We attach great importance to your personal data and your privacy. This data protection statement informs you about how we collect and process your personal data when you visit our website. Personal data means any information relating to the personal or factual circumstances of an identified or identifiable natural person.
1.1 Encrypted data transmission
Our website uses SSL (Secure Socket Layer) encryption. This coding system ensures that all of your data is transmitted in encrypted form, thus offering you an increased security standard when using our website. You can recognize this encrypted connection by the closed padlock symbol in your browser and the “https://“ in the address line.
1.2 Website access
When you visit our website, your browser transmits data to our server and stores these in server log files. Each time a page is accessed, the following data are recorded: name of the retrieved web page or file, the date and time of retrieval, the volume of data transmitted, browser type and version and the user’s IP address. These data are collected for security reasons in accordance with Article 6 (1) f) of the GDPR and stored for 14 days. After this period, the data is erased or evaluated anonymously for statistical purposes. It is no longer possible to identify you personally. The data will not be passed on or used in any other way.
1.3 Contacting us
If you contact us via the contact form on our website or via email, we will only collect personal data to the extent you have made it available to us. These data will be used exclusively for processing your request in accordance with Article 6 (1) b) of the GDPR. Your data will then be erased unless you have consented to further processing and use and there are no overriding legal storage obligations.
2.1 Newsletter subscription
Our email newsletter provides you with regular information about our products, promotions and other content such as blog entries and news from our company and the industry. To subscribe to our newsletter, you will need to provide your email address. Other information may be provided voluntarily. We will not send you our newsletter until you have expressly confirmed your subscription via the double opt-in procedure. In this case we will first send you a confirmation email asking you to click a link to confirm that you would like to subscribe to the newsletter. The personal data provided by you when subscribing to our newsletter will be used in accordance with Article 6 (1) a) of the GDPR and will be processed exclusively for marketing purposes in our newsletter. For security reasons, your IP address, as well as the date and time of newsletter subscription, will also be stored in accordance with Article 6 (1) f) of the GDPR. This also serves the purpose of verifying your newsletter subscription and enables us to trace any misuse of your email address. You can unsubscribe from our newsletter at any time by clicking on the link provided in the email, changing the appropriate settings in your customer account or sending a message to the person listed below. Your email address will be erased from our newsletter distribution list immediately after you have unsubscribed.
2.2 Passing on your newsletter data
We use „sendinblue“ (Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Deutschland) to send our newsletters. The personal data that you provide when you subscribe to our newsletter is transmitted to this service provider in accordance with Article 6 (1) f) of the GDPR in order to provide you with a secure and user-friendly newsletter. sendinblue uses tracking pixels to determine whether the newsletter was opened and whether you have clicked on a link in the newsletter. In addition, information about your IP address, browser type and operating system is collected in pseudonomized form for statistical purposes. It is no longer possible to identify you personally. These data will not be passed on or used in any other way. Further information on how sendinblue processes your personal data can be found in sendinblue’s data protection statement: https://de.sendinblue.com/legal/privacypolicy/
3.1 Ordering process
If you place an order in our online shop, we collect the personal data required for this in accordance with Article 6 (1) b) of the GDPR. This includes your name, your address and, if applicable, your payment details. In addition, we need your email address to send you the invoice, order confirmation and shipping information. After we have fulfilled your order, your personal data will be stored for the period specified in tax and commercial law and then erased insofar as you have not consented to further processing and use.
3.2 Passing on your order data
We work together with external service providers to process your order. The data passed on by us pursuant to Article 6 (1) b) of the GDPR may be processed by the following service providers exclusively for the purpose of processing your order.
To process your order, we have commissioned "Dynamic Shield" (Dynamic Shield GmbH, Bessemerstr. 38-42, 12103 Berlin). For this purpose, we pass on the data you provided in our online shop when ordering to Dynamic Shield in accordance with Article 6 (1) b) of the GDPR. This includes information about your order, as well as your name, the billing and delivery address, payment method and your email address.
The goods ordered by you will be delivered by the logistics service provider “DHL” (Deutsche Post AG, Charles-de-Gaulle-Straße 20, 53113 Bonn). For this purpose, we pass on your name and delivery address to DHL in accordance with Article 6 (1) b) of the GDPR. In order to coordinate the delivery of your order, we will also pass on your email address to DHL in accordance with Article 6 (1) a) of the GDPR. Any other use of these data is not permitted. You can revoke your consent to the use of your data at any time with effect for the future to the person responsible named below or DHL.
If you choose to pay via PayPal when you place your order, your payment details will be transmitted to "PayPal" (PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg) to process the payment transaction in accordance with Article 6 (1) b) of the GDPR. PayPal offers you various options for payment processing, which depend on the settings you have stored in your PayPal account. For selected payment methods (direct debit via PayPal, credit card via PayPal, purchase on account via PayPal, payment by installments via PayPal) PayPal reserves the right to carry out a credit check. For this purpose, your payment information may be passed on to appropriate credit agencies in accordance with Article 6 (1) f) of the GDPR. For further information on the processing of your data by PayPal, please refer to PayPal’s data protection statement: https://www.paypal.com/uk/webapps/mpp/ua/privacy-full
If you choose to pay by credit card when you place your order, your payment details will be transmitted to Stripe Payments Europe Ltd, Block 4, Harcourt Centre, Harcourt Road, Dublin 2, Ireland for processing the payment transaction in accordance with Article 6 (1) b) of the GDPR. These data include information about your order, as well as your name, address, account number, bank code, credit card number, invoice amount, currency and transaction number. For more information on how Stripe processes your data, please refer to Stripe’s General Terms: https://stripe.com/gb/legal
4. Customer account
As part of our bonus program, additional activities are recorded on our website when you log into your customer account. Specifically, the following data are collected in accordance with Article 6 (1) a) of the GDPR: order history, submitted product reviews, number of page views, commented blog posts, number of new customers acquired and newsletter subscriptions. You can view this information and any other personal data that you enter in your customer profile at any time in your customer account and change it if necessary. In addition, you have the option in your customer account to object to participation in our bonus program and the associated data collection without deleting your customer account. If you would like to delete your customer account, this is also possible there. All personal data will be deleted insofar as you have not consented to further processing and use and if there are no overriding legal storage obligations.
6. Web analytics
6.1 Google Analytics
6.2 Google remarketing
6.3 Google Adwords conversion tracking
6.4 Facebook conversion tracking
With your consent, our website uses tracking pixels from Facebook (Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA) in accordance with Article 6 (1) a) of the GDPR. These pixels can be used to track the behavior of users after they have been redirected to our website by clicking on a Facebook ad. This enables us to measure the effectiveness of Facebook ads for statistical and market research purposes. The data collected in this way is anonymous to us, i.e. we do not receive any personal data about individual users. However, this data is stored and processed by Facebook, which is why we are informing you based on our level of knowledge. Facebook may link this information to your Facebook account and also use it for its own promotional purposes, in accordance with Facebook’s Data Usage Policy https://www.facebook.com/about/privacy/. You have the option to stop Facebook and its partners from placing advertisements. You can edit the settings for Facebook ads at the following link: https://www.facebook.com/ads/website_custom_audiences/.
7. Duration of data storage
Your personal data will only be stored for as long as is necessary for the execution of our services or legal storage obligations require. After expiry of these periods, fulfillment of the contract or if there is no longer any legitimate interest on our part in further storage, your personal data will be deleted.
8. Your rights
In accordance with Article 15 of the GDPR, you have the right, at no charge, to receive information about your stored data at any time. Furthermore, you have the right to have this data rectified in accordance with Article 16 of the GDPR. If the requirements of Article 17 (1) of the GDPR are met, you also have the right to have this data erased in accordance with Article 17 of the GDPR, unless this conflicts with other legal provisions. In accordance with Article 18 of the GDPR, you also have the right to request a restriction on the processing of these data if the conditions set out in Article 18 (1) of the GDPR are met. If you have asserted your right to rectification, erasure or restriction of the processing of your data, you also have the right, in accordance with Article 19 of the GDPR, to have this communicated to the recipients of these data and to be informed about these recipients. Furthermore, according to Article 20 of the GDPR, you have the right to request that your data is transmitted to another data controller. You can revoke your consent to the processing of personal data at any time with future effect in accordance with Article 7 (3) of the GDPR. If you believe that the processing of your personal data is unlawful, you have the right to lodge a complaint with a supervisory authority in accordance with Article 77 of the GDPR.
9. Responsible for your data
The responsible party for data processing on this website under the meaning of the General Data Protection Regulation is Artwizz GmbH, Bessemerstr. 38-42, 12103 Berlin. For all matters concerning the protection of your personal data, please contact us at:
Tel: +49 (0) 30 / 81 82 149 - 0
Fax: +49 (0) 30 / 81 82 149 - 29