Privacy policy

PRIVACY POLICY

The following information provides a brief overview of the privacy practices of this website. For more detailed information, please see the DATA PROTECTION STATEMENT below.

Responsible

The website operator named in the imprint is responsible for data protection compliance.

Data source

You either actively provide us with your data via an input mask or e-mail, or it is collected via our IT systems, cookies or similar technologies.

Purpose of collection

You will be informed of the purpose of the data collection in the DATA PROTECTION DECLARATION at the time of the respective processing.

Legal basis

Your data is collected either on the basis of consent, for the performance of a contract or on the basis of our legitimate interests.

Your rights

You have the right to information, correction, restriction of processing or deletion. If the processing is based on consent, you can revoke this at any time for the future; if it is based on a legitimate interest, you can object to this at any time if your interests prevail. You have a right of appeal to the competent supervisory authority.

DATA PROTECTION DECLARATION

Responsible and data protection officer

Responsible for data protection is digades GmbH, represented by: Managing Directors: Dr.-Ing. Sascha Berger, Dipl.-Ing. Tim Berger, Äußere Weberstraße 20, DE-02763 Zittau, +49 3583 5775-775, +49 3583 5775-111, dvision@tilsberk.com. The external data protection officer of the responsible party is Ms. Anja Przybilla, DAPROSEC GbR, Tieckstraße 17, D-01099 Dresden, e-mail: info@daprosec.de, phone: (0351) - 31 905 088.

Security measures

The data traffic on this site is secured by SSL or TLS encryption, which you can recognize by the symbol in your browser. This encryption prevents third parties from reading the data you transmit to us. Especially your payment data is protected against misuse.

Access data

Each time your terminal device accesses our website, our system records 1) browser type/version used, 2) operating system 3) internet provider 4) IP address 5) date and time of access, 6) websites from which your terminal device accesses our website or which are accessed by your terminal device via our website. The data is stored in the log files of our system, a storage of this data together with other personal data of the user does not take place. The legal basis for the temporary storage of the data and the log files is Art. 6 (1) sentence 1 f DSGVO. The temporary storage of the IP address by the system is necessary to enable delivery of the website to you. For this purpose, your IP address must remain stored for the duration of the session. The log files are stored to ensure the functionality of the website; in addition, the data serve us to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context. These purposes also constitute our legitimate interest in data processing pursuant to Art. 6 (1) sentence 1 f DSGVO. The data is deleted after the purpose has been achieved, i.e. after the end of the respective session. In the case of storage of data in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible. The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on your part.

Cookies

Cookies are text files that are stored in or by the Internet browser on the computer system of the calling user when a website is called up. Cookies contain a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again. Cookies are stored on the user's computer and transmitted to our site by the user.

Technically necessary cookies

Some functions of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognized even after a page change. The cookies used for this purpose are technically necessary. The user data collected in this way is not used to create user profiles. The legal basis for the processing of personal data using cookies is Art. 6(1) lit. f DSGVO. The purpose of using technically necessary cookies is to simplify the use of websites for the user. This is also our legitimate interest. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. Cookies that have already been stored can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all website functions to their full extent.

Web analysis with etracker

We use "etracker" on our site, a service provided by etracker GmbH from Hamburg, Germany. When you visit our site, information is collected for the duration of the session, which enables a statistical coverage analysis of this website, a measurement of the success of our online marketing measures as well as test procedures, e.g. to test and optimize different versions of our online offer or its components. Identification features such as IP address, login or device identifiers are anonymized or pseudonymized as soon as possible. No other use is made of this data, nor is it merged with other data or passed on to third parties. The data generated by etracker is processed and stored by etracker exclusively in Germany on behalf of the provider of this website. The purpose of the processing is the optimization of our online offer and our website. This is at the same time also our legitimate interest in improving our offer according to Art. 6 para.1 lit. f DSGVO. You can object to this processing by clicking on the following link.


etracker objection

You can find more information about etracker here: https://www.etracker.com/datenschutz/

Microsoft Dynamics 365 marketing cookies in forms

We use forms on our website from Microsoft Dynamics 365 Marketing, an offering of Microsoft Ireland Operations Limited/Ireland; subsidiary of Microsoft Corporation/ USA, (hereinafter "Microsoft"). When you submit a form and have given consent during your first visit to the site, Dynamics 365 Marketing relates a cookie ID to the contact details you have entered. In this way, the cookie ID is associated with a Dynamics 365 Marketing contact ID. This allows us to determine which browser the user used when filling out the registration form and to transfer the data submitted in the form from the website directly to our CRM system. The cookie - ID also allows us to analyze the call behavior on the relevant form pages of our website and thus improve our offer. The purpose is the smooth transfer of the data transmitted by you into our CRM - system and the optimization of our offer for you. The legal basis for the data processing is the consent given by you when visiting the site in accordance with Art. 6 (1) lit. a DSGVO. Insofar as information is stored on Microsoft servers in the USA, the additional legal basis is Art. 46 (1) in conjunction with Art. 46 (2) c DSGVO. Art. 46 (2) c DSGVO as the controller has agreed with Microsoft on the EU standard contractual clauses in the currently applicable version. You can revoke your consent with effect for the future by clicking on the Cookie Settings link in the footer and setting the slider to the left in the Tracking Cookies tab. You can find more information here: https://privacy.microsoft.com/en-us/privacy-in-our-products

Microsoft Clarity

We use Microsoft Clarity on our website, a service provided by Microsoft Ireland Operations Limited/Ireland; subsidiary of Microsoft Corporation/USA, (hereinafter referred to as "Microsoft"). With your consent, you give us permission to randomly record your site visit and evaluate the session for vulnerabilities and problems. The purpose is to optimize our website. The legal basis for data processing is the consent you give us when you visit the site in accordance with Art. 6 (1) lit. a DSGVO. Insofar as information is stored on Microsoft servers in the USA, the additional legal basis is Art. 46 (1) in conjunction with Art. 46 (2) c DSGVO. Art. 46 (2) c DSGVO as the controller has agreed with Microsoft on the EU standard contractual clauses in the currently applicable version. You can revoke your consent with effect for the future by going to the cookie settings in the footer via the fingerprint and setting the slider next to Microsoft Clarity to the left. You can find out more about data protection here: https://clarity.microsoft.com/terms

Meta Pixel (formerly Facebook Pixel)

We use Meta Pixel (formerly facebook Pixel), an offering from Meta Platforms Ireland Ltd, 4 Grand Canal Square Grand Canal Harbour Dublin 2 Ireland, in advanced mode on our site. For this purpose, a piece of code is implemented in the page that, in case of your consent, tracks the following events during your visit to the page: Viewing a page, performing a search, adding a product to the shopping cart, entering the checkout area, entering payment information in checkout, completing a purchase. In advanced mode, this information is shared between Shopify - servers and Facebook servers. There is no matching with the specific user. The purpose is to optimize our site and our online marketing. According to Art. 6 (1) sentence 1 lit. a DSGVO, the legal basis is the consent given by you when calling up the page in the cookie banner. Insofar as information is stored on Meta servers in the USA, the additional legal basis is Art. 46 (1) in conjunction with Art. 46 (2) c DSGVO. Art. 46 (2) c DSGVO since the controller has agreed with Meta on the EU standard contractual clauses in the currently applicable version. You can revoke your consent with effect for the future by going to the cookie settings in the footer via the fingerprint and setting the slider next to Meta Pixel to left. You can find out more about Meta's privacy policy here: https://www.facebook.com/privacy/policy

Shopify Trekkie

We use the "Shopify Trekkie" pixel on our site, a service provided by Shopify International Ltd, c/o Intertrust Ireland, 2nd Floor 1-2 Victoria Buildings, Haddington Road, Dublin 4, D04 XN32, Ireland ("Shopify"). In the event of your consent, a connection is established with the Shopify - servers when you visit the site and the following information is collected when you visit the site: Device ID, device type, timestamp, operating system used, browser used, network connection, IP address and your navigation of the site. The purpose is to optimize our site and our online marketing. Pursuant to Art. 6 (1) sentence 1 lit. a DSGVO, the legal basis is the consent given by you when calling up the page in the cookie banner. Insofar as information is stored on servers in the USA, the additional legal basis is Art. 46 (1) in conjunction with Art. 46 (2) c DSGVO. Art. 46 (2) c DSGVO since the controller has agreed with Shopify on the EU standard contractual clauses in the currently applicable version. You can revoke your consent with effect for the future by going to the cookie settings in the footer via the fingerprint and setting the slider next to shopify trekkie to left.

Google Ads

We use Google Ads on our site, an offer of Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland). In case of your consent, a connection between Shopify - servers and Google Ads servers is established when you visit the site and the following information is collected when you visit the site: Name, Email Address, Phone Number, Physical Address, Geolocation, IP Address, Browser and Operating System. The purpose is to optimize our site and our online marketing. According to Art. 6 (1) sentence 1 lit. a DSGVO, the legal basis is the consent given by you when calling up the page in the cookie banner. Insofar as information is stored on Google servers in the USA, the additional legal basis is Art. 46 (1) in conjunction with Art. 46 (2) c DSGVO. Art. 46 (2) c DSGVO since the controller has agreed with Google on the EU standard contractual clauses in the currently applicable version. You can revoke your consent with effect for the future by going to the cookie settings in the footer via the fingerprint and setting the slider next to google ads to left. You can find out more about data protection here: https://policies.google.com/privacy#infocollect

Contact form

A contact form is available on our website, which can be used to contact us electronically. If you use this option, the data entered in the input mask will be transmitted to us and stored. The data will not be passed on to third parties. The legal basis for processing the data is the legitimate interest in answering your inquiry in accordance with Art. 6 (1) lit. f DSGVO. The data will be deleted when the facts concerned have been conclusively clarified. You can object to the processing of your data at any time by sending an e-mail to the person responsible. In such a case, the conversation cannot be continued. All personal data stored in the course of contacting you will be deleted in this case.

E-mail

On our website, there is an e-mail address that you can use to contact us. If you send us an e-mail, the data transmitted to us with the e-mail will be stored. The data will not be passed on to third parties. The legal basis for the processing of the data is the legitimate interest in answering your inquiry in accordance with Art. 6 (1) lit. f DSGVO. The data will be deleted when the facts concerned have been conclusively clarified. You can object to the processing of your data at any time by sending an e-mail to the person responsible. In such a case, the conversation cannot be continued. All personal data stored in the course of contacting you will be deleted in this case.

Newsletter with Microsoft Dynamics Marketing 365

On our website, we use the newsletter service Microsoft Dynamics 365 Marketing, a service offered by Microsoft Ireland Operations Limited, headquartered in Ireland; subsidiary of Microsoft Corporation, USA, (hereinafter "Microsoft"). The e-mail address you provide is used to send the newsletter. By means of a tracking pixel contained in the newsletter, it is also recorded whether and when the newsletter is opened by the recipient and which links are clicked. This information is evaluated anonymously and cannot be assigned to the persons concerned. Your registration for the newsletter is logged in order to be able to prove the consent given in accordance with the DSGVO. This includes the consent text, the storage of the registration and confirmation time, as well as the IP address. The legal basis for sending the newsletter to your e-mail address and analyzing user behavior when opening it is the consent given at registration in accordance with Art. 6 (1) lit. a DSGVO. The legal basis for logging the registration is our legal obligation to document this in accordance with Art. 6 c DSGVO. Insofar as information is stored on Microsoft servers in the USA, the additional legal basis is Art. 46 (1) in conjunction with Art. 46 (2) c DSGVO. Art. 46 (2) c DSGVO as the controller has agreed with Microsoft on the EU standard contractual clauses in the currently applicable version. You can revoke your consent with effect for the future at any time by clicking on the link at the end of the newsletter.

Order process

During the ordering process, you enter contact, payment and shipping data in the input masks provided. This data is used exclusively for processing your order. We only transmit this data to third parties if this is necessary to process the order. The basis for data processing is Art. 6 para. 1 lit. b DSGVO, which permits the processing of data for the fulfillment of a contract or pre-contractual measures. The collected customer data will be deleted after processing the order and expiration of any retention periods. The processing of your order is not possible without the collection of the data.

Payment

The processing and settlement of transactions ("payment processing") is carried out by Stripe Payments Europe, Ltd., a company founded in Ireland, which, as a technical service provider, integrates the payment methods of the following providers into the check out of the Shopify store system and processes the payment together with them. (More information can be found here . https://stripe.com/de/privacy)

Credit card

Provider is your selected credit card company. Your credit card data entered during the check out will be passed on to the credit institution via a secure connection when you submit your order. After your legitimation as a legitimate cardholder, the payment transaction is automatically carried out and your card is charged. We do not receive any knowledge of your payment data. For more information on data protection, please contact your credit card provider.

PayPal

The provider is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal"). If you select PayPal at the end of the ordering process, you will be redirected to the pages of the payment provider and process the payment there. After completion, we will receive a payment confirmation and can process your order. You can find more information about data protection at PayPal here: https://www.paypal.com/myaccount/privacy/privacyhub.

Klarna on account and Klarna Sofort

The provider is Klarna AB, Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter "Klarna"). If you choose to pay with a Klarna payment method, you will be redirected directly to Klarna's pages and the payment will be processed there. After completion, we receive a payment confirmation and can process your order. For more information about Klarna's privacy policy, please click here: https://www.klarna.com/de/datenschutz/.

Bancontact

Provider of the payment method Bancontact is Bancontact Payconiq Company SA/NV 82, rue d'Arlon, 1040-Brussels, Belgium, www.bancontact.com, DPO: dpo(at)bancontact(dot)com and is only available to customers with an account at one of the participating Belgian banks. When you select payment with Bancontact and provide your card number, you will be redirected to your bank's secure environment and process the payment there. Upon completion, we receive a payment confirmation and can process your order. For more information about Bancontact's privacy policy, please click here: https://www.bancontact.com/files/privacy.pdf.

iDEAL

Provider of the payment method iDEAL is Currence iDEAL B.V. Beethovenstraat 300, 1077 WZ Amsterdam, Postbus 83073, 1080 AB Amsterdam, The Netherlands, www.ideal.nl/en/, info@currence.nl., and is only available to customers with an account at one of the participating Dutch banks. When you select payment with iDEAL and specify your bank, you will be redirected to your bank's secure environment and process the payment there. After completion, we receive a payment confirmation and can process your order. For more information about iDEAL's privacy policy, please click here: https://www.ideal.nl/en/disclaimer-privacy-statement/.

Customer account

You can register for a customer account on our site by entering your contact details in the input mask, where you can store your billing and delivery address for future orders and manage your orders. If you take advantage of this option, the data entered in the input mask will be transmitted to us and stored. The legal basis for the processing of the data is your consent in accordance with Art. 6 (1) lit. a DSGVO. You can revoke this consent for the future at any time by sending an e-mail to service@tilsberk.com. Your customer account and the data contained therein will then be deleted subject to statutory retention periods. The creation of your customer account is purely voluntary.

Express - Check Out

We offer different Express - Check Out - methods. If you have registered with the provider of an Express - Check Out and deposited your payment and shipping information, the provider will pass on the necessary shipping and payment information to the merchant and the selected payment provider after your payment approval, so that you can complete the payment for your orders more quickly. When you return to the store, your information is automatically filled in during check out.

Google Pay

The provider of Google Pay is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, supportdeutschland@google.com. This payment method requires that you have a Google - Account and have deposited a payment method and billing and shipping address with Google Pay. When you tap on the Google Pay button, you log into your account and process the payment there. When you confirm the payment, Google Pay provides the necessary information for the check out. You can find more information about data protection here: https://payments.google.com/payments/apis-secure/u/0/get_legal_document?ldi=330375

Apple Pay

Apple Pay's provider is Apple Distribution International Ltd, Hollyhill Industrial Estate, Hollyhill, Cork, Republic of Ireland, contactus.de@euro.apple.com. This method requires you to have your credit card and shipping address on file in iPhone Wallet and visit our online store via Safari on iPhone, iPad and Mac. When you tap the Apple Pay button, the Apple Pay screen will open on your device. When you confirm the payment, Apple Pay provides the necessary information for the check out. You can find more information on data protection here: https://support.apple.com/de-de/HT203027

Store Pay

The provider of Shop Pay is Shopify International Ltd, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland, hilfe@shopify.de. This method requires that you have registered for Shop Pay and provided them with your payment and shipping information. When you tap the Shop Pay button, you log in. When you confirm payment, Shop Pay will provide the necessary information for check out. You can find more information about data protection here: https://www.shopify.de/legal/datenschutz

Right of access, rectification, restriction, deletion, data portability.

You have the right to information about your personal data processed by us, as well as the right to correction or deletion or restriction of processing, as well as a right to data portability.

Right of complaint to the competent supervisory authority

You have the right to lodge a complaint with the competent data protection authority in the event of violations of the GDPR. The data protection authority responsible for us is: Saxon Data Protection Commissioner, Devrientstraße 5, 01067 Dresden, phone: 0351/85471 101, fax: 0351/85471 109, e-mail: saechsdsb@slt.sachsen.de