The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data by which you can be personally identified. For detailed information on the subject of data protection, please refer to our privacy policy set out below this text.
Who is responsible for the data collection on this website?
Data processing on this website is carried out by the website operator. You can find their contact details in the section “Information on the controller” in this privacy policy.
How do we collect your data?
Your data is collected in part when you provide it to us. This may, for example, be data that you enter into a contact form.
Other data is collected automatically or with your consent when you visit the website through our IT systems. This is primarily technical data (for example internet browser, operating system or the time the page was accessed). This data is collected automatically as soon as you enter this website.
What do we use your data for?
Some of the data is collected to ensure the website is provided without errors. Other data may be used to analyse your user behaviour. Insofar as contracts can be concluded or initiated via the website, the transmitted data is also processed for contract offers, orders or other order enquiries.
What rights do you have regarding your data?
You have the right at any time to receive information free of charge about the origin, recipients and purpose of your stored personal data. You also have a right to request the correction or deletion of this data. If you have given consent to data processing, you can revoke this consent at any time with effect for the future. In addition, you have the right, under certain circumstances, to request the restriction of the processing of your personal data. Furthermore, you have a right to lodge a complaint with the competent supervisory authority.
You can contact us at any time regarding this and any other questions on the subject of data protection.
Analysis tools and third-party tools
When you visit this website, your browsing behaviour may be evaluated statistically. This is done primarily with so-called analysis programs.
Detailed information about these analysis programs can be found in the following privacy policy.
We host the content of our website with the following provider:
This website is hosted externally. The personal data collected on this website is stored on the servers of the host or hosts. This may primarily involve IP addresses, contact requests, meta and communication data, contract data, contact data, names, website accesses and other data generated via a website.
External hosting is carried out for the purpose of fulfilling the contract with our potential and existing customers (Art. 6(1)(b) GDPR) and in the interest of a secure, fast and efficient provision of our online services by a professional provider (Art. 6(1)(f) GDPR). Insofar as corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TDDDG, insofar as the consent covers the storage of cookies or access to information in the user’s device (for example device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.
Our host or hosts will only process your data insofar as this is necessary to fulfil their performance obligations and will follow our instructions with regard to this data.
We use the following host:
Hostinger International Ltd.
61 Lordou Vironos Street
Lumiel Building, 4th floor
6023 Larnaca
Cyprus
Order processing
We have concluded an order processing agreement (AVV) for the use of the above service. This is a contract required by data protection law, which ensures that the provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
When you use this website, various items of personal data are collected. Personal data is data by which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We would like to point out that data transmission over the internet (for example when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
The controller responsible for data processing on this website is:
Taunus Timepieces GmbH
Rheinstraße 34
65185 Wiesbaden
Ramazan Balci
Managing Director
Phone: +4915227616711
E-mail: r.balci@taunus-timepieces.de
The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (for example names, e-mail addresses or similar).
Unless a more specific storage period has been stated within this privacy policy, your personal data will remain with us until the purpose for the data processing no longer applies. If you assert a justified request for deletion or revoke consent to data processing, your data will be deleted, unless we have other legally permissible reasons for storing your personal data (for example retention periods under tax or commercial law); in the latter case, deletion will take place after these reasons cease to apply.
Insofar as you have consented to data processing, we process your personal data on the basis of Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, insofar as special categories of data pursuant to Art. 9(1) GDPR are processed. In the case of express consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Art. 49(1)(a) GDPR. Insofar as you have consented to the storage of cookies or to access to information in your device (for example via device fingerprinting), data processing is additionally carried out on the basis of Section 25(1) TDDDG. Consent can be revoked at any time. If your data is required for the fulfilment of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6(1)(b) GDPR. Furthermore, we process your data insofar as it is required to fulfil a legal obligation, on the basis of Art. 6(1)(c) GDPR. Data processing may also be carried out on the basis of our legitimate interest pursuant to Art. 6(1)(f) GDPR. Information on the relevant legal bases in each individual case is provided in the following paragraphs of this privacy policy.
Among other things, we use tools from companies based in third countries that are not secure under data protection law, as well as US tools whose providers are not certified under the EU-US Data Privacy Framework (DPF). If these tools are active, your personal data may be transferred to and processed in these countries. We would like to point out that in third countries that are not secure under data protection law, a level of data protection comparable to that in the EU cannot be guaranteed.
We would like to point out that the USA, as a secure third country, generally has a level of data protection comparable to that of the EU. A data transfer to the USA is therefore permissible if the recipient holds a certification under the EU-US Data Privacy Framework (DPF) or has suitable additional guarantees. Information on transfers to third countries, including the data recipients, can be found in this privacy policy.
As part of our business activities, we work together with various external bodies. In some cases, this also requires the transfer of personal data to these external bodies. We only pass on personal data to external bodies if this is necessary in the context of fulfilling a contract, if we are legally obliged to do so (for example passing on data to tax authorities), if we have a legitimate interest pursuant to Art. 6(1)(f) GDPR in passing on the data, or if another legal basis permits the data transfer. When using processors, we only pass on personal data of our customers on the basis of a valid order processing agreement. In the case of joint processing, a joint processing agreement is concluded.
Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. The lawfulness of the data processing carried out until the revocation remains unaffected by the revocation.
IF DATA PROCESSING IS CARRIED OUT ON THE BASIS OF ART. 6(1)(E) OR (F) GDPR, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR THE PROCESSING SERVES THE ASSERTION, EXERCISE OR DEFENCE OF LEGAL CLAIMS (OBJECTION PURSUANT TO ART. 21(1) GDPR).
IF YOUR PERSONAL DATA IS PROCESSED FOR THE PURPOSE OF DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING; THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS CONNECTED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT ADVERTISING (OBJECTION PURSUANT TO ART. 21(2) GDPR).
In the event of breaches of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the member state of their habitual residence, their place of work or the place of the alleged breach. This right to lodge a complaint applies without prejudice to any other administrative or judicial remedy.
You have the right to have data that we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only take place insofar as it is technically feasible.
Within the framework of the applicable statutory provisions, you have the right at any time to free information about your stored personal data, its origin and recipients and the purpose of the data processing and, if applicable, a right to correction or deletion of this data. You can contact us at any time regarding this and any other questions on the subject of personal data.
You have the right to request the restriction of the processing of your personal data. You can contact us at any time regarding this. The right to restriction of processing exists in the following cases:
If you have restricted the processing of your personal data, this data may, apart from being stored, only be processed with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the European Union or a member state.
For security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
If, after concluding a contract subject to a charge, there is an obligation to transmit your payment data to us (for example account number in the case of a direct debit authorisation), this data is required for payment processing.
Payment transactions using common means of payment (Visa/MasterCard, direct debit) are carried out exclusively via an encrypted SSL or TLS connection. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
With encrypted communication, your payment data that you transmit to us cannot be read by third parties.
The use of contact data published within the framework of the legal notice obligation to send advertising and information material not expressly requested is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, for example by spam e-mails.
Our web pages use so-called “cookies”. Cookies are small data packets and do not cause any damage to your device. They are stored on your device either temporarily for the duration of a session (session cookies) or permanently (permanent cookies). Session cookies are automatically deleted after your visit ends. Permanent cookies remain stored on your device until you delete them yourself or until they are automatically deleted by your web browser.
Cookies can originate from us (first-party cookies) or from third-party companies (so-called third-party cookies). Third-party cookies enable the integration of certain services from third-party companies within web pages (for example cookies for processing payment services).
Cookies have various functions. Numerous cookies are technically necessary, since certain website functions would not work without them (for example the shopping cart function or the display of videos). Other cookies can be used to evaluate user behaviour or for advertising purposes.
Cookies that are required to carry out the electronic communication process, to provide certain functions you have requested (for example for the shopping cart function) or to optimise the website (for example cookies to measure the web audience) (necessary cookies) are stored on the basis of Art. 6(1)(f) GDPR, unless another legal basis is stated. The website operator has a legitimate interest in the storage of necessary cookies for the technically error-free and optimised provision of its services. Insofar as consent to the storage of cookies and comparable recognition technologies has been requested, processing is carried out exclusively on the basis of this consent (Art. 6(1)(a) GDPR and Section 25(1) TDDDG); consent can be revoked at any time.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when the browser is closed. If cookies are deactivated, the functionality of this website may be limited.
Insofar as further cookies and services are used on this website, you can find this in this privacy policy.
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
This data is not merged with other data sources.
This data is collected on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimisation of its website; for this purpose, the server log files must be collected.
If you send us enquiries via the contact form, your details from the enquiry form, including the contact data you provide there, will be stored by us for the purpose of processing the enquiry and in case of follow-up questions. We do not pass on this data without your consent.
This data is processed on the basis of Art. 6(1)(b) GDPR, insofar as your enquiry is connected with the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective handling of the enquiries addressed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if this has been requested; consent can be revoked at any time.
The data you enter in the contact form will remain with us until you request its deletion, revoke your consent to storage, or the purpose for storing the data no longer applies (for example after your enquiry has been processed). Mandatory statutory provisions, in particular retention periods, remain unaffected.
We use AI-supported services and/or applications on our website.
We use artificial intelligence (AI) on our website as follows: the AI is used to provide updates on the order status, to provide an order confirmation, to send a payment receipt or an invoice, including by e-mail.
If you interact with or come into contact with elements on our website in which artificial intelligence is used (for example a chatbot), your entries, including metadata, are processed in order to generate a suitable answer or reaction.
The use of these AI-supported functions is carried out on the basis of Art. 6(1)(f) GDPR. We have a legitimate interest in using modern technologies on our website in order to improve our performance and services and to identify new potential from the interaction with our customers. If consent is required, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TDDDG. You can revoke your consent at any time. Further information on the data processing of this tool or service can be found at the corresponding point in this privacy policy.
If you contact us by e-mail, telephone or fax, your enquiry, including all personal data arising from it (name, enquiry), will be stored and processed by us for the purpose of handling your request. We do not pass on this data without your consent.
This data is processed on the basis of Art. 6(1)(b) GDPR, insofar as your enquiry is connected with the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective handling of the enquiries addressed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if this has been requested; consent can be revoked at any time.
The data you send us via contact enquiries will remain with us until you request its deletion, revoke your consent to storage, or the purpose for storing the data no longer applies (for example after your request has been processed). Mandatory statutory provisions, in particular statutory retention periods, remain unaffected.
Among other things, we use the instant messaging service WhatsApp for communication with our customers and other third parties. The provider is WhatsApp Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.
Communication takes place via end-to-end encryption (peer-to-peer), which prevents WhatsApp or other third parties from gaining access to the content of the communication. However, WhatsApp does gain access to metadata generated in the course of the communication process (for example sender, recipient and time). We also point out that, according to its own statement, WhatsApp shares personal data of its users with its parent company Meta, based in the USA. Further details on data processing can be found in the WhatsApp privacy policy at: https://www.whatsapp.com/legal/#privacy-policy.
The use of WhatsApp is carried out on the basis of our legitimate interest in the fastest and most effective possible communication with customers, prospective customers and other business and contractual partners (Art. 6(1)(f) GDPR). Insofar as corresponding consent has been requested, data processing is carried out exclusively on the basis of consent; this can be revoked at any time with effect for the future.
The communication content exchanged between you and us on WhatsApp will remain with us until you request its deletion, revoke your consent to storage, or the purpose for storing the data no longer applies (for example after your enquiry has been processed). Mandatory statutory provisions, in particular retention periods, remain unaffected.
The company holds a certification under the EU-US Data Privacy Framework (DPF). Further information is available at: https://www.dataprivacyframework.gov/participant/7735.
We use WhatsApp in the “WhatsApp Business” variant. The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.whatsapp.com/legal/business-data-transfer-addendum.
We have set up our WhatsApp accounts so that there is no automatic data synchronisation with the address book on the smartphones in use. We have concluded an order processing agreement (AVV) with the above provider.
Elements of the social network Facebook are integrated on this website. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. However, according to Facebook, the collected data is also transferred to the USA and other third countries.
The use of this service is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. Consent can be revoked at any time. Insofar as personal data is collected on our website and forwarded to Facebook with the help of the tool described here, we and Meta Platforms Ireland Limited are jointly responsible for this data processing (Art. 26 GDPR). The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Further information: https://de-de.facebook.com/privacy/explanation. The company holds a certification under the EU-US Data Privacy Framework (DPF): https://www.dataprivacyframework.gov/participant/4452.
Functions of the service X (formerly Twitter) are integrated on this website. These functions are offered by the parent company X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. For the data processing of persons living outside the USA, the branch Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland, is responsible.
The use of this service is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. Consent can be revoked at any time. The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Further information: https://x.com/de/privacy. DPF certification: https://www.dataprivacyframework.gov/participant/2710.
Functions of the service Instagram are integrated on this website. These functions are offered by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.
The use of this service is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. Consent can be revoked at any time. Insofar as personal data is collected on our website and forwarded to Facebook or Instagram with the help of the tool described here, we and Meta Platforms Ireland Limited are jointly responsible for this data processing (Art. 26 GDPR). The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Further information: https://privacycenter.instagram.com/policy/. DPF certification: https://www.dataprivacyframework.gov/participant/4452.
This website uses elements of the LinkedIn network. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.
The use of this service is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. Consent can be revoked at any time. The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Further information: https://www.linkedin.com/legal/privacy-policy. DPF certification: https://www.dataprivacyframework.gov/participant/5448.
On this website we use elements of the social network Pinterest, which is operated by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.
The use of this service is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. Consent can be revoked at any time. According to Pinterest, this data transfer is based on the standard contractual clauses of the EU Commission. Further information: https://policy.pinterest.com/de/privacy-policy. DPF certification: https://www.dataprivacyframework.gov/participant/4203.
We use Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager itself does not create user profiles, does not store cookies and does not carry out any independent analyses. However, it records your IP address, which may also be transferred to Google’s parent company in the United States. Its use is carried out on the basis of Art. 6(1)(f) GDPR. Insofar as corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TDDDG. Consent can be revoked at any time. DPF certification: https://www.dataprivacyframework.gov/participant/5780.
This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics enables the website operator to analyse the behaviour of website visitors. Google Analytics uses technologies that enable the recognition of the user for the purpose of analysing user behaviour (for example cookies or device fingerprinting). The information collected by Google is usually transferred to a Google server in the USA and stored there.
The use of this service is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. Consent can be revoked at any time. The data transfer to the USA is based on the standard contractual clauses of the EU Commission: https://business.safety.google/adscontrollerterms/sccs/. DPF certification: https://www.dataprivacyframework.gov/participant/5780.
IP anonymisation: Google Analytics IP anonymisation is activated. As a result, your IP address is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before it is transmitted to the USA.
Google Signals: We use Google Signals. When you visit our website, Google Analytics records, among other things, your location, search history and YouTube history as well as demographic data. This data can be used for personalised advertising with the help of Google Signals.
Order processing: We have concluded an order processing agreement with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
Google Analytics e-commerce measurement: This website uses the “e-commerce measurement” function of Google Analytics. This records information such as orders placed, average order values, shipping costs and the time from viewing to purchasing a product.
We use the marketing tool Evalanche. The provider is SC-Networks GmbH, Würmstraße 4, 82319 Starnberg. Evalanche is certified according to the internationally recognised IT security standard ISO 27001. Insofar as consent has been obtained, use is carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25 TDDDG; otherwise on the basis of Art. 6(1)(f) GDPR. We have concluded an order processing agreement (AVV).
The website operator uses Google Ads. Google Ads is an online advertising program of Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Use is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. The data transfer to the USA is based on the standard contractual clauses. DPF certification: https://www.dataprivacyframework.gov/participant/5780.
This website uses the functions of Google Ads Remarketing. The provider is Google Ireland Limited. With Google Ads Remarketing, we can assign people who interact with our online services to certain target groups in order to subsequently show them interest-based advertising. Use is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. To form target groups, we use, among other things, customer matching, whereby we pass on certain customer data (for example e-mail addresses) to Google.
This website uses Google Conversion Tracking. The provider is Google Ireland Limited. Use is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. DPF certification: https://www.dataprivacyframework.gov/participant/5780.
This website uses the Meta visitor action pixel for conversion measurement. The provider is Meta Platforms Ireland Limited, Merrion Road Dublin 4, Dublin, D04 X2K5, Ireland. Use is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. We use the advanced matching function within the Meta pixel. The data transfer to the USA is based on the standard contractual clauses. DPF certification: https://www.dataprivacyframework.gov/participant/4452.
We have integrated the Meta Conversion API on this website. The provider is Meta Platforms Ireland Limited. The Meta Conversion API enables us to record the interactions of website visitors with our website and pass them on to Meta. Use is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. We have concluded an order processing agreement (AVV). DPF certification: https://www.dataprivacyframework.gov/participant/4452.
We use Meta Custom Audiences. The provider is Meta Platforms Ireland Limited. Insofar as you grant us consent, we will transmit your data to Meta, with which Meta can display suitable advertising to you. Use is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. DPF certification: https://www.dataprivacyframework.gov/participant/4452.
We have integrated the TikTok Pixel on this website. The provider is TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland. Use is carried out on the basis of your consent pursuant to Art. 6(1)(a) GDPR and Section 25(1) TDDDG. The data transfer to third countries is based on the standard contractual clauses: https://www.tiktok.com/legal/page/eea/privacy-policy/de-DE. We have concluded an order processing agreement (AVV).
This website uses the Insight Tag from LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. Insofar as consent has been obtained, use is carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25 TDDDG; otherwise on the basis of Art. 6(1)(f) GDPR. You can object to the analysis of usage behaviour and targeted advertising by LinkedIn here: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out. We have concluded an order processing agreement (AVV).
We have integrated the Pinterest Tag on this website. The provider is Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland. Insofar as consent has been obtained, use is carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25 TDDDG; otherwise on the basis of Art. 6(1)(f) GDPR. We have concluded an order processing agreement (AVV). DPF certification: https://www.dataprivacyframework.gov/participant/4203.
This website integrates videos from the YouTube website. The operator is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. We use YouTube in extended data protection mode. The use of YouTube is carried out in the interest of an appealing presentation of our online services (Art. 6(1)(f) GDPR). Insofar as corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TDDDG. DPF certification: https://www.dataprivacyframework.gov/participant/5780.
This site uses so-called Google Fonts, which are provided by Google, for the uniform display of fonts. The Google Fonts are installed locally. There is no connection to Google servers in this process. Further information: https://developers.google.com/fonts/faq and https://policies.google.com/privacy?hl=de.
This website uses web fonts from Adobe for the uniform display of certain fonts. The provider is Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA (Adobe). The storage and analysis of the data is carried out on the basis of Art. 6(1)(f) GDPR. Insofar as corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TDDDG. DPF certification: https://www.dataprivacyframework.gov/participant/5660.
This site uses the map service Google Maps. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA. Use is carried out in the interest of an appealing presentation of our online services (Art. 6(1)(f) GDPR). Insofar as corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TDDDG. DPF certification: https://www.dataprivacyframework.gov/participant/5780.
We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on this website. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. The purpose of reCAPTCHA is to check whether the data entry on this website (for example in a contact form) is carried out by a human or by an automated program. The reCAPTCHA analyses run entirely in the background. The storage and analysis of the data is carried out on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in protecting its web services against abusive automated spying and against SPAM. Insofar as corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TDDDG. DPF certification: https://www.dataprivacyframework.gov/participant/5780.
We collect, process and use personal customer and contract data for the establishment, content structuring and modification of our contractual relationships. We only collect, process and use personal data about the use of this website (usage data) insofar as this is necessary to enable the user to use the service or to bill for it. The legal basis for this is Art. 6(1)(b) GDPR. The collected customer data is deleted after completion of the order or termination of the business relationship and expiry of any existing statutory retention periods. Statutory retention periods remain unaffected.
When you order goods from us, we pass on your personal data to the transport company entrusted with the delivery and to the payment service provider commissioned with the payment processing. Only such data is released as the respective service provider needs to fulfil its task. The legal basis for this is Art. 6(1)(b) GDPR. If you have given corresponding consent pursuant to Art. 6(1)(a) GDPR, we will pass on your e-mail address to the transport company entrusted with the delivery so that it can inform you by e-mail about the shipping status of your order; you can revoke your consent at any time.
We integrate payment services from third-party companies on our website. When you make a purchase from us, your payment data (for example name, payment amount, account details, credit card number) is processed by the payment service provider for the purpose of payment processing. The respective contractual and data protection provisions of the respective providers apply to these transactions. The use of the payment service providers is carried out on the basis of Art. 6(1)(b) GDPR (contract processing) and in the interest of the smoothest, most convenient and most secure payment process possible (Art. 6(1)(f) GDPR). Insofar as your consent is requested for certain actions, Art. 6(1)(a) GDPR is the legal basis; consent can be revoked at any time with effect for the future.
We use the following payment services / payment service providers within the framework of this website:
Apple Pay
The provider of the payment service is Apple Inc., Infinite Loop, Cupertino, CA 95014, USA. Apple’s privacy policy can be found at: https://www.apple.com/legal/privacy/de-ww/.
Google Pay
The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google’s privacy policy can be found here: https://policies.google.com/privacy.
Stripe
The provider for customers within the EU is Stripe Payments Europe, Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland (hereinafter “Stripe”). The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details: https://stripe.com/de/privacy and https://stripe.com/de/guides/general-data-protection-regulation.
Sofortüberweisung (instant bank transfer)
The provider of this payment service is Sofort GmbH, Theresienhöhe 12, 80339 Munich (hereinafter “Sofort GmbH”). With the help of the “Sofortüberweisung” procedure, we receive a payment confirmation from Sofort GmbH in real time. Details: https://www.klarna.com/sofort/.
American Express
The provider of this payment service is American Express Europe S.A., Theodor-Heuss-Allee 112, 60486 Frankfurt am Main, Germany. The data transfer to the USA is based on the Binding Corporate Rules. Details: https://www.americanexpress.com/de-de/firma/legal/datenschutz-center/online-datenschutzerklarung/.
Mastercard
The provider of this payment service is Mastercard Europe SA, Chaussée de Tervuren 198A, B-1410 Waterloo, Belgium. The data transfer to the USA is based on the Binding Corporate Rules. Details: https://www.mastercard.de/de-de/datenschutz.html.
VISA
The provider of this payment service is Visa Europe Services Inc., London Branch, 1 Sheldon Square, London W2 6TT, United Kingdom. The United Kingdom is considered a third country that is secure under data protection law. Details: https://www.visa.de/nutzungsbedingungen/visa-privacy-center.html.
We have integrated Google Drive on this website. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google Drive enables us to integrate an upload area on our website. The use of Google Drive is carried out on the basis of Art. 6(1)(f) GDPR. Insofar as corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR; consent can be revoked at any time. We have concluded an order processing agreement (AVV). DPF certification: https://www.dataprivacyframework.gov/participant/5780.