Privacy statement

The person responsible for data processing is:
Giftery GmbH
Joachimsthaler Str. 24
10719 Berlin
germany
sayhi@reward-ly.io

Thank you for your interest in our online shop. Protecting your privacy is very important to us. Below, we will inform you in detail about how we handle your data. Your data is processed on the basis of the GDPR and in accordance with Section 96 (3) TKG.

1. Access data and hosting

You can visit our websites without giving any information about yourself. Each time you access a website, the web server simply automatically stores a so-called server log file, which contains, for example, the name of the requested file, your IP address, date and time of retrieval, amount of data transferred and the requesting provider (access data) and documents the retrieval. This access data is evaluated exclusively for the purpose of ensuring trouble-free operation of the site and improving our offering. This serves to protect our prevailing legitimate interests in the correct presentation of our offer in accordance with Article 6 (1) (f) GDPR. All access data will be deleted no later than one month after the end of your page visit.

hosting
Some of the services for hosting and displaying the website are provided by our service providers as part of processing on our behalf. Unless otherwise explained in this privacy policy, all access data and all data collected in forms provided for this purpose on this website are processed on their servers. If you have any questions about our service providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.

Our service providers are located and/or use servers in the following countries for which the European Commission has decided to have an adequate level of data protection: Canada, New Zealand, Japan, United Kingdom, USA.

There is a decision by the European Commission on an appropriate level of data protection for the USA as a basis for a transfer to third countries, provided that the respective service provider is certified. Until certification by our service providers, data transmission will continue to be based on this basis: standard data protection clauses issued by the European Commission.

Notwithstanding the previous paragraph, personal data relating to Switzerland applies: Until the Swiss adequacy decision for the USA is adopted, the transfer of data will continue to be based on standard data protection clauses issued by the European Commission.

Our service providers are located and/or use servers in these countries: Australia, India, Singapore. There is no adequacy decision from the European Commission for these countries. Our cooperation with you is based on these guarantees: European Commission standard data protection clauses

2. Data processing for contract processing and contact

Data processing and contract processing
For the purpose of contract processing (including inquiries about and settlement of any existing warranty and performance claims as well as any legal update requirements) in accordance with Article 6 (1) (b) GDPR, we collect personal data if you voluntarily provide it to us as part of your order. Mandatory fields are marked as such, as in these cases we absolutely need the data to process the contract and we cannot ship the order without providing them. Which data is collected can be seen from the respective input forms.

Further information on the processing of your data, in particular on the transfer to our service providers for the purpose of order, payment and shipping processing, can be found in the following sections of this privacy policy. After complete processing of the contract, your data will be restricted for further processing and deleted after expiry of the tax and commercial retention periods in accordance with Article 6 (1) (c) GDPR, unless you have expressly consented to further use of your data in accordance with Article 6 (1) (a) GDPR or we reserve the right to use additional data that is permitted by law and about which we inform you in this statement.

inventory management system
We use inventory management systems from external service providers to process orders and contracts. Our service providers work for us as part of order processing. If you have any questions about our service providers and the basis of our cooperation with them, please contact us at the contact option described in this privacy policy.

customer account
We collect personal data when you voluntarily provide it to us when opening a customer account. Mandatory fields are marked as such, as in these cases we absolutely need the data to open the customer account and you cannot complete the account opening without providing them. Which data is collected can be seen from the respective input forms. We use the data you provide to process the contract and to process your inquiries in accordance with Art. 6 (1) (b) GDPR. You can delete your customer account at any time and can be done either by sending a message to the contact option described in this privacy policy or via a function provided for this purpose in the customer account. After deleting your customer account, your data will be deleted unless you have expressly consented to further use of your data in accordance with Art. 6 (1) (a) GDPR or we reserve the right to use data for further purposes, which is permitted by law and which we will inform you of in this statement.

contacting
As part of customer communication, we collect personal data in order to process your inquiries in accordance with Art. 6 (1) (b) GDPR if you voluntarily provide it to us when you contact us (e.g. via contact form, live chat tool or email). Mandatory fields are marked as such, as in these cases we absolutely need the data to process your contact. Which data is collected can be seen from the respective input forms. After your request has been fully processed, your data will be deleted unless you have expressly consented to further use of your data in accordance with Article 6 (1) (a) GDPR or we reserve the right to use data for further purposes, which is permitted by law and which we will inform you of in this statement.

Data processing for appointment booking
We collect personal data when you voluntarily provide it to us as part of booking an appointment. Mandatory fields are marked as such, as in these cases we absolutely need the data to book an appointment and you cannot send the appointment booking without providing them. Which data is collected can be seen from the respective input forms. Information in free text fields is voluntary and does not necessarily have to be filled out to send the appointment booking. Please refrain from providing sensitive data (e.g. health-related information such as illnesses) in such free text fields.

We use the data you provide to book appointments in accordance with Art. 6 (1) (b) GDPR. Once the booked appointment has been completed, your data will be restricted for further processing and deleted after expiry of any tax and commercial law retention periods in accordance with Article 6 (1) (1) (c) GDPR, unless you have expressly consented to further use of your data in accordance with Article 6 (1) (a) GDPR or we reserve the right to use further data that is permitted by law and about which we inform you in this statement.

Appointment booking solution from Microsoft Bookings

For the purpose of booking appointments, we use a booking solution from Microsoft Corporation, One Microsoft Way, Redmond, WA98052-6399, USA. The service provider works for us on our behalf.

Our service providers are located and/or use servers in the following countries for which the European Commission has decided to establish an appropriate level of data protection: USA.

There is a decision by the European Commission on an appropriate level of data protection for the USA as a basis for a transfer to third countries, provided that the respective service provider is certified. Until certification by our service providers, data transmission will continue to be based on this basis: standard data protection clauses issued by the European Commission.

Notwithstanding the previous paragraph, personal data relating to Switzerland applies: Until the Swiss adequacy decision for the USA is adopted, the transfer of data will continue to be based on standard data protection clauses issued by the European Commission.

3. Data processing for the purpose of processing shipments

In order to fulfill the contract in accordance with Art. 6 (1) (b) GDPR, we will pass on your data to the shipping service provider responsible for delivery, insofar as this is necessary to deliver ordered goods.

Transfer of data to shipping service providers for the purpose of shipping notification
If you have given us your express consent to do so during or after your order, we will forward your e-mail address and telephone number to the selected shipping service provider on the basis of this in accordance with Article 6 (1) (1) (ADSGVO) so that they can contact you before delivery for the purpose of announcing or coordinating the delivery. The consent can be withdrawn at any time by sending a message to the contact option described in this privacy policy or directly to the shipping service provider at the contact address listed below. After revocation, we will delete the data you have provided for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use data beyond that is permitted by law and which we will inform you of in this statement.

Hermes Germany GmbH
Essener Strasse 89
D-22419 Hamburg
germany

DHL Parcel GmbH
Straßchensweg 10
53113 Bonn
germany

General Logistics Systems Germany GmbH & Co. OHG
GLS Germany-Strasse 1-7
DE-36286 Neuenstein
germany

Jumingo GmbH
Breslauer Platz
450668 Cologne
germany

United Parcel Service Germany S.à r.l. & Co. OHG
Görlitzer Strasse 1
41460 Neuss
germany

DPD Germany GmbH
Wailandtstrasse 1
63741 Aschaffenburg
germany

4. Data processing for payment processing

When processing payments in our online shop, we work with these partners: technical service providers, credit institutions, payment service providers.

Data processing for transaction processing

Depending on the payment method selected, we pass on the data necessary to process the payment transaction to our technical service providers, who work for us as part of order processing, or to the commissioned credit institutions or to the selected payment service provider, insofar as this is necessary to process the payment. This serves to fulfill the contract in accordance with Art. 6 (1) (b) GDPR. In some cases, payment service providers collect the data required to process the payment themselves, e.g. on their own website or through technical integration into the ordering process. In this respect, the privacy policy of the respective payment service provider applies. If you have any questions about our payment processing partners and the basis for our cooperation with you, please contact us at the contact option described in this privacy policy.

Data processing for the purpose of fraud prevention and optimization of our payment processes

We may provide our service providers with additional data, which they use together with the data necessary to process the payment as our contract processors for the purpose of fraud prevention and optimization of our payment processes (e.g. invoicing, processing of disputed payments, accounting support). In accordance with Article 6 (1) (f) of the GDPR, this serves to protect our prevailing legitimate interests in our protection against fraud and in efficient payment management.

Identity and credit check when choosing Klarna payment services

Klarna direct debit, purchase on account via Klarna, Klarna installment purchase

If you opt for the payment services provided by Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter Klarna), we ask you for your consent in accordance with Article 6 (1) (a) GDPR that we may transfer the data necessary to process the payment and an identity and credit check to Klarna. In Germany, the credit agencies mentioned in Klarna's privacy policy can be used for identity and credit checks. Klarna uses the information received about the statistical probability of a payment default for a balanced decision on the establishment, implementation or termination of the contractual relationship. You can withdraw your consent at any time by sending a message to the contact option specified in this privacy policy. As a result, we may no longer be able to offer you certain payment options. You can also withdraw your consent to this use of personal data by Klarna at any time.

Identity and credit check when choosing Billpay payment services (operated by Klarna Bank AB)

If you opt for payment services from Klarna Bank AB AB (publ.), Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter BillPay), we ask you for your consent in accordance with Article 6 (1) (a) GDPR that we may transfer the data necessary to process the payment and an identity and credit check to Billpay. In Germany, the credit agencies mentioned in Billpay's privacy policy can be used for identity and credit checks. Billpay uses the information received about the statistical probability of a payment default for a balanced decision on the establishment, implementation or termination of the contractual relationship. You can withdraw your consent at any time by sending a message to the contact option specified in this privacy policy. As a result, we may no longer be able to offer you certain payment options. You can also withdraw your consent to this use of personal data by BillPay at any time.

Identity and credit check when choosing purchase on account via PayOne

If you choose the payment method purchase on account (offered by PayOne GmbH, Lyoner Str. 9, 60528 Frankfurt a. M., Germany (hereinafter PayOne)), we ask you for your consent in accordance with Article 6 (1) (a) GDPR that we may transfer the data necessary to process the payment and an identity and credit check to PayOne. In Germany, the credit agencies mentioned in PayOne's privacy policy can be used for identity and credit checks. PayOne uses the information received about the statistical probability of a payment default for a balanced decision on the establishment, implementation or termination of the contractual relationship. You can withdraw your consent at any time by sending a message to the contact option specified in this privacy policy. As a result, we may no longer be able to offer you certain payment options.

Identity and credit check when choosing purchase on account via PayPal and Ratepay

If you choose the payment method purchase on account (offered by Ratepay GmbH, Franklinstraße 28-29, 10587 Berlin (hereinafter Ratepay) and PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 BoulevardRoyal, 2449 Luxembourg (hereinafter PayPal)), we ask you for your consent in accordance with Art. 6 para. 1S. 1 lit. a GDPR that we may transfer the necessary data to Ratepay for the processing of the payment and an identity and credit check. In Germany, the credit agencies mentioned in Ratepay's privacy policy can be used for identity and credit checks. Ratepay uses the information received about the statistical probability of a payment default for a balanced decision on the establishment, implementation or termination of the contractual relationship. You can withdraw your consent at any time by sending a message to the contact option specified in this privacy policy. As a result, we may no longer be able to offer you certain payment options. Additional information on data protection at PayPal can be found here.

5. Advertising by e-mail, post, telephone

Email newsletter with registration and newsletter tracking

If you subscribe to our newsletter, we use the data required for this purpose or provided separately by you to regularly send you our e-mail newsletter based on your consent in accordance with Article 6 (1) (a) GDPR. You can unsubscribe from the newsletter at any time and can be made either by sending a message to the contact option described below or via a link provided for this purpose in the newsletter. After unsubscribing, we will delete your email address from the list of recipients unless you have expressly consented to further use of your data in accordance with Art. 6 (1) (a) GDPR or we reserve the right to use data beyond this, which is permitted by law and which we will inform you of in this statement.

We would like to point out that we evaluate your user behavior when sending the newsletter. To this end, we also analyse your use of our newsletter by measuring, storing and evaluating opening rates and click rates for the purpose of designing future newsletter campaigns (“newsletter tracking”).

For this evaluation, the emails sent include single-pixel technologies (e.g. so-called web beacons, tracking pixels), which are stored on our website. For the evaluations, we combine in particular the following “newsletter data”

- the page from which the page was requested (so-called referrer URL),
- the date and time of the call,
- the description of the type of web browser used,
- the IP address of the requesting computer,
- the email address,
- the date and time of registration and confirmation

and the single-pixel technologies with your email address or IP address and, if applicable, an individual ID. Links contained in the newsletter can also contain this ID.

If you do not want newsletter tracking, you can unsubscribe from the newsletter at any time - as described above.

The information is stored as long as you have subscribed to the newsletter.

Newsletter delivery
The newsletter and newsletter tracking described above may also be sent by our service providers as part of processing on our behalf. If you have any questions about our service providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.

Our service providers are located and/or use servers in the following countries for which the European Commission has decided to establish an adequate level of data protection: United Kingdom.

Our service providers are located and/or use servers in the following countries for which the European Commission has decided to have an appropriate level of data protection: USA.

There is a decision by the European Commission on an appropriate level of data protection for the USA as a basis for a transfer to third countries, provided that the respective service provider is certified. Until certification by our service providers, data transmission will continue to be based on this basis: standard data protection clauses issued by the European Commission.

Notwithstanding the previous paragraph, personal data relating to Switzerland applies: Until the Swiss adequacy decision for the USA is adopted, the transfer of data will continue to be based on standard data protection clauses issued by the European Commission.

Our service providers are based and/or use servers in these countries: Australia. There is no adequacy decision from the European Commission for this country/these countries. Our cooperation with them is based on these guarantees: European Commission standard data protection clauses.

Sending evaluation requests via email
If you have given us your express consent to do so during or after your order in accordance with Article 6 (1) (a) GDPR, we will use your email address to ask you to submit a review of your order using the rating system we use. This consent can be withdrawn at any time by sending a message to the contact option described in this privacy policy or via a link provided for this purpose in the evaluation request.

The evaluation requests may also be sent by our service providers as part of processing on our behalf. If you have any questions about our service providers and the basis of our cooperation with them, please contact us using the contact option described in this privacy policy.

Our service providers are located and/or use servers in the following countries for which the European Commission has decided to establish an appropriate level of data protection: USA

There is a decision by the European Commission on an appropriate level of data protection for the USA as a basis for a transfer to third countries, provided that the respective service provider is certified. Until certification by our service provider, data transmission will continue to be based on this basis: standard data protection clauses issued by the European Commission.

Notwithstanding the previous paragraph, personal data relating to Switzerland applies: Until the Swiss adequacy decision for the USA is adopted, the transfer of data will continue to be based on standard data protection clauses issued by the European Commission.

Postal advertising and your right of objection
In addition, we reserve the right to use your first and last name as well as your postal address for our own advertising purposes, e.g. to send interesting offers and information about our products by post. This serves to protect our prevailing legitimate interests in addressing our customers in advertising in accordance with Art. 6 (1) (f) GDPR. You can object to the storage and use of your data for these purposes at any time by sending a message to the contact option described in this privacy policy.

Telephone advertising
Insofar as you have given your consent in accordance with Article 6 (1) (a) GDPR, we use the data required for this purpose or provided separately by you for our own advertising purposes, e.g. to provide information about interesting offers and our products. You can withdraw your consent at any time either by sending a message to the contact option described in this privacy policy or by sending an oral message every time you call. After revocation, we will delete your telephone number unless you have expressly consented to further use of your data or we reserve the right to use data beyond that is permitted by law and about which we will inform you in this statement.

6. Cookies and other technologies

general information
In order to make visiting our website attractive and to enable the use of certain functions, we use technologies, including so-called cookies, on various pages. Cookies are small text files that are automatically saved on your device. Some of the cookies we use are deleted after the end of the browser session, i.e. after closing your browser (so-called session cookies). Other cookies remain on your device and enable us to recognize your browser the next time you visit (persistent cookies).

Protecting privacy on devices
When using our online offering, we use absolutely necessary technologies to be able to provide the expressly requested telemedia service. The storage of information on your device or access to information that is already stored on your device does not require consent in this respect.

If functions are not absolutely necessary, storing information on your device or accessing information that is already stored on your device requires your consent. We would like to point out that if you do not give your consent, parts of the website may not be fully usable. Any consents you have given remain valid until you adjust or reset the respective settings on your device.

Any downstream data processing through cookies and other technologies
We use such technologies that are absolutely necessary to use certain functions of our website (e.g. shopping cart function). These technologies collect and process your IP address, time of visit, device and browser information, and information about your use of our website (e.g. information about the content of the shopping cart). As part of a balancing of interests, this serves overriding legitimate interests in an optimized presentation of our offer in accordance with Art. 6 (1) (f) GDPR.

We also use technologies to fulfill legal obligations to which we are subject (e.g. to be able to prove consent to the processing of your personal data) and for web analysis and online marketing. Further information on this, including the respective legal basis for data processing, can be found in the following sections of this privacy policy. We may also use technologies that are not individually listed in this privacy statement. More detailed information about these technologies, including the respective legal basis for data processing, can be found on the Usercentrics platform. You can do this by clicking on the fingerprint button in the lower right or left corner of the page.

The cookie settings for your browser can be found under the following links: Microsoft Edge™ / Safari™ / Chrome™ / Firefox™ / Opera™

If you have consented to the use of technologies in accordance with Article 6 (1) (a) GDPR, you can withdraw your consent at any time by sending a message to the contact option described in the privacy policy. Alternatively, click the fingerprint button in the lower-right or left corner of the page. If you do not accept cookies, the functionality of our website may be limited.

Using Usercentrics Consent Management Platform to Manage Consent
On our website, we use the Usercentrics consent management platform (“Usercentrics”) to inform you about the cookies and other technologies that we use on our website and to obtain, manage and document your consent, where required by law, to process your personal data through these technologies. In accordance with Article 6 (1) (c) GDPR, this is necessary to fulfill our legal obligation under Article 7 (1) GDPR to be able to prove your consent to the processing of your personal data, to which we are subject. Usercentrics is an offer from Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany, which processes your data on our behalf. When you visit our website, the Usersentrics web server stores a so-called server log file, which also contains your anonymized IP address, date and time of the visit, device and browser information, and information about your consent behavior. Your data will be deleted after three years, unless you have expressly consented to further use of your data in accordance with Art. 6 (1) (a) GDPR or we reserve the right to use data beyond this, which is permitted by law and which we will inform you of in this statement.

Our service providers are located and/or use servers in the following countries for which the European Commission has decided to establish an appropriate level of data protection: USA.

There is a decision by the European Commission on an appropriate level of data protection for the USA as a basis for a transfer to third countries, provided that the respective service provider is certified. Certification is available.

Notwithstanding the previous paragraph, personal data relating to Switzerland applies: Until the Swiss adequacy decision for the USA is adopted, the transfer of data will continue to be based on standard data protection clauses issued by the European Commission.

Information on third country transfers (data transfer to third countries)
We use technologies from service providers on our website whose headquarters and/or server locations may be located in third countries, outside the EU or the EEA. If there is no adequacy decision by the EU Commission for this country, an appropriate level of data protection must be ensured by means of other appropriate guarantees.

Appropriate guarantees in the form of contractually agreed standard contractual clauses from the EU Commission or binding internal data protection regulations (Binding Corporate Rules) are possible in principle, but require prior verification by the contracting parties as to whether an adequate level of protection can be guaranteed. According to ECJ case law, this may require additional protective measures.

In principle, we have agreed on the standard data protection clauses issued by the EU Commission with the technology providers we use who process personal data in a third country. Where possible, we also agree on additional guarantees to ensure that adequate data protection is ensured in third countries without an adequacy decision.

Notwithstanding this, it may happen that, despite all contractual and technical measures, the level of data protection in the third country does not match that of the EU. In these cases, we will ask you, if necessary, as part of the cookie consent, for your consent in accordance with Article 49 (1) (a) GDPR to transfer your personal data to a third country.

In particular, there is a risk that local authorities in the third country may not receive sufficiently limited access rights to your personal data from a European data protection perspective, that we as the data exporter or you as the data subject may not be aware of this and/or may also not be available to you sufficient legal remedies to prevent this and/or take action against such access.

In particular, the following countries are currently among the third countries without an adequacy decision by the EU Commission (list of examples):
- China
- Russia
- Taiwán

You can find out which third countries we transfer data to in the data protection notices for the respective tool used and/or consent management service (CMP) used by us.

8. Use of cookies and other technologies

Insofar as you have given your consent in accordance with Article 6 (1) (a) GDPR, we use the following cookies and other technologies from third-party providers on our website. After the purpose ceases to exist and the use of the respective technology by us has ended, the data collected in this context will be deleted. You can withdraw your consent at any time with effect for the future. You can find more information about your opt-out options in the “Cookies and other technologies” section. For more information, including the basis of our cooperation with the individual providers, see the individual technologies. If you have any questions about the providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.

Using Adobe services
We use the technologies shown below from Adobe Systems, Software Ireland Limited, Ireland, 4—6 Riverwalk, Citywest Business Campus, Dublin 24, Ireland (“Adobe”). The information automatically collected by Adobe technologies about your use of our website is usually transferred to a server of Adobe, Inc., 345 Park Avenue San Jose, CA 95110-2704, USA and stored there. If your IP address is collected using Adobe technologies, it will be abbreviated or completely replaced by a generic IP address before being stored on Adobe's servers by activating appropriate settings.

Our service providers are located and/or use servers in the following countries for which the European Commission has decided to have an appropriate level of data protection: USA.

There is a decision by the European Commission on an appropriate level of data protection for the USA as a basis for a transfer to third countries, provided that the respective service provider is certified. Certification is available.

Notwithstanding the previous paragraph, personal data relating to Switzerland applies: Until the Swiss adequacy decision for the USA is adopted, the transfer of data will continue to be based on standard data protection clauses issued by the European Commission.

Our service providers are located and/or use servers in countries outside the EU and the EEA. There is no adequacy decision from the European Commission for these countries. Our cooperation with them is based on standard data protection clauses issued by the European Commission.

Adobe Fonts
For a uniform presentation of the content on our website, the script code “Adobe Fonts” of Adobe, Inc., 345 Park Avenue San Jose, CA 95110-2704, USA (“Adobe”) data (IP address, time of visit, device and browser information) is collected, transmitted to Adobe and then processed by Adobe. We have no influence on this subsequent data processing. Data processing is carried out on the basis of an agreement between joint controllers in accordance with Art. 26 GDPR.

Use of Google services
We use the following technologies from Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). The information automatically collected by Google technologies about your use of our website is usually transferred to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA and stored there. Unless otherwise stated for the individual technologies, data processing is carried out on the basis of an agreement concluded between joint controllers for the respective technology in accordance with Article 26 GDPR. Further information about data processing by Google can be found in the Google's privacy policy.

Our service providers are located and/or use servers in countries outside the EU and the EEA for which the European Commission has decided to establish an appropriate level of data protection.

Our service providers are located and/or use servers in countries outside the EU and the EEA. There is no adequacy decision from the European Commission for these countries. Our cooperation with them is based on standard data protection clauses issued by the European Commission.

Google Analytics
For the purpose of website analysis, Google Analytics automatically collects and stores data (IP address, time of visit, device and browser information as well as information about your use of our website), from which user profiles are created using pseudonyms. Cookies may be used for this purpose. If you visit our website from the EU, your IP address is stored on a server located in the EU to derive location data and is then immediately deleted before the traffic is forwarded to other Google servers for processing. Data processing is carried out on the basis of an order processing agreement by Google.

For the purpose of optimizing the marketing of our website, we have the Data sharing settings for “Google products and services” activated. This allows Google to access the data collected and processed by Google Analytics and then use it to improve Google services. Data sharing with Google as part of these data sharing settings is based on an additional agreement between responsible parties. We have no influence on subsequent data processing by Google.

For the purpose of optimizing the marketing of our website, we use the so-called User ID function. With the help of this function, we can assign a unique, permanent ID to your interaction data from one or more sessions on our online sites and thus analyze your user behavior across devices and sessions.

We also use the Google Analytics extension function to create and carry out tests Google Optimize.

For web analysis, the extension function of Google Analytics Google Signals sucked in. “Cross-device tracking” is enabled. If your internet-enabled devices are linked to your Google account and you have activated the “personalized advertising” setting in your Google account, Google can create reports on your usage behavior (in particular cross-device user numbers), even if you change your device. In this respect, we do not process personal data; we only receive statistics created on the basis of Google Signals.

For web analysis and advertising purposes, the Google Analytics extension function, the so-called double click cookie, enables your browser to be recognized when you visit other websites. Google will use this information to compile reports on website activity and to provide other services related to website usage.

Google Fonts
browser information), transmitted to Google and then processed by Google. We have no influence on this subsequent data processing.

Using Microsoft services
We use the following technologies from Microsoft Ireland Operations Ltd., One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, D18 P521, Ireland (“Microsoft”). Data processing is carried out on the basis of an agreement between joint controllers in accordance with Art. 26 GDPR. The information automatically collected by Microsoft technologies about your use of our website is usually transferred to a server of Microsoft Corporation, One Microsoft Way, Redmond, WA98052-6399, USA and stored there. Further information about data processing by Microsoft can be found in Microsoft's privacy policy.

Our service providers are located and/or use servers in countries outside the EU and the EEA for which the European Commission has decided to establish an appropriate level of data protection.

Our service providers are located and/or use servers in countries outside the EU and the EEA. There is no adequacy decision by the European Commission for these countries. Our cooperation with them is based on standard data protection clauses issued by the European Commission.

For website analysis and event tracking, we measure via Microsoft Advertising Universal Event Tracking (UET) Your subsequent usage behavior when you have reached our website via an advertisement from Microsoft Advertising. For this purpose, cookies may be used and data (IP address, time of visit, device and browser information and information about your use of our website based on events specified by us, such as visiting a website or subscribing to a newsletter), from which user profiles are created using pseudonyms. If your Internet-enabled devices are linked to your Microsoft account and you have not deactivated the “Interest-based advertising” setting in your Microsoft account, Microsoft can create reports on usage behavior (in particular cross-device user numbers), even if you change your device, so-called “cross-device tracking.” In this respect, we do not process personal data; we only receive statistics compiled on the basis of Microsoft UET.

Use of Facebook services

Use of Facebook Pixel
We use the Facebook Pixel as part of the Meta Platforms IrelandLtd., Block J, Serpentine Avenue, Dublin 4, Ireland (“Facebook (by Meta)” or “Meta Platforms Ireland”) technologies described below. The Facebook pixel automatically collects and stores data (IP address, time of visit, device and browser information as well as information about your use of our website based on events specified by us, such as visiting a website or subscribing to a newsletter), from which user profiles are created using pseudonyms. As part of the so-called extended data reconciliation, information is also collected and stored in hashed form for reconciliation purposes, which can be used to identify individuals (e.g. names, e-mail addresses and telephone numbers). For this purpose, when you visit our website, the Facebook pixel automatically sets a cookie which automatically uses a pseudonymous cookie to recognize your browser when you visit other websites. Facebook (by Meta) will combine and use this information with other data from your Facebook account to compile reports on website activity and to provide other services related to website usage, in particular personalized and group-based advertising. The information automatically collected by Facebook (by Meta) technologies about your use of our website is usually transferred to a server of Meta Platforms, Inc., 1601 Willow Road, Menlo Park, California 94025, USA and stored there. Further information about data processing by Facebook can be found in Facebook's privacy policy (by Meta).

Our service providers are located and/or use servers in the following countries for which the European Commission has decided to establish an adequate level of data protection: USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina.

There is a decision by the European Commission on an appropriate level of data protection for the USA as a basis for a transfer to third countries, provided that the respective service provider is certified. Certification is available.

Notwithstanding the previous paragraph, personal data relating to Switzerland applies: Until the Swiss adequacy decision for the USA is adopted, the transfer of data will continue to be based on standard data protection clauses issued by the European Commission.

Our service providers are located and/or use servers in these countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Brazil, Mexico. There is no adequacy decision from the European Commission for these countries. Our cooperation with you is based on these guarantees: European Commission standard data protection clauses.

Facebook analytics
As part of Facebook business tools, statistics on visitor activity on our website are created from the data collected with the Facebook pixel about your use of our website. Data processing is carried out on the basis of an order processing agreement by Facebook (by Meta). Your analysis is used to optimally present and market our website.

Facebook Ads (ad manager)
We use Facebook Ads to promote this website on Facebook (by Meta) and on other platforms. We determine the parameters of the respective advertising campaign. Facebook (by Meta) is responsible for the exact implementation, in particular the decision on the placement of ads with individual users. Unless otherwise stated for the individual technologies, data processing is based on an agreement between joint controllers in accordance with Article 26 GDPR. Joint responsibility is limited to collecting the data and transmitting it to Meta Platforms Ireland. Subsequent data processing by Meta Platforms Ireland is not covered by this.

Based on statistics on visitor activity on our website generated via Facebook Pixel, we operate via Facebook Custom Audience group-based advertising on Facebook (by Meta) by determining the characteristics of each target group. As part of the extended data reconciliation (see above) to determine the respective target group, Facebook (by Meta) acts as our contract processor.

Based on the pseudonymous cookie ID set by Facebook Pixel and the data collected about your usage behavior on our website, we operate via FacebookPixel Remarketing personalized advertising.

About Facebook Pixel Conversions For web analysis and event tracking, we measure your subsequent usage behavior when you reach our website via an ad from Facebook Ads. Data processing is carried out on the basis of an order processing agreement by Facebook (by Meta).

Other providers of web analysis and online marketing services

Use of Pinterest Tag for web analysis and advertising purposes
For web analysis and advertising purposes on Pinterest and on third-party websites, when you visit our website using technologies from Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland (“Pinterest”), data (IP address, time of visit, device and browser information and information about your use of our website based on events specified by us, such as visiting a website or newsletter subscription) and using a pseudonym The cookie ID and based on The pages you visit enables interest-based advertising. User profiles are created from the collected data using pseudonyms. Pinterest will combine this information with other data from your Pinterest account and use it to compile reports on website activity and to provide other services related to website usage. We have no influence on Pinterest's data processing and only receive statistics created on the basis of Pinterest Tag. This allows us to measure your subsequent usage behavior for website analysis and event tracking when you reach our website via an ad from Pinterest. The information automatically collected by Pinterest is usually transferred to a server of Pinterest, Inc., 505 Brannan St., San Francisco, CA 94107, USA and stored there. Data processing is carried out on the basis of an agreement between joint controllers in accordance with Art. 26 GDPR.

Our service providers are located and/or use servers in countries outside the EU and the EEA for which the European Commission has decided to establish an appropriate level of data protection.

Our service providers are located and/or use servers in countries outside the EU and the EEA. There is no adequacy decision by the European Commission for these countries. Our cooperation with them is based on standard data protection clauses issued by the European Commission.

Use of SalesViewer® technology
On this website, SalesViewer® technology from SalesViewer® GmbH is used to collect and store data for marketing, market research and optimization purposes based on the legitimate interests of the website operator (Art. 6 para. 1 lit. f DSGVO). For this purpose, a javascript-based code is used to collect company-related data and use it accordingly. The data collected using this technology is encrypted using a non-recoverable one-way function (so-called hashing). The data is immediately pseudonymized and is not used to personally identify the visitor to this website. The data stored as part of Salesviewer® is deleted as soon as it is no longer required for its intended purpose and the deletion is not precluded by legal storage obligations. Data collection and storage can be objected to at any time with effect for the future by clicking this link https://www.salesviewer.com/opt-out Click to prevent SalesViewer® from collecting data within this website in the future. An opt-out cookie for this website is stored on your device. If you delete your cookies in this browser, you must click this link again.

9. Social media

Social plugins from Instagram (by Meta), Whatsapp
Social buttons from social networks are used on our website. These are only integrated into the page as HTML links, so that when you visit our website, no connection is yet established with the servers of the respective provider. If you click on one of the buttons, the website of the respective social network opens in a new window in your browser. There, you can press the Like or Share button, for example.

Our online presence on Facebook (by Meta), Instagram (by Meta), Pinterest, LinkedIn
Insofar as you have given your consent to the respective social media operator in accordance with Article 6 (1) (a) GDPR, when you visit our online presences on the social media mentioned above, your data is automatically collected and stored for market research and advertising purposes, from which user profiles are created using pseudonyms. These can be used, for example, to place advertisements within and outside the platforms that presumably match your interests. Cookies are usually used for this purpose. For detailed information on the processing and use of data by the respective social media operator, as well as a contact option and your related rights and settings options to protect your privacy, please refer to the providers' privacy policies linked below. Should you still need help with this, you can contact us.

facebook (ByMeta) is an offer from Meta Platforms Ireland Ltd., Block J, SerpentineAvenue, Dublin 4, Ireland (“Meta Platforms Ireland”). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Facebook (by Meta) is usually transferred to a Meta Platforms, Inc., 1601 Willow Road, Menlo Park, California 94025, USA server and stored there. Data processing when visiting a Facebook (by Meta) fan page is based on an agreement between joint controllers in accordance with Art. 26 GDPR. For more information (information about insights data), please here.

Our service providers are located and/or use servers in the following countries for which the European Commission has decided to have an adequate level of data protection: USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina.

There is a decision by the European Commission on an appropriate level of data protection for the USA as a basis for a transfer to third countries, provided that the respective service provider is certified. Certification is available.

Notwithstanding the previous paragraph, personal data relating to Switzerland applies: Until the Swiss adequacy decision for the USA is adopted, the transfer of data will continue to be based on standard data protection clauses issued by the European Commission.

Our service providers are located and/or use servers in these countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Brazil, Mexico. There is no adequacy decision from the European Commission for these countries. Our cooperation with you is based on these guarantees: European Commission standard data protection clauses.

instagram (by Meta) is an offer from Meta Platforms Ireland Ltd., Block J, SerpentineAvenue, Dublin 4, Ireland (“Meta Platforms Ireland”) The information automatically collected by Meta PlatformSireland about your use of our online presence on Instagram is usually transferred to a server of Meta Platforms, Inc., 1601 Willow Road, Menlo Park, CA 94025, USA, Menlo Park, California 94025, USA, Menlo Park, California 94025, USA. Data processing when visiting an Instagram (by Meta) fan page is based on an agreement between joint controllers in accordance with Art. 26 GDPR. For more information (information about insights data), please here.

Our service providers are located and/or use servers in the following countries for which the European Commission has decided to have an adequate level of data protection: USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina.

There is a decision by the European Commission on an appropriate level of data protection for the USA as a basis for a transfer to third countries, provided that the respective service provider is certified. Certification is available.

Notwithstanding the previous paragraph, personal data relating to Switzerland applies: Until the Swiss adequacy decision for the USA is adopted, the transfer of data will continue to be based on standard data protection clauses issued by the European Commission.

Our service providers are located and/or use servers in these countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Brazil, Mexico. There is no adequacy decision from the European Commission for these countries. Our cooperation with you is based on these guarantees: European Commission standard data protection clauses.

pinterest is an offer from Pinterest EuropeLtd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland (“Pinterest”). The information automatically collected by Pinterest about your use of our online presence on Pinterest is usually transferred to a server of Pinterest, Inc., 505 Brannan St., San Francisco, CA 94107, USA and stored there.

Our service providers are located and/or use servers in countries outside the EU and the EEA for which the European Commission has decided to establish an appropriate level of data protection.

Our service providers are located and/or use servers in countries outside the EU and the EEA. There is no adequacy decision from the European Commission for these countries. Our cooperation with you is based on standard data protection clauses issued by the European Commission.

linkedin is an offer from LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”). The information automatically collected by LinkedIn about your use of our online presence on LinkedIn is usually sent to a LinkedIn Corporation server, 1000W. Maude Avenue, Sunnyvale, CA 94085, USA and stored there.

Our service providers are located and/or use servers in the following countries for which the European Commission has decided to establish an appropriate level of data protection: USA.

There is a decision by the European Commission on an appropriate level of data protection for the USA as a basis for a transfer to third countries, provided that the respective service provider is certified. Until certification by our service providers, data transmission will continue to be based on this basis: standard data protection clauses issued by the European Commission.

Notwithstanding the previous paragraph, personal data relating to Switzerland applies: Until the Swiss adequacy decision for the USA is adopted, the transfer of data will continue to be based on standard data protection clauses issued by the European Commission.

10. Contact options and your rights

Your rights
As a data subject, you have the following rights:
- in accordance with Article 15 GDPR, the right to request information about your personal data processed by us to the extent specified there;

- in accordance with Article 16 GDPR, the right to immediately request the correction of incorrect or completed personal data stored by us;

- in accordance with Article 17 GDPR, the right to request the deletion of your personal data stored by us, unless further processing

- to exercise the right to freedom of expression and information;
- to fulfill a legal obligation;
- for reasons of public interest, or
- is necessary to assert, exercise or defend legal claims;

- in accordance with Article 18 GDPR, the right to request the restriction of the processing of your personal data, insofar as

- the accuracy of the data is disputed by you;
- the processing is unlawful, but you refuse to delete it;
- we no longer need the data, but you need it to assert, exercise or defend legal claims, or
- you have lodged an objection to processing in accordance with Art. 21 GDPR;

- in accordance with Article 20 GDPR, the right to receive your personal data, which you have provided to us, in a structured, commonly used and machine-readable format or to request transmission to another person responsible;

- in accordance with Article 77 GDPR, the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or place of work or our company headquarters.

Right to object
Insofar as we process personal data as explained above in order to protect our legitimate interests that prevail in the context of a balance of interests, you can object to this processing with effect for the future. If processing is carried out for direct marketing purposes, you can exercise this right at any time as described above. Insofar as the processing is carried out for other purposes, you have the right to object only if there are reasons arising from your particular situation.

After exercising your right to object, we will no longer process your personal data for these purposes, unless we can prove compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.

This does not apply if processing is carried out for direct marketing purposes. We will then no longer process your personal data for this purpose.

contact options
If you have any questions about the collection, processing or use of your personal data, information, correction, restriction or deletion of data, as well as the revocation of any consent given or objection to a specific use of data, please contact us directly using the contact details in our legal notice.

TERMS AND CONDITIONS created with Trusted Shops legal copywriter