Privacy policy
Privacy policy
1. Introduction
the following information, we would like to give you as a "data subject" an overview of the processing of your personal data by us and your rights under data protection laws. In principle, it is possible to use our website without entering personal data. However, if you wish to make use of special services provided by our company via our website, it may be necessary to process personal data. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain your consent.
The processing of personal data, such as your name, address or e-mail address, is always carried out in accordance with the General Data Protection Regulation (GDPR) and in accordance with the country-specific data protection regulations applicable to the "Model Client". By means of this privacy policy, we would like to inform you about the scope and purpose of the personal data collected, used and processed by us.
As the controller of the processing, we have implemented numerous technical and organizational measures to ensure the most complete protection possible of the personal data processed via this website. Nevertheless, Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. For this reason, you are free to submit personal data to us by alternative means, for example by telephone or post.
2. The responsible
Controller within the meaning of the GDPR is:
Juri Podlipaev
jp60
Wuerzburger Str. 32
97228 Rottendorft
Germany
Phone: +4915208944149
E-Mail: info@jp60.de
3. Definitions
The privacy policy is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our privacy policy is intended to be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance.
We use the following terms in this Privacy Policy, among others:
1. Personal data
Personal data is any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
2. Data subject
Data subject is any identified or identifiable natural person whose personal data is processed by the controller (Juri Podlipaev).
3. Processing
Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination; the restriction, deletion or destruction.
4. Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of restricting its future processing.
5. Profiling
Profiling means any form of automated processing of personal data consisting of the use of such personal data in order to evaluate certain personal aspects relating to a natural person, in particular in order to assess aspects relating to that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements. analyze or predict.
6. Pseudonymisation
Pseudonymisation is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is stored separately and is subject to technical and organisational measures to ensure that the personal data does not belong to an identified or identified person. identifiable natural person.
7. Processor
Processor means a natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.
8. Recipient
Recipient means a natural or legal person, public authority, agency or other body to which personal data is disclosed, whether or not it is a third party. However, public authorities that may receive personal data in the context of a specific investigative mandate under Union or Member State law are not considered recipients.
9. Third party
means a natural or legal person, public authority, agency or other body other than the data subject, the controller, the processor and the persons who, under the direct authority of the controller or processor, are authorised to process the personal data.
10. Consent
Consent is any freely given, specific, informed and unambiguous indication of the data subject's wishes in the form of a statement or other unambiguous affirmative action by which the data subject signifies that he or she agrees to the processing of personal data concerning him/her.
4. Legal basis of processing
Art. 6 (1) (a) GDPR (in conjunction with § 15 (3) TMG) serves our company as the legal basis for processing operations in which we obtain consent for a specific processing purpose.
If the processing of personal data is necessary for the performance of a contract to which you are a party, as is the case, for example, in the case of processing operations necessary for the supply of goods or the provision of any other service or consideration, the processing is based on Art. 6 (1) (b) GDPR. The same applies to such processing operations that are necessary to carry out pre-contractual measures, such as in cases of enquiries about our products or services.
If our company is subject to a legal obligation that requires the processing of personal data, such as for the fulfilment of tax obligations, the processing is based on Art. 6 (1) (c) GDPR.
In rare cases, the processing of personal data may become necessary to protect the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, a hospital or other third parties. In that case, the processing would be based on Art. 6 (1) (d) GDPR.
Ultimately, processing operations could be based on Art. 6 (1) (f) GDPR. Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to safeguard a legitimate interest of our company or of a third party, provided that the interests, fundamental rights and freedoms of the data subject do not prevail. We are permitted to carry out such processing operations in particular because they have been specifically mentioned by the European legislator. In this respect, he took the view that a legitimate interest could be assumed if you are a customer of our company (Recital 47 sentence 2 GDPR).
5. Transfer of data to third parties
There will be no transfer of your personal data to third parties for purposes other than those listed below.
We will only share your personal information with third parties if:
1. you have given your express consent to this in accordance with Art. 6 (1) sentence 1 (a) GDPR,
2. the disclosure is permissible in accordance with Art. 6 (1) sentence 1 (f) GDPR to protect our legitimate interests and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,
3. in the event that that there is a legal obligation for the disclosure pursuant to Art. 6 (1) sentence 1 (c) GDPR, and
4. this is legally permissible and necessary pursuant to Art. 6 (1) sentence 1 (b) GDPR for the execution of contractual relationships with you.
In order to protect your data and, if necessary, to enable us to transfer data to third countries (outside the EU/EEA), we have concluded data processing agreements based on the European Commission's Standard Contractual Clauses.
6. Technology
6.1 SSL/TLS encryption
This site uses SSL or TLS encryption to ensure the security of data processing and to protect the transmission of confidential content, such as orders, login data or contact requests that you send to us as the operator. You can recognize an encrypted connection by the fact that there is a "https://" instead of a "http://" in the address bar of the browser and by the lock symbol in your browser line.
We use this technology to protect the information you transmit.
6.2 Data collection when visiting the website
When you use our website for informational purposes only, i.e. if you do not register or otherwise transmit information to us, we only collect data that your browser transmits to our server (in so-called "server log files"). Our website collects a series of general data and information every time you or an automated system accesses a page. This general data and information is stored in the log files of the server. The following types and versions may be recorded:
1. browser types and versions used,
2. the operating system used by the accessing system,
3. the website from which an accessing system reaches our website (so-called referrers),
4. the sub-websites that are accessed via an accessing system on our website,
5. the date and time of access to the website,
6. an Internet protocol address (IP address),
7. the Internet service provider of the accessing system.
When using this general data and information, we do not draw any conclusions about your person. Rather, this information is required in order to
1. deliver the content of our website correctly,
2. to optimise the content of our website and the advertising for it,
3. to ensure the long-term functionality of our IT systems and the technology of our website, and
4. to provide law enforcement authorities with the information necessary for criminal prosecution in the event of a cyber-attack.
This data and information collected is therefore evaluated by us statistically on the one hand and with the aim of increasing data protection and data security in our company in order to ultimately ensure an optimal level of protection for the personal data we process. The data of the server log files are stored separately from all personal data provided by a data subject.
The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the purposes of data collection listed above.
6.3 Hosting by Shopify
We use the shop system of the service provider Shopify International Limited, Victoria Buildings, 2nd floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland ("Shopify"), for the purpose of hosting and displaying the online shop on the basis of processing on our behalf. All data collected on our website is processed on Shopify's servers. As part of Shopify's aforementioned services, data may also be transmitted as part of further processing on behalf of Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada, Shopify Data Processing (USA) Inc., Shopify Payments or Shopify (USA) Inc. In the event that data is transferred to Shopify Inc. in Canada, the appropriate level of data protection is guaranteed by an adequacy decision of the European Commission. For more information on Shopify's privacy, please visit the following website: https://www.shopify.de/legal/datenschutz. Further processing on servers other than those of Shopify mentioned above will only take place within the scope specified below.
6.4 Encrypted payment transactions
If there is an obligation to transmit your payment data (e.g. account number in the case of direct debit authorisation) to us after the conclusion of a fee-based contract, this data will be required for payment processing.
Payment transactions via the usual means of payment (Visa/MasterCard, direct debit) are carried out exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the address bar of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.
We use this technology to protect the information you transmit.
7. Cookies
7.1 General information about cookies
We use cookies on our website. These are small files that are automatically created by your browser and stored on your IT system (laptop, tablet, smartphone, etc.) when you visit our site.
The cookie stores information that arises in connection with the specific end device used. However, this does not mean that we will immediately become aware of your identity.
On the one hand, the use of cookies serves to make the use of our offer more pleasant for you. For example, we use so-called session cookies to recognise that you have already visited individual pages of our website. These are automatically deleted after leaving our site. In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your device for a certain set period of time. If you visit our site again to use our services, it will automatically recognize that you have already been with us and which entries and settings you have made so that you do not have to enter them again.
On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimising our offer for you. These cookies allow us to automatically recognise that you have already been to us when you visit our site again. These cookies are automatically deleted after a defined period of time.
7.2 Legal basis for the use of cookies
The data processed by cookies, which are required for the proper functioning of the website, are thus necessary to protect our legitimate interests as well as those of third parties in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
For all other cookies, you have given your consent to this via our opt-in cookie banner within the meaning of Art. 6 (1) (a) GDPR.
8. Content of our website
8.1 Data processing when opening a customer account and for the execution of a contract
In accordance with Art. 6 (1) (b) GDPR, personal data is collected and processed if you provide it to us for the purpose of executing a contract or opening a customer account. The data collected can be seen from the respective input forms. Your customer account can be deleted at any time and can be done by sending a message to the above-mentioned address of the controller. We store and use the data you provide for the purpose of processing the contract. After the contract has been fully processed or your customer account has been deleted, your data will be blocked in consideration of retention periods under tax and commercial law and deleted after these periods have expired, unless you have expressly consented to further use of your data or we have reserved the right to further use of your data as permitted by law, about which we will inform you accordingly below.
8.2 Data processing for order processing
The personal data collected by us will be passed on to the transport company commissioned with the delivery in the context of contract processing, insofar as this is necessary for the delivery of the goods. We will pass on your payment data to the commissioned bank as part of the payment processing process, if this is necessary for the payment processing. If payment service providers are used, we provide explicit information about this below. The legal basis for the disclosure of the data is Art. 6 (1) (b) GDPR.
8.3 Conclusion of contracts with the online shop, retailer and shipping of goods
We only transmit personal data to third parties if this is necessary in the context of the execution of the contract, for example to the companies entrusted with the delivery of the goods or the bank commissioned with the payment processing. The data will not be transmitted further or will only take place if you have expressly consented to the transfer. Your data will not be passed on to third parties without explicit consent, for example for advertising purposes.
The basis for data processing is Art. 6 (1) (b) GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures.
8.4 Contacting us / contact form
Personal data is collected when contacting us (e.g. via contact form or e-mail). The data collected in the case of a contact form can be seen from the respective contact form. This data will be stored and used exclusively for the purpose of answering your request or for contacting you and the associated technical administration. The legal basis for the processing of the data is our legitimate interest in answering your request in accordance with Art. 6 (1) (f) GDPR. If your contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 (1) (b) GDPR. Your data will be deleted after your request has been processed, this is the case if it can be inferred from the circumstances that the facts in question have been conclusively clarified and provided that there are no statutory retention obligations to the contrary.
9. Payment provider
9.1 Klarna
We have integrated Klarna components on our website. Klarna is an online payment service provider that allows purchase on account or flexible payment in installments. Klarna also offers other services, such as buyer protection or an identity and credit check.
Klarna's operating company is Klarna AB, Sveavägen 46, 111 34 Stockholm, Sweden.
If you select either "purchase on account" or "installment purchase" as a payment option during the ordering process in our online shop, your data will be automatically transmitted to Klarna. By selecting one of these payment options, you consent to the transfer of personal data required for the processing of invoice or instalment purchases or for identity and credit checks.
The personal data transmitted to Klarna is usually first name, last name, address, date of birth, gender, email address, IP address, telephone number, mobile phone number and other data necessary to process an invoice or instalment purchase. For the processing of the purchase contract, such personal data in connection with the respective order is also necessary. In particular, there may be a reciprocal exchange of payment information, such as bank details, card number, expiry date and CVC code, number of items, item number, data on goods and services, prices and tax charges, information about previous purchase behavior or other information about your financial situation.
The transmission of the data is intended in particular for identity verification, payment administration and fraud prevention. We will transfer personal data to Klarna in particular if there is a legitimate interest in the transfer. The personal data exchanged between Klarna and us is transmitted by Klarna to credit reference agencies. The purpose of this transfer is to check identity and creditworthiness.
Klarna also passes on the personal data to affiliated companies (Klarna Group) and service providers or subcontractors to the extent that this is necessary for the fulfilment of contractual obligations or the data is to be processed on behalf of Klarna.
In order to decide on the establishment, implementation or termination of a contractual relationship, Klarna collects and uses data and information about the previous payment behaviour of the data subject as well as probability values for his or her behaviour in the future (so-called scoring). The calculation of the scoring is carried out on the basis of scientifically recognized mathematical-statistical methods.
You have the option of revoking your consent to the handling of personal data at any time vis-à-vis Klarna. A revocation does not affect personal data that must be processed, used or transmitted for the purpose of (contractually compliant) payment processing.
The use of Klarna is in the interest of proper and smooth payment processing. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) GDPR.
Klarna's applicable privacy policy can be accessed at https://cdn.klarna.com/1.0/shared/content/policy/data/de_de/data_protection.pdf .
9.2 paydirect
On our website, we offer, among other things, payment via Paydirekt. The provider of this payment service is Paydirekt GmbH, Stephanstr. 14-16, 60313 Frankfurt am Main, Germany (hereinafter referred to as "Paydirekt").
If you make the payment via Paydirekt, Paydirekt collects various transaction data and forwards it to the bank with which you are registered with Paydirekt. In addition to the data required for payment, Paydirekt may collect other data as part of the transaction processing, such as delivery address or individual items in the shopping cart.
Paydirect then authenticates the transaction using the authentication procedure stored with the bank for this purpose. The payment amount will then be transferred from your account to our account. Neither we nor third parties have access to your account details.
The use of paydirect is in the interest of proper and smooth payment processing. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) GDPR.
Details on payment with Paydirekt can be found in Paydirekt's terms and conditions and privacy policy at: https://www.paydirekt.de/agb/index.html.
9.3 PayPal
We have integrated components of PayPal on this website. PayPal is an online payment service provider. Payments are processed via so-called PayPal accounts, which are virtual private or business accounts. In addition, PayPal offers the option of processing virtual payments via credit cards if a user does not have a PayPal account. A PayPal account is managed via an e-mail address, which is why there is no classic account number. PayPal makes it possible to initiate online payments to third parties or to receive payments. PayPal also performs fiduciary functions and offers buyer protection services.
The European operating company of PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.
If you select "PayPal" as the payment option during the ordering process in our online shop, your data will be automatically transmitted to PayPal. By selecting this payment option, you consent to the transfer of personal data required for payment processing.
The personal data transmitted to PayPal is usually first name, last name, address, email address, IP address, telephone number, mobile phone number or other data necessary for payment processing. For the processing of the purchase contract, such personal data in connection with the respective order is also necessary.
The transmission of the data is intended for payment processing and fraud prevention. We will transmit personal data to PayPal in particular if there is a legitimate interest in the transfer. The personal data exchanged between PayPal and us may be transmitted by PayPal to credit reference agencies. The purpose of this transfer is to check identity and creditworthiness.
PayPal may pass on the personal data to affiliated companies and service providers or subcontractors insofar as this is necessary for the fulfilment of contractual obligations or the data is to be processed on behalf of the customer.
You have the option of revoking your consent to the handling of personal data at any time vis-à-vis PayPal. A revocation does not affect personal data that must be processed, used or transmitted for the purpose of (contractually compliant) payment processing.
The use of PayPal is in the interest of proper and smooth payment processing. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) GDPR.
The applicable data protection regulations of PayPal can be accessed at https://www.paypal.com/de/webapps/mpp/ua/privacy-full .
9.4 Sofort
We have integrated components of Sofortüberweisung on this website. Sofortüberweisung is a payment service that enables cashless payment of products and services on the Internet. Sofortüberweisung is a technical procedure through which the online retailer immediately receives a confirmation of payment. This enables a retailer to deliver goods, services or downloads to the customer immediately after the order has been placed.
The operating company of Sofortüberweisung is SOFORT GmbH, Fußbergstraße 1, 82131 Gauting, Germany, part of Klarna Bank AB, (publ), Sveavägen 46, 111 34 Stockholm, Sweden.
If you select "Sofortüberweisung" as the payment option during the ordering process in our online shop, your data will be automatically transmitted to Sofortüberweisung. By selecting this payment option, you consent to the transfer of personal data required for payment processing.
When making a purchase via Sofortüberweisung, you transmit your PIN and TAN to Sofort GmbH. Sofortüberweisung carries out a transfer to us after a technical check of the account balance and retrieval of further data to check the balance of the account. The execution of this financial transaction will be communicated to us automatically.
The personal data exchanged with Sofortüberweisung is first name, last name, address, email address, IP address, telephone number, mobile phone number or other data necessary for payment processing. The transmission of the data is intended for payment processing and fraud prevention. We will also transmit other personal data to Sofortüberweisung if there is a legitimate interest in the transfer. The personal data exchanged between Sofortüberweisung and us may be transmitted by Sofortüberweisung to credit agencies. The purpose of this transfer is to check identity and creditworthiness.
Sofortüberweisung may pass on the personal data to affiliated companies and service providers or subcontractors, insofar as this is necessary for the fulfilment of contractual obligations or the data is to be processed on behalf of the company.
The data subject has the option of revoking the consent to the handling of personal data at any time vis-à-vis Sofortüberweisung. A revocation does not affect personal data that must be processed, used or transmitted for the purpose of (contractually compliant) payment processing.
The use of Sofortüberweisung is in the interest of proper and smooth payment processing. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) GDPR.
The applicable data protection regulations of Sofortüberweisung can be accessed at klarna.com/de/datenschutz/.
9.5 Credit checks (e.g. in the case of purchase on account)
We offer you a wide range of payment options. This may also include the "purchase on account" option. Since we pay in advance with the delivery of the ordered products with this option, we have to protect ourselves from misuse. To this end, we may inquire about the creditworthiness of our customers. As part of the check of your creditworthiness, we obtain information on your previous payment behaviour and creditworthiness information on the basis of mathematical-statistical methods using address data from Arvato Payment Solutions GmbH, Gütersloher Str. 123, 33415 Verl from infoscore Consumer Data GmbH, Rheinstr. 99, 76532 Baden-Baden for German customers or from CRIF GmbH, Diefenbachgasse 35, A-1150 Vienna for Austrian customers. We use the information we receive about the statistical probability of a payment default ("probability value") to make a balanced decision as to whether we can offer the "purchase on account" payment option in a specific case. The order data required for the credit check is transmitted to Arvato Payment Solutions GmbH or infoscore Consumer Data GmbH via a secure interface.
You can object to the transmission of your data to Arvato Payment Solutions GmbH and infoscore Consumer Data GmbH at any time. A message in text form (e.g. e-mail, fax, letter) to the contact addresses listed under section 2 is sufficient for this purpose. However, we would like to point out that in this case you can only pay in advance.
9.6 Shopify Payments
We use the payment service provider "Shopify Payments", 3rd Floor, Europa House, Harcourt Building, Harcourt Street, Dublin 2. If you choose a payment method offered through the payment service provider Shopify Payments, the payment will be processed by the technical service provider Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, to whom we will send your information provided during the order process along with the information about your order (name, address, account number, bank code, credit card number, credit card number, etc.). invoice amount, currency and transaction number) in accordance with Art. 6 (1) (b) GDPR. Your data will be passed on exclusively for the purpose of processing payments with Stripe Payments Europe Ltd. and only to the extent necessary for this purpose. You can find more information about Shopify Payments' privacy policy at the following internet address: https://www.shopify.com/legal/privacy. Data protection information about Stripe Payments Europe Ltd. can be found here: https://stripe.com/de/privacy.
10. Social media appearances
This privacy policy applies to the following social media presence
https://www.instagram.com/jp60_/
https://www.facebook.com/profile.php?id=61573770662172
https://www.pinterest.com/jp60_
https://www.tiktok.com/@jp60__
10.1 Data processing through social networks
We maintain publicly available profiles in social networks. The individual social networks we use can be found below.
Social networks such as Facebook, X etc. can generally analyze your user behavior comprehensively if you visit their website or a website with integrated social media content (e.g., like buttons or banner ads). When you visit our social media pages, numerous data protection-relevant processing operations are triggered. In detail:
If you are logged in to your social media account and visit our social media page, the operator of the social media portal can assign this visit to your user account. Under certain circumstances, your personal data may also be recorded if you are not logged in or do not have an account with the respective social media portal. In this case, this data is collected, for example, via cookies stored on your device or by recording your IP address.
Using the data collected in this way, the operators of the social media portals can create user profiles in which their preferences and interests are stored. This way you can see interest-based advertising inside and outside of your social media presence. If you have an account with the social network, interest-based advertising can be displayed on any device you are logged in to or have logged in to.
Please also note that we cannot retrace all processing operations on the social media portals. Depending on the provider, additional processing operations may therefore be carried out by the operators of the social media portals. Details can be found in the terms of use and privacy policy of the respective social media portals.
10.2 Legal basis
Our social media appearances should ensure the widest possible presence on the Internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR. The analysis processes initiated by the social networks may be based on divergent legal bases to be specified by the operators of the social networks (e.g., consent within the meaning of Art. 6 (1) (a) GDPR).
10.3 Responsibility and assertion of rights
If you visit one of our social media sites (e.g., Facebook), we, together with the operator of the social media platform, are responsible for the data processing operations triggered during this visit. You can in principle protect your rights (information, correction, deletion, limitation of processing, data portability and complaint) vis-à-vis us as well as vis-à-vis the operator of the respective social media portal (e.g., Facebook).
Please note that despite the shared responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are determined by the company policy of the respective provider.
10.4 Storage time
The data collected directly from us via the social media presence will be deleted from our systems as soon as you ask us to delete it, you revoke your consent to the storage or the purpose for the data storage lapses. Stored cookies remain on your device until you delete them. Mandatory statutory provisions - in particular, retention periods - remain unaffected.
We have no control over the storage duration of your data that are stored by the social network operators for their own purposes. For details, please contact the social network operators directly (e.g., in their privacy policy, see below).
10.5 Your rights
You have the right to receive information about the origin, recipient and purpose of your stored personal data at any time and free of charge. You also have the right to object, the right to data portability and the right to file a complaint with the responsible regulatory agency. Furthermore, you can request the correction, blocking, deletion and, under certain circumstances, the restriction of the processing of your personal data.
10.6 Individual social networks
10.6.1 Instagram
We have a profile on Instagram. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Irland.
Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here:
https://www.facebook.com/legal/EU_data_transfer_addendum and
https://de-de.facebook.com/help/566994660333381.
For details on how they handle your personal information, see the Instagram Privacy Policy:
https://privacycenter.instagram.com/policy/.
The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link:
https://www.dataprivacyframework.gov/participant/4452
10.6.2 Facebook
We have a profile on Facebook. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.
Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.
For more information on how Facebook processes your personal data, please refer to Facebook’s Privacy Policy:https://www.facebook.com/privacy/policy/.
The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the US that aims to ensure that US companies comply with European data protection standards. Every company certified under the DPF is obligated to adhere to these data protection standards. For more information, please visit the following link: https://www.dataprivacyframework.gov/participant/4452.
10.6.3 Pinterest
We have a profile at Pinterest. The operator is Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland. Details on how they handle your personal data can be found in the privacy policy of Pinterest:
https://policy.pinterest.com/de/privacy-policy.
10.6.3 TikTok
We have a profile on TikTok. The provider is TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland. Details on how they handle your personal data can be found in the TikTok privacy policy:
https://www.tiktok.com/legal/privacy-policy?lang=en.
Data transmission to third countries is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here:
https://www.tiktok.com/legal/privacy-policy?lang=en.
11. Your rights as a data subject
11.1 Right to confirmation
You have the right to obtain confirmation from us as to whether personal data concerning you is being processed.
11.2 Right to information Art. 15 GDPR
The right to obtain information from us at any time free of charge about the personal data stored about you as well as a copy of this data in accordance with the statutory provisions.
11.3 Right to rectification Art. 16 GDPR
The right to request the rectification of inaccurate personal data concerning you. Furthermore, you have the right to request the completion of incomplete personal data, taking into account the purposes of the processing.
11.4 Right to deletion Art. 17 GDPR
The right to demand that the personal data concerning you be deleted without undue delay, provided that one of the reasons provided for by law applies and insofar as the processing or storage is not necessary.
11.5 Right to restriction of processing Art. 18 GDPR
The right to demand that we restrict the processing if one of the legal requirements is met.
11.6 Right to data portability Art. 20 GDPR
The right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller without hindrance from us to whom the personal data has been provided, provided that the processing is based on consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR or on a contract pursuant to Art. 6 (1) (b) GDPR and the processing is carried out using automated processes, provided that the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.
Furthermore, when exercising your right to data portability in accordance with Art. 20 (1) GDPR, you have the right to obtain that the personal data is transferred directly from one controller to another controller, insofar as this is technically feasible and provided that the rights and freedoms of other persons are not adversely affected.
11.7 Right to objection Art. 21 GDPR
The GDPR has the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you that is carried out on the basis of Art. 6 (1) (e) (data processing in the public interest) or (f (data processing on the basis of a balancing of interests) GDPR.
This also applies to profiling based on these provisions within the meaning of Art. 4 No. 4 GDPR.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is for the establishment, exercise or defence of legal claims.
In individual cases, we process personal data in order to conduct direct marketing. You may object at any time to the processing of personal data for the purpose of such advertising. This also applies to profiling, insofar as it is related to such direct advertising. If you object to us being processed for direct marketing purposes, we will no longer process the personal data for these purposes.
In addition, you have the right to object, on grounds relating to your particular situation, to the processing of personal data concerning you that we carry out for scientific or historical research purposes or for statistical purposes in accordance with Art. 89 (1) GDPR, unless such processing is necessary for the performance of a task carried out in the public interest.
Notwithstanding Directive 2002/58/EC, you are free to exercise your right to object to the use of information society services by means of automated procedures using technical specifications.
11.8 Right to revocation of consent under data protection law
You have the right to revoke your consent to the processing of personal data at any time with effect for the future.
11.9 Right to complaint to a supervisory authority
You have the right to complain to a supervisory authority responsible for data protection about our processing of personal data.
12. Routine storage, deletion and blocking of personal data
We process and store your personal data only for the period necessary to achieve the purpose of storage or if this has been provided for by the legal provisions to which our company is subject.
If the purpose of storage ceases to apply or a prescribed storage period expires, the personal data is routinely blocked or deleted in accordance with the statutory provisions.
13. Duration of storage of personal data
The criterion for the duration of the storage of personal data is the respective statutory retention period. After the expiry of the period, the corresponding data will be routinely deleted, provided that they are no longer required for the performance of the contract or the initiation of a contract.
14. Up-to-dateness and changes to the privacy policy
This privacy policy is currently valid and has the status quo as of March 2025.
Due to the further development of our websites and offers or due to changed legal or official requirements, it may become necessary to change this data protection declaration. The current data protection declaration can be accessed and printed by you at any time on the website at (https://jp60.shop/policies/privacy-policy).