Privacy Policy

Controller for Data Processing

Thank you for your interest in our online shop. Protecting your privacy is very important to us. Below, we provide detailed information about the handling of your data. The processing of your data is based on the GDPR and in accordance with § 165 para. 3 TKG (Austria).

1. Access Data and Hosting

You can visit our websites without providing any personal information. Every time a website is accessed, the web server automatically stores a so-called server log file containing access data such as the IP address, date and time of access, and the requested file. These data are used to ensure the smooth operation of the site and to improve our services in accordance with Art. 6 (1) lit. f GDPR. The log files are deleted no later than seven days after your visit ends.

1.1 Hosting

Hosting and display services are partly provided by our service providers within the scope of processing on our behalf. Access data and form entries are processed on their servers. For inquiries regarding our service providers, please contact us via the details provided in this privacy policy.

1.2 Content Delivery Network (CDN)

To improve loading speeds, we use CDN services. Access data is processed via external servers of our service providers, including those located outside the EU/EEA. The transfer is based on the standard contractual clauses of the European Commission.

2. Contract Processing and Contact

2.1 Contract Processing

In accordance with Art. 6 (1) lit. b GDPR, we process your personal data when you voluntarily provide it as part of your order. Mandatory fields are marked accordingly. After the contract has been fulfilled, your data will be retained in accordance with tax and commercial regulations and then deleted.

Inventory Management System

For processing orders and contracts, we use external inventory management systems that act as processors on our behalf.

2.2 Customer Account

When creating a customer account with your consent (Art. 6 (1) lit. a GDPR), we store your data for future orders. You can delete the account at any time.

2.3 Contact

When you contact us (e.g. via email or contact form), we process your data in accordance with Art. 6 (1) lit. b GDPR for the purpose of handling your inquiry. Required fields are marked accordingly.

3. Shipping Processing

To fulfill our contract with you (Art. 6 (1) lit. b GDPR), we share your data with shipping providers as necessary for delivery.

Data Transfer to Shipping Providers for Delivery Notification

If you explicitly consent (Art. 6 (1) lit. a GDPR), we share your email address and phone number with the shipping provider for delivery notification or coordination. You may revoke your consent at any time.

Shipping Providers:
Österreichische Post AG
Rochusplatz 1, 1030 Vienna, Austria

DPD Direct Parcel Distribution Austria GmbH
Arbeitergasse 46, A-2333 Leopoldsdorf, Austria

4. Payment Processing

For payment processing, we work with technical service providers, financial institutions, and payment service providers.

4.1 Transaction Processing

Depending on the selected payment method, we transfer the necessary data to our partners, who may act either as processors or as independent controllers. In some cases, payment service providers collect the data themselves.

4.2 Fraud Prevention and Payment Process Optimization

We may also share additional data for fraud prevention and to optimize our payment processes. This is based on legitimate interests pursuant to Art. 6 (1) lit. f GDPR.

Identity and Credit Check with Klarna

When choosing Klarna as a payment option, we request your consent (Art. 6 (1) lit. a GDPR) to transfer your data for credit checks. For more information, please refer to the Klarna Privacy Policy. You can revoke your consent at any time.

5. Email Marketing

5.1 Newsletter with Registration & Tracking (with Consent)

If you subscribe to our newsletter, we send it based on your consent (Art. 6 (1) lit. a GDPR). You can unsubscribe at any time via a link in the email or by contacting us.

If you provide separate consent, we analyze your behavior within the newsletter (e.g. opens and clicks) to improve content. This is done using pixel tracking and pseudonymous IDs.

5.2 Newsletter without Registration & Right to Object

If we receive your email address in connection with a purchase, we may send you promotional emails about similar products, unless you object. This is based on legitimate interests (Art. 6 (1) lit. f GDPR) and national laws (§ 7 (3) UWG / § 174 (3) TKG AT). You can object at any time.

5.3 Newsletter Delivery via Service Providers

Delivery may be handled by service providers acting on our behalf. These providers may be located in countries with or without an EU adequacy decision. Legal basis: adequacy decisions or standard contractual clauses.

5.4 Sending Review Requests via Email

With your consent (Art. 6 (1) lit. a GDPR), we may use your email to request a review of your order. These requests may be sent via Trusted Shops.

Trusted Shops informs us whether review requests were successfully delivered. This processing is based on legitimate interest under Art. 6 (1) lit. f GDPR. We and Trusted Shops are jointly responsible under Art. 26 GDPR.

More information is available in the Trusted Shops Privacy Policy and the Membership Terms.

6. Cookies and Other Technologies

6.1 General Information

To make our website user-friendly and enable specific features, we use cookies and similar technologies. Some cookies are technically required (e.g. login, shopping cart), others serve statistical or marketing purposes.

Device Privacy Protection:

Accessing information on your device requires your consent under § 165 (3) TKG unless strictly necessary. Without consent, some features may be unavailable.

Types of Cookies:

• Essential Cookies: Required for core functions like login or shopping cart.
• Functional Cookies: Used for personalization and navigation improvements.
• Analytics/Performance Cookies: Collect anonymized usage data to improve the website.
• Marketing Cookies: Enable interest-based advertising and conversion tracking.

Cookie Settings:

You can adjust cookie settings in your browser: Edge / Safari / Chrome / Firefox / Opera

You can revoke your consent at any time via the privacy policy or using the following link: Privacy Settings

6.2 Consent Manager Platform (CMP)

To manage your consents, we use a Consent Management Platform (CMP), which stores your decisions locally on your device. Provider: Papoo Software & Media GmbH, Bonn, Germany.

The following data is stored: IP address, device type, language, URL, timestamp, selected consents. No data is transmitted to Papoo. Your consents are deleted after 30 days unless renewed.

7. Use of Cookies and Other Technologies

We use third-party technologies on our website for web analytics, advertising, and integration of external content. Processing is usually based on your consent (Art. 6 (1) lit. a GDPR). Details and options to revoke consent can be found in the "Cookies and Other Technologies" section.

7.1 Google Services

Provider: Google Ireland Ltd., Dublin, Ireland. Data may be transferred to servers in the USA based on EU standard contractual clauses. More information: Google Privacy Policy.

Google Analytics

For web analytics purposes, pseudonymous user profiles are created. Your IP address is anonymized before transmission to the USA. We may optionally use Google Signals (cross-device tracking) and the User-ID feature. Data processing is based on a data processing agreement.

YouTube Video Plugin

YouTube content is embedded using extended data protection mode. Data is only transferred to Google when videos are played.

Google Ads (Remarketing & Conversion Tracking)

When visiting our website, a cookie is set to enable interest-based advertising on Google or third-party sites. We may optionally use conversion tracking to measure ad campaign success.

Google Tag Manager

The Tag Manager manages other tools. It does not process personal data itself but may load tags containing data.

7.2 Microsoft Services

Provider: Microsoft Ireland Operations Ltd. Microsoft Advertising (incl. Universal Event Tracking) may collect pseudonymous usage data. Cross-device tracking occurs if you are logged into a Microsoft account.

7.3 Meta/Facebook Services

Provider: Meta Platforms Ireland Ltd. Facebook Pixel tracks your behavior for analysis and advertising. This includes enhanced matching. Pseudonymous profiles allow remarketing and conversion measurement.

7.4 Other Providers

etracker

Provider: etracker GmbH, Hamburg. Usage data is stored in pseudonymized form for analysis purposes. No combination with actual user identities takes place.

Vimeo Video Plugin

When playing Vimeo videos, data is transferred to Vimeo (USA), where Google Analytics is embedded. Vimeo is subject to its own privacy policy.

8. Integration of Trusted Shops Trustbadge / Other Widgets

With your consent (Art. 6 (1) lit. a GDPR), Trusted Shops widgets (e.g. trustbadge, reviews, buyer protection) are embedded on our website. Responsible entity: Trusted Shops SE, Cologne.

Processing is carried out under joint responsibility as per Art. 26 GDPR. For role allocation details, see the Trusted Shops Privacy Policy.

8.1 Integration of the Trustbadge

The trustbadge is provided via a content delivery network (CDN) in the USA. Processing complies with the EU-U.S. Data Privacy Framework or standard contractual clauses.

When loading the trustbadge, server log files (IP address, date/time, data volume, provider) are collected. IP addresses are anonymized immediately. No personal reference is made.

8.2 Data Processing After Order Completion

After completing an order, Trusted Shops may access your order details (e.g. total, order number, email) to offer buyer protection — only with your consent.

The transfer only occurs if you actively opt in. Legal basis: Art. 6 (1) lit. b or a GDPR.

Trusted Shops uses processors for hosting, monitoring, and logging. Transfers to countries such as the USA, UK, or Israel are based on adequacy decisions or standard contractual clauses.

9. Social Media

Our Online Presence on Social Media Platforms

If you visit our profiles on platforms like Facebook, Instagram, YouTube, Pinterest, or LinkedIn and give your consent (Art. 6 (1) lit. a GDPR), your data is processed by the respective platform — especially for analytics and advertising purposes.

Typically, cookies are used to create user profiles. These profiles allow interest-based advertising on and off the platforms.

For more information and opt-out options, see each provider’s privacy policy:

• Facebook / Instagram (Meta):facebook.com/about/privacy
• YouTube (Google):policies.google.com/privacy
• Pinterest:policy.pinterest.com
• LinkedIn:linkedin.com/legal/privacy-policy

Data transfers to third countries (e.g. the USA) are based on adequacy decisions or standard contractual clauses.

10. Contact Options and Your Rights

10.1 Your Rights

You have the following rights as a data subject:

• Art. 15 GDPR: Access to your personal data
• Art. 16 GDPR: Rectification of inaccurate or incomplete data
• Art. 17 GDPR: Erasure of stored data (unless legally required to retain)
• Art. 18 GDPR: Restriction of processing
• Art. 20 GDPR: Data portability
• Art. 77 GDPR: Right to lodge a complaint with a supervisory authority

Right to Object

If we process your data based on legitimate interests (Art. 6 (1) lit. f GDPR), you have the right to object at any time. This applies especially to direct marketing.

10.2 Contact Options