privacy policy
privacy policy
Unless otherwise stated below, the provision of your personal data is neither legally nor contractually required, nor is it necessary for the conclusion of a contract. You are not obliged to provide the data. Failure to provide the data has no consequences. This only applies if no other information is provided in the subsequent processing operations.
"Personal data" means any information relating to an identified or identifiable natural person.
contact
responsible person
Please contact us if you wish. The person responsible for data processing is: Felix Kelski, Ungewitterweg, 52, 13591 Berlin Germany, 017670627017, felix@print-design.info
customer's initiative contact via email
If you initiate business contact with us by email, we will only collect your personal data (name, email address, message text) to the extent you provide it. The data processing serves to process and answer your contact request.
If the contact serves to carry out pre-contractual measures (e.g. advice in the event of interest in purchasing, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR.
If contact is made for other reasons, this data processing is carried out on the basis of Art. 6 Para. 1 lit. f GDPR due to our overriding legitimate interest in processing and answering your request. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 Para. 1 lit. f GDPR at any time for reasons arising from your particular situation.
We only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
Collection and processing when using the contact form
When you use the contact form, we only collect your personal data (name, email address, message text) to the extent you provide it. The data processing serves the purpose of establishing contact.
If the contact serves to carry out pre-contractual measures (e.g. advice in the event of interest in purchasing, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR.
If contact is made for other reasons, this data processing is carried out on the basis of Art. 6 Para. 1 lit. f GDPR due to our overriding legitimate interest in processing and answering your request. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 Para. 1 lit. f GDPR at any time for reasons arising from your particular situation.
We only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
Using Endereco's address validation
We use address validation on our website from the provider Endereco UG (limited liability) (Balthasar-Neumann-Str. 4b, 97236 Randersacker, Germany; “Endereco”).
The purpose of data processing is to check your entries in our address forms in real time for input and spelling errors and to add any missing data. If data is entered incorrectly, alternative suggestions for correcting the data will be displayed.
Among other things, the following information may be transmitted to Endereco and processed there: postal addresses (country, city, zip code, street, house number), email address, telephone number.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in a correct data basis for the fulfillment of our contractual obligations. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
The data is processed separately by the provider and is not merged with other data. It is deleted by the provider as soon as the status of the entered data has been determined, but no later than after 30 days.
Further information on data protection at Endereco can be found at: https://www.endereco.de/datenschutzerklaerung/ .
We provide an upload function for image files on our website. This makes it possible to send images to us using encrypted data transfer. When you send us your images, we may collect your personal data (image of an identifiable person) only to the extent you provide it. The data processing serves the purpose of creating personalized products. The image sent serves as a template for the product and is used for this purpose (e.g. T-shirt printing). The processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR and is necessary for the fulfillment of a contract with you.
Your data may be passed on to service providers we use to process your order. It will not be passed on to any other third parties.
We will only use the image you send us to provide the service. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
Collection and processing when sending images by e-mail
You have the option of sending us pictures by email in connection with ordering a personalized product.
When you send us your pictures, we may collect your personal data (image of an identifiable person) only to the extent you have provided it. The data processing serves the purpose of creating personalized products. The image sent serves as a template for the product and is used for this purpose (e.g. T-shirt printing). The processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR and is necessary for the fulfillment of a contract with you.
Your data will not be passed on.
We will only use the image you send us to provide the service. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
customer account orders
customer account
When you open a customer account, we collect your personal data to the extent specified there. The data processing serves the purpose of improving your shopping experience and simplifying order processing. The processing is carried out on the basis of Art. 6 Paragraph 1 Letter a of GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of the consent until the revocation. Your customer account will then be deleted.
Reviews Advertising
Data collection when writing a comment or review
When you comment on/rate an article or post, we only collect your personal data (name, email address, comment text) to the extent you provide it. The processing serves the purpose of enabling a comment/rate and displaying comments/rates.
By submitting the comment/review, you consent to the processing of the transmitted data. The processing is carried out on the basis of Art. 6 Paragraph 1 Letter a of GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of the consent until the revocation. Your personal data will then be deleted.
When your comment/review is published, only the name you provide will be published.
In addition, when you submit a comment/review, your IP address is saved for the purpose of preventing misuse of the comment or review function and ensuring the security of our information technology systems. By submitting the comment/review, you consent to the processing of the transmitted data. The processing is carried out on the basis of Art. 6 Paragraph 1 Letter a of GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of the consent until the revocation. Your IP address will then be deleted.
Use of the email address for sending newsletters
We use your email address, regardless of the contract processing, exclusively for our own advertising purposes to send newsletters, provided that you have expressly consented to this. The processing is carried out on the basis of Art. 6 Paragraph 1 Letter a of GDPR with your consent. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent until the revocation. You can unsubscribe from the newsletter at any time by using the corresponding link in the newsletter or by notifying us. Your email address will then be removed from the mailing list.
shipping service providers
Passing on the email address to shipping companies to inform them about the shipping status
We will pass on your email address to the transport company as part of the contract processing, provided that you have expressly consented to this during the ordering process. The purpose of the transfer is to inform you of the shipping status by email. The processing is carried out on the basis of Art. 6 Paragraph 1 Letter a of GDPR with your consent. You can revoke your consent at any time by notifying us or the transport company, without affecting the legality of the processing carried out on the basis of the consent until the revocation.
payment service providers
Using PayPal Express
We use the PayPal Express payment service from PayPal (Europe) S.à.rl et Cie, SCA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. The data processing serves the purpose of being able to offer you payment via the PayPal Express payment service. In order to integrate this payment service, PayPal must collect, store and analyze data (e.g. IP address, device type, operating system, browser type, location of your device) when you visit the website. Cookies can also be used for this purpose. The cookies enable your browser to be recognized.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in offering a customer-oriented range of different payment methods. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
By selecting and using PayPal Express, the data required for payment processing will be transmitted to PayPal in order to be able to fulfill the contract with you using the selected payment method. This processing is carried out on the basis of Art. 6 Paragraph 1 Letter b of GDPR. Further information on data processing when using the PayPal Express payment service can be found in the associated data protection declaration at www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE#Updated_PS .
Using PayPal Check-Out
We use the PayPal Check-Out payment service from PayPal (Europe) S.à.rl et Cie, SCA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. The data processing serves the purpose of being able to offer you payment via the payment service. By selecting and using payment via PayPal, credit card via PayPal, direct debit via PayPal or "Pay later" via PayPal, the data required for payment processing will be transmitted to PayPal in order to be able to fulfill the contract with you with the selected payment method. This processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR.
Cookies may be stored here that enable your browser to be recognized. The data processing that takes place as a result is based on Art. 6 Paragraph 1 Letter f of GDPR due to our overriding legitimate interest in offering a customer-oriented range of different payment methods. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
Credit card via PayPal, direct debit via PayPal & "Pay later" via PayPal
For individual payment methods such as credit card via PayPal, direct debit via PayPal or “Pay later” via PayPal, PayPal reserves the right to obtain a credit report based on mathematical-statistical procedures using credit agencies. To do this, PayPal transmits the personal data required for a credit check to a credit agency and uses the information received on the statistical probability of a payment default to make a balanced decision about the establishment, implementation or termination of the contractual relationship. The credit report may contain probability values (score values) that are calculated on the basis of scientifically recognized mathematical-statistical procedures and whose calculation includes, among other things, address data. Your legitimate interests are taken into account in accordance with the statutory provisions. The data processing serves the purpose of the credit check for the initiation of a contract. The processing is carried out on the basis of Art. 6 Para. 1 lit. f GDPR due to our overriding legitimate interest in protection against payment default if PayPal makes advance payments.
You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time by notifying PayPal for reasons arising from your particular situation. The provision of the data is necessary for the conclusion of the contract with the payment method you have requested. Failure to provide the data means that the contract cannot be concluded with the payment method you have selected.
third-party providers
When paying using a third-party payment method, the data required for payment processing is transmitted to PayPal. This processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR. To carry out this payment method, the data may then be passed on by PayPal to the respective provider. This processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR. Local third-party providers can be, for example:
purchase on account via PayPal
When paying using the purchase on account payment method, the data required for payment processing is first sent to PayPal. To carry out this payment method, the data is then sent by PayPal to Ratepay GmbH (Franklinstrasse 28-29, 10587 Berlin; "Ratepay") in order to be able to fulfill the contract with you using the selected payment method. This processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR. Ratepay may carry out a credit check on the basis of mathematical-statistical procedures (probability or score values) using credit agencies in accordance with the process already described above. The data processing serves the purpose of credit checks for the initiation of a contract. The processing is carried out on the basis of Art. 6 Para. 1 lit. f GDPR due to our overriding legitimate interest in protecting against payment default when Ratepay makes advance payments. Further information on data protection and which credit agencies use Ratpay can be found at https://www.ratepay.com/legal-payment-dataprivacy/ and https://www.ratepay.com/legal-payment-creditagencies/ .
Further information on data processing when using PayPal can be found in the associated privacy policy at https://www.paypal.com/de/webapps/mpp/ua/privacy-full .
cookies
Our website uses cookies. Cookies are small text files that are stored in the Internet browser or by the Internet browser on a user's computer system. When a user visits a website, a cookie can be stored on the user's operating system. This cookie contains a characteristic string that enables the browser to be uniquely identified when the website is visited again.
We use the consent tool “Shopify Privacy & Compliance” from Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") on our website. Shopify is an affiliate of Shopify Inc. (151 O'Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada).
The tool enables you to give consent to data processing via the website, in particular the setting of cookies, and to exercise your right to withdraw consents already given. The data processing serves the purpose of obtaining and documenting the necessary consents to data processing and thus complying with legal obligations. Cookies can be used for this purpose. User information, including your IP address, is collected and transmitted to Shopify.
Your data may be transferred to third countries outside the EU, in particular to Canada and the USA, and processed there. For Canada, there is an adequacy decision of the EU Commission. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified according to the TADPF. This data transfer is based on contractual obligations that are comparable to those of the EU Commission's standard contractual clauses.
The data processing is carried out to fulfill a legal obligation on the basis of Art. 6 (1) lit. c GDPR.
Further information on data protection at Shopify can be found at https://www.shopify.com/de/legal/datenschutz and information on the cookies used can be found at https://www.shopify.com/de/legal/cookies .
analysis
Using Shopify Statistics
We use the statistics and analysis functions of Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") on our website as part of order processing. Shopify is an affiliated company of Shopify Inc. (151 O'Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada).
The data processing serves the purpose of analyzing this website and its visitors. For this purpose, data is stored for marketing and optimization purposes and made available in reports, analyses and statistics. The following device information is collected and processed, among others: information about the web browser, IP address, time zone and some of the cookies installed on your device. When you navigate the website, information about the websites or products accessed, the referrer URL (website through which you accessed our website) and information about how you interact with the website is also collected. Technologies such as cookies as well as web beacons, tags and pixels (electronic files for collecting information about how you navigate the website) are used for this.
Your data may be transferred to third countries outside the EU, in particular to Canada and the USA, and processed there. For Canada, there is an adequacy decision of the EU Commission. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified according to the TADPF. This data transfer is based on contractual obligations that are comparable to those of the EU Commission's standard contractual clauses.
The use of cookies or similar technologies takes place with your consent on the basis of Section 25 Paragraph 1 Sentence 1 TDDDG in conjunction with Art. 6 Paragraph 1 Letter a of GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 Paragraph 1 Letter a of GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent until the revocation.
You can find more information about data protection at Shopify at https://www.shopify.com/de/legal/datenschutz , information about the order processing agreement at https://www.shopify.com/de/legal/dpa and information about the cookies used at https://www.shopify.com/de/legal/cookies .
Plug-ins and Others
We use social network plug-ins on our website. The integration of social plug-ins and the data processing that takes place in this way serves the purpose of optimizing the advertising for our products.
When social plug-ins are integrated, a link is established between your computer and the servers of the provider of the social network and the plug-in is displayed on the page by a message to your browser, provided you have expressly consented to this. Both your IP address and the information about which of our pages you have visited are transmitted to the provider's servers. This applies regardless of whether you are registered with the social network or logged in. Data is also transmitted for unregistered or unlogged users. If you are connected to one or more of your social network accounts at the same time, the information collected can also be assigned to your corresponding profiles. When you use the plug-in functions (e.g. by pressing the button), this information is also assigned to your user account. You can prevent this assignment by logging out of your social media accounts before visiting our website and before activating the buttons.
The use of cookies or similar technologies takes place with your consent on the basis of Section 25 Paragraph 1 Sentence 1 TDDDG in conjunction with Art. 6 Paragraph 1 Letter a of GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 Paragraph 1 Letter a of GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent until the revocation.
The social networks named below are integrated into our website using social plug-ins. Further information on the scope and purpose of the collection and use of data as well as your rights and options for protecting your privacy can be found in the linked data protection notices of the providers.
Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
Meta Platforms Ireland and we are jointly responsible for the collection of your data when the service is integrated and the transmission of this data to Facebook. The basis for this is an agreement between us and Meta Platforms Ireland on the joint processing of personal data, in which the respective responsibilities are specified. The agreement can be accessed at https://www.facebook.com/legal/controller_addendum . According to this, we are particularly responsible for fulfilling the information obligations according to Art. 13, 14 GDPR, for compliance with the security requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service and for compliance with the obligations under Art. 33, 34 GDPR, insofar as a breach of the protection of personal data affects our obligations under the agreement on joint processing. Meta Platforms Ireland is responsible for enabling the rights of data subjects in accordance with Art. 15 - 20 GDPR, for complying with the security requirements of Art. 32 GDPR with regard to the security of the service and for complying with the obligations under Art. 33, 34 GDPR, insofar as a breach of the protection of personal data affects the obligations of Meta Platforms Ireland under the joint processing agreement.
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
For more information about the collection and use of data by Facebook, your rights in this regard, and options for protecting your privacy, please see Facebook's privacy policy at https://www.facebook.com/about/privacy/ .
Pinterest from Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA)
https://policy.pinterest.com/de/privacy-policy
Your data may be transferred to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified according to the TADPF.
Use of social plug-ins via “Shariff”
We use social network plug-ins on our website. To ensure that you retain control over your data, we use the privacy-safe "Shariff" buttons.
Without your express consent, no links will be established to the social network servers and consequently no data will be transmitted.
“Shariff” is a development by specialists at the computer magazine c't. It enables more privacy on the Internet and replaces the usual “Share” buttons on social networks. You can find more information about the Shariff project here https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html .
When you click on the buttons, a pop-up window appears in which you can log in to the respective provider using your data. Only after you have actively logged in will a direct connection to the social networks be established.
By logging in, you consent to the transfer of your data to the respective social media provider. This includes, among other things, your IP address and information about which of our pages you have visited. If you are connected to one or more of your social network accounts at the same time, the information collected will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your social media accounts before visiting our website and before activating the buttons. The social networks named below are integrated using the "Shariff" function.
Further information on the scope and purpose of the collection and use of data as well as your rights and options for protecting your privacy can be found in the linked data protection notices of the providers.
Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://www.facebook.com/policy.php
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland) https://help.instagram.com/155833707900388 .
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Pinterest from Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA)
https://policy.pinterest.com/de/privacy-policy
Your data may be transferred to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified according to the TADPF.
Use of social plug-ins using the “2-click solution”
We use social network plug-ins on our website using the "2-click solution". No connections are established to the social network servers without your express consent and consequently no data is transmitted.
With the standard integration of plug-ins, when you access the pages of our website that contain such a plug-in, a link is established between your computer and the servers of the provider of the social network, and the plug-in is displayed on the page by a message to your browser. Both your IP address and the information about which of our pages you have visited are transmitted to the provider's servers. This applies regardless of whether you are registered or logged in to the social network. Transmission also takes place for unregistered or unlogged users. If you are also logged in to the Facebook social network, this information is assigned to your personal user account. When you use the plug-in functions (e.g. by pressing the button), this information is also assigned to your user account, which you can only prevent by logging out before using the plug-in. So that you retain control over your data, we have decided to deactivate the corresponding button initially. You can recognize this by the grayed-out button. Without your express consent - in the form of activating the button - no link will be established to the social network server and consequently no data will be transmitted.
Only when you activate the button, the button becomes active (highlighted in color) and a direct connection to the servers of the social network is established.
By activating, you give your consent to the transfer of your data to the respective provider of the social network. This will include, among other things, your IP address and the information about which of our pages you have visited. If you are connected to one or more of your social network accounts at the same time, the information collected will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your user accounts on the social networks before visiting our website and before activating the buttons.
The social networks named below are integrated using the "2-click function". Further information on the scope and purpose of the collection and use of data as well as your rights and options for protecting your privacy can be found in the linked data protection notices of the providers.
Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://www.facebook.com/policy.php
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
http://instagram.com/legal/privacy/
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Pinterest from Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA):
https://policy.pinterest.com/de/privacy-policy
https://help.pinterest.com/de/articles/personalization-and-data
Your data may be transferred to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified according to the TADPF.
use of YouTube
We use the function for embedding YouTube videos from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “YouTube”) on our website. YouTube is an affiliated company of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”).
The function displays videos stored on YouTube in an iFrame on the website. The "Extended data protection mode" option is activated. This means that YouTube does not store any information about visitors to the website. Only when you watch a video is information about it transmitted to YouTube and stored there. Your data may be transmitted to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). YouTube has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
The use of cookies or similar technologies takes place with your consent on the basis of Section 25 Paragraph 1 Sentence 1 TDDDG in conjunction with Art. 6 Paragraph 1 Letter a of GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 Paragraph 1 Letter a of GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent until the revocation.
For more information about the collection and use of data by YouTube and Google, your rights in this regard and options for protecting your privacy, please see YouTube's privacy policy at https://www.youtube.com/t/privacy .
Integration of the Händlerbund member logo
The Händlerbund member logo (Händlerbund eV, Kohlgartenstraße 11 - 13, 04315 Leipzig) is integrated into our website. When you visit our website, the browser used on your device automatically sends information to the Händlerbund eV server. This information is temporarily stored in a so-called server log file for 7 days. The following information is recorded without your intervention and stored until it is automatically deleted:
duration of storage
After the contract has been fully processed, the data will initially be stored for the duration of the warranty period, then taking into account statutory retention periods, in particular tax and commercial law retention periods, and then deleted after the deadline has expired, unless you have consented to further processing and use.
rights of the data subject
If the legal requirements are met, you have the following rights under Art. 15 to 20 GDPR: Right to information, to rectification, to erasure, to restriction of processing, to data portability.
Furthermore, according to Art. 21 Para. 1 GDPR, you have the right to object to processing based on Art. 6 Para. 1 f GDPR and to processing for direct marketing purposes.
right to lodge a complaint with the supervisory authority
According to Art. 77 GDPR, you have the right to complain to the supervisory authority if you believe that the processing of your personal data is not lawful.
You can lodge a complaint with the supervisory authority responsible for us, which you can reach using the following contact details:
Berlin Commissioner for Data Protection and Freedom of Information
Friedrichstr. 219
Visitor entrance: Puttkamerstr. 16 – 18 (5th floor)
10969 Berlin
Tel.: +49 30 138890
Fax: +49 30 2155050
Email: mailbox@datenschutz-berlin.de
right of objection
If the personal data processing listed here is based on our legitimate interest in accordance with Art. 6 (1) (f) GDPR, you have the right to object to this processing at any time with effect for the future for reasons arising from your particular situation.
Once you have objected, the processing of the data in question will be stopped unless we can demonstrate compelling legitimate grounds for the processing which outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.
last update: October 22, 2024
Unless otherwise stated below, the provision of your personal data is neither legally nor contractually required, nor is it necessary for the conclusion of a contract. You are not obliged to provide the data. Failure to provide the data has no consequences. This only applies if no other information is provided in the subsequent processing operations.
"Personal data" means any information relating to an identified or identifiable natural person.
server log files
You can visit our websites without providing any personal information.
Every time you access our website, usage data is transmitted to us or our web host/IT service provider through your Internet browser and stored in protocol data (so-called server log files). This stored data includes, for example, the name of the page accessed, the date and time of access, the IP address, the amount of data transferred and the requesting provider.
The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in ensuring the trouble-free operation of our website and improving our offering.
Your data may be transferred to third countries outside the EU, in particular to Canada and the USA, and processed there. For Canada, there is an adequacy decision of the EU Commission. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified according to the TADPF. This data transfer is based on contractual obligations that are comparable to those of the EU Commission's standard contractual clauses.The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in ensuring the trouble-free operation of our website and improving our offering.
contact
responsible person
Please contact us if you wish. The person responsible for data processing is: Felix Kelski, Ungewitterweg, 52, 13591 Berlin Germany, 017670627017, felix@print-design.info
customer's initiative contact via email
If you initiate business contact with us by email, we will only collect your personal data (name, email address, message text) to the extent you provide it. The data processing serves to process and answer your contact request.
If the contact serves to carry out pre-contractual measures (e.g. advice in the event of interest in purchasing, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR.
If contact is made for other reasons, this data processing is carried out on the basis of Art. 6 Para. 1 lit. f GDPR due to our overriding legitimate interest in processing and answering your request. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 Para. 1 lit. f GDPR at any time for reasons arising from your particular situation.
We only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
Collection and processing when using the contact form
When you use the contact form, we only collect your personal data (name, email address, message text) to the extent you provide it. The data processing serves the purpose of establishing contact.
If the contact serves to carry out pre-contractual measures (e.g. advice in the event of interest in purchasing, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR.
If contact is made for other reasons, this data processing is carried out on the basis of Art. 6 Para. 1 lit. f GDPR due to our overriding legitimate interest in processing and answering your request. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 Para. 1 lit. f GDPR at any time for reasons arising from your particular situation.
We only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
Using Endereco's address validation
We use address validation on our website from the provider Endereco UG (limited liability) (Balthasar-Neumann-Str. 4b, 97236 Randersacker, Germany; “Endereco”).
The purpose of data processing is to check your entries in our address forms in real time for input and spelling errors and to add any missing data. If data is entered incorrectly, alternative suggestions for correcting the data will be displayed.
Among other things, the following information may be transmitted to Endereco and processed there: postal addresses (country, city, zip code, street, house number), email address, telephone number.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in a correct data basis for the fulfillment of our contractual obligations. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
The data is processed separately by the provider and is not merged with other data. It is deleted by the provider as soon as the status of the entered data has been determined, but no later than after 30 days.
Further information on data protection at Endereco can be found at: https://www.endereco.de/datenschutzerklaerung/ .
Using Google Maps API Address Validation
We use address validation from the provider Google (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland “Google”) on our website.
The purpose of data processing is to check your entries in our address forms in real time for input and spelling errors and to add any missing data. If data is entered incorrectly, alternative suggestions for correcting the data will be displayed. For this purpose, the address data you enter is transmitted to the provider, stored there and evaluated.
Among other things, the following information may be transmitted to Google and processed there: postal addresses (country, city, zip code, street, house number), email address, telephone number.
Your data may also be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in a correct data basis for the fulfillment of our contractual obligations. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
The data is processed separately by the provider and is not merged with other data. It is deleted by the provider as soon as the status of the entered data has been determined, but no later than after 30 days.
Further information on Google’s terms of use and data protection can be found at: https://cloud.google.com/maps-platform/terms or at https://www.google.de/policies/privacy/ .
Collection and processing when sending images via uploadWe use address validation from the provider Google (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland “Google”) on our website.
The purpose of data processing is to check your entries in our address forms in real time for input and spelling errors and to add any missing data. If data is entered incorrectly, alternative suggestions for correcting the data will be displayed. For this purpose, the address data you enter is transmitted to the provider, stored there and evaluated.
Among other things, the following information may be transmitted to Google and processed there: postal addresses (country, city, zip code, street, house number), email address, telephone number.
Your data may also be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in a correct data basis for the fulfillment of our contractual obligations. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
The data is processed separately by the provider and is not merged with other data. It is deleted by the provider as soon as the status of the entered data has been determined, but no later than after 30 days.
Further information on Google’s terms of use and data protection can be found at: https://cloud.google.com/maps-platform/terms or at https://www.google.de/policies/privacy/ .
We provide an upload function for image files on our website. This makes it possible to send images to us using encrypted data transfer. When you send us your images, we may collect your personal data (image of an identifiable person) only to the extent you provide it. The data processing serves the purpose of creating personalized products. The image sent serves as a template for the product and is used for this purpose (e.g. T-shirt printing). The processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR and is necessary for the fulfillment of a contract with you.
Your data may be passed on to service providers we use to process your order. It will not be passed on to any other third parties.
We will only use the image you send us to provide the service. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
Collection and processing when sending images by e-mail
You have the option of sending us pictures by email in connection with ordering a personalized product.
When you send us your pictures, we may collect your personal data (image of an identifiable person) only to the extent you have provided it. The data processing serves the purpose of creating personalized products. The image sent serves as a template for the product and is used for this purpose (e.g. T-shirt printing). The processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR and is necessary for the fulfillment of a contract with you.
Your data will not be passed on.
We will only use the image you send us to provide the service. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
customer account orders
customer account
When you open a customer account, we collect your personal data to the extent specified there. The data processing serves the purpose of improving your shopping experience and simplifying order processing. The processing is carried out on the basis of Art. 6 Paragraph 1 Letter a of GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of the consent until the revocation. Your customer account will then be deleted.
Collection, processing and transfer of personal data when placing orders
When you place an order, we only collect and process your personal data to the extent that this is necessary to fulfil and process your order and to process your enquiries. The provision of the data is necessary for the conclusion of the contract. Failure to provide the data means that no contract can be concluded. The processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR and is necessary for the fulfilment of a contract with you.
Your data will be passed on to, for example, shipping companies, dropshipping or fulfillment providers, payment service providers, service providers for order processing and IT service providers. In all cases, we strictly adhere to the legal requirements. The scope of data transmission is limited to a minimum.
Your data may be transferred to third countries outside the EU, in particular to Canada and the USA, and processed there. For Canada, there is an adequacy decision of the EU Commission. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified according to the TADPF. This data transfer is based on contractual obligations that are comparable to those of the EU Commission's standard contractual clauses.Reviews Advertising
Data collection when writing a comment or review
When you comment on/rate an article or post, we only collect your personal data (name, email address, comment text) to the extent you provide it. The processing serves the purpose of enabling a comment/rate and displaying comments/rates.
By submitting the comment/review, you consent to the processing of the transmitted data. The processing is carried out on the basis of Art. 6 Paragraph 1 Letter a of GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of the consent until the revocation. Your personal data will then be deleted.
When your comment/review is published, only the name you provide will be published.
In addition, when you submit a comment/review, your IP address is saved for the purpose of preventing misuse of the comment or review function and ensuring the security of our information technology systems. By submitting the comment/review, you consent to the processing of the transmitted data. The processing is carried out on the basis of Art. 6 Paragraph 1 Letter a of GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of the consent until the revocation. Your IP address will then be deleted.
Use of the email address for sending newsletters
We use your email address, regardless of the contract processing, exclusively for our own advertising purposes to send newsletters, provided that you have expressly consented to this. The processing is carried out on the basis of Art. 6 Paragraph 1 Letter a of GDPR with your consent. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent until the revocation. You can unsubscribe from the newsletter at any time by using the corresponding link in the newsletter or by notifying us. Your email address will then be removed from the mailing list.
shipping service providers
Passing on the email address to shipping companies to inform them about the shipping status
We will pass on your email address to the transport company as part of the contract processing, provided that you have expressly consented to this during the ordering process. The purpose of the transfer is to inform you of the shipping status by email. The processing is carried out on the basis of Art. 6 Paragraph 1 Letter a of GDPR with your consent. You can revoke your consent at any time by notifying us or the transport company, without affecting the legality of the processing carried out on the basis of the consent until the revocation.
payment service providers
Using PayPal Express
We use the PayPal Express payment service from PayPal (Europe) S.à.rl et Cie, SCA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. The data processing serves the purpose of being able to offer you payment via the PayPal Express payment service. In order to integrate this payment service, PayPal must collect, store and analyze data (e.g. IP address, device type, operating system, browser type, location of your device) when you visit the website. Cookies can also be used for this purpose. The cookies enable your browser to be recognized.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in offering a customer-oriented range of different payment methods. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
By selecting and using PayPal Express, the data required for payment processing will be transmitted to PayPal in order to be able to fulfill the contract with you using the selected payment method. This processing is carried out on the basis of Art. 6 Paragraph 1 Letter b of GDPR. Further information on data processing when using the PayPal Express payment service can be found in the associated data protection declaration at www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE#Updated_PS .
Using PayPal Check-Out
We use the PayPal Check-Out payment service from PayPal (Europe) S.à.rl et Cie, SCA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. The data processing serves the purpose of being able to offer you payment via the payment service. By selecting and using payment via PayPal, credit card via PayPal, direct debit via PayPal or "Pay later" via PayPal, the data required for payment processing will be transmitted to PayPal in order to be able to fulfill the contract with you with the selected payment method. This processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR.
Cookies may be stored here that enable your browser to be recognized. The data processing that takes place as a result is based on Art. 6 Paragraph 1 Letter f of GDPR due to our overriding legitimate interest in offering a customer-oriented range of different payment methods. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
Credit card via PayPal, direct debit via PayPal & "Pay later" via PayPal
For individual payment methods such as credit card via PayPal, direct debit via PayPal or “Pay later” via PayPal, PayPal reserves the right to obtain a credit report based on mathematical-statistical procedures using credit agencies. To do this, PayPal transmits the personal data required for a credit check to a credit agency and uses the information received on the statistical probability of a payment default to make a balanced decision about the establishment, implementation or termination of the contractual relationship. The credit report may contain probability values (score values) that are calculated on the basis of scientifically recognized mathematical-statistical procedures and whose calculation includes, among other things, address data. Your legitimate interests are taken into account in accordance with the statutory provisions. The data processing serves the purpose of the credit check for the initiation of a contract. The processing is carried out on the basis of Art. 6 Para. 1 lit. f GDPR due to our overriding legitimate interest in protection against payment default if PayPal makes advance payments.
You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time by notifying PayPal for reasons arising from your particular situation. The provision of the data is necessary for the conclusion of the contract with the payment method you have requested. Failure to provide the data means that the contract cannot be concluded with the payment method you have selected.
third-party providers
When paying using a third-party payment method, the data required for payment processing is transmitted to PayPal. This processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR. To carry out this payment method, the data may then be passed on by PayPal to the respective provider. This processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR. Local third-party providers can be, for example:
- Apple Pay (Apple Distribution International Ltd., Hollyhill Industrial Estate, Hollyhill, Cork, Ireland)
- Google Pay (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland)
- giropay (Paydirekt GmbH, Stephanstr. 14-16, 60313 Frankfurt am Main)
purchase on account via PayPal
When paying using the purchase on account payment method, the data required for payment processing is first sent to PayPal. To carry out this payment method, the data is then sent by PayPal to Ratepay GmbH (Franklinstrasse 28-29, 10587 Berlin; "Ratepay") in order to be able to fulfill the contract with you using the selected payment method. This processing is carried out on the basis of Art. 6 Para. 1 lit. b GDPR. Ratepay may carry out a credit check on the basis of mathematical-statistical procedures (probability or score values) using credit agencies in accordance with the process already described above. The data processing serves the purpose of credit checks for the initiation of a contract. The processing is carried out on the basis of Art. 6 Para. 1 lit. f GDPR due to our overriding legitimate interest in protecting against payment default when Ratepay makes advance payments. Further information on data protection and which credit agencies use Ratpay can be found at https://www.ratepay.com/legal-payment-dataprivacy/ and https://www.ratepay.com/legal-payment-creditagencies/ .
Further information on data processing when using PayPal can be found in the associated privacy policy at https://www.paypal.com/de/webapps/mpp/ua/privacy-full .
cookies
Our website uses cookies. Cookies are small text files that are stored in the Internet browser or by the Internet browser on a user's computer system. When a user visits a website, a cookie can be stored on the user's operating system. This cookie contains a characteristic string that enables the browser to be uniquely identified when the website is visited again.
Cookies are stored on your computer. You therefore have full control over the use of cookies. By selecting the appropriate technical settings in your Internet browser, you can be notified before cookies are set and decide individually whether to accept them, as well as prevent the cookies from being stored and the data they contain from being transmitted. Cookies that have already been stored can be deleted at any time. However, we would like to point out that you may then not be able to use all of the functions of this website to their full extent.
The links below will provide you with information on how to manage (including deactivate) cookies in the most important browsers:
Chrome: https://support.google.com/accounts/answer/61416?hl=de
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehne
Technically necessary cookies
Unless otherwise stated in the privacy policy below, we only use these technically necessary cookies for the purpose of making our service more user-friendly, effective and secure. Cookies also enable our systems to recognize your browser even after you change pages and to offer you services. Some functions of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognized even after you change pages.
The use of cookies or comparable technologies is based on Section 25 Paragraph 2 TDDDG. The processing of your personal data is based on Art. 6 Paragraph 1 Letter f GDPR due to our overriding legitimate interest in ensuring the optimal functionality of the website and a user-friendly and effective design of our offering.
You have the right to object to the processing of personal data concerning you at any time for reasons related to your particular situation.
How to use the Shopify Consent tool (Shopify Privacy & Compliance)We use the consent tool “Shopify Privacy & Compliance” from Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") on our website. Shopify is an affiliate of Shopify Inc. (151 O'Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada).
The tool enables you to give consent to data processing via the website, in particular the setting of cookies, and to exercise your right to withdraw consents already given. The data processing serves the purpose of obtaining and documenting the necessary consents to data processing and thus complying with legal obligations. Cookies can be used for this purpose. User information, including your IP address, is collected and transmitted to Shopify.
Your data may be transferred to third countries outside the EU, in particular to Canada and the USA, and processed there. For Canada, there is an adequacy decision of the EU Commission. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified according to the TADPF. This data transfer is based on contractual obligations that are comparable to those of the EU Commission's standard contractual clauses.
The data processing is carried out to fulfill a legal obligation on the basis of Art. 6 (1) lit. c GDPR.
Further information on data protection at Shopify can be found at https://www.shopify.com/de/legal/datenschutz and information on the cookies used can be found at https://www.shopify.com/de/legal/cookies .
analysis
Using Shopify Statistics
We use the statistics and analysis functions of Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") on our website as part of order processing. Shopify is an affiliated company of Shopify Inc. (151 O'Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada).
The data processing serves the purpose of analyzing this website and its visitors. For this purpose, data is stored for marketing and optimization purposes and made available in reports, analyses and statistics. The following device information is collected and processed, among others: information about the web browser, IP address, time zone and some of the cookies installed on your device. When you navigate the website, information about the websites or products accessed, the referrer URL (website through which you accessed our website) and information about how you interact with the website is also collected. Technologies such as cookies as well as web beacons, tags and pixels (electronic files for collecting information about how you navigate the website) are used for this.
Your data may be transferred to third countries outside the EU, in particular to Canada and the USA, and processed there. For Canada, there is an adequacy decision of the EU Commission. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified according to the TADPF. This data transfer is based on contractual obligations that are comparable to those of the EU Commission's standard contractual clauses.
The use of cookies or similar technologies takes place with your consent on the basis of Section 25 Paragraph 1 Sentence 1 TDDDG in conjunction with Art. 6 Paragraph 1 Letter a of GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 Paragraph 1 Letter a of GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent until the revocation.
You can find more information about data protection at Shopify at https://www.shopify.com/de/legal/datenschutz , information about the order processing agreement at https://www.shopify.com/de/legal/dpa and information about the cookies used at https://www.shopify.com/de/legal/cookies .
Plug-ins and Others
Using Google Tag Manager
We use the Google Tag Manager of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
This application manages JavaScript tags and HTML tags that are used to implement tracking and analysis tools in particular. The data processing serves the purpose of needs-based design and optimization of our website.
The Google Tag Manager itself does not store cookies, nor does it process personal data. However, it does enable the triggering of additional tags that can collect and process personal data.
Further information on terms of use and data protection can be found here .
use of social plug-insWe use the Google Tag Manager of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
This application manages JavaScript tags and HTML tags that are used to implement tracking and analysis tools in particular. The data processing serves the purpose of needs-based design and optimization of our website.
The Google Tag Manager itself does not store cookies, nor does it process personal data. However, it does enable the triggering of additional tags that can collect and process personal data.
Further information on terms of use and data protection can be found here .
We use social network plug-ins on our website. The integration of social plug-ins and the data processing that takes place in this way serves the purpose of optimizing the advertising for our products.
When social plug-ins are integrated, a link is established between your computer and the servers of the provider of the social network and the plug-in is displayed on the page by a message to your browser, provided you have expressly consented to this. Both your IP address and the information about which of our pages you have visited are transmitted to the provider's servers. This applies regardless of whether you are registered with the social network or logged in. Data is also transmitted for unregistered or unlogged users. If you are connected to one or more of your social network accounts at the same time, the information collected can also be assigned to your corresponding profiles. When you use the plug-in functions (e.g. by pressing the button), this information is also assigned to your user account. You can prevent this assignment by logging out of your social media accounts before visiting our website and before activating the buttons.
The use of cookies or similar technologies takes place with your consent on the basis of Section 25 Paragraph 1 Sentence 1 TDDDG in conjunction with Art. 6 Paragraph 1 Letter a of GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 Paragraph 1 Letter a of GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent until the revocation.
The social networks named below are integrated into our website using social plug-ins. Further information on the scope and purpose of the collection and use of data as well as your rights and options for protecting your privacy can be found in the linked data protection notices of the providers.
Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
Meta Platforms Ireland and we are jointly responsible for the collection of your data when the service is integrated and the transmission of this data to Facebook. The basis for this is an agreement between us and Meta Platforms Ireland on the joint processing of personal data, in which the respective responsibilities are specified. The agreement can be accessed at https://www.facebook.com/legal/controller_addendum . According to this, we are particularly responsible for fulfilling the information obligations according to Art. 13, 14 GDPR, for compliance with the security requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service and for compliance with the obligations under Art. 33, 34 GDPR, insofar as a breach of the protection of personal data affects our obligations under the agreement on joint processing. Meta Platforms Ireland is responsible for enabling the rights of data subjects in accordance with Art. 15 - 20 GDPR, for complying with the security requirements of Art. 32 GDPR with regard to the security of the service and for complying with the obligations under Art. 33, 34 GDPR, insofar as a breach of the protection of personal data affects the obligations of Meta Platforms Ireland under the joint processing agreement.
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
For more information about the collection and use of data by Facebook, your rights in this regard, and options for protecting your privacy, please see Facebook's privacy policy at https://www.facebook.com/about/privacy/ .
Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://help.instagram.com/155833707900388
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
https://help.instagram.com/155833707900388
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Pinterest from Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA)
https://policy.pinterest.com/de/privacy-policy
Your data may be transferred to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified according to the TADPF.
Use of social plug-ins via “Shariff”
We use social network plug-ins on our website. To ensure that you retain control over your data, we use the privacy-safe "Shariff" buttons.
Without your express consent, no links will be established to the social network servers and consequently no data will be transmitted.
“Shariff” is a development by specialists at the computer magazine c't. It enables more privacy on the Internet and replaces the usual “Share” buttons on social networks. You can find more information about the Shariff project here https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html .
When you click on the buttons, a pop-up window appears in which you can log in to the respective provider using your data. Only after you have actively logged in will a direct connection to the social networks be established.
By logging in, you consent to the transfer of your data to the respective social media provider. This includes, among other things, your IP address and information about which of our pages you have visited. If you are connected to one or more of your social network accounts at the same time, the information collected will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your social media accounts before visiting our website and before activating the buttons. The social networks named below are integrated using the "Shariff" function.
Further information on the scope and purpose of the collection and use of data as well as your rights and options for protecting your privacy can be found in the linked data protection notices of the providers.
Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://www.facebook.com/policy.php
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland) https://help.instagram.com/155833707900388 .
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Pinterest from Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA)
https://policy.pinterest.com/de/privacy-policy
Your data may be transferred to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified according to the TADPF.
Use of social plug-ins using the “2-click solution”
We use social network plug-ins on our website using the "2-click solution". No connections are established to the social network servers without your express consent and consequently no data is transmitted.
With the standard integration of plug-ins, when you access the pages of our website that contain such a plug-in, a link is established between your computer and the servers of the provider of the social network, and the plug-in is displayed on the page by a message to your browser. Both your IP address and the information about which of our pages you have visited are transmitted to the provider's servers. This applies regardless of whether you are registered or logged in to the social network. Transmission also takes place for unregistered or unlogged users. If you are also logged in to the Facebook social network, this information is assigned to your personal user account. When you use the plug-in functions (e.g. by pressing the button), this information is also assigned to your user account, which you can only prevent by logging out before using the plug-in. So that you retain control over your data, we have decided to deactivate the corresponding button initially. You can recognize this by the grayed-out button. Without your express consent - in the form of activating the button - no link will be established to the social network server and consequently no data will be transmitted.
Only when you activate the button, the button becomes active (highlighted in color) and a direct connection to the servers of the social network is established.
By activating, you give your consent to the transfer of your data to the respective provider of the social network. This will include, among other things, your IP address and the information about which of our pages you have visited. If you are connected to one or more of your social network accounts at the same time, the information collected will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your user accounts on the social networks before visiting our website and before activating the buttons.
The social networks named below are integrated using the "2-click function". Further information on the scope and purpose of the collection and use of data as well as your rights and options for protecting your privacy can be found in the linked data protection notices of the providers.
Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://www.facebook.com/policy.php
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
http://instagram.com/legal/privacy/
Your data may be transferred to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Pinterest from Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA):
https://policy.pinterest.com/de/privacy-policy
https://help.pinterest.com/de/articles/personalization-and-data
Your data may be transferred to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified according to the TADPF.
use of YouTube
We use the function for embedding YouTube videos from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “YouTube”) on our website. YouTube is an affiliated company of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”).
The function displays videos stored on YouTube in an iFrame on the website. The "Extended data protection mode" option is activated. This means that YouTube does not store any information about visitors to the website. Only when you watch a video is information about it transmitted to YouTube and stored there. Your data may be transmitted to the USA. For the USA, there is an adequacy decision from the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). YouTube has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
The use of cookies or similar technologies takes place with your consent on the basis of Section 25 Paragraph 1 Sentence 1 TDDDG in conjunction with Art. 6 Paragraph 1 Letter a of GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 Paragraph 1 Letter a of GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent until the revocation.
For more information about the collection and use of data by YouTube and Google, your rights in this regard and options for protecting your privacy, please see YouTube's privacy policy at https://www.youtube.com/t/privacy .
Integration of the Händlerbund member logo
The Händlerbund member logo (Händlerbund eV, Kohlgartenstraße 11 - 13, 04315 Leipzig) is integrated into our website. When you visit our website, the browser used on your device automatically sends information to the Händlerbund eV server. This information is temporarily stored in a so-called server log file for 7 days. The following information is recorded without your intervention and stored until it is automatically deleted:
- IP address of the requesting computer,
- date and time of access,
- Name and URL of the retrieved file,
- Website from which access is made (referrer URL),
- browser used and, if applicable, the operating system of your computer and the name of your access provider.
Using Google Translate
We use the translation service of the
Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland).
The data processing serves the purpose of displaying the information provided on the website in another language. In order for the translation to be displayed automatically after you have selected a national language, the browser you use connects to Google's servers. Cookies may be used for this purpose. Among other things, the following information may be collected and processed: IP address, URL of the page visited, date and time.
Your data may be transferred to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
Your data may be transferred to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
The use of cookies or similar technologies takes place with your consent on the basis of Section 25 Paragraph 1 Sentence 1 TDDDG in conjunction with Art. 6 Paragraph 1 Letter a of GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 Paragraph 1 Letter a of GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent until the revocation.
For more information about how Google collects and uses your data, please visit: https://www.google.com/policies/privacy/ .
Rights of data subjects and storage periodduration of storage
After the contract has been fully processed, the data will initially be stored for the duration of the warranty period, then taking into account statutory retention periods, in particular tax and commercial law retention periods, and then deleted after the deadline has expired, unless you have consented to further processing and use.
rights of the data subject
If the legal requirements are met, you have the following rights under Art. 15 to 20 GDPR: Right to information, to rectification, to erasure, to restriction of processing, to data portability.
Furthermore, according to Art. 21 Para. 1 GDPR, you have the right to object to processing based on Art. 6 Para. 1 f GDPR and to processing for direct marketing purposes.
right to lodge a complaint with the supervisory authority
According to Art. 77 GDPR, you have the right to complain to the supervisory authority if you believe that the processing of your personal data is not lawful.
You can lodge a complaint with the supervisory authority responsible for us, which you can reach using the following contact details:
Berlin Commissioner for Data Protection and Freedom of Information
Friedrichstr. 219
Visitor entrance: Puttkamerstr. 16 – 18 (5th floor)
10969 Berlin
Tel.: +49 30 138890
Fax: +49 30 2155050
Email: mailbox@datenschutz-berlin.de
right of objection
If the personal data processing listed here is based on our legitimate interest in accordance with Art. 6 (1) (f) GDPR, you have the right to object to this processing at any time with effect for the future for reasons arising from your particular situation.
Once you have objected, the processing of the data in question will be stopped unless we can demonstrate compelling legitimate grounds for the processing which outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.
last update: October 22, 2024