Unless stated otherwise below, the provision of your personal data is neither legally nor contractually obligatory, nor required for conclusion of a contract. You are not obliged to provide your data. Not providing it will have no consequences. This only applies as long as the processing procedures below do not state otherwise. “Personal data” is any information relating to an identified or identifiable natural person.
Server log files
You can use our websites without submitting personal data. Every time our website is accessed, user data is transferred to us or our web hosts/IT service providers by your internet browser and stored in server log files. This stored data includes for example the name of the site called up, date and time of the request, the IP address, amount of data transferred and the provider making the request. The processing is carried out on the basis of Article 6(1) f) GDPR due to our legitimate interests in ensuring the smooth operation of our website as well as improving our services.
Contact
Responsible person
Contact us at any time. The contact details of the person responsible for data processing can be found in our legal notice.
Proactive contact of the customer by e-mail
If you make contact with us proactively via email, we shall collect your personal data (name, email address, message text) only to the extent provided by you. The purpose of the data processing is to handle and respond to your contact request. If the initial contact serves to implement pre-contractual measures (e.g. consultation in the case of purchase interest, order creation) or concerns an agreement already concluded between you and us, this data processing takes place on the basis of Article 6(1)(b) GDPR. If the initial contact occurs for other reasons, this data processing takes place on the basis of Article 6(1)(f) GDPR for the purposes of our overriding, legitimate interest in handling and responding to your request. In this case, on grounds relating to your particular situation, you have the right to object at any time to this processing of personal data concerning you and carried out on the basis of Article 6(1)(f) GDPR. We will only use your email address to process your request. Your data will subsequently be deleted in compliance with statutory retention periods, unless you have agreed to further processing and use.
Collection and processing when using the contact form
When you use the contact form we will only collect your personal data (name, email address, message text) in the scope provided by you. The data processing is for the purpose of making contact. If the initial contact serves to implement pre-contractual measures (e.g. consultation in the case of purchase interest, order creation) or concerns an agreement already concluded between you and us, this data processing takes place on the basis of Article 6(1)(b) GDPR. If the initial contact occurs for other reasons, this data processing takes place on the basis of Article 6(1)(f) GDPR for the purposes of our overriding, legitimate interest in handling and responding to your request. In this case, on grounds relating to your particular situation, you have the right to object at any time to this processing of personal data concerning you and carried out on the basis of Article 6(1)(f) GDPR. We will only use your email address to process your request. Finally your data will be deleted, unless you have agreed to further processing and use.
Orders
Collection, processing, and transfer of personal data in orders
When you submit an order we only collect and use your personal data insofar as this is necessary for the fulfilment and handling of your order as well as processing of your queries. The provision of data is necessary for conclusion of a contract. Failure to provide it will prevent the conclusion of any contract. The processing will occur on the basis of Article 6(1) b) GDPR and is required for the fulfilment of a contract with you. Your data is transferred here for example to the shipping companies and dropshipping providers, payment service providers, service providers for handling the order and IT service providers that you have selected. We will comply strictly with legal requirements in every case. The scope of data transmission is restricted to a minimum.
Contact
Use of your email address for mailing of newsletters
We use your email address outside of contractual processing exclusively to send you a newsletter for our own marketing purposes, if you have explicitly agreed to this. The processing will be carried out on the basis of art. 6 (1) lit. a GDPR with your consent. You can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal. You can unsubscribe from the newsletter at any time using the relevant link in the newsletter or by contacting us. Your email address will then be removed from the distributor. Your data will be forwarded to a service provider for email marketing in the course of order processing. It will not be forwarded to other third parties.
Use of your email address for mailing of direct marketing
We use your email address, which we obtained in the course of selling a good or service, for the electronic transmission of marketing for our own goods or services which are similar to those you have already purchased from us, unless you have objected to this use. You must provide your email address in order to conclude a contract. Failure to provide it will prevent the conclusion of any contract. The processing will be carried out on the basis of art. 6 (1) lit. f GDPR due to our justified interest in direct marketing. You can object to this use of your email address at any time by contacting us. You will find the contact details for exercising your right to object in our imprint.You can also use the link provided in the marketing email. This will not involve any costs other than transmission costs at basic tariffs.
Merchandise management
Use of an external merchandise management system
We use a merchandise management system in the course of order processing for the purposes of contractual processing. For this purpose your personal data as collected in the course of the order will be sent to Netsuite.
Payment service providers Credit check
Payment options from Klarna
In order to provide you with Klarna’s payment options, we will provide Klarna with personal data, such as contact details and order information. This will enable Klarna to assess whether you can make use of the payment options offered by Klarna, and to adapt the payment options to your needs. General information about Klarna can be found here. Klarna will treat your personal data in accordance with the applicable data protection regulations and in accordance with the information in Klarna’s Privacy Policy.
Cookies
Our website uses cookies. Cookies are small text files which are saved in a user’s internet browser or by the user’s internet browser on their computer system. When a user calls up a website, a cookie may be saved on the user’s operating system. This cookie contains a characteristic character string which allows the browser to be clearly identified when the website is called up again.Cookies will be stored on your computer. You therefore have full control over the use of cookies. By choosing corresponding technical settings in your internet browser, you can be notified before the setting of cookies and you can decide whether to accept this setting in each individual case as well as prevent the storage of cookies and transmission of the data they contain. Cookies which have already been saved may be deleted at any time. We would, however, like to point out that this may prevent you from making full use of all the functions of this website. Using the links below, you can find out how to manage cookies (or deactivate them, among other things) in major browsers: Chrome Browser, Internet Explorer, Mozilla Firefox, Safari
Technically necessary cookies
Insofar as no other information is given in the data protection declaration below we use only these technically necessary cookies cookies to make our offering more user-friendly, effective and secure. Cookies also allow our systems to recognise your browser after a page change and to offer you services. Some functions of our website cannot be offered without the use of cookies. These services require the browser to be recognised again after a page change. Processing is carried out on the basis of art. 6 (1) lit. f GDPR due to our largely justified interest in ensuring the optimal functionality of the website as well as a user-friendly and effective design of our range of services. You have the right to veto this processing of your personal data according to art. 6 (1) lit. f GDPR, for reasons relating to your personal situation.
Analysis advertising
Use of the Google Analytics
Our website uses the web analysis service Google Analytics from Google LLC. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). If you are ordinarily resident in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the controller responsible for your data. Google Ireland Limited is therefore the company affiliated with Google responsible for processing your data and for compliance with the applicable data protection legislation. The processing of data serves to analyse this website and its visitors and for marketing and advertising purposes. Google will use this information on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity and to provide other services to the website operator relating to website and internet use. In this process the following information, inter alia, can be collected: IP address, date and time of the website access, click path, information on the browser and the device you are using, the pages visited, referrer URL (website via which you accessed our website), location data, purchasing activities. The IP address transmitted from your browser within the scope of Google Analytics is not associated with any other data held by Google. Google Analytics uses technology such as cookies, web storage in the browser and tracking pixels which enable an analysis of your use of the website. The information generated by these regarding your use of this website is usually transferred to a Google server in the USA and stored there. IP anonymisation is activated on this website. Google uses this to shorten your IP address beforehand within Member States of the European Union or in other signatories to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there. The data processing, particularly the placing of cookies, is carried out with your consent on the basis of Article 6(1)(a) GDPR. You can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal. You can find more detailed information on the terms and conditions of use and data protection at google/analytics and/or at google/policies and at google/technologies.
Use of Hotjar
On our website we use the analysis tool provided by Hotjar Ldt. (Level 2, St Julian’s Business Centre, 3, Elia Zammit Street, St Julians STJ1000, Malta; “Hotjar”). The data processing serves the purpose of designing, optimising and analysing our website according to your needs. The tool is used to randomly record the movements of visitors to the website. This creates a protocol of mouse movements, scrolling behaviour, dwell time and clicks on the website (what is known as the heat map). For this purpose Hotjar uses, among other things, cookies. These can involve the collection of, among other things, the following information: IP address (in anonymous form), information about the device you are using (screen size, devices, unique device identifier), information about the browser you are using, location data (country only), preferred language for displaying the website, operating system used. Detailed information on the cookies used and the function and the storage period of these can be found here. This data is used to create user profiles under a pseudonym. The data is not used to personally identify the visitor of the website and is not merged with personal data of the bearer of the pseudonym. Hotjar is contractually prohibited from selling the collected data to other third parties. The data processing, particularly the placing of cookies, is carried out with your consent on the basis of Article 6(1)(a) GDPR. You can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal. For more information about data protection when using Hotjar, please visit this link.
Use of Facebook Pixel
Our website uses the remarketing function “Custom Audiences” by Facebook Inc. (1601 S. California Ave, Palo Alto, CA 94304, USA; “Facebook”). This application serves to address the visitor to the website with interest-related advertising on the social network Facebook. We have implemented Facebook’s remarketing tag on our website for this purpose. This tag sets up a direct connection to Facebook’s servers when you visit our website. This informs the Facebook server which of our web pages you have visited. Facebook assigns this information to your personal Facebook user account. When you visit the social network Facebook you will then be shown personalised, interest-related Facebook ads. Your data may be transmitted to the USA. The data processing, particularly the placing of cookies, is carried out with your consent on the basis of Article 6(1)(a) GDPR. You can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal. You can find more detailed information on Facebook’s collection and use of data and your associated rights and options for protecting your privacy in Facebook’s privacy policy.
Use of Google Ads conversion tracking
Our website uses the online marketing program “Google Ads”, including conversion tracking (evaluation of user actions). Google conversion tracking is a service operated by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). If you are ordinarily resident in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the controller responsible for your data. Google Ireland Limited is therefore the company affiliated with Google responsible for processing your data and for compliance with the applicable data protection legislation. If you click on adverts placed by Google, a cookie is placed on your computer for conversion tracking. These cookies have limited validity, do not contain any personal data and thus cannot be used for personal identification. If you visit certain pages on our website and the cookie has not yet expired, we and Google can recognise that you have clicked on the advert and were forwarded to this page. Every Google Ads customer receives a different cookie. It is therefore not possible to track cookies relating to the websites of Ads customers. The information collected using the conversion cookie serves the purpose of producing conversion statistics. This allows us to find out the total number of users who have clicked on our adverts and were forwarded to a page equipped with a conversion tracking tag. However, they do not receive any information with which could be used to personally identify users. Your data may be transmitted to the USA. The data processing, particularly the placing of cookies, is carried out with your consent on the basis of Article 6(1)(a) GDPR. You can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal. You will find more information as well as Google’s data privacy policy through this link.
Use of the remarketing or “similar target groups” function by Google Inc.
Our website uses the remarketing or “similar target groups” function by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). If you are ordinarily resident in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the controller responsible for your data. Google Ireland Limited is therefore the company affiliated with Google responsible for processing your data and for compliance with the applicable data protection legislation. This application serves to analyse visitor behaviour and visitor interests. Google uses cookies to analyse website use, forming the basis for producing interest-related adverts. Cookies allow for the recording of website visits as well as anonymised data on the use of the website. The personal data of website visitors is not saved. If you then visit another website in the Google display network you will then be shown adverts which are more likely to take previous areas of product and information interest into account. Your data may be transmitted to the USA. The data processing, particularly the placing of cookies, is carried out with your consent on the basis of Article 6(1)(a) GDPR. You can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal. You can find more detailed information on Google remarketing as well as the associated data privacy policy here.
Use of the LinkedIn Insight tag
On our website, we use the LinkedIn Insight tag from LinkedIn Ireland Unlimited Company (Attn: Legal Dept., Wilton Plaza, Wilton Place, Dublin 2, Ireland; “LinkedIn”) for conversion tracking (visitor activity analysis) and retargeting (playing personalised advertisements). The LinkedIn Insight tag places a unique LinkedIn browser cookie (conversion cookie) in your browser and allows the following information to be collected for that cookie: metadata such as IP address, time stamp and page events (e.g. page views). These cookies have a limited validity. If you visit certain pages on our site and the cookie has not expired, we and LinkedIn may recognise that you have clicked the ad and been directed to that page. The LinkedIn Insight tag also allows LinkedIn to collect information about visits to our website, including URL, referrer URL, IP address, device and browser characteristics (user agent), and time stamps. This data is transmitted to LinkedIn, encrypted, IP addresses are truncated, and the direct IDs of LinkedIn members are removed within seven days to pseudonymise the data. This remaining pseudonymised data is then deleted by LinkedIn within 90 days. LinkedIn does not share any personally identifiable information with us, but only provides aggregate reports about the site’s target group and ad performance. LinkedIn members can control the use of their personal information for promotional purposes in their account settings. The information collected using the conversion cookie serves the purpose of producing conversion statistics. This allows us to find out the total number of users who have clicked our adverts and were forwarded to a page equipped with a conversion tracking tag. The use of cookies or comparable technologies is carried out with your consent on the basis of Art. 15 para. 3 p. 1 TMG in conjunction with Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal. You can prevent the use of cookies by third-party providers by visiting recognised opt-out websites, e.g. https://www.networkadvertising.org/choices/ or www.aboutads.info/choices, and implementing the additional opt-out information stated there. For more information about cookies and LinkedIn’s privacy policy, please visit: https://www.linkedin.com/legal/cookie-policy and https://www.linkedin.com/legal/privacy-policy
Plug-ins
Use of the Google Tag Manager
Our website uses the Google Tag Manager from Google LLC. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). If you are ordinarily resident in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the controller responsible for your data. Google Ireland Limited is therefore the company affiliated with Google responsible for processing your data and for compliance with the applicable data protection legislation. This application manages JavaScript tags and HTML tags which are used in particular to implement tracking and analysis tools. The data processing serves to facilitate the needs-based design and optimisation of our website. The Google Tag Manager itself neither stores cookies nor processes personal data. It does, however, enable the triggering of further tags which may collect and process personal data. You can find more detailed information on the terms and conditions of use and data protection here.
Our website uses the reCAPTCHA service by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the data controller responsible for your data if you have your habitual residence in the European Economic Area or Switzerland. Google Ireland Limited is therefore the company affiliated with Google which is responsible for processing your data and for compliance with applicable data protection laws. The request serves to distinguish whether the input was made by a human or automatic machine processing. For this purpose your input will be transmitted to Google and used by them further. In addition, the IP address and any other data required by Google for the reCAPTCHA service will be transferred to Google. This data will be processed by Google within the EU and potentially also in the USA. Processing is carried out on the basis of Article 6(1)f) GDPR due to our legitimate interest in protecting our website from automated spying, misuse and SPAM. On grounds relating to your particular situation, you have the right to object at any time to this processing of personal data concerning you and carried out in accordance with Article 6(1)(f) GDPR. You can find more detailed information on Google reCAPTCHA and the associated data protection declaration here.
Use of GoogleMaps
Our website uses the function for embedding Google Maps by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). If you are ordinarily resident in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the controller responsible for your data. Google Ireland Limited is therefore the company affiliated with Google responsible for processing your data and for compliance with the applicable data protection legislation. This feature visually represents geographical information and interactive maps. Google also collects, processes, and uses data on visitors to the website when they call up pages with embedded Google maps. Your data may also be transmitted to the USA. The data processing, particularly the placing of cookies, is carried out on the basis of Article 6(1)(f) GDPR due to our legitimate interest in the needs-based and targeted design of the website. On grounds relating to your particular situation, you have the right to object at any time to this processing of personal data concerning you and carried out in accordance with Article 6(1)(f) GDPR. Further information on the data collected and used by Google, your rights and privacy can be found in Google’s privacy policy You also have the option of changing your settings in the data protection centre, allowing you to administer and protect the data processed by Google.
Using Vimeo
Our website uses plug-ins from Vimeo Inc. (555 West 18th Street New York, New York 10011, USA; “Vimeo”) to integrate videos into the “Vimeo” portal. If you access pages on our website that contain this kind of plug-in, this will generate a connection to the Vimeo server and indicate the plug-in on the site by means of a message in your browser. Information such as your IP address and which websites you have visited will be transmitted to the Vimeo server. If you are logged into Vimeo, Vimeo will assign this information to your personal user account. When using the plug-in functions (e.g. starting a video by pressing the appropriate button), this information will also be assigned to your Vimeo account. Your data may be transmitted to the USA. The data processing is carried out on the basis of Article 6(1)(f) GDPR due to our legitimate interest in the needs-based and targeted design of the website and the legitimate interest of Vimeo in market analysis and improving its services appropriately and in a targeted manner. On grounds relating to your particular situation, you have the right to object at any time to this processing of personal data concerning you and carried out in accordance with Article 6(1)(f) GDPR. If you would not like Vimeo to directly assign the information collected to your Vimeo account, you must log out of Vimeo before you visit our site. Further information on the purpose and scope of enquiry and continued use and processing of the data by Vimeo and your associated rights and options for protecting your privacy can be found in the Vimeo data privacy policy.
Rights of persons affected and storage duration
Duration of storage
After contractual processing has been completed, the data is initially stored for the duration of the warranty period, then in accordance with the retention periods prescribed by law, especially tax and commercial law, and then deleted after the period has elapsed, unless you have agreed to further processing and use.
Rights of the affected person
If the legal requirements are fulfilled, you have the following rights according to art. 15 to 20 GDPR: Right to information, correction, deletion, restriction of processing, data portability. You also have a right of objection against processing based on art. 6 (1) GDPR, and to processing for the purposes of direct marketing, according to art. 21 (1) GDPR.
Right to complain to the regulatory authority
You have the right to complain to the regulatory authority according to art. 77 GDPR if you believe that your data is not being processed legally.
Right to object
If the data processing outlined here is based on our legitimate interests in accordance with Article 6(1)f) GDPR, you have the right for reasons arising from your particular situation to object at any time to the processing of your data with future effect. If the objection is successful, we will no longer process the personal data, unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests or rights and freedoms, or the processing is intended for the assertion, exercise or defence of legal claims.If personal data is being processed for the purposes of direct advertising, you can object to this at any time by notifying us. If the objection is successful, we will no longer process the personal data for the purposes of direct advertising.last update: 27.10.2020
CONTACT US If you have any questions about this Privacy Policy, please contact us by email: support@instagrid.co