1) Information about the collection of personal data and contact details of the person responsible
1.1 We are pleased that you are visiting our website and thank you for your interest. Below we will inform you about how your personal data is handled when you use our website. Personal data is all data with which you can be personally identified.
1.2 The person responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Oliveres Mar1, Cr. Oliveres 1, 43519 Urb. Perello Mar, Spain. Email: info@oliveres1.de. The person responsible for the processing of personal data is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data.
1.3 For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the person responsible), this website uses SSL or TLS encryption. You can recognize an encrypted connection by the string “https://” and the lock symbol in your browser bar.
2) Data collection when you visit our website.
If you use our website for informational purposes only, i.e. if you do not register or otherwise provide us with information, we only collect data that your browser transmits to our server (so-called “server log files”). When you access our website, we collect the following data, which is technically necessary for us to display the website to you:
Our visited website
Date and time at the time of access
Amount of data sent in bytes
Source/reference from which you came to the page
Browser used
Operating system used
IP address used (if necessary: in anonymized form)
Processing is carried out in accordance with Article 6 Paragraph 1 Letter f of the GDPR based on our legitimate interest in improving the stability and functionality of our website. The data will not be passed on or used in any other way. However, we reserve the right to subsequently check the server log files if there are concrete indications of illegal use.
3) Hosting
Hosted by Strato
We use the shop system of the service provider Strato AG, Otto-Ostrowski-Straße 7, 10249 Berlin, for the purpose of hosting and displaying the online shop based on processing on our behalf. All data collected on our website is processed on Strato’s servers. In the event that data is transferred to Strato in Germany, the appropriate level of data protection is guaranteed by the European Commission’s adequacy decision. Further information on data protection from Strato can be found on the following website: https://www.strato.de.
Further processing on servers other than those mentioned above by Strato only takes place within the framework specified below.
4) Cookies
In order to make visiting our website attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are small text files that are stored on your device. Some of the cookies we use are deleted after the end of the browser session, i.e. after you close your browser (so-called session cookies). Other cookies remain on your device and enable you to recognize your browser the next time you visit (so-called persistent cookies). If cookies are set, they collect and process certain user information such as browser and location data as well as IP address values on an individual basis. Persistent cookies are automatically deleted after a specified period of time, which may differ depending on the cookie. You can find out how long each cookie is stored in the overview of the cookie settings in your web browser.
In some cases, cookies are used to simplify the ordering process by storing settings (e.g. remembering the contents of a virtual shopping cart for a later visit to the website). If personal data is also processed through individual cookies we use, the processing takes place in accordance with Art. 6 Para. 1 lit. b GDPR either to implement the contract, in accordance with Art. 6 Para. 1 lit in accordance with Art. 6 Para. 1 lit. f GDPR to protect our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the page visit.
Please note that you can set your browser so that you are informed about the setting of cookies and can decide individually whether to accept them or exclude the acceptance of cookies for certain cases or in general. Each browser differs in the way it manages cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. You can find these for the respective browsers under the following links:
Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehne
Chrome: https://support.google.com/chrome/answer/95647?hl=de&hlrm=en
Safari: https://support.apple.com/de-de/guide/safari/sfri11471/mac
Opera: https://help.opera.com/de/latest/web-preferences/#cookies
Please note that if you do not accept cookies, the functionality of our website may be restricted.
5) Contact us
When you contact us (e.g. via contact form or email), personal data is collected. Which data is collected when a contact form is used can be seen in the respective contact form. This data is stored and used exclusively for the purpose of answering your request or for contacting you and the associated technical administration. The legal basis for processing this data is our legitimate interest in answering your request in accordance with Article 6 (1) (f) GDPR. If your contact is aimed at concluding a contract, the additional legal basis for the processing is Article 6 (1) (b) GDPR. Your data will be deleted after your request has been processed. This is the case if it can be seen from the circumstances that the matter in question has been conclusively clarified and if there are no legal retention obligations to the contrary.
6) Data processing when opening a customer account and for contract processing
In accordance with Article 6 Paragraph 1 Letter b of the GDPR, personal data will continue to be collected and processed if you provide it to us to execute a contract or when opening a customer account. Which data is collected can be seen from the respective input forms. Your customer account can be deleted at any time and can be done by sending a message to the above address of the person responsible. We store and use the data you provide to process the contract. After the contract has been fully processed or your customer account has been deleted, your data will be blocked in consideration of tax and commercial law retention periods and deleted after these periods have expired, unless you have expressly consented to further use of your data or reserve the right to further use of your data as permitted by law on our part became.
7) Use of customer data for direct advertising
7.1 Subscription to our email newsletter
If you sign up for our email newsletter, we will regularly send you information about our offers. The only mandatory information for sending the newsletter is your email address. Providing further data is voluntary and is used to address you personally. We use the so-called double opt-in procedure to send the newsletter. This means that we will only send you an email newsletter if you have expressly confirmed to us that you agree to receive the newsletter. We will then send you a confirmation email in which you will be asked to confirm that you want to receive the newsletter in the future by clicking on a corresponding link.
By activating the confirmation link, you give us your consent to use your personal data in accordance with Article 6 (1) (a) GDPR. When you register for the newsletter, we save your IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your email address at a later date. The data we collect when you register for the newsletter will be used exclusively for advertising purposes via the newsletter. You can unsubscribe from the newsletter at any time using the link provided in the newsletter or by sending a message to the person responsible mentioned at the beginning. Once you have unsubscribed, your email address will be immediately deleted from our newsletter distribution list unless you have expressly consented to further use of your data or we reserve the right to use your data beyond this, which is permitted by law and about which we inform you in this declaration.
7.2 Sending the email newsletter to existing customers
If you have provided us with your email address when purchasing goods or services, we reserve the right to regularly send you offers by email for goods or services similar to those you have already purchased from our range. In accordance with Section 7 Paragraph 3 UWG, we do not need to obtain your separate consent for this. In this respect, data processing is carried out solely on the basis of our legitimate interest in personalized direct advertising in accordance with Article 6 (1) (f) GDPR. If you have initially objected to the use of your email address for this purpose, we will not send emails. You are entitled to object to the use of your email address for the aforementioned advertising purpose at any time with future effect by notifying the person responsible named at the beginning. For this you will only incur transmission costs according to the basic tariffs. Once your objection has been received, the use of your email address for advertising purposes will be stopped immediately.
7.3 Newsletter dispatch via Sendinblue
Our email newsletters are sent via the technical service provider Sendinblue GmbH, Köpenicker Str. 126, 10179 Berlin, to whom we pass on the data you provided when registering for the newsletter. This transfer is carried out in accordance with Article 6 Paragraph 1 Letter f of the GDPR and serves our legitimate interest in using an advertising-effective, secure and user-friendly newsletter system. The data you enter to receive the newsletter (e.g. email address) is stored on Sendinblue’s servers in the EU.
Sendinblue uses this information to send and statistically evaluate the newsletters on our behalf. For evaluation purposes, the emails sent contain so-called web beacons or tracking pixels, which represent single-pixel image files that are stored on our website. This makes it possible to determine whether a newsletter message was opened and which links, if any, were clicked on. Technical information is also recorded (e.g. time of access, IP address, browser type and operating system). The data is only collected pseudonymously and is not linked to your other personal data; direct personal reference is excluded. This data is used exclusively for statistical analysis of newsletter campaigns. The results of these analyzes can be used to better adapt future newsletters to the interests of the recipients. If you would like to object to data analysis for statistical evaluation purposes, you must unsubscribe from the newsletter.
Furthermore, Sendinblue can use this data in accordance with Article 6 Paragraph 1 Letter f of the GDPR based on its own legitimate interest in the needs-based design and optimization of the service as well as for market research purposes, for example to determine which countries the recipients come from. However, Sendinblue does not use the data of our newsletter recipients to write to them ourselves or to pass them on to third parties.
We have concluded an order processing agreement with Sendinblue, with which we oblige Sendinblue to protect our customers’ data and not to pass it on to third parties.
You can view Sendinblue’s privacy policy here: https://de.sendinblue.com/legal/privacypolicy/
8) Data processing for order processing
8.1 To process your order, we work with the following service provider(s), who support us in whole or in part in the implementation of concluded contracts. Certain personal data will be transmitted to these service providers in accordance with the following information.
The personal data we collect will be passed on to the transport company commissioned with the delivery as part of the contract processing, to the extent that this is necessary to deliver the goods. We pass on your payment data to the commissioned credit institution as part of payment processing, provided this is necessary for payment processing. If payment service providers are used, we will inform you explicitly about this below. The legal basis for passing on the data is Article 6 Paragraph 1 Letter b GDPR.
8.2 Use of special service providers for order processing and processing
– Order Printer Pro
For the accounting and logistical organization of orders, we use Strato’s service to automatically create invoices, receipts, shipping labels and other business documents. If personal order data is processed via the service to prepare these documents, the processing takes place in accordance with Art. 6 Para. 1 lit. b GDPR exclusively for the proper processing of online orders.
8.3 Use of payment service providers (payment services)
-Apple Pay
If you choose the “Apple Pay” payment method from Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, the payment will be processed using the “Apple Pay” function of your device running iOS, watchOS or macOS by debiting a payment card stored with “Apple Pay”. Apple Pay uses security features built into your device’s hardware and software to protect your transactions. In order to approve a payment, you must enter a code previously specified by you and verify it using the “Face ID” or “Touch ID” function of your device.
For the purpose of payment processing, the information you provided during the ordering process, along with the information about your order, will be passed on to Apple in encrypted form. Apple then encrypts this data again with a developer-specific key before the data is transmitted to the payment service provider of the payment card stored in Apple Pay to carry out the payment. Encryption ensures that only the website through which the purchase was made can access the payment details. After the payment is made, Apple sends your device account number and a transaction-specific, dynamic security code to the originating website to confirm the payment success.
If personal data is processed during the transfers described, the processing takes place exclusively for the purpose of payment processing in accordance with Article 6 (1) (b) GDPR.
Apple retains anonymized transaction information, including the approximate purchase amount, the approximate date and time, and whether the transaction was successfully completed. Anonymization completely excludes any personal reference. Apple uses the anonymized data to improve Apple Pay and other Apple products and services.
When you use Apple Pay on iPhone or Apple Watch to complete a purchase made through Safari on Mac, the Mac and the authorization device communicate over an encrypted channel on Apple’s servers. Apple does not process or store any of this information in a format that can be used to identify you. You can turn off the ability to use Apple Pay on your Mac in your iPhone’s settings. Go to Wallet & Apple Pay and turn off Allow Payments on Mac.
Further information on data protection with Apple Pay can be found at the following internet address: https://support.apple.com/de-de/HT203027
– Google Pay
If you choose the “Google Pay” payment method from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), the payment will be processed via the “Google Pay” application on your device with at least Android 4.4 (“KitKat”) operated mobile device with an NFC function by charging a payment card stored with Google Pay or a payment system verified there (e.g. PayPal). In order to approve a payment via Google Pay in the amount of more than €25, you must first unlock your mobile device using the verification measure that has been set up (e.g. facial recognition, password, fingerprint or pattern).
For the purpose of payment processing, the information you provided during the ordering process, along with the information about your order, will be passed on to Google. Google then transmits your payment information stored in Google Pay in the form of a unique transaction number to the originating website, which is used to verify a payment made. This transaction number does not contain any information about the real payment details of your payment methods stored with Google Pay, but is created and transmitted as a one-time valid numerical token. For all transactions via Google Pay, Google only acts as an intermediary to process the payment process. The transaction is carried out exclusively between the user and the source website by debiting the payment method stored with Google Pay.
If personal data is processed during the transfers described, the processing takes place exclusively for the purpose of payment processing in accordance with Article 6 (1) (b) GDPR.
Google reserves the right to collect, store and evaluate certain process-specific information for every transaction made via Google Pay. This includes the date, time and amount of the transaction, merchant location and description, a description of the goods or services purchased provided by the merchant, photographs that you included with the transaction, the name and email address of the seller and buyer, respectively. the sender and recipient, the payment method used, your description of the reason for the transaction and, if applicable, the offer associated with the transaction.
According to Google, this processing is carried out exclusively in accordance with Article 6 (1) (f) GDPR based on the legitimate interest in proper accounting, verification of transaction data and the optimization and functionality of the Google Pay service.
Google also reserves the right to combine the processed process data with other information that is collected and stored by Google when you use other Google services.
The Google Pay terms of use can be found here:
https://payments.google.com/payments/apis-secure/u/0/get_legal_document?ldo=0&ldt=googlepaytos&ldl=de
Further information on data protection with Google Pay can be found at the following internet address:
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de
– Klarna
If you select a Klarna payment service, payment is processed via Klarna Bank AB (publ) [https://www.klarna.com/de], Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter “Klarna”). In order to enable payment to be processed, your personal data (first and last name, street, house number, zip code, city, gender, email address, telephone number and IP address) as well as data relating to the order are used (e.g. invoice amount, item, delivery type) will be passed on to Klarna for the purpose of identity and creditworthiness checks, provided that you have expressly consented to this in accordance with Article 6 Paragraph 1 Letter a of the GDPR as part of the ordering process. You can see which credit agencies your data can be forwarded to here:
https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies
The credit report can contain probability values (so-called score values). To the extent that score values are included in the results of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. Klarna uses the information received about the statistical probability of a payment default to make a balanced decision about the establishment, implementation or termination of the contractual relationship.
You can revoke your consent at any time by sending a message to the person responsible for data processing or to Klarna. However, Klarna may still be entitled to process your personal data if this is necessary for contractual payment processing.
Your personal information will be used in accordance with the applicable data protection regulations and in accordance with the information in Klarna’s data protection regulations for those affected based in Germany https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy
or for those affected based in Austria https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/privacy
treated.
-Paypal
When paying via PayPal, credit card via PayPal, direct debit via PayPal or – if offered – “purchase on account” or “payment in installments” via PayPal, we pass on your payment data to PayPal (Europe) S.a.r.l. as part of the payment processing. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”). The transfer takes place in accordance with Art. 6 Para. 1 lit. b GDPR and only to the extent that this is necessary for payment processing.
PayPal reserves the right to carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal or – if offered – “purchase on account” or “payment in installments” via PayPal. For this purpose, your payment data may be passed on to credit agencies in accordance with Article 6 Paragraph 1 Letter f of the GDPR based on PayPal’s legitimate interest in determining your ability to pay. PayPal uses the result of the credit check with regard to the statistical probability of non-payment for the purpose of deciding whether to provide the respective payment method. The credit report can contain probability values (so-called score values). To the extent that score values are included in the results of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. Further data protection information, including information about the credit agencies used, can be found in PayPal’s data protection declaration: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for contractual payment processing.
– Shopify Payments
We use the payment service provider “Shopify Payments”, 3rd Floor, Europa House, Harcourt Building, Harcourt Street, Dublin 2. If you choose a payment method offered via the payment service provider Shopify Payments, the payment is processed via the technical service provider Stripe Payments Europe Ltd. , 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, to whom we communicate the information you provided during the ordering process, together with the information about your order (name, address, account number, bank sort code, possibly credit card number, invoice amount, currency and transaction number) in accordance with Article 6 Paragraph 1 Letter b GDPR. Your data will only be passed on for the purpose of processing payments with Stripe Payments Europe Ltd. and only to the extent that it is necessary for this purpose. Further information about Shopify Payments’ data protection can be found at the following internet address: https://www.shopify.com/legal/privacy.
Data protection information about Stripe Payments Europe Ltd. can be found here: https://stripe.com/de/privacy
-Stripes
If you choose a payment method from the payment service provider Stripe, the payment will be processed via the payment service provider Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, to whom we will send your information and the information you provided during the ordering process about your order (name, address, account number, bank sort code, possibly credit card number, invoice amount, currency and transaction number) in accordance with Art. 6 Para. 1 lit. b GDPR. Further information about Stripe’s data protection can be found at the URL https://stripe.com/de/privacy#translation.
Stripe reserves the right to carry out a credit check based on mathematical and statistical procedures in order to protect the legitimate interest in determining the user’s solvency. Stripe may transmit the personal data required for a credit check and received as part of payment processing to selected credit agencies, which Stripe will disclose to users upon request. The credit report can contain probability values (so-called score values). To the extent that score values are included in the results of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. Stripe uses the result of the credit check with regard to the statistical probability of payment default for the purpose of deciding on the right to use the selected payment method.
You can object to this processing of your data at any time by sending a message to Stripe or the commissioned credit agencies.
However, Stripe may continue to be entitled to process your personal data if this is necessary to process payments in accordance with the contract.
9) Use of social media: videos
Using Vimeo videos
Plugins from the video portal Vimeo from Vimeo, LLC, 555 West 18th Street, New York, New York 10011, USA are integrated into our website. If you access a page on our website that contains such a plugin, your browser establishes a direct connection to Vimeo’s servers. The content of the plugin is transmitted by Vimeo directly to your browser and integrated into the page. Through this integration, Vimeo receives the information that your browser has accessed the corresponding page on our website, even if you do not have a Vimeo account or are not currently logged in to Vimeo. This information (including your IP address) is transmitted from your browser directly to a Vimeo server in the USA and stored there.
If you are logged in to Vimeo, Vimeo can directly assign your visit to our website to your Vimeo account. If you interact with the plugins (such as clicking the start button on a video), this information is also transmitted directly to a Vimeo server and stored there.
The data processing operations described are carried out in accordance with Art. 6 Para. 1 lit. f GDPR on the basis of Vimeo’s legitimate interest in market research and the needs-based design of the Vimeo service.
If you do not want Vimeo to directly assign the data collected via our website to your Vimeo account, you must log out of Vimeo before visiting our website.
The purpose and scope of data collection and the further processing and use of the data by Vimeo as well as your related rights and setting options to protect your privacy can be found in Vimeo’s data protection information: https://vimeo.com/privacy
For videos from Vimeo that are embedded on our site, the tracking tool Google Analytics from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland, is automatically integrated. This is Vimeo’s own tracking, which we do not have access to and which we cannot influence. Google Analytics uses so-called “cookies” for tracking. These are text files that are stored on your computer and enable your use of the website to be analyzed. The information generated by the cookie about your use of this website is usually transmitted to a Google server and stored there; this may also be transmitted to the servers of Google LLC. come to the USA.
This processing is carried out in accordance with Article 6 Paragraph 1 Letter f of the GDPR based on Vimeo’s legitimate interest in the statistical analysis of user behavior for optimization and marketing purposes.
To the extent legally required, we have obtained your consent for the processing of your data as described above in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time with future effect. To exercise your revocation, deactivate this service in the “cookie consent tool” provided on the website.
10) Online marketing
Facebook Pixel for creating custom audiences (with Cookie Consent Tool)
Our online offering uses the so-called “Facebook pixel” from the social network Facebook, which is operated by Facebook Ireland Limited, 4 Grand Canal Quare, Dublin 2, Ireland (“Facebook”).
If a user clicks on an advertisement we have placed on Facebook, an addition is added to the URL of our linked page by Facebook Pixel. If our site allows sharing data with Facebook via pixels, this URL parameter is written into the user’s browser via a cookie, which our linked site sets itself. This cookie is then read by Facebook Pixel and enables the data to be forwarded to Facebook.
With the help of the Facebook pixel, Facebook is able to determine the visitors to our online offering as a target group for the display of advertisements (so-called “Facebook Ads”). Accordingly, we use the Facebook pixel to only show the Facebook ads we place to those Facebook users who have shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products) based on the information they visit websites) which we transmit to Facebook (so-called “Custom Audiences”). With the help of the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interest of the users and do not appear annoying. This allows us to further evaluate the effectiveness of Facebook advertisements for statistical and market research purposes by tracking whether users were redirected to our website after clicking on a Facebook advertisement (so-called “conversion”).
The data collected is anonymous to us, so it does not allow us to draw any conclusions about the identity of the user. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes in accordance with the Facebook data usage guidelines (https://www.facebook.com/about/privacy/). The data can enable Facebook and its partners to place advertisements on and outside of Facebook.
The data processing associated with the use of the Facebook Pixel only takes place with your express consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your consent at any time with future effect. To exercise your revocation, remove the check mark next to the “Facebook Pixel” setting in the “Cookie Consent Tool” integrated on the website.
11) Retargeting/remarketing/recommendation advertising
Google Ads Remarketing
Our website uses the functions of Google Ads Remarketing, with which we advertise this website in Google search results and on third-party websites. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). For this purpose, Google sets a cookie in the browser of your device, which automatically enables interest-based advertising using a pseudonymous cookie ID and based on the pages you visit. The processing is carried out on the basis of our legitimate interest in the optimal marketing of our website in accordance with Article 6 (1) (f) GDPR.
Any further data processing will only take place if you have agreed to Google that your internet and app browser history will be linked by Google to your Google account and that information from your Google account will be used to personalize ads that you display on the web regard. In this case, if you are logged in to Google while visiting our website, Google will use your data together with Google Analytics data to create and define target group lists for cross-device remarketing. To do this, Google temporarily links your personal data with Google Analytics data to form target groups. As part of the use of Google Ads Remarketing, personal data may also be transmitted to the servers of Google LLC. come to the USA.
You can permanently object to the setting of cookies by Google Ads Remarketing by downloading and installing the Google browser plug-in available at the following link:
https://www.google.com/settings/ads/onweb/
You can find further information and the data protection regulations regarding advertising and Google here:
https://www.google.com/policies/technologies/ads/
To the extent legally required, we have obtained your consent for the processing of your data as described above in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time with future effect. To exercise your revocation, deactivate this service in the “cookie consent tool” provided on the website or, alternatively, follow the option described above to object.
12) Tools and miscellaneous
In the former case, data processing takes place in accordance with Article 6 Paragraph 1 Letter f of the GDPR on the basis of our legitimate interest in the effective and cross-system maintenance of the profiles of advertising recipients and the efficient consideration of legally significant status changes.
Further data protection information about ShopSync can be found here: https://shopsync.io/privacy-policy
13) Rights of the person concerned
13.1 Applicable data protection law grants you comprehensive data subject rights (rights of information and rights of intervention) vis-à-vis the person responsible for the processing of your personal data, about which we will inform you below:
Right to information in accordance with Art. 15 GDPR: In particular, you have the right to information about your personal data processed by us, the processing purposes, the categories of personal data processed, the recipients or categories of recipients to whom your data has been or will be disclosed, the planned Storage period or the criteria for determining the storage period, the existence of a right to correction, deletion, restriction of processing, objection to processing, complaint to a supervisory authority, the origin of your data if it was not collected from you by us, that Existence of automated decision-making including profiling and, if necessary, meaningful information about the logic involved and the scope and intended effects of such processing affecting you, as well as your right to be informed about what guarantees exist in accordance with Art. 46 GDPR when your data is forwarded to third countries;
Right to rectification in accordance with Art. 16 GDPR: You have the right to immediate correction of incorrect data concerning you and/or completion of incomplete data stored by us;
Right to deletion in accordance with Art. 17 GDPR: You have the right to request the deletion of your personal data if the requirements of Art. 17 Paragraph 1 GDPR are met. However, this right does not apply in particular if the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims;
Right to restriction of processing in accordance with Art. 18 GDPR: You have the right to request the restriction of the processing of your personal data as long as the accuracy of your data that you dispute is checked, if you refuse to delete your data due to unlawful data processing and instead Request restriction of the processing of your data if you need your data to assert, exercise or defend legal claims after we no longer need this data after the purpose has been achieved or if you have lodged an objection for reasons relating to your particular situation as long as it is not yet clear whether our legitimate interests are reasons predominate;
Right to information in accordance with Art. 19 GDPR: If you have asserted the right to rectification, deletion or restriction of processing against the person responsible, the person responsible is obliged to inform all recipients to whom the personal data concerning you have been disclosed this rectification or deletion of the data or Restriction of processing unless this proves impossible or involves disproportionate effort. You have the right to be informed about these recipients.
Right to data portability in accordance with Art. 20 GDPR: You have the right to receive the personal data you have provided to us in a structured, common and machine-readable format or to request that it be transmitted to another person responsible, to the extent that this is technically feasible;
Right to revoke consent given in accordance with Art. 7 Para. 3 GDPR: You have the right to revoke your consent to the processing of data at any time with effect for the future. In the event of revocation, we will delete the data concerned immediately unless further processing can be based on a legal basis for processing without consent. The revocation of consent does not affect the lawfulness of the processing carried out based on the consent before its revocation;
Right to complain in accordance with Art. 77 GDPR: If you are of the opinion that the processing of personal data concerning you violates the GDPR, you have the right – without prejudice to any other administrative or judicial remedy – to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or place of the alleged infringement.
13.2 RIGHT TO OBJECT
IF WE PROCESS YOUR PERSONAL DATA AS PART OF A BALANCE OF INTERESTS BASED ON OUR OVERWHELMING LEGITIMATE INTEREST, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO THIS PROCESSING WITH EFFECT FOR THE FUTURE FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION.
IF YOU USE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE AFFECTED DATA. HOWEVER, FURTHER PROCESSING IS RESERVED IF WE CAN PROVE COMPLEX REASONS FOR THE PROCESSING THAT ARE DESIGNED TO BE PROTECTED, WHICH OUTWEIGH YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FUNDAMENTAL FREEDOMS, OR IF THE PROCESSING SERVES THE ASSERTMENT, EXERCISE OR DEFENSE OF LEGAL CLAIMS.
IF YOUR PERSONAL DATA IS PROCESSED BY US FOR DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING. YOU MAY EXERCISE YOUR OPT-OUT AS DESCRIBED ABOVE.
IF YOU USE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE AFFECTED DATA FOR DIRECT ADVERTISING PURPOSES.
14) Duration of storage of personal data
The duration of storage of personal data is determined based on the respective legal basis, the purpose of processing and – if relevant – additionally based on the respective legal retention period (e.g. commercial and tax retention periods).
When processing personal data on the basis of express consent in accordance with Article 6 (1) (a) GDPR, this data will be stored until the person concerned revokes their consent.
If there are statutory retention periods for data that are processed within the framework of legal or transaction-like obligations on the basis of Art. 6 Para. 1 lit and/or we have no legitimate interest in further storage.
When processing personal data on the basis of Article 6 Paragraph 1 Letter f of the GDPR, this data will be stored until the data subject exercises his or her right to object in accordance with Article 21 Paragraph 1 of the GDPR, unless we can provide compelling legitimate reasons provide evidence for the processing that outweighs the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.
When processing personal data for the purpose of direct advertising on the basis of Article 6 Paragraph 1 Letter f of the GDPR, this data will be stored until the data subject exercises his or her right to object in accordance with Article 21 Paragraph 2 of the GDPR.
Unless otherwise stated in the other information in this declaration about specific processing situations, stored personal data will be deleted when they are no longer necessary for the purposes for which they were collected or otherwise processed.