Privacy policy

Data protection declaration

Unless stated otherwise below, the provision of your personal data is neither legally nor contractually obligatory, nor required for conclusion of
a contract. You are not obliged to provide your data. Not providing it will have no consequences. This only applies as long as the processing
procedures below do not state otherwise.
“Personal data” is any information relating to an identified or identifiable natural person.
Server log files
You can use our websites without submitting personal data.
Every time our website is accessed, user data is transferred to us or our web hosts/IT service providers by your internet browser and stored in
server log files. This stored data includes for example the name of the site called up, date and time of the request, the IP address, amount of
data transferred and the provider making the request. The processing is carried out on the basis of Article 6(1) f) GDPR due to our legitimate
interests in ensuring the smooth operation of our website as well as improving our services.
Your data may be transferred to third countries outside the European Union for which an adequacy decision has been made by the EU
Commission.
Contact
Responsible person
Contact us at any time. The person responsible for data processing is: Kerstin Karges, Kaiser-Friedrich-Str.
90, 14055 Berlin Deutschland, 03034506800, mail@kisui.de
Proactive contact of the customer by e-mail
If you make contact with us proactively via email, we shall collect your personal data (name, email address, message text) only to the extent
provided by you. The purpose of the data processing is to handle and respond to your contact request.
If the initial contact serves to implement pre-contractual measures (e.g. consultation in the case of purchase interest, order creation) or
concerns an agreement already concluded between you and us, this data processing takes place on the basis of Article 6(1)(b) GDPR.
If the initial contact occurs for other reasons, this data processing takes place on the basis of Article 6(1)(f) GDPR for the purposes of our
overriding, legitimate interest in handling and responding to your request. In this case, on grounds relating to your particular situation,
you have the right to object at any time to this processing of personal data concerning you and carried out on the basis of Article
6(1)(f) GDPR. We will only use your email address to process your request. Your data will subsequently be deleted in compliance with statutory retention
periods, unless you have agreed to further processing and use.
Collection and processing when using the contact form
When you use the contact form we will only collect your personal data (name, email address, message text) in the scope provided by you. The
data processing is for the purpose of making contact.
If the initial contact serves to implement pre-contractual measures (e.g. consultation in the case of purchase interest, order creation) or
concerns an agreement already concluded between you and us, this data processing takes place on the basis of Article 6(1)(b) GDPR.
If the initial contact occurs for other reasons, this data processing takes place on the basis of Article 6(1)(f) GDPR for the purposes of our
overriding, legitimate interest in handling and responding to your request. In this case, on grounds relating to your particular situation,
you have the right to object at any time to this processing of personal data concerning you and carried out on the basis of Article
6(1)(f) GDPR. We will only use your email address to process your request. Finally your data will be deleted, unless you have agreed to further processing
and use.
Use of Calendly
We use the appointment booking function “Calendly” from the provider Calendly LLC (BB&T Tower, 271 17th St NW, Atlanta, GA 30363, USA)
on our website. When using this function, we collect and process your personal data (first and last name, email address and telephone number, message text)
only to the extent provided by you. The data processing serves the purpose of assigning appointments, as well as improving user
friendliness.
Calendly uses technologies such as cookies. The following information, among other things, may be collected and transmitted to Calendly: IP
address, date and time of the page view, device model, information about the browser and operating system you are using, as well as the
location.
Your data may be transferred to third countries such as the USA. For the USA, there is an adequacy decision of the EU Commission, the
Trans-Atlantic Data Privacy Framework (TADPF). Calendly has certified itself in accordance with the TADPF and has thus undertaken to
comply with European data protection principles.
The processing of your personal data for booking appointments is realised on the basis of Art. 6 Para. 1 Letter b GDPR for the fulfilment of the
contract concluded with us, or for the implementation of pre-contractual measures.
The use of cookies or comparable technologies is carried out with your consent on the basis of Art. 25 para. 1 p. 1 TDDDG in conjunction with
Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR.
You can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
You can find more information on data protection and the use of cookies by Calendly at https://calendly.com/privacy.
Use of WeTransfer
We use the WeTransfer service of WeTransfer B.V. (Willem Fenengastraat 19, 1096 BL Amsterdam, Netherlands; “WeTransfer”) to send files
up to 2 GB in size at your request.
The purpose of using this service is to transfer large files in high quality. For this purpose, we pass on your e-mail address and the file to be
transferred to WeTransfer. WeTransfer generates a download link that is sent to you and us by e-mail. The data is encrypted during
transmission and storage by WeTransfer and can only be accessed via the download link.
Your personal data may be transmitted to WeTransfer servers in the USA and temporarily stored there (partly unencrypted). For the USA,
there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). WeTransfer is not certified under
the TADPF. The data transfer takes place, among other things, on the basis of standard contractual clauses as appropriate guarantees for the
protection of personal data, viewable at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-dataprotection/standard-contractual-clauses-scc_de.
Processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR with your consent, insofar as you have expressly consented to the use of
WeTransfer.
You can withdraw your consent at any time by contacting us without affecting the legality of the processing carried out with your consent up to
the withdrawal.
For more information about data protection when using WeTransfer, please visit: https://wetransfer.com/legal/privacy.
Orders
Collection, processing, and transfer of personal data in orders
When you submit an order we only collect and use your personal data insofar as this is necessary for the fulfilment and handling of your order
as well as processing of your queries. The provision of data is necessary for conclusion of a contract. Failure to provide it will prevent the
conclusion of any contract. The processing will occur on the basis of Article 6(1) b) GDPR and is required for the fulfilment of a contract with
you.
Your data is transferred here for example to the shipping companies and dropshipping providers, payment service providers, service providers
for handling the order and IT service providers that you have selected. We will comply strictly with legal requirements in every case. The scope
of data transmission is restricted to a minimum.
Your data may be transferred to third countries outside the European Union for which an adequacy decision has been made by the EU
Commission.
Advertising
Use of your email address for mailing of newsletters
We use your email address outside of contractual processing exclusively to send you a newsletter for our own marketing purposes, if you
have explicitly agreed to this. The processing will be carried out on the basis of art. 6 (1) lit. a GDPR with your consent. You can withdraw your
consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal. You can unsubscribe
from the newsletter at any time using the relevant link in the newsletter or by contacting us. Your email address will then be removed from the
distributor.
Your data will be forwarded to a service provider for email marketing in the course of order processing. It will not be forwarded to other third
parties.
Payment service providers Credit check
Use of PayPal Express
Our website uses the payment service PayPal Express from PayPal (Europe) S.à.r.l. et Cie, S.C.A. (22-24 Boulevard Royal, L-2449
Luxembourg; “PayPal”).
The processing of data enables us to offer you the option of paying via the PayPal Express payment service.
To integrate this payment service it is essential that PayPal collects, stores, and analyses data when you access the website (e.g. IP address,
device type, operating system, browser type, device location). Cookies may be used for this purpose. Cookies allow your internet browser to
be recognised.
The processing of your personal data is based on Art. 6 para. 1 lit. f GDPR out of our overriding legitimate interest in a customer-oriented offer
of different payment methods. On grounds relating to your particular situation, you have the right to object at any time to this
processing of personal data concerning you.
By selecting and using “PayPal Express”, the data required for payment processing will be submitted to PayPal to execute the agreement with
you using the selected payment method. The data is processed on the basis of Article 6(1)(b) GDPR.
Further information on data processing when using the Paypal Express payment service can be found here in the associated data privacy
policy.
The use of PayPal Check-Out
We use the PayPal Check-Out payment service of PayPal (Europe) S.à.r.l. et Cie, S.C.A. (22-24 Boulevard Royal L-2449, Luxembourg;
“PayPal”) on our website. The data processing serves the purpose of being able to offer you payment via the payment service. With the
selection and use of payment via PayPal, credit card via PayPal, direct debit via PayPal or “Pay Later” via PayPal, the data required for
payment processing is transmitted to PayPal in order to be able to fulfill the contract with you with the selected payment method. This
processing is based on Art. 6 para. 1 lit. b DSGVO.
Cookies may be stored that enable your browser to be recognised. The resulting data processing is carried out on the basis of Art. 6 para. 1
lit. f GDPR due to our legitimate interest in a customer-oriented range of varying payment methods. On grounds relating to your particular
situation, you have the right to object at any time to this processing of personal data concerning you.
Credit card via PayPal, direct debit via PayPal & “Pay later” via PayPal.
For individual payment methods such as credit card via PayPal, direct debit via PayPal or “Pay later” via PayPal, PayPal reserves the right, if
necessary, to obtain credit information on the basis of mathematical-statistical methods using credit agencies. For this purpose, PayPal
transmits the personal data required for a credit check to a credit agency and uses the information received about the statistical probability of
a payment default for a weighed decision on the establishment, implementation or termination of the contractual relationship. The credit
information may include probability values (score values), which are calculated on the basis of scientifically recognized mathematicalstatistical methods and in the calculation of which, among other things, address data are included. Your interests worthy of protection are
taken into account in accordance with the statutory provisions. The data processing serves the purpose of credit assessment for a contract
initiation. The processing is carried out on the basis of Art. 6 (1) lit. f DSGVO for our overriding legitimate interest in protecting against
payment default when PayPal makes advance payments.
You have the right to object at any time to this processing of personal data relating to you based on Art. 6 (1) (f) DSGVO for reasons arising
from your particular situation by notifying PayPal. The provision of the data is necessary for the conclusion of the contract with the payment
method requested by you. Failure to provide it will result in the contract not being concluded with the payment method you have chosen.
Local third-party providers
When paying via the payment method of a local third-party provider, the data required for payment processing is transmitted to PayPal. This
processing takes place on the basis of Art. 6 para. 1 lit. b DSGVO. For the execution of this payment method, the data may then be
forwarded by PayPal to the respective provider. This processing takes place on the basis of Art. 6 para. 1 lit. b DSGVO. Local third-party
providers may be, for example:
– Sofort (SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany).
– giropay (Paydirekt GmbH, Stephanstr. 14-16, 60313 Frankfurt am Main, Germany)
Purchase on account via PayPal
When paying via the payment method purchase on account, the data required to process the payment is first transmitted to PayPal. For the
execution of this payment method, the data is then transmitted by PayPal to Ratepay GmbH (Franklinstraße 28-29, 10587 Berlin; “Ratepay”)
in order to be able to fulfill the contract with you with the selected payment method. This processing is based on Art. 6 para. 1 lit. b DSGVO.
Ratepay may conduct a credit check on the basis of mathematical-statistical methods using credit agencies according to the procedure
already described above. The data processing serves the purpose of credit assessment for contract initiation. The processing is carried out on
the basis of Art. 6 (1) lit. f DSGVO from our overriding legitimate interest in protecting against payment default when Ratepay makes advance
payments. For more information on data protection and which credit agencies Ratpay uses, please visit https://www.ratepay.com/legalpayment-dataprivacy/ and https://www.ratepay.com/legal-payment-creditagencies/.
For more information on data processing when using PayPal, please see the associated privacy policy
at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.
Use of Klarna payment options
On our website we use the payment service of Klarna Bank AB (publ) (Sveavägen 46, 111 34 Stockholm, Sweden; “Klarna”). By selecting and
using payment via Klarna, the data required for payment processing is transmitted to Klarna in order to be able to fulfil the contract with you
with the selected payment method. This processing is carried out on the basis of Art. 6 para. 1 lit. b GDPR.
Cookies may be stored that enable your browser to be recognised. The resulting data processing is carried out on the basis of Art. 6 para. 1
lit. f GDPR due to our legitimate interest in a customer-oriented range of varying payment methods. On grounds relating to your particular
situation, you have the right to object at any time to this processing of personal data concerning you.
“Pay Later” (invoice), “Pay Now” (payment by direct debit), “Financing” (hire purchase)
For individual payment methods such as “Pay Later” (invoice), “Pay Now” (payment by direct debit), “Financing” (hire purchase), Klarna
reserves the right, if necessary, to obtain a credit report on the basis of mathematical-statistical procedures using credit reference agencies.
For this purpose, Klarna transmits the personal data required for a credit assessment, such as first and last name, address, gender, email
address, IP address and data related to the order to a credit agency for the purpose of checking the identity and creditworthiness and uses the
obtained information on the statistical probability of a payment default in order to reach a well-considered decision on the establishment,
performance or termination of the contractual relationship. The credit report may contain probability values (score values) which are calculated
on the basis of scientifically recognised mathematical-statistical methods and include, among other things, address data. Your legitimate
interests will be taken into account in accordance with the legal requirements. The data processing serves the purpose of a credit asessment
for contract initiation. The processing is carried out on the basis of art. 6 Par. 1 lit. f GDPR due to our overriding legitimate interest in
protection against payment default if Klarna pays in advance. For reasons that arise from your particular situation, you have the right to object
to the processing of your personal data carried out on the basis of Art. 6 para. 1 lit. f GDPR by notifying Klarna. The provision of the data is
necessary for the conclusion of the contract by means of the payment method of your choice. Failure to provide such data shall mean that the
contract cannot be concluded with the payment method of your choice.
Further information, in particular to which credit agencies Klarna passes on your personal data, can be found for Germany
at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies and for Austria
at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/credit_rating_agencies.
General information about Klarna can be found for Germany at: https://www.klarna.com/de/ and for Austria at https://www.klarna.com/at/. Your
personal data will be treated by Klarna in accordance with the applicable data protection regulations and as specified in Klarna’s data
protection policy for Germany at: https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy and for Austria
at: https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/privacy.
Cookies
Our website uses cookies. Cookies are small text files which are saved in a user’s internet browser or by the user’s internet browser on their
computer system. When a user calls up a website, a cookie may be saved on the user’s operating system. This cookie contains a
characteristic character string which allows the browser to be clearly identified when the website is called up again.
Cookies will be stored on your computer. You therefore have full control over the use of cookies. By choosing corresponding technical settings
in your internet browser, you can be notified before the setting of cookies and you can decide whether to accept this setting in each individual
case as well as prevent the storage of cookies and transmission of the data they contain. Cookies which have already been saved may be
deleted at any time. We would, however, like to point out that this may prevent you from making full use of all the functions of this website.
Using the links below, you can find out how to manage cookies (or deactivate them, among other things) in major browsers:
Chrome Browser: https://support.google.com/accounts/answer/61416?hl=en
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09
Mozilla Firefox: https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
Safari: https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac
technically necessary cookies
Insofar as no other information is given in the data protection declaration below we use only these technically necessary cookies cookies to
make our offering more user-friendly, effective and secure. Cookies also allow our systems to recognise your browser after a page change
and to offer you services. Some functions of our website cannot be offered without the use of cookies. These services require the browser to
be recognised again after a page change.
The use of cookies or comparable technologies is carried out on the basis of Art. 25 para. 2 TDDDG. Processing is carried out on the basis of
art. 6 (1) lit. f GDPR due to our largely justified interest in ensuring the optimal functionality of the website as well as a user-friendly and
effective design of our range of services.
You have the right to veto this processing of your personal data according to art. 6 (1) lit. f GDPR, for reasons relating to your
personal situation.
Use of Borlabs Cookie
Our website uses the consent management tool Borlabs Cookie from Borlabs – Benjamin A. Bornschein (Georg-Wilhelm-Str. 17, 21107
Hamburg, Germany; “Borlabs”).
The tool enables you to grant consents to data processing via the website, in particular the placing of cookies, and to make use of your right of
revocation for consents already granted.
The processing of data serves the purpose of obtaining necessary consents for data processing and to document these, thereby complying
with statutory obligations.
Cookies may be deployed for this purpose. The following information, among others, can be collected: Date and time the page was viewed,
information about the browser and device you are using, UID (randomly assigned anonymous ID), opt-in and opt-out data. This data will not be
passed on to third parties.
The data processing is carried out on the basis of Article 6(1)(c) GDPR to comply with a legal obligation.
More information on data protection at Borlabs can be found at: https://de.borlabs.io/borlabs-cookie/
Analysis Advertising tracking
Use of Google Analytics 4
We use the Google Analytics web analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland;
“Google”) on our website.
The data processing serves the purpose of analyzing this website and its visitors as well as for marketing and advertising purposes. To this
end, Google will use the information obtained on behalf of the operator of this website for the purpose of evaluating your use of the website,
compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator.
In this context, the following information may be collected, among others: IP address, date and time of page view, click path, information about
the browser you are using and the device you are using (device), pages visited, referrer URL (website from which you accessed our website),
location data, purchase activity. Your data may be linked by Google to other data, such as your search history, your personal accounts, your
usage data from other devices, and any other data Google may have about you.
The IP address is shortened beforehand by Google within member states of the European Union or in other contracting states of the
Agreement on the European Economic Area.
Google uses technologies such as cookies, web storage in the browser and tracking pixels that enable an analysis of your use of the
website. The use of cookies or similar technologies takes place with your consent on the basis of § 25 para. 1 p. 1 TDDDG in conjunction with.
Art. 6 para. 1 lit. a DSGVO.
The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a DSGVO. You may revoke your
consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until revocation.
The information generated by this about your use of this website is usually transferred to a Google server in the USA and stored there. For the
USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in
accordance with the TADPF and has thus undertaken to comply with European data protection principles.
Both Google and US government agencies have access to your data.
For more information on terms of use and data protection, please visit https://policies.google.com/technologies/partnersites and https://policies.google.com/privacy?hl=de&gl=de.
Use of Meta Pixel
We use Meta Pixel from Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; “Meta”) on our
website.
Meta and we are jointly responsible for the collection of your data and the transfer of this data to Meta when the service is integrated. The
basis for this is an agreement between us and Meta on the joint processing of personal data, in which the respective responsibilities are
defined. The agreement is available at https://de-de.facebook.com/legal/terms/businesstools. According to this agreement, we are responsible
in particular for the fulfilment of the information obligations in accordance with Arts 13 and 14 GDPR, for compliance with the security
requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service, and for compliance with the
obligations in accordance with Arts 33 and 34 GDPR, insofar as a violation of the protection of personal data affects our obligations under the
agreement on joint processing. Meta is responsible for enabling the rights of the data subject in accordance with Arts 15-20 GDPR, for
complying with the security requirements of Art. 32 GDPR with regard to the security of the service, and for complying with the obligations of
Arts 33 and 34 GDPR, insofar as a breach of personal data protection concerns Meta’s obligations under the joint processing agreement.
The application serves to address the visitor to the website with interest-related advertising on the social networks Facebook and Instagram. We have implemented Meta’s remarketing tag on our website for this purpose. This tag sets up a direct connection to Meta’s servers when
you visit our website. This informs the Meta server which of our web pages you have visited. Meta assigns this information to your personal
Facebook and/or Instagram user account. When you visit the social networks Facebook or Instagram, you will then be shown personalised,
interest-related ads.
The application also serves the purpose of creating conversion statistics. This allows us to find out the total number of users who have clicked
our adverts and were forwarded to a page equipped with a conversion tracking tag as well as what actions are taken after being redirected to
this website. However, they do not receive any information which could be used to personally identify users.
Your data may be transmitted to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy
Framework (TADPF). Meta has certified itself in accordance with the TADPF and has thus undertaken to comply with European data
protection principles.
The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your
consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
For this purpose, you can deactivate the remarketing function “Custom Audiences”. You can find more detailed information on Meta’s
collection and use of data and your associated rights and options for protecting your privacy in Meta’s privacy policy:
https://www.facebook.com/about/privacy/.
Use of Google Ads conversion tracking
Our website uses the online marketing program “Google Ads”, including conversion tracking (evaluation of user actions). Google conversion
tracking is a service operated by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”).
If you click on adverts placed by Google, a cookie is placed on your computer for conversion tracking. These cookies have limited validity, do
not contain any personal data and thus cannot be used for personal identification. If you visit certain pages on our website and the cookie has
not yet expired, we and Google can recognise that you have clicked on the advert and were forwarded to this page. Every Google Ads
customer receives a different cookie. It is therefore not possible to track cookies relating to the websites of Ads customers.
The information collected using the conversion cookie serves the purpose of producing conversion statistics. This allows us to find out the total
number of users who have clicked on our adverts and were forwarded to a page equipped with a conversion tracking tag. However, they do
not receive any information with which could be used to personally identify users.
Your data may be transmitted to Google LLC servers in the USA. For the USA, there is an adequacy decision of the EU Commission, the
Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has thus undertaken to
comply with European data protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of Art. 25 para. 1 p. 1 TDDDG in conjunction with
Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You
can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
You will find more information as well as Google’s data privacy policy at: https://www.google.com/policies/privacy/
Use of Google AdSense
Our website uses the AdSense function by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”).
The data processing serves the purpose of renting out advertising space on the website and using these to address visitors to the website with
targeted, interest-related advertising.
This function displays personalised, interest-related adverts from the Google display network to visitors to the website. Google Analytics uses
cookies, which make it possible to analyse your use of the website.
The information generated by the cookie regarding your use of this website is usually transferred to a Google server in the USA and stored
there. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has
certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles.
Google may also transmit this data to third parties if this is required by law or the third party is processing the data on behalf of Google. On no
account will Google associate your IP address with other Google data.
The use of cookies or comparable technologies is carried out with your consent on the basis of Art. 25 para. 1 p. 1 TDDDG in conjunction with
Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You
can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
You will find more information as well as Google’s data privacy policy at: https://www.google.com/policies/technologies/ads/ and
https://www.google.de/policies/privacy/
Use of the remarketing or “similar target groups” function by Google Inc.
Our website uses the remarketing or “similar target groups” function by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4,
Ireland; “Google”).
This application serves to analyse visitor behaviour and visitor interests.
Google uses cookies to analyse website use, forming the basis for producing interest-related adverts. Cookies allow for the recording of
website visits as well as anonymised data on the use of the website. The personal data of website visitors is not saved. If you then visit
another website in the Google display network you will then be shown adverts which are more likely to take previous areas of product and
information interest into account.
Your data may be transmitted to Google LLC servers in the USA. For the USA, there is an adequacy decision of the EU Commission, the
Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has thus undertaken to
comply with European data protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of Art. 25 para. 1 p. 1 TDDDG in conjunction with
Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You
can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
You can find more detailed information on Google remarketing as well as the associated data privacy policy at:
https://www.google.com/privacy/ads/
Use of Microsoft Advertising
Our website uses Microsoft Advertising from Microsoft Corporation (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399,
USA; “Microsoft”).
The processing of data serves the purposes of marketing and advertising and the purpose of measuring the success of the advertising
measures (conversion tracking). This allows us to find out the total number of users who have clicked on our adverts and were forwarded to a
page equipped with a conversion tracking tag. It is, however, not possible to identify this user personally through this process. Microsoft
Advertising uses technology such as cookies and tracking pixels which make it possible to analyse your use of the website. If you click on
adverts placed by Microsoft Advertising, a cookie is placed on your computer for conversion tracking. This cookie has limited validity and
cannot be used for personal identification. If you visit certain pages on our website and the cookie has not yet expired, we and Microsoft can
recognise that you have clicked on the advert and were forwarded to this page. In this process the following information, inter alia, can be
collected: IP address, identifiers (indicators) assigned by Microsoft, information on the browser and device you are using, Referrer URL
(website via which you accessed our website), URL of our website.
Your data may be transmitted to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy
Framework (TADPF). Microsoft has certified itself in accordance with the TADPF and has thus undertaken to comply with European data
protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of Art. 25 para. 1 p. 1 TDDDG in conjunction with
Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You
can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
More information on data protection and the cookies used by Microsoft can be found at: https://privacy.microsoft.com/de-de/privacystatement
Use of the Pinterest tag
We use the Pinterest tag of Pinterest Europe Limited (Palmerston House, 2nd, Fenian Street, Floor, Dublin 2, Ireland “Pinterest”) on our
website.
The application serves to address the visitor to the website with interest-related advertising on the social network Pinterest. We have
implemented Pinterest’s conversion tag on our website for this purpose. This tag sets up a direct connection to Pinterest’s servers when you
visit our website. This informs the Pinterest server which of our web pages you have visited. Pinterest associates this information with your
personal Pinterest user account if you are logged into the social network. When you visit Pinterest, you will then be shown personalised,
interest-related Pinterest ads. If you reach our website via a Pin on the Pinterest social network, a cookie for conversion tracking is placed on
your computer. These cookies have limited validity, do not contain any personal data and thus cannot be used for personal identification. If you
visit certain pages on our site and the cookie has not expired, we and Pinterest may recognise that you have clicked the Pin and been directed
to that page. The information collected using the conversion cookie serves the purpose of producing conversion statistics and thereby
optimising our website. These can involve the processing of, among other things, the following information: Total number of users who clicked
one of our Pins and were redirected to our website, subpages visited on our website (e.g. category or product pages), search queries on our
website, your shopping cart contents, completed transactions.
Your data may be transmitted to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy
Framework (TADPF). Pinterest is not certified under the TAPF. The data transfer takes place, among other things, on the basis of standard
contractual clauses as suitable guarantees for the protection of personal data, which can be viewed at: https://commission.europa.eu/law/lawtopic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en.
The use of cookies or comparable technologies is carried out with your consent on the basis of Art. 25 para. 1 p. 1 TDDDG in conjunction with
Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You
can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
You can find more detailed information on Pinterest’s collection and use of data and your associated rights and options for protecting your
privacy in Pinterest’s privacy policy: https://policy.pinterest.com/de/privacy-policy.
Use of TikTok Pixel
On our website we use TikTok Pixel by TikTok Technology Limited (10 Earlsfort Terrace, Dublin, D02 T380, Ireland; “TikTok Ireland”) and by
TikTok Information Technologies UK Limited (6th Floor, One London Wall, London, EC2Y 5EB, United Kingdom; “TikTok UK”). Both
companies are the joint controllers (hereinafter referred to as “TikTok”).
The purpose of the data processing is to identify and analyze our customers’ website access and to better target our customers by running
targeted ads and to evaluate the effectiveness of ads on TikTok. TikTok uses technologies such as cookies and pixels that allow your browser
to be recognized. Among others, the following information can be collected and transmitted to TikTok: Date and time of the visit, information
about the browser and device type you are using, screen resolution, IP address. TikTok can associate this information with your personal
TikTok user account. Using pseudonyms, user profiles can be created from the data collected in this way. However, it is not possible to
personally identify the users in this way.
Your data may be transferred to third countries such as the USA. For the USA, there is an adequacy decision of the EU Commission, the
Trans-Atlantic Data Privacy Framework (TADPF). TikTok is not certified under the TAPF. The data transfer takes place, among other things,
on the basis of standard contractual clauses as suitable guarantees for the protection of personal data, which can be viewed at:
https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en.
The use of cookies or comparable technologies takes place with your consent on the basis of Art. 25 para. 1 p. 1 TDDDG in conjunction with
Art. 6 para. 1(a) GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1(a) GDPR. You can
revoke the consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information on data protection please visit: https://www.tiktok.com/legal/page/eea/privacy-policy/de and
https://ads.tiktok.com/i18n/official/policy/controller-to-controller.
Plug-ins
Use of the Google Tag Manager
Our website uses the Google Tag Manager from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”). This
application manages JavaScript tags and HTML tags which are used in particular to implement tracking and analysis tools. The data
processing serves to facilitate the needs-based design and optimisation of our website. The Google Tag Manager itself neither stores cookies
nor processes personal data. It does, however, enable the triggering of further tags which may collect and process personal data. You can
find more detailed information on the terms and conditions of use and data protection at https://www.google.com/intl/de/tagmanager/usepolicy.html
Use of social plug-ins via “Shariff”
Our website uses social network plug-ins. We use data protection-compliant “Shariff” buttons to ensure that you retain control over your
data.No connection is made to the social network servers and no data submitted without your explicit consent. “Shariff” was developed by
specialists at the computer magazine c’t. It enables more personal privacy in the network and replaces the usual social network “share”
buttons. You can find more information on the Shariff project here https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mitDatenschutz-2467514.html. When you click the buttons a pop-up window appears, allowing you to log on with the relevant provider using your data. It is only after you
actively login that a direct connection to the social network is set up. By logging in, you give your permission for the transfer of your data to the
respective social media provider. At this time, information such as your IP address and which websites you have visited is transmitted. Should
you be connected simultaneously with one or more of your social network accounts, the information collected is also assigned to your
corresponding profiles. Therefore, you can only prevent this assignment by logging yourself out before visiting our website and before
activating the button for your social media accounts. The social networks listed below are integrated with the “Shariff” function. You can find
more detailed information on the scope and purpose of collection and use of the data, your associated rights and options for protecting your
privacy in the provider’s privacy policy via the link.
Facebook by Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://www.facebook.com/policy.php
Your data may be transmitted to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy
Framework (TADPF). Meta has certified itself in accordance with the TADPF and has thus undertaken to comply with European data
protection principles.
Instagram by Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland) https://help.instagram.com/155833707900388.
Your data may be transmitted to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy
Framework (TADPF). Meta has certified itself in accordance with the TADPF and has thus undertaken to comply with European data
protection principles.
Pinterest by Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA) https://policy.pinterest.com/en/privacy-policy
Your data may be transmitted to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy
Framework (TADPF). Pinterest is not certified under the TADPF.
Use of Wordfence
We use the Wordfence security plugin from Defiant Inc. (00 5th Ave Ste 4100, Seattle, WA 98104, USA “Wordfence”) on our website as part of
order processing. Data processing is used in particular to protect against viruses and malware, to detect and defend against brute force and
DDoS attacks. For this purpose, Wordfence uses cookies to categorise website visitors as questionable or harmless. For this purpose, the IP
address of the website visitor is stored on the Wordfence servers. IP addresses classified as harmless are placed on a whitelist. Dubious IP
addresses, on the other hand, are placed on a blacklist. For this purpose, our website establishes a permanent connection to the Wordfence
servers so that Wordfence can compare its databases with the access requests sent to our website and block them if necessary.
Your data will be transmitted to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy
Framework (TADPF). Wordfence is not certified under the TADPF. The data transfer takes place, among other things, on the basis of
standard contractual clauses as suitable guarantees for the protection of personal data, which can be viewed at:
https://www.wordfence.com/standard-contractual-clauses/.
The use of cookies or comparable technologies takes place with your consent on the basis of Section 25 para. 1 sentence 1 of the TDDDG in
conjunction with Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1
lit. a GDPR. You can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the
withdrawal.
You can find more detailed information on Wordfence’s collection and use of data and your associated rights and options for protecting your
privacy in Wordfence’s privacy policy: https://www.wordfence.com/privacy-policy/ and https://www.wordfence.com/help/general-dataprotection-regulation/#standard-contractual-clauses.
Use of GoogleMaps
Our website uses the function for embedding Google Maps by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland,
“Google”)
This feature visually represents geographical information and interactive maps. Google also collects, processes and uses data on visitors to
the website when they call up pages with embedded Google maps.
Your data may also be transmitted to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data
Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has thus undertaken to comply with European
data protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of Art. 25 para. 1 p. 1 TDDDG in conjunction with
Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You
can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
Further information on the data collected and used by Google, your rights and privacy can be found in Google’s privacy policy at
https://www.google.com/privacypolicy.html. You also have the option of changing your settings in the data protection centre, allowing you to
administer and protect the data processed by Google.
Use of YouTube
Our website uses the function for embedding YouTube videos by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland;
“YouTube”). YouTube is a company affiliated with Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”).
This feature shows YouTube videos in an iFrame on the website. The option “advanced privacy mode” is enabled here. This prevents
YouTube from storing information on visitors to the website. It is only if you watch a video that information is transmitted to and stored by
YouTube. Your data may be transmitted to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic
Data Privacy Framework (TADPF). YouTube has certified itself in accordance with the TADPF and has thus undertaken to comply with
European data protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of Art. 25 para. 1 p. 1 TDDDG in conjunction with
Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You
can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
Further information on the data collected and used by YouTube and Google and your associated rights and options for protecting your privacy
can be found in YouTube’s privacy policy (https://www.youtube.com/t/privacy).
Using Vimeo
Our website uses plug-ins from Vimeo Inc. (555 West 18th Street New York, New York 10011, USA; “Vimeo”) to integrate videos into the
“Vimeo” portal.
If you access pages on our website that contain this kind of plug-in, this will generate a connection to the Vimeo server and indicate the plugin on the site by means of a message in your browser. Information such as your IP address and which websites you have visited will be
transmitted to the Vimeo server.
If you are logged into Vimeo, Vimeo will assign this information to your personal user account. When using the plug-in functions (e.g. starting a
video by pressing the appropriate button), this information will also be assigned to your Vimeo account.
Your data may be transferred to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy
Framework (TADPF). Vimeo has certified itself in accordance with the TADPF and has thus undertaken to comply with European data
protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of Art. 25 para. 1 p. 1 TDDDG in conjunction with
Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You
can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
Further information on the purpose and scope of enquiry and continued use and processing of the data by Vimeo and your associated rights
and options for protecting your privacy can be found in the Vimeo data privacy policy: https://vimeo.com/privacy
Rights of persons affected and storage duration
Duration of storage
After contractual processing has been completed, the data is initially stored for the duration of the warranty period, then in accordance with the
retention periods prescribed by law, especially tax and commercial law, and then deleted after the period has elapsed, unless you have agreed
to further processing and use.
Rights of the affected person
If the legal requirements are fulfilled, you have the following rights according to art. 15 to 20 GDPR: Right to information, correction, deletion,
restriction of processing, data portability. You also have a right of objection against processing based on art. 6 (1) GDPR, and to processing
for the purposes of direct marketing, according to art. 21 (1) GDPR.
Right to complain to the regulatory authority
You have the right to complain to the regulatory authority according to art. 77 GDPR if you believe that your data is not being processed
legally.
Right to object
If the data processing outlined here is based on our legitimate interests in accordance with Article 6(1)f) GDPR, you have the right for reasons
arising from your particular situation to object at any time to the processing of your data with future effect.
If the objection is successful, we will no longer process the personal data, unless we can demonstrate compelling legitimate grounds for the
processing that outweigh your interests or rights and freedoms, or the processing is intended for the assertion, exercise or defence of legal
claims.

last update: 29.11.2023