Data protection
Privacy policy
Unless otherwise stated below, the provision of your personal data is not required by law or contract, nor is it necessary for the conclusion of a contract. You are not obliged to provide the data. Failure to provide data has no consequences. This only applies if no other information is provided in the following processing operations.
"Personal data" means any information relating to an identified or identifiable natural person.
The processing is carried out on the basis of Art. 6 para. 1 lit. f GDPR out of our overriding legitimate interest in ensuring the trouble-free operation of our website and to improve our offer.
Your data will be transferred to Canada, among other countries. The EU Commission has issued an adequacy decision for data transfers to Canada.
Contact us
Responsible person
Please contact us on request. The person responsible for data processing is Niklas Möller, Am Stieggarten 15, 12589 Berlin Germany, + 49 (0) 33397 647330, info@naturalgoodsberlin.de
Unsolicited contact by the customer by e-mail
If you contact us by e-mail on your own initiative, we will only collect your personal data (name, e-mail address, message text) to the extent provided by you. The data processing serves to process and respond to your contact request.
If the contact serves to carry out pre-contractual measures (e.g. advice in the event of an interest in purchasing, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 para. 1 lit. b GDPR.
If contact is made for other reasons, this data processing is carried out on the basis of Art. 6 para. 1 lit. f GDPR due to our overriding legitimate interest in processing and responding to your inquiry. In this case, you have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you based on Art. 6 (1) (f) GDPR.
We will only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods, unless you have consented to further processing and use.
Collection and processing when using the contact form
When you use the contact form, we only collect your personal data (name, email address, message text) to the extent that you have provided it. The data processing serves the purpose of establishing contact.
If the establishment of contact is for the implementation of pre-contractual measures (e.g. advice on (e.g. interest in a purchase, preparation of an offer) or relates to a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 para. 1 lit. b GDPR.
If contact is made for other reasons, this data processing is carried out on the basis of Art. 6 para. 1 lit. f GDPR due to our overriding legitimate interest in processing and responding to your inquiry. In this case, you have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you based on Art. 6 (1) (f) GDPR.
We will only use your e-mail address to process your request. Your data will then be deleted in compliance with statutory retention periods, unless you have consented to further processing and use.
Customer account orders
Customer account
When you open a customer account, we collect your personal data to the extent specified there. The purpose of data processing is to improve your shopping experience and simplify order processing. The processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR with your consent. You can withdraw your consent at any time by notifying us without affecting the lawfulness of processing based on consent before its withdrawal. Your customer account will then be deleted.
Your data will be transferred to Canada, among other countries. The EU Commission has issued an adequacy decision for data transfers to Canada.
Advertising
Use of your personal data for sending postal advertising
We use your personal data (name, address), which we have received as part of the sale of a product or service, to send you postal advertising, provided you have not objected to this use. The provision of this data is necessary for the conclusion of the contract. Failure to provide this data means that no contract can be concluded.
The processing is carried out on the basis of Art. 6 para. 1 lit. f GDPR due to our overriding legitimate interest in direct advertising. You can object to this use of your address data at any time by notifying us. The contact details for exercising your objection can be found in the legal notice.
Use of the E-mail address for sending newsletters
We use your e-mail address independently of the contract processing exclusively for our own advertising purposes for sending newsletters, provided you have expressly consented to this. The processing takes place on the basis of Art. 6 para. 1 lit. a GDPR with your consent. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. You can unsubscribe from the newsletter at any time by using the corresponding link in the newsletter or by notifying us. Your e-mail address will then be removed from the mailing list.
Your data will be passed on to a service provider for e-mail marketing as part of order processing. Your data will not be passed on to any other third parties.
Use of the e-mail address for sending direct advertising
We use your e-mail address, which we have received as part of the sale of a product or service, for the electronic sending of advertising for our own goods or services that are similar to those that you have already purchased from us, unless you have objected to this use. The provision of the e-mail address is necessary for the conclusion of the contract. Failure to provide it means that no contract can be concluded. The processing is carried out on the basis of Art. 6 para. 1 lit. f GDPR out of our overriding legitimate interest in direct advertising. You can object to this use of your email address at any time by notifying us. The contact details for exercising your objection can be found in the legal notice. You can also use the link provided for this purpose in the advertising email. There are no costs for this other than the transmission costs according to the basic tariffs.
Use of Klaviyo
We use the service of Klaviyo Inc. (125 Summer St Floor 7, Boston, MA 02111, USA; "Klaviyo") for newsletter dispatch within the framework of order processing.
We pass on the information you provide during newsletter registration (e-mail address, first and last name if applicable) to Klaviyo. The data processing serves the purpose of sending the newsletter and its statistical evaluation.
In order to evaluate newsletter campaigns, the newsletters sent contain a 1x1 pixel graphic (tracking pixel) or a tracking link. This allows us to determine whether you have opened the newsletter and whether you have clicked on any integrated links. In this context, we collect your personal data such as IP address, browser type and device as well as the time. This data can be used to create user profiles under a pseudonym. The data collected will not be used to identify you personally. The data collected is only used for statistical analysis to improve newsletter campaigns.
Your data is generally transmitted to Klaviyo servers in the USA and stored there. An adequacy decision of the EU Commission is in place for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Klaviyo has certified itself in accordance with the TADPF and is therefore committed to complying with European data protection principles.
Your personal data is processed on the basis of Art. 6 para. 1 lit. f GDPR due to our overriding legitimate interest in a targeted, effective advertising and user-friendly newsletter system. You have the right, on grounds relating to your particular situation, to object at any time to the processing of personal data concerning you.
You can find more information on data protection at Klaviyo at https://www.klaviyo.com/legal/privacy-notice and at https://www.klaviyo.com/legal/data-processing-agreement.
Use of the mobile phone number for sending SMS advertising
We use your mobile phone number exclusively for our own advertising purposes for sending SMS advertising, irrespective of contract processing, provided that you have expressly consented to this.
Processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR with your consent. You can withdraw your consent at any time by notifying us without affecting the lawfulness of processing based on consent before its withdrawal. Your mobile phone number will then be removed from the mailing list.
Your mobile phone number will be passed on to a service provider for SMS dispatch as part of order processing.
Shipping service provider merchandise management
Forwarding of the e-mail address to shipping companies for information about the shipping status
We forward your e-mail address to the shipping company as part of the contract processing, provided you have expressly consented to this during the ordering process. The purpose of the transfer is to inform you by e-mail about the shipping status. The processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR with your consent. You can withdraw your consent at any time by notifying us or the transport company without affecting the lawfulness of processing based on consent before its withdrawal.
Use of an external merchandise management system
We use a merchandise management system for contract processing as part of order processing. For this purpose, your personal data collected as part of the order will betransmittedto
Billbee GmbH, Arolser Str. 10, 34477 Twistetal, Germany .
The processing of your personal data serves the purpose of fulfilling the contract concluded with you and is based on Art. 6 para. 1 lit. b GDPR.
Payment service provider credit information
Cookies may be stored that enable your browser to be recognized. The resulting data processing takes place on the basis of Art. 6 para. 1 lit. f GDPR from our overriding legitimate interest in a customer-oriented offer of different payment methods. You have the right to object to this processing of your personal data at any time on grounds relating to your particular situation.
cookies
Our website uses cookies. Cookies are small text files that are stored in the internet browser or by the internet browser on a user's computer system. When a user accesses a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again.
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09
Analysis of advertising tracking communication
Use of Google Analytics 4
We use the web analysis service Google Analytics from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
The data processing serves the purpose of analyzing this website and its visitors as well as for marketing and advertising purposes. For this purpose, Google will use the information obtained on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage to the website operator.
The following information may be collected: IP address, date and time of the page view, click path, information about the browser and device you are using, pages visited, referrer URL (website from which you accessed our website), location data, purchase activities. Your data may be linked by Google with other data, such as your search history, your personal accounts, your usage data from other devices and all other data that Google has about you.
The IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area.
Google uses technologies such as cookies, web storage in the browser and tracking pixels that enable an analysis of your use of the website. The use of cookies or comparable technologies takes place with your consent on the basis of § 25 para. 1 sentence 1 TTDSG i.V.m. Art. 6 para. 1 lit. a GDPR.
The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
The information generated about your use of this website is usually transferred to a Google server in the USA and stored there. There is an adequacy decision by the EU Commission for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has therefore undertaken to comply with European data protection principles. Both Google and US government authorities have access to your data.
You can find more information on terms of use and data protection at https://policies.google.com/technologies/partner-sites and at https://policies.google.com/privacy?hl=de&gl=de
and https://business.safety.google/privacy/
Use of Hotjar
On our website we use the analysis tool of Hotjar Ldt. (Level 2, St Julian's Business Centre, 3, Elia Zammit Street, St Julians STJ1000, Malta; "Hotjar").
The purpose of data processing is the needs-based design, optimization and analysis of our website.
The tool is used to randomly record the movements of site visitors on the website. This creates a log of mouse movements, scrolling behavior, length of stay and clicks on the website (so-called heatmap).
Hotjar uses cookies, among other things, for this purpose. The following information may be collected in the process IP address (in anonymized form), information about the device you are using (screen size, devices, unique device identifier), information about the browser you are using, location data (country only), preferred language for displaying the website, operating system used. Detailed information on the cookies used, their function and storage duration can be found here: https://help.hotjar.com/hc/en-us/articles/115011789248-Hotjar-Cookies.
These data are used to create user profiles under a pseudonym. The data is not used to personally identify the website visitor and is not merged with the personal data of the bearer of the pseudonym. Hotjar is contractually prohibited from selling the collected data to other third parties.
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Hotjar is not certified under the TADPF. The data transfer takes place, among other things, on the basis of appropriate protective measures. Hotjar will provide you with further information on the measures taken on request.
The use of cookies or comparable technologies is carried out with your consent on the basis of § 25 para. 1 sentence 1 TTDSG in conjunction with. Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
Further information on data protection when using Hotjar can be found here: https://www.hotjar.com/legal/policies/privacy#enduserenglish.
Use of Shopify statistics
We use the statistics and analysis functions of Shopify International Limited (2nd Floor Victoria Buildings, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") on our website as part of order processing. Shopify is a company affiliated with Shopify Inc (151 O'Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada)
The purpose of data processing is to analyze this website and its visitors. For this purpose, data is stored for marketing and optimization purposes and provided in reports, analyses and statistics. Among other things, the following device information is collected and processed: Web browser information, IP address, time zone and some of the cookies installed on your device. When you navigate the website, information is also collected about the web pages or products accessed, the referrer URL (the website from which you accessed our website) and your browser. information about how you interact with the website. Technologies such as cookies, web beacons, tags and pixels (electronic files to collect information about how you navigate the website) are used for this purpose.
Cookies or comparable technologies are used with your consent on the basis of Section 25 (1) sentence 1 TTDSG in conjunction with Art. 6 (1) lit. a GDPR. Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
You can find more information on data protection at Shopify at https://www.shopify.com/de/legal/datenschutz, information on the order processing contract at https://www.shopify.com/de/legal/dpa and information on the cookies used at https://www.shopify.com/de/legal/cookies.
You can deactivate the remarketing function "Custom Audiences" here. For more information on the collection and use of data by Meta, your rights in this regard and ways to protect your privacy, please refer to Meta's privacy policy at https://www.facebook.com/about/privacy/.
We use the online advertising program "Google Ads" on our website and in this context conversion tracking (visit action evaluation). Google Conversion Tracking is an analysis service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; Google).
When you click on an ad placed by Google, a conversion tracking cookie is placed on your computer. These cookies have a limited validity, do not contain any personal data and are therefore not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognize that you have clicked on the ad and have been redirected to this page. Each Google Ads customer receives a different cookie. It is therefore not possible for cookies to be tracked via the websites of Ads customers.
The information obtained with the help of the conversion cookie is used to create conversion statistics. This tells us the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag. However, we do not receive any information with which users can be personally identified.
Your data may be transmitted to the servers of Google LLC in the USA. An adequacy decision by the EU Commission is in place for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles.
You can find more information and Google's privacy policy at: https://www.google.de/policies/privacy/ and https://business.safety.google/privacy/.
Use of Google AdSense
We use the AdSense function of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. The purpose of data processing is to rent out advertising space on the website and to target visitors to the website with interest-based advertising. This function is used to display personalized, interest-based advertisements from the Google Display Network to visitors to the provider's website. Google uses cookies that enable your use of the website to be analyzed. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. An adequacy decision of the EU Commission is in place for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles. Google may transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf. Google will not associate your IP address with any other data held by Google.
The use of cookies or similar technologies takes place with your consent on the basis of § 25 para. 1 sentence 1 TTDSG in conjunction with. Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
You can find more information and Google's privacy policy at: https://www.google.com/policies/technologies/ads/ and https://www.google.de/policies/privacy/ https://www.google.com/recaptcha/intro/android.html , https://www.google.com/privacy. and https://business.safety.google/privacy/.
We use the remarketing or "similar target groups" function of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
The application serves the purpose of analyzing visitor behavior and visitor interests. Google uses cookies to carry out the analysis of website usage, which forms the basis for the creation of interest-based advertisements. Cookies are used to record visits to the website and anonymized data on the use of the website. No personal data of visitors to the website is stored. If you subsequently visit another website in the Google Display Network, you will be shown advertisements that are highly likely to be of interest to you. take into account previously accessed product and information areas.
Your data may be transmitted to servers of Google LLC in the USA. An adequacy decision of the EU Commission is in place for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles.
The use of cookies or comparable technologies takes place with your consent on the basis of Section 25 (1) sentence 1 TTDSG i.V.m. Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
You can find more information about Google Remarketing and the associated privacy policy at: https://www.google.com/privacy/ads/ and at: https://business.safety.google/privacy/
Use of Microsoft Advertising
We use Microsoft Advertising from Microsoft Corporation (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA; "Microsoft") on our website.
The data processing serves marketing and advertising purposes and the purpose of measuring the success of the advertising measures (conversion tracking). We learn the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag. However, it is not possible to personally identify these users. Microsoft Advertising uses technologies such as cookies and tracking pixels that enable your use of the website to be analyzed. When you click on an advertisement placed by Microsoft Advertising, a cookie for conversion tracking is stored on your computer. This cookie has a limited validity and is not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Microsoft and we can recognize that you have clicked on the ad and have been redirected to this page. The following information may be collected: IP address, identifiers assigned by Microsoft (identifiers), information about the browser you are using and the device you are using, referrer URL (website from which you accessed our website), URL of our website.
Your data may be transferred to the USA. There is an adequacy decision by the EU Commission for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Microsoft has certified itself in accordance with the TADPF and has therefore undertaken to comply with European data protection principles.
The use of cookies or comparable technologies takes place with your consent on the basis of § 25 para. 1 sentence 1 TTDSG i.V.m. Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
You can find more information on data protection and the cookies used by Microsoft here.
Use of the Pinterest tag
We use the Pinterest tag from the Pinterest Europe Limited (Palmerston House, 2nd, Fenian Street, Floor, Dublin 2, Ireland "Pinterest").
The purpose of the application is to target visitors to the website with interest-based advertising on the Pinterest social network. The Pinterest conversion tag has been implemented on the website for this purpose. This tag is used to establish a direct connection to the Pinterest servers when the website is visited. This tells the Pinterest server which of our pages you have visited. Pinterest assigns this information to your personal Pinterest user account if you are logged into the social network. When you visit Pinterest, you will then be shown personalized, interest-based Pinterest ads.
If you access our website via a pin on the Pinterest social network, a cookie for conversion tracking is stored on your computer. These cookies have a limited validity, do not contain any personal data and are therefore not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Pinterest and we can recognize that you have clicked on the pin and have been redirected to this page. The information collected with the help of the conversion cookie is used to create conversion statistics and thus to optimize our website. Among other things, the following information can be processed: Total number of users who clicked on one of our pins and were redirected to our website, subpages visited on our website (e.g. category or product pages), search queries on our website, your shopping cart contents, completed transactions.
Your data may be transferred to the USA. An adequacy decision by the EU Commission is in place for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified under the TADPF. The data transfer takes place, among other things, on the basis of standard contractual clauses as suitable guarantees for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.
The use of cookies or comparable technologies takes place with your consent on the basis of § 25 para. 1 sentence 1 TTDSG i.V.m. Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
For more information on the collection and use of data by Pinterest, your rights in this regard and ways to protect your privacy, please refer to Pinterest's privacy policy at https://policy.pinterest.com/de/privacy-policy.
We use the live chat system of Zendesk Inc. (1019 Market Street, 6th Floor, San Francisco, California 94103, USA; "Zendesk") on our website.
The system is used for the purpose of communication between you and us as the provider. This data can be used to create user profiles under a pseudonym. Cookies are used for this purpose. The cookies make it possible to recognize the Internet browser.
Your data may be transmitted to the USA. For the USA a adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Zendesk has certified itself in accordance with the TADPF and has therefore undertaken to comply with European data protection principles.
The use of cookies or comparable technologies takes place with your consent on the basis of § 25 para. 1 sentence 1 TTDSG i.V.m. Art. 6 para. 1 lit. a GDPR. Your personal data is processed with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
For more information on the collection and use of data by Zendesk, your rights in this regard and options for protecting your privacy, please refer to Zendesk's privacy policy at https://www.zendesk.com/company/customers-partners/privacy-policy/.
Plug-ins and other
We use the Google Tag Manager of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
This application is used to manage JavaScript tags and HTML tags that are used to implement tracking and analysis tools in particular. The data processing serves the purpose of designing and optimizing our website to meet your needs.
The Google Tag Manager itself does not store cookies or process personal data. However, it enables the triggering of other tags that can collect and process personal data.
You can find more information on terms of use and data protection here.
Use of social plug-ins via "Shariff "
We use social network plug-ins on our website. To ensure that you retain control over your data, we use the data protection-safe "Shariff" buttons.
Without your express consent, no links to the servers of the social networks are established and consequently no data is transmitted.
"Shariff" is a development of the specialists at the computer magazine c't. It enables more privacy on the Internet and replaces the usual "Share" buttons of social networks. You can find more information about the Shariff project here https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html.
When you click on the buttons, a pop-up window appears in which you can log in to the respective provider with your data. A direct connection to the social networks is only established after you have actively logged in.
By logging in, you give your consent to the transfer of your data to the respective social media provider. Among other things, your IP address and information about which of our pages you have visited will be transmitted. If you are connected to one or more of your social network accounts at the same time, the information collected will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your social media accounts before visiting our website and before activating the buttons. The social networks named below are integrated using the "Shariff" function.
Further information on the scope and purpose of the The collection and use of data as well as your rights in this regard and options for protecting your privacy can be found in the linked data protection notices of the providers.
Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://www.facebook.com/policy.php
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself in accordance with the TADPF and is therefore committed to complying with European data protection principles.
Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland) https://help.instagram.com/155833707900388.
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself in accordance with the TADPF and is therefore committed to complying with European data protection principles.
Pinterest of Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA)
https://policy.pinterest.com/de/privacy-policy
Your data may be transferred to the USA. There is an adequacy decision by the EU Commission for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified under the TADPF.
Use of social plug-ins using the "2-click solution "
We use social network plug-ins on our website using the "2-click solution". This means that no connections to the servers of the social networks are established without your express consent and consequently no data is transmitted.
With the standard integration of plug-ins, a link is established between your computer and the servers of the social network provider when you access the pages of our website that contain such a plug-in and the plug-in is displayed on the page by notifying your browser. Both your IP address and the information about which of our pages you have visited are transmitted to the provider servers. This applies regardless of whether you are registered or logged in to the social network. Transmission also takes place for users who are not registered or not logged in. If you are also logged into the Facebook social network, this information will be assigned to your personal user account. When using the plug-in functions (e.g. by clicking the button), this information is also assigned to your user account, which you can only prevent by logging out before using the plug-in. To ensure that you retain control over your data, we have decided to initially deactivate the corresponding button. You can recognize this by the greyed-out button. Without your express consent - in the form of activating the button - no link to the social network server will be established and consequently no data will be transmitted.
Only when you activate the button will the button become active (highlighted in color) and a direct connection to the social network servers will be established.
By activating it, you give your consent to the transmission of your data to the respective social network provider. Among other things, your IP address and information about which of our pages you have visited will be transmitted. If you are simultaneously using one or If you are connected to several of your social network accounts, the information collected will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your user accounts with the social networks before visiting our website and before activating the buttons.
The following social networks are integrated using the "2-click function". For more information on the scope and purpose of the collection and use of the data as well as your rights and options for protecting your privacy, please refer to the linked data protection notices of the providers.
Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://www.facebook.com/policy.php
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself in accordance with the TADPF and is therefore committed to complying with European data protection principles.
Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland) :
http://instagram.com/legal/privacy/
Your data may be transferred to the USA. There is an adequacy decision by the EU Commission for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself in accordance with the TADPF and is therefore committed to complying with European data protection principles.
Pinterest of Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA):
https://policy.pinterest.com/de/privacy-policy
https://help.pinterest.com/de/articles/personalization-and-data
Your data may be transferred to the USA. There is an adequacy decision by the EU Commission for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified under the TADPF.
Use of the single sign-on function of Facebook
We use the single sign-on function (formerly Facebook Connect) of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; "Facebook") on our website.
Meta Platforms Ireland and we are jointly responsible for the collection of your data and the transmission of this data to Facebook when the service is integrated. This is based on an agreement between us and Meta Platforms Ireland on the joint processing of personal data, in which the respective responsibilities are defined. The agreement is available at https://www.facebook.com/legal/controller_addendum. Accordingly, we are responsible in particular for fulfilling the information obligations pursuant to Art. 13, 14 GDPR, for compliance with the security requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service and for compliance with the obligations pursuant to Art. 33, 34 GDPR, insofar as a breach of the protection of personal data affects our obligations under the joint processing agreement. Meta Platforms Ireland is responsible for enabling the rights of data subjects in accordance with Art. 15 - 20 GDPR, complying with the security requirements of Art. 32 GDPR with regard to the security of the Service and the obligations under Art. 33, 34 GDPR to the extent that a personal data breach affects Meta Platforms Ireland's obligations under the Joint Processing Agreement.
This feature allows website visitors to log in to the website using their existing Facebook account. The data processing serves the purpose of verification during registration, personalization and interest-based advertising.
In order to offer the function on the website, a connection to the Facebook server is established. Cookies are used for this purpose. The following information may be collected and transmitted to Facebook: IP address, browser information, referrer URL (website from which you accessed our website), location data. This applies regardless of whether you are registered or logged in to the social network. Transmission also takes place for users who are not registered or not logged in. If you are connected to one or more of your social network accounts at the same time, the information collected can also be assigned to your corresponding profiles. You can prevent this assignment by logging out of your social media accounts before visiting our website and before activating the buttons. Your data may be transmitted to the USA. There is an adequacy decision by the EU Commission for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself in accordance with the TADPF and is therefore committed to complying with European data protection principles.
When using the single sign-on function, the website visitor's Facebook profile is linked to a customer account for this website. In doing so, Facebook provides us with the user's personal data as specified in the login process. This may include the following information: Name, address, public profile information (e.g. name, profile picture, age, gender), email address, friends lists, "Like" information.
The use of cookies or comparable technologies takes place with your consent on the basis of § 25 para. 1 sentence 1 TTDSG i.V.m. Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
For more information on the collection and use of data by Facebook, your rights in this regard and options for protecting your privacy, please refer to Facebook's privacy policy at https://www.facebook.com/about/privacy/.
Use of Google invisible reCAPTCHA
We use the invisible reCAPTCHA service of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
This serves the purpose of distinguishing between human input and automated, machine processing. In the background, Google collects and analyzes usage data that is used by Invisible reCaptcha to distinguish regular users from bots. For this purpose, your input is transmitted to Google and used there. In addition, the IP address and any other data required by Google for the Invisible reCAPTCHA service will be transmitted to Google.
This data is processed by Google within the European Union and may also be transmitted to servers of Google LLC in the USA. An adequacy decision of the EU Commission is in place for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles.
The use of cookies or comparable technologies takes place with your consent on the basis of § 25 para. 1 sentence 1 TTDSG i.V.m. Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
Further information on Google reCAPTCHA and the associated privacy policy can be found at: https://www.google.com/recaptcha/intro/android.html, https://www.google.com/privacy. and https://business.safety.google/privacy/.
Use of GoogleMaps
We use the function for embedding GoogleMaps maps from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland, "Google") on our website.
The function enables the visual display of geographical information and interactive maps. Google also collects, processes and uses the data of visitors to the websites when they access the pages in which GoogleMaps maps are integrated.
Your data may also be transmitted to the USA. There is an adequacy decision by the EU Commission for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and is therefore committed to complying with European data protection principles.
The use of cookies or comparable technologies takes place with your consent on the basis of § 25 para. 1 sentence 1 TTDSG i.V.m. Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
You can find more information on the collection and use of data by Google in Google's privacy policy at https://www.google.com/privacypolicy.html. There you also have the option of changing your settings in the data protection center so that you can manage and protect your data processed by Google.
Use of YouTube
We use the function for embedding YouTube videos from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "YouTube") on our website.YouTube is a company affiliated with Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google").
The function displays videos stored on YouTube in an iFrame on the website. The "Extended data protection mode" option is activated. This means that YouTube does not store any information about visitors to the website. Only when you watch a video is information about it transmitted to YouTube and stored there. Your data may be transmitted to the USA. There is an adequacy decision by the EU Commission for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). YouTube has certified itself in accordance with the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or comparable technologies takes place with your consent on the basis of § 25 para. 1 sentence 1 TTDSG i.V.m. Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
For more information on the collection and use of data by YouTube and Google, your rights in this regard and ways to protect your privacy, please refer to YouTube's privacy policy at https://www.youtube.com/t/privacy.
Use of Vimeo
We use plug-ins from Vimeo Inc. (555 West 18th Street New York, New York 10011, USA; "Vimeo") on our website to integrate videos from the "Vimeo" portal.
When you access pages of our website with such a plug-in, a connection to the Vimeo servers is established and the plug-in is displayed on the page by notifying your browser. As a result, both your IP address and the information about which of our pages you have visited are transmitted to the Vimeo servers.
If you are logged in to Vimeo, Vimeo assigns this information to your personal user account. When you use the plug-in functions (e.g. by starting a video by pressing the corresponding button), this information is also assigned to your Vimeo account.
Your data may be transmitted to the USA. An adequacy decision by the EU Commission is in place for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Vimeo is not certified according to the TADPF. The data transfer takes place, among other things, on the basis of standard contractual clauses as suitable guarantees for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.
The use of cookies or comparable technologies takes place with your consent on the basis of § 25 para. 1 sentence 1 TTDSG i.V.m. Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
For more information on the purpose and scope of the collection and further use and processing of data by Vimeo, as well as your rights in this regard and options for protecting your privacy, please refer to Vimeo's privacy policy: https://vimeo.com/privacy
Integration of the logo of the "FairCommerce" initiative
The logo of the "FairCommerce" initiative (Händlerbund e.V., Kohlgartenstraße 11 - 13, 04315 Leipzig) is integrated on our website. When you visit our website, the browser used on your device automatically sends information to the Händlerbund e.V. server. This information is temporarily stored in a so-called server log file for 7 days. The following information is collected without any action on your part and stored until it is automatically deleted:
- IP address of the requesting computer,
- Date and time of access,
- Name and URL of the retrieved file,
- the website from which access was made (referrer URL)
- browser used and, if applicable, the operating system of your computer and the name of your access provider.
Temporary storage of the IP address by the system is necessary to enable delivery of the website. For this purpose, the IP address must remain stored for the duration of the session. The data is stored in log files to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of the information technology systems. This data is not stored together with other personal data. The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR.
Use of Google Fonts
We use Google Fonts from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
The purpose of data processing is to ensure the uniform display of fonts on our website. To load the fonts, a connection to Google servers is established when the page is accessed. Cookies may be used for this purpose. Among other things, your IP address and information about the browser you are using are processed and transmitted to Google. This data is not linked to your Google account.
Your data may be transmitted to the USA. There is an adequacy decision by the EU Commission for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has therefore undertaken to comply with European data protection principles.
The use of cookies or comparable technologies takes place with your consent on the basis of Section 25 (1) sentence 1 TTDSG in conjunction with Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
You can find more information on data processing and data protection at https://www.google.de/intl/de/policies/ and at https://developers.google.com/fonts/faq.
Your data may be transmitted to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles.
Rights of data subjects and storage duration
Duration of storage
After the contract has been fully processed, the data will initially be stored for the duration of the warranty period, then in accordance with statutory retention periods, in particular under tax and commercial law, and then deleted after expiry of the period, unless you have consented to further processing and use.
Rights of the data subject
If the legal requirements are met, you have the following rights under Art. 15 to 20 GDPR: right to information, to rectification, to erasure, to restriction of processing, to data portability.
You also have the right to object to processing based on Article 6(1)(f) GDPR and to processing for the purposes of direct marketing in accordance with Article 21(1) GDPR.
Right to lodge a complaint with the supervisory authority
In accordance with Art. 77 GDPR, you have the right to lodge a complaint with the supervisory authority if you believe that your personal data is being processed unlawfully.
You can lodge a complaint at You can contact the supervisory authority responsible for us using the following contact details:
Berliner Beauftragte für Datenschutz und Informationsfreiheit
Friedrichstr. 219
Visitor entrance: Puttkamerstr. 16 - 18 (5th floor)
10969 Berlin
Tel.+49 30 138890
Fax: +49 30 2155050
Email: mailbox@datenschutz-berlin.de
Right to object
If the personal data processing listed here is based on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR, you have the right to object to this processing at any time with effect for the future for reasons arising from your particular situation.
Once you have objected, the processing of the data concerned will cease unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or if the processing serves the establishment, exercise or defense of legal claims.
If personal data is processed for direct marketing purposes, you can object to this processing at any time by notifying us. Once you have objected, we will stop processing the data concerned for the purpose of direct marketing.
last update: 29.11.2023