Data protection declaration according to GDPR
Scope and subject matter of the privacy policy
The subject of this data protection declaration is information as to whether and to what extent we collect personal data via our website, which can be accessed at https://www.klekks.com, and for what purpose it is processed. This data protection declaration applies exclusively to the aforementioned website. Insofar as there are links to other sites, we have neither influence nor control over the linked content and the data protection regulations there. We recommend checking the data protection declarations on the websites in order to be able to determine whether and to what extent personal data is collected, processed, used and/or made accessible to third parties.
Definitions and Terms
This data protection declaration is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our data protection declaration should be legible and understandable for the general public as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance.
We use the following terms, among others, in this data protection declaration:
Personal Data
Any information relating to an identified or identifiable natural person (hereinafter "data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or one or more special features that express the physical , physiological, genetic, psychological, economic, cultural or social identity of that natural person.
Affected person
Data subject is any identified or identifiable natural person whose personal data is processed by the data controller.
processing
Processing is any process carried out with or without the help of automated procedures or any such series of processes in connection with personal data such as collecting, recording, organizing, arranging, storing, adapting or changing, reading out, querying, using, disclosure by transmission, distribution or any other form of making available, matching or linking, restriction, deletion or destruction.
Responsible or responsible for processing
The person responsible or responsible for processing is the natural or legal person, authority, institution or other body that alone or jointly with others decides on the purposes and means of processing personal data. If the purposes and means of this processing are specified by Union law or the law of the Member States, the person responsible or the specific criteria for his naming can be provided for by Union law or the law of the Member States.
Name and contact details of the person responsible
Michel Rentsch OHG, Leibnizstr. 28, 10625 Berlin, Germany, represented by Sara Rentsch & Anna Michel.
Purpose and legal basis of the processing of personal data
website call
1a) Personal data
P-address, cookie identifier
1b) Description
When you visit our website, we collect so-called access data and save this in a log file (so-called log file). This access data also includes the IP address. In addition, the name of the website accessed, the file accessed, the date and time of access, the amount of data transferred and notification of successful access, the browser type and version, the operating system, the so-called referrer URL (the previously visited page) and the requesting provider are saved.
In addition, cookies are set when you visit our website. For details about the cookies used on the website, the specific purpose that each cookie serves and a description of how you can delete these cookies, please see the Privacy Opt-Out document.
1c) Purpose of data processing
We collect the log file data, including the IP address, in order to be able to file a criminal complaint with the law enforcement authorities in the event of an attack on our website or our IT infrastructure, or to call in the authorities responsible for averting danger in the event of impending damage, and thus to ensure the functionality to ensure the website. With the help of the cookie identifier, we also receive information about user behavior or search queries and can adapt the offer to the interests of the user on future visits.
1d) Legitimate Interest
The log file data, including the IP address, are used for the technical and design optimization of the website and for securing our systems (e.g. in the context of an attack or security incident). When you visit our website, no personal reference can be made from the data in the log file, including the IP address.
1e) Legal basis
Art. 6 Para. 1 f) GDPR
1h) Provision prescribed or required
The provision of personal data is neither required by law nor by contract. However, without the cookie ID, the service and functionality of our website may be restricted.
The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject is always in accordance with the General Data Protection Regulation and in accordance with the applicable country-specific data protection regulations. By means of this data protection declaration, our company would like to inform the public about the type, scope and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed of the rights to which they are entitled by means of this data protection declaration.
As the person responsible for processing, we have implemented numerous technical and organizational measures to ensure the most complete protection possible for the personal data processed via this website. Nevertheless, Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. For this reason, every person concerned is free to transmit personal data to us in alternative ways, for example by telephone.
Hosting category
For our website presence, we use web hosting providers who process data (log files) in connection with the website on our behalf. The data processing takes place on the legal basis according to Art. 6 Para. 1 f) DSGVO.
Shopify shop system
The underlying system of our website is Shopify, a shop system from Shopify Inc., 150 Elgin St., 8th Fl, Ottawa, ON K2P 1L4, Canada ("Shopify").
In the course of providing the shop system, Shopify processes a range of data: name, e-mail address, delivery and billing address, payment data, company name, telephone number, IP address, information about orders, information about shops visited and shops supported by Shopify and information about the devices and browsers used.
For customers from the European Union, Shopify mainly uses its subsidiary, Shopify International Limited, c/o Intertrust Ireland, 2nd Floor 1-2 Victoria Buildings, Haddington Road, Dublin 4, D04 XN32 when it comes to data processing. Irrespective of this, it is possible that data will also be transmitted to regions outside the European Union. In this context, Shopify guarantees an appropriate level of data protection:
Shopify is certified under: https://www.privacyshield.gov/participant?id=a2zt0000000TNSNAA4&status=Active .
Category registration form
You have the option of registering for the use of our services via our website. We process the data exclusively in connection with your registration, correspondence within the scope of our range of services and for the delivery of your ordered products. If and to the extent that we also pass on personal data to third parties (sponsors, partners and exhibitors), we will obtain your prior express consent.
1a) Personal data
E-mail address, first and last name, company, address
1b) Purpose of data processing
We use the data for the registration process for billing purposes as well as for the processing and delivery of your ordered products.
1c) Recipients of the data
Your personal data will only be passed on to third parties by the service partners and payment service providers involved in the execution of the contract.
1d) Duration of data storage
Until you request deletion of your personal data. Otherwise, the duration of the data storage is based on the statutory retention periods (as far as billing and invoice data are concerned: 10 years)
1e) Legal basis
Art. 6 Para. 1 b) GDPR
1f) Special right of withdrawal
You have the right to withdraw consent to the processing of personal data at any time. The lawfulness of the processing based on the consent up to your revocation remains unaffected.
1g) Provision prescribed or required
The provision of personal data is neither required by law nor by contract. However, it is not possible to use our paid services without this information.
Tracking category
1a) Personal data
IP address, cookie identifier
1b) Description
Tracking tools are used on the website, which, among other things, use cookies and collect the IP address. Tracking tools typically examine where visitors come from, which areas of a website are visited and how often and for how long which subpages and categories are viewed.
1c) Purpose of data processing
The IP address is part of cookies that are stored on the visitor's computer to obtain information about user behavior or search queries. This can prevent this on future visits The offer can be adapted to the interests of the user or targeted advertising can be placed.
1d) Legitimate Interest
With the help of the advertising and tracking tools, we can tailor our offer to our customers and interested parties and increase traffic by placing target group-oriented ads.
Google Analytics
Company: Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA
Tool / description: Google Analytics is a web analysis service. Web analysis is the collection, collection and evaluation of data about the behavior of visitors to websites.
Third country transfer: Yes
Information on data protection: http://www.google.com/policies/ https://support.google.com/analytics/answer/6004245?hl=de
Opt Out: Yes
Google conversion tracking
Company: Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA
Tool / description: Google is, among other things, a provider of advertising and web analysis services. more details
Third country transfer: Yes
Information on data protection: http://www.google.com/policies/
http://www.google.com/policies/technologies/ads/
http://www.google.com/policies/technologies/
Privacy Shield certification
Opt Out: Yes
Google Tag Manager
Company: Alphabet Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA
Tool / Description: Google Tag Manager is a tag management system used by Google to manage JavaScript and HTML tags for tracking and analytics on websites (variants of e-marketing tags, sometimes called tracking pixels or web called beacons) was developed.
Third country transfer: Yes
Information on data protection: http://www.google.com/policies/
http://www.google.com/policies/technologies/ads/
http://www.google.com/policies/technologies/
Privacy Shield certification
Opt Out: –
Google Adwords
Company: Alphabet Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA Tool / Description: Google AdWords is an advertising system from the US company Google Inc. Advertisers can use it to place ads that are primarily based on the search results when they are used of the company's own services.
Third country transfer: Yes
Information on data protection: http://www.google.com/policies/
http://www.google.com/policies/technologies/ads/
http://www.google.com/policies/technologies/
Privacy Shield certification
Opt Out: Yes
Google Remarketing/Retargeting
So-called tracking cookies from Google are used on the website. The cookies store information about which products you have viewed, how you were made aware of the website (ads & affiliate forwarding). On subsequent visits to our affiliate partner sites, we can use the cookie information to display targeted, personalized advertising with products, for example.
We process the data obtained in this way on the basis of your consent in accordance with Art. 6 Para. 1 a) GDPR. The information generated by the cookie about your use of this website (including your IP address) is transmitted to a Google server in the USA and stored there.
Facebook - Website Custom Audiences (Facebook Pixel)
Company: Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA
Tools / Description:
Facebook Custom Audience establishes a direct connection between your browser and the Facebook server. Facebook receives the information that you have visited this website with your IP address. This allows Facebook to associate your visit to our site with your user account.
Third country transfer: Yes
Information on data protection: https://www.facebook.com/about/privacyPrivacy Shield certification
Opt Out: Yes
Hotjar
Company: Hotjar Limited, Level 2, St Julian's Business Centre, 3, Elia Zammit Street, St Julian's STJ 1000, Malta
Tool / description: We use Hotjar to better understand the needs of our users and to optimize the offer on this website. Hotjar's technology gives us a better understanding of our users' experiences (e.g. how much time users spend on which pages, which links they click, what they like and don't like, etc.) and this helps us tailor our offering to our users' feedback to align Hotjar works with cookies and other technologies to collect information about the behavior of our users and their end devices (in particular the IP address of the device (is only recorded and stored in an anonymous form), screen size, device type (unique device identifiers), information about the browser used, location (country only), preferred language used to view our website). Hotjar stores this information in a pseudonymised user profile. The information is not used by Hotjar or by us to identify individual users or combined with other data about individual users.
Third country transfer: Yes
Information on data protection: https://www.hotjar.com/legal/policies/privacy
Opt Out: Yes
1f) Duration of data storage
Details on the cookies, how long they are stored and how you can delete this data (your right to object) can be found under data protection opt-out.
1g) Legal Basis
Art. 6 Para. 1 f) GDPR
1h) Provision prescribed or required
The provision of personal data is neither required by law nor by contract. However, without the cookie ID, the service and functionality of our website may be restricted.
1i) Profiling
With the help of tracking tools, visitor behavior can be evaluated and interests analyzed; See Privacy Opt-Out for details and further details.
Category recommendation buttons social networks.
Our website and our apps make social plug-ins from various social networks available to you under certain circumstances. If you wish to interact with a social network such as Facebook, Instagram or Pinterest (e.g. by registering an account), your activity on our website or via our apps will also be given to the relevant social network. If you are logged into one of these social networks when you visit one of our websites or interact with one of the social plug-ins, the social network may add this information to your respective profile on that network, depending on your privacy settings.
1a) Personal data
IP address, allocation of visit data on our website to your user account, you should be logged in to a social media site
1b) Purpose of data processing
The purpose of integrating this component is to enable our users to disseminate the content of this website, to make this website known in the digital world and to increase our visitor numbers.
1c) Recipients of the data
Company: Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA Tool / Description: The Facebook "Share" button allows people to add a personalized message to links before sharing them on their Facebook timeline, in groups or with share with your friends via a Facebook message.
Third country transfer: Yes
Information on data protection: https://www.facebook.com/about/privacyPrivacy Shield certification
Opt Out: –
Company: Pinterest Inc., 808 Brannan Street, San Francisco, CA 94103, USATool / Description:
Pinterest enables users of the social network, among other things, to publish collections of images and individual images as well as descriptions on virtual pin boards.
Third country transfer: Yes
Information on data protection: https://about.pinterest.com/privacy-policy
Opt Out: –
Company: Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USATool /
Description: Instagram is a free online photo and video sharing service, owned by Facebook Inc.
Third country transfer: Yes
Information on data protection: https://help.instagram.com/155833707900388https://www.instagram.com/about/legal/privacy/ Privacy Shield certification
Opt Out: –
1d) Duration of data storage
Duration of processing and processing the request or until we are requested to delete it.
1e) Legal basis
Art. 6 Para. 1 f) GDPR
1f) Provision prescribed or required
The provision of personal data is neither required by law nor by contract.
Category video, login and software tools
1a) Personal data
IP address, cookie identifier
1b) Description
Video, login and other software tools are used on our website, which, among other things, use cookies and collect the IP address. Login Tools allow visitors to securely register on our site via social network authentication. In doing so, we receive the e-mail address and the user name of the social network, which we process on our servers.
1c) Purpose of data processing
The login function of the social network is done with the proviso that you can use services on our site that require registration.
1d) Legitimate Interest
With the help of the login tools, we can provide users with simple and uncomplicated access to our services. The video function is used to display content on our website. The personal data for interaction with our content is used to improve our media offering
1e) Recipients of the data
YouTube
Company: YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA
Tool / description: YouTube is an Internet video portal that allows video publishers to post video clips free of charge and other users to view, rate and comment on them free of charge.
Third country transfer: Yes
Information on data protection: https://www.youtube.com/yt/about/de/
https://www.google.de/intl/de/policies/privacy/
Opt out: yes
1f) Duration of data storage
Details on the cookies, how long they are stored and how you can delete this data (your right to object) can be found under data protection opt-out.
1g) Legal basis
Art. 6 Para. 1 f) GDPR
1h) Provision prescribed or required
The provision of personal data is neither required by law nor by contract. However, without the cookie ID, the service and functionality of our website may be restricted.
Communication with us via WhatsApp and Facebook Messenger
If you contact us or order our products via WhatsApp, we collect and store the following order-related information from you:
- First and Last Name
- profile name
- phone number
- E-mail address
- birth date
- address
- Products ordered and number of orders
- conversation history
Customer Satisfaction Feedback
The data mentioned will be processed by us for order processing and service requests:
The legal basis for data processing is Article 6 Paragraph 1 Clause 1 Letter b GDPR.
In addition, we use Charles cCom Solutions as a data processor within the meaning of Art. 28 GDPR in order to make the service even more efficient and to improve the relationship with our customers. This solution allows us to resolve incoming customer queries through a centralized platform with an intuitive user interface and automation capabilities for ever-improving customer support based on order and conversation history.
The legal basis for data processing is Article 6 Paragraph 1 Clause 1 Letter f GDPR, whereby the legitimate interests are better customer care and the efficiency of processing customer inquiries.
For our messaging services we use the Whatsapp messenger service from WhatsApp Inc., 1601 Willow Road, Menlo Park, California 94025, USA. Through this messaging platform we can contact you to process orders, request services and you can place orders for our goods with us. The information provided during the chat process is stored on a WhatsApp server in the United States. The transfer takes place as a permitted third-country transfer on the basis of the so-called Privacy Shield between the EU and the USA (see the entry for WhatsApp Inc. ).
For more information, see WhatsApp's privacy policy (whatsapp.com/legal).
Facebook Messenger
Communicate with us via Facebook Messenger
For our messaging services we use the messenger service Facebook Messenger from Facebook Inc., 1601 Willow Road, Menlo Park, California 94025, USA. Through this messaging platform we can contact you for order processing, service requests and promotional purposes and you can place orders for our goods with us. The information provided during the chat process is stored on a Facebook server in the United States. The transmission takes place as a permissible third-country transmission on the basis of the so-called Privacy Shield between the EU and the USA (see the entry for Facebook, Inc.).
For more information, see Facebook's privacy policy (https://www.facebook.com/legal/terms).
Payment type category
You have the option of using the payment services of our cooperation partners via our website to pay for our services or products. When using an internet payment service, your data will be forwarded to this payment service provider. If and to the extent that we also pass on personal data to third parties (sponsors, partners and exhibitors), we will obtain your prior express consent.
In cooperation with Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden, we offer the following payment options. Payment is made to Klarna in each case:
Invoice (Pay Later): The payment period is [14] days from dispatch of the goods/ticket/or, in the case of other services, the provision of the service. The complete billing conditions for the countries in which this payment method is available can be found here: Germany, Finland, Great Britain, Netherlands, Norway, Austria, Sweden, Switzerland.
Sofortüberweisung (SOFORT): Available in Germany, Austria, Belgium, Italy, Spain, Poland and the Netherlands. Your account will be debited immediately after placing the order.
The use of the payment methods invoice, installment purchase and direct debit requires a positive credit check. In this respect, we forward your data to Klarna for the purpose of address and creditworthiness checks as part of the purchase initiation and processing of the purchase contract. Please understand that we can only offer you those payment methods that are permissible based on the results of the credit check. Further information and Klarna's terms of use can be found here. General information about Klarna can be found here. Your personal information will be treated by Klarna in accordance with the applicable data protection regulations and in accordance with the information in Klarna's data protection regulations.
Newsletter category
E-mail advertising with registration for the newsletter
If you register for our newsletter, we use the data required for this or separately provided by you in order to regularly send you our e-mail newsletter based on your consent in accordance with Article 6 Paragraph 1 Sentence 1 lit. Unsubscribing from the newsletter is possible at any time and can be done either by sending a message to the contact option described below or via a link provided for this purpose in the newsletter
After you have unsubscribed, we will delete your e-mail address, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we will inform you in this declaration.
1c) Recipients of the data
KLAVIYO
Company: 60 South Street, Suite 910, Boston, Massachusetts 02111, USA
Tool / description: Klaviyo is an email marketing platform that we use to send our email marketing campaigns and newsletter subscriptions.
Third country transfer: Yes
Information on data protection: https://www.klaviyo.com/privacy/policy
Privacy Shield Certification
Opt-Out: We automatically create unsubscribe forms for all email distribution lists created through Klaviyo.
1d) Duration of data storage
Until we stop using the newsletter or we are asked to delete it (withdrawal of consent).
1e) Legal basis
Art. 6 Para. 1 f) GDPR
1f) Special right of withdrawal
You have the right to revoke your consent to the processing of personal data at any time (unsubscribe from the newsletter). The lawfulness of the processing based on the consent up to your revocation remains unaffected. The contact details for exercising the objection can be found in the imprint of the website. You can always use the link provided for this purpose in the advertising email. There are no costs for this other than the transmission costs according to the basic tariffs. The provider of the newsletter tool is also affected by the revocation, which means that your data will also be irrevocably deleted from this company.
1g) Provision prescribed or required
The provision of personal data is neither required by law nor by contract. However, it is not possible to send the newsletter without this information.
Your rights
You also have the right to request information about the personal data concerned at any time. This includes in particular the right to information about whether and to what extent we process personal data, where this data comes from and for what purpose the processing takes place. In addition, you have the right to have your data corrected or deleted, to request the restriction of processing or to object to the processing. The right to revoke granted consent at any time (e.g. to receive advertising) remains unaffected. You also have the right to complain to a supervisory authority. You can assert all of your rights against us using the contact details given in the "Responsible" section.
Overview of cookies used
Here you can find out how you can object to the processing of your personal data with regard to cookies (web tracking, etc.) and/or how you can independently delete the personal data collected in this way (in particular the IP address). In addition, please note our information on your rights in the data protection declaration.
Categorization of cookies
Depending on their function and purpose, cookies can be divided into four categories: strictly necessary cookies, performance cookies, functional cookies and cookies for marketing purposes. Please note that not all of the cookies listed here may be used if you access our website with a mobile device.
1a) Absolutely necessary cookies (essential cookies)
These are cookies that are required so that you can navigate on our website and use the basic functions of the website, such as the assignment of anonymous session IDs to bundle several related queries to one server.
1b) Performance Cookies
Performance cookies are used to improve the user-friendliness of a website and thus the user experience. Performance cookies collect information about how our websites are used, e.g. the Internet browser and operating system used; Domain name of the website you came from, number of visits, average time spent, and pages viewed. These cookies do not store any information that would allow the user to be personally identified. The information collected using cookies is aggregated and therefore anonymous.
1c) Functional cookies
Functional cookies enable a website to save information that has already been provided (such as user name, language selection or the location where you are) and thus offer the user improved, more personal functions.
1d) Cookies for marketing purposes
Marketing cookies are used to offer content that is more relevant and tailored to the user's interests. They are also used to limit the number of times an ad is shown and to measure and control the effectiveness of advertising campaigns. They register whether or not you have visited a website and what content has been used. This information may be shared with third parties, such as advertisers, where appropriate. These cookies are often linked to third party site functionality.
Management of cookies
You can either delete individual cookies or remove all cookies via your browser settings. You should be able to find information on how to manage your cookies under "Help" or "Settings" in your browser.
You can also find information and instructions on how to delete these cookies or block their storage in advance, depending on your browser provider, at the following links:
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-loeschen-daten-von-websites-entfernen
Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
Google Chrome: https://support.google.com/accounts/answer/61416?hl=en
Opera: http://www.opera.com/de/help
Safari: https://support.apple.com/kb/PH17191?locale=de_DE&viewlocale=de_DE
You can also individually manage the cookies used for advertising by many companies and features. To do this, use the appropriate user tools that have been created as part of self-regulatory programs in many countries, e.g. B. the US site http://optout.aboutads.info/ or the EU site Your Online Choices http://www.youronlinechoices.com/.
Most browsers also offer a so-called "Do Not Track" function, which you can use to indicate that you do not want to be "tracked" by websites. When this feature is turned on, the browser tells ad networks, websites, and applications that you do not want to be tracked for behavioral advertising and the like. Information and instructions on how to edit this function are available from the following links, depending on the provider of your browser:
Mozilla Firefox: https://www.mozilla.org/de/firefox/dnt/
Internet Explorer: https://support.microsoft.com/de-de/help/17288/windows-internet-explorer-11-use-do-not-track
Google Chrome: https://support.google.com/chrome/answer/2790761?co=GENIE.Platform%3DDesktop&hl=en
Opera: http://help.opera.com/Windows/12.10/de/notrack.html
Safari: https://support.apple.com/kb/PH21416?locale=de_DE
For further options on how you can object to the processing of your personal data (in particular the IP address), please refer to the respective "opt-out" notices below.