Privacy policy

1. Data Protection at a Glance
   
   General Information
   
   The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data refers to any data that can be used to personally identify you. For detailed information on data protection, please refer to our Privacy Policy outlined below.
2. Data Collection on Our Website
   
   Data processing on this website is carried out by the website operator. The operator’s contact details can be found in the “Note on the responsible party” section of this Privacy Policy.
   
   Your data is collected, firstly, by you providing it to us. For example, data that you enter in a contact form. Other data is automatically collected by our IT systems when you visit our website. These primarily include technical data (e.g., internet browser, operating system, or the time the page was accessed). This data is collected automatically as soon as you enter our website.
   
   Part of the data is collected to ensure the website is provided without errors. Other data may be used to analyze your user behavior.
   
   You have the right at any time to request free information about the origin, recipient, and purpose of your stored personal data. You also have the right to request the correction, blocking, or deletion of this data. For this purpose and for further questions about data protection, you can contact us at any time.
3. Analysis Tools and Third-Party Tools
   
   When you visit our website, your surfing behavior may be statistically analyzed. This is carried out mainly using so-called analysis programs. Detailed information on these analysis programs can be found in the following Privacy Policy.
4. Hosting
   
   Our website is hosted by an external service provider. The personal data collected on our website is stored on the host’s servers. This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, and website access data.
   
   We have concluded a data processing agreement with our hosting service provider. This is a contract required by data protection law which ensures that the hosting provider only processes the personal data of our website visitors based on our instructions and in compliance with the GDPR.
   
   Our hosting service provider is:
   
   NameHero, LLC
   680 S Cache Street, Suite 100-12679
   Jackson, Wyoming 83002
   Corporate Headquarters
   2155 E. GoDaddy Way
   Tempe, AZ 85284, USA
5. General Information and Mandatory Disclosures
   
   Data Protection
   
   The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory data protection regulations as well as this Privacy Policy.
   
   When you use this website, various personal data will be collected. Personal data is any information by which you can be personally identified. This Privacy Policy explains which data we collect and for what purposes we use it. It also explains how and for what purpose this is done.
   
   We would like to point out that data transmission over the internet (e.g., communication by email) can have security gaps. It is not possible to fully protect data against access by third parties.
   
   Note on the Responsible Party
   
   The responsible party for data processing on this website is:
   
   Leonard Geldermann
   Rheinstraße 6
   12159 Berlin
   
   Email: info@vegan-life-style.de
   
   The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of the processing of personal data (e.g., names, email addresses, etc.).
6. Storage Period
   
   Unless a more specific storage period is stated within this Privacy Policy, your personal data will remain with us until the purpose for the data processing no longer applies. If you submit a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons to store your personal data (e.g., tax or commercial law retention periods). In the latter case, data deletion will occur after these reasons no longer apply.
7. General Information on the Legal Bases for Data Processing on This Website
   
   Insofar as you have consented to data processing, we will process your personal data on the basis of Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, if special categories of data according to Art. 9(1) GDPR are processed. In the case of an explicit consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Art. 49(1)(a) GDPR. Insofar as you have consented to the storage of cookies or to access to information on your device (e.g., via device fingerprinting), data processing is also carried out on the basis of § 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act). Consent can be revoked at any time.
   
   If your data is required to fulfill a contract or to carry out pre-contractual measures, we process your data on the basis of Art. 6(1)(b) GDPR. Furthermore, we process your data insofar as this is necessary to fulfill a legal obligation on the basis of Art. 6(1)(c) GDPR. Data processing may also be based on our legitimate interest under Art. 6(1)(f) GDPR. Further information on the relevant legal bases can be found in the individual sections of this Privacy Policy.
8. Note on Data Transfer to the USA and Other Third Countries
   
   We use tools from companies based in the USA or other countries that are not considered safe under data protection law. If these tools are active, your personal data may be transferred to and processed in these third countries. We would like to point out that no comparable data protection level to that of the EU can be guaranteed in these countries. For instance, US companies are required to disclose personal data to security authorities without you being able to take legal action against it. Therefore, it cannot be ruled out that US authorities (e.g., intelligence agencies) may process, evaluate, and permanently store your data located on US servers for monitoring purposes. We have no influence over these processing activities.
9. Revocation of Your Consent to Data Processing
   
   Many data processing operations are only possible with your express consent. You may revoke consent you have already given at any time. The legality of the data processing carried out up to the point of revocation remains unaffected by your revocation.
10. Right to Object to Data Collection in Special Cases and to Direct Marketing (Art. 21 GDPR)

If data processing is based on Art. 6(1)(e) or (f) GDPR, you have the right at any time to object to the processing of your personal data on grounds relating to your particular situation. This also applies to profiling based on these provisions. Please refer to this Privacy Policy to identify the specific legal basis on which processing is based. If you lodge an objection, we will no longer process your personal data concerned unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims (objection under Art. 21(1) GDPR).

If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising. This also applies to profiling to the extent that it is related to such direct marketing. If you object, your personal data will subsequently no longer be used for direct marketing purposes (objection under Art. 21(2) GDPR).

11. Right to Lodge a Complaint with the Competent Supervisory Authority

In the event of breaches of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, place of work, or the place of the alleged infringement. This right to lodge a complaint exists without prejudice to any other administrative or judicial remedies.

12. Right to Data Portability

You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a commonly used, machine-readable format. If you request the direct transfer of the data to another controller, this will only be carried out if it is technically feasible.

13. Right to Information, Deletion, and Correction

Within the framework of the applicable legal provisions, you have the right at any time to obtain free information about your stored personal data, its origin and recipients, and the purpose of the data processing, and, if applicable, a right to have this data corrected or deleted. For this purpose and for further questions on the subject of personal data, you can contact us at any time.

14. Right to Restrict Processing

You have the right to request the restriction of the processing of your personal data. You can contact us at any time for this purpose. The right to restrict processing exists in the following cases:

• If you dispute the accuracy of your personal data stored with us, we usually need time to verify this. For the duration of the review, you have the right to request the restriction of the processing of your personal data.
• If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of deletion.
• If we no longer need your personal data but you need it to establish, exercise, or defend legal claims, you have the right to request the restriction of processing of your personal data instead of deletion.
• If you have lodged an objection pursuant to Art. 21(1) GDPR, a balance must be struck between your interests and ours. As long as it is not yet clear whose interests prevail, you have the right to request the restriction of processing of your personal data.

If you have restricted the processing of your personal data, such data – apart from being stored – may only be processed with your consent or for the establishment, exercise, or defense of legal claims or to protect the rights of another natural or legal person or for reasons of important public interest of the European Union or a member state.

15. SSL or TLS Encryption

For security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. This encryption also prevents data from being altered or tampered with during transmission.

16. Objection to Promotional Emails

We hereby object to the use of contact data published within the scope of the legal notice requirement for sending unsolicited advertising and informational materials. The operators of this website expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, for instance via spam emails. You may at any time object to the processing of your data for advertising purposes by sending us an email or letter.

17. Data Collection on This Website

Cookies

Our website uses so-called “cookies.” Cookies are small data files that do not cause any damage to your device. They are stored either temporarily for the duration of a session (session cookies) or permanently (persistent cookies) on your device. Session cookies are automatically deleted at the end of your visit. Persistent cookies remain stored on your device until you delete them yourself or until your web browser automatically removes them.

We provide you with detailed information on the various types of cookies used on our website, including their function and duration. You can change your cookie settings at any time by adjusting your browser settings. Borlabs Cookie

This website uses Borlabs Cookie, which sets a technically necessary cookie (borlabs-cookie) to store your cookie consents. Borlabs Cookie does not process any personal data. Borlabs Cookie does not transmit personal data to third parties, and all data is stored within the European Union. Contact Form

If you submit inquiries to us via a contact form, the information you provide on the form, including the contact details you enter, will be stored by us for the purpose of processing the inquiry and for follow-up questions. We do not disclose this data without your consent. You have the right to request deletion of your data, and we only store this data for as long as necessary to provide our services or as required by law. Comment Function on This Website

For the comment function on this page, in addition to your comment, information about the time the comment was created, your email address, and, if you do not post anonymously, the username you have chosen will be stored. We reserve the right to moderate and, if necessary, remove comments that violate our Terms of Use. Storage Duration of Comments

Comments and the associated data are stored and remain on this website until the commented content has been completely deleted or the comments must be deleted for legal reasons (e.g., insulting comments). Legal Basis

Comments are stored based on your consent (Art. 6(1)(a) GDPR). You may revoke any consent you have granted at any time by simply sending us an informal email. The legality of any data processing already performed remains unaffected by your revocation.

18. Social Media Social Media Elements with Shariff

We use social media elements on this website (e.g., Facebook, Twitter, Instagram, Pinterest, XING, LinkedIn, Tumblr).

You can usually recognize the social media elements by the respective social media logos. To protect your privacy on this website, we use these elements only together with the “Shariff” solution. This application prevents the social media elements integrated on this website from transmitting your personal data to the respective provider as soon as you enter the page.

Only when you activate the respective social media element by clicking its associated button is a direct connection to the provider’s server established (consent). Once you activate the social media element, the respective provider receives the information that you have visited this website with your IP address. If you are simultaneously logged into your social media account (e.g., Facebook), the respective provider can attribute your visit to this website to your user account.

Activating the plugin constitutes consent within the meaning of Art. 6(1)(a) GDPR and § 25(1) TTDSG. You can revoke this consent at any time with future effect.

Use of the service is carried out to obtain legally required consents for the use of certain technologies. The legal basis for this is Art. 6(1)(c) GDPR. Facebook

This website incorporates elements of the Facebook social network. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. According to Facebook, the data collected is also transferred to the USA and other third countries.

An overview of the Facebook social media elements can be found here: https://developers.facebook.com/docs/plugins/?locale=de_DE.

If the social media element is active, a direct connection is established between your device and the Facebook server. This gives Facebook the information that you have visited this website with your IP address. If you click the Facebook “Like” button while you are logged into your Facebook account, you can link the content of this website on your Facebook profile. This enables Facebook to associate your visit to this website with your user account. We would like to point out that, as the operator of this website, we are not aware of the content of the data transmitted nor its use by Facebook. Further information can be found in Facebook’s Privacy Policy at: https://de-de.facebook.com/privacy/explanation.

Where consent (consent) has been obtained, the use of the aforementioned service is based on Art. 6(1)(a) GDPR and § 25 TTDSG. Consent can be revoked at any time. If no consent was obtained, the use of the service is based on our legitimate interest in achieving the broadest possible visibility in social media.

To the extent that personal data is collected on our website using the tool described here and subsequently forwarded to Facebook, we (the website operator) and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). Joint responsibility is limited solely to the collection of the data and its transfer to Facebook. The subsequent processing by Facebook is not part of our joint responsibility. The obligations incumbent on us jointly have been set out in an agreement on joint processing. You can read the wording of this agreement at: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing the privacy information for the use of the Facebook tool and for implementing the tool on our website in a manner that complies with data protection laws. Facebook is responsible for the data security of its products. Data subjects can assert their rights (e.g., requests for information) regarding the data processed by Facebook directly with Facebook. If you assert your data subject rights with us, we are required to forward them to Facebook.

Data transfer to the USA is based on the EU Commission’s Standard Contractual Clauses. Details are available at: https://www.facebook.com/legal/EU_data_transfer_addendum, https://de-de.facebook.com/help/566994660333381, and https://www.facebook.com/policy.php. Twitter

Functions of the Twitter service are integrated on this website. These functions are provided by Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland.

If the social media element is active, a direct connection is established between your device and the Twitter server. Twitter then receives information about your visit to this website. By using Twitter and the “Re-Tweet” function, the websites you visit are linked to your Twitter account and disclosed to other users. We would like to point out that, as the provider of these pages, we are not aware of the content of the data transmitted nor its use by Twitter. For more information, see Twitter’s Privacy Policy: https://twitter.com/de/privacy.

Where consent (consent) has been obtained, the use of the aforementioned service is based on Art. 6(1)(a) GDPR and § 25 TTDSG. Consent can be revoked at any time. If no consent was obtained, the use of the service is based on our legitimate interest in achieving the broadest possible visibility in social media.

Data transfer to the USA is based on the EU Commission’s Standard Contractual Clauses. Details can be found here: https://gdpr.twitter.com/en/controller-to-controller-transfers.html.

You can change your Twitter privacy settings in your account settings at https://twitter.com/account/settings. Instagram

Functions of the Instagram service are integrated on this website. These functions are offered by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

If the social media element is active, a direct connection is established between your device and the Instagram server. Instagram then receives information about your visit to this website.

If you are logged into your Instagram account, by clicking the Instagram button you can link the content of this website to your Instagram profile. This allows Instagram to associate your visit to this website with your user account. We would like to point out that, as the operator of these pages, we do not receive any information about the content of the transmitted data or its use by Instagram.

Where consent (consent) has been obtained, the use of the aforementioned service is based on Art. 6(1)(a) GDPR and § 25 TTDSG. Consent can be revoked at any time. If no consent was obtained, the use is based on our legitimate interest in achieving the broadest possible visibility in social media.

If, with the help of the tool described here, personal data is collected on our website and forwarded to Facebook or Instagram, we (the website operator) and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). This joint responsibility is limited exclusively to the collection of the data and its transfer to Facebook or Instagram. The subsequent processing by Facebook or Instagram is not part of our joint responsibility. Our joint obligations have been documented in an agreement on joint processing. The wording of that agreement can be found here: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing the privacy information about using the Facebook or Instagram tool and for data protection-compliant implementation of the tool on our website. Facebook is responsible for the data security of the Facebook or Instagram products. Data subjects can assert their rights (e.g., requests for information) about data processed by Facebook or Instagram directly with Facebook. If you assert your data subject rights with us, we are required to forward them to Facebook.

Data transfer to the USA is based on the EU Commission’s Standard Contractual Clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://help.instagram.com/519522125107875, and https://de-de.facebook.com/help/566994660333381.

For more information, please see Instagram’s Privacy Policy: https://instagram.com/about/legal/privacy/. Pinterest

On this website, we use elements of the Pinterest social network operated by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.

When you access a page that contains such an element, your browser establishes a direct connection to Pinterest’s servers. In doing so, this social media element transmits log data to Pinterest’s server in the USA. This log data may include your IP address, the address of websites you visit that also contain Pinterest features, your browser type and settings, the date and time of the request, how you use Pinterest, and cookies.

Where consent (consent) has been obtained, the use of the aforementioned service is based on Art. 6(1)(a) GDPR and § 25 TTDSG. Consent can be revoked at any time. If no consent was obtained, the use is based on our legitimate interest in achieving the broadest possible visibility in social media.

For more information on the purpose, scope, and further processing and use of data by Pinterest, as well as your rights in this respect and ways to protect your privacy, please refer to Pinterest’s Privacy Policy: https://policy.pinterest.com/de/privacy-policy. TikTok

We also use TikTok, a social media and video platform. The service provider is the Chinese company Beijing Bytedance Technology Ltd. For the European region, the responsible entity is TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland.

TikTok processes data from you, including in the USA. We would like to point out that, according to the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This may involve various risks affecting the lawfulness and security of the data processing.

As a basis for data processing by recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e., especially in the USA) or for data transfers to such third countries, TikTok uses so-called Standard Contractual Clauses (= Art. 46(2) and (3) GDPR). The Standard Contractual Clauses (SCCs) are template contracts provided by the EU Commission and are intended to ensure that your data continues to meet European data protection standards even when transferred to and stored in third countries (such as the USA). By using these clauses, TikTok undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the decision and the relevant Standard Contractual Clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de.

For more information on the Standard Contractual Clauses and on the data processed by using the TikTok Pixel, please refer to the Privacy Policy at https://www.tiktok.com/legal/privacy-policy-eea?lang=de or https://ads.tiktok.com/i18n/official/policy/controller-to-controller.

19. Analysis Tools and Advertising

Web Analytics by Google Analytics 4

Our website uses Google Analytics 4, a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). This service allows for a detailed analysis of your usage of our website.

By default, Google Analytics 4 sets cookies when you visit our website, which are stored on your device. These cookies collect certain information, including your IP address, which is anonymized by Google to prevent direct identification.

The information collected is transmitted to Google servers and processed there. It is possible that this data is transferred to Google LLC in the USA.

Google uses this information on our behalf to evaluate your use of the website, compile reports on website activities, and provide other services related to website and internet usage. Data collected by Google Analytics 4 is deleted after two months.

The above-mentioned processing operations, especially setting cookies, occur only with your explicit consent according to Art. 6(1)(a) GDPR. Without your consent, Google Analytics 4 will not be used during your visit. You can revoke your consent at any time.

Google Analytics

We have concluded a data processing agreement with Google, which guarantees the protection of our visitors’ data and prevents unauthorized disclosure to third parties. In cases where data is transferred to the USA, Google relies on the EU Commission’s Standard Contractual Clauses designed to maintain European data protection standards. Further information on Google Analytics 4 and the aforementioned Standard Contractual Clauses can be found via the corresponding links.

Demographic Data

Google Analytics 4 uses the “demographic features” function to create statistics containing information about visitors’ age, gender, and interests. This data is deleted after it has been stored for two months.

Google Signals

In addition to Google Analytics 4, we may use Google Signals on our website to create cross-device reports. If you have enabled personalized ads and linked your devices to your Google Account, Google can analyze your usage behavior across devices. We do not receive personal data from Google, only statistical reports.

User IDs

Google Analytics 4 can also use the “User IDs” function on our website. If you have created an account on our website and are logged in on various devices, your activities, including conversions, can be analyzed across these devices.

Please note: This text does not replace legal advice. Please consult a legal professional to ensure your website complies with current legislation.

Google Analytics

For website analytics purposes, Google Analytics automatically collects and stores data (IP address, time of visit, device and browser information, as well as information about your use of our website). From this data, usage profiles may be created using pseudonyms. Cookies may be used for this purpose. Your IP address is generally not merged with other Google data. Data processing is based on an agreement for commissioned data processing by Google.

For the optimized marketing of our website, we have activated the data sharing settings for “Google products and services.” Thus, Google can access and subsequently use the data collected and processed by Google Analytics to improve Google services. Data sharing with Google within the scope of these settings is based on an additional agreement between controllers. We have no control over the subsequent data processing by Google.

We also use Google Optimize, an extension of Google Analytics, to create and conduct tests.

For the optimized marketing of our website, we use the so-called User ID feature. With this feature, we can assign your interaction data to one or more sessions on our online presences with a unique and permanent ID, thus analyzing your user behavior across devices and sessions.

We use Google Signals, an extension of Google Analytics, to enable so-called cross-device tracking for web analytics. If your internet-capable devices are linked to your Google Account and you have activated “personalized advertising” in your Google Account, Google can generate reports on your usage behavior (in particular the cross-device user numbers), even if you switch devices. No personal data is processed by us in this regard; we only receive statistics generated by Google Signals.

For web analytics and advertising purposes, the so-called DoubleClick cookie allows recognition of your browser when you visit other websites via the Google Analytics extension. Google uses this information to compile reports on website activity and provide other services associated with website usage.

Google Tag Manager

We use Google Tag Manager, a service provided by Google. “Google” is a group of companies that includes Google Ireland Ltd. (the service provider), Gordon House, Barrow Street, Dublin 4, Ireland, as well as Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and other affiliated companies of Google LLC.

We have concluded a data processing agreement with Google. Google Tag Manager is a helper service and only processes personal data for technically necessary purposes. Google Tag Manager ensures that other components are loaded, which may in turn collect data. Google Tag Manager does not access this data. For more information, please refer to Google’s privacy policy. Note that US authorities, such as intelligence agencies, may have access to personal data due to US laws like the Cloud Act, if data is inevitably exchanged with Google while this service is integrated (due to internet protocol [TCP]).

WP Statistics

This website uses the WP Statistics analysis tool to statistically evaluate visitor access. The provider is Veronalabs, ARENCO Tower, 27th Floor, Dubai Media City, Dubai, 23816, UAE (https://veronalabs.com).

With WP Statistics, we can analyze how visitors use our website. WP Statistics collects, among other things, log files (IP address, referrer, used browsers, user origin, used search engine) and actions performed by website visitors (e.g., clicks and views).

The data collected with WP Statistics is stored exclusively on our own server.

The use of this analysis tool is based on Art. 6(1)(f) GDPR. We have a legitimate interest in the anonymized analysis of user behavior to optimize both our website and our advertising. Insofar as you have given consent, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) TTDSG, insofar as consent includes the storage of cookies or access to information on your device (e.g., device fingerprinting) within the meaning of the TTDSG. You can revoke your consent at any time.

20. Affiliate Programs Booking.com

We participate in the affiliate program of Booking.com B.V., Herengracht 597, 1017 CE Amsterdam, The Netherlands. In this context, we have placed links on our website that lead to offers on the Booking.com or third-party websites.

To measure the success of affiliate links, to enable the evaluation of orders generated through those links, and to settle corresponding commission payments, Booking.com uses cookies and/or similar technologies, usually set on partner pages. We are not responsible for these processing activities under data protection law. In this context, Booking.com generally processes your IP address and possibly other device information.

These processing operations, particularly the reading or storage of information on your device, only occur if you have given your express consent pursuant to Art. 6(1)(a) GDPR. You can revoke any consent you have given at any time with future effect by using the cookie consent management options on the partner sites. Amazon.de

We participate in the affiliate program of Amazon EU S.a.r.l., 38 avenue John F. Kennedy, L-1855 Luxembourg. In this context, we have placed links on our website that lead to offers on Amazon.de or third-party websites.

To measure the success of affiliate links, to enable the evaluation of orders generated through those links, and to settle corresponding commission payments, Amazon.de uses cookies and/or similar technologies, usually set on partner pages. We are not responsible for these processing activities under data protection law. In this context, Amazon.de generally processes your IP address and possibly other device information.

These processing operations, particularly the reading or storage of information on your device, only occur if you have given your express consent pursuant to Art. 6(1)(a) GDPR. You can revoke any consent you have given at any time with future effect by using the cookie consent management options on the partner sites.

21. WooCommerce

Our website uses WooCommerce, an e-commerce platform operated by Automattic, Inc. WooCommerce provides us with the online e-commerce platform through which we can sell our products and services to you. What Data Is Collected?

While you visit our site, we track:

• Products you’ve viewed: We use this information to, for example, show you products you’ve recently viewed.
• Location, IP address, and browser type: We use this for estimating taxes and shipping.
• Shipping address: We ask you to enter this so we can, for instance, estimate shipping costs before you place an order and then ship the order to you.

We use cookies to keep track of cart contents while you’re browsing our site.

When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details, and optional account information like username and password. We use this information for purposes such as:

• Sending you information about your account and order
• Responding to your requests, including refunds and complaints
• Processing payments and preventing fraud
• Complying with legal obligations we have, such as calculating taxes
• Improving our store offerings
• Sending you marketing messages if you choose to receive them

If you create an account, we store your name, address, email address, and phone number, which will be used to populate the checkout for future orders.

We store information about you for as long as we need it for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we store order information for [INSERT TIMEFRAME HERE] for tax and accounting purposes. This includes your name, email address, and billing and shipping addresses.

Who on Our Team Has Access?

Members of our team have access to the information you provide us. Both administrators and store managers can access:

• Order information such as what was purchased, when it was purchased, and where it should be shipped
• Customer information such as your name, email address, as well as billing and shipping information

Our team members have access to this information to help fulfill orders, process refunds, and support you.

Payments

We accept payments through PayPal. During payment processing, some of your data will be shared with PayPal, including information necessary to process or support the payment, such as the total purchase amount and billing information. For more details, please see PayPal’s Privacy Policy.

22. Newsletter

Newsletter Data

If you would like to subscribe to the newsletter offered on this website, we need an email address from you, as well as information that allows us to verify that you are the owner of the specified email address and that you agree to receive the newsletter. Other data is collected only on a voluntary basis. We use this data exclusively for sending the requested information and do not disclose it to third parties.

The processing of data entered in the newsletter subscription form is carried out solely on the basis of your consent (Art. 6(1)(a) GDPR). You can revoke the consent you have given to store the data, the email address, and its use for sending the newsletter at any time, for instance via the “unsubscribe” link in the newsletter. The legality of any data processing that has already occurred remains unaffected by the revocation.

The data you provide us for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter or until the purpose for which the data was collected no longer applies, after which it will be deleted from the newsletter distribution list. We reserve the right to remove or block email addresses from our newsletter distribution list at our own discretion within the scope of our legitimate interest according to Art. 6(1)(f) GDPR.

Data that has been stored by us for other purposes remains unaffected.

After you unsubscribe from the newsletter distribution list, your email address may be stored by us or the newsletter service provider in a blacklist if necessary to prevent future mailings. The data from the blacklist is used solely for this purpose and not merged with other data. This serves both your interest and our interest in complying with legal requirements for the sending of newsletters (legitimate interest within the meaning of Art. 6(1)(f) GDPR). Storage in the blacklist is not time-limited. You can object to this storage if your interests outweigh our legitimate interest.

23. Plugins and Tools

Google Maps

This site uses the Google Maps map service. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

To use the features of Google Maps, it is necessary to store your IP address. This information is generally transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer. If Google Maps is activated, Google may use Google Fonts for uniform presentation of fonts. When you call up Google Maps, your browser loads the required web fonts into its browser cache to display text and fonts correctly.

The use of Google Maps is in the interest of providing an appealing representation of our online offerings and making the locations mentioned on our website easy to find. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. Insofar as you have been asked for corresponding consent, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) TTDSG, provided the consent includes the storage of cookies or access to information in the user’s device (e.g., device fingerprinting) under TTDSG. Consent can be revoked at any time.

Data transfer to the USA is based on the EU Commission’s Standard Contractual Clauses. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

More information on how user data is handled can be found in Google’s Privacy Policy: https://policies.google.com/privacy?hl=de.

Source: ADSimple: https://www.adsimple.de/datenschutz-generator/