Privacy policy

1) Introduction and Contact Details of the Controller

1.1 We are pleased that you are visiting our website and thank you for your interest. In the following, we inform you about the handling of your personal data when using our website. Personal data means all data by which you can be personally identified.

1.2 The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Jaimie Jacobs GmbH, Widenmayerstr. 23, 80538 Munich, Germany, Tel.: +49 7931 968 00 96, E-mail: info@jaimiejacobs.com. The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

2) Data Collection When Visiting Our Website

2.1 When you use our website merely for informational purposes, i.e. if you do not register or otherwise transmit information to us, we only collect the data that your browser transmits to the page server (so-called “server log files”). When you access our website, we collect the following data which is technically necessary for us to display the website to you:

Our visited website
Date and time of access
Amount of data sent in bytes
Source/referrer from which you reached the page
Browser used
Operating system used
IP address used (if applicable: in anonymized form)

The processing is carried out pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. The data will not be passed on or otherwise used. However, we reserve the right to subsequently review the server log files if there are concrete indications of unlawful use.

2.2 For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the controller), this website uses SSL or TLS encryption. You can recognize an encrypted connection by the string “https://” and the lock symbol in your browser line.

3) Hosting & Content Delivery Network

3.1 Shopify

For hosting our website and displaying the page content, we use the system of the following provider: Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland (“Shopify”).

Data are also transferred to: Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada.

All data collected on our website are processed on the provider’s servers. We have concluded a data processing agreement with the provider which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

In the case of a transfer of data to Canada, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

3.2 Cloudflare

We use a content delivery network of the following provider: Cloudflare Inc., 101 Townsend St, San Francisco, CA 94107, USA.

This service enables us to deliver large media files such as graphics, page content or scripts faster via a network of regionally distributed servers. The processing is carried out to safeguard our legitimate interest in improving the stability and functionality of our website pursuant to Art. 6(1)(f) GDPR. We have concluded a data processing agreement with the provider which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

For data transfers to the USA, the provider has joined the EU-U.S. Data Privacy Framework, which, on the basis of an adequacy decision by the European Commission, ensures compliance with the European level of data protection.

4) Cookies

In order to make visiting our website attractive and to enable the use of certain functions, we use cookies, i.e. small text files that are stored on your terminal device. Some of these cookies are automatically deleted after you close your browser (so-called “session cookies”), while others remain stored on your terminal device for a longer period and enable the storage of page settings (so-called “persistent cookies”). In the latter case, you can find the storage duration in the overview of your web browser’s cookie settings.

If personal data are also processed by individual cookies used by us, the processing is carried out pursuant to Art. 6(1)(b) GDPR either for the performance of a contract, pursuant to Art. 6(1)(a) GDPR in the case of consent having been given, or pursuant to Art. 6(1)(f) GDPR to safeguard our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the site visit.

You can set your browser so that you are informed about the setting of cookies and can decide individually whether to accept them or exclude the acceptance of cookies for certain cases or in general.

Please note that if cookies are not accepted, the functionality of our website may be restricted.

5) Contact

5.1 Loox

For review reminders, we use the services of the following provider: Loox Online Ltd., Rehov Har Sinai 2, 6581602 Tel Aviv-Yafo, Israel.

On the basis of your express consent pursuant to Art. 6(1)(a) GDPR only, we transmit your e-mail address and, if applicable, other customer data to the provider so that it may contact you by e-mail with a review reminder.

You may revoke your consent at any time with effect for the future with respect to us or the provider.

We have concluded a data processing agreement with the provider which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

In the case of a transfer of data to the provider’s location, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

5.2 When contacting us (e.g. via contact form or e-mail), personal data are processed solely for the purpose of handling and responding to your request and only to the extent necessary for that purpose.

The legal basis for processing these data is our legitimate interest in responding to your request pursuant to Art. 6(1)(f) GDPR. If your contact aims at concluding a contract, the additional legal basis for processing is Art. 6(1)(b) GDPR. Your data will be deleted once it can be inferred from the circumstances that the matter concerned has been conclusively clarified and provided that no statutory retention obligations preclude deletion.

6) Data Processing When Opening a Customer Account

Pursuant to Art. 6(1)(b) GDPR, personal data are collected and processed to the extent necessary if you provide them to us when opening a customer account. The data required for opening the account are indicated in the input mask of the corresponding form on our website.

Deletion of your customer account is possible at any time and may be effected by sending a message to the above-mentioned address of the controller. After deletion of your customer account, your data will be deleted provided that all contracts concluded via the account have been fully processed, no statutory retention periods stand in the way and we do not continue to have a legitimate interest in further storage.

7) Use of Customer Data for Direct Advertising

7.1 Subscription to our e-mail newsletter

If you subscribe to our e-mail newsletter, we will regularly send you information about our offers. The only mandatory information for sending the newsletter is your e-mail address. The provision of further data is voluntary and is used so that we may address you personally. For newsletter delivery, we use the so-called double opt-in procedure, ensuring that you will only receive newsletters after you have expressly confirmed your consent to receive them by clicking a verification link sent to the e-mail address provided.

By activating the confirmation link, you consent to the use of your personal data pursuant to Art. 6(1)(a) GDPR. In this context, we store the IP address entered by your Internet Service Provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your e-mail address at a later date. The data collected by us when you register for the newsletter are used strictly for the specified purpose.

You may unsubscribe from the newsletter at any time via the link provided for this purpose in the newsletter or by sending a corresponding message to the controller named at the beginning. After cancellation, your e-mail address will be deleted immediately from our newsletter distribution list unless you have expressly consented to further use of your data or we reserve the right to use data beyond this scope, which is legally permitted and about which we inform you in this statement.

7.2 Newsletter dispatch to existing customers

If you have provided us with your e-mail address when purchasing goods or services, we reserve the right to send you regular offers for similar goods or services from our range by e-mail. In this respect, we do not need to obtain separate consent from you pursuant to Section 7(3) UWG (German Act Against Unfair Competition). The processing of data in this respect is carried out solely on the basis of our legitimate interest in personalized direct advertising pursuant to Art. 6(1)(f) GDPR. If you initially objected to the use of your e-mail address for this purpose, no e-mail will be sent by us.

You are entitled to object at any time with effect for the future to the use of your e-mail address for the aforementioned advertising purpose by notifying the controller named at the beginning. Only transmission costs according to the basic rates will apply. Upon receipt of your objection, the use of your e-mail address for advertising purposes will be discontinued immediately.

7.3 Klaviyo

The sending of our e-mail newsletters and other advertising e-mail communications is carried out via this provider: Klaviyo, Inc., 125 Summer St., Ste 600, Boston, MA 02110, USA.

On the basis of our legitimate interest in effective and user-friendly e-mail marketing, we transmit the data provided by you upon registration pursuant to Art. 6(1)(f) GDPR to this provider so that it can carry out the e-mail dispatch on our behalf.

Subject to your express consent pursuant to Art. 6(1)(a) GDPR, the provider also performs statistical analysis of the success of e-mail campaigns by means of web beacons or counting pixels in the e-mails sent, which can measure opening rates and specific interactions with the content of the newsletter. Device information (e.g. time of access, IP address, browser type and operating system) is also collected and evaluated, but not combined with other data sets.

You may revoke your consent to e-mail tracking at any time with effect for the future.

We have concluded a data processing agreement with the provider which protects the data of our site visitors and prohibits disclosure to third parties.

7.4 Cart reminders by e-mail

If you abandon your purchase with us before completing the order, you may receive a one-time reminder by e-mail concerning the contents of your virtual shopping cart.

The only mandatory information for sending this reminder is your e-mail address. The provision of additional data is voluntary and may be used to address you personally. For e-mail dispatch, we use the so-called double opt-in procedure, ensuring that you receive a notification only after you have expressly confirmed your consent by clicking a verification link sent to the e-mail address provided.

By activating the confirmation link, you consent to the use of your personal data pursuant to Art. 6(1)(a) GDPR for the purpose of sending a cart reminder. In this context, we store the IP address entered by your Internet Service Provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your e-mail address at a later date. The data collected by us when you register for our e-mail notification service are used strictly for the specified purpose.

You may unsubscribe from cart reminders at any time by sending an appropriate message to the controller named at the beginning. After cancellation, your e-mail address will be deleted immediately from our dedicated distribution list unless you have expressly consented to further use of your data or we reserve the right to use data beyond this scope, which is legally permitted and about which we inform you in this statement.

8) Data Processing for Order Fulfilment

8.1 To the extent necessary for contract performance for delivery and payment purposes, the personal data collected by us are passed on pursuant to Art. 6(1)(b) GDPR to the commissioned transport company and the commissioned credit institution.

If, on the basis of a corresponding contract, we owe you updates for goods with digital elements or for digital products, we process the contact data you provided when placing the order in order to inform you personally within the scope of our statutory information obligations pursuant to Art. 6(1)(c) GDPR. Your contact data are used strictly for the purpose of communications concerning updates owed by us and are processed by us for that purpose only to the extent necessary for the respective information.

In order to process your order, we also work with the following service provider(s), who support us in whole or in part in the performance of concluded contracts. Certain personal data are transferred to these service providers in accordance with the following information.

8.2 Sendcloud

For shipping, we use the services of the following provider: Sendcloud GmbH, Fürstenrieder Str. 70, 80686 Munich.

Pursuant to Art. 6(1)(b) GDPR, we pass your data on exclusively for the purpose of processing your online order to the provider, who on our behalf prints shipping labels and transmits shipment data to the commissioned transport company. Data are transferred only to the extent actually necessary for processing.

On our behalf, the provider also sends shipping notifications and delivery status updates. For this purpose, pursuant to Art. 6(1)(f) GDPR and on the basis of our legitimate interest in effective and informative customer communication as well as transparent and reliable shipping processing in the customer’s interest after the parcel has been handed over, we transmit certain customer data (e-mail address, first and last name, and address) together with the tracking number to the provider.

The data are not disclosed by the provider to third parties and are used exclusively for the above-mentioned purpose. After shipment has been completed, the data are deleted by the provider.

We have concluded a data processing agreement with the provider which protects the data of our site visitors and prohibits disclosure to third parties.

8.3 Disclosure of personal data to shipping service providers

- Deutsche Post

As transport service provider, we use the following provider: Deutsche Post AG, Charles-de-Gaulle-Straße 20, 53113 Bonn, Germany.

We pass on your e-mail address and/or telephone number pursuant to Art. 6(1)(a) GDPR prior to delivery of the goods for the purpose of coordinating a delivery date or announcing delivery to the provider, provided that you gave your express consent in the ordering process. Otherwise, for the purpose of delivery we pass on only the name of the recipient and the delivery address to the provider pursuant to Art. 6(1)(b) GDPR. Disclosure takes place only to the extent necessary for the delivery of the goods. In this case, prior coordination of the delivery date with the provider or advance delivery notification is not possible.

The consent may be revoked at any time with effect for the future with respect to the controller named above or the provider.

- DHL

As transport service provider, we use the following provider: DHL Paket GmbH, Sträßchensweg 10, 53113 Bonn, Germany.

The consent may be revoked at any time with effect for the future with respect to the controller named above or the provider.

- DPD

As transport service provider, we use the following provider: DPD Deutschland GmbH, Wailandtstraße 1, 63741 Aschaffenburg, Germany.

The consent may be revoked at any time with effect for the future with respect to the controller named above or the provider.

- UPS

As transport service provider, we use the following provider: United Parcel Service Deutschland Inc. & Co. OHG, Görlitzer Straße 1, 41460 Neuss, Germany.

The consent may be revoked at any time with effect for the future with respect to the controller named above or the provider.

8.4 Use of payment service providers

- Apple Pay

If you choose the payment method “Apple Pay” of Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, payment processing is carried out via the “Apple Pay” function of your device running iOS, watchOS or macOS by debiting a payment card stored with Apple Pay. Apple Pay uses security functions integrated into the hardware and software of your device to protect your transactions. To authorize a payment, you must therefore enter a code previously set by you and verify the transaction using the “Face ID” or “Touch ID” function of your device.

For the purpose of payment processing, the information communicated by you during the ordering process together with information about your order are transmitted to Apple in encrypted form. Apple then encrypts this data again with a developer-specific key before the data are transmitted to the payment service provider of the payment card stored in Apple Pay for the purpose of carrying out the payment. The encryption ensures that only the website through which the purchase was made can access the payment data. After payment has been made, Apple sends the device account number and a transaction-specific dynamic security code to the originating website to confirm successful payment.

Insofar as personal data are processed in the context of the transmissions described, the processing is carried out exclusively for the purpose of payment processing pursuant to Art. 6(1)(b) GDPR.

Apple retains anonymized transaction data, including the approximate purchase amount, approximate date and approximate time, and whether the transaction was completed successfully. The anonymization excludes any personal reference. Apple uses the anonymized data to improve Apple Pay and other Apple products and services.

If you use Apple Pay on iPhone or Apple Watch to complete a purchase made via Safari on a Mac, the Mac and the authorization device communicate via an encrypted channel on Apple’s servers. Apple does not process or store any of this information in a format that allows your identity to be determined. You can disable the possibility of using Apple Pay on your Mac in the settings of your iPhone. Go to “Wallet & Apple Pay,” and deactivate “Allow Payments on Mac.”

Further information on data protection at Apple Pay can be found at the following Internet address: https://support.apple.com/de-de/HT203027

- Google Pay

If you choose the payment method “Google Pay” of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), payment processing is carried out via the “Google Pay” application on your mobile device running at least Android 4.4 (“KitKat”) and equipped with NFC by debiting a payment card stored with Google Pay or a payment system verified there (e.g. PayPal). To authorize a payment via Google Pay in excess of EUR 25, you must first unlock your mobile device using the verification method configured (e.g. facial recognition, password, fingerprint or pattern).

For the purpose of payment processing, the information communicated by you during the ordering process together with information about your order are transmitted to Google. Google then transfers your payment information stored in Google Pay in the form of a one-time transaction number to the originating website, with which the successful payment is verified. This transaction number contains no information about the actual payment details of your means of payment stored with Google Pay, but is created and transmitted as a one-time valid numerical token. In all transactions via Google Pay, Google acts merely as an intermediary for processing the payment transaction. The execution of the transaction takes place exclusively between the user and the originating website by debiting the means of payment stored with Google Pay.

Insofar as personal data are processed in the context of the transmissions described, the processing is carried out exclusively for the purpose of payment processing pursuant to Art. 6(1)(b) GDPR.

Google reserves the right, for each transaction carried out via Google Pay, to collect, store and evaluate certain transaction-specific information. This includes the date, time and amount of the transaction, merchant location and description, a description of the purchased goods or services provided by the merchant, photos you attached to the transaction, the name and e-mail address of the seller and buyer or sender and recipient, the payment method used, your description of the reason for the transaction and, where applicable, the offer associated with the transaction.

According to Google, this processing is carried out exclusively pursuant to Art. 6(1)(f) GDPR on the basis of the legitimate interest in proper accounting, verification of transaction data and optimization and maintenance of the Google Pay service.

Google also reserves the right to combine the processed transaction data with further information collected and stored by Google when using other Google services.

The terms of use for Google Pay can be found here:

https://payments.google.com/payments/apis-secure/u/0/get_legal_document?ldo=0&ldt=googlepaytos&ldl=de

Further information on data protection at Google Pay can be found at the following Internet address:
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de

- Klarna

On this website, one or more online payment methods of the following provider are available: Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden.

If you choose a payment method offered by the provider in which you pay in advance (e.g. credit card payment), your payment data communicated during the ordering process (including name, address, bank and card information, currency and transaction number) as well as information about the content of your order will be passed on pursuant to Art. 6(1)(b) GDPR. The disclosure of your data in this case takes place exclusively for the purpose of payment processing with the provider and only to the extent necessary for this purpose.

If you choose a payment method in which the provider pays in advance (e.g. invoice purchase, instalment purchase or direct debit), you will also be asked during the order process to provide certain personal data (first and last name, street, house number, postal code, city, date of birth, e-mail address, telephone number, and, if applicable, details of an alternative means of payment).

In order to safeguard our legitimate interest in determining the payment capacity of our customers, we transmit these data to the provider pursuant to Art. 6(1)(f) GDPR for the purpose of a credit assessment. On the basis of the personal data you provide as well as other data (such as shopping cart, invoice amount, order history, payment experiences), the provider checks whether the payment option selected by you can be granted with regard to the risk of payment default and/or claims default.

For the decision in the context of the application review, identity and credit information from the following credit agencies may also be taken into account in addition to provider-internal criteria pursuant to Art. 6(1)(f) GDPR:

https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies

The credit report may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. The calculation of score values includes, among other things, but not exclusively, address data.

You may object to this processing of your data at any time by sending a message to us or to the provider. However, the provider may remain entitled to process your personal data if this is necessary for contractual payment processing.

- PayPal

On this website, one or more online payment methods of the following provider are available: PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg.

If you choose a payment method offered by the provider in which you pay in advance, your payment data communicated during the ordering process (including name, address, bank and card information, currency and transaction number) as well as information about the content of your order will be passed on pursuant to Art. 6(1)(b) GDPR. The disclosure of your data in this case takes place exclusively for the purpose of payment processing with the provider and only to the extent necessary for this purpose.

If you choose a payment method in which we pay in advance, you will also be asked during the order process to provide certain personal data (first and last name, street, house number, postal code, city, date of birth, e-mail address, telephone number, and, if applicable, details of an alternative means of payment).

In order to safeguard our legitimate interest in determining your payment capacity in such cases, we transmit these data to the provider pursuant to Art. 6(1)(f) GDPR for the purpose of a credit assessment. On the basis of the personal data you provide as well as other data (such as shopping cart, invoice amount, order history, payment experiences), the provider checks whether the payment option selected by you can be granted with regard to the risk of payment default and/or claims default.

- Shopify Payments

On this website, one or more online payment methods of the following provider are available: Shopify International Limited, Victoria Buildings, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland.

8.5 Electronic withdrawal function for distance contracts

Consumers who conclude contracts on this website for which a statutory right of withdrawal exists have the possibility of declaring the withdrawal via an electronic withdrawal function in accordance with the applicable withdrawal provisions.

For providing the electronic withdrawal function, we use a solution of the following provider: Global-e Online Ltd., 9 Hapsagot St, Petah Tikva, 4951041, Israel.

When using the withdrawal function, in addition to details identifying the contract to be withdrawn, further personal information such as the consumer’s first and last name and e-mail address must be provided or confirmed.

This information is initially collected by the provider on the basis of our legitimate interest in a user-friendly, stable and process-optimized solution pursuant to Art. 6(1)(f) GDPR, then used to confirm receipt of the withdrawal declaration on our behalf by e-mail, and finally transmitted to us. We subsequently process the transmitted information for the proper handling of the withdrawal pursuant to Art. 6(1)(b) GDPR and Art. 6(1)(c) GDPR on the basis of our legal obligation to provide an electronic withdrawal function for paid consumer distance contracts.

The information collected by the provider is routinely deleted after final processing of a withdrawal, provided no statutory retention obligations prevent this.

We have concluded a data processing agreement with the provider which protects the data processed within the scope of the withdrawal function and prohibits unauthorized disclosure to third parties.

9) Online Marketing

9.1 Google AdSense

This website uses Google AdSense, an online advertising service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). Google AdSense uses so-called cookies, i.e. text files stored on your computer that enable an analysis of your use of the website. In addition, Google AdSense uses so-called “web beacons” (small invisible graphics) to collect information, through which simple actions such as visitor traffic on the website can be recorded, collected and evaluated. The information generated by the cookie and/or web beacon about your use of this website, including your IP address, is usually transmitted to and stored on a server of Google. This may also involve transmission to servers of Google LLC in the United States.

Google uses the information thus obtained to evaluate your use of the website with regard to AdSense advertisements. The IP address transmitted by your browser as part of Google AdSense is not merged with other Google data. The information collected by Google may be transferred to third parties where this is required by law and/or where third parties process such data on Google’s behalf.

All processing operations described above, in particular the reading of information on the terminal device used via cookies and/or web beacons, will only take place if you have given us your express consent in accordance with Art. 6(1)(a) GDPR. Without such consent, Google AdSense will not be used during your visit to the site.

You may revoke your consent at any time with effect for the future by deactivating this service in the “Cookie Consent Tool” provided on the website.

For data transfers to the United States, the provider has joined the EU-U.S. Data Privacy Framework, which, on the basis of an adequacy decision by the European Commission, ensures compliance with the European level of data protection.

Further information on Google’s privacy policy is available here: https://business.safety.google

9.2 Sovendus Sales

For our voucher offers, we use the services of the following provider: Sovendus GmbH, Hermann-Veit-Str. 6, 76135 Karlsruhe, Germany.

The provider operates a voucher network through which participating partner shops can place vouchers and distribute them to their customers. For this purpose, the data necessary for issuing your voucher are transmitted by us to the provider in encrypted form. The data are only transmitted to the provider once you have completed your purchase and clicked on the voucher banner. The transmission of this data serves exclusively to pre-fill the fields for issuing the voucher.

The processing of data described is carried out in accordance with Art. 6(1)(f) GDPR on the basis of our legitimate interest in advertising addressed to you by third parties, from whose benefits you may profit by redeeming the vouchers.

10) Web Analytics Services

10.1 Google Analytics 4

This website uses Google Analytics 4, a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), which enables an analysis of your use of our website. By default, when you visit the website, Google Analytics 4 sets cookies, which are stored as small text elements on your terminal device and collect certain information. The scope of this information also includes your IP address, which is however shortened by Google by the last digits in order to exclude direct personal identifiability.

The information is transmitted to Google servers and further processed there. Transmission to Google LLC in the United States may also occur.

Google uses the information collected on our behalf to evaluate your use of the website, to compile reports on website activity for us and to provide us with other services relating to website and internet usage. The shortened IP address transmitted by your browser within Google Analytics is not merged with other Google data. The data collected in connection with the use of Google Analytics 4 are stored for a period of two months and then deleted.

All processing operations described above, in particular the setting of cookies on the terminal device used, will only take place if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. Without your consent, Google Analytics 4 will not be used during your visit to the site. You may revoke your consent at any time with effect for the future. To exercise your right of withdrawal, please deactivate this service via the “Cookie Consent Tool” provided on the website.

We have concluded a data processing agreement with Google which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

Further legal information on Google Analytics 4 can be found at https://business.safety.google

Demographic characteristics
Google Analytics 4 uses the special function “demographic characteristics” and can thereby create statistics that make statements about the age, gender and interests of site visitors. This is done through the analysis of advertising and information from third-party providers. This enables target groups for marketing activities to be identified. However, the collected data cannot be assigned to a specific person and are deleted after a storage period of two months.

Google Signals
As an extension of Google Analytics 4, Google Signals may be used on this website to create cross-device reports. If you have activated personalized ads and linked your devices to your Google account, Google may, subject to your consent to the use of Google Analytics pursuant to Art. 6(1)(a) GDPR, analyze your usage behavior across devices and create database models, including for cross-device conversions. We do not receive any personal data from Google, only statistics. If you wish to stop cross-device analysis, you can deactivate the “Personalized Advertising” function in your Google account settings. Please follow the instructions on this page: https://support.google.com

Further information on Google Signals is available at the following link: https://support.google.com

User IDs
As an extension of Google Analytics 4, the “User IDs” function may be used on this website. If you have consented to the use of Google Analytics 4 pursuant to Art. 6(1)(a) GDPR, created an account on this website and log in on different devices with this account, your activities, including conversions, may be analyzed across devices.

10.2 Google Tag Manager

This website uses the “Google Tag Manager”, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: “Google”).

The Google Tag Manager provides a technical basis for bundling various web applications, including tracking and analytics services, and to calibrate, control and link them to conditions via a unified user interface. The Google Tag Manager itself does not store information on user devices or read them out. Nor does the service perform any independent data analyses. However, when a page is accessed, your IP address is transmitted to Google via the Google Tag Manager and may be stored there. Transmission to servers of Google LLC in the United States may also occur.

This processing will only take place if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. Without such consent, Google Tag Manager will not be used during your visit to the site. You may revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the “Cookie Consent Tool” provided on the website.

We have concluded a data processing agreement with the provider which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

Further legal information on Google Tag Manager can be found at https://business.safety.google

10.3 Microsoft Clarity

This website uses the web analytics service of the following provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.

Using cookies and/or comparable technologies (tracking pixels, web beacons, algorithms for reading terminal device and browser information), the service collects and stores pseudonymized visitor data, including information from the terminal device used such as IP address and browser information, in order to evaluate them for statistical analyses of user behavior on our website and create pseudonymized usage profiles. Among other things, this makes it possible to evaluate movement patterns (so-called heatmaps), which show the duration of page visits as well as interactions with page content (e.g. text input, scrolling, clicks and mouse-overs). Pseudonymization generally excludes direct personal identifiability. No merging with clear data collected by other means concerning you takes place.

All processing operations described above, in particular the reading or storage of information on the terminal device used, will only take place if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You may revoke your consent at any time with effect for the future by deactivating this service in the “Cookie Consent Tool” provided on the website.

We have concluded a data processing agreement with the provider which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

10.4 Shopify Analytics

This website uses the web analytics service of the following provider: Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland.

Data are also transferred to: Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada.

We have concluded a data processing agreement with the provider which protects the data of our site visitors and prohibits disclosure to third parties.

In the case of a transfer of data to Canada, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

11) Retargeting, Remarketing and Conversion Tracking

11.1 Meta Pixel

Within our online offering, we use the service “Meta Pixel” provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (“Meta”).

If a user clicks on one of our advertisements placed on Facebook and/or Instagram, the URL of our linked page is extended by a parameter using “Meta Pixel”. This URL parameter is then entered into the user’s browser by means of a cookie set by our linked page itself after redirection.

This enables Meta, on the one hand, to determine visitors to our online offering as a target group for the display of advertisements (so-called “Ads”). Accordingly, we use the service to display Facebook and/or Instagram ads placed by us only to users who have also shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) that we transmit to Meta (so-called “Custom Audiences”).

On the other hand, “Meta Pixel” can be used to determine whether users were redirected to our website after clicking on an advertisement and what actions they perform there (so-called “conversion tracking”).

The data collected are anonymous to us and therefore do not allow us to draw any conclusions about the identity of users. However, the data are stored and processed by Meta, which makes a link to the respective user profile possible and allows Meta to use the data for its own advertising purposes.

All processing operations described above, in particular the setting of cookies for reading information on the terminal device used, will only take place if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You may revoke your consent at any time with effect for the future by deactivating this service in the “Cookie Consent Tool” provided on the website.

We have concluded a data processing agreement with the provider which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

The information generated by Meta is usually transmitted to and stored on a server of Meta; in this context, transmission to servers of Meta Platforms Inc. in the United States may also occur.

11.2 Google Ads Remarketing

This website uses retargeting technology of the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.

For this purpose, Google sets a cookie in the browser of your terminal device, which automatically enables interest-based advertising on the basis of a pseudonymous cookie ID and the pages you have visited. Any further data processing will only take place if you have agreed to Google linking your internet and app browsing history with your Google account and to information from your Google account being used to personalize ads that you view on the web. If, in this case, you are logged into Google during your visit to our website, Google uses your data together with Google Analytics data to create and define target group lists for cross-device remarketing. For this purpose, your personal data are temporarily linked by Google with Google Analytics data in order to form target groups. In the context of the use of Google Ads Remarketing, personal data may also be transmitted to servers of Google LLC in the United States.

All processing operations described above, in particular the setting of cookies for reading information on the terminal device used, will only take place if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. Without such consent, retargeting technology will not be used during your visit to the site.

You may revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the “Cookie Consent Tool” provided on the website.

Details concerning the processing initiated by Google and Google’s handling of website data can be found here: https://policies.google.com

Further information on Google’s privacy policy can be found here: https://business.safety.google

11.3 Microsoft Advertising

This website uses retargeting technology of the following provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.

This enables us to address visitors to our websites in a targeted manner with personalized, interest-based advertising who have already shown interest in our shop and our products. The display of advertising material is based on a cookie-based analysis of previous and current user behavior.

In the case of retargeting technology, a cookie is stored on your computer or mobile device in order to collect pseudonymized data about your interests and thus adapt the advertising individually to the stored information. These cookies are small text files stored on your computer or mobile device. This allows you to be shown advertising that is very likely to correspond to your product and information interests.

All processing operations described above, in particular the setting of cookies for reading information on the terminal device used, will only take place if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. Without such consent, retargeting technology will not be used during your visit to the site.

You may revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the “Cookie Consent Tool” provided on the website.

11.4 OptiMonk

This website uses retargeting technology of the following provider: WebShop Marketing Ltd., 129 Kassai Street, Debrecen 4028, Hungary.

In the case of retargeting technology, a cookie is stored on your computer or mobile device in order to collect pseudonymous data about your interests and thus adapt the advertising individually to the stored information. These cookies are small text files stored on your computer or mobile device. This allows you to be shown advertising that is very likely to correspond to your product and information interests.

All processing operations described above, in particular the setting of cookies for reading information on the terminal device used, will only take place if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. Without such consent, retargeting technology will not be used during your visit to the site.

You may revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the “Cookie Consent Tool” provided on the website.

11.5 Google Ads Conversion Tracking without Cookies

This website uses the online advertising program “Google Ads” and, within Google Ads, the conversion tracking of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). We use Google Ads to draw attention to our attractive offers on external websites by means of advertising material (so-called Google Adwords). Based on data relating to advertising campaigns, we can determine how successful the individual advertising measures are. In this way, we pursue the interest of showing you advertising that is of interest to you, making our website more interesting for you and achieving a fair calculation of the advertising costs incurred.

This website uses Google Ads Conversion Tracking exclusively without the use of cookies, which means that the service never sets cookies on your terminal device.

Instead, the local storage of your browser is used to store an individual ID assigned by Google, which enables an analysis of your use of the website. For this purpose, certain user information is processed via the ID.

The ID is set when a user clicks on a Google Ads advertisement. If the user visits certain pages of this website, Google and we can recognize that the user clicked on the advertisement and was redirected to that page. Each Google Ads customer receives a different cookie. Cookies therefore cannot be tracked across the websites of Google Ads customers. The information thus obtained serves to create conversion statistics for Google Ads customers who have opted for conversion tracking. Customers learn the total number of users who clicked on their advertisement and were redirected to a page tagged with a conversion tracking tag.

However, you do not receive any information by which users can be personally identified. In the context of the use of Google Ads, personal data may also be transmitted to the servers of Google LLC in the United States. Details concerning the processing initiated by Google Ads Conversion Tracking and Google’s handling of website data can be found here: https://policies.google.com

Insofar as the collected information has a personal reference, the processing is carried out pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interest in the statistical evaluation of the success of our advertising campaigns.

Google’s privacy policy can be viewed here: https://business.safety.google

11.6 Google Ads Conversion Tracking

The conversion tracking cookie is set when a user clicks on a Google Ads advertisement. Cookies are small text files stored on your terminal device. These cookies usually expire after 30 days and are not used for personal identification. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognize that the user clicked on the advertisement and was redirected to that page. Each Google Ads customer receives a different cookie. Cookies therefore cannot be tracked across the websites of Google Ads customers. The information obtained by means of the conversion cookie serves to create conversion statistics for Google Ads customers who have opted for conversion tracking. Customers learn the total number of users who clicked on their advertisement and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information by which users can be personally identified. In the context of the use of Google Ads, personal data may also be transmitted to the servers of Google LLC in the United States.

Details concerning the processing initiated by Google Ads Conversion Tracking and Google’s handling of website data can be found here: https://policies.google.com

You may also permanently object to the setting of cookies by Google Ads Conversion Tracking by downloading and installing the browser plug-in available at the following link: https://support.google.com

Please note that certain functions of this website may not be available or may be limited if you have deactivated the use of cookies.

Google’s privacy policy can be viewed here: https://business.safety.google

11.7 Microsoft Advertising Universal Event Tracking

This website uses conversion tracking technology of the following provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.

For the use of Universal Event Tracking, a tag is placed on every page of our website that interacts with the conversion cookie set by Microsoft. This interaction makes user behavior on our website traceable and sends the information thus collected to Microsoft. The purpose is to statistically record and evaluate certain predefined goals such as purchases or leads in order to make the orientation and content of our offers more interest-based. The tags are never used to personally identify users.

All processing operations described above, in particular the setting of cookies for reading information on the terminal device used, will only take place if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. Without such consent, retargeting technology will not be used during your visit to the site.

You may revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the “Cookie Consent Tool” provided on the website.

11.8 TikTok Pixel

This website uses the conversion tracking technology of the following provider: TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland.

If you have arrived on our website via an advertisement on the provider’s domain, the success of the advertisement can be tracked by means of cookies and/or comparable technologies (tracking pixels, web beacons, pings or HTTP requests).

To this end, certain terminal device and browser information, including possibly your IP address, is read via the tracking technology in order to record and evaluate user actions predefined by us (e.g. completed transactions, leads, website searches, product page views). This makes it possible to create statistics on user behavior on our website after redirection from an advertisement, which serve to optimize our offering.

We have concluded a data processing agreement with the provider which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

12) Site Functionalities

12.1 YouTube

This website uses plugins for displaying and playing videos from the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.

Data may also be transmitted to: Google LLC, USA. When you access a page of our website that contains such a plugin, your browser establishes a direct connection to the provider’s servers at the latest when the video is played in order to load the content. Certain information, including your IP address, is thereby transmitted to the provider.

When playback of embedded videos is started via the plugin, the provider also uses cookies to collect information about user behavior, create playback statistics and prevent abusive conduct.

If you are logged into a user account with the provider during your visit, your data are directly assigned to your account when you click on a video. If you do not wish your data to be assigned to your account, you must log out before activating the playback button.

All aforementioned processing operations, in particular the setting of cookies for reading information on the terminal device used, are only carried out if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You may revoke your consent at any time with effect for the future by deactivating this service in the “Cookie Consent Tool” provided on the website.

12.2 Google Maps

This website uses an online mapping service of the following provider: Google Maps (API) by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).

Google Maps is a web service for displaying interactive maps in order to visually present geographical information. By using this service, our location is shown to you and any directions are facilitated.

Even when you access those subpages in which the Google Maps map is embedded, information about your use of our website (such as your IP address) is transmitted to Google servers and stored there; this may also involve transmission to servers of Google LLC in the United States. This occurs regardless of whether Google provides a user account through which you are logged in or whether a user account exists. If you are logged into Google, your data are directly assigned to your account. If you do not wish your data to be associated with your Google profile, you must log out before activating the button. Google stores your data (even for non-logged-in users) as usage profiles and evaluates them.

Collection, storage and evaluation are carried out pursuant to Art. 6(1)(f) GDPR on the basis of Google’s legitimate interest in displaying personalized advertising, market research and/or the needs-based design of Google websites. You have a right to object to the creation of these user profiles, and you must contact Google to exercise this right. If you do not agree to the future transmission of your data to Google in connection with the use of Google Maps, you can also completely deactivate Google Maps by turning off JavaScript in your browser. Google Maps, and thus the map display on this website, can then no longer be used.

Where legally required, we have obtained your consent for the processing of your data described above pursuant to Art. 6(1)(a) GDPR. You may revoke your consent at any time with effect for the future. To exercise your revocation, please follow the option to object described above.

Further information on Google’s privacy policy can be found here: https://business.safety.google

12.3 FontAwesome

This site uses so-called web fonts from the following provider to ensure a uniform presentation of fonts: Fonticons, Inc., 710 Blackhorn Dr, Carl Junction, MO 64834, USA.

When you access a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly and establishes a direct connection to the provider’s servers. Certain browser information, including your IP address, is thereby transmitted to the provider. The processing of personal data in the course of establishing a connection to the font provider will only be carried out if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You may revoke your consent at any time with effect for the future by deactivating this service in the “Cookie Consent Tool” provided on the website. If your browser does not support web fonts, a standard font will be used by your computer.

For the transfer of data to the United States, the provider relies on the European Commission’s Standard Contractual Clauses, intended to ensure compliance with the European level of data protection.

12.4 Google Web Fonts

This site uses so-called web fonts from the following provider to ensure a uniform presentation of fonts: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.

Data may also be transmitted to: Google LLC, USA.

The processing of personal data in the course of establishing a connection to the font provider will only be carried out if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You may revoke your consent at any time with effect for the future by deactivating this service in the “Cookie Consent Tool” provided on the website. If your browser does not support web fonts, a standard font will be used by your computer.

Further information on Google’s privacy policy can be found here: https://business.safety.google

12.5 hCaptcha

On this website, we use the CAPTCHA service of the following provider: Intuition Machines, Inc., 350 Alabama St, San Francisco, CA 94110, USA.

The service checks whether an entry is made by a natural person or abusively by means of machine and automated processing, and blocks spam, DDoS attacks and similar automated malicious access. In order to ensure that an action is performed by a human and not by an automated bot, the provider collects the IP address of the terminal device used, recognition data of the browser and operating system used, as well as the date and duration of the visit and transmits these for evaluation to the provider’s servers.

The legal basis is our legitimate interest in determining individual responsibility on the Internet and preventing misuse and spam pursuant to Art. 6(1)(f) GDPR.

We have concluded a data processing agreement with the provider which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

Cookie Consent Tool

This website uses a so-called “Cookie Consent Tool” to obtain effective user consent for cookies and cookie-based applications requiring consent. The “Cookie Consent Tool” is displayed to users on page access in the form of an interactive user interface, on which consents for certain cookies and/or cookie-based applications can be granted by ticking the relevant boxes. By using the tool, all cookies/services requiring consent are only loaded if the respective user has granted the relevant consent by ticking the applicable boxes. This ensures that such cookies are set on the respective user’s terminal device only in the event of consent.

The tool sets technically necessary cookies in order to store your cookie preferences. Personal user data are generally not processed in this context. However, if personal data (such as the IP address) are processed for the purpose of storing, assigning or logging cookie settings in individual cases, this is done pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interest in lawful, user-specific and user-friendly consent management for cookies and thus in the lawful design of our online presence.

Another legal basis for processing is Art. 6(1)(c) GDPR. As controllers, we are under a legal obligation to make the use of technically non-necessary cookies dependent on the respective user consent.

Where required, we have concluded a data processing agreement with the provider which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

Further information about the operator and the settings options of the Cookie Consent Tool can be found directly in the corresponding user interface on our website.

14) Rights of the Data Subject

14.1 Applicable data protection law grants you the following rights with respect to the controller regarding the processing of your personal data (rights of access and intervention), whereby reference is made to the legal basis stated for the respective exercise requirements:

14.2 Right to object

If we process your personal data within the framework of a balancing of interests on the basis of our overriding legitimate interest, you have the right at any time, on grounds relating to your particular situation, to object to this processing with effect for the future.

If you exercise your right to object, we will stop processing the data concerned. Further processing remains reserved if we can demonstrate compelling legitimate grounds for the processing which override your interests, fundamental rights and freedoms, or if the processing serves the establishment, exercise or defense of legal claims.

If your personal data are processed by us for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing. You may exercise the objection as described above.

If you exercise your right to object, we will cease processing the data concerned for direct marketing purposes.

15) Duration of Storage of Personal Data

The duration for which personal data are stored is determined by the respective legal basis, the purpose of processing and, where relevant, additionally by the respective statutory retention period (e.g. retention periods under commercial and tax law).

Where personal data are processed on the basis of express consent pursuant to Art. 6(1)(a) GDPR, the data concerned are stored until you revoke your consent.

Where statutory retention periods exist for data processed in the context of obligations arising from contracts or quasi-contractual obligations on the basis of Art. 6(1)(b) GDPR, these data are routinely deleted after the retention periods have expired, provided they are no longer required for contract performance or contract initiation and/or we no longer have a legitimate interest in further storage.

Where personal data are processed on the basis of Art. 6(1)(f) GDPR, these data are stored until you exercise your right to object under Art. 21(1) GDPR, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims.

Where personal data are processed for direct marketing purposes on the basis of Art. 6(1)(f) GDPR, these data are stored until you exercise your right to object under Art. 21(2) GDPR.

Unless otherwise stated in the other information contained in this declaration regarding specific processing situations, stored personal data are otherwise deleted when they are no longer necessary for the purposes for which they were collected or otherwise processed.