Privacy policy
We attach great importance to your personal data and your privacy. This data protection statement informs you about how we collect and process your personal data when you visit our website. Personal data means any information relating to the personal or factual circumstances of an identified or identifiable natural person.
1. Website
1.1 Encrypted data transmission
Our website uses SSL (Secure Socket Layer) encryption. This coding system ensures that all of your data is transmitted in encrypted form, thus offering you an increased security standard when using our website. You can recognize this encrypted connection by the closed padlock symbol in your browser and the “https://“ in the address line.
1.2 Website access
When you visit our website, your browser transmits data to our server and stores these in server log files. Each time a page is accessed, the following data are recorded: name of the retrieved web page or file, the date and time of retrieval, the volume of data transmitted, browser type and version and the user’s IP address. These data are collected for security reasons in accordance with Article 6 (1) f) of the GDPR and stored for 14 days. After this period, the data is erased or evaluated anonymously for statistical purposes. It is no longer possible to identify you personally. The data will not be passed on or used in any other way.
1.3 Contacting us
If you contact us via the contact form on our website or via email, we will only collect personal data to the extent you have made it available to us. These data will be used exclusively for processing your request in accordance with Article 6 (1) b) of the GDPR. Your data will then be erased unless you have consented to further processing and use and there are no overriding legal storage obligations.
2. Newsletter
2.1 Newsletter subscription
Our email newsletter provides you with regular information about our products, promotions and other content such as blog entries and news from our company and the industry. To subscribe to our newsletter, you will need to provide your email address. Other information may be provided voluntarily. We will not send you our newsletter until you have expressly confirmed your subscription via the double opt-in procedure. In this case we will first send you a confirmation email asking you to click a link to confirm that you would like to subscribe to the newsletter. The personal data provided by you when subscribing to our newsletter will be used in accordance with Article 6 (1) a) of the GDPR and will be processed exclusively for marketing purposes in our newsletter. For security reasons, your IP address, as well as the date and time of newsletter subscription, will also be stored in accordance with Article 6 (1) f) of the GDPR. This also serves the purpose of verifying your newsletter subscription and enables us to trace any misuse of your email address. You can unsubscribe from our newsletter at any time by clicking on the link provided in the email, changing the appropriate settings in your customer account or sending a message to the person listed below. Your email address will be erased from our newsletter distribution list immediately after you have unsubscribed.
2.2 Passing on your newsletter data
We use „sendinblue“ (Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Deutschland) to send our newsletters. The personal data that you provide when you subscribe to our newsletter is transmitted to this service provider in accordance with Article 6 (1) f) of the GDPR in order to provide you with a secure and user-friendly newsletter. sendinblue uses tracking pixels to determine whether the newsletter was opened and whether you have clicked on a link in the newsletter. In addition, information about your IP address, browser type and operating system is collected in pseudonomized form for statistical purposes. It is no longer possible to identify you personally. These data will not be passed on or used in any other way. Further information on how sendinblue processes your personal data can be found in sendinblue’s data protection statement: https://de.sendinblue.com/legal/privacypolicy/
3. Ordering
3.1 Ordering process
If you place an order in our online shop, we collect the personal data required for this in accordance with Article 6 (1) b) of the GDPR. This includes your name, your address and, if applicable, your payment details. In addition, we need your email address to send you the invoice, order confirmation and shipping information. After we have fulfilled your order, your personal data will be stored for the period specified in tax and commercial law and then erased insofar as you have not consented to further processing and use.
3.2 Passing on your order data
We work together with external service providers to process your order. The data passed on by us pursuant to Article 6 (1) b) of the GDPR may be processed by the following service providers exclusively for the purpose of processing your order.
Dynamic Shield:
To process your order, we have commissioned "Dynamic Shield" (Dynamic Shield GmbH, Bessemerstr. 38-42, 12103 Berlin). For this purpose, we pass on the data you provided in our online shop when ordering to Dynamic Shield in accordance with Article 6 (1) b) of the GDPR. This includes information about your order, as well as your name, the billing and delivery address, payment method and your email address.
DHL:
The goods ordered by you will be delivered by the logistics service provider “DHL” (Deutsche Post AG, Charles-de-Gaulle-Straße 20, 53113 Bonn). For this purpose, we pass on your name and delivery address to DHL in accordance with Article 6 (1) b) of the GDPR. In order to coordinate the delivery of your order, we will also pass on your email address to DHL in accordance with Article 6 (1) a) of the GDPR. Any other use of these data is not permitted. You can revoke your consent to the use of your data at any time with effect for the future to the person responsible named below or DHL.
PayPal:
If you choose to pay via PayPal when you place your order, your payment details will be transmitted to "PayPal" (PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg) to process the payment transaction in accordance with Article 6 (1) b) of the GDPR. PayPal offers you various options for payment processing, which depend on the settings you have stored in your PayPal account. For selected payment methods (direct debit via PayPal, credit card via PayPal, purchase on account via PayPal, payment by installments via PayPal) PayPal reserves the right to carry out a credit check. For this purpose, your payment information may be passed on to appropriate credit agencies in accordance with Article 6 (1) f) of the GDPR. For further information on the processing of your data by PayPal, please refer to PayPal’s data protection statement: https://www.paypal.com/uk/webapps/mpp/ua/privacy-full
Stripe:
If you choose to pay by credit card when you place your order, your payment details will be transmitted to Stripe Payments Europe Ltd, Block 4, Harcourt Centre, Harcourt Road, Dublin 2, Ireland for processing the payment transaction in accordance with Article 6 (1) b) of the GDPR. These data include information about your order, as well as your name, address, account number, bank code, credit card number, invoice amount, currency and transaction number. For more information on how Stripe processes your data, please refer to Stripe’s General Terms: https://stripe.com/gb/legal
4. Customer account
As part of our bonus program, additional activities are recorded on our website when you log into your customer account. Specifically, the following data are collected in accordance with Article 6 (1) a) of the GDPR: order history, submitted product reviews, number of page views, commented blog posts, number of new customers acquired and newsletter subscriptions. You can view this information and any other personal data that you enter in your customer profile at any time in your customer account and change it if necessary. In addition, you have the option in your customer account to object to participation in our bonus program and the associated data collection without deleting your customer account. If you would like to delete your customer account, this is also possible there. All personal data will be deleted insofar as you have not consented to further processing and use and if there are no overriding legal storage obligations.
5. Cookies
Our website uses cookies. Cookies are small text files that are stored on your device and saved by your browser. They serve to make our website more user-friendly, effective and secure. While some cookies are only stored for the duration of your visit to our website and then deleted, other cookies are stored on your device in order, for example, to recognize your browser the next time you visit our website and display the contents of your virtual shopping basket again. Personal data collected in this way will be processed in accordance with Article 6 (1) b) of the GDPR, insofar as these data serve the execution of a contract. Otherwise we process these data in accordance with Article 6 (1) f) of the GDPR to optimize the functionality and security of our website. We also use third-party cookies on our website. You can read more about these in the following paragraphs. You can prevent your device from saving cookies at any time by using the appropriate settings in your browser. However, this may limit the functionality of our website. The following links take you to your browser’s cookie settings:
Chrome::http://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647
Firefox::https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
Internet Explorer::https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies
Safari::https://support.apple.com/kb/PH21411?locale=en_US
Opera::http://help.opera.com/Windows/10.20/en/cookies.html
6. Web analytics
6.1 Google Analytics
This website uses Google Analytics, a web analysis service of "Google" (Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) in accordance with Article 6 (1) f) of the GDPR to analyse user behavior. Google Analytics uses cookies, which are small text files placed on your computer, to help the website analyze how you use our website. The information generated by the cookie about your use of this website is usually transferred to a Google server in the United States of America and stored there. However, by activating IP anonymization on this website, Google will first shorten the IP addresses of users within the Member States of the European Union or in other parties to the Agreement on the European Economic Area. Only in exceptional cases will your full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of our website, to compile reports on website activities and to provide the website operator with further services associated with website and Internet use. The IP address transmitted by your browser in the context of Google Analytics will not be associated with any other Google data. For more information, see Google’s Privacy Policy at https://policies.google.com/privacy?hl=en and Terms of Use at https://policies.google.com/terms?hl=en. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by downloading and installing the appropriate browser plug-in at http://tools.google.com/dlpage/gaoptout?hl=en. Alternatively, you can click here to prevent Google Analytics from collecting your data. In this case, an opt-out cookie will be set to prevent the future collection of your data when you visit our website.
6.2 Google remarketing
This website uses the remarketing function of “Google” (Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) in accordance with Article 6 (1) f) of the GDPR for targeted marketing. This function is used to present interest-based advertisements to website visitors as part of the Google advertising network. The visitor’s browser stores cookies, small text files that are saved on your computer and enable websites to recognize users when they visit websites that belong to Google’s advertising network. These pages may then present advertisements to the visitor relating to content previously accessed by the visitor on other websites that use Google’s remarketing function. No personal data is collected during this process. However, if you do not wish to use Google’s remarketing function, you can always deactivate it by selecting the appropriate settings at http://www.google.com/settings/ads. Alternatively, you can disable the use of cookies for interest-based advertising through the Advertising Network Initiative by following the instructions at http://www.networkadvertising.org/managing/opt_out.asp.
6.3 Google Adwords conversion tracking
As a user of the online advertising program “Google AdWords,” we also use Google AdWords conversion tracking in accordance with Article 6 (1) f) of the GDPR for targeted advertising. Google Conversion Tracking is an analysis service of “Google” (Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). This enables Google AdWords to place a cookie (conversion cookie) if you have accessed our website via a Google ad. These cookies expire after a specific length of time, do not contain any personal data and are therefore not used to identify you personally. If you visit certain pages of our website and the cookie has not yet expired, we and Google may recognize that you clicked on the ad and were redirected to that page. Each Google AdWords customer receives a different cookie. This means that conversion tracking cookies cannot be tracked via the websites of AdWords customers. The information collected using the conversion cookie is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. Customers can see the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, we will not receive any information that personally identifies users. If you do not wish to participate in conversion tracking, you can object to this use by preventing the installation of cookies by selecting the appropriate setting in your browser software (deactivation option). You are then not included in the conversion tracking statistics. For more information and Google’s privacy policy, please visit: https://policies.google.com/privacy?hl=en
6.4 Facebook conversion tracking
With your consent, our website uses tracking pixels from Facebook (Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA) in accordance with Article 6 (1) a) of the GDPR. These pixels can be used to track the behavior of users after they have been redirected to our website by clicking on a Facebook ad. This enables us to measure the effectiveness of Facebook ads for statistical and market research purposes. The data collected in this way is anonymous to us, i.e. we do not receive any personal data about individual users. However, this data is stored and processed by Facebook, which is why we are informing you based on our level of knowledge. Facebook may link this information to your Facebook account and also use it for its own promotional purposes, in accordance with Facebook’s Data Usage Policy https://www.facebook.com/about/privacy/. You have the option to stop Facebook and its partners from placing advertisements. You can edit the settings for Facebook ads at the following link: https://www.facebook.com/ads/website_custom_audiences/.
7. Duration of data storage
Your personal data will only be stored for as long as is necessary for the execution of our services or legal storage obligations require. After expiry of these periods, fulfillment of the contract or if there is no longer any legitimate interest on our part in further storage, your personal data will be deleted.
8. Your rights
In accordance with Article 15 of the GDPR, you have the right, at no charge, to receive information about your stored data at any time. Furthermore, you have the right to have this data rectified in accordance with Article 16 of the GDPR. If the requirements of Article 17 (1) of the GDPR are met, you also have the right to have this data erased in accordance with Article 17 of the GDPR, unless this conflicts with other legal provisions. In accordance with Article 18 of the GDPR, you also have the right to request a restriction on the processing of these data if the conditions set out in Article 18 (1) of the GDPR are met. If you have asserted your right to rectification, erasure or restriction of the processing of your data, you also have the right, in accordance with Article 19 of the GDPR, to have this communicated to the recipients of these data and to be informed about these recipients. Furthermore, according to Article 20 of the GDPR, you have the right to request that your data is transmitted to another data controller. You can revoke your consent to the processing of personal data at any time with future effect in accordance with Article 7 (3) of the GDPR. If you believe that the processing of your personal data is unlawful, you have the right to lodge a complaint with a supervisory authority in accordance with Article 77 of the GDPR.
9. Responsible for your data
The responsible party for data processing on this website under the meaning of the General Data Protection Regulation is Artwizz GmbH, Bessemerstr. 38-42, 12103 Berlin. For all matters concerning the protection of your personal data, please contact us at:
Artwizz GmbH
Bessemerstr. 38-42
12103 Berlin
E-Mail: datenschutz@artwizz.com
Tel: +49 (0) 30 / 81 82 149 - 0
Fax: +49 (0) 30 / 81 82 149 - 29
Update: 25.05.2018