Privacy Policy

Responsible for Data processing:
Gerald Zanoni
Korneuburger Strasse 68-70, 2
2102
Bisamberg
+436643455306
gerald.zanoni@diybook.at

Thank you for your interest in our online shop. Your privacy is very important to us. The following text will provide in-depth information on how we handle your data.

1. Access data and hosting

You can visit our website without depositing personal information. Whenever you visit any website, the webserver automatically creates a server logfile which contains, among other data, the name of the file you accessed, your IP address, date and time of access, the amount of transferred data and the requested provider (access data).

These access data are only analysed to ensure error free site service and improvement of our offers. According to Art. 6 Abs. 1 S. 1 lit. f DSGVO, this serves to protect our legal interests in keeping the correct display of offers. Seven days after your visit to our site, all access data are deleted.

Hosting services provided by a third party

Hosting and display of our website are provided by a third party on our behalf. This serves to protect our legal interests in keeping the correct display of offers. All data collected in the course of using our website or forms in our online shop are analysed on their servers. Analysis on other servers is only performed in the manner described here.

The party providing these services is located in a country within the EU or the European Economic Area.

2. Data collection and usage for contract forming and contact

If you voluntarily share your personal data (e.g., by placing an order, in the contact form or via e-mail) we will collect them. Required fields are marked because we require those data for forming a contract and/or processing your contact request and cannot respond or send your order without them. The manner of the collected data is obvious form the respective fields and forms. We use the data provided by you according to Art. 6 Abs. 1 S. 1 lit. b DSGVO to respond to your queries and process your orders. When creating a customer account, you consent to Art. 6 Abs. 1 S. 1 lit. a DSGVO and we use these data to create said account. After fulfilling the contract or deletion of your account your data are restricted for further processing and are deleted after the legal retention period has expired, excepting the case of you consenting explicitly to further usage of your data or us reserving usage of your data extending beyond this which is according to the appropriate laws and of which we inform in this notice.

Deletion of your account is possible at any time and can be performed by a message to the contact details provided below or the dedicated option in your customer account.

3. Data transfer

To fulfil the contract according to Art. 6 Abs. 1 S. 1 lit. b DSGVO we share your data with the agency charged with delivery of your order as needed for delivery of your wares. Depending on your choice of payment method we share the payment data you provided with the selected payment provider, the bank or payment providers charged by us. In some cases, payment providers collect these data themselves if you have created an account with them. In these cases, you have to enter your login data during the payment process. The privacy notice of the respective payment provider applies.

Data sharing with delivery agencies

We will share your e-mail and phone number with the chosen delivery agency according to Art. 6 Abs. 1 S. 1 lit. a DSGVO in case they need to contact you for announcement of delivery or delivery customization, providing your explicit consent during or after the order.

Your consent can be revoked at any time by a message to the contact details below or directly with the delivery agency at the following contact details. After you revoke consent we delete all data you provided excepting the case that you explicitly consented to further usage of your data or us reserving usage of your data extending beyond this which is according to the appropriate laws and of which we inform in this notice.


Delivery agency contact details

DHL Paket GmbH
Sträßchensweg 10
53113
Bonn

DPD Deutschland GmbH
Wailandtstraße 1
63741
Aschaffenburg

4. E-Mail newsletter and postal advertisements

E-Mail-ads with your sign up for our newsletter

If you sign up for our newsletter we use the data you provided for this reason to send a regular newsletter to your e-mail account since you consented to this process according to Art. 6 Abs. 1 S. 1 lit. a DSGVO.

Cancelling the newsletter service is possible at any time by a message to the contact details below or through a link in the newsletter you receive. After your cancellation we delete the e-mail you provided excepting the case that you explicitly consented to further usage of your data or us reserving usage of your data extending beyond this which is according to the appropriate laws and of which we inform in this notice.

The newsletter is sent by a third party charged by us with whom we share your e-mail for this purpose. This third party is located in the U.S. and is certified for the EU-US-Privacy Shield. A current certificate can be inspected here. Under this agreement between the US and the European Commission, the European Commission is satisfied that parties certified for the Privacy Shield protect their data sufficiently.

Postal ads and right to object

Furthermore, we may use your first and your family name as well as your postal address for purposes of advertisements, e.g. sending you interesting offers and information about our products via the postal service. According to Art. 6 Abs. 1 S. 1 lit. f DSGVO, this serves to protect our legal interests in communicating advertisements to our customers.

5. Integration of Trusted Shops Trustbadge

Trusted Shops Trustbadge is integrated into our website to display the Trusted Shops certificate and to offer the Trusted Shops products to customers after placing an order. According to Art. 6 Abs. 1 S. 1 lit. f DSGVO, this serves to protect our legal interests in optimal marketing by providing a secure shopping experience. Trustbadge and the services advertised therein are an offer of the Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Köln. Trustbadge is provided by a CDN service (Content-Delivery-Network). Trusted Shops GmbH also uses provider located in the US. An appropriate amount of data protection is certified. Further information on privacy and personal data protection used by Trusted Shops GmbH can be found here.

Whenever Trustbadge is executed, the webserver automatically creates a server logfile which contains, among other data, the name of the file you accessed, your IP address, date and time of access, the amount of transferred data and the requested provider (access data). Some access data are saved to a security database for analysis of security risks. 90 days after creation, all logfiles are deleted automatically.

Further personal data are transferred to Trusted Shops GmbH if you decide to use Trusted Shops products after completing an order or if you already registered there. The contract you formed with Trusted Shops applies. To this end, your personal data are automatically pulled from your order details. Using your e-mail, hashed via cryptographic one-way function, as a neutral parameter, the system automatically verifies whether you are already registered for product use. Your e-mail is converted into a hash value not decryptable by Trusted Shops before being transferred. After checking for match, the parameter is deleted automatically. According to Art. 6 Abs. 1 S. 1 lit. f DSGVO, this is necessary for protection of the customer and transactional rating linked to the order.
Further details on this and other topics, e.g. objection, are found in the privacy notice linked above and in Trusted Shops proprietary privacy notice.

6. Cookies and Web analysis

We are using so-called cookies on various sites to make visiting our website attractive and to enable the use of specialised functions, to show appropriate products and for marketing purposes. According to Art. 6 Abs. 1 S. 1 lit. f DSGVO, this serves to protect our legal interests in optimizing the display of our offers. Cookies are small text files which are saved to your device. Some of the cookies we use are deleted after you close your browser (session cookies). Others stay on your device and make it possible for us to recognize your browser the next time you visit (persistent cookies). You can look up save duration in the cookie settings of your web browser. You can configure your browser to inform you of cookie setting and let you accept or decline individual cookies. Every browser processes cookie configuration differently. You can find information on your individual browser’s cookie handling and settings in its help menu. You can find the help menu for the respective browsers under the following links:

Internet Explorer™: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
Safari™: https://support.apple.com/de-de/guide/safari/sfri11471/12.0/mac/10.14
Chrome™: https://support.google.com/chrome/answer/95647?hl=de&hlrm=en
Firefox™ https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
Opera™ : https://help.opera.com/de/latest/web-preferences/#cookies

If you choose to decline cookies, our website may not function properly.

Using Google (Universal) Analytics for web analysis

This website uses Google (Universal) Analytics for site analysis if you consented according to Art. 6 Abs. 1 S. 1 lit. a DSGVO. The site analysis service is offered by Google Ireland Limited, a company maintained under Irish jurisdiction located in Gordon House, Barrow Street, Dublin 4, Ireland. (www.google.de). Google (Universal) Analytics uses methods which enable an analysis of your usage of this website, e.g. concerning cookies. The information about your usage of this site are collected automatically and are usually transferred to and stored on a Google server in the US. By using IP anonymisation on this website, the IP address is shortened before transmission to states of the European Union or other states who are members of the European Economy. Only in a few exceptions is the full IP address transmitted to a Google Server in the US and shortened there. Your browser’s anonymized IP address is principally not joined with other Google data. After the analysis is finished on our end, all data collected for Google Analytics are deleted.

The American company Google LLC is certified for the EU-US-Privacy Shield concerning information transmitted to and stored on US Google servers. A current certificate can be inspected here. Under this agreement between the US and the European Commission, the European Commission is satisfied that parties certified for the Privacy Shield protect their data sufficiently.

You can withdraw your consent at any time by downloading and installing the browser plugin available here: https://tools.google.com/dlpage/gaoptout?hl=de. By doing so, you prevent the collection of data generated by the cookie and concerning your usage of the website (including your IP address) and data processing by google.

Alternatively, you can use this link to prevent Google Analytics from collecting your data on this website. This will deposit an Opt-Out cookie on your device. If you delete your cookies you will be asked for consent again.

7. Online-Marketing

Google Ads Remarketing

We advertise for this site in Google search results and third party websites via Google Ads. For this purpose, our site sets a so-called Remarketing Cookie (by Google) which enables interest based advertisements using a pseudonym CookieID and the sites you visit as a basis. According to Art. 6 Abs. 1 S. 1 lit. f DSGVO, this serves to protect our legal interests in optimizing marketing for our website. After the analysis is finished on our end, all data collected for Google Remarketing are deleted.

Further data processing only takes place is you consented to Google linking your web and app history to your Google account and using information from your Google account to personalize web ads. In this case, if you are logged into your Google account while visiting our site, Google will use your data together with data from Google Analytics to create and define target audience groups for device spanning remarketing. Your personal data are transiently linked to Google Analytics data for this purpose. Google Ads is a service offered by Google Ireland Limited, a company maintained under Irish jurisdiction located in Gordon House, Barrow Street, Dublin 4, Ireland. (www.google.de) If information is transferred to US servers by Google, the American company Google LLC is certified for the EU-US-Privacy Shield concerning information transmitted to and stored on US Google servers. A current certificate can be inspected here. Under this agreement between the US and the European Commission, the European Commission is satisfied that parties certified for the Privacy Shield protect their data sufficiently.

You can deactivate the remarketing cookie using this link. Further information concerning cookie settings and adjusting options can be found at the Digital Advertising Alliance.

Google reCAPTCHA

Some forms on this site use the Google reCAPTCHA service for protection against misuse. Google reCAPTCHA is a service offered by Google Ireland Limited, a company maintained under Irish jurisdiction located in Gordon House, Barrow Street, Dublin 4, Ireland. (www.google.de) This service prevents automated software (so-called bots) from disruptive activity on our website by demanding a manual input checkpoint. According to Art. 6 Abs. 1 S. 1 lit. f DSGVO, this serves to protect our legal interests in protecting our website and keeping our online presence free of disruption.

Google reCAPTCHA uses verification methods, e.g. cookies, which permit the analysis of your usage of this website by way of a code, so-called JavaScript, integrated into our website. The information about your usage of this website, including your IP address, is collected automatically, usually transferred to a US Google server and stored there. Google reCAPTCHA also analyses other cookies saved to your browser by Google services.

The personal data entered in the respective website forms is not read or stored. If information is transferred to US servers by Google, the American company Google LLC is certified for the EU-US-Privacy Shield concerning information transmitted to and stored on US Google servers. A current certificate can be inspected here. Under this agreement between the US and the European Commission, the European Commission is satisfied that parties certified for the Privacy Shield protect their data sufficiently.

You can prevent collection and analysis of data about your activity on this site (including your IP address) by Google through the JavaScript or the cookie by configuring your browser to prevent execution of JavaScripts or cookie setting. Please note that this may restrict functionality of our online offers for you.

Further information on Google privacy policy can be found here.

8. E-mail rating reminders

Rating reminders by Trusted Shops

If you gave your explicit consent according to Art. 6 Abs. 1 S. 1 lit. a DSGVO during or after your order, we share your e-mail with Trusted Shops GmbH, Subbelrather Str. 15c, 50823 Köln (www.trustedshops.de) so they can send you e-mail reminders.

Consent can be revoked at any time by sending a message to the contact details below or directly with Trusted Shops.

9. Contact details and your rights

You have the following rights:

  • According to Art. 15 DSGVO you may demand information about your personal data which is processed by us (to the extent laid out in said article);
  • According to Art. 16 DSGVO you may demand the rectification or completion of the personal data we stored on you;
  • According to Art. 17 DSGVO you may demand deletion of your saved personal data, except when further processing is necessary for
    - exercising the legal right for free expression and information;
    - fulfilling a legal obligation;
    - reasons of public interest or
    - stating, exercising or defending legal claims;
  • According to Art. 18 DSGVO you may demand restriction of processing of your personal data, insofar as
    - you find a mistake in said data;
    - processing is illegal, but you decline deletion of said data;
    - we no longer need the data, but you need them for stating, exercising or defending legal claims or
    - you objected to processing of said data according to Art. 21 DSGVO;
  • According to Art. 20 DSGVO you may demand to receive the personal data provided by you or demand the data to be transmitted to another responsible party in a common structured and machine-readable format;
  • According to Art. 77 DSGVO you may complain to an authority. You can choose your local authority, the authority located in your place of work or the authority at our corporate seat.

Should you have questions concerning the collection, processing or usage of your personal data or need information, rectification, restriction or deletion of data or in case of withdrawal of consent or objection to a specified usage of data please use our contact details to get in touch with us.*********************************************************

Right to object

You can object to future processing of your personal data which we process in the course of our interests as described above. Should processing be performed with the intention of direct marketing, you can exercise this right at any time. Should processing be performed for other reasons, your right to object is only valid if reasons arise from a set of special circumstances.

Should you exercise your right to object, we will not process your personal data further for these reasons, except if we can prove compelling reasons for processing which overrule your interests, rights and freedom, or if processing serves stating, exercising or defending of legal claims.

The above does not apply if processing serves direct marketing. In this case, we will not process your personal data further for this purpose.

Copyright © 2019 diybook. All rights reserved.