Privacy policy

Data protection declaration according to the GDPR

I. Name and address of the person responsible

L.A.B. Cosmetics GmbH
Friesenweg 24, 22763 Hamburg.
Telephone: +49-40-386 29 1020

E-mail: service@daytox.de

Website: https://www.daytox.de/de/

is the person responsible within the meaning of the EU General Data Protection Regulation (GDPR) and other national data protection laws.

II.Name and address of the data protection officer

The data protection officer of the person responsible is:

OPEN AG
Niddastraße 74
60329 Frankfurt am Main

E-mail: info@agor-ag.com

Website: www.agor-ag.com

III. General information on data processing

1. Scope of processing of personal data

In principle, we only collect and use personal data of the users of our homepage insofar as this is necessary for the provision of a functional website, our content and services.

In principle, the collection and use of personal data from our users only takes place with their consent. An exception to this principle applies in cases in which processing of the data is permitted by legal regulations or obtaining prior consent is not possible for actual reasons.

2. Legal basis for processing personal data

The legal bases for the processing of personal data result from:

Art. 6 (1) sentence 1 lit. a GDPR upon obtaining the consent of the data subject.

Art. 6 (1) sentence 1 lit. b GDPR for processing that serves to fulfill a contract to which the data subject is a party. Processing operations that are required to carry out pre-contractual measures are also included here.

Article 6 paragraph 1 sentence 1 lit. c GDPR for processing that is necessary to fulfill a legal obligation.

Art. 6 (1) sentence 1 lit. d GDPR if the vital interests of the data subject or another natural person require the processing of personal data.

Article 6 paragraph 1 sentence 1 lit. f GDPR if the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and fundamental freedoms of the data subject do not outweigh the first-mentioned interest. In order to be able to base the processing of personal data on a legitimate interest, an examination is carried out in coordination with the data protection officer for each relevant process, whereby the following three conditions must be met:

1) The person responsible for processing the personal data or a third party has a legitimate interest in the data processing.

2) The processing is necessary to protect the legitimate interest.

3) Interests or fundamental rights and freedoms of the data subject that require the protection of personal data do not prevail.

3. Data Erasure and Storage Duration

The personal data of users will be deleted or blocked as soon as the purpose of storage no longer applies. Storage that goes beyond this can take place if this has been provided for by the European or national legislator in EU regulations, laws or other regulations to which the person responsible is subject. The data will also be blocked or deleted if a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

IV. Use of our website, general information

1. Description and scope of data processing

Each time our website is accessed, our system automatically collects data and information from the user's computer system. The following information can be collected:

Information about the browser type and version used, the user's operating system, the user's Internet service provider, the user's IP address, date and time of access, websites from which the user's system accesses our website, websites , which are called up by the user's system via our website

The data described is stored in the log files of our system. This data is not stored together with other personal data of the user.

2. Purpose and legal basis for data processing

The temporary storage of the IP address by our system is necessary to enable delivery of the website to the user's computer. For this purpose, the IP address of the user must remain stored for the duration of the session.

Storage in log files takes place to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

The legal basis for the temporary storage of the data and the log files is Article 6 Paragraph 1 Sentence 1 lit. f GDPR.

The collection of your personal data for the provision of our website and the storage of the data in log files is absolutely necessary for the operation of the website. There is therefore no possibility of objection by the user.

3. Duration of storage

Your data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. If your data is collected to ensure the provision of the website, the data will be deleted when the respective session has ended.

If your data is stored in log files, it will be deleted after seven days at the latest. Storage beyond this is possible, in which case the IP addresses of the users will be deleted or alienated. An assignment of the calling client is no longer possible.

V.General information on the use of cookies

We use cookies on our website. Cookies are text files that are stored in the internet browser or by the internet browser on the user's computer system. If you call up a website, a cookie can be stored on your operating system. This contains a characteristic character string that enables the browser to be clearly identified when the website is called up again.

We use cookies to make our website more user-friendly. Some elements of our website require that the browser can be identified even after a page change.

TTDSG:

The legal basis for the storage of cookies, device identifiers and similar tracking technologies or for the storage of information in the end user's terminal equipment and access to this information is the European ePrivacy Directive in conjunction with the Act regulating data protection and the Protection of privacy in telecommunications and telemedia (TTDSG).

Please note that the legal bases for the processing of the personal data collected in this context result from the GDPR (Art. 6 Para. 1 S.1 GDPR). The relevant legal basis for the processing of personal data in each specific case can be found below under the respective cookie or the respective processing itself.

The primary legal basis for the storage of information in the terminal device of the end user - and therefore in particular for the storage of cookies - is your consent, § 25 Para. 1 S.1 TTDSG. Consent is given when you visit our website - although this does not have to be given, of course - and can be revoked at any time in the cookie settings.

Pursuant to Section 25 (2) No. 2 TTDSG, consent is not required if the storage of information in the end user's terminal equipment or access to information already stored in the end user's terminal equipment is absolutely necessary so that the provider of a telemedia service can receive a expressly requested telemedia service. You can see in the cookie settings which cookies are to be classified as absolutely necessary (often also referred to as "technically necessary cookies"), which therefore fall under the exception rule of Section 25 (2) TTDSG and therefore do not require consent.

GDPR:  

When cookies are used, the following data is stored and transmitted:

Items in a shopping cart, log-in information

The legal basis for the processing of personal data using cookies is Article 6 Paragraph 1 Clause 1 Letter f GDPR. The purpose of using the technically necessary cookies is to simplify the use of our website.

We would like to point out that individual functions on our website can only be offered using cookies.

These are the following applications:

Shopping cart, remembering search terms

We do not use user data collected by technically necessary cookies to create user profiles.

Cookies are stored on the user's computer and transmitted to our site. As a user, you therefore have control over the use of cookies. You can restrict or deactivate the transmission of cookies by making changes in the settings of your Internet browser. Stored cookies can also be deleted there. Please note that you may no longer be able to use all the functions of our website if you deactivate cookies.

The legal basis for the processing of personal data using cookies for analysis and advertising purposes is Article 6 (1) sentence 1 lit. a GDPR if the user has given their consent.

Cookie consent with Consentmanager:

We have the consent management tool "consentmanager" (www.consentmanager.net) of Jaohawi AB (Håltgelvågen 1b, 72348 Västerås, Sweden, info@consentmanager.net) on our website to request consent for data processing or the use of cookies or comparable functions. With the help of "consentmanager" you have the option of giving or rejecting your consent to certain functionalities of our website, e.g. for the purpose of integrating external elements, integrating streaming content, statistical analysis, range measurement and personalized advertising. You can use "consentmanager" to give or deny your consent for all functions or give your consent for individual purposes or individual functions. You can also change the settings you have made afterwards. The purpose of integrating "consentmanager" is to allow the users of our website to decide on the above-mentioned things and to offer them the opportunity to change settings that have already been made as part of their continued use of our website. In the course of using "consentmanager", personal data and information on the end devices used, such as the IP address, are processed.

The legal basis for processing is Article 6 Paragraph 1 Clause 1 Letter c) in conjunction with Article 6 Paragraph 3 Clause 1 Letter a) in conjunction with Article 7 Paragraph 1 GDPR and alternatively Letter f). By processing the data, we help our customers (the person responsible according to the GDPR) to fulfill their legal obligations (e.g. obligation to provide proof).

"Consentmanager" stores your data as long as your user settings are active. 13 months after making the user settings, you will be asked again for consent. The user settings made are then saved again for this period.

You can object to the processing. You have the right to object for reasons that arise from your particular situation. To object, please contact us via email info@consentmanager.net

https://delivery.consentmanager.net/delivery/vendorlist.php?cdid=09d9601ecb05%22 Here you can view and adjust your cookie settings.

VI. Your rights / rights of the data subject

According to the EU General Data Protection Regulation, you as the data subject have the following rights:

1. Right to information

You have the right to receive information from us as the person responsible as to whether and which personal data relating to you is processed by us, as well as further information in accordance with the legal requirements of Art. 13, 14 GDPR.

You can assert your right to information at: Datenschutz@daytox.de

2. Right to Rectification

If the personal data processed by us and relating to you is incorrect or incomplete, you have the right to have it corrected and/or completed. The correction will be made immediately.

3. Right to Restriction

You have the right to restrict the processing of your personal data in accordance with the statutory provisions (Art. 18 GDPR).

4. Right to Erasure

If the reasons set out in Art. 17 GDPR apply, you can demand that the personal data concerning you be deleted immediately.

We would like to point out that the right to erasure does not exist if the processing is necessary for one of the exceptional circumstances mentioned in Art. 17 Para. 3.

5. Right to information

If you have asserted the right to rectification, erasure or restriction of processing, we are obliged to notify all recipients to whom your personal data has been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves to be the case as impossible or involves a disproportionate effort. You also have the right to be informed about these recipients.

6. Right to data portability

According to the GDPR, you also have the right to receive the personal data provided to us in a structured, common and machine-readable format or to request its transmission to another person responsible.

7. Right to revoke the declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. We would like to point out that the revocation of the consent does not affect the legality of the processing carried out on the basis of the consent up to the revocation.

8. Right to Object

Furthermore, you have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data, which is based on Article 6 (1) sentence 1 lit. e or f GDPR.

9. Automated individual decision-making including profiling

According to the EU General Data Protection Regulation, you also have the right not to be subject to a decision based solely on automated processing - including profiling - which has legal effect on you or significantly affects you in a similar way.

10. Right to lodge a complaint with a supervisory authority

Finally, if you are of the opinion that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the member state of your habitual residence, your place of work or the place of the alleged violation.

VII.Data transfer outside the EU

The GDPR guarantees an equally high level of data protection within the European Union. When selecting our service providers, we therefore rely on European partners whenever possible if your personal data is to be processed. Only in exceptional cases will we have data processed outside the European Union as part of the use of third-party services. We only allow your data to be processed in a third country if the special requirements of Art. 44 et seq. GDPR are met. This means that the processing of your data may only take place on the basis of special guarantees, such as the determination of a level of data protection officially recognized by the EU Commission or compliance with officially recognized special contractual obligations, the so-called "standard data protection clauses". “.

VIII.Minors under 16 years of age

Minors under the age of 16 are expressly not addressees of our website and our offers on this website. We would like to point out that legal guardians must monitor the online activities of their children. Minors under the age of 16 should not transmit any personal data to us without the consent of their parents or legal guardians. We explicitly do not request any personal data from minors under the age of 16, do not knowingly collect them and do not pass them on to third parties.

IX.Newsletter

1. General

You can subscribe to a free newsletter on our homepage, with which we will inform you about our current interesting offers. The advertised goods and services are named in the declaration of consent. The data that you enter in the input mask when registering will be transmitted to us.

We collect the following data on the basis of the consent obtained from you during the registration process:

E-Mail-Address

Furthermore, the following data is stored at the moment of transmission:

IP address of the calling computer, date and time of registration

Your data will not be passed on in connection with data processing for sending newsletters. The data will only be used to send the newsletter.

2. Double opt-in and logging

Registration for our newsletter takes place in a so-called double opt-in procedure. After registering, you will receive an email asking you to confirm your registration. This confirmation is necessary so that nobody can register with someone else's e-mail address.

The registrations for the newsletter are logged in order to be able to prove the registration process in accordance with the legal requirements. This includes storing the time of registration and confirmation as well as the IP address.

3. Legal Basis

The legal basis for processing the data is Article 6 Paragraph 1 Clause 1 Letter a GDPR if the user has given his consent. The collection of the user's e-mail address serves to deliver the newsletter.

4. Deletion, Revocation and Objection

Your data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. Your e-mail address will therefore be stored as long as the subscription to the newsletter is active. You can unsubscribe from the newsletter at any time by revoking your consent. For this purpose, there is a corresponding link in every newsletter.

We would also like to point out that you can object to the future processing of your personal data at any time in accordance with the legal requirements of Article 21 GDPR. The objection can be made in particular against processing for direct marketing purposes.

5. Shipping service provider Klaviyo / Statistical survey

We use Klaviyo's services to send our email newsletters. The provider is Klaviyo, 125 Summer St, Boston, MA 02110, USA. Klaviyo is a service that e.g. is used to organize and analyze e-mail newsletters.

If you enter data for the purpose of subscribing to the e-mail newsletter (e.g. your e-mail address), this will be stored on Klaviyo's servers in the USA. With the help of Klaviyo we can analyze our email newsletter campaigns. If you open an e-mail sent with Klaviyo, a file contained in the e-mail (so-called web beacon) connects to the Klaviyo servers in the USA. In this way it can be determined whether an e-mail newsletter message has been opened and which links, if any, have been clicked. Technical information is also recorded (e.g. time of retrieval, IP address, browser type and operating system). This information cannot be assigned to the respective e-mail newsletter recipient. They serve exclusively for the statistical evaluation of e-mail newsletter campaigns. The results of these analyzes can be used to better tailor future email newsletters to the interests of the recipient.

The legal basis for the associated data processing and the dispatch of the e-mail newsletter by Klaviyo is your consent in accordance with Article 6 (1) sentence 1 lit. a GDPR in connection with your consent. You can revoke your consent at any time by unsubscribing from the email newsletter. The legality of the data processing operations that have already taken place remains unaffected by the revocation.

We have also concluded the so-called "Standard Contractual Clauses" with Klaviyo, in which we oblige Klaviyo to protect the data of our customers and not to pass it on to third parties.

The Data Processing Agreement, which corresponds to the standard contractual clauses, can be found at https://www.klaviyo.com/legal/dpa.

You can find out more about the data processed through the use of Klaviyo in the data protection declaration at https://www.klaviyo.com/legal/privacy-policy.

X. Legal basis for electronic contact

1.     Contact Form / Email

If you would like to contact us, a contact form is available on our homepage, which you can use to contact us electronically. The data entered in the input mask will be transmitted to us and saved. These data are:

Name*, Email*, Subject*, Order No., Transaction ID

At the time the message is sent, the following data is also stored:

The IP address of the user, date and time of the sending process

It is also possible to contact us via the email address provided. In this case, the user's personal data transmitted with the e-mail will be stored.

Your data will not be passed on to third parties in this context, the data will only be used to process the communication.

Processing of the contact request and its processing is regularly Art. 6 Para. 1 S.1 lit. b GDPR.

If further personal data is processed during the sending process, this only serves to prevent misuse of the contact form and to ensure the security of our information technology systems.

Your data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is over when it can be inferred from the circumstances that the facts in question have been finally clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

CRM-Tool Groove

We use the “Groove” service from Groove Networks, LLC to process your inquiries when you contact us by email or contact form. (2 Dearborn St. Newport, RI, USA, “Groove”). In the event that you do not wish your data to be processed by Groove, we offer you an alternative contact option by telephone or post.

We use Groove to process requests faster and more efficiently. If you send us an e-mail, Groove collects and processes the data mentioned above. We have concluded an order data processing contract with Groove.

The data transmitted for this purpose may be transmitted to the USA. The transmission takes place on the basis of an agreement with Groove Networks, LLC. concluded contract on standard contractual clauses.

For more information on Groove's privacy policy, see https://www.groovehq.com/our/privacy and https://www.groovehq.com/our/dpa.

2.     Chatchamp

As part of our so-called personal routine finder/advice tool, we collect and process personal data about your habits and your physical condition. These are determined using a questionnaire and the results are saved. For the routine finder we use the chat tool of chatchamp UG, c/o Wayra, Kaufingerstr. 15, 80331 Munich (“Chatchamp”). Chatchamp supports us in answering our questionnaire by preparing it for you in a chat conversation. Chatchamp then helps us analyze this data to recommend products that are right for your skin. Some of this is health data within the meaning of Art. 4 No. 15 GDPR.

If you request the Expert's evaluation by e-mail, we will link your e-mail address to the information you have provided in order to send you individual product recommendations. However, we keep the information you provide pseudonymised.

The aforementioned processing is based on Article 6 Paragraph 1 Clause 1 Letter a and Article 9 Paragraph 2 Letter a GDPR. We store the information you provide, including information about your state of health, for as long as you have given your consent. After revocation of your consent, this data will be deleted. You can easily inform us of your revocation by clicking on the unsubscribe link in the product recommendation email. If we discontinue the "Routinefinder" program, the information you have provided will also be deleted in this case.

3.      WhatsApp

We also use the WhatsApp messenger service (WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, e-mail: bd@whatsapp.com) to communicate with our customers. Of course, the use of this service is voluntary. You can still contact us quickly by phone or email. The prerequisite for using the WhatsApp messenger service is that you consent to its use and, in doing so, agree to your personal data being transmitted to the USA. In this respect, the legal basis is Article 6 Paragraph 1 Clause 1 Letter a GDPR.

Revocation: You can revoke your consent to the use of the WhatsApp messenger service at any time with effect for the future by sending us an email to: Datenschutz@daytox.de write.

In addition, WhatsApp's offering also includes so-called location-based services, with which you can be given special offers that are tailored to your respective location. You can only use these functions after you have agreed via a pop-up that your location data using GPS and your IP address will be transmitted to WhatsApp in an anonymous form for the purpose of providing the service.

Further information on data processing by WhatsApp can be found in WhatsApp's data protection information. There you will also receive further information on your rights in this regard and setting options for protecting your privacy. https://www.whatsapp.com/legal/updates/privacy-policy-eea. Finally, WhatsApp explains the data transfers that take place as part of WhatsApp Business under https://www.whatsapp.com/legal/business-data-transfer-addendum/?lang=de, as well as https://www.whatsapp.com/legal/business-data-transfer-addendum-20210927.

XI.Registration

1. Direct Registration

You have the option of registering on our homepage by providing your personal data. The data is entered into an input mask, transmitted to us and stored. A transfer of data to third parties does not take place. The following data is collected as part of the registration process:

First name*, last name*, email*, date of birth

At the time of registration, the following data is also stored:

The user's IP address, date and time of registration

Registration regularly serves to fulfill a contract to which the user is a party or to carry out pre-contractual measures in the form of extended use of our website. The legal basis for processing the data is therefore Art. 6 (1) sentence 1 lit. b GDPR.

Your data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. This is the case for the data collected during the registration process if the registration on our website is canceled or changed.

This is the case during the registration process to fulfill a contract or to carry out pre-contractual measures if the data is no longer required for the execution of the contract. Even after the conclusion of the contract, it may be necessary to store personal data of the contractual partner in order to comply with contractual or legal obligations.

Continuing obligations require the storage of personal data during the contract period. In addition, warranty periods must be observed and the storage of data for tax purposes. It is not possible to determine which storage periods are to be observed in general, but must be determined for the respective concluded contracts and contracting parties on a case-by-case basis.

You can cancel your registration on our homepage at any time. You can also have the data stored about you changed at any time.

To do this, please contact us by email service@daytox.de.

If the data is required to fulfill a contract or to carry out pre-contractual measures, the data can only be deleted prematurely if there are no contractual or legal obligations to the contrary.

XII.Application Form

On this website we show you vacancies for which interested parties can apply by e-mail. Unsolicited applications can also be sent to us by email. In the case of an incoming application, we process the data received from the applicant exclusively for the purpose of processing the potential filling of the vacant position.

The primary legal basis for this is Art. 88 GDPR i. V. m. § 26 paragraph 1 BDSG.

Within our company, only those people who are responsible for handling the application process and who make decisions about the outcome of the application have access to your personal data.

We delete your personal data as soon as they are no longer required for the above purposes. If we conclude an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If no employment contract is concluded with the applicant, the application documents will be deleted no later than six months after notification of the rejection decision, provided that deletion does not conflict with any other legitimate interests of the person responsible for processing. Another legitimate interest in this sense is, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).

Your personal data will not be passed on to third parties.

XIII.Shop

You have the option of ordering the care and beauty products we offer directly on our website. As part of the ordering process, we use the contact details you provided during registration, or we collect the personal data you provided in the input mask.

This concerns the following data:

E-mail*, first name*, last name*, phone number, street and house number*, country*, zip code*, city*, company name

At the time of the ordering process, the following data is also stored:

IP address of the user, date and time of the order

If you would like to order in our shop, it is necessary for the conclusion of the contract that you provide your personal data, which we need to process your order. For processing, we pass on your data to the relevant payment and delivery service providers. The legal basis for this is Art. 6 (1) sentence 1 lit. b GDPR.

Due to commercial and tax regulations, we are obliged to store your address, payment and order data for a period of 10 years. However, after 6 years we restrict the processing, i. H. Your data will only be used to comply with legal obligations. To prevent unauthorized access by third parties to your personal data, especially financial data, the ordering process takes place via an encrypted connection.

Integration of the Trusted Shops Trustbadge

Trusted Shops widgets are integrated on this website to display Trusted Shops services (e.g. seal of approval, collected reviews) and to offer Trusted Shops products to buyers after an order.

This serves to safeguard our overriding legitimate interests in optimal marketing by enabling secure shopping in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR. The Trustbadge and the services advertised with it are an offer from Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne, with whom we are jointly responsible for data protection according to Art. 26 DSGVO. In the context of this data protection notice, we will inform you below about the essential contents of the contract in accordance with Art. 26 (2) GDPR.

The Trustbadge is provided by a US CDN provider (Content Delivery Network) as part of a shared responsibility. An appropriate level of data protection is ensured by standard data protection clauses and other contractual measures. Further information on data protection at Trusted Shops GmbH can be found in their data protection declaration.

When the Trustbadge is called up, the web server automatically saves a so-called server log file, which also contains your IP address, date and time of the call, amount of data transferred and the requesting provider (access data) and documents the call. The IP address is anonymized immediately after collection, so that the stored data cannot be assigned to you personally. The anonymized data is used in particular for statistical purposes and for error analysis.

After completing the order, your hashed e-mail address using a one-way cryptographic function will be sent to Trusted Shops GmbH. The legal basis is Article 6 Paragraph 1 Clause 1 Letter f GDPR. This serves to check whether you are already registered for services with Trusted Shops GmbH and is therefore necessary for the fulfillment of our and Trusted Shops' overriding legitimate interests in the provision of buyer protection linked to the specific order and the transactional evaluation services in accordance with Art. 6 paragraph 1 sentence 1 lit. f GDPR required. If this is the case, further processing takes place in accordance with the contractual agreement made between you and Trusted Shops. If you are not yet registered for the services, you will then be given the opportunity to do so for the first time. Further processing after registration is also based on the contractual agreement with Trusted Shops GmbH. If you do not register, all transmitted data will be automatically deleted by Trusted Shops GmbH and a personal reference is then no longer possible.

Trusted Shops uses service providers in the areas of hosting, monitoring and logging. The legal basis is Article 6 Paragraph 1 Letter f GDPR for the purpose of ensuring trouble-free operation. Processing can take place in third countries (USA and Israel). An appropriate level of data protection is ensured in the case of the USA by standard data protection clauses and other contractual measures, and in the case of Israel by an adequacy decision.

As part of the joint responsibility between us and Trusted Shops GmbH, please contact Trusted Shops GmbH using the contact options given in the data protection information linked above if you have any data protection questions or want to assert your rights. Irrespective of this, you can always contact the responsible person of your choice. If necessary, your request will then be forwarded to the other person responsible for an answer.

XIV. Encrypted payment transactions on this website

If there is an obligation to send us your payment data (e.g. account number for direct debit authorization) after the conclusion of a fee-based contract, this data is required for payment processing.

Payment transactions using the usual means of payment (Visa/MasterCard, direct debit) are carried out exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

With encrypted communication, your payment data that you transmit to us cannot be read by third parties.

1.     Clarify

In cooperation with Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden, we offer the following payment options. Payment is made to Klarna by direct debit. The debit takes place after the goods have been dispatched. You will be informed of the time by email.

The use of the payment methods invoice, installment purchase and direct debit requires a positive credit check. In this respect, we forward your data to Klarna for the purpose of address and creditworthiness checks as part of the purchase initiation and processing of the purchase contract. Please understand that we can only offer you those payment methods that are permissible based on the results of the credit check.

The transfer takes place in accordance with Article 6 Paragraph 1 S.1 lit. b GDPR and only to the extent that this is necessary for payment processing.

Further information and Klarna's terms of use can be found here. Your personal information will be processed by Klarna in accordance with the applicable data protection regulations and in accordance with the information in Klarna's data protection regulations under https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy treated.

2.     Paypal

When paying via PayPal, we pass on your payment data to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal"), further.

The transfer takes place in accordance with Article 6 Paragraph 1 S.1 lit. b GDPR and only to the extent that this is necessary for payment processing. PayPal reserves the right to carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal or - if offered - "purchase on account" or "payment in installments" via PayPal. For this purpose, your payment data may be passed on to credit agencies in accordance with Article 6 Paragraph 1 Sentence 1 Letter f GDPR on the basis of PayPal's legitimate interest in determining your solvency. PayPal uses the result of the credit check in relation to the statistical probability of non-payment for the purpose of deciding whether to provide the respective payment method. The credit report can contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical process. Among other things, but not exclusively, address data is included in the calculation of the score values. Further data protection information, including information on the credit agencies used, can be found in PayPal's data protection declaration: www.paypal.com/de/webapps/mpp/ua/privacy-full

You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for contractual payment processing.

 3.     Stripe

If you choose a payment method from the payment service provider Stripe, the payment will be processed by Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, to whom we will send the information you provided during the ordering process together with the information about your Pass on the order (name, address, account number, sort code, possibly credit card number, invoice amount, currency and transaction number) in accordance with Article 6 Paragraph 1 Sentence 1 lit. b GDPR. Your data will only be passed on for the purpose of payment processing with the payment service provider Stripe Payments Europe Ltd. and only insofar as it is necessary for this.

Stripe may transfer, process and store personal data outside of the EU. In doing so, Stripe undertakes to provide suitable guarantees in accordance with Art. 46 GDPR in the form of standard contractual clauses (see https://stripe.com/privacy-center/legal#data-transfers).

In addition, we have concluded an order processing contract with Stripe.

For more information on Stripe's privacy policy, see https://stripe.com/de/privacy#translation.

4.     Google Pay

If you pay via Google Pay, we will pass on your payment data to Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, as part of payment processing.

In addition to your payment information, data about your order (date, time, information about the products or services purchased, etc.) can also be forwarded to Google. The transfer takes place in accordance with Article 6 Paragraph 1 S.1 lit. b GDPR and only to the extent that this is necessary for payment processing.

When using Google's services, your personal data may be transferred to countries outside the European Union (third countries).

You can find more information on data protection for Google Pay at: https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de

5.     Apple Pay

We also offer payment via Apple Pay on our website. The provider of this payment service is Apple Inc., Infinite Loop, Cupertino, CA 95014, USA (hereinafter "Apple Pay"). If you choose to pay via Apple Pay, the payment details you enter will be sent to Apple Pay.

In addition to your payment information, data about your order (date, time, information about the products or services purchased, etc.) can also be forwarded to Apple Pay. The transfer takes place in accordance with Article 6 Paragraph 1 S.1 lit. b GDPR and only to the extent that this is necessary for payment processing.

You can find more information on data protection for Google Pay at:

https://www.apple.com/legal/privacy/de-ww/ and

https://www.apple.com/de/privacy/.

XV.Google Tag Manager

This website uses the Google Tag Manager. Google Tag Manager is a solution that allows marketers to manage website tags from one interface. The tool itself (which implements the tags) does not use cookies and, due to technical necessity, only collects your IP address. The tool triggers other tags, which in turn may set cookies and collect data. Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, this will remain in place for all tracking tags implemented with Google Tag Manager.

If we have obtained your consent, the legal basis for the use of the Google Tag Manager is Art. 6 Para. 1 S. 1 lit a DSGVO. Otherwise, the legal basis for the use of technically necessary cookies results from our legitimate interest in accordance with Article 6 (1) sentence 1 lit. f GDPR.

For more information, see the provider's terms of use at: https://www.google.com/intl/de/tagmanager/use-policy.html

XVI. Google ReCaptcha

We also use the Google reCaptcha service on our website to determine whether a person or a computer makes a specific entry in our contact or newsletter form.

Google uses the following data to check whether you are a human or a computer: IP address of the device used, the website that you are visiting and on which the Captcha is integrated, the date and duration of the visit, the Identification data of the browser and operating system type used, Google account if you are logged in to Google, mouse movements on the reCaptcha areas and tasks that require you to identify images.

The legal basis for the aforementioned data processing is Article 6 Paragraph 1 Clause 1 Letter f GDPR. Our legitimate interest in this data processing is to ensure the security of our website and protection against automated input (attacks).

You can find more information about the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland at https://www.google.com/policies/privacy/

Opt-Out: https://adssettings.google.com/authenticated

XVII.Google Web Fonts

Based on our legitimate interests in accordance with Article 6 Paragraph 1 Clause 1 Letter f GDPR, we integrate the fonts ("Google Web Fonts") from the provider Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. The aim is to optimize and run our website economically. We host the fonts from our own servers so that no data is transmitted to Google.

The data protection declaration of the provider can be found at: https://www.google.com/policies/privacy

XVIII.Bugsnag

We want to offer our visitors the best possible experience, which is why we are constantly improving and developing our websites. Nevertheless, not all malfunctions, e.g. due to programming errors, can be ruled out from the outset. We therefore use Bugsnag, a technical error analysis tool from Bugsnag Inc. (hereinafter "Bugsnag"), 939 Harrison St, San Francisco, CA 94107, USA.

The tool helps us to analyse, evaluate and categorize errors in the event of errors. In order to improve the accessibility and technical stability of our websites by monitoring functionality, system stability and identifying code errors, it may happen that we automatically transmit the following information to Bugsnag in the event of a software error occurring:

Device information (operating system, browser version, browser type), the IP address of the device used, details of the page visited at the time of the error, time of the error.

The legal basis for the aforementioned processing is Art. 6 Paragraph 1 S.1 lit. f GDPR, whereby the data processing that takes place is in our legitimate interest, since the data is used solely for the purpose of error identification and analysis. An evaluation for advertising purposes expressly does not take place. The data is collected anonymously and not used personally and then deleted.

You can prevent the collection, forwarding and processing of this data by deactivating the execution of script code in your browser, installing a script blocker in your browser (this can be found, for example, at www.noscript.net) or activate the "Do Not Track" setting of your browser.

Further information on data processing and how Bugsnag works can be found in Bugsnag's data protection declaration: https://docs.bugsnag.com/legal/privacy-policy/

XIX.Cloudflare

In order to be able to offer you secure data transmission on our website using SSL encryption and to protect our website against defective, mass (DDoS) or other access that would disrupt or prevent the operation of the website, we use the service from Cloudflare, Inc. 101 Townsend St San Francisco, CA 94107.

We have concluded a corresponding order processing agreement with Cloudflare based on the GDPR.

As part of the protection of this website, Cloudflare uses a script and possibly a cookie in your browser. This cookie is used to validate access and to identify malicious access attempts. Cloudflare collects statistical data about visits to this website. Access data includes:

Name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.

Cloudflare uses the log data for statistical evaluations for the purpose of operation, security and optimization of the offer. Please also read Cloudflare's privacy policy which can be found here https://www.cloudflare.com/privacypolicy/ are available.

The legal basis for using Cloudflare is our legitimate interest pursuant to Article 6 Paragraph 1 Sentence 1 Letter f GDPR, which consists of the purposes described above.

Your data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected.

You can prevent the collection, forwarding and processing of this data by deactivating the execution of script code in your browser, installing a script blocker in your browser (this can be found, for example, at www.noscript.net) or activate the "Do Not Track" setting of your browser.

XX.Web Analytics

1.     Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called "cookies", text files that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. If IP anonymization is activated on this website, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

You can prevent the storage of cookies by setting your browser software accordingly; we would like to point out to you however that in this case you will if applicable not be able to use all functions of this website in full. You can also prevent the data generated by the cookie and related to your use of the website (including your IP address) being sent to Google and the processing of this data by Google by using the browser plug-in available under the following link. download and install in: http://tools.google.com/dlpage/gaoptout?hl=de.

This website uses Google Analytics with the extension "_anonymizeIp()". As a result, IP addresses are further processed in abbreviated form, which means that they cannot be linked to individuals. If the data collected about you has a personal reference, this will be excluded immediately and the personal data will be deleted immediately.

We use Google Analytics to analyze and regularly improve the use of our website. We can use the statistics obtained to improve our offer and make it more interesting for you as a user. The legal basis for the use of Google Analytics is your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR.

Third Party Information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Terms of Service: http://www.google.com/analytics/terms/de.html,Privacy Overview http://www.google.com/intl/de/analytics/learn/privacy.html, as well as the privacy policy: http://www.google.de/intl/de/policies/privacy.

2.     Google Analytics Audiences

We also use Google Analytics Audiences ("GA Audiences"), another web analytics service provided by Google. This service collects and stores data from which pseudonymised usage profiles are created. This technology enables users who have visited our website to be shown targeted advertising from us on other external sites in the Google partner network.

The legal basis for the processing of your data is Article 6 Paragraph 1 Clause 1 Letter a GDPR.

GA Audience uses cookies, among other things, which are stored on your computer and other mobile devices (e.g. smartphones, tablets, etc.) and which enable an analysis of the use of the corresponding devices. Some of the data is evaluated across devices. GA Audience receives access to the cookies created as part of the use of Google Analytics. During use, data such as the IP address and activities of the user can be transmitted to a server operated by Google LLC and stored there. Google LLC may transfer this information to third parties if this is required by law or if this data is processed by third parties.

You can prevent the collection and forwarding of personal data (in particular your IP address) and the processing of this data by deactivating the execution of Java Script in your browser or by installing a tool such as 'NoScript'. You can also prevent the data generated by the Google cookie and related to your use of the website (including your IP address) being sent to Google and the processing of this data by Google by clicking on the following link (http://tools.google.com/dlpage/gaoptout?hl=de) Download and install available browser plug-in.

Further information on data protection when using GA Audience can be found under the following link: https://support.google.com/analytics/answer/2700409?hl=en&ref_topic=2611283.

3. Visible

This website uses the web analysis service Matomo to analyze and regularly improve the use of our website. Matomo records your anonymized IP address, your pseudo-anonymized location (based on the anonymized IP address), date and time, title of the page accessed, URL of the page accessed, URL of the previous page (if this allows it), screen resolution, external Links, page loading time, main browser language and browser user agent.

In addition, Matomo creates so-called heat maps and session recordings, in which your interactions with forms (but not their content), files that have been clicked and downloaded, the movement of the mouse pointer, and the click and scroll behavior are recorded.

We can use the statistics obtained in this way to improve our offer and make it more interesting for you as a user. The legal basis for using Matomo is your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR.

Cookies are stored on your computer for the evaluation. The person responsible stores the information collected in this way exclusively on his server in Germany.

We use Matomo with the extension "AnonymizeIP". As a result, IP addresses are further processed in abbreviated form, which means that direct personal reference can be ruled out. The IP address transmitted by your browser using Matomo will not be merged with other data collected by us.

Information from the third-party provider on data protection can be found at https://matomo.org/privacy-policy/.

4. Tabola

To increase the attractiveness, content and functionality of the website, we use technologies from Taboola Inc., London (Oneus-tonsq, 40 Melton Street, 13th Floor, London, NW1 2FD) on our website. This makes it possible to recommend content that matches your personal interests and thus to design our offer individually for you. Taboola uses cookies to determine which websites you visit frequently and how you move around our website. For this purpose, device-related data and log data are collected and usage profiles are generated when pseudonyms are used. These usage profiles are not merged with data about the bearer of the pseudonym and do not allow any conclusions to be drawn about your personal data. Your IP address, for example, will be shortened and transmitted to Taboola.

The legal basis for the processing of your data is Article 6 Paragraph 1 Clause 1 Letter a GDPR.

For more information on Taboola, see https://www.taboola.com/privacy-policy. You can find a way to deactivate the service on the Digital Advertising Alliance website http://optout.aboutads.info/?c=2&lang=EN.

5.     AWIN (Digital Window)

We participate in the performance advertising network of AWIN AG, Eichhornstraße 3, 10785 Berlin (hereinafter "AWIN"). As part of its tracking services, AWIN stores cookies (digital window) on the end devices of users who visit or use its customers' websites or other online offers (e.g. register for a newsletter or place an order in a website) to document transactions (e.g. leads and sales). give up online shop). These cookies serve the sole purpose of correctly allocating the success of an advertising medium and the corresponding billing within its network.

Only the information about when a specific advertising medium was clicked on by a device is placed in a cookie. An individual sequence of digits, which cannot be assigned to the individual user, is stored in the AWIN tracking cookies, with which the partner program of an advertiser, the publisher, and the time of the user's action (click or view) are documented. AWIN also collects information about the end device from which a transaction is carried out, e.g. the operating system and the calling browser. The legal basis is your consent in accordance with Article 6 Paragraph 1 Sentence 1 GDPR.

For more information on how AWIN uses data, see the company's privacy policy: www.awin.com/de/rechtliches/.

6.     Outbrain Amplify

On our website we use "Outbrain Amplify", a service provided by Outbrain UK Ltd., 5 New Bridge Street, London, EC4V 6JA, UK (hereinafter referred to as: "Outbrain"). Outbrain stores and processes information about your user behavior on our website. Among other things, Outbrain uses cookies for this, i.e. small text files that are stored locally in the cache of your web browser on your end device and that enable an analysis of your use of our website.

We use Outbrain Amplify for marketing and optimization purposes, in particular to analyze the use of our website and to be able to continuously improve individual functions and offers as well as the user experience. By statistically evaluating user behavior, we can improve our offer and make it more interesting for you as a user. The legal basis is your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR.

Further information from the third-party provider on data protection can be found on the following website: http://www.outbrain.com/de/legal/privacy.

7.     Mouseflow

This website uses the Mouseflow web analysis tool from Mouseflow ApS, Flaesketorvet 68, 1711 Copenhagen, Denmark. The data processing serves the purpose of analyzing this website and its visitors. For this purpose, data is collected and stored for marketing and optimization purposes. User profiles can be created from this data under a pseudonym. Cookies can be used. With the web analysis tool Mouseflow, randomly selected individual visits (only with an anonymized IP address) are recorded. This creates a log of mouse movements and clicks with the intention of randomly playing individual website visits and deriving potential improvements for the website. The data collected with Mouseflow will not be used to personally identify the visitor to this website and will not be combined with personal data about the bearer of the pseudonym without the separate consent of the person concerned.

The processing takes place on the basis of your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR.

Further information on data protection can be found at https://mouseflow.com/legal/company/privacy-policy/.

8.     NEORY Marketing Cloud

We use the "NEORY Marketing Cloud" service from NEORY GmbH, Brandschachtstraße 2, D-44149 Dortmund, Germany, to conduct effective market research/analysis, to collect statistical data for campaign tracking or to optimize the user-friendliness of our offer.

This is done using pseudonymous usage profiles, in which no personal data is used, only anonymous or pseudonymised data. So-called cookies can be used for this purpose. Among other things, the following data is collected: time of the call, channel information including possible parameters and the domain of the referrer. The data will not be used to personally identify the visitor to this website.

On our behalf, NEORY GmbH will use the transmitted data in particular to implement campaign tracking. All data mentioned above are collected exclusively for this purpose and stored without personal reference.

The processing takes place on the basis of your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR.

Further information on data protection can be found at https://www.neory.com/privacy-policy.

9. TikTok Analytics / TikTok Pixel

We use the TikTok Pixel on our website. The TikTok Pixel is a TikTok advertiser tool from the two providers TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland, and TikTok Information Technologies UK Limited, WeWork, 125 Kingsway, London, WC2B 6NH, United Kingdom (collectively “TikTok” ).

The TikTok Pixel is a snippet of JavaScript code that allows us to understand and track visitor activity on our website. For this purpose, the Tiktok Pixel collects and processes information about the creators of our website or the devices they use. The data collected via the TikTok Pixel is used for targeting our ads and to improve ad delivery and personalized advertising. For this purpose, the data collected on our website using the TikTok pixel is transmitted to TikTok. Some of this data is information that is stored on the device you are using. In addition, cookies are also used via the TikTok Pixel, via which information is stored on the device you are using.

The processing takes place on the basis of your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR.

For more information on how TikTok processes personal data, see TikTok's privacy policy at https://www.tiktok.com/legal/privacy-policy?lang=de-DE.

XXI.Social Media

1.     Social media presence

We maintain fan pages within various social networks and platforms with the aim of communicating with the customers, interested parties and users active there and informing them about our services.

We would like to point out that your personal data may be processed outside the European Union, so that you may be exposed to risks (e.g. when enforcing your rights under European / German law).

User data is usually processed for market research and advertising purposes. For example, user profiles can be created from user behavior and the resulting interests of users. These usage profiles can in turn be used, for example, to place advertisements inside and outside the platforms that presumably correspond to the interests of the user. For these purposes, cookies are usually stored on the users' computers, in which the usage behavior and the interests of the users are stored. Furthermore, data can also be stored in the usage profiles independently of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).

The processing of the personal data of the users takes place on the basis of our legitimate interests in effective information of the users and communication with the users in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR. If the users are asked by the respective providers for their consent to data processing (i.e. by declaring their consent, e.g. by ticking a checkbox or confirming a button), the legal basis for the processing is Article 6 Paragraph 1 Sentence 1 lit. GDPR.

Further information on the processing of your personal data and on your options to object can be found under the links below for the respective provider. The assertion of information and other rights of those affected can also be made against the providers, who then only have direct access to the data of the users and have the corresponding information at their disposal. Of course, we are available to answer any questions and support you if you need help.

We currently use the following social media platforms:

a)    Facebook

Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland

Data protection: https://www.facebook.com/about/privacy/

Opt-Out: https://www.facebook.com/settings?tab=ads

and http://www.youronlinechoices.com

b)    Instagram

Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland

Data protection declaration/opt-out: http://instagram.com/about/legal/privacy/.

c)    YouTube (Google)

Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA)

Data protection:https://policies.google.com/privacy

Opt-Out: https://adssettings.google.com/authenticated

d)    Pinterest

Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA

Privacy Policy / Opt Out:

https://about.pinterest.com/de/privacy-policy.

2. Embedding YouTube video links

We have included links to YouTube videos in our online offering. These lead directly to the YouTube video platform, so that no data about you as a user is transmitted to YouTube if you do not play the videos. Only when you click on the videos and get to the YouTube platform will the data mentioned in paragraph 2 be transferred. We have no influence on this data transmission.

If you are logged in to Google, your data will be assigned directly to your account. If you do not wish to be associated with your profile on YouTube, you must log out before clicking the link. YouTube stores your data as usage profiles and uses them for advertising, market research and/or needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right.

Insofar as we obtain your consent, the legal basis for using the plug-in is your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR. You can find out how the respective social media providers process your personal data from the respective data protection declaration. We are not responsible within the meaning of the GDPR for the data processing of the social media providers.

Further information on the purpose and scope of the data collection and its processing by YouTube can be found in the data protection declaration. There you will also find further information on your rights and setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy

Opt-Out: https://support.google.com/ads/answer/10261289?hl=de&ref_topic=7048998.

XXII.Online Advertising

1.     Google AdSense

On our homepage we use the online advertising service Google AdSense, through which advertising tailored to your interests can be presented to you. We are interested in showing you advertisements that may be of interest to you in order to make our website more interesting for you. For this purpose, statistical information about you is recorded, which is processed by our advertising partners. These advertisements can be recognized by the reference "Google ads" in the respective ad.

By visiting our website, Google receives the information that you have accessed our website. To do this, Google uses a web beacon to place a cookie on your computer. The data specified under Section IV of this declaration will be transmitted. We have no influence on the data collected, nor do we know the full extent of the data collection and the storage period. Your data will be transferred to the USA and evaluated there. If you are logged in with your Google account, your data can be assigned directly to this. If you do not wish to be associated with your Google profile, you must log out. It is possible that this data will be passed on to Google's contractual partners, third parties and authorities.

The legal basis for the processing of your data is your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR.

You can prevent the installation of Google AdSense cookies in various ways:

a) by setting your browser software accordingly, in particular the suppression of third-party cookies means that you will not receive any advertisements from third-party providers;

b) by deactivating interest-based ads on Google via the link http://www.google.de/ads/preferences , although this setting will be deleted if you delete your cookies;

c) by deactivating interest-based ads from providers who are part of the “About Ads” self-regulatory campaign via the link http://www.aboutads.info/choices , although this setting will be deleted if you delete your cookies;

d) by permanent deactivation in your browsers Firefox, Internet Explorer or Google Chrome under the link http://www.google.com/settings/ads/plugin . We would like to point out that in this case you may not be able to use all the functions of this offer to their full extent.

Further information on the purpose and scope of data collection and processing as well as further information on your rights in this regard and setting options for protecting your privacy can be obtained from: Google Inc., 1600 Amphitheater Parkway, Mountain View, California 94043, USA; Privacy Policy for Advertising: http://www.google.de/intl/de/policies/technologies/ads .

2.     Google Dynamic Remarketing

We use the Google Dynamic Remarketing application. This is a process we would like to use to address you again. With this application, our advertisements can be displayed to you after visiting our website when you continue to use the internet. This is done using cookies stored in your browser, which are used by Google to record and evaluate your usage behavior when you visit various websites. In this way, Google can determine your previous visit to our website. Google does not, according to its own statements, combine the data collected as part of remarketing with your personal data, which may be stored by Google. According to Google, pseudonymization is used in particular for remarketing.

You can prevent participation in this tracking process in a number of ways:

a) by setting your browser software accordingly, in particular the suppression of third-party cookies means that you will not receive any advertisements from third-party providers;

b) by deactivating cookies for conversion tracking by setting your browser so that cookies from the domain "www.googleadservices.com" are blocked, https://www.google.de/settings/ads , although this setting will be deleted if you delete your cookies;

c) by deactivating interest-based ads from providers who are part of the “About Ads” self-regulatory campaign via the link http://www.aboutads.info/choices , although this setting will be deleted if you delete your cookies;

d) by permanent deactivation in your browsers Firefox, Internet Explorer or Google Chrome under the link http://www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all the functions of this offer to their full extent.

The legal basis for the processing of your data is your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR.

Further information on data protection at Google can be found here: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html Alternatively, you can visit the Network Advertising Initiative (NAI) website at http://www.networkadvertising.org visit.

3.     Google DoubleClick

This website continues to use the online marketing tool DoubleClick by Google. DoubleClick uses cookies to serve ads relevant to users, to improve campaign performance reports, or to prevent a user from seeing the same ads multiple times. Google uses a cookie ID to record which ads are placed in which browser and can thus prevent them from being displayed more than once. In addition, DoubleClick can use cookie IDs to record so-called conversions that are related to ad requests. This is the case, for example, when a user sees a DoubleClick ad and later uses the same browser to go to the advertiser's website and buy something there. According to Google, DoubleClick cookies do not contain any personally identifiable information.

Due to the marketing tools used, your browser automatically establishes a direct connection to the Google server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and are therefore informing you according to our current knowledge: By integrating DoubleClick, Google receives the information that you have accessed the relevant part of our website or clicked on one of our advertisements. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is a possibility that the provider will find out and store your IP address.

You can prevent participation in this tracking process in a number of ways:

a) by setting your browser software accordingly, in particular the suppression of third-party cookies means that you will not receive any advertisements from third-party providers;

b) by deactivating cookies for conversion tracking by setting your browser so that cookies from the domain "www.googleadservices.com" are blocked, https://www.google.de/settings/ads , although this setting will be deleted if you delete your cookies;

c) by deactivating interest-based ads from providers who are part of the “About Ads” self-regulatory campaign via the link http://www.aboutads.info/choices , although this setting will be deleted if you delete your cookies;

d) by permanent deactivation in your browsers Firefox, Internet Explorer or Google Chrome under the link http://www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all the functions of this offer to their full extent.

The legal basis for the processing of your data is your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR.

Further information on data protection at Google can be found here: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html Alternatively, you can visit the Network Advertising Initiative (NAI) website at http://www.networkadvertising.org visit.

4.     Facebook Custom Audiences / Facebook-Pixel

Furthermore, the website uses the remarketing function “Custom Audiences” from Facebook Inc. (“Facebook”). As a result, users of the website can be shown interest-based advertisements ("Facebook Ads") when they visit the social network Facebook or other websites that also use the process. In doing so, we are interested in showing you advertisements that are of interest to you in order to make our website more interesting for you.

Due to the marketing tools used, your browser automatically establishes a direct connection to the Facebook server. We have no influence on the scope and further use of the data collected by Facebook through the use of this tool and are therefore informing you according to our state of knowledge: By integrating Facebook Custom Audiences, Facebook receives the information that you have accessed the corresponding website of our accessed our website or clicked on one of our advertisements. If you are registered with a Facebook service, Facebook can assign the visit to your account. Even if you are not registered with Facebook or have not logged in, there is a possibility that the provider will find out and store your IP address and other identifiers.

The legal basis for the processing of your data is Article 6 Paragraph 1 Clause 1 Letter a GDPR.

Further information on data processing by Facebook can be found at https://www.facebook.com/about/privacy.

XIII. Sweepstakes

Information obligations according to Art. 13 GDPR for sweepstakes

1. Responsible body

The responsible body for data collection and processing is

L.A.B. Cosmetics GmbH
Friesenweg 24, 22763 Hamburg.
Telephone: +49-40-386 29 1020

2. Data Protection Officer

You can reach our data protection officer at:

OPEN AG
Niddastraße 74
60329 Frankfurt am Main

E-mail: datenschutz@daytox.de

3. Purpose of processing and legal basis

The purpose of the data processing is the implementation/processing of a competition. The following personal data is used for this:

Winner:

  • First and Last Name
  • E-Mail-Address
  • Address

The legal basis for data processing is Article 6 Paragraph 1 Clause 1 Letter b GDPR.

Participation in the competition is voluntary, without being linked to other services.

Any further use of the data, e.g. for marketing purposes, will only take place if the person concerned has given their explicit, separate consent for this purpose. The legal basis for data processing in this context is Article 6 (1) (a) GDPR.

XIII Gtranslate

To operate our website, we use Gtranslate, a service provided by GTranslate Inc., 7957 N University Dr #355, Parkland, FL 33067, USA.

Gtranslate is a free plugin based on Google Translate technology that offers its visitors the possibility to have the page translated into their preferred national language.

For this purpose, the browser you are using must connect to the gTranslate.io and Google servers. This gives gTranslate.io and Google the knowledge that our website was accessed via your IP address. This constitutes consent within the meaning of Article 6 (1) (a) GDPR.

More information can be found in Google's privacy policy: https://www.google.de/intl/de/policies/privacy/ , as well as in the privacy policy of gtranslate.io at https://de.gtranslate.io/Bedingungen

You can revoke this at any time by sending an email to datenschutz@daytox.de. This will not incur any additional costs for you.

Status: October 2022