Politik om beskyttelse af persondata

Tak for din interesse for vores online shop. Beskyttelse af dit privatliv er meget vigtig for os. Nedenfor informerer vi dig i detaljer om, hvordan vi håndterer dine data.

1. adgangsdata og hosting
Du kan besøge vores websteder uden at give nogen personlige oplysninger. Hver gang du går ind på et websted, gemmer webserveren kun automatisk en såkaldt serverlogfil, som f.eks. indeholder navnet på den ønskede fil, din IP-adresse, dato og klokkeslæt for adgangen, mængden af overførte data og den anmodende udbyder (adgangsdata) og dokumenterer adgangen.

Disse adgangsdata evalueres udelukkende med henblik på at sikre en problemfri drift af webstedet og forbedre vores tjenester. I henhold til art. 6, stk. 1, pkt. 1, litra f DSGVO tjener dette til at beskytte vores legitime interesser i en korrekt præsentation af vores tilbud, som vejer tungere end vores interesser i forbindelse med en interesseafvejning. Alle adgangsdata slettes senest syv dage efter afslutningen af dit besøg på webstedet.

Hosting-tjenester fra en tredjepartsleverandør
Som en del af behandlingen på vores vegne leverer en tredjepartsleverandør os tjenesterne til hosting og visning af webstedet. Dette tjener til at beskytte vores legitime interesser i en korrekt præsentation af vores tilbud, som har forrang i forbindelse med en afvejning af interesser. Alle data, der indsamles i forbindelse med brugen af dette websted eller i formularer, der er stillet til rådighed til dette formål i onlineshoppen som beskrevet nedenfor, behandles på dets servere. Behandling på andre servere finder kun sted inden for de rammer, der er forklaret her.

Denne tjenesteudbyder er beliggende i USA og er certificeret i henhold til EU-US Privacy Shield. Du kan se et aktuelt certifikat her. På grundlag af denne aftale mellem USA og Europa-Kommissionen har sidstnævnte fastsat et passende databeskyttelsesniveau for virksomheder, der er certificeret under Privacy Shield.

2. Indsamling og brug af data til kontraktbehandling og ved åbning af en kundekonto
Vi indsamler personoplysninger, når du frivilligt giver os disse oplysninger som en del af din bestilling, når du kontakter os (f.eks. via kontaktformular eller e-mail) eller når du åbner en kundekonto. Obligatoriske felter er markeret som sådan, fordi vi i disse tilfælde har absolut brug for oplysningerne for at kunne gennemføre kontrakten eller for at kunne behandle din kontakt eller åbne en kundekonto, og du kan ikke gennemføre ordren og/eller åbne en konto eller sende kontakten uden at angive dem. Hvilke data der indsamles, kan ses af de respektive indtastningsformularer. Vi bruger de oplysninger, du giver os, i overensstemmelse med art. 6, stk. 1, s. 1, litra b, i DSGVO med henblik på at behandle kontrakten og behandle dine henvendelser. Efter afslutning af kontraktens behandling eller sletning af din kundekonto vil dine data blive begrænset til yderligere behandling og slettet efter udløbet af de skattemæssige og handelsretlige opbevaringsperioder, medmindre du udtrykkeligt har givet dit samtykke til yderligere brug af dine data, eller vi forbeholder os ret til at bruge data ud over dette, hvilket er tilladt i henhold til loven, og som vi informerer dig om i denne erklæring. Det er til enhver tid muligt at slette din kundekonto og kan gøres enten ved at sende en besked til den kontaktmulighed, der er beskrevet nedenfor, eller via en funktion, der er beregnet til dette formål i kundekontoen.

3. dataoverførsel
For at opfylde kontrakten i henhold til art. 6 stk. 1 p. 1 lit. b DSGVO videregiver vi dine data til det rederi, der er udpeget til at levere, i det omfang det er nødvendigt for leveringen af de bestilte varer. Afhængigt af hvilken betalingstjenesteudbyder du vælger i bestillingsprocessen, videregiver vi de betalingsdata, der er indsamlet til dette formål, til det kreditinstitut, der er ansvarlig for betalingen, og eventuelt til betalingstjenesteudbydere, som vi har fået til opgave at udføre betalingen, eller til den valgte betalingstjeneste. I nogle tilfælde indsamler de udvalgte betalingstjenesteudbydere også selv disse data, hvis du opretter en konto hos dem. I dette tilfælde skal du registrere dig hos betalingstjenesteudbyderen med dine adgangsoplysninger under bestillingsprocessen. I denne henseende gælder den respektive udbyder af betalingstjenesternes fortrolighedspolitik.

Vi bruger betalingstjenesteudbydere, der er baseret i et land uden for EU. Overførsel af personoplysninger til denne virksomhed finder kun sted inden for rammerne af det, der er nødvendigt for opfyldelsen af kontrakten.

Dataoverførsel til leverandører af forsendelsestjenester
Hvis du har givet os dit udtrykkelige samtykke hertil under eller efter din bestilling, videregiver vi din e-mailadresse til den valgte leverandør af forsendelsestjenester på grundlag af dette samtykke i overensstemmelse med art. 6 stk. 1 p. 1 lit. a DSGVO, så de kan kontakte dig før levering med henblik på meddelelse om levering eller koordinering.

Du kan til enhver tid tilbagekalde dit samtykke ved at sende en besked til den kontaktmulighed, der er beskrevet nedenfor, eller direkte til leverandøren af forsendelsestjenesten på den kontaktadresse, der er anført nedenfor. Efter tilbagekaldelse sletter vi dine data, som du har givet os til dette formål, medmindre du udtrykkeligt har givet dit samtykke til yderligere brug af dine data, eller vi forbeholder os retten til at bruge data ud over dette, hvilket er tilladt i henhold til loven, og som vi informerer dig om i denne erklæring.

DHL
Heinrich-Brüning-Str. 5
53113
Bonn

Godtgørelsestilbud og fordeltilbud fra Sovendus GmbH:

For at kunne vælge et kupontilbud, der i øjeblikket er interessant for dig, overfører vi hash-værdien af din e-mailadresse og din IP-adresse til Sovendus GmbH, Hermann-Veit-Str. 6, 76135 Karlsruhe (Sovendus) i pseudonymiseret og krypteret form (art. 6, stk. 1, litra f DSGVO). Den pseudonymiserede hash-værdi af e-mail-adressen bruges af Sovendus til at tage hensyn til en eventuel indsigelse mod reklame (art. 21, stk. 3, art. 6, stk. 1, litra c DSGVO). IP-adressen bruges af Sovendus udelukkende til datasikkerhedsformål og anonymiseres normalt efter syv dage (art. 6, stk. 1, litra f, i DSGVO). Derudover overfører vi ordrenummer, ordreværdi med valuta, sessions-ID, kuponkode og tidsstempel til Sovendus i pseudonymiseret form til faktureringsformål (art. 6, stk. 1, litra f DSGVO). Hvis du er interesseret i et kupontilbud fra Sovendus, der ikke er nogen reklamemæssig indsigelse mod din e-mailadresse, og du klikker på kuponbanneret, der kun vises i dette tilfælde, overfører vi din titel, navn, postnummer, land og e-mailadresse i krypteret form til Sovendus til udarbejdelse af kuponen (art. 6, stk. 1, b, f DSGVO).

Til udvælgelse af et fordelagtigt tilbud, der i øjeblikket er interessant for dig regionalt, overfører vi din titel, dit fødselsår, land, postnummer, hash-værdi af e-mailadressen og din IP-adresse til Sovendus GmbH, Hermann-Veit-Str. 6, 76135 Karlsruhe (Sovendus) i pseudonymiseret og krypteret form (art. 6, stk. 1, litra f DSGVO). Den pseudonymiserede hash-værdi af e-mail-adressen vil også blive brugt af Sovendus til at tage hensyn til eventuelle indsigelser mod reklamer (art. 21, stk. 3, art. 6, stk. 1, litra c DSGVO). IP-adressen bruges af Sovendus udelukkende til datasikkerhedsformål og anonymiseres normalt efter syv dage (art. 6, stk. 1, litra f, i DSGVO).

I det omfang det er nødvendigt for det pågældende fordeltilbud, overfører vi dit navn, dine adresseoplysninger, din e-mailadresse og/eller dit telefonnummer i krypteret form til Sovendus, når du klikker på fordeltilbuddet for at forberede den personlige anmodning om fordeltilbuddet fra produktudbyderen (art. 6, stk. 1, b, f DSGVO).

For yderligere oplysninger om Sovendus' behandling af dine data henvises til onlineinformationerne om databeskyttelse på www.sovendus.de/datenschutz.

4. Udsendelse af nyhedsbreve via Klaviyo og postreklamer
Udsendelsen af vores e-mail-nyhedsbreve sker via den tekniske tjenesteudbyder "Klaviyo", 225 Franklin St, Boston, MA 02110, USA (http://www.klaviyo.com/), til hvem vi videregiver dine data, som du har oplyst i forbindelse med tilmeldingen til nyhedsbrevet, til. Denne overførsel finder sted i overensstemmelse med art. 6, stk. 1, litra f, i DSGVO og tjener vores legitime interesse i at anvende et nyhedsbrevssystem, der er effektivt i forbindelse med reklame, sikkert og brugervenligt. Bemærk venligst, at dine data normalt overføres til en Klaviyo-server i USA og opbevares der.

Klaviyo bruger disse oplysninger til at sende nyhedsbrevet på vores vegne. Klaviyo bruger ikke oplysningerne om modtagerne af vores nyhedsbreve til at skrive til dem eller videregive dem til tredjeparter. For at beskytte dine data i USA har vi en databehandleraftale med Klaviyo ("Databehandleraftale"), hvori Klaviyo forpligter sig til at beskytte vores brugeres data, behandle dem på vores vegne i overensstemmelse med USA's databeskyttelsesbestemmelser og især til ikke at videregive dem til tredjeparter.

Du kan se Klaviyos databeskyttelsespolitik her: https://www.klaviyo.com/privacy

Postreklame og din ret til at gøre indsigelse
Derudover forbeholder vi os ret til at bruge dit for- og efternavn samt din postadresse til vores egne reklameformål, f.eks. til at sende dig interessante tilbud og information om vores produkter med brevpost. Dette tjener til at beskytte vores legitime interesser i at henvende os til vores kunder på en reklamemæssig måde i overensstemmelse med art. 6, stk. 1, s. 1, lit. f i DSGVO.

Reklameudsendelserne leveres som en del af behandlingen på vores vegne af en tjenesteudbyder, som vi videregiver dine oplysninger til dette formål.
Du kan til enhver tid gøre indsigelse mod opbevaring og brug af dine data til disse formål ved at sende en besked til den kontaktmulighed, der er beskrevet nedenfor.

5. brug af data til betalingsbehandling
Identitets- og kreditværdighedskontrol, når du vælger Klarna betalingstjenester.

I samarbejde med Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sverige, tilbyder vi følgende betalingsmuligheder. I hvert enkelt tilfælde foretages betalingen til Klarna:

Faktura: Betalingsfristen er 14 dage fra datoen for afsendelse af varen/billetten/ eller, for andre tjenesteydelser, fra ydelsen af tjenesteydelsen. Du kan finde vilkårene og betingelserne for køb af fakturaer for leverancer til Tyskland her og for leverancer til Østrig her.

Køb på afbetaling (kun tilgængelig i Tyskland): Med Klarnas finansieringstjeneste kan du betale for dit køb fleksibelt i månedlige rater på mindst 1/24 af det samlede beløb (dog mindst 6,95 EUR) eller på de betingelser, der ellers er angivet i kassen. Afdragsbetalingen forfalder ved udgangen af hver måned, efter at Klarna har sendt dig en månedlig faktura. Yderligere oplysninger om køb på afbetaling, herunder de generelle vilkår og betingelser og de europæiske standardoplysninger for forbrugerkredit, kan findes her.

Brugen af betalingsmetoderne faktura, afbetalingskøb kræver en positiv kreditvurdering. I den forbindelse videresender vi dine data til Klarna med henblik på adresse- og kreditværdighedskontrol som led i købsinitieringen og behandlingen af købsaftalen. Du skal forstå, at vi kun kan tilbyde dig de betalingsmetoder, der er tilladte på baggrund af resultaterne af kreditvurderingen. Yderligere oplysninger og Klarnas brugsbetingelser for Tyskland kan findes her og for Østrig her. Du kan finde generelle oplysninger om Klarna her. Dine personlige data vil blive behandlet af Klarna i overensstemmelse med de gældende databeskyttelsesregler og som angivet i Klarnas databeskyttelsespolitik Tyskland/Østrig.

6 Cookies og webanalyse
For at gøre besøget på vores websted attraktivt og for at muliggøre brugen af visse funktioner, for at vise passende produkter eller til markedsundersøgelser bruger vi såkaldte cookies på forskellige sider. Dette tjener til at beskytte vores legitime interesser i en optimeret præsentation af vores tilbud, som vejer tungere end vores interesser i forbindelse med en interesseafvejning i henhold til art. 6, stk. 1, pkt. 1, litra f, i DSGVO. Cookies er små tekstfiler, der automatisk gemmes på din terminal. Nogle af de cookies, som vi bruger, slettes ved slutningen af browsersessionen, dvs. når du lukker din browser (såkaldte session cookies). Andre cookies forbliver på din enhed og gør det muligt for os at genkende din browser ved dit næste besøg (vedvarende cookies). Du kan finde ud af, hvor længe de gemmes i oversigten i cookie-indstillingerne i din webbrowser. Du kan indstille din browser på en sådan måde, at du bliver informeret om indstillingen af cookies og individuelt beslutter, om du vil acceptere dem eller udelukke accept af cookies i visse tilfælde eller generelt. Hver browser er forskellig i den måde, hvorpå den håndterer cookie-indstillinger. Dette er beskrevet i hjælpemenuen i hver browser, som forklarer, hvordan du kan ændre dine cookie-indstillinger. Disse kan findes for de respektive browsere under følgende links:
Internet Explorer™: http://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies
Safari™: https://support.apple.com/kb/ph21411?locale=de_DE
Chrome™: http://support.google.com/chrome/bin/answer.py?hl=de&hlrm=da&answer=95647
Firefox™ https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
Opera™ : http://help.opera.com/Windows/10.20/de/cookies.html

Hvis du ikke accepterer cookies, kan det begrænse funktionaliteten af vores websted.

Brug af Google (Universal) Analytics til webanalyse
Dette websted bruger Google (Universal) Analytics, en webanalysetjeneste fra Google LLC (www.google.de), til webanalyse af webstedet. Dette tjener til at beskytte vores legitime interesser i en optimeret præsentation af vores tilbud, som vejer tungere end vores interesser i forbindelse med en interesseafvejning i henhold til art. 6, stk. 1, pkt. 1, litra f, i DSGVO. Google (Universal) Analytics anvender metoder, der gør det muligt at analysere din brug af hjemmesiden, f.eks. cookies. De automatisk indsamlede oplysninger om din brug af dette websted overføres normalt til en Google-server i USA og gemmes der. Ved at aktivere IP-anonymisering på dette websted forkortes IP-adressen før overførsel inden for EU's medlemsstater eller i andre kontraherende stater til aftalen om Det Europæiske Økonomiske Samarbejdsområde. Kun i undtagelsestilfælde vil den fulde IP-adresse blive overført til en Google-server i USA og forkortet der. Den anonymiserede IP-adresse, som din browser overfører som en del af Google Analytics, vil ikke blive slået sammen med andre Google-data. Når formålet ophører og vi ophører med at bruge Google Analytics, slettes de data, der er indsamlet i denne forbindelse,.

Google LLC har sit hovedkvarter i USA og er certificeret i henhold til EU-US Privacy Shield. Du kan se et aktuelt certifikat her. På grundlag af denne aftale mellem USA og Europa-Kommissionen har sidstnævnte fastsat et passende databeskyttelsesniveau for virksomheder, der er certificeret under Privacy Shield.

Du kan forhindre, at Google indsamler data genereret af cookien og relateret til din brug af hjemmesiden (inkl. din IP-adresse), samt at Google behandler disse data, ved at downloade og installere det browser-plugin, der er tilgængeligt på følgende link: http://tools.google.com/dlpage/gaoptout?hl=de.

Som et alternativ til browserplugin kan du klikke på dette link for at forhindre Google Analytics i at indsamle data på dette websted i fremtiden. Dette vil placere en opt-out-cookie på din terminal. Hvis du sletter dine cookies, skal du klikke på linket igen.

7 Reklame via markedsføringsnetværk
Google AdWords Remarketing
Vi bruger Google AdWords til at reklamere for dette websted i Googles søgeresultater og på tredjepartswebsteder. Til dette formål indstiller Google den såkaldte remarketing-cookie, når du besøger vores websted, som automatisk muliggør interessebaseret annoncering ved hjælp af et pseudonymt CookieID og på grundlag af de sider, du har besøgt. Dette tjener til at beskytte vores legitime interesser i en optimal markedsføring af vores websted, som vejer tungere end vores interesser i forbindelse med en interesseafvejning i henhold til art. 6, stk. 1, s. 1, litra f, i DSGVO. Når formålet er ophørt og vi ikke længere bruger Google AdWords Remarketing, slettes de data, der er indsamlet i denne forbindelse.

Yderligere databehandling finder kun sted, hvis du har givet dit samtykke til, at Google sammenkobler din browserhistorik på nettet og i apps med din Google-konto og bruger oplysninger fra din Google-konto til at tilpasse de annoncer, du ser på nettet. I dette tilfælde vil Google, hvis de er logget ind på Google, mens de besøger vores websted, bruge dine data sammen med Google Analytics-data til at oprette og definere målgruppelister til remarketing på tværs af enheder. Til dette formål vil dine personlige data midlertidigt blive sammenkoblet af Google med Google Analytics-data for at danne målgrupper.

Google AdWords Remarketing er et tilbud fra Google LLC (www.google.de). Google LLC har sit hovedkvarter i USA og er certificeret i henhold til EU-US Privacy Shield. Du kan se et aktuelt certifikat her. På grundlag af denne aftale mellem USA og Europa-Kommissionen har sidstnævnte fastsat et passende databeskyttelsesniveau for virksomheder, der er certificeret under Privacy Shield.

Du kan deaktivere remarketingcookien via dette link. Derudover kan du få mere at vide om indstillingen af cookies og foretage indstillinger for dette hos Digital Advertising Alliance.

AdRoll Retargeting
Ved hjælp af vores annonceringspartner AdRoll Advertising Limited, Level 6, 1, Burlington Plaza, Burlington Road, Dublin 4, Irland, annoncerer vi dette websted i søgeresultater og på tredjepartswebsteder. Når du besøger vores websted, sætter disse udbydere eller deres partnere automatisk en cookie, som muliggør interessebaseret annoncering ved hjælp af et pseudonymt CookieID og på grundlag af de sider, du har besøgt, når du besøger vores websted. Dette tjener til at beskytte vores legitime interesser i den optimale markedsføring af vores websted, som er fremherskende i forbindelse med en interesseafvejning i overensstemmelse med art. 6 stk. 1 p. 1 lit. f DSGVO. Når formålet er ophørt og vi ikke længere bruger AdRoll Retargeting, slettes de data, der er indsamlet i denne sammenhæng.

Du kan deaktivere retargeting-cookien ved at klikke på et af følgende links: https://app.adroll.com/optout/safari

Alternativt kan du deaktivere tredjeparters brug af cookies ved at besøge Network Advertising Initiative's side til deaktivering af cookies.

Facebook Pixel
Facebook Pixel til oprettelse af brugerdefinerede målgrupper med avanceret datamatching (med cookie-tilladelsesværktøj) I vores online-tilbud anvendes den såkaldte "Facebook Pixel" fra det sociale netværk Facebook i avanceret datamatching-tilstand, som drives af Facebook Ireland Limited, 4 Grand Canal Quare, Dublin 2, Irland ("Facebook").

På grundlag af brugerens udtrykkelige samtykke, når en bruger klikker på en reklame, der vises på Facebook og er placeret af os, tilføjes der en tilføjelse til URL'en på vores linkede side via Facebook Pixel. Efter videresendelsen indskrives denne URL-parameter i brugerens browser via en cookie, som vores linkede side selv sætter. Derudover indsamler denne cookie specifikke kundedata, f.eks. e-mailadresse, som vi indsamler på vores websted, der er knyttet til Facebook-annoncen, under transaktioner som f.eks. købstransaktioner, kontologin eller registreringer (udvidet datamatching). Cookien læses derefter af Facebook Pixel og gør det muligt at videresende dataene, herunder de specifikke kundedata, til Facebook.

Ved hjælp af Facebook Pixel med udvidet datamatching er det muligt for Facebook på den ene side at bestemme præcist, hvilke besøgende der besøger vores online-tilbud som målgruppe for visning af reklamer (såkaldte "Facebook Ads"). Derfor bruger vi Facebook-pixelen med avanceret datamatching til kun at vise Facebook-annoncer, som vi har placeret, til de Facebook-brugere, der også har vist interesse for vores online-tilbud eller som har visse karakteristika (f.eks. interesser for bestemte emner eller produkter, der er fastlagt på baggrund af de besøgte websteder), som vi overfører til Facebook (såkaldte "Custom Audiences"). Ved hjælp af Facebook-pixel med avanceret datamatching ønsker vi også at sikre, at vores Facebook-annoncer svarer til brugernes potentielle interesse og ikke har en chikanerende effekt. Dette giver os mulighed for yderligere at evaluere effektiviteten af Facebook-annoncerne til statistiske og markedsundersøgelsesformål ved at spore, om brugerne blev omdirigeret til vores websted efter at have klikket på en Facebook-annonce (såkaldt "konvertering"). Sammenlignet med standardvarianten af Facebook Pixel hjælper den avancerede datamatchingsfunktion os med at måle effektiviteten af vores reklamekampagner bedre ved at registrere flere tildelte konverteringer.

Alle indsendte data gemmes og behandles af Facebook, så de kan knyttes til den relevante brugerprofil og bruges af Facebook til egne reklameformål i overensstemmelse med Facebooks politik for brug af data (https://www.facebook.com/about/privacy/). Dataene kan gøre det muligt for Facebook og dets partnere at vise annoncer på og uden for Facebook. Disse behandlinger udføres kun, hvis der er givet udtrykkeligt samtykke i overensstemmelse med art. 6, stk. 1, litra a, i DSGVO. Samtykke til brugen af Facebook-pixel kan kun gives af brugere, der er over 16 år gamle. Hvis du er yngre, beder vi dig om at bede dine værger om tilladelse. De oplysninger, der genereres af Facebook, overføres normalt til en Facebook-server og gemmes der; dette kan også indebære overførsel til Facebook Inc.'s servere i USA. Du kan til enhver tid tilbagekalde dit samtykke med virkning for fremtiden. For at gøre brug af din tilbagekaldelse skal du fjerne markeringen ud for indstillingen for "Facebook Pixel" i "Cookie Consent Tool", der er integreret på webstedet.

Google Ads (tidligere Adwords)

Vores websted bruger Google AdWords-funktionerne til at reklamere for dette websted i Googles søgeresultater og på tredjepartswebsteder. Udbyderen er Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). Til dette formål indsætter Google en cookie i din enheds browser, som automatisk aktiverer interessebaseret annoncering ved hjælp af et pseudonymt cookie-id og baseret på de sider, du besøger. Behandlingen er baseret på vores legitime interesse i optimal markedsføring af vores websted i overensstemmelse med art. 6, stk. 1, litra f, i DSGVO. Yderligere behandling finder kun sted, hvis du har accepteret med Google, at din browserhistorik på internettet og i apps bliver knyttet af Google til din Google-konto, og at oplysningerne fra din Google-konto bliver brugt til at tilpasse dine annoncer på internettet. Hvis du logger ind på Google, mens du besøger vores websted, bruger Google dine data sammen med Google Analytics-data til at oprette og definere målrettede lister til remarketing på tværs af enheder. Til dette formål forbinder Google midlertidigt dine personlige oplysninger med Google Analytics-data for at oprette en målgruppe. Du kan permanent deaktivere indstillingen af cookie-cookies ved at downloade og installere browser-plugin'et, der findes på følgende link: https://www.google.com/settings/ads/onweb/

Alternativt kan du kontakte Digital Advertising Alliance på internetadressen www.aboutads.info for at få oplysninger om indstilling af cookies og for at foretage indstillinger. Endelig kan du indstille din browser, så du bliver informeret om indstillingen af cookies og individuelt kan beslutte, om du vil acceptere dem eller udelukke accept af cookies i visse tilfælde eller generelt. Hvis du ikke accepterer cookies, kan det begrænse funktionaliteten af vores websted. Google LLC, der er baseret i USA, er certificeret i henhold til US Privacy Shield, som sikrer overholdelse af databeskyttelsesniveauet i EU.

I det omfang det er lovpligtigt, har vi indhentet dit samtykke til behandlingen af dine data som beskrevet ovenfor i overensstemmelse med art. 6, stk. 1, litra a, i DSGVO. Du kan til enhver tid tilbagekalde dit samtykke med virkning for fremtiden. Hvis du vil gøre brug af din tilbagekaldelse, skal du deaktivere denne tjeneste i "Cookie Consent Tool" på webstedet eller alternativt følge den ovenfor beskrevne mulighed for at gøre indsigelse.

Der findes yderligere oplysninger og databeskyttelsesbestemmelser om reklamer og Google på: http://www.google.com/policies/technologies/ads/

Pinterest tag konverteringssporing
Dette websted bruger konverteringssporingsteknologien "Pinterest Tag" fra Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Irland ("Pinterest"). Hvis du er kommet til vores websted fra en pin på Pinterest, sætter vi en cookie på din computer, som interagerer med et "tag", der også er implementeret i form af en JavaScript-kode fra Pinterest. Cookies er små tekstfiler, der gemmes på din enhed. Disse cookies mister deres gyldighed efter 180 dage og bruges ikke til personlig identifikation. Hvis brugeren omdirigeres fra en pin på Pinterest til sider på dette websted, og cookien endnu ikke er udløbet, registrerer tagget visse foruddefinerede af os;

brugerhandlinger og kan spore dem (f.eks. gennemførte transaktioner, kundeemner, søgninger på webstedet, visninger af produktsider). Når en sådan handling udføres, sender din browser en HTTP-forespørgsel til Pinterest-serveren via Pinterest-tagget fra cookien, hvormed visse oplysninger om handlingen (herunder handlingstype, tidspunkt, browser-type på slutenheden) overføres. Gennem denne overførsel kan Pinterest udarbejde statistikker om brugeradfærd på vores websted efter videresendelse af en Pinterest-pin, som gør det muligt for os at optimere vores tilbud. Hvis der behandles personlige brugerdata i processen, sker dette i overensstemmelse med art. 6, stk. 1, litra f DSGVO på grundlag af vores legitime interesse i den statistiske evaluering af produktannoncernes succes på Pinterest og brugernes købsadfærd og tjener dermed til at optimere vores online-tilbud. Vi modtager dog ingen oplysninger, som kan bruges til at identificere brugerne personligt. Hvis du ikke ønsker at deltage i sporingen, kan du gøre indsigelse mod dette ved at deaktivere Pinterest-tag-konverterings-sporing-cookien via din internetbrowser under brugerindstillinger. Du vil så ikke blive medtaget i statistikkerne for sporing af konvertering. Alternativt kan du bruge deaktiveringssiden for forbrugere fra EU http://www.youronlinechoices.com/de/praferenzmanagement/ til at kontrollere, om der er indstillet reklamecookies fra Microsoft i din browser, og deaktivere dem. Du kan få yderligere oplysninger om Pinterest's databeskyttelsesbestemmelser på følgende internetadresse: https://policy.pinterest.com/de/privacy-policy I det omfang det er lovpligtigt, har vi indhentet dit samtykke i henhold til art. 6, stk. 1, litra a DSGVO til behandling af dine data som beskrevet ovenfor. Du kan til enhver tid tilbagekalde dit samtykke med virkning for fremtiden. Hvis du vil gøre brug af din tilbagekaldelse, skal du følge den ovenfor beskrevne mulighed for at gøre indsigelse.

Snapchat Pixel
Dette websted bruger "Snapchat Pixel" fra Snap Inc, 63 Market Street, Venice, CA 90291, USA. Snapchat er certificeret i henhold til EU-U.S. Privacy Shield og giver dermed garanti for overholdelse af den europæiske databeskyttelseslovgivning.

Snap Inc.'s behandling af data sker inden for rammerne af Snapchats politik for brug af data. Yderligere oplysninger og vejledning findes i Snapchats politik for brug af data: https://www.snap.com/de-DE/privacy/privacy-by-product/.
I Snapchats hjælperapport findes der yderligere oplysninger om Snapchat Pixel og dens: https://businesshelp.snapchat.com/en-US/a/snap-pixel-about.

Med henblik på at analysere, optimere og økonomisk drive vores websted bruger vi Snapchat Pixel. Ved hjælp af Snapchat-pixelen kan Snap Inc. bestemme de besøgende på vores websted som målgruppe for visning af reklamer (såkaldte "Snapchat-annoncer"). Derfor bruger vi Snapchat-pixelen til kun at vise de Snapchat-annoncer, som vi har placeret, til de Snapchat-brugere, der også har vist interesse for vores online-tilbud, eller som har visse karakteristika (f.eks. interesser i visse emner eller produkter, der er bestemt på grundlag af de besøgte websteder), som vi overfører til Snapchat (såkaldte "Custom Audiences").
Med Snapchat-pixelen ønsker vi også at sikre, at vores Snapchat-annoncer svarer til brugernes potentielle interesse og ikke har en chikanerende effekt. Snapchat-pixelen giver os også mulighed for at spore effektiviteten af Snapchat-annoncerne til statistiske og markedsundersøgelsesformål ved at se, om brugerne blev omdirigeret til vores websted efter at have klikket på en Snapchat-annonce (såkaldt "konvertering").

Retsgrundlaget for behandlingen af personoplysninger ved hjælp af Snapchat-pixels er art. 6, stk. 1, litra f), i DSGVO, dvs. en legitim interesse fra vores side. Vores legitime interesse ligger især i analysen, optimeringen og den økonomiske drift af vores websted og vores onlinetilbud.

Du kan gøre indsigelse mod Snapchat-pixelens indsamling og brug af dine data til visning af Snapchat-annoncer. Hvis du vil justere, hvilke typer annoncer der vises for dig i Snapchat, kan du få adgang til den funktion, der er tilgængelig i Snapchat-appen. Du kan desuden fravælge brugen af cookies, der anvendes til måling af rækkevidde og reklameformål, via Network Advertising Initiative's fravalgsside (http://optout.networkadvertising.org/) og desuden på det amerikanske websted (http://www.aboutads.info/choices) eller det europæiske websted (http://www.youronlinechoices.com/uk/your-ad-choices/).

8. Databehandling på sociale medier
Vi er repræsenteret på sociale medier med henblik på at præsentere vores virksomhed og vores tjenester der.

Operatørerne af disse netværk behandler regelmæssigt brugernes data til reklameformål. De opretter bl.a. brugerprofiler ud fra deres onlineadfærd, som f.eks. bruges til at vise reklamer på netværkenes sider og andre steder på internettet, der svarer til brugernes interesser. Til dette formål gemmer netværksoperatørerne oplysninger om brugeradfærd i cookies på brugernes computere. Desuden kan det ikke udelukkes, at operatørerne sammenblander disse oplysninger med andre data.

Brugere kan få yderligere oplysninger og instruktioner om, hvordan de kan gøre indsigelse mod webstedets operatører i de respektive operatørers databeskyttelseserklæringer, der er anført nedenfor. Det kan også være, at operatørerne eller deres servere er placeret i lande uden for EU, så de behandler data der. Dette kan medføre risici for brugerne, f.eks. fordi det er vanskeligere at håndhæve deres rettigheder, eller fordi offentlige myndigheder har adgang til dataene. Hvis brugere af netværkene kontakter os via vores virksomhedsprofiler, behandler vi de oplysninger, som vi har modtaget, for at kunne besvare henvendelserne. Dette er vores legitime interesse, og retsgrundlaget er derfor art. 6, stk. 1, pkt. 1, litra f, i DSGVO.

Facebook
Vi har en virksomhedsprofil på Facebook. Operatøren er Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland. Fortrolighedspolitikken findes her: https://www.facebook.com/policy.php. En måde at gøre indsigelse mod databehandling på er via indstillinger for reklamer: https://www.facebook.com/settings?tab=ads. Vi er i fællesskab ansvarlige for behandlingen af data fra besøgende på vores profil på grundlag af en aftale med Facebook i henhold til artikel 26 i DSGVO. Facebook forklarer præcis, hvilke data der behandles på https://www.facebook.com/legal/terms/information_about_page_insights_data. De registrerede kan udøve deres rettigheder både over for os og over for Facebook. I henhold til vores aftale med Facebook er vi dog forpligtet til at videresende anmodninger til Facebook. De registrerede personer vil derfor få et hurtigere svar, hvis de kontakter Facebook direkte.

Instagram
Vi har en virksomhedsprofil på Instagram. Operatøren er Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland. Fortrolighedspolitikken findes her: https://help.instagram.com/519522125107875.

Tiktok
Vi opretholder en virksomhedsprofil på Tiktok. Operatøren er musical.ly Inc, 10351 Santa Monica Blvd #310, Los Angeles, CA 90025 USA. Fortrolighedspolitikken findes her: https://www.tiktok.com/de/privacy-policy.

Pinterest
Vi har en virksomhedsprofil på Pinterest. Operatøren er Pinterest Inc, 635 High Street, Palo Alto, CA, 94301, USA. Fortrolighedspolitikken findes her: https://about.pinterest.com/de/privacy-policy. En måde at gøre indsigelse mod databehandling er via indstillingerne for reklamer: https://about.pinterest.com/de/privacy-policy.

YouTube
Vi opretholder en virksomhedsprofil på YouTube. Operatøren er Google Ireland Limited Gordon House, Barrow Street Dublin 4. Irland. Fortrolighedspolitikken findes her: https://policies.google.com/privacy?hl=de.

9. kontaktmuligheder og dine rettigheder
Som registreret har du følgende rettigheder:

i henhold til artikel 15 i DSGVO retten til at anmode om oplysninger om dine personoplysninger, som vi behandler, i det omfang, der er angivet heri;
i henhold til artikel 16 i DSGVO retten til at anmode om rettelse af urigtige eller ufuldstændige personoplysninger, som vi har lagret hos os, uden forsinkelse;
i henhold til artikel. 17 DSGVO retten til at kræve, at dine personoplysninger, som vi har lagret hos os, slettes, medmindre den videre behandling
- er nødvendig for at udøve retten til ytrings- og informationsfrihed;
- for at overholde en retlig forpligtelse;
- af hensyn til offentlige interesser eller
- for at gøre gældende, udøve eller forsvare retskrav
;
i overensstemmelse med art. 18 DSGVO retten til at kræve begrænsning af behandlingen af dine personoplysninger, for så vidt
- du bestrider oplysningernes rigtighed;
- behandlingen er ulovlig, men du gør indsigelse mod, at den slettes;
- vi ikke længere har brug for oplysningerne, men du har brug for dem til at gøre gældende, udøve eller forsvare retskrav eller
- du gør indsigelse mod behandlingen af dine personoplysninger i henhold til artikel 18 i DSGVO, eller
- du gør indsigelse mod behandlingen af dine personoplysninger i henhold til art. 21 DSGVO;
i overensstemmelse med art. 20 DSGVO retten til at modtage dine personoplysninger, som du har givet os i et struktureret, fælles og maskinlæsbart format eller til at anmode om overførsel til en anden dataansvarlig;
i overensstemmelse med art. 77 DSGVO retten til at klage til en tilsynsmyndighed. Som regel kan du kontakte tilsynsmyndigheden på din sædvanlige bopæl eller arbejdsplads eller vores hovedsæde til dette formål.

Hvis du har spørgsmål vedrørende indsamling, behandling eller brug af dine personlige data, information, rettelse, blokering eller sletning af data samt tilbagekaldelse af givet samtykke eller indsigelse mod en bestemt brug af data, bedes du kontakte os direkte ved hjælp af kontaktoplysningerne i vores impressum.

********************************************************************
Ret til at gøre indsigelse
I det omfang vi behandler personoplysninger som forklaret ovenfor for at varetage vores legitime interesser, der har forrang i forbindelse med en interesseafvejning, kan du gøre indsigelse mod denne behandling med virkning for fremtiden. Hvis behandlingen foretages med henblik på direkte markedsføring, kan du til enhver tid udøve denne ret som beskrevet ovenfor. Hvis behandlingen foretages til andre formål, har du kun ret til at gøre indsigelse af grunde, der vedrører din særlige situation.

Når du har udøvet din ret til at gøre indsigelse, vil vi ikke længere behandle dine personoplysninger til disse formål, medmindre vi kan påvise tvingende legitime grunde til behandlingen, som går forud for dine interesser, rettigheder og frihedsrettigheder, eller hvis behandlingen sker med henblik på fastlæggelse, udøvelse eller forsvar af retskrav.

Dette gælder ikke, hvis behandlingen sker med henblik på direkte markedsføring. Så vil vi ikke behandle dine personoplysninger yderligere til dette formål. ********************************************************************

Privacy policy

Information on the handling of personal data

We are very pleased about your interest in our website - and thus in our company. The protection of your private rights and freedoms is very important to us; we only use your data for the purposes intended. Since it is important to us that you are aware at all times of the extent to which we collect, use and, if necessary, transfer your data to third parties, we will provide you with the following comprehensive information on the processing of your personal data collected by us or stored by us.

In principle, you can use our pages without providing any data

Name and address of the responsible entity

Salelab GmbH
Patrick Block
Haydnstraße 28
88284 Wolpertswende
Germany

E-mail: support@salelab.de
Website: https://pamo-design.de

Name and address of the person responsible for data protection

Actuality of the privacy policy

To ensure that we always have up-to-date data protection information in connection with the services of our website, we use the CLOUD Privacy Policy service of Cookiebox GmbH from Münster.

Right

The EU General Data Protection Regulation (GDPR) provides for extensive rights for data subjects in Chapter III, which we explain to you accordingly below with regard to the processing of your personal data:

Right to information

This requirement concerns in particular information on the following details of data processing:

Processing purposes
Data categories
If applicable, recipients or categories of recipients
If applicable, the planned storage duration or the criteria for determining this duration.
Note on the respective right of correction, deletion, restriction or objection
Existence of the right to complain to a supervisory authority
If applicable, origin of the data (if not collected from you)
If applicable, existence of automated decision-making including profiling, including meaningful information about the logic involved, the scope and the effects to be expected
If applicable, (planned) transfer to a third country or international organization

Right to rectification

We will correct any erroneous data immediately, provided that you inform us of the circumstance accordingly.

Right to erasure (right to be forgotten)

Provided that the processing is no longer necessary and one of the following conditions is met:

Discontinuation of the purpose of processing
Withdrawal of their consent and absence of any other legal basis for processing
Objection to processing without an important reason to the contrary
Unlawful processing
Required to fulfill a legal obligation
Data collection was carried out in accordance with Art. 8 (1) GDPR

Right to restriction of processing

Provided that one of the following conditions is met:

You dispute the accuracy of your data (restriction can be made for the duration of the review on our side)
In the event of unlawful processing and if the data is not to be deleted, restriction of processing shall take the place of deletion
If the processing purposes cease to apply, at the same time you need your data for the assertion, exercise or defense of legal claims
After you have lodged an objection pursuant to Art. 21 (1) GDPR and for the duration of the examination as to whether our legitimate reasons outweigh yours.

Right to data portability

If it is technically possible and does not affect the rights and freedoms of other persons, we will - at your request - transfer your data to another recipient (responsible party).

Right to object

If we collect or have collected and process personal data from you (on the basis of Art. 6 (1) e or f or Art. 9 (2) a GDPR), you have the right to object to the data processing (including profiling) at any time (with effect for the future). In exceptional cases, the objection may be ineffective, e.g. if we can demonstrate compelling interests worthy of protection for the processing that outweigh your interests or processing serves the assertion, exercise or defense of legal claims. If we process your personal data for the purpose of direct marketing, you have the right to object to such processing at any time. This also applies to profiling, insofar as it is related to such direct advertising. You also have the right to object to processing of your data concerning you which is carried out by us for scientific or historical research purposes or for statistical purposes pursuant to Article 89 (1) GDPR, unless such processing is necessary for the performance of a task carried out in the public interest.

Automated decisions in individual cases including profiling

If we collect or have collected and process personal data from you, you have the right not to be subject to any decision based solely on automated processing - including profiling - which produces legal effects concerning you or similarly significantly affects you. Exceptions to this requirement apply if the decision is necessary for the conclusion or performance of a contract between you and us or you have expressly consented to the processing. In any case, we will take reasonable steps to safeguard your rights and freedoms and legitimate interests, including at least the right to obtain the intervention of a person on our part, to express our own point of view and to contest the decision.

Right to complain to a supervisory authority

A list of the supervisory authorities responsible in Germany can be found on the website of the Federal Commissioner for Data Protection or at the following link: https://www.bfdi.bund.de/EN/Service/Anschriften/Laender/Laender-node.html.

General information on data processing on the website

The following information applies to the data processing on our website in general. If there are exceptions or additions to this information, these are described in detail in the relevant sections.

Data security information

We secure our website and other systems through technical and organizational measures against loss, destruction, access, modification or distribution of your data by unauthorized persons. In addition, we have implemented SSL encryption (SHA256) on our website to protect your data. However, despite regular checks, complete protection against all dangers is not possible.

Legal basis of processing

We process personal data in accordance with the requirements of the GDPR, depending on the type and purpose of the processing as follows:

Permitted use	Specification of the GDPR
Informed consent	Art. 6 para. 1 a
Performance of a contract	Art. 6 para. 1 b
Implementation of pre-contractual measures	Art. 6 para. 1 b
Fulfillment of legal obligations	Art. 6 para. 1 c
Protection of vital interests	Art. 6 para. 1 d
Safeguarding our legitimate interest	Art. 6 para. 1 f

Our legitimate interest

Our legitimate interest, as defined in Article 6 (1) f DS-GVO, is based on the performance of our business activities in order to maintain our operational capability and secure the employment of our employees.

General deadlines for data deletion

After the purpose of storage has ceased, the retention periods are generally at least six or ten years. As a rule, data is deleted immediately in accordance with our deletion concept, provided that this does not conflict with any retention obligation, necessity for contract fulfillment or a legitimate interest.

Deletion or blocking of personal data

We store your personal data only for the period required to fulfill the specified purpose. After the purpose no longer applies and after expiration of any existing retention periods, your data will be deleted immediately. If deletion is not possible, the data will be blocked instead.

Collection of general data and information

As soon as you visit our website, our web server collects some general data and technical information - as shown in the table below:

browser types and versions used	correct display of the page content
Operating system used, origin of the visitor (referrer, e.g. Google), subpages clicked on	Optimization of our website content as well as our advertising
Date and time of access to the website as well as IP address and internet service provider of the visitor	Ensuring the permanent functionality of our IT systems (for the operation of the website) and prevention of misuse
Other data and information for security in the event of attacks	Providing relevant information to law enforcement agencies in the event of a cyberattack

Obligation to provide personal data

Under certain circumstances (e.g. due to legal or contractual regulations), an obligation arises for you to provide us with your personal data. Examples of such processing as follows:

Nature or purpose of the processing	Need
Conclusion of a sales contract (e.g. your address)	Fulfillment of the contractual obligation (e.g. delivery of the goods to your address)
In the employee context (e.g. transmission of data to the tax office)	Compliance with legal requirements (e.g. tax regulations)

Data security information

Information about specific data processing on the website

If applicable, in deviation from or in addition to the above-mentioned general information, you will find details of the individual data processing on our website below.

Blog

Purpose of processing	Possibility of (pseudonymized) expression of opinion on published blog posts
Legal basis (according to Art. 6 / 9 GDPR)	Safeguarding legitimate interests (Art. 6 para. 1 f)
Recipient (if applicable)	none
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	A data transfer to a third country does not take place and is not planned.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	There is no obligation to provide personal data. The comment function can be used by entering a pseudonym.
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject.
Where applicable, categories of personal data (if not collected directly from the data subject).	none
Change of purpose if necessary	none

Contact form

Purpose of processing	Processing and, if necessary, answering the request of the form sender
Legal basis (according to Art. 6 / 9 GDPR)	Protection of legitimate interests (Art. 6 para. 1 f) Implementation of pre-contractual measures (Art. 6 para. 1 b)
Recipient (if applicable)	The data will not be passed on to third parties and/or to a third country.
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	Data transfer to a third country does not take place and is not planned.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	There is no obligation.
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data originates from the person concerned.
Where applicable, categories of personal data (if not collected directly from the data subject).	Data and categories requested in the respective form.
Change of purpose if necessary	none

User login

Purpose of processing

Data type	Purpose of the survey
Username, Password	Access for the user

Legal basis (according to Art. 6 / 9 GDPR)

Safeguarding legitimate interests (Art. 6 para. 1 f)

Fulfillment of a contract (Art. 6 para. 1 b)

Implementation of pre-contractual measures (Art. 6 para. 1 b)

Recipient (if applicable)

none

If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)

A data transfer to a third country does not take place and is not planned.

If known: Duration of data storage

See General deadlines for data deletion

Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity

Without the data, the user account cannot be created.

Consequences of non-compliance (in case of failure to provide the required data)

Without the data, the user account cannot be created.

If applicable, existence of an automated decision-making process

In this context, we do not use automatic decision-making.

If applicable, origin of the data (if not collected directly from the data subject)

The data comes from the data subject himself.

Change of purpose if necessary

none

Customer account and product order

Purpose of the processing of general data

Data type	Purpose of the survey
Salutation, title, first name, last name, street, no., postal code, city, country, date of birth (voluntary)	Unique identification of the customer account, processing of the product purchase, delivery, payment transactions, processing of complaints
E-mail address, password	Authentication, independent password reset
Phone number (voluntary)	Contact by phone

Legal basis

Fulfillment of a contract (Art. 6 para. 1 lit. b GDPR)

Recipient (if applicable)

Parcel service provider, logistics service provider, payment service provider

If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)

A data transfer to a third country does not take place and is not planned.

If known: Duration of data storage

See General deadlines for data deletion

Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity

The data (in the mandatory fields) must be provided as part of the underlying contract.

Consequences of non-compliance (in case of failure to provide the required data)

The creation of a customer account is not possible in this case.

If applicable, existence of an automated decision-making process

In this context, we do not use automatic decision-making.

If applicable, origin of the data (if not collected directly from the data subject)

The data comes from the data subject himself.

Where applicable, categories of personal data (if not collected directly from the data subject).

The data comes from the data subject himself.

Change of purpose if necessary

none

Cookies

We use cookies on this website; these are small text files that are stored on your computer via your internet browser (e.g. Google Chrome, Safari, Firefox, Edge). These cookies are used for various purposes: Many cookies are technically necessary to provide you with certain website functions (e.g. shopping cart functions, saving your login information), other cookies are used for the security of your data or the website and some cookies can be used to analyze your user behavior. The latter cookies may contain a so-called cookie ID - a unique identifier consisting of a character string that enables websites and servers to be assigned to the storing browser.
Cookies that are necessary to carry out the transmission of a message via a public telecommunications network and cookies that are absolutely necessary to provide you with an expressly requested function are referred to as "technically necessary cookies" and may be set without your explicit consent (Section 25 (2) TDDDG). All other cookies are subject to consent (Section 25 (1) TDDDG); where applicable, this is regulated by our consent management platform.
We use cookies in part only for the duration of your visit to the website, in part for a predefined period and in part permanently. You can delete all these cookies manually or automatically at any time via your web browser.
It is possible to use our website (although possibly not to its full extent) without cookies. Most browsers are set to accept cookies automatically. However, you can deactivate the storage of cookies or set your browser so that it notifies you as soon as cookies are sent.

Cookiebot

Purpose of processing	Compliance with legal obligations, storage of consent
Legal basis (according to Art. 6 / 9 GDPR)	Fulfillment of legal obligations (Article 6 paragraph 1 c)
Recipient (if applicable)	Usercentrics A/S, Havnegade 39, 1058 Kopenhagen, Denmark
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	Data transfer to a third country does not take place and is not planned.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	no
Consequences of non-compliance (in case of failure to provide the required data)	no
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Opt-in and opt-out data, referrer URL, user agent, user settings, consent ID, time of consent, consent type
Change of purpose if necessary	no
Data protection officer of the provider	privacy@cookiebot.com
Privacy policy of the provider	https://www.cookiebot.com/de/privacy-policy/

Amazon Pay

Purpose of processing	pay
Legal basis (according to Art. 6 / 9 GDPR)	Performance of a contract (Article 6 paragraph 1 b)
Recipient (if applicable)	Amazon Payments Europe S.C.A. 38 avenue J.F. Kennedy, L-1855 Luxemburg
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	United States of America, Amazon.com, Inc. The data transfer is based on the EU-US Data Privacy Framework, with which Amazon.com, Inc. is certified.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	Without the data, the product order or payment cannot be processed.
Consequences of non-compliance (in case of failure to provide the required data)	Without the data, the product order or payment cannot be processed.
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Address, browser information, date of birth, device information, email address, first name, last name, geographic location, IP address, phone number, time zone, usage data, bank details, clickstream data, purchase details
Change of purpose if necessary	no

Apple Pay

Purpose of processing	Payment
Legal basis (according to Art. 6 / 9 GDPR)	Fulfillment of a contract (Art. 6 para. 1 b)
Recipient (if applicable)	Apple Payments Inc.One Apple Park Way Cupertino, CA 95014, United States
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	United States of America
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	Without the data, the product order or payment cannot be carried out.
Consequences of non-compliance (in case of failure to provide the required data)	Without the data, the product order or payment cannot be carried out.
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Payment card information, first name, last name, address
Change of purpose if necessary	none

Facebook Connect

Purpose of processing	Facebook Connect simplifies the registration process for new web services for Facebook users. Instead of creating a new user account as before, Facebook users log in to the new service with their Facebook profile.
Legal basis	Consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG). If personal data is collected on our website with this tool and forwarded to Facebook, we are jointly responsible with Meta Platforms Ireland Ltd. for this data processing (Art. 26 GDPR). We expressly point out that this joint responsibility is limited exclusively to the collection of data and the transfer to Facebook. The further processing of personal data by Facebook is the responsibility of Facebook. You can find the wording of the agreement on joint processing here: https://www.facebook.com/legal/controller_addendum.
Recipient (if applicable)	Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	If applicable, transfer, storage and processing of personal data in the USA. The data transfer is based on the standard contractual clauses of the EU Commission. Meta Platforms is certified in accordance with the EU-US Data Privacy Framework (DPF).
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Profile information, browser information, user agent, usage data, profile picture, age, IP address, gender, geographic location, referrer URL, HTTP header, email address
Change of purpose if necessary	none

Facebook Connect

Purpose of processing	Facebook Connect simplifies the registration process for new web services for Facebook users. Instead of creating a new user account as before, Facebook users log in to the new service with their Facebook profile.
Legal basis	Consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG). If personal data is collected on our website with this tool and forwarded to Facebook, we are jointly responsible with Meta Platforms Ireland Ltd. for this data processing (Art. 26 GDPR). We expressly point out that this joint responsibility is limited exclusively to the collection of data and the transfer to Facebook. The further processing of personal data by Facebook is the responsibility of Facebook. You can find the wording of the agreement on joint processing here: https://www.facebook.com/legal/controller_addendum.
Recipient (if applicable)	Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	If applicable, transfer, storage and processing of personal data in the USA. The data transfer is based on the standard contractual clauses of the EU Commission. Meta Platforms is certified in accordance with the EU-US Data Privacy Framework (DPF).
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Profile information, browser information, user agent, usage data, profile picture, age, IP address, gender, geographic location, referrer URL, HTTP header, email address.
Change of purpose if necessary	none

Font Awesome

Purpose of processing	Uniform representation of fonts
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Article 6 paragraph 1 a)
Recipient (if applicable)	Fonticons, Inc.6 Porter Road, Apartment 3R, Cambridge, MA 02140, United States of Americahttps://fontawesome.com/privacy
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	United States of America
If known: Duration of data storage	Unknown duration See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	no
Consequences of non-compliance (in case of failure to provide the required data)	no
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	IP address, access time, access date
Change of purpose if necessary	no

Sweepstakes, contests and raffles

Purpose of processing	The implementation of sweepstakes
Legal basis (according to Art. 6 / 9 GDPR)	Fulfillment of a contract (Art. 6 para. 1 b)
Recipient (if applicable)	If applicable, sweepstake partner, cf. general information on transmission
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	A data transfer to a third country does not take place and is not planned.
If known: Duration of data storage	We store your personal data only as long as it is necessary for the fulfillment of mutual obligations in connection with the competition, contest or prize draw. In addition, we store your personal data only for the assertion of or defense against legal claims or until the respective statutory retention obligations have expired.
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	Unless otherwise specified, the data (in the mandatory fields) must be provided as part of the underlying contract.
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Data required for participation in the competition (e.g. name, title, postal address, e-mail address, landline or cell phone number, age, date of birth, gender, user-generated content or other personal data).
Change of purpose if necessary	none

Google Ads

Purpose of processing	Placement of advertisements for relevant search queries in the results of the Google search engine and in the network of Google Ads participants.Evaluation of success rates of placed advertisements (conversion tracking)
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Article 6 paragraph 1 a)
Recipient (if applicable)	Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Irland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	if applicable, transfer, storage and processing in the USA; Google LLC The data transfer is based on the EU-US Data Privacy Framework, through which Google LCC is certified.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	no
Consequences of non-compliance (in case of failure to provide the required data)	no
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Which pages and functions are accessed or clicked during the website visit (click behavior), IP address assigned by the Internet service provider (ISP) in anonymized form, previously visited website (referrer), subpages visited, time spent on the website, frequency of visits, date, access location, Time of visit, user agent
Change of purpose, if applicable	no
Opt-Out	Prevent cookies from being set, object to interest-based advertising by Google at https://adssettings.google.de/ , See also under Cookies
Data protection officer of the provider	https://support.google.com/policies/contact/general_privacy_form
Privacy policy of the provider	https://business.safety.google/privacy/

Google Ads Conversion Tracking

Purpose of processing	This service records what happens after a click on an ad placed by us via Google Ads when users subsequently visit the website. Conversions measure whether users perform a specific, predefined action on the website after clicking on an ad placed via Google Ads (e.g. whether services are ordered). This makes it possible to track which keywords, ads, ad groups, or campaigns lead to the desired user interaction.
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Art. 6 para. 1 a)
Recipient (if applicable)	Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	If applicable, transfer, storage and processing in the USA, Google LLC The data transfer is based on the EU-U.S. Data Privacy Framework via which Google LCC is certified.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Browser language, browser type, ads clicked, cookie ID, date and time of visit, IP address, referrer URL, web request, user behavior, user agent
Change of purpose, if applicable	none
Opt-Out	Prevent cookies from being set, object to interest-based advertising by Google at https://adssettings.google.de/, See also under Cookies.
Data protection officer of the provider	https://support.google.com/policies/contact/general_privacy_form
Privacy policy of the provider	https://business.safety.google/privacy/

Google Analytics

Purpose of processing	Creation of usage profiles to optimize the cost-benefit factor on the website
Legal basis	Consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG) Informed consent (Art. 6 para. 1 a)
Recipient (if applicable)	Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	If applicable, transmission, storage and processing in the USA, Google LLCThe data transfer is based on the EU-U.S. Data Privacy Framework through which Google LCC is certified
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	As a rule, the data originates from the data subject themselves.
If applicable, categories of pb data (if not collected directly from the data subject)	which pages and functions are accessed or clicked on during the website visit (click behavior), IP address assigned by the Internet service provider (ISP) in anonymized form, previously visited website (referrer), subpages visited, time spent on the website, frequency of visit, date, access location, time of visit, user agent
Change of purpose if necessary	none
Opt-Out	Installation of the browser plugin: https://tools.google.com/dlpage/gaoptout, see also under Cookies
Data protection officer of the provider	https://support.google.com/policies/contact/general_privacy_form
Privacy policy of the provider	https://policies.google.com/privacy?hl=en

Google Enhanced Conversions

Purpose of processing	Conversion tracking, conversion optimization, measurement partners - ensure security
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Art. 6 para. 1 a)
Recipient (if applicable)	Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	If applicable, transfer, storage and processing in United States, Taiwan, Chile, Singapore; Google LCC The data transfer is based on the EU-U.S. Data Privacy Framework via which Google LCC is certified.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	E-mail address, first name, last name, address, telephone number, subscription service registration data, purchase information.
Change of purpose if necessary	none
Privacy policy of the provider	https://business.safety.google/privacy/

Google Fonts

Purpose of processing	Uniform representation of the fonts
Legal basis	Consent (Art. 6 para. 1 lit. a GDPR) Informed consent (Art. 6 para. 1 a)
Recipient (if applicable)	Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	If applicable, transmission, storage and processing in the USA, Google LLCThe data transfer is based on the EU-U.S. Data Privacy Framework through which Google LCC is certified
If known: Duration of data storage	Unknown duration See General time limits for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	IP address, access time, access date
Change of purpose if necessary	none
Opt-Out	Use a browser that does not support Google Fonts
Privacy info of the addin	https://www.google.com/policies/privacy/

Google Pay

Purpose of processing	pay
Legal basis (according to Art. 6 / 9 GDPR)	Performance of a contract (Article 6 paragraph 1 b)
Recipient (if applicable)	Google Ireland LimitedGordon House, Barrow StreetDublin 4Irland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	United States of America
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	Without the data, the product order or payment cannot be processed.
Consequences of non-compliance (in case of failure to provide the required data)	Without the data, the product order or payment cannot be processed.
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Browser information, credit and debit card number, first name, geographical location, Internet service provider, IP address, last name, payment information, purchase activity, transaction information, bank details, master and contract data, password, TAN and checksum, device type, type of network connection, account information, email address
Change of purpose if necessary	no
Privacy policy of the provider	https://business.safety.google/privacy/

Google Signals

Processing description	Google Signals is session data from websites and apps that Google associates with users who are logged into their Google Account and have enabled personalized advertising. Through Google Signals, you are identified through your Google profile and the data collected is linked to your profile. This allows us to track you across different sessions and devices and to combine the collected data into a user profile. As a site operator, we only receive anonymized reports from Google.
Purpose of processing	Analysis, optimization, remarketing
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Art. 6 para. 1 a)
Recipient (if applicable)	Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	If applicable, transfer, storage and processing in United States, Singapore, Taiwan, Chile; Google LCC The data transfer is based on the EU-U.S. Data Privacy Framework via which Google LCC is certified.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Search Terms, Usage Data, Device Information, Browser Information, Content Viewed, Geographic Location, IP Address, Demographic Data.
Change of purpose if necessary	none
Privacy policy of the provider	https://business.safety.google/privacy/

Google Tag Manager

Purpose of processing	Simplified management of analysis tools through central control and management of the collected analysis mechanisms
Legal basis	Consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG) Informed consent (Article 6 paragraph 1 a)
Recipient (if applicable)	Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Irland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	If applicable, transfer, storage and processing of personal data in the USA. The data transfer is based on the standard contractual clauses of the EU Commission. Google LLC is certified in accordance with the EU-US Data Privacy Framework (DPF).
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	no
Consequences of non-compliance (in case of failure to provide the required data)	no
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	As a rule, the data comes from the person concerned.
Where applicable, categories of personal data (if not collected directly from the data subject).	which pages and functions are accessed or clicked during the website visit (click behavior), IP address assigned by the Internet service provider (ISP) in anonymized form, previously visited website (referrer), subpages visited, time spent on the website, frequency of visits, date, access location, time of visit
Opt-Out	no
Data protection officer of the provider	https://support.google.com/policies/contact/general_privacy_form
Privacy policy of the provider	https://business.safety.google/privacy/

Hotjar

Purpose of processing	Creation of usage profiles to optimize the website in terms of the cost-benefit factor
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Article 6 paragraph 1 a)
Recipient (if applicable)	Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	Data transfer to a third country does not take place and is not planned.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	no
Consequences of non-compliance (in case of failure to provide the required data)	no
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	As a rule, the data comes from the person concerned.
Where applicable, categories of personal data (if not collected directly from the data subject).	Date and time of visit, device type, geographical location, IP address, mouse movements, pages visited, referrer URL, screen resolution, own device identifier, language information, device operating system, browser type, clicks, domain name, own user ID, user agent
Change of purpose, if applicable	no
Opt-Out	See Cookies and https://www.hotjar.com/legal/compliance/opt-out
Data protection officer of the provider	dpo@hotjar.com
Privacy policy of the provider	https://www.hotjar.com/legal/policies/privacy

Instagram

Purpose of processing	Displaying Instagram content, retargeting or marketing
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Article 6 paragraph 1 a)
Recipient (if applicable)	Meta Platforms Ireland Limited, Meta Platforms Inc., 4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	Meta Platforms Ireland Limited, Meta Platforms Inc., Weltweit Die Datenübertragung stützt sich auf das EU-U.S. Data Privacy Framework über das Meta Platforms, Inc. zertifiziert ist.
If known: Duration of data storage	Siehe Allgemeine Fristen für die Datenlöschung
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	no
Consequences of non-compliance (in case of failure to provide the required data)	no
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Device information, interactions with the embed, IP address, referrer URL, user agent
Change of purpose, if applicable	no
Data protection officer of the provider	https://www.facebook.com/help/contact/540977946302970
Privacy policy of the provider	https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect

Judge.me

Purpose of processing	Display and submit product reviews
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Article 6 paragraph 1 a)
Recipient (if applicable)	Judge.me Ltd., c/o Buckworths, 1-3 Worship Street, London EC2A 2AB, United Kingdom; We have concluded a data processing agreement with the provider
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	United Kingdom (adequacy decision)
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	no
Consequences of non-compliance (in case of failure to provide the required data)	no
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Display ratings: IP address, user agent, time of access Submitting ratings: Submitted rating and comment, display name, email address (for subsequent editing/deletion of the rating by the user), IP address, time of rating, user agent
Change of purpose if necessary	no

Klarna

Purpose of processing	pay
Legal basis (according to Art. 6 / 9 GDPR)	Performance of a contract (Article 6 paragraph 1 b)
Recipient (if applicable)	Klarna Bank AB (publ)Sveavägen 46, 111 34 Stockholm, Swedenhttps://www.klarna.com/de/datenschutz-und-sicherheit/?
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	Data transfer to a third country does not take place and is not planned.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	Without the data, the product order or payment cannot be processed.
Consequences of non-compliance (in case of failure to provide the required data)	Without the data, the product order or payment cannot be processed.
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data comes from the person concerned.
Where applicable, categories of personal data (if not collected directly from the data subject).	Address, browser language, device operating system, email address, first name, last name, IP address, billing information
Change of purpose if necessary	no

Klaviyo

Meta Pixel (formerly Facebook Pixel)

Purpose of processing	Our website uses the visitor action pixel from Meta (formerly Facebook) to measure conversions. The behavior of website visitors can be tracked after they have been redirected to the provider's website by clicking on a Facebook ad. In this way, the effectiveness of Facebook ads can be evaluated for statistical and market research purposes and optimized for future advertising measures.
Legal basis (according to Art. 6 / 9 GDPR)	Consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG). If personal data is collected on our website with this tool and forwarded to Facebook, we are jointly responsible with Meta Platforms Ireland Ltd. for this data processing (Art. 26 GDPR). We expressly point out that this joint responsibility is limited exclusively to the collection of data and the transfer to Facebook. The further processing of personal data by Facebook is the responsibility of Facebook. You can find the wording of the agreement on joint processing here: https://www.facebook.com/legal/controller_addendum.
Recipient (if applicable)	Meta Ireland Ltd, 4 Grand Canal Square Grand Canal Harbour Dublin 2 Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	If applicable, transfer, storage and processing of personal data in the USA. The data transfer is based on the standard contractual clauses of the EU Commission. Meta Platforms is certified in accordance with the EU-US Data Privacy Framework (DPF).
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Ads viewed, Browser information, Content viewed, Device information, Geographic location, Interactions with ads, services, and products, IP address, Marketing information, Pixel ID, Referrer URL, Usage data, User behavior, Facebook user ID, Device operating system, Device ID, HTTP header, Items clicked, Pages viewed, Facebook cookie information, Page/click behavior, User agent, Browser type.
Change of purpose if necessary	none
Data protection officer of the provider	https://www.facebook.com/help/contact/540977946302970
Privacy policy of the provider	https://www.facebook.com/privacy/explanation

Microsoft Ads (formerly Bing Ads)

Purpose of processing	Placement of advertisements in search engines and networks
Legal basis	Consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG)
Recipient (if applicable)	Microsoft Ireland Operations Limited, Attn: Data Protection Officer, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland. Phone: 353 (0) 1 295 3826
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	If applicable, transfer, storage and processing of personal data in the USA. The data transfer is based on the standard contractual clauses of the EU Commission. Microsoft Corporation is certified in accordance with the EU-US Data Privacy Framework (DPF).
If known: Duration of data storage	A conversion cookie is placed on the visitor's PC and remains valid for 30 days.See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	As a rule, the data originates from the data subject himself.
Where applicable, categories of personal data (if not collected directly from the data subject).	which pages and functions are called up or clicked on during the website visit (click behavior) Date and Time of the visit generated sales
Opt-Out	Prevent the cookies from being set See also under cookies
Privacy info of the addin	https://privacy.microsoft.com/de-de/privacystatement

Microsoft Advertising

Purpose of processing	Advertising, Conversion Tracking
Legal basis (according to Art. 6 / 9 GDPR)	Consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG) Informed consent (Article 6 paragraph 1 a)
Recipient (if applicable)	Microsoft Corporation, Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	United States of America
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	no
Consequences of non-compliance (in case of failure to provide the required data)	no
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Browser language, Ads clicked, Digital signature, GUID generated by the UET tag, IP address, Microsoft click ID, Microsoft cookie, Page title, Referrer URL, Browser and device data, UET ID tag
Change of purpose if necessary	no
Opt-Out	https://account.microsoft.com/privacy/ad-settings/signedout?ru=https:%2F%2Faccount.microsoft.com%2Fprivacy%2Fad-settings.
Data protection officer of the provider	https://aka.ms/privacyresponse
	https://privacy.microsoft.com/en-gb/privacystatement

Mollie

Purpose of processing	Implementation and processing of payment
Legal basis (according to Art. 6 / 9 GDPR)	Fulfillment of a contract (Art. 6 para. 1 b)
Recipient (if applicable)	Mollie B.V., Keizergracht 313, 1016 EE Amsterdam, Netherlands
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	A data transfer to a third country does not take place and is not planned.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	Without the data, the product order or payment cannot be carried out.
Consequences of non-compliance (in case of failure to provide the required data)	Without the data, the product order or payment cannot be carried out.
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	First name, last name, address, transaction information, IP address, browser information, device information, contact information, geographic location, Internet service provider.
Change of purpose if necessary	none
Privacy policy of the add-in	https://www.mollie.com/en/privacy
Data protection officer of the add-in	dpo@mollie.com

PayPal

Purpose of processing	pay
Legal basis (according to Art. 6 / 9 GDPR)	Performance of a contract (Article 6 paragraph 1 b)
Recipient (if applicable)	PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	United States of America
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	Without the data, the product order or payment cannot be processed.
Consequences of non-compliance (in case of failure to provide the required data)	Without the data, the product order or payment cannot be processed.
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data comes from the person concerned.
Where applicable, categories of personal data (if not collected directly from the data subject).	no
Change of purpose if necessary	no

Pinterest tag

Purpose of processing	Analysis, conversion tracking, targeting, performance measurement of marketing projects.
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Art. 6 para. 1 a)
Recipient (if applicable)	Pinterest Inc.651 Brannan Street, San Francisco, CA 94107, United States of America https://policy.pinterest.com/en-gb/privacy-policy
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	United States of America
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automatic decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	IP address, click behavior, device information, date and time of visit, browser settings, geo data.
Change of purpose if necessary	none

Store Pay

Purpose of processing	Payment
Legal basis (according to Art. 6 / 9 GDPR)	Performance of a contract (Art. 6 para. 1 b)
Recipient (if applicable)	Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	Transfer, storage and processing in the USA and Canada, if applicable
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	Without the data, the product order or payment cannot be carried out.
Consequences of non-compliance (in case of failure to provide the required data)	Without the data, the product order or payment cannot be carried out.
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Credit and debit card number, user name, geographic location, IP address, e-mail address, payment information, transaction information, bank details, e-mail address, billing information
Change of purpose if necessary	none
Data protection officer of the provider	https://www.shopify.com/legal/privacy

Shopify

Purpose of processing	Hosting and building the website.
Legal basis (according to Art. 6 / 9 GDPR)	Protection of legitimate interests (Art. 6 para. 1 f)
Recipient (if applicable)	Shopify International Limited Victoria Buildings, 2. Etage, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	Canada (adequacy decision)
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	Necessity through CMS
Consequences of non-compliance (in case of failure to provide the required data)	no
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	IP address, information about website visits
Change of purpose if necessary	no

Instant bank transfer

Purpose of processing	Create secure and convenient payment options
Legal basis (according to Art. 6 / 9 GDPR)	Performance of a contract (Art. 6 para. 1 b) Protection of legitimate interests (Art. 6 para. 1 f)
Recipient (if applicable)	Sofort GmbH, Theresienhöhe 12, 80339 Munich (a company of the Klarna Group)
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	Forwarding to certain business information units
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Name, address, e-mail address, IP address, telephone number, other data if applicable
Change of purpose if necessary	none
Opt-Out	Refuse payment option, See also under Cookies
Data protection information of the provider	https://www.sofort.com/payment/wizard/getCmsContent/data_protection/DE/0/de

Stripe

Purpose of processing	pay
Legal basis (according to Art. 6 / 9 GDPR)	Performance of a contract (Article 6 paragraph 1 b)
Recipient (if applicable)	Stripe, Inc. 3180 18th Street, San Francisco, CA 94110, United States of Americahttps://stripe.com/de/privacy
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	United States of America, Stripe, Inc. The data transfer is based on the EU-US Data Privacy Framework, with which Stripe, Inc. is certified.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	Without the data, the product order or payment cannot be processed.
Consequences of non-compliance (in case of failure to provide the required data)	Without the data, the product order or payment cannot be processed.
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Purchase date, payment information, purchase activity, payment card information
Change of purpose if necessary	no

TikTok Pixel

Purpose of processing	Analysis, marketing, functionality.
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Article 6 paragraph 1 a)
Recipient (if applicable)	TikTok Inc.TikTok Information Technologies UK Limited, TikTok Pte. Ltd.Aviation House, 125 Kingsway Holborn, London, WC2B 6NH.
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	SingaporeChinaUnited States of AmericaUnited Kingdom (adequacy decision)
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	no
Consequences of non-compliance (in case of failure to provide the required data)	no
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Device information, information about the operating system, time zone, usage data, IP address
Change of purpose if necessary	no

YouTube

Purpose of processing	This is a video player service. It can be used by users to view, rate, share, comment on and upload videos.
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Art. 6 para. 1 a)
Recipient (if applicable)	Google Ireland Limited; Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	If applicable, transmission, storage and processing in the USA, Google LLCThe data transfer is based on the EU-U.S. Data Privacy Framework through which Google LCC is certified.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	none
Consequences of non-compliance (in case of failure to provide the required data)	none
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually originates from the data subject, but may also originate from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Device informationIP addressReferrer URLViewed videos
Change of purpose if necessary	none
Change of purpose if necessary	https://safety.google/privacy/privacy-controls/
Data protection officer of the provider	https://support.google.com/policies/contact/general_privacy_form
Privacy policy of the provider	https://policies.google.com/privacy?hl=en

Zendesk

Purpose of processing	Responding to user requests, analyzing
Legal basis (according to Art. 6 / 9 GDPR)	Informed consent (Article 6 paragraph 1 a)
Recipient (if applicable)	Zendesk Inc. 989 Market Street #300, San Francisco, CA 94102, United States of America https://www.zendesk.de/company/agreements-and-terms/privacy-notice/
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees)	United States of America, Zendesk, Inc. The data transfer is based on the EU-US Data Privacy Framework, with which Zendesk, Inc. is certified.
If known: Duration of data storage	See General deadlines for data deletion
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity	no
Consequences of non-compliance (in case of failure to provide the required data)	no
If applicable, existence of an automated decision-making process	In this context, we do not use automated decision-making.
If applicable, origin of the data (if not collected directly from the data subject)	The data usually comes from the data subject, but can also come from third parties.
Where applicable, categories of personal data (if not collected directly from the data subject).	Address, email address, first name, last name, IP address.
Change of purpose if necessary	no

Website hosting

For the operation of this website, a so-called hosting service provider is used, on whose European servers the contents of the Internet presence are stored. The hosting partner collects certain meta data (including IP addresses of website visitors) in log files to ensure the security of the systems and for verification purposes; see also under "Collection of general data and information".

The hosting service provider was carefully selected; all necessary measures were also taken to ensure data processing that is permissible under data protection law (for example, the conclusion of an agreement on commissioned processing, AVV).

Politik om beskyttelse af persondata

Privacy policy

Information on the handling of personal data

Name and address of the responsible entity

Name and address of the person responsible for data protection

Actuality of the privacy policy

Right

General information on data processing on the website

Information about specific data processing on the website

Bekannt aus