Privacy policy

1. General scope of data processing

Data protection is a high priority in our company. We comply with the General Data Protection Regulation (GDPR), which regulates the processing of personal data uniformly for the entire European Union and other national data protection laws of the member states as well as other data protection regulations.

However, we would like to point out that all data that you view, where you have surfed and all forms that you fill out are almost always stored automatically and without request by the major services (CIA, FBI, NSA, BND, … ).

We collect, process and use personal data only insofar as this is necessary to provide a functional website and to present our offers and provide our services.

As a user, you can visit our website without providing any personal data. Personal data is only collected and used insofar as this is necessary to provide a functional website and our content and services. Your personal data will only be collected and used with your consent. An exception applies in cases where prior consent cannot be obtained for factual reasons or where the collection and processing of data is permitted by law.

For security reasons, we use an SSL certificate on our website to provide secure connections by encrypting all incoming and outgoing data traffic. You can recognize the encryption by the lock symbol in your browser line and by the fact that “https://” is displayed there.

2. Name and address of the person responsible for data processing

The controller within the meaning of the GDPR is: Maxim Kallup

AQUADEA GmbH

Hirschbergstrasse 14

85254 Sulzemoos

Phone: +49 (0) 8135 99 474 55

E-mail: info@aquadea.de

Website: www.aquadea.store

3. Definitions

The terms used in this privacy policy correspond to those in Article 4 GDPR. For the purposes of this Regulation, the term

“personal data” – any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

“data subject” – any identified or identifiable natural person whose personal data is processed by the controller.

“Processing” – any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;

“Restriction of processing” – the marking of stored personal data with the aim of restricting its future processing;

“Profiling” – any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements;

“Controller” – the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;

“Recipient” – a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not it is a third party. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;

“Third party” – a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data;

“Consent” – any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

4. General legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 para. 1 lit. a EU General Data Protection Regulation (GDPR) is the legal basis for the processing of personal data.

In the processing of personal data necessary for the performance of a contract to which the data subject is party, Art. 6 para. 1 lit. b GDPR is the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

Insofar as the processing of personal data is necessary to fulfill a legal obligation to which we are subject, Art. 6 para. 1 lit. c GDPR is the legal basis.

In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR is the legal basis.

If the necessary processing serves to safeguard our legitimate interests or those of a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 para. 1 lit. f GDPR is the legal basis for the processing.

5. Data erasure and storage duration

Your personal data stored by us will be deleted or blocked as soon as the purpose of storage no longer applies. Data may also be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which we are subject, e.g. due to retention and documentation obligations under tax and commercial law. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

6. Collection of technical access data, server log files

Each time you visit our website, our web server automatically collects data and information from the computer system of the computer you are using. The following data is collected:

Browsername und verwendete Version

verwendetes Betriebssystem

Internet-Service-Provider

IP-Adresse

Datum und Uhrzeit des Zugriffs

Menge der gesendeten Daten

Website, von der Sie auf unsere Website gelangen (Referrer-URL)

Name und URL der über unsere Website aufgerufen Dateien

Zeitzonendifferenzherz

http-Statuscode/Zugriffsstatus

Error Information zur Fehleranalyse

Standortdaten

The data is temporarily stored in the log files of the web server we use. This data is not stored together with your other personal data. Your data cannot be assigned by us to any specific person. We only use this technical log data for statistical purposes and to optimize our website and its security. The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.

Temporary storage of the IP address by our web server is necessary to enable delivery of the web pages accessed to your computer. For this purpose, the IP address of the accessing computer must remain stored for the duration of the session. The data is stored in log files to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. The data is not analyzed for marketing purposes in this context. The aforementioned purposes also constitute our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR.

The stored data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. There is therefore no possibility of objection or removal on your part.

7. Use of cookies

We use “cookies” on our website. Cookies are text files that are stored in the Internet browser or by the Internet browser on the computer system accessing the website. When you access a website, a cookie may be stored on the operating system of the computer you are using. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again.

The purpose of using cookies is to simplify the use of websites for you. Some functions of our website cannot be offered without the use of cookies. For these it is necessary that the browser is recognized even after a page change, e.g. log-in information, content of the shopping cart, adoption of language settings, remembering search terms. The user data collected by technically necessary cookies is not used to create user profiles. The data processed by cookies is required for the purposes mentioned to safeguard our legitimate interests in a customer-friendly website design in accordance with Art. 6 para. 1 p. 1 lit. f GDPR required.

Cookies are stored on your computer and transmitted from it to our website. As a user, you therefore have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted at any time. Depending on your browser, this can also be done automatically. You can find setting options for your browser on the website of the respective provider of your browser.

If cookies are deactivated for our website, it may no longer be possible to use all functions of the website to their full extent. The transmission of Flash cookies cannot be prevented via the browser settings, but by changing the Flash Player settings.

8. Comment function in the blog

On our blog (web logbook with contributions from the website operator), you have the opportunity to make individual comments on individual blog posts. If you leave a comment on a published blog post, information about the time you entered the comment and your chosen user name (pseudonym) will be saved and published in addition to the comments you added. We also log the IP address assigned by your internet service provider (ISP). The IP address is stored for security reasons and in the event that you violate the rights of third parties by posting a comment or post illegal content and we have to defend ourselves against this. The aforementioned purposes also constitute our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR. Except in cases of necessary legal defense or in cases prescribed by law, the personal data collected will not be passed on to third parties.

9. Comment function for products

On our product pages, you have the opportunity to make individual comments on individual product offers. If you leave a comment on a product, in addition to the comments you have entered, details of the time you entered the comment and the user name (pseudonym) you have chosen will be saved and published. We also log the IP address assigned by your Internet service provider (ISP). The IP address is stored for security reasons and in the event that you infringe the rights of third parties or post illegal content through a comment and we have to defend ourselves against this. The above purposes also constitute our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR. Except in cases of necessary legal defense or in cases prescribed by law, the personal data collected will not be passed on to third parties.

10. Newsletter

If you have the option of subscribing to a free newsletter on our website, the following applies: When you register for the newsletter, the data from the input screen is transmitted to us. The data requested in the input mask includes your first and last name and your e-mail address so that we can send the newsletter to you personally at your e-mail address. We also ask for the country and federal state in order to send information on region-related campaigns, such as events in specific regions, exclusively to local residents. This enables us to send information on regional campaigns, such as events in specific regions, exclusively to local residents. Finally, we ask for the date of birth so that we can send our subscribers a small gift by e-mail on their birthday. Your consent is obtained for the processing of the data during the registration process and reference is made to this privacy policy. In addition, the IP address of the accessing computer and the date and time of registration are also collected during registration in order to prevent misuse of the services or the e-mail address used or to be able to trace it in the event of a complaint. The aforementioned purposes also constitute our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR.

If you purchase goods or services on our website and enter your e-mail address, we may subsequently use it to send you a newsletter. In such a case, only direct advertising for our own similar goods or services will be sent via the newsletter. No data will be passed on to third parties in connection with the data processing for sending newsletters. The data is used exclusively for sending the newsletter. If you have given your consent, the legal basis for processing the data after you have registered for the newsletter is Art. 6 para. 1 lit. a GDPR. The legal basis for sending the newsletter as a result of the sale of goods or services is Section 7 para. 3 UWG.

Your data will be deleted as soon as it is no longer required for the purpose for which it was collected. Your e-mail address will therefore only be stored for as long as your subscription to the newsletter is active, unless you have expressly consented to further use of your data. You can unsubscribe from the newsletter at any time. There is a corresponding link for this purpose in every newsletter. This also enables you to withdraw your consent to the storage of the personal data collected during the registration process.

11. Customer registration

If you have the option of setting up a customer account on our website and registering by entering your personal data, the following applies: The data is entered into an input mask and transmitted to us and stored. The data will not be passed on to third parties. The following data is collected as part of the registration process: Your first and last name, your postal address, your e-mail address, your telephone number, your fax number, your date of birth, your personal login password. Your consent to the processing of this data is expressly obtained as part of the registration process. The following data is also stored at the time of registration: The IP address of the accessing computer, date and time of registration. The above purposes also constitute our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f DSGVO

Your registration is required to fulfill a contract with you or to carry out pre-contractual measures. By registering, we can quickly and conveniently make the data you have entered available to you again without you having to enter it again. If you have given your consent, the legal basis for processing the data is Art. 6 para. 1 lit. a GDPR. If the registration serves the fulfillment of a contract between you and us or the implementation of pre-contractual measures, the additional legal basis for the processing of the data is Art. 6 para. 1 lit. b GDPR.

Your data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. This is the case during the registration process for the fulfillment of a contract or for the implementation of pre-contractual measures if the data is no longer required for the implementation of the contract. Even after conclusion of the contract, it may be necessary to store personal data of the contractual partner in order to fulfill contractual or legal obligations.

As a user, you have the option of canceling your registration at any time. You can change the data stored about you at any time. To change or delete your data, simply contact us using the contact details given in the legal notice. Ideally, you should send us an e-mail. If the data is required to fulfill a contract or to carry out pre-contractual measures, premature deletion of the data is only possible insofar as contractual or legal obligations do not prevent deletion.

12. Contact form and e-mail contact

If there is a contact form on our website that you can use to contact us electronically, the following applies: If you make use of this option, the data entered in the input mask will be transmitted to us and stored. This data is used to process the contact: your first name, your e-mail address and, if applicable, your last name, your address and your telephone number. Minimum mandatory information is marked. At the time the message is sent, the IP address of the accessing computer and the date and time of registration are also stored in order to prevent misuse of the contact form and to ensure the security of our information technology systems. The aforementioned purposes also constitute our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR.

We will obtain your consent to the processing of the data before sending it and at the same time refer you to this privacy policy. Alternatively, you can also contact us by e-mail. In this case, only the personal data transmitted by you in the e-mail will be stored in order to process the contact. Under no circumstances will your data be passed on to third parties. Your data will only be used for the intended communication. The legal basis for the processing of data with your consent is Art. 6 para. 1 lit. a GDPR. The legal basis for the processing of personal data that you have transmitted to us by email is Art. 6 para. 1 lit. f GDPR. If the e-mail contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. For the personal data from the input screen of the contact form and those sent by email, this is the case when the respective communication with you has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.

You have the option of withdrawing your consent to the processing of personal data at any time. If you have contacted us by e-mail, you can object to the storage of your personal data at any time. The revocation can be made, for example, by sending a revocation e-mail or by letter to our contact addresses shown in the imprint. All personal data stored in the course of contacting us will then be deleted.

13. Data transfer to service partners

We only pass on your personal data to service partners who are involved in processing the contract, e.g. the shipping company commissioned with the delivery, the credit institution commissioned with payment matters, in the case of dropshipping, the supplier/wholesaler. The scope of data transfer to third parties is limited to the necessary minimum, namely your first and last name, your address and, if applicable, your delivery address. The legal basis is Art. 6 para. 1 lit. b GDPR.

In the event that you have expressly given us or, at your request, the service partner your consent to do so, we will also pass on your e-mail address, your telephone number or your date of birth for the purpose of coordinating a delivery date of the shipping company or a necessary identity and credit check of the payment service provider. If you do not give us your consent in this respect, it is not possible to agree a delivery date in advance or to notify you of a delivery or to make a “purchase on account” or “purchase by direct debit” or “installment purchase”. The legal basis for this is Art. 6 para. 1 lit. a GDPR.

You can, of course, revoke your consent at any time with effect for the future vis-à-vis us or vis-à-vis the respective service partner. However, the respective service partner may still be entitled to process your personal data if this is necessary for the contractual performance of the contract.

In particular, we work with the following service providers:

a) Shipping service provider:

DHL

In the event that shipping is carried out via DHL, we will forward your respective data to Deutsche Post AG, Charles-de-Gaulle-Straße 20, 53113 Bonn.

DPD

In the event that shipping is carried out via DPD, we will pass on your respective data to the

DPD Deutschland GmbH, Wailandtstraße 1, 63741 Aschaffenburg, Germany.

Hermes

In the event that the shipment is made via Hermes, we will forward your respective data to Hermes Logistik Gruppe Deutschland GmbH, Essener Straße 89, 22419 Hamburg.

UPS

In the event that the shipment is made via UPS, we will forward your respective data to United Parcel Service Deutschland Inc. & Co. OHG, Görlitzer Straße 1, 41460 Neuss, Germany.

GLS

In the event that the shipment is made via GLS, we will pass on your respective data to the

General Logistics Systems Germany GmbH & Co. OHG, GLS Germany-Straße 1 – 7, 36286 Neuenstein, Germany.

b) Payment service provider

PayPal

When paying via PayPal, credit card via PayPal, direct debit via PayPal or “purchase on account” via PayPal, we pass on your payment data to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”), as part of the payment processing. PayPal reserves the right to carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal or “purchase on account” via PayPal. PayPal uses the result of the credit check with regard to the statistical probability of non-payment for the purpose of deciding on the provision of the respective payment method. The credit report may contain probability values (so-called score values). If score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. Among other things, address data is included in the calculation of the score values. Further data protection information can be found in the PayPal Privacy Policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Amazon Payments

With the Amazon Payments payment method offered by us, you can use your payment data stored at Amazon.de and the payment methods specified to also pay via your Amazon account. If you select the Amazon Payments payment method, payment is processed directly via the payment service provider Amazon Payments Europe s.c.a., 5 Rue Plaetis, L-2338 Luxembourg. To do this, you must first log in to Amazon with your Amazon account details. Amazon Payments uses the information from your Amazon account to identify you and to process the payment in the next step. When paying via Amazon Payments, the terms and conditions and the privacy policy of Amazon Payments Europe S.C.A. apply, which you can view at the following link: https://payments.amazon.de

“SOFORT” bank transfer

If you choose the “SOFORT Überweisung” payment method, payment will be processed by Sofort GmbH (Klarna Group), Theresienhöhe 12, 80339 Munich, Germany, subject to the respective terms of use, which can be viewed at https://www.klarna.com/sofort/. In the course of this, we pass on the information you provide during the ordering process to Sofort GmbH, along with information about your order. You can obtain further information about SOFORT’s data protection provisions at the following Internet address: https://www.klarna.com/sofort/datenschutz

Sofort GmbH is part of the Klarna Group. Therefore, other group companies, in particular Klarna Bank AB (publ), (“Klarna”) may also be included in the credit assessment. Klarna Bank AB (publ) is a company under Swedish law, registered in the Swedish Companies Register under number 556737-0431 with its principal place of business at Sveavägen 46, 111 34 Stockholm, Sweden. By including Klarna, the results of a credit check can be shared with Klarna to a limited extent to improve the results and processed by Klarna for its own future credit checks. Conversely, the credit check and the decisions based on its results for the further execution of the contract can in some cases also be carried out entirely by Klarna. In this case, the relevant positive and negative payment experiences are initially transmitted to Klarna and deleted again after the transaction has been completed. The Klarna privacy policy can be found at the following link: https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy.

14. Tools and plugins from third-party providers

We use third-party tools on our website, e.g. for the analysis of usage data, in order to be able to design our online offers and our website in an optimal and needs-based manner with a view to user-friendliness and optimization. The tools generally use “cookies” (for a definition, see “Cookies” above). The data processing is carried out on the basis of the legal provisions of Art. 6 para. 1 lit. f GDPR (legitimate interest).

In order to respect your privacy, the data that may allow a reference to your person, such as IP address, login or device identifiers, will be anonymized or pseudonymized as soon as possible. No other use, combination with other data or disclosure to third parties takes place. Specifically, the following tools are used:

a) Google Analytics 4

We use Google Analytics 4, a service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), to analyze the use of our websites.

This means that Google Analytics 4 uses so-called “cookies” by default. Cookies are text files that are stored on your device and enable your use of the website to be analyzed. The information generated by the cookie about your use of this website (including the IP address transmitted by your device, shortened by the last digits, see below) is usually transmitted to a Google server, where it is stored and processed. This may also result in information being transferred to the servers of Google LLC, a company based in the USA, where the information is further processed.

When using Google Analytics 4, the IP address transmitted by your end device when using the website is automatically collected and processed only in anonymized form by default. Thus, a direct personal reference of the collected information is excluded. This automatic anonymization takes place by shortening the last digits of the IP address transmitted by your end device by Google within member states of the European Union (EU) or in other contracting states of the Agreement on the European Economic Area (EEA).

Google will use this and other information on our behalf to evaluate your use of the website, to compile reports (reports) on your website activities or your usage behavior and to provide us with further services associated with the use of the website and the Internet. The abbreviated IP address transmitted by your device in this context as part of Google Analytics 4 will not be merged with other Google data. The data collected as part of the use of Google Analytics 4 is stored for 2 months and then deleted.

Google Analytics 4 also enables the creation of statistics with statements about the age, gender and interests of website users on the basis of an evaluation of interest-based advertising and with the inclusion of third-party information via a special function, the so-called “demographic characteristics”. This enables the determination and differentiation of user groups of the website for the purpose of targeting marketing measures. However, the data collected via the “demographic features” cannot be assigned to a specific person and therefore not to you personally. Data collected via the “demographic characteristics” function is stored for two months and then deleted.

All processing described above, in particular the setting of Google Analytics cookies to store and read information on the device you use to access the website, will only take place if you have given us your express consent via the cookie consent tool in accordance with Art. 6 para. 1 lit. a GDPR. Art. 6 para. 1 lit. a DSGVO have given. Without your consent, Google Analytics 4 will not be used when you use the website. You can revoke your consent at any time with effect for the future. To make use of your revocation, please deactivate this service via the “cookie consent tool” provided on the website.

The “Google Signals” service can also be used on our website as an extension of Google Analytics 4. With Google Signals, cross-device reports can be created by Google (so-called “cross-device tracking”). If you have activated “personalized ads” in the settings of your Google account and linked your Internet-enabled devices to your Google account, Google can analyze user behavior across devices and create database models based on this, provided that you have given your consent to the use of Google Analytics in accordance with Art. 6 para. 1 lit. f GDPR. Art. 6 para. 1 lit. a GDPR via our cookie consent tool. The logins and device types of all site visitors who were logged into a Google account and carried out a conversion are taken into account. The data shows, among other things, on which device you first clicked on an ad and on which device the associated conversion took place. If Google Signals is used, we do not receive any personal data from Google, but only statistics that are created on the basis of Google Signals. You have the option of deactivating the “Personalized ads” function in the settings of your Google account and thus switching off the cross-device analysis. To do this, follow the instructions on this page: https://support.google.com/ads/answer/2662922?hl=de

You can find more information here: https://support.google.com/analytics/answer/7532985?hl=de

Google Analytics 4 can also use the “UserIDs” function as an extension on this website. By assigning individual UserIDs, we can have Google create cross-device reports (so-called “cross-device tracking”). This means that your usage behavior can also be analyzed across devices if you have given your consent to the use of Google Analytics in accordance with. Art. 6 para. 1 lit. a GDPR, if you have set up a personal account by registering on this website and are logged into your personal account on various end devices with your respective access data. The data collected in this way shows, among other things, on which device you clicked on an ad for the first time and on which device the corresponding conversion took place.

Due to the use of Google Analytics 4, we have concluded a so-called data processing agreement with Google. This obliges Google to protect the data of our website users and not to pass it on to third parties.

In order to ensure compliance with the European level of data protection even in the event of any transfer of data from the EU or the EEA to the USA and possible further processing there, Google refers to the so-called standard contractual clauses of the European Commission. We have contractually agreed these with Google.

Further legal information on Google Analytics 4, including a copy of the aforementioned standard contractual clauses, can be found at the following link: https://policies.google.com/privacy?hl=en

Details on the processing triggered by Google Analytics 4 and how Google handles data from websites can be found here: https://policies.google.com/technologies/partner-sites

b) Google Adwords Conversion Tracking

For the setting of cookies, we require your informed consent in accordance with. Art. 6 para. 1 lit. a GDPR, which you can give us before activation via a consent window (cookie consent tool).

We use Google Conversion Tracking from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Adwords places a “cookie” on your computer if you have reached our website via a Google ad.

These cookies lose their validity after 30 days and are not used for personal identification. If you visit certain pages of our website while the cookie has not yet expired, Google and we can recognize via our Adword account that you have clicked on a Google ad placed by us and have been redirected to this page.

Each Adwords customer receives a different cookie. Cookies can therefore not be tracked via the websites of Adwords customers. The information collected using the conversion cookie is used to generate conversion statistics for Adwords customers who have opted for conversion tracking. Adwords customers are told the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, we do not receive any information that can be used to personally identify users.

If you do not wish to participate in the tracking process, you can also reject the setting of a cookie required for this – for example, by using a browser setting that generally deactivates the automatic setting of cookies. You can also deactivate cookies for conversion tracking by setting your browser to block cookies from the domain “www.googleadservices.com”. Google’s privacy policy on conversion tracking can be found at the following link: https://services.google.com/sitestats/de.html

c) Google Maps

For the setting of cookies, we require your informed consent in accordance with. Art. 6 para. 1 lit. a GDPR, which you can give us before activation via a consent window (cookie consent tool).

We use Google Maps (API) from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Maps is a web service for displaying interactive (land) maps in order to visualize geographical information. Using this service will show you our location and make it easier for you to find us.

Information about your use of our website (such as your IP address) is transmitted to Google servers in the USA and stored there as soon as you access the subpages in which the Google Maps map is integrated. This takes place regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in to Google, your data will be assigned directly to your account. If you do not wish your data to be associated with your Google profile, you must log out before activating the button. Google stores your data (even for users who are not logged in) as usage profiles and analyzes them.

You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right. Google LLC, based in the USA, is certified for the US-European data protection agreement “Privacy Shield”, which guarantees compliance with the data protection level applicable in the EU.

If you do not agree to the future transmission of your data to Google in the context of the use of Google Maps, you also have the option of completely deactivating the Google Maps web service by switching off the JavaScript application in your browser. Google Maps and thus also the map display on this website can then not be used. You can view Google’s terms of use at http://www.google.de/intl/de/policies/terms/regional.html. The additional terms of use for Google Maps can be found at https://www.google.com/intl/de_US/help/terms_maps.html. Detailed information on data protection in connection with the use of Google Maps can be found on the Google website (“Google Privacy Policy”): http://www.google.de/intl/de/policies/privacy/

d) Google Web Fonts

For the setting of cookies, we require your informed consent in accordance with. Art. 6 para. 1 lit. a GDPR, which you can give us before activation via a consent window (cookie consent tool).

This site uses so-called web fonts provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”) for the uniform display of fonts. When you access a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. For this purpose, the browser you are using must connect to Google’s servers. This informs Google that our website has been accessed via your IP address.

Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/

e) Affiliate – Tracking

If you do not wish cookies to be stored in your browser, you can do so by changing the relevant browser settings. You can deactivate the storage of cookies in your browser under Extras/Internet options, restrict them to certain websites or set your browser to notify you as soon as a cookie is sent. Please note, however, that in this case you must expect a limited display of the online offers and limited user guidance. You can also delete cookies at any time. In this case, the information stored in them will be removed from your end device.

The collection and processing of tracking data can also be deactivated by clicking on this tracking opt-out link:

When you click on the tracking opt-out link, a special cookie is written, which deactivates tracking in the current web browser of the end device. However, tracking is reactivated as soon as you delete the tracking opt-out cookie.

You can see which cookies are used by our tracking technology in detail in the following overview:

Domain

Cookie name

Purpose of the cookie and further information

tsv

This cookie is written when an advertising medium is displayed. This cookie contains a cookie ID and a list with the data about the last view touch points, consisting of time, referrer URL and Admedia code (unique identification of an advertising medium, which contains information about the sales channel, publisher, publisher’s website and advertising medium).

tsc

This cookie is written when an advertising medium is clicked on. This cookie contains a cookie ID, a list with the data about the last click – touch points, consisting of time, referrer URL, ID of the page in the customer’s store system and Admedia code (unique identification of an advertising medium, which contains information about the sales channel, publisher, publisher’s website and advertising medium).

trackingoptout

This cookie is written when the opt-out link is clicked so that tracking is deactivated for the current web browser of this end device.

f) The Trade Desk Websitepixel

For the setting of cookies, we require your informed consent in accordance with. Art. 6 para. 1 lit. a GDPR, which you can give us before activation via a consent window (cookie consent tool).

This website uses the technology of The Trade Desk (TheTrade Desk Ltd, 1 Bartholomew Close, London EC1A 7BL, United Kingdom, https://www.thetradedesk.com/) data is collected and stored for marketing and optimization purposes. Among other things, pseudonymized user profiles can be created from this data. Browser cookies can be used for this purpose. The data collected using The Trade Desk technology is not used by The Trade Desk to personally identify visitors to this website. The collection and storage of data can be revoked here at any time with effect for the future. Further information on data protection at The Trade Desk can be found here.

g) Simplybook.me

We use the service provider Simplybook.me, a product of Simplybook.me Ltd. based in Cyprus, to make appointments.

What personal data is collected here?

Data that you provide to us during registration and while using the system, such as

Ihren Vor- und Nachnamen
Ihre E-Mail-Adresse
Ihre Adresse
Ihre Telefonnummer
etc.

Why do we use your personal data?

um Ihnen hervorragende Dienstleistungen anbieten und Sie einfach und bequem einen Termin mit uns vereinbaren können
um unsere Website besser und effizienter zu gestalten, speichern wir Ihren Namen, Telefonnummer und E-Mail-Adresse, damit ein reibungsloser Kundenkontakt ermöglicht wird
Ihnen die Interaktion mit uns zu ermöglichen
Um Ihnen bei Bedarf Unterstützung zu bieten

What rights do you have as a data subject?

Sie können eine Kopie Ihrer personenbezogenen Daten anfordern und verlangen, dass wir etwas an Ihren personenbezogenen Daten ändern, weil sie falsch sind;
Sie können verlangen, dass wir Ihre personenbezogenen Daten ganz oder teilweise löschen;
uns auffordern, die Verarbeitung Ihrer personenbezogenen Daten vollständig einzustellen;
Sie können verlangen, dass wir Ihre personenbezogenen Daten an ein anderes Unternehmen weitergeben;
die Einwilligung, die Sie uns zur Verarbeitung Ihrer personenbezogenen Daten gegeben haben, zurückzunehmen

We must comply with several legal obligations regarding the retention and deletion of personal data. Therefore, in any case, we will only keep your data for the period necessary for the processing purposes mentioned herein, respecting the “data retention” principle of the GDPR. This means that – as long as you are a user of Simplybook.me – you can edit this data at any time and request deletion by terminating your use of the system. As we keep backup copies of all databases for up to 30 days, this data may remain on our servers for up to 30 days before it is deleted.

h) Clever Push (push notifications)

You can register to receive push notifications. For this purpose, we use the “CleverPush” service, which is operated by CleverPush GmbH, Spaldingstraße 210, 20097 Hamburg (“CleverPush”).

You will regularly receive information about the latest offers on Aquadea products, interesting articles with background knowledge on topics relating to our products, gemstones and materials used, water revitalization, vortex chamber technology and water treatment via our push notifications.

To register for the push messages, you must confirm the request from your browser or end device to receive the notifications. This process is documented and saved by CleverPush. The time of registration and a push token or device ID are stored for this purpose. This data is used on the one hand to send you the push notifications and on the other hand as proof of your registration. The legal basis for this processing is your consent and therefore Art. 6 para. 1 lit. a GDPR.

CleverPush also evaluates our push notifications statistically. CleverPush can thus recognize whether and when our push notifications were displayed and clicked on. This enables us to determine which push notifications are of interest to recipients in order to tailor future messages to the presumed interests of all recipients and thus increase interest in our offer. In addition to the push token or device ID, we also store the thematic focus of the app on which the push notifications were activated (e.g. business, sport, etc.). We also use this information to send push notifications to the relevant subscribers that are in their presumed interests. The legal basis for the processing in each case is Art. 6 para. 1 lit. f GDPR. A push token or device ID is only assigned to a specific person if we are legally obliged to do so, to defend against claims against us, if this is necessary as evidence, and for the possible prosecution of violations of the law.

You can revoke your consent to the storage and use of your personal data to receive our push notifications at any time with effect for the future. Furthermore, you can object to the use of personal data described above on the basis of Art. 6 para. 1 lit. f at any time. Please withdraw your consent for this purpose. You can revoke your consent in the setting provided for receiving push notifications in the settings of your device or browser.

Your data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. Your data will therefore be stored for as long as the subscription to our push notifications is active.

The application process is explained in detail at the following link: https://cleverpush.com/faq.

To speed up the retrieval of content (e.g. images) and to defend against attacks, CleverPush uses the services of cloudflare.com, an offer from Cloudflare, Inc., as part of order processing based on the standard contractual clauses.

CleverPush does not store any data on Cloudflare’s servers that contains personal data, but only general content such as text or images. When you access this content, the device you are using establishes a connection to Cloudflare and the IP address of the device you are using is processed.

i)Google Remarketing

For the setting of cookies, we require your informed consent in accordance with. Art. 6 para. 1 lit. a GDPR, which you can give us before activation via a consent window (cookie consent tool).

We use “Google Remarketing” on our website, a function of the provider Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. This allows us to show you user- and interest-based advertisements via the Google advertising network via your browser if you have previously visited our website (purpose of use).

Google places a cookie in your browser for this purpose. What cookies are has already been explained above (Use of cookies). By setting the cookie, Google is able to recognize the visitor to our website when he or she subsequently visits websites that are also members of the Google advertising network. Each time you visit a website on which the Google Remarketing service has been integrated, your internet browser automatically identifies itself to Google. As part of this technical process, Google receives knowledge of personal data, such as the IP address or the surfing behavior of the user, which Google uses, among other things, to display interest-relevant advertising.

The cookie is used to store personal information, such as the websites visited by the data subject. Each time you visit our website, personal data, including your IP address, is therefore transmitted to Google in the USA. This personal data is stored by Google in the USA. Google may pass on this personal data collected via the technical process to third parties.

You can prevent the setting of cookies by Google at any time via the corresponding settings of the Internet browser you are using and also permanently object to this. In addition, a cookie that has already been set can be deleted at any time via the Internet browser or other software programs. You also have the option of objecting to interest-based advertising by Google. To do this, you must call up the link www.google.de/settings/ads from each of the Internet browsers you use and make the desired settings there.

For the setting of cookies, we require your informed consent in accordance with. Art. 6 para. 1 lit. a GDPR, which you can give us before activation via a consent window (cookie consent tool).

Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.de/intl/de/policies/privacy/.

15. Social media plugins

We use social network buttons (“plugins”) on our website to enable you to interact with and about us. These plugins enable various functions that are specified by the different social networks.

The legal basis for the use of social media plugins in relation to the processing of personal data is Art. 6 para. 1 f GDPR, whereby our legitimate interest lies in the provision of interaction possibilities for the purpose of direct advertising (Recital 47 GDPR) and in the needs-based design of our Internet services for interaction with social networks to which you belong.

a) We use Shariff Share Button for data protection reasons

With Shariff, you can use the integrated social media plugins while protecting your privacy. “Shariff” (ʃɛɹɪf) was developed by the German computer magazine c’t, which allows sharing buttons to be integrated in compliance with data protection regulations and fulfills the requirements of the General Data Protection Regulation (GDPR – Directive (EU) 2016/679). More information about the Shariff project can be found in the Github project or on the information page of the c’t magazine.

The usual social media share buttons transmit your user data to the respective operator each time you visit a page and provide the social networks with precise information about your behavior on the visited website (user tracking). You do not need to be logged in or a member of the network to do this. In contrast, a Shariff button only establishes direct contact between the social network and the visitor when the latter actively clicks on the share button. In this way, Shariff prevents you from leaving a digital trail on every page you visit and improves data protection. Thanks to Shariff, the display of the “likes” only comes from our website.

b) Facebook

We use plugins from the social network “Facebook”, Menlo Park, CA 94025, USA (Facebook). You can recognize the Facebook plugins by the Facebook logo or the “Like” button on our site. You can find an overview of the Facebook plugins here: http://developers.facebook.com/docs/plugins/.

If you activate the plugin, a direct connection is established between your browser and the Facebook server via the plugin. Facebook receives the information that you have visited our site with your IP address. If you click on the Facebook “Like” button while you are logged into your Facebook account, you can link to content from our pages in your Facebook profile.

We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Facebook and that we are not responsible for Facebook’s data processing. Further information on this can be found in Facebook’s privacy policy at http://de-de.facebook.com/policy.php

c) Twitter

We use functions of the social network “Twitter”. These are offered by Twitter Inc, Twitter, Inc. 1355 Market St, Suite 900, San Francisco, CA 94103, USA. By using Twitter and the “Re-Tweet” function, the websites you visit are linked to your Twitter account and made known to other users. Data is also transmitted to Twitter. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Twitter. Further information on this can be found in Twitter’s privacy policy at http://twitter.com/privacy.

d) Instagram

We use functions of the social media plugin (“plugins”) from Instagram. This is operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA (“Instagram”). The plugins are marked with an Instagram logo, e.g. in the form of an “Instagram camera”. An overview of the Instagram plugins and their appearance can be found at the following link: http://instagram.tumblr.com/post/36222022872/introducing-instagram-badges.

When you visit one of our websites that contains an Instagram plugin, your browser establishes a direct connection to Instagram’s servers in the USA. The functions of the Instagram plugin are transmitted directly to your browser and integrated into the page. As a result, Instagram receives the information that your browser has accessed the website you have selected, even if you do not have an Instagram profile or are not currently logged in to Instagram. This information, including your IP address, is transmitted directly from your browser to an Instagram server in the USA and stored there. If you are logged in to Instagram, Instagram can directly associate your visit to our website with your Instagram account. If you interact with the functions of the Instagram plugin, for example by clicking the “Instagram” button, this information is also transmitted directly to an Instagram server and stored there. The information is also published on your Instagram account and can be viewed there by your contacts. The purpose and scope of the data collection and the further processing and use of the data by Instagram as well as your rights in this regard and setting options to protect your privacy can be found in Instagram’s data protection information: https://help.instagram.com/155833707900388/

If you do not want Instagram to assign data collected via our website directly to your Instagram account, you must log out of Instagram before accessing a web page where an Instagram plugin is inserted.

e) Pinterest

We use functions of the social network “Pinterest”. These are offered by Pinterest Inc, 651 Brannan Street, San Francisco, CA 94103, USA. When you use the Pinterest plugin, your browser establishes a direct connection to the servers of Pinterest Inc. which downloads a corresponding Pinterest component from Pinterest. More information about Pinterest can be found at https://pinterest.com. As part of this process, Pinterest receives information about which specific subpage of our website you are visiting. If you are logged in to Pinterest at the same time, Pinterest can assign each page view to your Pinterest account and store this data as well as log data. The log data includes your IP address, the address of websites visited with integrated Pinterest functions, as well as the activities carried out on them (e.g. the “Remember me” button), search histories, browser type and settings, the date and time of your request, your use of Pinterest as well as cookie and device data. If you do not wish to be associated and stored in this way, you must first log out of your Pinterest account. Pinterest’s published privacy policy on the collection, processing and use of personal data by Pinterest is available at https://policy.pinterest.com/de/privacy-policy.

f) YouTube

We use functions of the YouTube service operated by Google, which is operated by YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit one of our pages with a YouTube plugin, a connection to the YouTube servers is established. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account. Further information on the handling of user data can be found in YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy.

16. Rights of the data subject

If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:

Right of access (Art. 15 GDPR) – You can request confirmation from us as the controller as to whether personal data concerning you is being processed by us.

In the case of processing, you can request the following information from us: the purposes for which the personal data are processed; the categories of personal data that are processed; the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed the categories of recipients to whom the personal data concerning you have been or will be disclosed; the envisaged period for which the personal data concerning you will be stored, or, if specific information on this is not possible, the criteria used to determine that period the existence of a right to rectification or erasure of personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing; the existence of a right to lodge a complaint with a supervisory authority; any available information as to the source of the data if the personal data are not collected from the data subject; the existence of automated decision-making, including profiling, referred to in Art. 22 para. 1 and 4 GDPR and – at least in these cases – meaningful information about the logic involved and the scope and intended effects of such processing for the data subject. You also have the right to request information as to whether the personal data concerning you is transferred to a third country or to an international organization. In this context, you may request to be informed of the appropriate safeguards pursuant to Art. Art. 46 GDPR in connection with the transfer.

Right to rectification (Art. 16 GDPR) – You have the right to obtain from the controller without undue delay the rectification and/or completion of inaccurate or incomplete personal data concerning you.

Right to erasure (Art. 17 GDPR) – You have the right to obtain from us, as the controller, the erasure of personal data concerning you without undue delay. In this case, we are obliged to delete this data immediately if one of the following reasons applies: (1) The personal data concerning you is no longer necessary for the purposes for which it was collected or otherwise processed.(2) You revoke your consent on which the processing was based pursuant to Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a GDPR and there is no other legal basis for the processing. (3) You object to the processing pursuant to Art. 21 (1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 (2) GDPR. (4) The personal data concerning you has been processed unlawfully. (5) The deletion of personal data concerning you is necessary to fulfill a legal obligation under Union law or the law of the Member States to which the controller is subject. (6) The personal data concerning you have been collected in relation to the offer of information society services referred to in Art. 8 (1) GDPR.

If we have made the personal data concerning you public and we are obliged pursuant to Art. Art. 17 para. 1 GDPR, we shall take appropriate measures, including technical measures, taking into account the available technology and the implementation costs, to inform data controllers who process the personal data that you, as the data subject, have requested us to delete all links to this personal data or copies or replications of this personal data.

The right to erasure does not exist if the processing is necessary (1) for exercising the right of freedom of expression and information; (2) for compliance with a legal obligation which requires processing by Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller; (3) for reasons of public interest in the area of public health pursuant to Art. 9 para. 2 lit. h and i and Art. 9 para. 3 GDPR; (4) for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes pursuant to Art. Art. 89 para. 1 GDPR, insofar as the right referred to in section a) is likely to render impossible or seriously impair the achievement of the objectives of that processing, or (5) for the establishment, exercise or defense of legal claims.

Right to restriction of processing (Art. 18 GDPR) – You may request the restriction of the processing of personal data concerning you under the following conditions: if you contest the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data; the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead; the controller no longer needs the personal data for the purposes of the processing, but you require them for the establishment, exercise or defense of legal claims, or if you have objected to processing pursuant to Art. 21 (1) GDPR pending the verification whether the legitimate grounds of the controller override your grounds. 1 GDPR and it is not yet certain whether the legitimate reasons of the controller outweigh your reasons.

If the processing of personal data concerning you has been restricted, this data – apart from its storage – may only be processed with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State. If the restriction of processing has been restricted in accordance with the above conditions, you will be informed by the controller before the restriction is lifted.

Right to information (Art. 19 GDPR) – If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort. You have the right vis-à-vis the controller to be informed about these recipients.

Right to data portability (Art. 29 GDPR) – You have the right to receive the personal data concerning you, which you have provided to the controller, in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to which the personal data has been provided, where (1) the processing is based on consent pursuant to Art. 6 (1) GDPR. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR or on a contract acc. Art. 6 para. 1 lit. b GDPR and (2) the processing is carried out by automated means.

In exercising this right, you also have the right to have the personal data concerning you transmitted directly from one controller to another, where technically feasible. The freedoms and rights of other persons must not be affected by this. The right to data portability does not apply to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

17. Right of objection

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Art. 6 para. 1 lit. e or f GDPR; this also applies to profiling based on these provisions.

If you exercise your right to object, we will no longer process the personal data concerning you unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims.

Where your personal data are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes.

Notwithstanding Directive 2002/58/EC, you have the option of exercising your right to object in connection with the use of information society services by means of automated procedures using technical specifications.

18. Right to revoke the declaration of consent under data protection law

You have the right to withdraw your declaration of consent under data protection law at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

19. Automated decision in individual cases including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This does not apply (1) if the decision is necessary for the conclusion or performance of a contract between you and the controller, (2) is permitted by Union or Member State legislation to which the controller is subject and that legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests, or (3) with your express consent.

However, these decisions may not be based on special categories of personal data pursuant to Art. 9 para. 1 GDPR, unless Art. 9 para. 2 lit. a or g applies and suitable measures to safeguard your rights and freedoms and legitimate interests are in place. With regard to the cases referred to in (1) and (3), the data controller shall implement suitable measures to safeguard your rights and freedoms and legitimate interests, at least the right to obtain human intervention on the part of the controller, to express your point of view and to contest the decision.

20 Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR. The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

Photo source: Fotolia / Adobe Stockfotos

21. Further data protection information

If you have any further questions about data protection, please do not hesitate to contact us. Our contact details can be found above under the information on the controller in this privacy policy or in our legal notice.

This privacy policy is provided by RA Kai Harzheim, Hamburg – www.shopabsicherung.de

Status 02.05.2019
Footer

Datei-Upload-Center
Terminvereinbarung
Häufig gestellte Fragen
Anleitung Filter-Wechsel OKATO Serie
Pflegeanleitungen
Filter Schadstoffrückhaltung Gutachten
Affiliate Marketing
Freunde werben Freunde
Kontakt
Lieferinformationen
Impressum
AGB
Datenschutz
Widerrufsrecht
Haftungsausschluss

© AQUADEA GmbH