User Privacy Notice
In our User Privacy Notice we have compiled all essential information about our handling of your personal data and your corresponding rights for you.
We is responsible for the collection and processing of your personal data in connection with the provision of our Services.
This User Privacy Notice applies to your use of this website and all this Shop applications, services (including payment services), products and tools (collectively the “Services”), regardless of how you access or use these Services, including access via mobile devices and apps.
We may change this User Privacy Notice at any time by posting the revised User Privacy Notice on this website and indicating the effective date of the revised User Privacy Notice. You will be notified of any material changes to this User Privacy Notice by email.
What personal data we collect and process
We collect your personal data when you use our Services, create a new this Site account, provide us with information via a web form, add or update information in your account, participate in online community discussions or otherwise interact with us.
In total, we collect the following personal data:
1 Personal data you provide when using our Services or creating this site account
Data that identifies you, such as your name, email addresses, your user name.
2. Financial information (e.g. credit card and account numbers, transaction details, and form of payment).
3. Other data that we are required or entitled by applicable law to collect and process and that we need for your authentication or identification, or for the verification of the data we collect.
4. Personal data we collect automatically when you use our Services or create this site account. Data that is generated as part of one of your transactions or that is linked to your this site account as a result of a transaction in which you are involved, such as transaction amounts, time and location of transactions and form of payment.
Data about the pages you visit, the access time, frequency and duration of visits, the links on which you click and other actions you take as part of your use of our Services and in advertising and email content.
Data about your activities and interactions with our advertising partners including data about the advertisements you were shown, how often they were shown, when and where they were shown, and whether you took any action, such as clicking on an advertisement or making a purchase.
Model or device type, operating system and version, browser type and settings, device ID or individual device identifier, advertisement ID, individual device token, and cookie-related data (e.g. cookie ID).
The IP address from which your device accesses the Services.
Location data, including your general location data (e.g., IP address).
6. Social network data you share with us.
We allow you to use social networks (such as Facebook) or other providers of single sign-on services (such as Google or Apple) with whom you already have an account to create this site account or to link your this site account to such single sign-on services. You can determine the personal data that we can access when authorizing the connection with the single sign-on service.
We allow you to share personal data with social networks (such as Facebook) or to link this site account to a social network. These social networks may automatically provide us with access to certain personal data they have stored about you (e.g. content you have viewed or enjoyed, information about the advertisements you have been shown or clicked on, etc.). You can determine the personal data that we can access through the privacy settings of each social network.
We may also use plug-ins or other technologies from various social networks. If you click on a link displayed through a social network plug-in, you voluntarily connect to that social network.
Purposes and legal basis for data processing and categories of recipients
1. We process your personal data in order to comply with legal obligations to which we are subject. This includes the following purposes:
Participation in investigations and proceedings (including judicial proceedings) conducted by public authorities or government agencies, in particular, for the purpose of detecting, investigating and prosecuting illegal acts.
Prevention, detection and mitigation of illegal activities (e.g. fraud, money laundering and terrorist financing).
Complying with information requests from third parties based on any statutory information rights they have against us (e.g. in the event of an intellectual property infringement, product piracy, or other unlawful activity).
Ensuring the information security of our Services.
Retention and storage of your personal data to comply with specific legal retention requirements.
2. Where necessary, we transmit your personal data to processors and the following recipients for one or several of the purposes described above:
Law enforcement agencies, courts, government agencies or public authorities, intergovernmental or supranational bodies (in connection with our payment services provided in the EU for sellers in particular with regard to compliance with Luxembourg laws concerning FATCA dated July 7, 2015 and concerning the OECD Common Reporting Standard dated December 18, 2015).
Third parties based on statutory information claims against us
Third party service providers.
Third parties who are involved in judicial proceedings, in particular, if they submit a legal order, court order or equivalent legal order to us.
Credit agencies, bureaus, or associations, if required by applicable law (e.g. information on payment delays, payment defaults or other irregularities that may be relevant to your credit report).
Storage duration and erasure.
The data will be deleted after the relevant limitation or retention periods have expired.
Your personal data will be stored by us in accordance with applicable data protection laws to the extent necessary for the processing purposes set out in this User Privacy Notice.
Subsequently, we will delete your personal data in accordance with our data retention and deletion policy or take steps to properly render the data anonymous, unless we are legally obliged to keep your personal data longer (e.g. for legal compliance, tax, accounting or auditing purposes).
In Europe, the retention periods are generally between 6 and 10 years (e.g. for contracts, notifications and business letters). As far as legally permissible or required, we restrict the processing of your data instead of deleting it (e.g. by restricting access to it). This applies in particular to cases where we may still need the data for the execution of the contract or for the assertion of or defense against legal claims, or where such retention is otherwise required or permitted by law. In these cases, the duration of the restriction of processing depends on the respective statutory limitation or retention periods.
Rights as a data subject.
Subject to possible restrictions under national law, as a data subject, you have the right to access, rectification, erasure, restriction of processing and data portability with regard to your personal data. In addition, you can withdraw your consent and object to our processing of your personal data on the basis of our legitimate interests. You can also lodge a complaint with a supervisory authority.
Cookies & similar technologies .
We protect your personal data through technical and organizational security measures to minimize risks associated with data loss, misuse, unauthorized access and unauthorized disclosure and alteration. To this end we use firewalls and data encryption, for example, as well as physical access restrictions for our data centers and authorization controls for data access.