Privacy policy

Privacy policy

Status June 2023

Table of contents
  1. Name and address of the data controller
  2. Contact details of the data protection officer
  3. General information on data processing
  4. Rights of the data subject
  5. Provision of the website and creation of log files
  6. Use of cookies
  7. Registration
  8. Webshop
  9. Payment options
  10. Shipping service provider
  11. Newsletter
  12. Email contact
  13. Contact form
  14. Company appearances
  15. Use of company presences in job-oriented networks
  16. Geotargeting
  17. Content Delivery Networks
  18. Plugins used
I. Name and address of the responsible party

The responsible party within the meaning of the General Data Protection Regulation and other national data protection laws of the Member States as well as other data protection regulations is:

L.Credi Peugler GmbH
Ridlerstraße 31
80339 Munich
Germany

0895401500
shop@lcredi.de
www.lcredi-munich.de

2. contact details of the data protection officer

The data protection officer of the responsible party is:

DataCo GmbH
Dachauer Straße 65
80335 Munich
Germany

+49 89 7400 45840
www.dataguard.de

3. general information on data processing
  1. Scope of the processing of personal data

As a matter of principle, we process personal data of our users only to the extent that this is necessary for the provision of a functioning web store as well as our contents and services. The processing of personal data of our users is regularly carried out only with the consent of the user. An exception applies in those cases where it is not possible to obtain prior consent for factual reasons and the processing of the data is required by legal regulations.

  1. Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for processing operations of personal data, Art. 6 (1) p. 1 lit. a DSGVO serves as the legal basis.

When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) p. 1 lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

Insofar as processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6 (1) p. 1 lit. c DSGVO serves as the legal basis.

In the event that vital interests of the data subject or another natural person make processing of personal data necessary, Art. 6 (1) p. 1 lit. d DSGVO serves as the legal basis.

If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not override the former interest, Art. 6 (1) p. 1 lit. f DSGVO serves as the legal basis for the processing.

  1. Data deletion and storage period

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may take place beyond this if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the controller is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or performance of a contract.

4. rights of the data subject

If personal data is processed by you, you are a data subject within the meaning of the GDPR and you are entitled to the following rights against the controller:

  1. The right to information (Art. 15 DSGVO).

You have the right to request confirmation from us as to whether personal data concerning you is being processed.

If this is the case, you have a right of access to this data and to the following information:

    • Purposes of processing
    • Categories of personal data
    • Recipients or categories of recipients
    • Planned storage period or the criteria for determining this period
    • The existence of the rights of rectification, erasure or restriction or opposition
    • Right of appeal to the competent supervisory authority
    • If applicable, origin of the data (if collected from a third party)
    • If applicable, existence of automated decision-making including profiling with meaningful information about the logic involved, the scope and the effects to be expected
    • If applicable, transfer of personal data to a third country or international organization
  1. Right of rectification (Art. 16 DSGVO).

If your personal data is inaccurate or incomplete, you have the right to request that the personal data be corrected or completed without delay.

  1. Right to restriction of processing (Art. 18 DSGVO).

If one of the following conditions is met, you have the right to request restriction of the processing of your personal data:

    • You dispute the accuracy of your personal data, for a period of time that allows us to verify the accuracy of the personal data.
    • In the context of unlawful processing, you object to the erasure of the personal data and instead request the restriction of the use of the personal data.
    • We no longer need your personal data for the purposes of processing, but you need your personal data for the assertion, exercise or defense of your legal claims or
    • after you have objected to the processing, for the duration of the examination as to whether our legitimate reasons outweigh your reasons.
  1. Right to erasure ("right to be forgotten") (Art. 17 DSGVO).

If one of the following grounds applies, you have the right to request immediate erasure of your personal data:

    • Your data is no longer necessary for the processing purposes for which it was originally collected.
    • You withdraw your consent and there is no other legal basis for the processing.
    • You object to the processing and there are no overriding legitimate grounds for the processing or you object pursuant to Article 21(2) of the GDPR.
    • Your personal data is processed unlawfully.
    • Erasure is necessary for compliance with a legal obligation under Union law or the law of the member state to which we are subject.
    • The personal data was collected in relation to information society services offered in accordance with Art. 8 (1) DSGVO.

Please note that the above reasons do not apply insofar as the processing is necessary:

    • To exercise the right to freedom of expression and information;
    • For compliance with a legal obligation or for the performance of a task carried out in the public interest to which we are subject.
    • For reasons of public interest in the area of public health.
    • For archival, scientific or historical research purposes in the public interest or for statistical purposes.
    • For the assertion, exercise or defense of legal claims.
  1. Right to data portability (Art. 20 DSGVO).

You have the right to receive your personal data, in a structured, common and machine-readable format or to request the transfer to another controller.

  1. Right to object to certain data processing (Art. 21 DSGVO).

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data relating to you that is carried out on the basis of Article 6 (1) sentence 1 lit. e or f DSGVO. This also applies to profiling based on these provisions.

If the personal data concerning you is processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling, insofar as it is related to such direct marketing.

  1. Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of personal data concerning you infringes the GDPR. The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR. A list, of the locally competent supervisory authorities in Germany can be found on the website of the Federal Commissioner for Data Protection at the following link: https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html.

You have the right to lodge a complaint about the processing of your personal data with a data protection supervisory authority. Austrian Data Protection Authority Barichgasse 40-42 1030 Vienna Phone: +43 1 52 152-0 E-mail: dsb@dsb.gv.at

5. provision of the website and creation of log files
  1. Description and scope of data processing

Each time our website is called up, our system automatically collects data and information from the computer system of the calling computer.

The following data is collected in this process:

    • Information about the browser type and the version used.
    • The operating system of the user
    • The user's Internet service provider
    • The IP address of the user
    • Date and time of access
    • Web pages from which the user's system accesses our website
    • Web pages that are accessed by the user's system via our website

This data is stored in the log files of our system. This data is not stored together with other personal data of the user.

  1. Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session.

The storage in log files is done to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

These purposes are also our legitimate interest in data processing according to Art. 6 para. 1 p. 1 lit. f DSGVO.

  1. Legal basis for data processing

The legal basis for the temporary storage of the data and the log files is Art. 6 para. 1 p. 1 lit. f DSGVO.

  1. Duration of storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

In the case of storage of data in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

  1. Possibility of objection

The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. The user can object to this. Whether the objection is successful is to be determined in the context of a balancing of interests.

6. use of cookies
  1. Description and scope of data processing

When you visit our website, we use technical aids for various functions, in particular cookies, which can be stored on your terminal device. When you call up our website and at any time later, you have the choice of whether to generally allow cookies to be set or which individual additional functions you would like to select. You can make changes in your browser settings or via our Consent Manager. Cookies are text files or information in a database that are stored on your hard drive and assigned to the browser you are using so that certain information can flow to the entity that sets the cookie. Below we describe the type of cookies we use:

We use technically necessary cookies, which are required for the technical structure of the website. Without these cookies, our website cannot be displayed (completely correctly) or the support functions are not possible.

The following data is stored and transmitted by the technically necessary cookies:

    • Language settings
    • Articles in the shopping cart
    • Log-in information
    • Entered search terms
    • Frequency of page views
    • Use of website functions

We use cookies on our website that are not technically necessary. Technically non-essential cookies are text files that are not solely used to enable the website to function, but also collect other data.

By setting technically non-essential cookies, the following data is processed:

    • IP address
    • Location of the Internet user
    • Date and time of the website call
    • Adaptation of advertisements to the user
    • Tracking of surfing behavior
    • Linking of the website visit with other social media platforms.
  1. Purpose of data processing

The purpose of using technically necessary cookies is to ensure the functionality of our website. Some functions of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognized even after a page change.

For the following applications we need the technically necessary cookies:

    • Shopping cart
    • Acceptance of language settings
    • Remembering search terms
    • Functionality of the website

The use of technically unnecessary cookies is for the purpose of improving the quality of our website, its content and thus our reach and profitability. By setting these cookies, we learn how the website is used and can thus constantly optimize our offer. In particular, these cookies serve us for the following purposes:

To make visiting our website attractive and to enable the use of certain functions, to display suitable products or for market research, we use so-called cookies on various pages.

  1. Legal basis for data processing

The provisions of the Telecommunications Telemedia Data Protection Act (TTDSG) are relevant for the storage of information in the end user's terminal equipment and/or access to information already stored in the end user's terminal equipment. If the setting and reading of cookies is technically necessary, this is done to ensure the functionality of our website. In this case, the storage of and access to cookies on your terminal equipment is carried out on the basis of § 25 para. 2 no. 2 TTDSG. This storage of and access to the information in your terminal equipment serves to facilitate your use of our website and to be able to offer you our services as you have requested. Some functions of our website also do not work without the use of these cookies and could therefore not be offered. The cookies are generally deleted after the session ends (e.g. logging out or closing the browser) or after the expiry of a specified duration. Information about different storage periods for cookies can be found in the following sections of this privacy policy.

Insofar as cookies are used that are not technically necessary, this is done on the basis of your express consent, which you can give via the cookie banner. The basis for storing and accessing information in this case is § 25 para. 1 TTDSG in conjunction with. Art. 6 para. 1 lit. a), Art. 7 DSGVO. You can revoke your consent at any time with effect for the future or subsequently grant it again by configuring your settings for cookies accordingly. Alternatively, you can prevent the storage of cookies by making appropriate settings in your browser software. Please note that the browser settings you make only affect the browser you are using. If personal data is processed following the storage of and access to the information on your terminal equipment, the provisions of the DSGVO are relevant. Information on this can be found in the following sections of this privacy policy.

7 Registration
  1. Description and scope of data processing

On our website, we offer users the opportunity to register by providing personal data. The data is entered in an input mask and transmitted to us and stored. The data is not passed on to third parties. The following data is collected during the registration process:

    • Email address
    • Name
    • First name
    • Address
    • Telephone / mobile phone number
    • IP address of the calling computer
    • Date and time of registration

As part of the registration process, the user's consent to the processing of this data is obtained.

  1. Purpose of data processing

Registration of the user is necessary for the fulfillment of a contract with the user or for the implementation of pre-contractual measures.

Your personal data, which you provide to us in the ordering process, is required for the conclusion of a contract with us. You are not obliged to provide your personal data. However, we cannot send you the goods without notification of your address. For some payment procedures, we require the necessary payment data to be passed on to a payment service provider commissioned by us. The processing of your data entered in the ordering process is therefore for the purpose of fulfilling the contract. If you send us an inquiry by e-mail, via a contact form, etc. prior to the conclusion of the contract, we process the data received in this way for the purpose of carrying out pre-contractual measures and answering your questions about our products, for example. In case of opening a customer account, your data (especially name, address, payment method, e-mail and password) will be processed for registration and creation of a customer login. With the stored data, you can shop faster with us and view your orders at any time.

  1. Legal basis for data processing

The legal basis for the processing of the data is Art. 6 para. 1 p. 1 lit. a DSGVO if the user has given his consent.

If the registration serves the fulfillment of a contract to which the user is a party or the implementation of pre-contractual measures, the additional legal basis for the processing of the data is Art. 6 para. 1 p. 1 lit. b DSGVO.

  1. Duration of storage

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected.

This is the case for data collected during the registration process for the fulfillment of a contract or for the implementation of pre-contractual measures when the data is no longer required for the implementation of the contract. Even after the conclusion of the contract, there may be a need to store personal data of the contractual partner in order to comply with contractual or legal obligations.

  1. Possibility of revocation

As a user, you have the option to cancel your registration at any time. You can have the data stored about you changed at any time.

By sending us a message or using a delete function, you can remove the account again.

If the data is required for the fulfillment of a contract or for the implementation of pre-contractual measures, a premature deletion of the data is only possible insofar as contractual or legal obligations do not prevent a deletion.

8. webshop

We offer a webshop on our website. For this purpose, we use the Software as a Service (SaaS) rental store system of a service provider commissioned by us.

The name of our rental store system and the name and address of the service provider are:

Shopify of the provider Shopify International Limited, 1-2 Haddington Road, D04 XN32, Dublin , Ireland (hereinafter referred to as Shopify).

More information can be found in the privacy policy of the provider:
https://www.shopify.de/legal/datenschutz

The servers automatically collect and store information in so-called server log files, which your browser automatically transmits when you visit the website. The information stored is:

    • Browser type and browser version
    • Operating system used
    • Referrer URL
    • Host name of the accessing computer
    • Date and time of server request
    • IP address

This data is not merged with other data sources. The collection of this data is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website - for this purpose, the server log files must be collected.

We have concluded an order processing contract with the relevant service provider, in which we oblige the relevant service provider to protect user data and not to disclose it to third parties.

The location of the server of the website is geographically in the European Union (EU) or the European Economic Area (EEA).

9. payment options
  1. Description and scope of data processing

We offer our customers various payment options for processing their orders. For this purpose, we forward customers to the platform of the corresponding payment service provider, depending on the payment option. After completion of the payment process, we receive the payment data of the customers from the payment service providers or our house bank and process them in our systems for the purpose of invoicing and accounting.

Payment by GiroPay

It is possible to process the payment transaction with the payment service provider GiroPay.

Based on online banking with PIN and TAN, GiroPay enables payment by online bank transfer. All you need for payment with GiroPay is an online banking checking account at a participating bank or savings bank. After successful payment, the merchant receives a payment guarantee from the buyer's bank and can thus send you goods or services.

When paying via GiroPay, your payment data will be transmitted to GiroPay GmbH, An der Welle 4, 60322 Frankfurt/Main, Germany, as part of the payment processing.

In principle, GiroPay GmbH does not process any transaction data of the users. Transaction data is such data that is required to carry out the payment initiated by the user.

When users of the GiroPay services initiate a payment, GiroPay GmbH does not collect any transaction data in connection with this payment. In particular, GiroPay GmbH does not collect information about whether the user has initiated a payment, nor about the amount and the purpose of this payment. In principle, this information is only collected and further processed by the user's account-managing institution. The user's account-holding institution is the data controller in the sense of the GDPR with regard to data processing in the context of the payment transaction.

Only in individual cases and only at the instigation of the user does GiroPay GmbH collect transaction data to process queries about a payment made by the user (payment research) or in the event of user queries about technical problems.

For more information on GiroPay's privacy policy, please click here:
https://www.GiroPay.de/rechtliches/datenschutzerklaerung/

Payment via Klarna

It is possible to process the payment transaction with the payment service provider Klarna.

Klarna is a payment service provider that enables the purchase on account or an installment payment.

The European operating company of Klarna is Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden.

If you select "purchase on account" or "installment purchase" as a payment option in the context of the transaction via Klarna, your personal data will be automatically transmitted to Klarna. The personal data transmitted to Klarna are in particular the following

    • First name
    • Last name
    • Address
    • Date of birth
    • Gender
    • Email address
    • IP address
    • Telephone/mobile phone number
    • Bank details
    • Credit card number incl. expiry date and CVC code
    • Item number
    • Item number
    • Data on goods and/or services
    • Transaction amount and fiscal charges

The purpose of the data transfer is in particular identity verification, payment administration and fraud prevention. The personal data exchanged between Klarna and us may be transmitted by Klarna to credit reporting agencies.

The purpose of this transmission is to check identity and creditworthiness. Klarna may also disclose the personal data to affiliated companies (Klarna Group) and service providers or subcontractors to the extent necessary to fulfill contractual obligations or to process the data on behalf.

For more information on the processing of your data by Klarna, please refer to Klarna's privacy policy at:
https://pay.amazon.com/de/help/201751600
https://www.klarna.com/de/datenschutz/.

Payment by credit card

It is possible to complete the payment process by credit card.

If you have chosen payment by credit card, payment data will be passed on to payment service providers for payment processing. All payment service providers comply with the requirements of the "Payment Card Industry (PCI) Data Security Standards" and have been certified by an independent PCI Qualified Security Assessor.

In the context of payment by credit card, the following data is regularly transmitted:

    • Purchase amount
    • Date and time of purchase
    • First name and surname
    • Address
    • Email address
    • Credit card number
    • Credit card expiration date
    • Security code (CVC)
    • IP address
    • Phone number / mobile phone number

Payment data is passed on to the following payment service providers:

    • ShopifyPay

You can find more information about the privacy policy as well as revocation and removal options vis-à-vis the payment service providers here:

Payment via Paydirekt

It is possible to process the payment transaction with the payment service provider Paydirekt.

When paying via Paydirekt, your payment data will be transmitted to paydirekt GmbH, Hamburger Allee 26-28, 60486 Frankfurt am Main, Germany, as part of the payment processing.

The payment data (in particular payment amount, details of the payee) and the participant's confirmation as to whether the payment data is correct are collected, processed and transmitted to the relevant bank by paydirekt GmbH for the purpose of processing the paydirekt payment.

paydirekt GmbH authenticates the payment using the authentication procedure stored for the participant. The bank authorizes the payment with the involvement of paydirekt GmbH vis-à-vis us as the payee.

paydirekt GmbH collects and stores the transaction data of paydirekt payments. The transaction data includes the transaction reference and the transaction ID as well as information on the shopping cart that paydirekt GmbH receives from us.

They enable paydirekt GmbH and the bank to identify and reference the transaction at a later date (especially in the case of refunds) so that the transaction can be assigned to the respective customer.

For the processing of refunds, transaction data is transmitted by paydirekt GmbH to the bank.

For more information on the processing of your data by paydirekt GmbH as part of paydirekt, please refer to the paydirekt privacy policy at:

https://www.paydirekt.de/agb/index.html

Payment via PayPal

It is possible to process the payment transaction with the payment service provider PayPal. In addition to a direct payment method, PayPal also offers purchase on account, direct debit, credit card and installment payment.

The European operating company of PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg.

If you choose PayPal as a payment method, your data required for the payment process is automatically transmitted to PayPal.

This involved in particular the following data:

    • Name
    • Address
    • Email address
    • Telephone / mobile phone number
    • IP address
    • Bank details
    • Card number
    • Expiry date and CVC code
    • Item number
    • Item number
    • Goods and services data
    • Transaction amount and tax charges
    • Information on previous purchase behavior

The data transmitted to PayPal may be transmitted by PayPal to credit agencies. The purpose of this transmission is to check your identity and creditworthiness.

PayPal may also pass on your data to third parties if this is necessary for the fulfillment of contractual obligations or if the data is to be processed on behalf of PayPal. When transferring your personal data within companies affiliated with PayPal, the Binding Corporate Rules approved by the relevant supervisory authorities apply. You can find them here:
https://www.paypal.com/de/webapps/mpp/ua/bcr
Other data transfers may be based on contractual protections. For more information, please contact PayPal.

All PayPal transactions are subject to PayPal's privacy policy. You can find it at:
https://www.paypal.com/de/webapps/mpp/ua/privacy-full/.

  1. Purpose of data processing

The transmission of payment data to payment service providers serves to process the payment, e.g. when you purchase a product and/or use a service.

  1. Legal basis for data processing

The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. b DSGVO, as the processing of the data is necessary for the processing of the concluded purchase contract.

  1. Duration of storage

All payment data as well as data on any chargebacks that may occur will only be stored as long as they are required for payment processing and possible processing of chargebacks and debt collection as well as for combating misuse.

Furthermore, payment data may be stored beyond this period if and as long as this is necessary to comply with statutory retention periods or to prosecute a specific case of misuse.

Your personal data will be deleted upon expiry of the statutory retention periods, i.e. after 10 years at the latest.

  1. Discontinuation of the legal basis

The payment service provider used remains entitled to process your payment data if and as long as this is necessary for the contractual processing of payments. If applicable, there are also legal retention periods.

10. shipping service provider
  1. Description and scope of data processing

If you order products or services on our website, for the delivery of which a shipping service provider is used, you will receive your order and shipping confirmation via your email address, as well as, depending on the respective shipping service provider, notification that your shipment has arrived and/or notification of the package announcement and possible delivery options.

The data will be transmitted to the following service providers:

    • DHL Paket GmbH, Sträßchensweg 10, 53113 Bonn, Germany.

The transmitted data are regularly:

    • Name
    • Address
    • Email address
  1. Purpose of data processing

The purpose of processing personal data is to enable shipping service providers to inform recipients about the progress of the shipment by email and thus increase the probability of successful delivery.

  1. Legal basis for data processing

The legal basis for the transmission of the email address to the respective shipping service provider as well as its use is your consent pursuant to Art. 6 para. 1 lit. a DSGVO.The legal basis for the transmission of your address data (first name, last name, address) to the respective shipping service provider is Art. 6 para. 1 p. 1 lit. b DSGVO, as the processing of the data is necessary for the processing of the concluded purchase contract.

  1. Duration of storage

The transmitted data will be deleted from the respective shipping service provider when the package could be delivered.

  1. Possibility of objection

The notification service by the shipping service provider can be cancelled by the affected user at any time. For this purpose, a corresponding opt-out link can be found in every email.

11 Newsletter
  1. Description and scope of data processing

It is possible to subscribe to a free newsletter. In doing so, the following data from the input mask is transmitted to us when registering for the newsletter:

    • Email address

For the processing of the data, your consent is obtained during the registration process and reference is made to this privacy policy.

If you purchase goods or services on our website and provide your email address, this may subsequently be used by us to send you a newsletter. In such a case, only direct advertising for our own similar goods or services will be sent via the newsletter.

No data will be passed on to third parties in connection with the processing of data for the dispatch of newsletters. The data is used exclusively for sending the newsletter.

  1. Purpose of data processing

The collection of the user's email address is used to deliver the newsletter.

  1. Legal basis for data processing

The legal basis for the processing of the data after registration for the newsletter by the user is, if the user has given his consent, Art. 6 para. 1 p. 1 lit. a DSGVO.

The legal basis for sending the newsletter as a result of the sale of goods or services is Art. 7 (3) UWG.

  1. Duration of storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. Accordingly, the user's email address will be stored as long as the subscription to the newsletter is active.

The other personal data collected during the registration process is usually deleted after a period of seven days.

  1. Possibility of revocation

The subscription to the newsletter can be cancelled by the user concerned at any time. For this purpose, a corresponding link can be found in each newsletter.

This also enables a revocation of consent to the storage of personal data collected during the registration process.

12. email contact
  1. Description and scope of data processing

On our website, it is possible to contact us via the email address provided. In this case, the user's personal data transmitted with the email will be stored.

The data is used exclusively for processing the conversation.

  1. Purpose of data processing

In the case of contact by email, this also constitutes the necessary legitimate interest in processing the data.

  1. Legal basis for data processing

The legal basis for the processing of data transmitted in the course of sending an email is Art. 6 (1) lit. f DSGVO. Our legitimate interest is to optimally answer your inquiry that you send by email. If the email contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 (1) lit. b DSGVO.

  1. Duration of storage

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. For personal data sent by email, this is the case when the respective conversation with the user has ended. The conversation is terminated when the circumstances indicate that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

  1. Possibility of objection

If the user contacts us by email, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued.

By sending a message to us, you can remove the account again.

All personal data stored in the course of contacting us will be deleted in this case.

13. contact form
  1. Description and scope of data processing

A contact form is available on our website, which can be used for electronic contact. If a user takes advantage of this option, the data entered in the input mask is transmitted to us and stored.

At the time the message is sent, the following data is stored:

    • Email address
    • Name
    • First name
    • Telephone / mobile phone number
    • IP address of the calling computer

For the processing of data, your consent is obtained during the submission process and reference is made to this privacy policy.

Alternatively, it is possible to contact us via the email address provided. In this case, the user's personal data transmitted with the email will be stored.

The data will be used exclusively for processing the conversation.

  1. Purpose of data processing

The processing of the personal data from the input mask serves us solely to process the contact. In the case of contact by email, this also constitutes the necessary legitimate interest in processing the data.

The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

  1. Legal basis for data processing

The legal basis for the processing of data transmitted in the course of sending a contact form is Art. 6 (1) p. 1 lit. f DSGVO. Our legitimate interest is to optimally answer your inquiry that you send to us via contact form. If the purpose of contacting you via the contact form is to conclude a contract, the additional legal basis for the processing is Art. 6 para. 1 p. 1 lit. b DSGVO.

  1. Duration of storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For the personal data from the input mask of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it is clear from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

  1. Possibility of objection

The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by email, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued.

By sending a message to us, you can remove the account again.

All personal data stored in the course of contacting us will be deleted in this case.

14. company appearances

Use of corporate presences in social networks

Instagram:

Instagram, Part of Meta Platforms Ireland Ltd, 4 Grand Canal Square Grand Canal Harbour, Dublin 2 Ireland.


On our company page, we provide information and offer Instagram - users the opportunity to communicate. If you perform an action on our Instagram company page (e.g. comments, posts, likes, etc.), you may make personal data (e.g. clear name or photo of your user profile) public. However, since we generally or to a large extent have no influence on the processing of your personal data by Instagram, which is jointly responsible for the L.Credi Peugler GmbH corporate presence, we cannot make any binding statements about the purpose and scope of the processing of your data.

Our corporate presence in social networks is used for communication and information exchange with (potential) customers. In particular, we use the corporate presence for:

Information on products, competitions, and advertising.

In this context, the publications via the corporate presence may contain the following content:

    • Information about products
    • Information about services
    • Sweepstakes
    • Advertising

Each user is free to publish personal data through activities.

Insofar as we process your personal data in order to evaluate your online behavior, offer you sweepstakes or conduct lead campaigns, this is done on the basis of your express declaration of consent, Art. 6 para. 1 sentence 1 lit. a, Art. 7 DSGVO. The legal basis for processing personal data for the purpose of communicating with customers and interested parties is Art. 6 para. 1 p. 1 lit. f DSGVO. Thereby, our legitimate interest is to answer your request optimally or to be able to provide the requested information. If the aim of contacting you is to conclude a contract, the additional legal basis for the processing is Art. 6 (1) lit. b DSGVO.

The data generated by the company website is not stored in our own systems.

For the processing of your personal data in third countries, we have provided suitable guarantees in the form of standard data protection clauses pursuant to Art. 46 (2) lit. c DSGVO. A copy of the standard data protection clauses can be requested from us.


You can object at any time to the processing of your personal data that we collect in the course of your use of our Instagram - company presence and assert your data subject rights mentioned under IV. of this privacy policy. To do so, send us an informal email to shop@lcredi.de. For the processing of your personal data by Instagram and the corresponding objection options, you can find more information here:

Instagram: https://help.instagram.com/519522125107875

Pinterest:

Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.


On our company page, we provide information and offer Pinterest - users the opportunity to communicate. If you perform an action on our Pinterest company site (e.g. comments, posts, likes, etc.), you may make personal data (e.g. clear name or photo of your user profile) public. However, since we generally or to a large extent have no influence on the processing of your personal data by Pinterest, which is jointly responsible for the L.Credi Peugler GmbH corporate presence, we cannot provide any binding information on the purpose and scope of the processing of your data.

Our corporate presence in social networks is used for communication and information exchange with (potential) customers. In particular, we use the corporate presence for:

Information on products, competitions, and advertising.

In this context, the publications via the corporate presence may contain the following content:

    • Information about products
    • Information about services
    • Sweepstakes
    • Advertising

Each user is free to publish personal data through activities.

Insofar as we process your personal data in order to evaluate your online behavior, offer you sweepstakes or conduct lead campaigns, this is done on the basis of your express declaration of consent, Art. 6 para. 1 sentence 1 lit. a, Art. 7 DSGVO. The legal basis for processing personal data for the purpose of communicating with customers and interested parties is Art. 6 para. 1 p. 1 lit. f DSGVO. Thereby, our legitimate interest is to answer your request optimally or to be able to provide the requested information. If the aim of contacting you is to conclude a contract, the additional legal basis for the processing is Art. 6 (1) lit. b DSGVO.

The data generated by the company website is not stored in our own systems.

For the processing of your personal data in third countries, we have provided suitable guarantees in the form of standard data protection clauses pursuant to Art. 46 (2) lit. c DSGVO. A copy of the standard data protection clauses can be requested from us.


You can object at any time to the processing of your personal data that we collect in the course of your use of our Pinterest - company presence and assert your data subject rights mentioned under IV. of this privacy policy. To do so, send us an informal email to shop@lcredi.de. For the processing of your personal data by Pinterest and the corresponding objection options, you can find more information here:

Pinterest: https://policy.pinterest.com/de/privacy-policy

15. use of company presences in career-oriented networks.
  1. Scope of data processing

We use the possibility of company appearances on profession-oriented networks. We maintain a company presence on the following profession-oriented networks:

LinkedIn:

LinkedIn, Unlimited Company Wilton Place, Dublin 2, Ireland.

On our site, we provide information and offer users the opportunity to communicate.

The company presence is used for job applications, information/PR and active sourcing.

We do not have any information on the processing of your personal data by the companies jointly responsible for the corporate presence. For more information, please refer to the privacy policy of:

LinkedIn:

https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv

If you carry out an action on our company website (e.g. comments, posts, likes, etc.), you may make personal data (e.g. clear name or photo of your user profile) public.

  1. Legal basis for data processing

The legal basis for the processing of personal data for the purpose of communicating with customers and interested parties is Art. 6 para. 1 p. 1 lit. f DSGVO. In this context, our legitimate interest is to optimally answer your inquiry or to be able to provide the requested information. If the purpose of contacting you is to conclude a contract, the additional legal basis for the processing is Art. 6 (1) lit. b DSGVO.

  1. Purpose of data processing

The purpose of our corporate website is to inform users about our services. In doing so, each user is free to publish personal data through activities.

  1. Duration of storage

We store your activities and personal data published via our corporate presence until you revoke your consent. In addition, we comply with the statutory retention periods.

  1. Possibility of objection

You can object at any time to the processing of your personal data that we collect in the course of your use of our corporate presence and assert your data subject rights listed under IV. of this data protection declaration. To do so, send us an informal email to the email address stated in this data protection declaration.

You can find more information on objection and removal options here:

LinkedIn:

https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv

16 Geotargeting

We use the IP address and other information provided by the user (in particular zip code in the context of registration or ordering) for regional targeting (so-called "geotargeting").

Regional targeting is used, for example, to automatically show you regional offers or advertising that are often more relevant to users. The legal basis for the use of the IP address and, if applicable, other information provided by the user (in particular zip code) is Art. 6 (1) lit. f DSGVO, based on our interest in ensuring more precise targeting and thus providing offers and advertising with higher relevance for users.

In this context, a part of the IP address as well as the additional information provided by the user (in particular zip code) are only read and not stored separately.

You can prevent geotargeting by using, for example, a VPN or proxy server that prevents precise localization. In addition, depending on the browser used, you can also deactivate a location localization in the corresponding browser settings (insofar as the respective browser supports this).

We use geotargeting on our website for the following purposes:

    • Customer targeting
    • Advertising purposes
17. content delivery networks

Furthermore, we use the services of the following content delivery networks:

Hotjar

Information on the privacy policies of these providers can be found on the respective websites.

18. plugins used

We use plugins for various purposes. The plugins used are listed below:

Use of the Google Marketing Platform

1. Scope of processing personal data

We use the Marketing Platform of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google). Google thereby sets a cookie on your computer. As a result, personal data can be stored and evaluated, in particular the activity of the user (in particular which pages have been visited and on which elements have been clicked), device and browser information (in particular the IP address and the operating system), data about the advertisements displayed (in particular which advertisements were displayed and whether the user clicked on them) and also data from advertising partners (in particular pseudonymized user IDs).
Due to the marketing tools used, your browser automatically establishes a direct connection with Google's server.
We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our knowledge. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is a possibility that the provider learns your IP address and stores it.
You can find more information on the processing of data by Google here:
https://policies.google.com/privacy?gl=DE&hl=de

  1. Purpose of data processing

    The purpose of using the Google Marketing Platform is to serve relevant ads to the user, to improve campaign performance reports or to prevent a user from seeing the same ads more than once.
  2. Legal basis for the processing of personal data

    The legal basis for the processing of the user's personal data is generally the user's consent pursuant to Art. 6 (1) p.1 lit. a DSGVO.
  3. Duration of storage

    The Google Marketing Platform stores your data until the stated purpose is fulfilled, with a maximum storage period of 18 months.
  4. Revocation and removal options

    You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
    You can prevent the collection as well as the processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery(https://www.ghostery.com) in your browser.
    You can deactivate the use of your personal data by Google using the following link:
    https://adssettings.google.de
    You can find further information on objection and removal options vis-à-vis Google at:
    https://policies.google.com/privacy?gl=DE&hl=de.

Use of Facebook Comments

1. Scope of processing personal data

We use functions of the social network Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA and its representatives in the Union Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal H , D2 Dublin, Ireland (hereinafter: Facebook). We use this plugin to enhance the functionality of our online presence. Users can comment on content on our online presence with their Facebook account through Facebook Comments. Personal data can be stored and evaluated, especially the user's activity (in particular, which pages have been visited and which elements have been clicked on) as well as device and browser information (in particular, the IP address and operating system). We have no information about the exact scope of the collection of personal data.
Further information on the processing of data by Facebook can be found here:
https://de-de.facebook.com/policy.php

  1. Purpose of data processing

    The use of the Facebook Comment plug-in serves to improve the user-friendliness of our online presence. We use this plug-in to offer an embedded comment function directly on Facebook without users having to leave our online presence.
  2. Legal basis for the processing of personal data

    The legal basis for the processing of users' personal data is, in principle, the user's consent in accordance with Art. 6 Para. 1 S.1 lit. a DSGVO.
  3. Duration of storage

    Your personal information will be stored for as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.
  4. Revocation and removal options

    You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
    You can prevent the collection as well as the processing of your personal data by Facebook by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery(https://www.ghostery.com) in your browser.
    For more information on objection and removal options vis-à-vis Facebook, please visit:
    https://de-de.facebook.com/policy.php

Use of Facebook Pixel

1. Scope of processing personal data

We use the Facebook Pixel of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA and its representative in the Union Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal H , D2 Dublin, Ireland (hereinafter referred to as: Facebook) on our online presence. With its help, we can track the actions of users after they have seen or clicked on a Facebook ad. As a result, personal data can be stored and analyzed, especially the user's activity (in particular, which pages have been visited and which elements have been clicked on), device and browser information (in particular, the IP address and the operating system), data about the advertisements displayed (in particular, which advertisements were displayed and whether the user clicked on them) and also data from advertising partners (in particular, pseudonymized user IDs). This allows us to record the effectiveness of the Facebook ads for statistical and market research purposes.
In the process, data may be transmitted to Facebook servers in the USA.
The data collected in this way is anonymous for us, which means that we do not see the personal data of individual users. However, this data is stored and processed by Facebook. Facebook may associate this data with their Facebook account and also use it for their own advertising purposes, according to Facebook's data usage policy.
For more information on how Facebook processes data, please click here:
https://de-de.facebook.com/policy.php

  1. Purpose of data processing

    The use of the Facebook Pixel serves to analyze and optimize advertising measures.
  2. Legal basis for the processing of personal data

    The legal basis for the processing of the users' personal data is, in principle, the user's consent in accordance with Art. 6 Para. 1 S.1 lit. a DSGVO.
  3. Duration of storage

    Your personal information will be stored for as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.
  4. Revocation and removal options

    You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
    You can prevent the collection as well as the processing of your personal data by Facebook by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery(https://www.ghostery.com) in your browser.
    For more information on objection and removal options vis-à-vis Facebook, please visit:
    https://de-de.facebook.com/policy.php

Use of Google Analytics

1. Scope of processing of personal data

We use Google Analytics, a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google). Google Analytics examines, among other things, the origin of visitors, the time they spend on individual pages, and the use of search engines, thus allowing better monitoring of the success of advertising campaigns. Google sets a cookie on your computer. This allows personal data to be stored and analyzed, in particular the activity of the user (especially which pages have been visited and which elements have been clicked on), device and browser information (especially the IP address and operating system), data about the advertisements displayed (especially which advertisements were displayed and whether the user clicked on them) and also data from advertising partners (especially pseudonymized user IDs).
We use Google Analytics (Universal Analytics) to evaluate your use of our online presence, to compile reports on your activities and to use other Google services related to the use of our online presence and internet usage.
We have requested the anonymization of IP addresses, which means that Google will shorten your IP address as promptly as technically possible. However, it cannot be ruled out that your data will be transmitted to the servers of Google LLC based in the USA.
On behalf of the operator of this online presence, Google will use this information to evaluate your use of the online presence, to compile reports on the activities of the online presence and to provide other services related to the use of the online presence and internet usage to the operator of the online presence.
Further information on the processing of data by Google can be found here: https://policies.google.com/privacy?gl=DE&hl=de.

  1. Purpose of data processing

    The use of Google Analytics (Universal Analytics) serves us to evaluate the use of our online presence as well as the targeted playout of advertising, to the people who have already expressed an initial interest through their visit to the site.
  2. Legal basis for the processing of personal data

    The legal basis for the processing of users' personal data is, in principle, the user's consent in accordance with Art. 6 Para. 1 S.1 lit. a DSGVO.
  3. Duration of storage

    Your personal information will be stored for as long as necessary to fulfill the purposes described in this privacy policy or until you exercise your right of withdrawal.
  4. Revocation option

    You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
    You can prevent the collection as well as the processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery(https://www.ghostery.com) in your browser.
    You can also prevent the collection of data generated by the cookie and related to your use of the online presence (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link:
    https://tools.google.com/dlpage/gaoptout?hl=en
    You can deactivate the use of your personal data by Google with the following link:
    https://adssettings.google.de
    You can find further information on objection and removal options vis-à-vis Google at:
    https://policies.google.com/privacy?gl=DE&hl=de

    6. Danger notice

    Your personal data will also be transmitted to the USA. There is no adequacy decision for the USA according to Art. 45 (3) DSGVO. We would like to point out that data transfer without an adequacy decision entails certain risks, which we would like to inform you about below:
    Intelligence services in the USA take certain online identifiers (such as the IP address or unique identification numbers) as a starting point for monitoring individuals. In particular, it cannot be ruled out that these intelligence services have already collected information about you, with the help of which the data transmitted here can be traced back to you.
    Providers of electronic communications services headquartered in the United States are subject to surveillance by U.S. intelligence agencies pursuant to 50 U.S. Code § 1881a ("FISA 702"). Accordingly, providers of electronic communications services headquartered in the U.S. have an obligation to provide personal information to U.S. authorities pursuant to 50 U.S. Code § 1881a, without any possible recourse available to you. Even encryption of data at the electronic communications service provider's data centers may not provide adequate protection because, with respect to imported data in its possession or custody or under its control, an electronic communications service provider has a direct obligation to provide access to or surrender such data. This obligation may expressly extend to the cryptographic keys without which the data cannot be read.
    The fact that this is not merely a "theoretical risk" is demonstrated by the ECJ's ruling of July 16, 2020 (Case C 311/18, ,,Schrems-II").
    We have concluded guarantees with Google in the form of standard data protection clauses pursuant to Art. 46 (2) lit. c DSGVO. A copy of the standard data protection clauses can be requested from us.

Use of Google Maps

1. Scope of processing of personal data

We use the online map service Google Maps of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google). We use the Google Maps plugin to visually display geographical data and embed it on our online presence. By using Google Maps on our online presence, information about the use of our online presence, your IP address and addresses entered in the route planning function are transmitted to a Google server and stored there.
Further information on the processing of data by Google can be found here:
https://policies.google.com/privacy?gl=DE&hl=de

  1. Purpose of data processing

    The use of the Google Maps plug-in serves to improve user-friendliness and an appealing presentation of our online presence.
  2. Legal basis for the processing of personal data

    The legal basis for the processing of users' personal data is, in principle, the user's consent in accordance with Art. 6 Para. 1 S.1 lit. a DSGVO.
  3. Duration of storage

    Your personal information will be stored for as long as necessary to fulfill the purposes described in this privacy policy or as required by law.
  4. Revocation and removal options

    You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
    You can prevent the collection as well as the processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery(https://www.ghostery.com) in your browser.
    You can deactivate the use of your personal data by Google using the following link:
    https://adssettings.google.de
    You can find further information on objection and removal options vis-à-vis Google at:
    https://policies.google.com/privacy?gl=DE&hl=de

Use of Instagram Plugin

1. Scope of Processing Personal Data

We use plugins of the service Instagram of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA and its representative in the Union Facebook Ireland Ltd. 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter referred to as: Facebook). The integrated Instagram buttons are used by us to enable a link to our Instagram profile. Likewise, a widget is integrated that enables us to display certain photos and videos from our Instagram profile in our online presence.When you visit a page of ours that contains such a plug-in, your browser establishes a direct connection to a Facebook server. The content of the plug-ins is transmitted directly to your browser and integrated into the online presence. In this process, data is automatically transmitted to Instagram and stored on their servers. This transmitted data includes connection data (such as your IP address, date and time, the URL called up) as well as the browser used and the operating system.
Your visit to our pages can thus be tracked by Instagram, even if you do not actively use the plug-in functions.If you are logged into your Instagram account, you can link the contents of our pages to your Instagram profile by clicking on the Instagram button. This allows Instagram to assign the visit to our pages to your user account. If you want to prevent this direct assignment, you must log out of Instagram before visiting our online presence.
For more information, please refer to Instagram's privacy policy:
https://help.instagram.com/155833707900388

  1. Purpose of data processing

    The use of the Instagram plug-in serves to improve the external presentation of our company.
  2. Legal basis for the processing of personal data

    The legal basis for the processing of users' personal data is basically the user's consent in accordance with Art. 6 (1) p.1 lit. a DSGVO.
  3. Duration of storage

    Your personal information will be stored for as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.
  4. Revocation and removal options

    You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
    You can prevent the collection as well as the processing of your personal data by Instagram by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery(https://www.ghostery.com) in your browser.
    For more information on objection and removal options vis-à-vis Instagram, please visit:
    https://help.instagram.com/155833707900388

Use of Pinterest

1. Scope of the processing of personal data

We use the Pinterest PlugIn of Pinterest Inc., 808 Brannan Street San Francisco, CA 94103-490, USA (hereinafter referred to as: Pinterest) on our online presence. Users can save content from our online presence with the Pinterest plugin in their Pinterest account. In doing so, your browser establishes a connection with Pinterest's servers in the USA. As a result, personal data can be stored and evaluated, especially the user's activity (in particular, which pages have been visited and which elements have been clicked on) as well as device and browser information (in particular, the IP address and the operating system).
We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Pinterest.
Further information on the processing of data by Pinterest can be found here:
https://policy.pinterest.com/de/privacy-policy

  1. Purpose of data processing

    The use of Pinterest serves to improve the user-friendliness of our site.
  2. Legal basis for the processing of personal data

    The legal basis for the processing of the users' personal data is, in principle, the user's consent in accordance with Art. 6 para. 1 p.1 lit. a DSGVO.
  3. Duration of storage

    Your personal information will be stored for as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.
  4. Revocation and removal options

    You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
    You can prevent the collection as well as the processing of your personal data by Pinterest by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery(https://www.ghostery.com) in your browser.
    For more information on objection and removal options vis-à-vis Pinterest, please visit:
    https://policy.pinterest.com/de/privacy-policy

Use of Google Tag Manager

1. Scope of the processing of personal data

We use the Google Tag Manager(https://www.google.com/intl/de/tagmanager/) of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google). With the Google Tag Manager, tags of Google's services and of third-party providers can be managed and bundled and embedded on an online presence. Tags are small code elements on an online presence that are used, among other things, to measure visitor numbers and behavior, to record the impact of online advertising and social channels, to use remarketing and targeting, and to test and optimize online presences. When a user visits the online presence, the current tag configuration is sent to the user's browser. It contains instructions on which tags to trigger. Google Tag Manager takes care of triggering other tags, which in turn may collect data. Information on this can be found in the passages on the use of the corresponding services in this privacy policy. Google Tag Manager does not access this data.
Further information on Google Tag Manager can be found at https://www.google.com/intl/de/tagmanager/faq.html and in Google's privacy policy: https://policies.google.com/privacy?hl=de.

  1. Purpose of data processing

    The purpose of the processing of personal data is the collected and clear management and efficient integration of third-party services.
  2. Legal basis for the processing of personal data

    The legal basis for the processing of the users' personal data is, in principle, the user's consent in accordance with Art. 6 para. 1 p.1 lit. a DSGVO.
  3. Duration of storage

    Your personal information will be stored for as long as necessary to fulfill the purposes described in this privacy policy or as required by law. Advertising data in server logs is anonymized by Google deleting parts of the IP address and cookie information after 9 and 18 months, respectively, according to Google.
  4. Revocation and removal options

    You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
    You can prevent the collection as well as the processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery(https://www.ghostery.com) in your browser.
    You can also prevent the collection of data generated by the cookie and related to your use of the online presence (including your IP address) to Google, as well as the processing of this data by Google, by downloading and installing the browser plugin available at the following link:
    https://tools.google.com/dlpage/gaoptout?hl=de
    With the following link, you can deactivate the use of your personal data by Google:
    https://adssettings.google.de
    For more information on objection and removal options against Google, please visit:
    https://policies.google.com/privacy?gl=DE&hl=de.

Use of Klaviyo

  1. Scope of the processing of personal data

We use functionalities of the marketing plugin Klaviyo of Klaviyo, Inc, 225 Franklin Street, Boston, MA, 02110, United States (hereinafter: Klaviyo). Klaviyo is a marketing and analysis tool that is used to merge different marketing channels.

Cookies from Klaviyo are stored on your terminal device in the process.

The following personal data is thereby processed by Klaviyo:

  • Name
  • Company name
  • Address
  • Telephone number
  • E-mail address
  • Credit card information
  • Bank information
  • Demographic information
  • Purchase history
  • Interactions with marketing content
  • IP address
  • Operating system and browser
  • Timing of user interactions
  • User behavior
  • Interactions with marketing emails
  • Referrer URLs
  • Search terms

In the process, data is transferred to Klaviyo's servers in the United States. Klaviyo has used standard contractual clauses as part of the order processing agreement to enable the transfer of personal data from the EU and EEA to Klaviyo locations outside the EU and EEA. You can find Klaviyo's standard contractual clauses at:

https://www.klaviyo.com/privacy/dpa

Other recipients of the data are:

  • Payment service provider
  • Technical support
  • Web hoster
  • Mail hoster
  • Survey and market research institutions
  • Advertising and marketing partners
  • Anal service provider

For more information about Klaviyo's data processing, please click here:

https://www.klaviyo.com/privacy/policy

  1. Purpose of data processing

The use of Klaviyo serves us to send newsletters.

  1. Legal basis for the processing of personal data

The legal basis for the processing of users' personal data is basically the user's consent in accordance with Art. 6 para. 1 p.1 lit. a DSGVO.

  1. Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, e.g. for tax and accounting purposes.

  1. Possibility of revocation and removal

You can revoke your consent to the storage of data, as well as its use for sending the newsletter by Klaviyo at any time. You can exercise your revocation by sending an e-mail to the e-mail address mentioned under point 1 of this privacy policy or by clicking on the link provided in each newsletter.

This privacy policy was created with the support of DataGuard.