We protect personal data using technical and organisational measures under the EU GDPR and the Federal Data Protection Act (BDSG), along with telecoms/media rules where applicable. Mandatory company disclosures are also listed in our Legal notice.
This notice describes the website and its services — especially the online checkout path. Cross-check with our Legal notice, speak to us via Contact, and review FAQ for day‑to‑day topics.
Zusätzliche Hinweise aus dem Editor (optional):
Ergänzungen können Sie hier pflegen — der Hauptteil wird vom Datenschutz-Template des Themes angezeigt.
The descriptions below mirror typical WooCommerce retail flows; details may evolve with upgrades and legal necessity. Operators should complement this with bespoke legal guidance.
Further corporate legal particulars may appear in our Legal notice.
Purposes and legal bases
Where consent is not required, processing may rely on Art. 6(1)(b) GDPR (contract / pre‑contract steps), (c) legal obligation, (f) legitimate interests such as IT security and fraud prevention, or — where relevant — (a) consent.
Activity
Typical data
Legal basis
Operating the website
Server logs, security, error analysis
Art. 6(1)(f) GDPR; (c) where applicable
Purchase & payment
Name, address, e-mail, order details, payment references
Art. 6(1)(b) GDPR
Theme / preferences
Preference value (local / cookie
Art. 6(1)(a) GDPR (consent)
Newsletter / marketing
E-mail and optional interests
Art. 6(1)(a) GDPR and national e‑privacy / UWG rules where applicable
Communication
Name, contacts, message content
Art. 6(1)(b) or (f)
Categories of personal data
Identity & contact details: name, billing/shipping address, e‑mail and phone if supplied.
Device & usage metrics plus technically necessary logs (IP, timestamps, User‑Agent) until erased per retention policy.
Communications content from forms, support tickets or e‑mail correspondence.
Hosting, provisioning & shop
Hosts store server‑log meta such as URLs, timestamps, approximate data volume and error hints. This supports availability, security and forensic review after incidents.
Within WooCommerce we collect contract data and lawful retention artefacts (commercial / tax topics). Payments run via processors; ordinarily we never store raw full card numbers.
Shipping carriers may receive data required to fulfil delivery (recipients).
Communication & forms
When you e‑mail us or use our contact flows we process supplied details for handling requests — typically Art. 6(1)(b) contracts or Art. 6(1)(f) efficient support. See also our Contact page.
We do not record calls without transparent notice and a legal basis.
Cookies & similar tech
Strictly necessary cookies power core UX (sessions, checkout CSRF safeguards, remembering an existing consent). Optional persistence such as storing your preferred colour scheme relies on voluntary consent.
Retention & deletion
We erase data once the purpose ends unless statutory retention mandates apply; identifiable server logs are kept only as long as misuse investigation or contractual hosting rules require.
Data subject rights & complaints
Subject to prerequisites you may obtain access, rectification, erasure, restriction and portability plus object where we rely on legitimate interests. Withdraw consent at any time with future effect and without prejudice.
You may lodge complaints with supervisory authorities, e.g. the state commissioner responsible for your place of residence.
Security of processing
We encrypt transport via HTTPS/TLS, enforce least privilege, patch software responsibly and mirror backups proportionate to assessed risk.
Transfers outside the EU/EEA
Processors outside the EU/EEA are engaged only pursuant to GDPR Chapter V (adequacy, SCCs, certifications or exemptions). Supporting documentation may be requested.
Still have questions?
Here for transparency—with human support beside it.
We use cookies to operate this site, remember your consent choice and—only if you consent—persist preferences such as your light/dark theme. See our privacy policy.
