PRIVACY POLICY

data protection

We have created this privacy statement (version 05.10.2019-311119219) in order to explain to you, in accordance with the requirements of the Basic Data Protection Regulation (EU) 2016/679, what information we collect, how we use data and what decision-making options you have as a visitor to this website.

Unfortunately, it is in the nature of things that these statements sound very technical, but we have tried to make them as simple and clear as possible.
Automatic data storage

When you visit websites today, certain information is automatically generated and stored, including on this website.

When you visit our website as you are doing now, our web server (computer on which this website is stored) automatically stores data such as

    the address (URL) of the called web page
    Browser and browser version
    the operating system
    the address (URL) of the previously visited page (referrer URL)
    the host name and IP address of the device from which it is accessed
    Date and time

in files (web server log files).

Web server log files are usually stored for two weeks and then automatically deleted. We do not pass on this data, but we cannot rule out the possibility that this data may be viewed in the event of unlawful conduct.
According to Article 6 paragraph 1 f DSGVO (lawfulness of processing), the legal basis is that there is a legitimate interest in enabling the error-free operation of this website by recording web server log files.
Cookies

Our website uses HTTP cookies to store user-specific data.
Below we explain what cookies are and why they are used to help you better understand the following privacy statement.
What exactly are cookies?

Whenever you surf the Internet, use a browser. Well-known browsers include Chrome, Safari, Firefox, Internet Explorer, and Microsoft Edge. Most Web pages store small text files in your browser. These files are called cookies.

One thing cannot be dismissed: Cookies are really useful helpers. Almost all websites use cookies. More precisely, they are HTTP cookies, since there are also other cookies for other applications. HTTP cookies are small files that are stored on your computer by our website. These cookie files are automatically stored in the cookie folder, the "brain" of your browser. A cookie consists of a name and a value. When defining a cookie, one or more additional attributes must be specified.

Cookies store certain user data from you, such as language or personal page settings. When you return to our site, your browser sends the "user-related" information back to our site. Thanks to cookies, our website knows who you are and offers you your usual standard settings. In some browsers, each cookie has its own file, in others, such as Firefox, all cookies are stored in a single file.

There are both first-party and third-party cookies. First-party cookies are created directly by our site, third-party cookies are created by partner sites (such as Google Analytics). Each cookie is unique because each cookie stores different information. The expiration time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojans or other "pests". Cookies also cannot access information on your PC.

For example, cookie data may look like this:

    Name: _ga
    Expiry time: 2 years
    Use: Differentiation of website visitors
    Example value: GA1.2.1326744211.152311119219

A browser should support the following minimum sizes:

    A cookie should contain at least 4096 bytes.
    At least 50 cookies should be stored per domain.
    A total of at least 3000 cookies should be stored.

What types of cookies are there?

The question which cookies we use in particular depends on the services used and is clarified in the following sections of the Privacy Policy. At this point we would like to briefly explain the different types of HTTP cookies.

There are 4 types of cookies:

Absolutely necessary cookies
These cookies are necessary to ensure the basic functionality of the website. For example, these cookies are needed when a user places a product in the shopping cart, then continues surfing on other pages and later only proceeds to checkout. These cookies do not delete the shopping cart, even if the user closes his browser window.

Functional cookies
These cookies collect information about the user behavior and whether the user gets any error messages. In addition, these cookies are used to measure the loading time and the behaviour of the website with different browsers.

Target-oriented cookies
These cookies ensure better user friendliness. For example, entered locations, font sizes or form data are stored.

Advertising cookies
These cookies are also called targeting cookies. They are used to deliver individually tailored advertising to the user. This can be very practical, but also very annoying.

Usually, when you first visit a website, you are asked which of these cookie types you want to allow. And of course this decision is also stored in a cookie.
How can I delete cookies?

How and whether you want to use cookies is up to you. Regardless of which service or website the cookies originate from, you always have the option of deleting cookies, only partially allowing or deactivating them. For example, you can block third-party cookies, but allow all other cookies.

If you want to determine which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:

Chrome: Delete, enable and manage cookies in Chrome

Safari: Managing cookies and website data with Safari

Firefox: Deleting cookies to remove data that websites have stored on your computer

Internet Explorer: Deleting and managing cookies

Microsoft Edge: Deleting and managing cookies

If you do not want cookies, you can set your browser so that it always informs you when a cookie is to be set. In this way, you can decide for each individual cookie whether to allow the cookie or not. The procedure varies depending on the browser. It is best to search for the instructions in Google using the search term "Delete cookies Chrome" or "Deactivate cookies Chrome" in the case of a Chrome browser or exchange the word "Chrome" for the name of your browser, e.g. Edge, Firefox, Safari.
What about my privacy policy?

Since 2009 there are the so-called "cookie guidelines". These guidelines state that the storage of cookies requires the consent of the website visitor (i.e. you). Within the EU countries, however, there are still very different reactions to these guidelines. In Germany, the cookie guidelines have not been implemented as national law. Instead, this directive was largely implemented in ยง 15 para.3 of the German Telemedia Act (TMG).

If you want to know more about cookies and do not shy away from technical documentation, we recommend tools.ietf.org/html/rfc6265, the Request for Comments of the Internet Engineering Task Force (IETF) called "HTTP State Management Mechanism".
Rights under the Basic Data Protection Ordinance

According to the provisions of the DSGVO, they are generally entitled to the following rights:

    Right to rectification (Article 16 DSGVO)
    Right to cancellation ("right to be forgotten") (Article 17 DSGVO)
    Right to limitation of processing (Article 18 DSGVO)
    Right of notification - notification obligation in relation to rectification or erasure of personal data or limitation of processing (Article 19 DSGVO)
    Right to data transferability (Article 20 DSGVO)
    Right of objection (Article 21 DSGVO)
    Right not to be subject to a decision based exclusively on automated processing, including profiling (Article 22 DS Block Exemption Regulation)

If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in any way, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI).
Evaluation of visitor behaviour

In the following data protection declaration we inform you whether and how we evaluate data from your visit to this website. As a rule, the data collected is evaluated anonymously and we cannot deduce from your behaviour on this website any personal information about you.

You can find out more about the possibilities of contradicting this evaluation of visit data in the following data protection declaration.
TLS encryption with https

We use https to transmit data in a tap-proof manner on the Internet (data protection through technology design Article 25 paragraph 1 DSGVO). Through the use of TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data. You can recognize the use of this data transmission security by the small lock symbol in the upper left corner of the browser and the use of the https scheme (instead of http) as part of our Internet address.
Newsletter Privacy Policy

When you subscribe to our newsletter you provide the above personal information and give us the right to contact you via email. We use the data stored within the scope of the registration to the newsletter exclusively for our newsletter and do not pass these on.

If you unsubscribe from our newsletter - you will find the link to unsubscribe at the bottom of each newsletter - then we will delete all data that was stored when you subscribed to our newsletter.
MailChimp Privacy Policy

We send newsletters with MailChimp and use on this website functions of the newsletter service MailChimp of The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308 USA to register for newsletters.
General information about MailChimp

Rocket Science Group LLC (MailChimp) maintains online platforms that enable our users to stay in touch with their subscribers, primarily via email. They allow users to upload email addresses and other subscriber profile information such as name, physical address and other demographic information to the MailChimp database. This information is used to send e-mails and to enable the use of certain other MailChimp features by these users. In accordance with published privacy policies, MailChimp shares some information with third parties to provide and support the services that MailChimp provides to users. MailChimp also shares some information with third party advertising partners to better understand users' needs and interests so that more relevant content and targeted advertising can be provided to those users and other users.
Newsletter Subscription

If you register for our newsletter on our website, the data entered will be stored at MailChimp.
Deletion of your data

You may withdraw your consent to receive our newsletter at any time within the received e-mail by clicking on the link below. If you have unsubscribed by clicking on the unsubscribe link, your data will be deleted at MailChimp.
Newsletter Evaluation

If you receive a newsletter via MailChimp, information such as IP address, browser type and e-mail program will be stored to give us information about the performance of our newsletter. MailChimp can determine whether the email has arrived, whether it has been opened and whether links have been clicked by using the images called web beacons (details can be found at kb.mailchimp.com/reports/about-open-tracking) integrated in the HTML emails. All this information is stored on the servers of MailChimp, not on this website.

MailChimp is an active member of the EU-U.S. Privacy Shield Framework which regulates the correct and secure transfer of personal data. More information can be found at www.privacyshield.gov/participant. More information about the use of cookies at MailChimp can be found at mailchimp.com/legal/cookies/, information about data protection at MailChimp (Privacy) can be found at mailchimp.com/legal/privacy/ .
MailChimp order data processing contract

We have signed a contract with MailChimp for the Data Processing Addendum. This contract serves to secure your personal data and ensures that MailChimp complies with the applicable data protection regulations and does not pass on your personal data to third parties.

You can find more information about this contract at mailchimp.com/legal/forms/data-processing-agreement/.
Google Fonts Local Privacy Policy

We use Google Fonts of the company Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on our website. We have integrated the Google fonts locally, i.e. on our web server - not on Google's servers. As a result, there is no connection to Google's server and therefore no data transmission or storage.
What are Google Fonts?

Google Fonts (formerly Google Web Fonts) is an interactive directory with more than 800 fonts provided by Google LLC for free use. With Google Fonts you could use the fonts without uploading them to your server. But to prevent any transfer of information to the Google server, we downloaded the fonts to our server. In this way, we comply with data protection regulations and do not send any data to Google Fonts.

Unlike other web fonts, Google allows us unrestricted access to all fonts. So we have unlimited access to a sea of fonts and can get the most out of our website. You can find out more about Google Fonts and other questions at developers.google.com/fonts/faq
Google Fonts Privacy Policy

We use Google Fonts of the company Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on our website.

You do not need to login or provide a password to use Google fonts. Furthermore, no cookies are stored in your browser. The files (CSS, fonts) are requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, requests for CSS and fonts are completely separate from all other Google services. If you have a Google Account, don't worry that your Google Account information will be transmitted to Google while using Google Fonts. Google collects and stores information about your use of CSS (Cascading Style Sheets) and fonts. We'll take a closer look at how the data is stored.
What are Google Fonts?

Google Fonts (formerly Google Web Fonts) is an interactive directory of more than 800 fonts that the Google LLC provides for free use.

Many of these fonts are released under the SIL Open Font License, while others are released under the Apache License. Both are free software licenses. So we can use them freely without paying royalties.
Why do we use Google Fonts on our website?

With Google Fonts, we can use fonts on our own website, and don't have to upload them to our own server. Google Fonts is an important building block to keep the quality of our website high. All Google fonts are automatically optimized for the web and this saves data volume and is a great advantage especially for use on mobile devices. When you visit our site, the small file size ensures fast loading time. Google Fonts are also known as secure web fonts. Different image synthesis systems (rendering) in different browsers, operating systems and mobile devices can lead to errors. Such errors can partially distort texts or entire web pages optically. Thanks to the fast Content Delivery Network (CDN), there are no cross-platform problems with Google Fonts. Google Fonts supports all popular browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod).

So we use Google Fonts to make our entire online service as beautiful and consistent as possible. According to Art. 6 para. 1 f lit. F DSGVO, this already represents a "legitimate interest" in the processing of personal data. In this case, the term "legitimate interest" refers to legal as well as economic or ideational interests that are recognised by the legal system.
Which data is stored by Google?

When you visit our website, the fonts are downloaded via a Google server. This external call transmits data to the Google server. In this way, Google also recognises that you or your IP address is visiting our website. The Google Fonts API was developed to reduce the collection, storage and use of end-user information to what is necessary for the efficient delivery of fonts. API also stands for "Application Programming Interface" and serves, among other things, as a data transmitter in the software sector.

Google Fonts securely stores CSS and font requests at Google and is therefore protected. Google can determine the popularity of the fonts through the collected usage figures. Google publishes the results on internal analysis pages such as Google Analytics. Google also uses data from its own web crawler to determine which web pages use Google fonts. This data is published in Google Fonts' BigQuery database. BigQuery is a Google web service for companies that want to move and analyze large amounts of data.

However, it should also be remembered that each Google Font Request also automatically transmits information such as IP address, language settings, browser screen resolution, browser version and browser name to the Google servers. It is not clear whether this data is also stored or not, and Google does not communicate this information unambiguously.
How long and where is the data stored?

Google stores requests for CSS assets for one day on your servers, which are mainly located outside the EU. This allows us to use the fonts using a Google stylesheet. A stylesheet is a style sheet that can be used to quickly and easily change the design or font of a website, for example.

The font files are stored on Google for one year. Google's goal is to improve the loading time of websites. If millions of websites refer to the same fonts, they are cached after the first visit and appear immediately on all other websites visited later. Sometimes, Google updates font files to reduce file size, increase language coverage, and improve design.
How can I delete my data or prevent data storage?

The data that Google stores for a day or a year cannot simply be deleted. The data is automatically transmitted to Google when the page is viewed. To delete this data early, you must contact Google support at support.google.com In this case, you will only prevent data storage if you do not visit our site.

Unlike other web fonts, Google allows us unrestricted access to all fonts. So we can access a sea of fonts without limitation and get the most out of our website. You can find out more about Google Fonts and other questions at developers.google.com/fonts/faq, where Google discusses privacy issues, but does not really provide detailed information about data storage. It's relatively difficult (almost impossible) to get really precise information about stored data from Google.

You can also find out which data is basically collected by Google and for what purpose this data is used at www.google.com/intl/de/policies/privacy/ .
Embedded Social Media Elements Privacy Statement

We include elements of social media services on our website to display images, videos and text.
By visiting pages that display these elements, data is transferred from your browser to the respective social media service and stored there. We do not have access to this data.
The following links will take you to the pages of the respective social media services where we explain how they handle your data:

    Instagram Privacy Policy: help.instagram.com/519522125107875
    YouTube is subject to Google's privacy policy: policies.google.com/privacy
    Facebook data policy: www.facebook.com/about/privacy
    Twitter Privacy Policy: twitter.com/de/privacy

YouTube Privacy Policy

We have included YouTube videos on our website. So we can present you interesting videos directly on our site. YouTube is a video portal that has been a subsidiary of Google LLC since 2006. The video portal is operated by YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit a page on our website that has a YouTube video embedded, your browser automatically connects to YouTube or Google servers. Depending on your settings, various data will be transmitted. Google is responsible for the entire data processing and therefore Google's data protection also applies.

In the following, we will explain in more detail which data is processed, why we have included YouTube videos and how you can manage or delete your data.
What is YouTube?

On YouTube, users can view, rate, comment on and upload videos free of charge. Over the last few years, YouTube has become one of the most important social media channels in the world. To enable us to display videos on our website, YouTube provides a code excerpt that we have built into our site.
Why do we use YouTube videos on our website?

YouTube is the video platform with the most visitors and the best content. We strive to provide you with the best possible user experience on our website. And of course, interesting videos should not be missing. With the help of our embedded videos, we provide you with additional helpful content in addition to our texts and images. In addition, our website is easier to find on the Google search engine through the embedded videos. Even if we place advertisements via Google Ads, Google - thanks to the collected data - can only show these advertisements to people who are interested in our offers.
What data does YouTube store?

As soon as you visit one of our sites that has a YouTube video built in, YouTube sets at least one cookie that stores your IP address and our URL. If you are logged into your YouTube account, YouTube can usually associate your interactions on our website with your profile using cookies. This includes information such as session duration, bounce rate, approximate location, technical information such as browser type, screen resolution, or your Internet service provider. Additional information may include contact information, any ratings, sharing content via social media, or adding to your favorites on YouTube.

If you're not signed in to a Google Account or Youtube Account, Google stores data with a unique identifier associated with your device, browser or app. For example, your preferred language setting remains the same. But a lot of interaction data can't be stored because fewer cookies are set.

The following list shows cookies that have been set in a browser test. On the one hand, we show cookies that are set without a registered YouTube account. On the other hand, we show cookies that are set with a registered account. The list cannot claim to be complete because the user data always depends on the interactions on YouTube.

Name: YSC
Purpose: This cookie registers a unique ID to store statistics of the video viewed.
Expiration date: after session end
Example value: b9-CV6ojI5Y

Name: PREF
Purpose: This cookie also registers your unique ID. Google receives PREF statistics on how you use YouTube videos on our website.
Expiration date: after 8 months
Example value: f1=50000000

Name: GPS
Purpose: This cookie registers your unique ID on mobile devices to track the GPS location.
Expiration date: after 30 minutes
Example value: 1

Name: VISITOR_INFO1_LIVE
Purpose: This cookie attempts to estimate the user's bandwidth on our websites (with built-in YouTube video).
Expiration date: after 8 months
Example value: 95Chz8bagyU

Additional cookies that are set when you are logged in with your YouTube account:

Name: APISID
Purpose: This cookie is used to create a profile of your interests. The data is used for personalised advertisements.
Expiration date: after 2 years
Example value: zILlvClZSkqGsSwI/AU1aZI6HY7311119219

Name: CONSENT
Purpose: The cookie stores the status of a user's consent to the use of various Google services. CONSENT also provides security to help verify users and protect user data from unauthorized attacks.
Expiration date: after 19 years
Example value: YES+AT.de+20150628-20-0

Name: HSID
Purpose: This cookie is used to create a profile of your interests. This data helps us to display personalized advertisements.
Expiration date: after 2 years
Example value: AcRwpgUik9Dveht0I

Name: LOGIN_INFO
Intended use: Information about your login data is stored in this cookie.
Expiry date: after 2 years
Example value: AFmmF2swRQIhALl6aL...

Name: SAPISID
Purpose: This cookie works by uniquely identifying your browser and device. It is used to create a profile about your interests.
Expiration date: after 2 years
Example value: 7oaPxoG-pZsJuuF5/AnUdDUIsJ9iJz2vdM

Name: SID
Purpose: This cookie stores your Google Account ID and your last login time in digitally signed and encrypted form.
Expiration date: after 2 years
Example value: oQfNKjAsI311119219

Name: SIDCC
Purpose: This cookie stores information about how you use the site and what advertisements you may have seen before visiting our site.
Expiration date: after 3 months
Example value: AN0-TYuqub2JOcDTyL
How long and where is the data stored?

The data that YouTube receives from you and processes is stored on Google's servers. Most of these servers are located in America. At www.google.com/about/datacenters/inside/locations/, you can see exactly where the Google data centers are located. Your data is distributed on the servers. So the data is faster retrievable and better protected against manipulation.

Google stores the collected data for different lengths of time. Some data can be deleted at any time, others are automatically deleted after a limited period of time and still others are stored by Google over a longer period of time. Some data (such as "My Activity" items, photos or documents, products) stored in your Google Account will remain stored until you delete it. Even if you're not signed in to a Google Account, you can still delete some information associated with your device, browser, or app.
How do I delete or prevent my data from being stored?

Basically, you can manually delete data from your Google Account. With the automatic deletion of location and activity data introduced in 2019, information will be stored for either 3 or 18 months, depending on your decision, and then deleted.

Whether or not you have a Google Account, you can configure your browser to delete or disable Google cookies. This works in different ways depending on which browser you use. The following instructions show how to manage cookies in your browser:

Chrome: Deleting, enabling and managing cookies in Chrome

Safari: Managing cookies and website data with Safari

Firefox: Deleting cookies to remove data that websites have stored on your computer

Internet Explorer: Deleting and managing cookies

Microsoft Edge: Deleting and managing cookies

If you do not want cookies, you can set your browser so that it always informs you when a cookie is to be set. In this way, you can decide whether to allow each individual cookie or not. Because YouTube is a subsidiary of Google, there is a joint privacy statement. If you would like to learn more about how we treat your information, we recommend that you read the privacy statement at policies.google.com/privacy .

Source: Created in cooperation with fashiongott.de using AdSimple's data protection generator.