw attention to our attractive offers on external websites using advertising media (so-called Google Adwords). We can determine how successful individual advertising measures are concerning the data of the advertising campaigns. We pursue the goal of displaying advertising that is of interest to you, making our website more interesting for you, and achieving a fair calculation of the advertising costs incurred.

The conversion tracking cookie is set when a user clicks on an ad placed by Google. Cookies are small text files that are placed on your device. These cookies usually expire after 30 days and are not used for personal identification. If the user visits certain pages of this website and the cookie has not expired, Google and we can recognize that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. Cookies cannot be tracked across the websites of Google Ads customers. The information obtained using the conversion cookie is used to generate conversion statistics for Google Ads customers who have opted for conversion tracking. The customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that can identify users personally. In the course of using Google Ads, personal data may also be transmitted to the servers of Google LLC in the USA.

Details regarding the processing initiated by Google Ads Conversion Tracking and how Google handles data from websites can be found here: https://policies.google.com/technologies/partner-sites

All the above-mentioned processing operations, especially setting cookies to read information on the used end device, only take place if you have given us your explicit consent in accordance with Art. 6 (1) (a) GDPR. You can revoke your consent at any time with effect for the future by deactivating this service in the "Cookie Consent Tool" provided on the website.

You can also permanently object to the setting of cookies by Google Ads Conversion Tracking by downloading and installing the browser plugin available at the following link:
https://www.google.com/settings/ads/plugin?hl=de

Please note that certain features of this website may not function or only function to a limited extent if you disable the use of cookies.
Google's privacy policy can be accessed here: https://www.google.de/policies/privacy/

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with European data protection standards based on an adequacy decision of the European Commission.

11) Page Functionalities

11.1 YouTube

This website uses plugins to display and play videos from the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data may also be transmitted to: Google LLC, USA

When you access a page of our website that contains such a plugin, your browser establishes a direct connection to the servers of the provider to load the plugin. In this process, certain information, including your IP address, is transmitted to the provider.

If the playback of embedded videos is initiated via the plugin, the provider also uses cookies to collect information about user behavior, create playback statistics, and prevent abusive behavior.

If you are logged into a user account with the provider during your site visit, your data will be directly associated with your account when you click on a video. If you do not wish for your data to be associated with your account, you must log out before activating the playback button.

All the aforementioned processing operations, especially setting cookies to read information on the used end device, only take place if you have given us your explicit consent in accordance with Art. 6 (1) (a) GDPR. You can revoke your granted consent at any time with effect for the future by deactivating this service via the "Cookie Consent Tool" provided on the website.

For data transmissions to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with European data protection standards based on an adequacy decision of the European Commission.

11.2 Google Maps

This website uses an online map service from the following provider: Google Maps (API) from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google").

Google Maps is a web service for displaying interactive (land) maps to visually present geographical information. Through the use of this service, our location is displayed, and any route guidance is facilitated.

When you visit the subpages where the Google Maps map is embedded, information about your use of our website (e.g., your IP address) is transmitted to Google servers and stored there; this may also involve a transfer to Google LLC servers in the USA. This occurs regardless of whether Google provides a user account that you are logged into or whether a user account exists. If you are logged into Google, your data is directly assigned to your account. If you do not wish for the assignment with your Google profile, you must log out before activating the button. Google stores your data (even for non-logged-in users) as usage profiles and evaluates them.

The collection, storage, and evaluation occur in accordance with Art. 6 (1) (f) GDPR based on Google's legitimate interest in displaying personalized advertising, market research, and/or the needs-based design of Google websites. You have the right to object to the formation of these user profiles, for which you must contact Google. If you do not agree with the future transmission of your data to Google in connection with the use of Google Maps, you also have the option to completely deactivate the web service of Google Maps by disabling the JavaScript application in your browser. Google Maps and thus the map display on this website cannot be used then.

As far as legally required, we have obtained your consent regarding the processing of your data described above in accordance with Art. 6 (1) (a) GDPR. You can revoke your consent at any time with effect for the future. To exercise your revocation, please follow the above-mentioned possibility of exercising an objection.

For data transmissions to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with European data protection standards based on an adequacy decision of the European Commission.

11.3 Best Currency Converter

This website uses the service "Best Currency Converter" of Grizzly Apps SRL, Str. Muresului Nr. 7 Bloc E23, Scara B, Apartament 15, Brasov, Romania ("Best Currency Converter"). Based on our legitimate interest in displaying prices in the local currency of your location, Best Currency Converter collects your IP address in accordance with Art. 6 (1) (f) GDPR and evaluates it to adjust price displays on the website to your location. No permanent storage of the IP address occurs. Furthermore, after the first currency adjustment, Best Currency Converter sets a functional cookie in the browser of your device to store the currency setting for the duration of a session. After the session ends, the cookie is automatically deleted.

12) Tools and Miscellaneous

- DATEV

For bookkeeping, we use the service of the cloud-based accounting software of the following provider: DATEV eG, Paumgartnerstr. 6-14, 90429 Nuremberg, Germany

The provider processes incoming and outgoing invoices and possibly also the bank transactions of our company to automatically capture invoices, match them to the transactions, and create the financial accounting in a partially automated process.

If personal data is processed here, the processing takes place in accordance with Art. 6 (1) (f) GDPR based on our legitimate interest in efficient organization and documentation of our business processes.

13) Rights of the Data Subject

13.1 Applicable data protection law grants you the following rights against the responsible party concerning the processing of your personal data (rights of access and intervention), with reference to the respective prerequisites for exercising being made to the legal basis cited:

  • Right of access in accordance with Art. 15 GDPR;
  • Right to rectification in accordance with Art. 16 GDPR;
  • Right to erasure in accordance with Art. 17 GDPR;
  • Right to restriction of processing in accordance with Art. 18 GDPR;
  • Right to notification in accordance with Art. 19 GDPR;
  • Right to data portability in accordance with Art. 20 GDPR;
  • Right to withdraw consent given in accordance with Art. 7 (3) GDPR;
  • Right to lodge a complaint in accordance with Art. 77 GDPR.

13.2 RIGHT TO OBJECT

WHEN WE PROCESS YOUR PERSONAL DATA ON THE BASIS OF A LEGITIMATE INTEREST, YOU HAVE THE RIGHT TO OBJECT TO THIS PROCESSING AT ANY TIME ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION WITH EFFECT FOR THE FUTURE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL CEASE PROCESSING THE DATA IN QUESTION. FURTHER PROCESSING REMAINS RESERVED IF WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR IF THE PROCESSING IS NECESSARY FOR THE ESTABLISHMENT, EXERCISE, OR DEFENSE OF LEGAL CLAIMS.

IF YOUR PERSONAL DATA ARE PROCESSED BY US FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR SUCH MARKETING. YOU CAN EXERCISE THE RIGHT TO OBJECT AS DESCRIBED ABOVE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL CEASE PROCESSING THE DATA IN QUESTION FOR DIRECT MARKETING PURPOSES.

14) Duration of Storage of Personal Data

The duration of storage of personal data is based on the respective legal basis, the purpose of processing, and – if applicable – additionally on the respective statutory retention period (e.g., commercial and tax law retention periods).

When processing personal data based on explicit consent in accordance with Art. 6 (1) (a) GDPR, the affected data will be stored as long as you do not withdraw your consent.

If there are statutory retention periods for data processed in the context of contractual or contractual-like obligations based on Art. 6 (1) (b) GDPR, this data will be routinely deleted after the retention periods have expired, provided that it is no longer necessary for contract fulfillment or contract initiation and/or we have no legitimate interest in further storage.

When processing personal data based on Art. 6 (1) (f) GDPR, this data will be stored as long as you do not exercise your right to object according to Art. 21 (1) GDPR, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims.

When processing personal data for the purpose of direct marketing based on Art. 6 (1) (f) GDPR, this data will be stored as long as you do not exercise your right to object according to Art. 21 (2) GDPR.

Unless otherwise stated in the specific processing situations in this declaration, stored personal data will be deleted when they are no longer necessary for the purposes for which they were collected or otherwise processed.