Go to homepage
Favourites

Privacy Policy


Thank you for visiting our website. Below, we would like to inform you about how we handle your data in accordance with Art. 13 of the General Data Protection Regulation (GDPR).

Responsible party

The entity named in the legal notice is responsible for the data processing described below.

Usage data

When you visit our website, our web server temporarily evaluates so-called usage data for statistical purposes in order to improve the quality of our website. This data set consists of

• the name and address of the requested content,
• the date and time of the request,
• the amount of data transferred,
• the access status (content transferred, content not found),
• a description of the web browser and operating system used,
• the referral link indicating which page you came from to reach our website,
• the IP address of the requesting computer, which is shortened so that it can no longer be traced back to an individual.

The log data mentioned above is only evaluated in anonymized form.


Data security

We take technical and organizational measures to protect your data from unwanted access as comprehensively as possible. We use an encryption method on our websites. Your information is transmitted from your computer to our server and vice versa via the Internet using TLS encryption. You can usually recognize this by the closed padlock symbol in your browser's status bar and the address line beginning with https://. Required cookies We use cookies on our websites that are necessary for the use of our websites. Cookies are small text files that are stored on your device and can be read. A distinction is made between session cookies, which are deleted when you close your browser, and permanent cookies, which are stored beyond the individual session. We do not use these necessary cookies for analysis, tracking, or advertising purposes. Some of these cookies only contain information about certain settings and are not personally identifiable. They may also be necessary to enable user guidance, security, and implementation of the website. We use these cookies on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR. You can set your browser to inform you about the placement of cookies. This makes the use of cookies transparent for you. You can also delete cookies at any time via the corresponding browser settings and prevent new cookies from being set. Please note that our websites may then not be displayed and some functions may no longer be available for technical reasons.


Provider
Cookie type
Purpose
Storage period
Appropriate level of data protection
Immediately
 CSRF cookies
Threat prevention
Session
 Processing within the EU/EEA
Quick
timezone
Website display
Session
 Processing within the EU/EEA



Data collection and use for contract processing and when opening a customer account

We collect personal data if you voluntarily provide it to us when placing an order, contacting us (e.g. via the contact form or email) or opening a customer account. The data collected is evident from the respective input forms. We use the data you provide to process your order and your inquiries. After complete fulfillment of the contract or deletion of your customer account, your data will be blocked for further use and deleted after expiry of the tax and commercial law retention periods, unless you have expressly consented to further use of your data or we reserve the right to further use your data in a manner that is legally permitted and about which we inform you below. You can delete your customer account at any time by sending a message to the contact address below or using the function provided for this purpose in your customer account.

The legal basis for data processing is Art. 6 para. 1 lit. b) GDPR.


Data transfer for contract fulfillment

For contract fulfillment, we will pass on your data to the shipping company responsible for delivery, insofar as this is necessary for the delivery of ordered goods. For the purpose of processing payments, we will pass on the payment data required for this to the credit institution commissioned with the payment and, if applicable, to the payment service providers commissioned by us or to the payment service selected by you during the ordering process.
The data will be deleted after conclusion of the contract, unless there are legal retention periods that prevent this. The legal basis for data processing is Art. 6 (1) lit. b) GDPR.


Google Analytics

We use the web analysis tool “Google Analytics” to design our websites in line with your needs. Google Analytics creates usage profiles based on pseudonyms. For this purpose, permanent cookies are stored on your device and read by us. This enables us to recognize returning visitors and count them as such.
Within the scope of Google Analytics, Google Ireland Limited and Google LLC. (USA) support us as processors in accordance with Art. 28 GDPR. Data processing may therefore also take place outside the EU or the EEA. With regard to Google LLC, no adequate level of data protection can be assumed due to processing in the USA. There is a risk that authorities may access the data for security and surveillance purposes without you being informed or having the right to appeal. Please note this when you decide to give your consent to our use of Google Analytics.
Data processing is based on your consent, provided that you have given your consent via our banner. The transfer to a third country is based on Art. 49 (1) lit. a GDPR. You can withdraw your consent at any time. To do so, please follow this link and make the appropriate settings via our banner.


Visitor measurement

We use web analysis tools to design our websites in line with your needs. These tools create usage profiles based on pseudonyms. For this purpose, permanent cookies are stored on your device and read by us. In addition, we may retrieve recognition features for your browser or device (e.g., a so-called browser fingerprint or your unabridged IP address). This enables us to recognize returning visitors and count them as such.

In addition, we use the following functions for visitor measurement:

• We enrich the pseudonymous data with additional data provided to us by third-party providers. This enables us to collect demographic characteristics of our visitors, e.g., statements about age, gender, and place of residence.

• We use a recognition method that allows us to record and subsequently evaluate the mouse pointer movements of our visitors.

Data processing is based on your consent, provided that you have given your consent via our banner.

Which third-party providers do we use in this context?

Below we list the third-party providers with whom we cooperate in connection with visitor measurement. If the data is processed outside the EU or the EEA in this context, please note that there is a risk that authorities may access the data for security and surveillance purposes without you being informed or having the right to appeal. If we use providers in unsafe third countries and you give your consent, the transfer to a third country will be based on Art. 49 (1) lit. a GDPR.


Provider
Maximum storage period
Adequate level of data protection
Withdrawal of consent
Google Ireland Limited
26 monthsProcessing within the EU/EEA
If you wish to withdraw your consent, please click here  and make the appropriate setting via our banner
Google LLC (USA)
 26 months

No adequate level of data protection. The transfer is based on Art. 49 para.
If you wish to revoke your consent, please click here and make the appropriate setting via our banner


Third-party tracking technologies for advertising purposes

We use cross-device tracking technologies so that we can display targeted advertising on other websites based on your visit to our websites and so that we can determine how effective our advertising measures have been.

Data processing is based on your consent, provided that you have given your consent via our banner. Your consent is voluntary and can be revoked at any time.

How does tracking work?

When you visit our websites, the third-party providers listed below may retrieve recognition features for your browser or device (e.g., a so-called browser fingerprint), evaluate your IP address, store or read recognition features on your device (e.g., cookies), or gain access to individual tracking pixels. The individual characteristics can be used by third-party providers to recognize your device on other websites. We may commission the third-party providers to place advertisements based on the pages you have visited on our website.

What does cross-device tracking mean?

If you log in to the third-party provider with your own user data, the respective recognition features of different browsers and end devices can be linked to each other. If, for example, the third-party provider has created a separate identifier for the laptop, desktop PC, smartphone, or tablet you are using, these individual identifiers can be linked to each other as soon as you use a service of the third-party provider with your login details. This allows the third-party provider to target our advertising campaigns across different devices.

Which third-party providers do we use in this context?

Below, we list the third-party providers with whom we cooperate for advertising purposes. If the data is processed outside the EU or the EEA in this context, please note that there is a risk that authorities may access the data for security and surveillance purposes without you being informed or having the right to appeal. If we use providers in unsafe third countries and you give your consent, the transfer to a third country will be based on Art. 49 (1) lit. a GDPR.


Provider
Maximum storage period
Adequate level of data protection
Withdrawal of consent
Facebook (USA and/or Ireland)
90 daysNo adequate level of data protection. The transfer is based on Art. 49 (1) lit. a GDPR.
If you wish to withdraw your consent, please click here and make the appropriate setting via our banner.
Google LLC (USA)
 26 months

 No adequate level of data protection. The transfer is based on Art. 49 (1) lit. a GDPR.

If you wish to withdraw your consent, please click here and make the appropriate setting via our banner.

Hotjar (Malta)365 days
Processing within the EU/EEA
If you wish to withdraw your consent, please click here and make the appropriate setting via our banner.

Integration of the Trusted Shops Trustbadge

Trusted Shops widgets are integrated into this website to display the services of Trusted Shops GmbH (e.g., seal of approval, collected reviews) and to offer Trusted Shops products to buyers after an order has been placed. This serves to protect our legitimate interests in optimal marketing by enabling secure shopping in accordance with Art. 6 para. 1 lit. f) GDPR, which outweigh other interests in the context of a balancing of interests. The Trustbadge and the services advertised with it are an offer of Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne, with whom we are jointly responsible for data protection in accordance with Art. 26 GDPR. In this privacy policy, we will inform you about the essential contents of the contract in accordance with Art. 26 (2) GDPR. The Trustbadge is provided as part of joint responsibility by a US CDN (content delivery network) provider. An adequate level of data protection is ensured by standard data protection clauses and further contractual measures. Further information on data protection at Trusted Shops GmbH can be found in their privacy policy. When you call up the Trustbadge, the web server automatically stores a so-called server log file, which also contains your IP address, the date and time of the request, the amount of data transferred and the requesting provider (access data) and documents the request. The IP address is anonymized immediately after collection so that the stored data cannot be assigned to your person. The anonymized data is used in particular for statistical purposes and for error analysis. After the order is completed, your email address, which has been hashed using a cryptological one-way function, is transmitted to Trusted Shops GmbH. The legal basis for this is Art. 6 para. 1 lit. 1 lit. f GDPR. This serves to check whether you are already registered for services with Trusted Shops GmbH and is therefore necessary for the fulfillment of our and Trusted Shops' overriding legitimate interests in providing the buyer protection and transactional evaluation services linked to the specific order in accordance with Art. 6 para. 1 lit. f GDPR. If this is the case, further processing will be carried out in accordance with the contractual agreement between you and Trusted Shops. If you are not yet registered for the services, you will be given the opportunity to do so for the first time. Further processing after registration is also based on the contractual agreement with Trusted Shops GmbH. If you do not register, all data transmitted will be automatically deleted by Trusted Shops GmbH and it will no longer be possible to identify you. Trusted Shops uses service providers in the areas of hosting, monitoring, and logging. The legal basis is Art. 6 para. 1 lit. f GDPR for the purpose of ensuring trouble-free operation. Processing may take place in third countries (USA and Israel). An adequate level of data protection is ensured in the case of the USA by standard data protection clauses and further contractual measures, and in the case of Israel by an adequacy decision. Within the framework of the joint responsibility between us and Trusted Shops GmbH, please contact Trusted Shops GmbH using the contact details provided in the privacy policy linked above if you have any questions about data protection or wish to assert your rights. Regardless of this, you can always contact the controller of your choice. Your request will then be forwarded to the other controller for response if necessary. Trusted Shops rating If you have consented to the transfer of your email address and order number to Trusted Shops GmbH (Subbelrather Str. 15c, 50823 Cologne, Germany) for the purpose of sending you a reminder to rate our online shop, your email address and order number will be transferred to Trusted Shops GmbH (www.trustedshops.de).


Contact form

You can contact us using our contact form. To use our contact form, we first require the data marked as mandatory fields.
We use this data on the basis of Art. 6 (1) (1) (f) GDPR to respond to your enquiry.
Your data will only be processed to respond to your inquiry. We will delete your data if it is no longer required and there are no legal obligations to retain it.

We transfer your data to processors who support us in the above-mentioned data processing within the scope of order processing in accordance with Art. 28 GDPR and who are strictly bound by our instructions and contractually obliged to do so. We may transfer your data to tesa SE in Norderstedt, if we are unable to respond to your request on our own. tesa SE processes your data on its own responsibility. In addition, you have the right to request the correction (Art. 16 GDPR), deletion (Art. 17 GDPR), and restriction of processing (Art. 18 GDPR) of your personal data, as well as the right to data portability (Art. 20 GDPR), provided that the legal requirements are met.
With regard to processing pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right to object at any time. To do so, please contact the email address provided in the legal notice.


Newsletter registration and dispatch

You can subscribe to a newsletter on our website. Please note that we require certain data (at least your email address) to register for the newsletter.
The newsletter will only be sent if you have given us your express consent. After placing your order on our website, you will receive a confirmation email at the email address you provided (known as double opt-in). You can revoke your consent at any time. You can easily revoke your consent by clicking on the unsubscribe link included in every newsletter.
When you subscribe to the newsletter, we store additional data beyond the data already mentioned, if this is necessary to prove that you have subscribed to our newsletter. This may include storing your full IP address at the time of subscription or confirmation of the newsletter, as well as a copy of the confirmation email we sent you. The corresponding data processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR and is carried out in the interest of being able to account for the legality of the newsletter dispatch.
We use an external service provider based in Germany for the dispatch of the newsletter. We have a contract with this service provider for order processing in accordance with Art. 28 GDPR.


Access-protected area

If you wish to use our access-protected area, you must register in advance.
We only collect the data required for registration. The processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. b GDPR or on the basis of Art. 6 para. 1 lit. f GDPR in the interest of providing you with the services and information of the access-protected area.
If we collect additional data, this is marked as voluntary and is based on your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
If you wish to permanently unsubscribe from our access-protected area, please use the unsubscribe option provided in the area.


Integration of other technical third-party content and functions

We use the technical functions and content of third-party providers listed below to display our websites.
When you visit our website, content from the third-party providers who provide these functions and content is reloaded. This provides the third-party provider with information that you have accessed our site and the usage data required for this purpose.
We have no influence on further data processing by the third-party provider.
Data processing is based on your consent, provided that you have previously given your consent via our banner solution.
Please note that the use of third-party content and functions may result in your data being processed outside the EU or the EEA. In some countries, there is a risk that authorities may access the data for security and surveillance purposes without you being informed or having the right to appeal. If we use providers in unsafe third countries and you give your consent, the transfer to an unsafe third country will be based on Art. 49 (1) lit. a GDPR.


Provider
Technical function or content
Maximum storage period, if applicable
Transfer to third countries according to the provider's information and ensuring an adequate level of data protection
Withdrawal of consent
Amazon Web Services (USA)
Cloudfront (Content Delivery Network)

No adequate level of data protection The transfer is based on Art. 49 (1) lit. a GDPR.
If you wish to withdraw your consent, please click here and make the appropriate setting via our banner.


Storage period

Unless we have already provided detailed information about the storage period, we will delete personal data when it is no longer required for the aforementioned processing purposes and there are no legal obligations to retain it.

Other processors

We pass on your data within the scope of order processing in accordance with Art. 28 GDPR to service providers who support us in operating our websites and the associated processes. These include, for example, hosting service providers. Our service providers are strictly bound by our instructions and are contractually obligated to do so.


Your rights as a data subject

When your personal data is processed, the GDPR grants you certain rights as a data subject:


Right to information (Art. 15 GDPR)

You have the right to request confirmation as to whether personal data concerning you is being processed; if this is the case, you have the right to obtain information about this personal data and the information specified in Art. 15 GDPR.

Right to rectification (Art. 16 GDPR)

You have the right to obtain the rectification of inaccurate personal data concerning you and, if necessary, the completion of incomplete data.


Right to erasure (Art. 17 GDPR)

You have the right to request that personal data concerning you be deleted immediately if one of the reasons specified in Art. 17 GDPR applies.


Right to restriction of processing (Art. 18 GDPR)

You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPR applies, e.g. if you have objected to the processing, for the duration of the verification by the controller.


Right to data portability (Art. 20 GDPR)

In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format or to request the transfer of this data to a third party.


Right of withdrawal (Art. 7 GDPR)

If the processing of data is based on your consent, you are entitled to withdraw your consent to the use of your personal data at any time in accordance with Art. 7 (3) GDPR. Please note that the revocation only applies to the future. Processing that took place before the revocation is not affected.


Right to object (Art. 21 GDPR)

If data is collected on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR (data processing to safeguard legitimate interests) or on the basis of Art. 6 para. 1 sentence 1 lit. e GDPR (data processing to safeguard public interests or in the exercise of official authority), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrable compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.


Right to lodge a complaint with a supervisory authority (Art. 77 GDPR) 

Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your data violates data protection regulations. The right to lodge a complaint may be exercised in particular with a supervisory authority in the Member State of your habitual residence, your place of work or the place of the alleged infringement.


Exercising your rights

Unless otherwise described above, please contact the office named in the legal notice to assert your rights as a data subject.


Contact details of the data protection officer

Our external data protection officer is available to provide you with information on data protection at the following contact details:
datenschutz nord GmbH
Konsul-Smidt-Straße 88
28217 Bremen
Web: https://www.dsn-group.de/
Email: office@datenschutz-nord.de

p>

When contacting our data protection officer, please also indicate the responsible body