Data protection
This website is operated by:
Niwa Schmuck & Accessoires GmbH.
It is very important to us to deal with the data of our website visitors and to protect them in the best possible way. For this reason, we make all efforts to meet the requirements of the GDPR.
In the following we will explain how we process your data on our website. We use the most clear and transparent language as possible so that you really understand what happens to your data.
2.1 Processing of personal data and other terms
Data protection applies to the processing of personal data. Personally, all data that they can be used personally means. This is, for example, the IP address of the device (PC, laptop, smartphone, etc.) in front of which you are sitting. Such data are processed when "something happens with it". Here, for example, the IP is transmitted to our provider by the browser and automatically saved there. This is then a processing (in accordance with Art. 4 No. 2 GDPR) of personal data (according to Art. 4 No. 1 GDPR).
These and other legal definitions can be found in Art. 4 GDPR.
2.2 To be used regulations/ laws - GDPR, BDSG and TDDDG
The scope of data protection is regulated by laws. In this case, these are the GDPR (General Data Protection Regulation) as a European Ordinance and the BDSG (Federal Data Protection Act) as a national law.
The TDDDG also complements the regulations from the GDPR, insofar as it is the use of cookies.
2.3 The person responsible
The person responsible in the sense of the GDPR is responsible for data processing on this website. This is the natural or legal person who decides alone or together with others about the purposes and means of processing personal data.
You can reach those responsible at:
Niwa Schmuck & Accessoires GmbH
Margraveum 33,
10245 Berlin
mail@niwa-jewellery.de
2.4 In this way, data is generally processed on this website
As we have already determined, there is data (e.g. IP address) that are automatically collected. This data is mainly required for the technical provision of the homepage. Insofar as we also use personal data or collect other data, we will clarify you or ask for consent.
You deliberately inform us of other personal data.
Detailed information is available below.
The GDPR equips them with extensive rights. These are, for example, the free information about the origin, recipient and purpose of your stored personal data. You can also request the correction, blocking or deletion of this data or complain to the responsible data protection supervisory authority. You can revoke your consent at any time.
You can find how these rights look in detail and how to perceive it in the last section of this data protection declaration.
2.6 Data protection - our view
For us, data protection is more than just a mature duty! Personal data have great value and a mindful handling of this data should be a matter of course in our digitized world. In addition, as a website visitor, you should be able to decide for yourself what, when and through whom "happens" with your data. That is why we undertake to comply with all legal provisions, only collect the data required for us and of course treat them confidentially.
The transfer and deletion of data are also important and sensitive topics. That is why we would like to inform you in advance about our general approach.
The data is passed on only on the basis of a legal basis and only if this is essential. This can be the case in particular if it is a so -called processor and an order processing contract according to Art. 28 GDPR has been concluded.
We delete your data when the purpose and the legal basis for processing are omitted and the deletion also does not conflict with other legal obligations. Art. 17 GDPR also gives a 'good' overview.
All further information can be found in this data protection declaration and contact the person responsible for specific questions.
This website is hosted externally. The personal data collected on this website is saved on the hosts of the host. On the one hand, this is the automatically raised and stored log files (for more information below), as well as all other data that the website provide visitors.
The external hosting takes place for the purpose of a safe, quick and reliable provision of our website and in this context serves to fulfill the contract with our potential and existing customers.
The legal basis for the processing is Art. 6 Para. 1 Lit. a, B and F GDPR, as well as § 25 Paragraph 1 TDDDDG, insofar Tdddg.
Our host only processes data that is necessary to fulfill its obligation to perform and acts as our processor, that is, it is subject to our instructions. We have concluded a corresponding contract for order processing with our host.
We use the following hosters:
Shopify
Shopify International Limited, Victoria Buildings, 2nd floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland
https://www.shopify.com/legal/privacy.
The processing of personal data always requires a legal basis. The GDPR provides the following options in Art. 6 Para. 1 Sentence 1:
a) The data subject has given their consent to the processing of the personal data relating to them for one or more specific purposes;
b) The processing is necessary for the fulfillment of a contract whose contracting party is the data subject, or for the implementation of pre -contractual measures that are carried out at the request of the person concerned;
c) The processing is necessary to fulfill a legal obligation that is subject to the person responsible;
d) The processing is necessary to protect vital interests of the data subject or another natural person;
e) Processing is necessary for the performance of a task that is in the public interest or in the exercise of public violence that was transferred to the person responsible;
f) The processing is necessary to safeguard the legitimate interests of the person responsible or a third party, unless the interests or fundamental rights and fundamental freedoms of the data subject, who require the protection of personal data, outweigh, especially if the person concerned is a child .
In the following sections we will give you the specific legal basis for the respective processing.
3. That happens on our website
By visiting our website, we process personal data from you.
In order to protect this data against unauthorized intervention by third parties, we use SSL or TLS encryption. This encrypted connection can be recognized by the fact that an https: // or a lock symbol is shown in the address line of your browser.
In the following you will find out which data will be collected when visiting our website, for what purpose this happens and on the basis of which legal basis.
3.1 Data collection when calling the website
By calling the website, information is automatically saved in so-called server log files. The following information is:
• Browser type and browser version
• Host name of the accessible computer
This data is temporarily required to be able to display our website permanently and easily. In particular, this data serve the following purposes:
• System security of the website
• System stability of the website
• Troubleshooting on the website
• Representation of the website
Data processing takes place in accordance with Art. 6 Para. 1 Lit. f GDPR and takes place from our legitimate interest in the processing of this data, in particular from the interest in the functionality of the website and its security.
If possible, this data is stored pseudonymously and deleted after the respective purpose is reached.
Insofar as the server log files enable the data subject to identify, the data is saved at a maximum of 14 days. There is an exception when a security -relevant event occurs. In this case, the server log files are saved until the removal and final clarification of the security-relevant event.
Incidentally, there is no merging with other data.
This website uses so -called cookies. This is a data record, information that is stored in the browser of your end device and is in a relation to our website.
By setting cookies, the visitor can be facilitated in particular to navigate the website.
In our cookie consent tool you will find all the information about the cookies that we have on our website (if necessary after your consent).
You can manage all cookies that are not technically necessary directly via our cookie consent tool.
Setting cookies can be prevented by adjusting the settings of your browser.
Here you will find the corresponding links too frequently used browsers:
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-und-website-daten-in-firefox-loschen?redirectslug=Cookies+l%C3%B6schen&redirectlocale=de
Google Chrome: https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=de
Microsoft Edge: https://support.microsoft.com/de-de/windows/l%C3%B6schen-und-verwalten-von-cookies-168dab11-0753-043d-7c16-ede5947fc64d
Safari: https://support.apple.com/de-de/guide/mdm/mdmf7d5714d4/web and https://support.apple.com/de-de/guide/safari/sfri11471/mac
As far as you use another browser, it is advisable to enter the name of your browser and 'delete and manage cookies' in a search engine and to follow the official link to your browser.
Alternatively, you can also use your cookie settings www.aboutads.info/choices/
or www.youronlinechoices.com administer.
However, we have to point out that comprehensive blocking/deletion of cookies can lead to impairments when using the website.
3.2.3 Technically necessary cookies
We use technically necessary cookies on this website so that our website works without errors and according to the applicable laws. You help to make the website user -friendly. Some functions of our website cannot be shown without the use of cookies.
The legal basis for this is, depending on the individual case, Art. 6 Para. 1 lit. b, C and/or F GDPR.
3.2.4 Technically non -necessary cookies
We also use such cookies on our website that are not technically necessary. Among other things, these cookies serve to analyze the website of the website visitor or to offer functions of the website, which, however, are not absolutely necessary.
The legal basis for this is your consent in accordance with Art. 6 Para. 1 lit. a GDPR.
Technically not necessary cookies are only set with your consent, which you can cancel in the cookie consent tool at any time.
3.3 Data processing through user input
We offer the following (service) performance on our website: online trade.
To do this, we collect the following data:
name
e-mail address
address
Telephone number
birth date
Account details
The legal basis for this data processing is Art. 6 Para. 1 lit. b GDPR.
The data will be deleted as soon as the respective purpose is eliminated and it is possible in accordance with the legal requirements.
If you get in touch with us by email, we process your email address and, if necessary, other data contained in the mail. These are stored on the mail server and partly on the respective end devices. Depending on the request, the legal basis for this is regularly Art. 6 Para. 1 lit. f GDPR or Art. 6 Para. 1 lit. b GDPR. The data will be deleted as soon as the respective purpose is eliminated and it is possible in accordance with the legal requirements.
If you get in touch with us by phone, the call data on the respective device and the telecommunications provider used can be stored pseudonymously. Personal data collected during the phone call will only be processed to process your request. Depending on the request, the legal basis for this is regularly Art. 6 Para. 1 lit. f GDPR or Art. 6 Para. 1 lit. b GDPR. The data will be deleted as soon as the respective purpose is eliminated and it is possible in accordance with the legal requirements.
3.4.1 Avada: Cookie GDPR compliant
https://apps.shopify.com/avada-cookie-bar?locale=de
We use Shopify's functions as a mailing service. This service is offered by the Shopify International Limited, Victoria Buildings, 2nd floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland.
It is a service that makes it possible to organize and send emails efficiently. With Shopify's mailing function, companies can send a variety of emails, including transaction emails, marketing emails and other notifications.
The processing is based on a consent according to Art. 6 Para. 1 lit. a GDPR, insofar as we use the mailing service to contact our leads. The consent can be revoked at any time.
When sending emails for the specific contract initiation or in the existing contractual relationship, the legal basis for the processing is Art. 6 Para. 1 lit. b GDPR, since the services used and the fulfillment of our contractual service serve.
The data is deleted between us and Shopify at the end of the contract.
Further information:
https://www.shopify.com/legal/privacy.
3.6 Analysis and tracking tools
We use Google Analytics on this website. Google Analytics is a web analysis service. This service is offered by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics uses cookies to recognize the user and thus analyze the usage behavior. These cookies are only set with consent. The consent can be revoked at any time and managed in our cookie consent tool.
The legal basis for processing is Art. 6 Para. 1 lit. a GDPR and § 25 Paragraph 1 TDDDG.
The information collected here is usually transferred to a Google server in the USA and stored there.
On July 10, 2023, the European Commission accepted an adequacy decision for the United States. Goggle LLC is certified according to the EU-US-Privacy framework. However, since the Google Server are stationed worldwide and a data transfer to third countries (e.g. Singapore) cannot be excluded, the standard contract clauses (SCC) of the EU Commission apply.
By using Google Analytics, IP anonymization applies. The IP address of the respective user is shortened within the Member States of the EU (or the European economic area) on servers within the EU that traceaposes to a natural person is no longer possible. In addition, Google is committed to adequate data protection via the Google ADS data processing conditions and creates an evaluation of the use of website and website activity and provides the services associated with use. The Google ADS data processing conditions apply to companies that are subject to the EU General Data Protection Regulation (GDPR) of the European Economic Area (EEA), the California Law to protect the privacy of consumers (California Consumer Privacy Act, CCPA).
An additional browser plugin can prevent the collected information (such as the IP address) from being sent to Google and used by Google. The plugin and further information about it do you think ...? Find under https://tools.google.com/dlpage/gaoptout?hl=de.
Otherwise, the memory duration depends on the type of processed data. Every customer can choose how long Google Analytics stores data before they are automatically deleted. The maximum lifespan of a goggle analytics cookies is two years.
Further information on data use by Google do you think ...? Find also under https://support.google.com/analytics/answer/6004245?hl=de. For all further questions you can also address directly support-deutschland@google.com
turn around.
We tie YouTube videos on this website. YouTube is an online video platform. This service is offered by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
As soon as you start a video on our website, a connection to the YouTube servers is established. After starting a video, YouTube can put cookies on the website of the website visit to save settings and preferences and then switch on personalized advertising. The information obtained from this is also used for video statistics, the improvement of application friendliness and to prevent fraud attempts.
The legal basis for the processing is Art. 6 Para. 1 Lit. a GDPR and Section 25 (1) TDDDDG, provided that this consent to information in the end device of the user or the storage of cookies within the meaning of the TDDDG. This consent can be revoked at any time.
Further information:
https://policies.google.com/privacy?hl=de.
We bind the functions of Shopify Analytic on our website. This service is offered by the Shopify International Limited, Victoria Buildings, 2nd floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland.
Shopify Analytics offers comprehensive insights into the business course of an online shop by analyzing and visualizing data such as sales reports, customer behavior, marketing campaigns and inventory.
For this purpose, Shopify Analytics records two bytes of the IP address of the calling system of the website visit, the website, the website, the website from which the website visitor has reached the accessed website (referrer), the subpages that come from the accessed website are called up, the length of stay on the website and the frequency of calling the website.
Shopify Analytics can set cookies. The legal basis for processing is then Art. 6 Para. 1 Lit. a GDPR and Section 25 (1) TDDDDG, insofar as this consent includes access to information in the end device of the user or the storage of cookies within the meaning of the TDDDG. In addition, the legal basis for the processing is Art. 6 Para. 1 lit. f GDPR. We have a legitimate interest in analyzing our website.
Further information:
https://www.shopify.com/de/legal/privacy/app-users.
Elements of the social network Facebook are integrated on this website. This service is offered by the Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.
If the social media element is activated, a direct connection between the website visitor to the website visitor and the servers of Facebook is established and its IP address is transmitted to Facebook. If the website visitor has a user account, visiting this website can be assigned to the corresponding user account.
The legal basis for processing is Art. 6 Para. 1 lit. a GDPR and § 25 Paragraph 1 TDDDG. The consent can be revoked at any time.
If personal data is collected on this website and forwarded to Meta, we and the Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Habour, Dublin 2, Ireland according to Art. 26 GDPR are responsible for data processing. This common responsibility is limited exclusively to the recording and passing on of the data to Facebook. There is an agreement on the joint processing:
https://www.facebook.com/legal/controller_addendum.
We are responsible for the granting of data protection information when using the Facebook tool and the data protection law that the tool is securely involved on the corresponding website. However, Facebook is responsible for the data security of your products. It follows from this that affected rights regarding the data processed on Facebook must be asserted directly on Facebook.
The standard contract clauses (SCC) of the EU Commission apply to data transfer to the USA.
Further information:
https://www.facebook.com/legal/EU_data_transfer_addendum
https://de-de.facebook.com/help/566994660333381
https://www.facebook.com/policy.php
https://de-de.facebook.com/privacy/explanation.
3.7.2 Instagram
Elements of the social network Instagram are integrated on this website. This service is offered by the Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland.
If the social media element is activated, a direct connection is established between the website visitor and the servers of Instagram and its IP address is transmitted to Instagram. If the website visitor has a user account, visiting this website can be assigned to the corresponding user account. As website operator, we have no knowledge of the content of the transferred data.
The legal basis for processing is Art. 6 Para. 1 lit. a GDPR and § 25 Paragraph 1 TDDDG. The consent can be revoked at any time.
If personal data is collected on this website with the help of Facebook or Instagram and forwarded to META, the website operator and the Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Habour, Dublin 2, Ireland according to Art. 26 GDPR is responsible for data processing. This common responsibility is limited exclusively to the recording and passing on of the data to Facebook or Instagram. There is an agreement on the joint processing:
https://www.facebook.com/legal/controller_addendum.
The website operator is responsible for granting data protection information when using the Instagram tool and the data protection law secure integration of the tool on the corresponding website. However, Facebook or Instagram is responsible for the data security of your products. It follows from this that affected rights regarding the data processed on Facebook or Instagram must be asserted directly on Facebook or Instagram.
The standard contract clauses (SCC) of the EU Commission apply to data transfer to the USA.
https://www.facebook.com/legal/EU_data_transfer_addendum
https://de-de.facebook.com/help/566994660333381
https://www.facebook.com/policy.php
https://instagram.com/about/legal/privacy/.
3.8 Social media profile
In addition to our website, we are also present on social networks with our company. Here
If we want to present our company and create the opportunity to get in touch with us.
We also use the option of switching advertisements and job applications on social media.
In the following we inform about which data we and the respective social network when visiting and
process the interaction with our profile.
We run a Facebook fan page on https://www.facebook.com/. This social network from Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland.
3.9.1 Interaction with our company profile
When visiting our Facebook profile and interaction with us, we process personal data. On the one hand, the publicly provided data on the profile. On the other hand, the personal data contained in posts, comments or direct messages to us. Through interactions such as liking or sharing, we can see the user profile with the public information.
The legal basis for this processing is Art. 6 Para. 1 lit. f GDPR. In our legitimate interest, it is available to provide relevant and interesting content and to enable the use and functionality of our Facebook profile.
Insofar as an inquiry is related to the fulfillment of a contract or is necessary to carry out pre -contractual measures, our processing is based on Art. 6 Para. 1 lit. b GDPR.
3.9.2 Pages insights
As in the META data protection guideline under "How do we use your information?" (Explains, collects and uses information to provide analysis services, so-called page insights, for page operators. This also applies to our Facebook page.
Page insights are summarized statistics that use certain interactions by the visitor with pages and the content associated with them (e.g. the reputation of a page or a video, subscribing to a page, a page with "Like" Or “I don't like it anymore”, etc.) are created and logged by the meta servers.
In connection with the side insights, Meta provides us with statistics and insights that give us information about how people interact with our company side. We do not receive any access to personal data, but only to the merged page insights. With the help of the side insights we can use anonymous statistics e.g. B. see the range of our account, page views, likes etc. These also contain evaluations according to age, gender and location of the users (as indicated by them in their respective Facebook profiles). For the evaluation of the range, we can make settings or set the corresponding filters with regard to the selection of a period, considering a specific contribution and demographic groups. This data is anonymized. We are not able to draw conclusions about certain people.
The processing of this data serves the purpose of analyzing our range and adapting our content and advertisements to the user interests so that visitors can benefit from it. Based on the evaluations of this data, we can see how our content, our profile and our advertising are consumed. This allows us to create content -friendly content and switch advertising in order to better market our company and our services.
The processing is based on our legitimate interest according to Art. 6 Para. 1 S. 1 lit. f GDPR.
When processing personal data in the course of the so-called page insights, joint responsibility with Facebook according to Art. 26 Para. 1 GDPR.
For this we have made a corresponding agreement with Facebook that can be viewed here (https://www.facebook.com/legal/terms/page_controller_addendum).
The contact details of Facebook are:
Online contact: https://www.facebook.com/help/contact/1650115808681298
Postal: Meta Platforms Ireland Limited, Attn: Privacy Operations, Merrion Road, Dublin 4, D04 X2K5, Ireland.
For Facebook you can contact the data protection officer at the following link:
https://www.facebook.com/help/contact/540977946302970.
More information about the page insights:
https://de-de.facebook.com/help/pages/insights.
3.9.3 Processing of personal data and cookies through META
When accessing a Facebook page, the IP address assigned to your end device is transmitted to Facebook. According to Facebook, this IP address is anonymized (for "German" IP addresses). Facebook also stores information about the end devices of its users (e.g. as part of the "Registration notification" function); If necessary, Facebook is therefore able to assign IP addresses to individual users. If you are currently registered on Facebook as a user, there is a cookie with your Facebook detection on your end device. This enables Facebook to understand that you visited this page and how you used it. Facebook buttons are possible via Facebook buttons integrated into websites to record your visits to these websites and assign your Facebook profile. Based on this data, content or advertising can be offered tailored to you.
Information on how personal data can be managed or deleted can be found in the Facebook Privacy Center:
https://www.facebook.com/privacy/center/.
More information on the handling of Facebook can be found here:
http://de-de.facebook.com/about/privacy.
3.10 Instagram
We operate an Instagram profile. This social media platform is offered by the Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland.
3.10.1 Interaction with our company profile
When visiting our Facebook profile and interaction with us, we process personal data. On the one hand, the publicly provided data on the profile. On the other hand, the personal data contained in posts, comments or direct messages to us. Through interactions such as liking or sharing, we can see the user profile with the public information.
The legal basis for this processing is Art. 6 Para. 1 lit. f GDPR. In our legitimate interest, it is available to provide relevant and interesting content and to enable the use and functionality of our Instagram profile.
Insofar as an inquiry is related to the fulfillment of a contract or is necessary to carry out pre -contractual measures, our processing is based on Art. 6 Para. 1 lit. b GDPR.
3.10.2 Insights
As in the META data protection guideline under "How do we use your information?" (Https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_policy_redirect) explains and uses META information, so-called insights, for side operators to provide. This also applies to our Instagram profile.
The insights are summarized statistics that are created on the basis of certain interactions by the visitor with pages and the content associated with them and logged by the meta servers. These include the following information, among other things
• How many people see our products, services or content, such as among other things. Contributions, videos, Facebook pages, advertisements, shops and advertisements (when advertising is shown on meta products) and interact with them;
• How do people interact with our content, websites, apps and services;
• Which group of people interacted with our content or which group of people uses our services.
Meta provides us with combined reports and insights that give us information about how well our content, features, products and services do.
We do not receive any access to personal data, but only to the merged reports.
For the evaluation of the range, we can make settings or set the corresponding filters with regard to the selection of a period, considering a specific contribution and demographic groups. This data is anonymized. We are not able to draw conclusions about certain people.
The processing of this data serves the purpose of analyzing our range and adapting our content and advertisements to the user interests so that visitors can benefit from it. Based on the evaluations of this data, we can see how our content, our profile and our advertising are consumed. This allows us to create content -friendly content and switch advertising in order to better market our company and our services.
The processing is based on our legitimate interest according to Art. 6 Para. 1 S. 1 lit. f GDPR.
When processing personal data in the course of the so -called insights, processing is carried out in common responsibility with META according to Art. 26 Para. 1 GDPR.
For this we have made a corresponding agreement with META, which can be viewed here (https://www.facebook.com/legal/terms/page_controller_addendum.).
The contact details of Meta are:
Online contact: https://www.facebook.com/help/contact/1650115808681298
Postal: Meta Platforms Ireland Limited, Attn: Privacy Operations, Merrion Road, Dublin 4, D04 X2K5, Ireland.
For Facebook you can contact the data protection officer at the following link:
https://www.facebook.com/help/contact/540977946302970.
More information about the insights:
https://de-de.facebook.com/help/pages/insights.
You can find the full data protection guideline of Instagram here:
https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect
3.10.3 Processing of personal data and cookies through META
When accessing an Instagram page, the IP address assigned to your end device is transmitted to Meta. According to META, this IP address is anonymized (for "German" IP addresses). Meta also stores information about the end devices of its users (e.g. as part of the "Registration notification" function); If necessary, META is possible to assign IP addresses to individual users. If you are currently registered with Instagram as a user, there is a cookie with your Instagram detection on your end device. This enables Meta to understand that you visited this page and how you used it. Meta buttons are possible via meta buttons integrated into websites to record your visits to these websites and to assign your Instagram profile. Based on this data, content or advertising can be offered tailored to you.
More information:
https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect.
3.10.4 Threads
We also use the functions of threads. When using the service, data collected, including IP address, used application and information on the end device as well as accessed websites, location and mobile operator, are processed by the META Platform, Inc., as described above. This data can also be transferred to countries outside the European Union.
The data recorded are linked to the account or profile at threads. There is no control over the specifics of the data processed by threads, including their processing, use or passing on to third parties.
Further information:
https://help.instagram.com/769983657850450/?helpref=uf_share
https://privacycenter.instagram.com/policy.
3.11 Tiktok
We run a TikTok channel. TIIKTOK is provided by the TIKTOK Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland (hereinafter referred to as "Tiktok Ireland"). We get the opportunity to present our TIKTOK users and get in touch with them via our TIKTOK channel.
3.11.1 Interactions with our TikTok channel
Users can interact with our TIKTOK channel via their TIKTOK account, for example by liking or commenting on our mail. We process the associated data such as the user name and the profile picture.
We use this data to optimize our content and its presentation and adapt them to the respective user interests.
It is also possible to send us direct messages on our TikTok channel. Here, too, the username and the profile picture are displayed.
The legal basis of data processing is Art. 6 Para. 1 lit. f GDPR. We have a legitimate interest in optimizing our Tikok channel and the content published there. We also have a legitimate interest in communication with the users to answer questions, to respond to criticism, to build up a relationship and to exchange information. In this way we can improve our services and respond to the needs of possible customers. With communication via TikTok, we in particular reach younger customers.
Comments are saved on the channel unlimited in time and can be viewed by other users. The same applies to the use of the Like function and direct messages.
3.11.2 Tikok analysis
When calling up and using our Tikok channel, data for the Tikok Analysis are also processed. These are summarized statistics that are created and logged by certain interactions with our TIKTOK channel with our TIKTOK channel and provide information about how interact with our channel.
However, this data is not limited to:
• • Follower growth
• • Video calls
• • Profile views
• • Likes, comments and shares
• • Average playback time
• • Percentage of the viewers who watch the entire video
• • Sources of traffic (e.g. profile, for you feed)
• • Geographical distribution of the audience
• • Follower activity times.
The data is provided to us in aggregated form as statistics. We do not receive access to personal data, but only to the summarized statistics.
Further information on the TikTok analyzes can be found here:
https://www.tiktok.com/creators/creator-portal/en-us/tiktok-content-strategy/understanding-your-analytics/.
The processing of this data serves exclusively to analyze and improve the content on our TikTok channel. Based on the evaluations of this data, we can see how our content and our TikTok channel are consumed. This allows us to create content -friendly content and, if necessary, switch advertising in order to better market our company and our services.
The processing is based on our legitimate interest according to Art. 6 Para. 1 S. 1 lit. f GDPR.
When processing personal data in the course of the Tikok Analyzes, processing is carried out in shared responsibility with TikTok according to Art. 26 Para. 1 GDPR.
To do this, we have made a corresponding agreement with TikTok, which here
can be viewed.
The contact details of TikTok are:
Online contact: https://privacytiktok.zendesk.com/hc/en-us/requests/new.
Postal: TikK Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland.
Via this form you can contact the data protection officer from TikTok:
https://www.tiktok.com/legal/report/DPO.
3.11.3 Processing of personal data by TikTok
When using the TIIKTOK offers, Tiktok processes personal data to the users. This includes data such as your IP address, location data, time zone settings, advertising IDs, app and browser versions as well as data on the device (system, network type, device ID, screen resolution, operating system, audio settings and connected audio devices). The called TikK profiles and channels, likes, messages and other usage data are also processed. If you are registered with your own Tikok account, this data will be assigned to your account.
Further information on processing The data can be found here: https://www.tiktok.com/legal/page/eea/privacy-policy/de.
3.11.4 YouTube
We run a profile on YouTube. This is a video platform of the Google Ireland Limited based in Gordon House, Barrow Street, Dublin 4, Ireland, that enables us to publish video content and interact with our audience.
3.11.5 Data processing by us
We also process the data from the profile visitors. We process data from your use of our profile, which is made available to us by YouTube.
This information contains statistics on the visits of our profile, report on the reproduction time of our videos, the interaction of user users (e.g. "I like" or comments), as well as information about individuals who interact with our website, e.g. by subscribing or The communication options of YouTube.
The data entered on YouTube, in particular the user name and the content published under the account, are made visible and processed by interactions with our profile.
We process this data to enable communication and to optimize our content within range and target group.
The legal basis for the processing is a legitimate interest according to Art. 6 Para. 1 lit. f GDPR for the purposes mentioned.
3.11.6 Data processing through YouTube
When visiting our YouTube channel or in the event of interaction with our YouTube channel, YouTube records personal data such as the IP address, device information, geographical information, as well as the activities on the platform, including the respected videos, interactions such as likes, comments and subscriptions . This data can be collected by cookies and similar technologies stored on the device.
YouTube uses this information to operate and improve the platform, switch personalized advertising and to carry out analyzes and measurements to understand how users interact with the content. In addition, data processing helps to evaluate and improve the range and effectiveness of the content.
The processing of the data is carried out by YouTube, among other things Based on your consent, which is expressed by the acceptance of the cookie guidelines on YouTube.
The data recorded by YouTube can be passed on within the Google group of companies and to third parties that can be based in countries outside the European Union, including the United States. Google LLC is through that EU-U.S. Data privacy framework certifiedThis ensures that an appropriate level of data protection is also preserved when transmitting to third countries.
We have no influence on the scope of the data processed by YouTube, the type of processing and use or the transfer of this data to third parties. In this respect, we also have no effective control options.
Information about which data is processed by YouTube and used for what purposes can be found in the data protection declaration of YouTube: https://policies.google.com/privacy?hl=de&gl=de.
We bind the Google Translate translation function of the company Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA on our website.
We have no influence on the translation of the texts. The texts can contain false or any expressions.
To use the functions of Google Translate, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. We have no influence on this data transmission.
The use of Google Translate is in the interest of a simple accessibility and accessibility of our online offers for international visitors. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR.
Further information:
https://www.google.de/intl/de/policies/privacy/.
We use PayPal on our website. PayPal is a payment service provider. This service is offered by the PayPal (Europe) S.A.R.L. et cie, s.c.a., 22-24 Boulevard Royal, L-2449 Luxembourg.
For the purpose of the payment processing, the payment data of the website visitor are processed by the payment service provider as soon as a purchase is made via this website. The respective contract and data protection regulations of the payment service provider apply to the respective transaction.
The legal basis is Art. 6 Para. 1 lit. b GDPR. The data is processed for the purpose of the (pre) contractual obligations.
We also have a legitimate interest in the processing of this data within the meaning of Art. 6 Para. 1 lit. f GDPR to ensure a quick and reliable payment process.
The standard contract clauses (SCC) of the EU Commission apply to data transfer to the USA.
https://www.paypal.com/de/webapps/mpp/ua/pocpsa-full.
We use Klarna on this website. Klarna is a payment service provider. This service is offered from Klarna, Sveafen 46, 111 34 Stockholm, Sweden.
For the purpose of the payment processing, the payment data of the website visitor are processed by the payment service provider as soon as a purchase is made via this website. The respective contract and data protection regulations of the payment service provider apply to the respective transaction.
The legal basis is Art. 6 Para. 1 lit. b GDPR. The data is processed for the purpose of the (pre) contractual obligations.
We also have a legitimate interest in the processing of this data within the meaning of Art. 6 Para. 1 lit. f GDPR to ensure a quick and reliable payment process.
More details:
https://cdn.klarna.com/1.0/shared/content/policy/cookie/de_de/checkout.pdf.
https://www.klarna.com/de/datenschutz/.
This website uses Shopify Payment. Shopify Payment is a payment service provider. This service is offered by the Shopify International Limited, 2nd Floor Victoria Buildings, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland.
For the purpose of the payment processing, the payment data of the website visitor are processed by the payment service provider as soon as a purchase is made via this website. The respective contract and data protection regulations of the payment service provider apply to the respective transaction.
The legal basis is Art. 6 Para. 1 lit. b GDPR. The data is processed for the purpose of the (pre) contractual obligations.
In addition, a legitimate interest in the processing of this data within the meaning of Art. 6 Para. 1 lit. f GDPR, to ensure a quick and reliable payment process.
More details:
https://www.shopify.de/legal/datenschutz.
3.14 Services to process orders
We use PayPal for the purchase process of our products. This service is offered by the PayPal (Europe) S.A.R.L. et cie, s.c.a., 22-24 Boulevard Royal, L-2449 Luxembourg.
PayPal offers services to process the ordering process. PayPal acts as an interface between sellers (product providers) and buyers.
If you decide to buy a product, you will be forwarded to the PayPal website to handle the purchase process. The data protection conditions of PayPal apply, which we have no influence on compliance. We recommend that the data protection declaration to read before you enter your personal data.
The legal basis of data processing is Art. 6 Para. 1 lit. b GDPR, insofar as it is about concluding, fulfilling and handling contracts (inventory data), as well as Art. 6 Para. 1 lit. f GDPR, since we have a legitimate interest in have the use of our website (usage data).
Further information:
3.15 Shipping service provider
We work with various shipping service providers to send the goods ordered via our website (e.g. DHL, DPD, UPS, Hermes). As part of the necessary delivery of the goods, we pass on your data (name, delivery address and, if necessary, further information required for shipping) to the respective shipping service provider.
The data transmission takes place on the basis of Art. 6 Para. 1 lit. b GDPR to fulfill our contract. We only transmit your email address or telephone number to the shipping service provider if you have expressly consent to this in the order process, for example to enable a package announcement. This consent can be revoked at any time for the future.
Further information on the data protection of our shipping service providers can be found in their respective data protection declarations that can be viewed on their websites.
We use functions on our website to protect the data and the content of the website from data loss, corruption or security incidents. This ensures that in the event of a server failure, a hacker attack or other unforeseen events, the website can be restored quickly and completely.
If personal data is stored on our website, they will be transferred to the servers of the respective provider for backups.
The legal basis for data processing is Art. 6 Para. 1 lit. f GDPR because we have a legitimate interest in securing our data.
We use the following cloud backup service:
One drive
Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.
https://privacy.microsoft.com/de-de/privacystatement.
Finally, we would like to inform you in detail and in detail about your rights and inform you of how you will be informed about changes in data protection requirements.
4.1.1 Right of information according to Art. 15 GDPR
You can request information about whether personal data is processed by you. If this is the case, you can request further information on the way of processing. A detailed list can be found in Art. 15 Para. 1 lit. a to H GDPR.
4.1.2 Right to correction according to Art. 16 GDPR
This right includes the correction of incorrect data and the addition of incomplete personal data.
4.1.3 Right to deletion according to Art. 17 GDPR
This so -called 'right to be forgotten' gives you the right to request the deletion of personal data by the person responsible. This is basically the case if the purpose of data processing has been omitted if consent was revoked or the output processing took place without a legal basis. A detailed list of reasons can be found in Art. 17 Para. 1 lit. a to f GDPR. This "right to be forgotten" also corresponds to the obligation of the person responsible for the person responsible for appropriate measures to take appropriate measures in order to bring about general deletion of the data.
4.1.4 Right to restrict the processing according to Art. 18 GDPR
This right is linked to the requirements in accordance with Art. 18 Para. 1 lit. a to D.
4.1.5 Right to data portability according to Art. 20 GDPR
Here, the fundamental right to maintain your own data is regulated in a common form and the transmission to another responsible. However, this only applies to the data of processing due to consent or contract according to Art. 20 Para. 1 lit. a and b and as far as this is technically feasible.
4.1.6 Right to object according to Art. 21 GDPR
You can generally object to the processing of your personal data. This applies in particular if your interest in the objection prevails the legitimate interest of the person responsible in the processing and if the processing relates to direct advertising and or profiling.
4.1.7 Right to "decision in individual cases" according to Art. 22 GDPR
In principle, you have the right not to be subject to a decision based exclusively on automated processing (including profiling) decision, which has a significant impact on legal effects or that it is significantly impaired in a similar way. However, this right also finds restrictions and additions in Art. 22 Para. 2 and 4 GDPR.
The GDPR includes extensive rights of information from third parties about whether or how they have claimed rights according to Art. 16, 17, 18 GDPR. However, this can only be made or with an appropriate effort.
At this point we would like to reject you again at your right to revoke a granted consent in accordance with Art. 7 Para. 3 GDPR. However, this does not affect the legality of the processing previously carried out.
In addition, we would also like to point out your rights according to §§ 32 ff. BDSG, which, however, are largely congruent with the rights just described in terms of content.
4.1.9 Law of complaint according to Art. 77 GDPR
You also have the right to complain to a data protection supervisory authority if you believe that processing of the personal data relating to you violates this regulation.
5. What if the GDPR will be abolished tomorrow or other changes take place?
The current status of this data protection declaration is 19.06.2024. From time to time it is necessary to adapt the content of the data protection declaration to react to actual and legal changes. We therefore reserve the right to change this data protection declaration at any time. We will publish the changed version in the same place and recommend you to read the data protection declaration regularly.