Data protection
Data protection
§ 1 Information about the collection of personal data
(1) Below we provide information about the processing of personal data when using our website. Personal data is all data that can be related to you personally, e.g. name, address, email addresses, user behavior. We would like to inform you about our processing operations and at the same time comply with legal obligations, in particular those arising from the EU General Data Protection Regulation (GDPR).
(2) The person responsible in accordance with Article 4 Para. 7 GDPR is Harald Klein, Rengsdorferstraße 21,
53577 Neustadt Wied,muratkleinmesser@gmail.com
(3) When you contact us by email or via a contact form, the data you provide (your email address, if applicable your name and telephone number) will be stored by us in order to answer your questions. If the request is assigned to a purchase contract, we will delete the data arising in this context after the contract term has expired, otherwise after storage is no longer necessary, or we will restrict processing if there are statutory retention requirements.
(4) If we use commissioned service providers for individual functions of our offer or want to use your data for advertising purposes, we will always carefully select and monitor these service providers and inform you in detail about the respective processes below. We also mention the defined storage period criteria.
§ 2 Your rights
(1) You have the following rights vis-à-vis the person responsible with regard to personal data concerning you:
– right to information,
– Right to rectification or deletion,
– Right to restriction of processing,
– Right to object to processing,
– Right to data portability.
(2) You also have the right to complain to a data protection supervisory authority about our processing of your personal data.
§ 3 Processing of personal data when visiting our website
When using the website for information purposes, i.e. simply viewing it without registering and without you providing us with any other information, we process the personal data that your browser transmits to our server. The data described below is technically necessary for us to display our website to you and to ensure stability and security and must therefore be processed by us. The legal basis is Article 6 Paragraph 1 Sentence 1 Letter f GDPR:
– IP address
– Date and time of the request
– Time zone difference to Greenwich Mean Time (GMT)
– Content of the request (page visited)
– Access status/HTTP status code
– amount of data transferred in each case
– previously visited page
– Browser
– operating system
– Language and version of the browser software.
§ 4 Customer account / order processing
In accordance with Article 6 Paragraph 1 Letter b of the GDPR, personal data will continue to be collected and processed if you provide it to us to execute a contract or when opening a customer account. Which data is collected can be seen from the respective input forms. Your customer account can be deleted at any time and can be done by sending a message to the above address of the person responsible. We store and use the data you provide to process the contract. After the contract has been fully processed or your customer account has been deleted, your data will be blocked in consideration of tax and commercial law retention periods and deleted after these periods have expired, unless you have expressly consented to further use of your data or reserve the right to further use of your data as permitted by law on our part became.
The personal data we collect will be passed on to the transport company commissioned with the delivery as part of the contract processing, to the extent that this is necessary to deliver the goods. We pass on your payment data to the commissioned credit institution as part of payment processing, provided this is necessary for payment processing. If payment service providers are used, we will inform you explicitly about this below. The legal basis for passing on the data is Article 6 Paragraph 1 Letter b GDPR.
§ 5 Payment service providers
(1) PayPal
We offer the option of processing the payment process via the payment service provider PayPal (PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg). This corresponds to our legitimate interest in offering an efficient and secure payment method (Art. 6 Para. 1 lit. f GDPR). In this context, we pass on the following data to PayPal to the extent that it is necessary for the fulfillment of the contract (Art. 6 Para. 1 lit b. GDPR).
First name
Last name
address
E-mail address
Telephone number
The processing of the data provided under this section is not required by law or contract. Without submitting your personal data, we cannot make a payment via PayPal. [You have the option to choose another payment method.]
PayPal carries out a credit check for various services such as direct debit payments to ensure your willingness and ability to pay. This corresponds to PayPal's legitimate interest (according to Art. 6 Para. 1 lit. f GDPR) and serves to execute the contract (according to Art. 6 Para. 1 lit. b GDPR). For this purpose, your data (name, address and date of birth, bank account details) will be passed on to credit agencies. We have no influence on this process and only receive the result of whether the payment has been made, declined or is pending verification.
Further information on objection and removal options against PayPal can be found at:https://www.paypal.com/de/webapps/mpp/ua/privacy-full
Your data will be stored until payment processing is completed. This also includes the time required to process refunds, manage claims and prevent fraud
technical advice
It should be checked whether log files of PayPal events are created, which may contain personal data in plain text.
Legal Notice
No order processing according to Art. 28 GDPR
PayPal is not a processor within the meaning of Art. 4 No. 8 GDPR. There is a personal responsibility. (https://www.lda.bayern.de/media/FAQ_Ablimitung_Auftragsprocessing.pdf)
Miscellaneous
Special features apply when using instant payment notifications (https://developer.paypal.com/docs/api-basics/notifications/ipn/IPNIntro/)
(2) Google Pay
If you choose the “Google Pay” payment method from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), the payment will be processed via the “Google Pay” application on your device with at least Android 4.4 (“KitKat”) operated mobile device with an NFC function by charging a payment card stored with Google Pay or a payment system verified there (e.g. PayPal). In order to approve a payment via Google Pay in the amount of more than €25, you must first unlock your mobile device using the verification measure that has been set up (e.g. facial recognition, password, fingerprint or pattern).
For the purpose of payment processing, the information you provided during the ordering process, along with the information about your order, will be passed on to Google. Google then transmits your payment information stored in Google Pay in the form of a unique transaction number to the originating website, which is used to verify a payment made. This transaction number does not contain any information about the real payment details of your payment methods stored with Google Pay, but is created and transmitted as a one-time valid numerical token. For all transactions via Google Pay, Google only acts as an intermediary to process the payment process. The transaction is carried out exclusively between the user and the source website by debiting the payment method stored with Google Pay.
If personal data is processed during the transfers described, the processing takes place exclusively for the purpose of payment processing in accordance with Article 6 (1) (b) GDPR.
Google reserves the right to collect, store and evaluate certain process-specific information for every transaction made via Google Pay. This includes the date, time and amount of the transaction, merchant location and description, a description of the goods or services purchased provided by the merchant, photographs that you included with the transaction, the name and email address of the seller and buyer, respectively. the sender and recipient, the payment method used, your description of the reason for the transaction and, if applicable, the offer associated with the transaction.
According to Google, this processing is carried out exclusively in accordance with Article 6 (1) (f) GDPR based on the legitimate interest in proper accounting, verification of transaction data and the optimization and functionality of the Google Pay service.
Google also reserves the right to combine the processed process data with other information that is collected and stored by Google when you use other Google services.
The Google Pay terms of use can be found here:
Further information on data protection with Google Pay can be found at the following internet address:
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de
§ 6 Social Media
We use references (“links”) to the social networks Facebook, Google+, Instagram and YouTube on our website based on Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR in order to draw attention to our services and products and to get in touch with you as a visitor and user of these social media sites and our website.
You can recognize the links by the logo of the respective social network. By clicking on the logo, a direct connection is established between your browser and the server of the respective service and you are redirected to the service provider's website.
These are not so-called social plug-ins, where a connection and data transfer to the respective social network is established when our website is accessed. We would like to point out that you use the following services and their functions at your own responsibility. Please also note that when you access the respective networks and platforms, the terms and conditions and data processing guidelines of their respective operators apply. Specifically, these are the following third-party providers:
Facebook, 1 Hacker Way, Menlo Park, California 94025, USA, data protection information at: https://de-de.facebook.com/policy.php
Instagram from Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, data protection information at: