Privacy Policy

Hinweise zum Datenschutz Datenschutzhinweise nach Art. 13, 14 und 21 DSGVO für die Websites und externe Seiten der Shirtigo GmbH.

1. Introduction

Thank you very much for visiting our website! The protection of your personal data and your privacy is very important to us. We want you to feel not only comfortable but also safe on our website. We therefore commit ourselves as the entity responsible under data protection law to protect your personal data and treat it confidentially.

It is generally possible to use our website without providing any personal data. In addition to the informative use of our website, we use data for marketing and analysis purposes and offer various services on our website that you can use if interested. For this purpose, the provision of personal data is usually necessary. We sometimes use external service providers to process this data, who have been carefully selected and commissioned by us. These service providers are bound by our instructions and are regularly monitored.

Through this privacy policy, our company aims to inform the public about the nature, scope, and purpose of the personal data we collect, use, and process, as well as the associated processes. You will also be informed about your rights. The processing of personal data always takes place in accordance with the General Data Protection Regulation (GDPR) and in compliance with the currently applicable country-specific data protection regulations.

This current privacy policy can be accessed, saved, and printed at any time at the URL https://www.shirtigo.de/privacy.

2. Data controller and contact

The data controller as defined by the General Data Protection Regulation (GDPR), other data protection laws applicable in the Member States of the European Union and other provisions with data protection character is:

Shirtigo GmbH Legally represented by managing director Michael Bröhl
Vitalisstraße 202
50827 Cologne
Germany
‍
Phone: +49 (0)221 / 58 90 1820
‍
Email: info@prinovia.com
Website: https://www.prinovia.com

‍The data protection officer of the data controller is:
‍
Jan Klein
Email: datenschutz@shirtigo.de

Bitte beachten Sie, dass Sie über Links auf unserer Website zu anderen Websites gelangen können, die nicht von uns, sondern von Dritten betrieben werden. Solche Links werden von uns entweder eindeutig gekennzeichnet oder sind durch einen Wechsel in der Adresszeile Ihres Browsers erkennbar. Für die Einhaltung der datenschutzrechtlichen Bestimmungen und einen sicheren Umgang mit Ihren personenbezogenen Daten auf diesen von Dritten betriebenen Websites sind wir nicht verantwortlich.

3. Definition of terms

The privacy policy of Prinovia GmbH is based on the terms used by the European legislator in the adoption of the General Data Protection Regulation (GDPR). Our privacy policy is intended to be easily readable and understandable for the public as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance. In this privacy policy, we use, among other things, the following terms: a) personal data: Personal data means any information relating to an identified or identifiable natural person (hereinafter 'data subject'). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more specific factors expressing the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person. b) data subject: Data subject is any identified or identifiable natural person whose personal data is processed by the data controller. c) processing: We process personal data only to the extent permitted by law. Personal data is only disclosed in the cases described below. Personal data is protected by appropriate technical and organizational measures (e.g. pseudonymization, encryption). The decision on which personal data is processed by us for how long and to what extent we disclose it depends on the specific functions of the website you use.

Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

d) Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of limiting their processing in the future.

e) Profiling
Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning the individual's performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements.

f) Pseudonymization
Pseudonymization means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.

g) Controller or controller responsible for the processing
Controller or controller responsible for the processing is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

h) Processor
Processor is a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.

i) Recipient
Recipient is a natural or legal person, public authority, agency, or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients.

j) Third party
Third party is a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.

k) Consent
Consent means any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her in the given case.

4. Data protection compact

When and how do we collect data?

Personal data is transmitted to us exclusively by means of cookies when visiting our Internet pages or through direct input by the user in forms on our site. By calling up and/or using our Internet pages, we collect, for example, pseudonymized data such as

the browser type,
the sub-pages visited on our Internet site,
the operating system
or the anonymized IP address.

When registering or making a purchase on our Internet pages, it may be necessary to provide personal data such as

Name
First name
salutation
payment data
contact data (e-mail, telephone)
address and order data.

What are the personal data processed and used for?

All personal data collected by us is collected and used exclusively for a specific purpose. Therefore, the following reasons for processing are merely a list. More detailed information on why we collect or need to collect which data can be found in the explanations of this privacy policy.

Provision of tools, products & services
Fulfillment of legal requirements and sales contracts
Processing and delivery of orders
Payment processing
Processing of relevant inquiries about our tools, products & services
Marketing and analysis purposes
Informing about orders, products, services and offers
Optimizing the usability of our website
Improving the shopping experience
Conducting our business activities
Prevention of misuse of our websites
Security mechanisms

Welche Rechte haben Sie?

You have rights to free at any time

information,
correction,
blocking,
revocation and
deletion

Your stored data. A detailed description of data subject rights can be found in this privacy policy.

How can I object to the use of data and exercise my rights?

To exercise the right to object or other rights, you can contact any employee of Prinovia GmbH. You are also free to exercise your right to object to individual data collection processes using automated procedures (opt-out) that use technical specifications.

How long will the personal data be stored and when will it be deleted?

We generally delete your personal data as soon as the purpose for which it was collected no longer applies. In order to comply with commercial/tax and other legal requirements, it may be necessary to block your personal data for further processing.

How does Prinovia GmbH protect personal data?

As the data controller, Prinovia GmbH has implemented numerous technical and organizational measures to ensure the most comprehensive protection of personal data processed via this website. However, internet-based data transmissions can generally have security vulnerabilities, so absolute protection cannot be guaranteed. For this reason, each affected person is free to transmit personal data to us through alternative means, such as by phone.

The website uses the industry standard SSL (Secure Sockets Layer) to encrypt the data transfer. This ensures the confidentiality of your personal information over the Internet. By using the SSL process, your data is alienated in such a way that a third party cannot reconstruct it. It also ensures that your data is only sent to the server from which it was requested.

5. rights of the data subject according to Art. 12 - 23 DSGVO

The exact wording of your rights can be found in Chapter 3 of the GDPR: https://gdpr-law.com/chapter-3/

a) Right to confirmation

Every data subject has the right granted by the European Directive and Regulation to obtain confirmation from the controller as to whether personal data concerning him or her are being processed. If a data subject wishes to exercise this right of confirmation, he or she may, at any time, contact any employee of the controller.

b) Right to information

You may request confirmation from the controller as to whether personal data concerning you are being processed by us.

If such processing is taking place, you may request information from the controller about the following:

(1) the purposes for which the personal data are processed;
(2) the categories of personal data which are processed;
(3) the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;
(4) the planned duration of the storage of the personal data concerning you or, if concrete information on this is not possible, criteria for determining the storage period;
(5) the existence of a right to rectification or erasure of the personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing;
(6) the existence of a right of appeal to a supervisory authority;
(7) any available information on the origin of the data, if the personal data are not collected from the data subject;
(8) the existence of automated decision-making, including profiling, pursuant to Article 22(1) and (4) of the GDPR and, at least in these cases, meaningful information about the logic involved and the scope and intended effects of such processing for the data subject.

You have the right to request information about whether personal data concerning you is transferred to a third country or to an international organization. In this context, you may request to be informed about the appropriate safeguards pursuant to Art. 46 DSGVO in connection with the transfer.

c) Right to rectification

You have a right to rectification and/or completion vis-à-vis the controller, insofar as the processed personal data concerning you are inaccurate or incomplete. The controller shall carry out the rectification without undue delay.

d) Right to erasure (right to be forgotten)

You may request the controller to erase the personal data concerning you without undue delay, and the controller is obliged to erase such data without undue delay, if one of the following reasons applies:

(1) The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
(2) You revoke your consent on which the processing was based pursuant to Art. 6(1)(a) or Art. 9(2)(a) DSGVO and there is no other legal basis for the processing.
(3) You object to the processing pursuant to Art. 21 (1) DSGVO and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 (2) DSGVO.
(4) The personal data concerning you have been processed unlawfully.
(5) The erasure of the personal data concerning you is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.
(6) The personal data concerning you has been collected in relation to information society services offered pursuant to Article 8(1) DSGVO.

If the controller has made the personal data concerning you public and is obliged to erase it pursuant to Article 17(1) of the GDPR, it shall take reasonable measures, including technical measures, having regard to the available technology and the cost of implementation, to inform data controllers which process the personal data that you, as the data subject, have requested that they erase all links to or copies or replications of such personal data.

The right to erasure does not exist to the extent that the processing is necessary to.

(1) for the exercise of the right to freedom of expression and information;
(2) for compliance with a legal obligation which requires processing under Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
(3) for reasons of public interest in the area of public health pursuant to Article 9(2)(h) and (i) and Article 9(3) of the GDPR;
(4) for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Art. 89(1) DSGVO, insofar as the right referred to in section a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing; or
(5) for the assertion, exercise or defense of legal claims.

e) Right to restriction of processing

Any person concerned by the processing of personal data has the right granted by the European Directive and Regulation to obtain from the controller the restriction of processing.

You may request the restriction of the processing of personal data concerning you under the following conditions:

(1) if you contest the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data;
(2) the processing is unlawful and you object to the erasure of the personal data and request instead the restriction of the use of the personal data;
(3) the controller no longer needs the personal data for the purposes of the processing, but you need it for the establishment, exercise or defense of legal claims; or
(4) if you have objected to the processing pursuant to Article 21(1) of the GDPR and it is not yet clear whether the controller's legitimate grounds override your grounds.

If the processing of personal data concerning you has been restricted, such data may - apart from being stored - only be processed with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State.

If the restriction of processing has been restricted in accordance with the above conditions, you will be informed by the controller before the restriction is lifted.

f) Right to data portability

You have the right to receive the personal data concerning you that you have provided to the controller in a structured, common and machine-readable format. You also have the right to transfer this data to another controller without hindrance from the controller to whom the personal data was provided, provided that.

(1) the processing is based on consent pursuant to Art. 6(1)(a) DSGVO or Art. 9(2)(a) DSGVO or on a contract pursuant to Art. 6(1)(b) DSGVO and

(2) the processing is carried out with the help of automated procedures.

In exercising this right, you also have the right to obtain that the personal data concerning you be transferred directly from one controller to another controller, insofar as this is technically feasible. Freedoms and rights of other persons must not be affected by this.

The right to data portability does not apply to processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

g) Right of objection

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6(1)(e) or (f) DSGVO; this also applies to profiling based on these provisions. In this context, we ask you to explain the reasons on the basis of which you object to the processing of your personal data by us.

The controller will no longer process the personal data concerning you unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.

If the personal data concerning you is processed for the purposes of direct marketing, you have the right to object at any time to processing of the personal data concerning you for the purposes of such marketing; this also applies to profiling, insofar as it is related to such direct marketing.

If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes.

The data subject is also free, in connection with the use of information society services, notwithstanding Directive 2002/58/EC, to exercise his/her right to object by means of automated procedures (opt-out) using technical specifications.

h) Automated decisions in individual cases including profiling

Any data subject concerned by the processing of personal data shall have the right, granted by the European Directive and Regulation, not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her, unless the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and the controller, or (2) is permitted by Union or Member State law to which the controller is subject and that law contains suitable measures to safeguard the data subject's rights and freedoms and legitimate interests, or (3) is made with the data subject's explicit consent.

If the decision (1) is necessary for the conclusion or performance of a contract between the data subject and the controller or (2) is made with the explicit consent of the data subject, Prinovia GmbH takes appropriate measures to safeguard the rights and freedoms as well as the legitimate interests of the data subject, including at least the right to obtain intervention by a person on the part of the controller, to present one's own point of view, and to challenge the decision.

If the data subject wishes to exercise the rights concerning automated decisions, he or she may, at any time, contact any employee of the controller.

However, as a responsible company, we do not use automated decision-making or profiling.

I) Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, workplace or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.

The supervisory authority to which the complaint has been submitted shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy pursuant to Article 78 GDPR.

The supervisory authority of Prinovia GmbH is:

State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia.

Helga Block
PO Box 20 04 44
40102 Düsseldorf

or:

Kavalleriestraße 2-4
40213 Düsseldorf

Phone: 02 11/384 24-0 Email: poststelle@ldi.nrw.de Homepage: https://www.ldi.nrw.de

6. Legal basis of processing

Your data will be stored and processed by us in compliance with the relevant legal provisions, in particular in compliance with the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG) as well as the General Data Protection Regulation (EU DSGVO).

Art. 6 I lit. a DSGVO serves our company as the legal basis for processing operations in which we obtain consent for a specific processing purpose.

If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, as is the case, for example, with processing operations that are necessary for a delivery of goods or the provision of another service or consideration, the processing is based on Art. 6 I lit. b DSGVO. The same applies to such processing operations that are necessary for the implementation of pre-contractual measures, for example in cases of inquiries about our products or services or deposit of the information in the user account.

Insofar as processing of personal data is necessary for the fulfillment of a legal obligation to which our company is subject, Art. 6 (1) lit. c DSGVO serves as the legal basis.

In rare cases, the processing of personal data might become necessary to protect vital interests of the data subject or another natural person. This would be the case, for example, if a visitor were to be injured on our premises and as a result his or her name, age, health insurance data or other vital information had to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6 I lit. d DSGVO.

Finally, processing operations could also/or be based on Art. 6 I lit. f DSGVO. Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to protect a legitimate interest of our company or a third party, provided that the interests, fundamental rights and freedoms of the data subject are not overridden. Such processing operations are permitted to us in particular because they were specifically mentioned by the European legislator. In this respect, it took the view that a legitimate interest could be assumed if the data subject is a customer of the controller - i.e. us (Recital 47, Sentence 2 DSGVO).

Personal data processing for marketing purposes is carried out on the basis of the legal provisions of Section 96 (3) TKG as well as Art 6 (1) lit a (consent) and/or f (legitimate interest) of the DSGVO. Our concern in terms of the DSGVO (legitimate interest) is the improvement of our offer and our website to permanently improve your shopping experience and to make it customer-friendly and individual for you. The evaluation and analysis of the pseudonymized data collected from you helps us to do this. Furthermore, our legitimate interest is to conduct our business for the benefit of the well-being of all our employees and our shareholders. However, whenever data processing is based on legitimate interest, the data subject - i.e. you - will also be given the right to object (opt-out).

7. Transfer of data to third parties

We do not transfer your personal data to third parties for purposes other than those listed below. We will only pass on your personal data to third parties if:

you have given your express consent to do so in accordance with Art. 6 para. 1 p. 1 lit. a DSGVO,
the disclosure is permitted under Art. 6 (1) p. 1 lit. f DSGVO to protect our legitimate interests and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,
in the event that there is a legal obligation for the disclosure pursuant to Art. 6 (1) sentence 1 lit. c DSGVO, as well as
this is legally permissible and necessary for the processing of contractual relationships according to Art. 6 para. 1 p. 1 lit. b DSGVO.

8. Duration for which the personal data is stored and routine deletion and blocking of personal data

Personal data will be deleted as soon as the purpose of the processing ceases or a prescribed storage period expires, unless there is a necessity for further storage of the personal data for the conclusion of a contract or the fulfillment of a contract. If we need to inform you about the storage period of cookies and similar technologies, you will find this information at the end of this privacy policy. Personal data that we process as part of an application (see below) will be stored for a period of six months after the end of the application process.

9. Legal or contractual provisions for the provision of personal data; necessity for the conclusion of a contract; obligation of the data subject to provide the personal data; possible consequences of non-provision

We inform you that the provision of personal data is sometimes required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information on the contractual partner in the case of an order). Sometimes, in order to conclude a contract, it may be necessary for you as the data subject to provide us with personal data that must subsequently be processed by us. For example, you are obliged to provide us with personal data if our company concludes a contract with you. Failure to provide the personal data would mean that the contract could not be concluded. Before providing personal data, you must contact our contact person for data protection. Our contact person will clarify on a case-by-case basis whether the provision of the personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and what the consequences of not providing the personal data would be.

10. Existence of automated decision-making

As a responsible company, we do not use automated decision-making or profiling.

11. Collection, processing and use of general data and information

If you call up our Internet pages without sending us information directly, e.g. by means of a contact form or registration, we only collect such personal data that your web browser transmits to our server in order to enable the display of our Internet presence and to ensure stability and security. The following general data and information is collected in this context, for example:

Information about the browser type and the language and version used.
The operating system of the user
The user's Internet service provider
The Internet protocol address (IP address) of the user
The date and time of access to the website
Websites that are accessed by the user's system via our website
Other similar data and information that serve to avert danger in the event of attacks on our information technology systems.

When using this general data and information, Prinovia GmbH does not draw any conclusions about the visitor. Rather, this information is needed to

to deliver the contents of our website correctly,
to ensure the long-term functionality of our information technology systems and the technology of our website.
To provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack.

This anonymously collected data and information is ultimately evaluated by us with the aim of increasing the data protection and data security of our enterprise, and ultimately ensuring an optimal level of protection for the personal data we process. These purposes also include our legitimate interest in data processing pursuant to Art. 6 (1) lit. f DSGVO. The general data and information are stored in log files on our servers separately from any personal data provided by you. A storage of your IP address or other data, which enables a personal allocation of the data to you, does not take place.

Furthermore, the data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. No other evaluation of this data takes place. Consequently, there is no possibility for the user to object.

Provision of the website

Purpose of processing: Functionality and optimization of the website, ensuring the security of our information technology systems in case of purely informational use (without the use of additional functions such as contact forms or social media plugins) of our website; Integration and display of functions and content (e.g. graphics) that we do not provide ourselves.

Legal basis: Art. 6 para. 1 letter f GDPR Data categories: Usage data, connection data Recipients of the data: Data will only be transferred to third parties if this is necessary for the operation of our website. The personal data will be transferred to the following recipients: IT service providers Intended transfer to third countries:

Webflow, Inc. 398 11th Street, 2nd Floor San Francisco, CA 94103, USA

An adequate level of data protection is ensured by using the EU Standard Contractual Clauses.

Storage of data on your device based on consent: No

Online shop

Purpose of processing: operation of the online shop; processing of your orders and inquiries; ensuring the security of our online shop.

Legal basis: Art. 6(1)(b), (f) GDPR

Data categories: master data, contact data, contract data, content data, payment data, usage data, and connection data. If you already have a customer account with us, simply log in to your customer account. We will then use the personal data from your customer account.

Recipient of the data: shipping companies; payment service providers

Intended Third-Country Transfer: None

Storage of data on your device based on consent: No

Customer account

Purpose of processing: Use of a customer account; Fulfillment of the contract or pre-contractual measures; Ensuring the security of our information technology systems.

Legal basis: Art. 6(1)(b), (f) GDPR

Data categories: master data, contact data, possibly content data, connection data, possibly

Payment data, if applicable contract data and usage data

Recipient of the data: None

Intended Third-Country Transfer: None

Storage of data on your device based on consent: No

Google Fonts

Purpose of processing: More personalized design of our website through font styles loaded from Google servers.

Legal basis: Art. 6 para. 1 letter f GDPR

Data categories: Connection data

Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland

Intended transfer to a third country: In individual cases USA (in accordance with the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR)

Storage of data on your device based on consent: No

12. Collection, processing and use of personal data by cookies

What are cookies?

Our Internet pages use cookies. Cookies are text files that are stored on a computer system via an Internet browser and through which certain information flows to us as the person responsible for setting the cookie.

Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string through which websites and servers can be assigned to the specific internet browser in which the cookie was stored. This enables visited websites and servers to distinguish the individual browser from other internet browsers that contain different cookies. A specific internet browser can be recognized and identified again via the unique cookie ID. The data collected in this way is pseudonymized by technical precautions. Therefore, an assignment of the data to the calling user is no longer possible. The data is not stored together with other personal data of the users. The user data collected by technically necessary cookies is not used to create user profiles.

When accessing our website, users are informed by an info banner about the use of cookies for analysis purposes and referred to this privacy policy. There is also a reference to how the storage of cookies can be prevented in the browser settings.

Are cookies dangerous?

Through the use of cookies, we can provide the users of this website with services that would not be possible without the cookie setting. By means of a cookie, the information and offers on our website can be optimized in terms of the user. Cookies enable us, as already mentioned, to recognize the users of our website. The purpose of this recognition is to make it easier for users to use our website and to make it as comfortable as possible. For example, the user of a website that uses cookies does not have to re-enter his or her access data each time he or she visits the website, because this is handled by the website and the cookie stored on the user's computer system. Another example is the cookie of a shopping cart in an online store. The online store uses a cookie to remember the items that a customer has placed in the virtual shopping cart. Cookies can further be used for anonymized analysis of the use of a website and its functions by its users. The information thus generated is transferred to the provider's server and stored there. The analyzed data are the basis for aligning our websites according to the wishes of our visitors and customers and to improve their content and functions.In these purposes also lies our legitimate interest in the processing of personal data according to Art. 6 para. 1 lit. f DSGVO.

What do we use cookies for?

Do you want to forgo the benefits of cookies?

Cookies are stored on the user's computer and transmitted from it to our site. Therefore, you as a user also have full control over the use of cookies.

You can restrict or prevent the setting of cookies by our website at any time by means of a corresponding (extended) setting in the sub-item "Data protection" or "Security" of the Internet browser you are using and thus permanently object to the setting of cookies. If you deactivate the setting of cookies in the Internet browser used, however, not all functions of our website may be fully usable.

The help function in the menu bar of the web browser explains how to prevent your browser from accepting new cookies, how to have your browser notify you when you receive a new cookie, or even how to delete all cookies you have already received and block them for all further sessions.

In Internet Explorer:
1. select "Internet Options" from the "Tools" menu.
2. click on the "Privacy" tab.
3. now you can make the security settings for the Internet zone. Here you set whether and which cookies are to be accepted or rejected.
4. confirm your setting with "OK".

In Firefox:
1. select the Settings item in the "Tools" menu.
2. Click on "Privacy".
3. in the drop-down menu, select the entry "create according to user-defined settings".
4. now you can set whether cookies should be accepted, how long you want to keep these cookies and add exceptions, which websites you always or never want to allow to use cookies.
5. confirm your setting by clicking "OK".

In Google Chrome:
1. click on the Chrome menu in the browser toolbar.
2. now select "Settings".
3. Click on "Show advanced settings".
4. under "Privacy", click "Content settings".
5. Under "Cookies", you can set the following settings for cookies:
(a) Delete cookies
b) Block cookies by default
c) Allow cookies by default
d) Delete cookies and website data by default after exiting the browser.
e) Allow exceptions for cookies from specific websites or domains.

Alternatively, especially for browsers on mobile devices, you can prevent the storage of tracking data by clicking on this link. An opt-out cookie with a validity of 180 days will be set, preventing the future collection of your data when visiting this website. The opt-out cookie is only valid in this browser and only for our website, and will be stored on your device. If you delete all cookies in this browser, you will need to set the opt-out cookie again.

13. Collection, processing and use of general data through contact options

The website of Prinovia GmbH contains information due to legal regulations that enable a quick electronic contact with our company as well as immediate communication with us, which also includes a general address of the so-called electronic mail (email address). If you contact us by email, the personal data you provide will be stored.

There is also a contact form on our website that can be used to contact us electronically. For the processing of the data, reference is made to this privacy policy during the sending process. If a user makes use of this option, the data entered in the input mask will be transmitted to us and stored.

In doing so, the specification of a valid e-mail address is required so that we know from whom the inquiry originates and in order to be able to answer it. In addition, when using the contact form, we record your IP address and the time of sending. Apart from the content of the message, no other personal information is required.

The processing of personal data serves us solely to process the contact. The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems. Data processing for the purpose of pre-contractual contact with us is carried out in accordance with Art. 6 (1) lit. b DSGVO.

If you as a data subject contact us by e-mail or via a contact form, the personal data transmitted to us will be stored automatically. Your data will be deleted after final processing of your request, provided that you wish this and the deletion does not conflict with any statutory retention obligations.

If you contact us by e-mail or form, you can object to the storage of your personal data at any time. In such a case, the conversation cannot be continued. All personal data stored in the course of contacting us will be deleted in this case.

14 Registration on our website

On our website, we offer users the opportunity to register by providing personal data. The data is entered into an input mask and transmitted to us and stored.

The personal data entered is collected and stored exclusively for internal use and for our own purposes. Before sending your data, we again expressly refer you to our data protection declaration. By sending us your data, you agree to the processing of your personal data as described in this privacy policy. Which personal data is transmitted to us is determined by the respective input mask used for registration.

By registering on our website, your IP address assigned by your Internet service provider (ISP), the date and time of registration will also be stored. The storage of this data takes place against the background that only in this way the misuse of our services can be prevented. In this respect, the storage of this data is necessary for our protection. In principle, this data is not passed on to third parties, unless there is a legal obligation to pass it on or the passing on serves the purpose of criminal prosecution.

User registration is necessary for the provision of certain content and services on our website. The legal basis for processing the data is Art. 6 para. 1 lit. a DSGVO if the user has given his consent. If the registration serves the fulfillment of a contract to which the user is a party or the implementation of pre-contractual measures, the additional legal basis for the processing of the data is Art. 6 (1) lit. b DSGVO.

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. This is the case for the data collected during the registration process when the registration on our website is cancelled or modified, provided that this does not conflict with any legal obligations to retain data.

As a user, you have the possibility to cancel the registration at any time. The data stored about you can be changed at any time. Upon request, we will provide you with information about which personal data is stored. Furthermore, we will correct or delete your personal data upon request, provided that there are no legal retention obligations. Please contact us by email at datenschutz@shirtigo.de.

Facebook Connect

Alternatively, we use "Facebook Connect" on our website, a service provided by Facebook Inc, 1601 S California Ave, Palo Alto, California 94304, USA. Facebook Connect facilitates registration for services on the Internet. Instead of using a registration screen on our website, you can enter your login data for Facebook and then use our service. By using Facebook Connect, your web browser automatically establishes a direct connection with the Facebook server. To register, you will be redirected to the Facebook page. There you can log in with your usage data. This links your Facebook profile and our service. Through the link, we automatically receive from Facebook Inc. your email address registered with Facebook, as well as the first and last name. Exclusively if you give your express consent in accordance with Art. 6 (1) lit. a DSGVO prior to the registration process on the basis of a corresponding notice about the exchange of data with Facebook, we receive the general and publicly accessible information stored in your profile when using the "Facebook Connect" button from Facebook, depending on your personally made data protection settings at Facebook.

When you call up a page of our website that contains such a plugin, your browser establishes a direct connection to Facebook's servers. The content of the plugin is transmitted by Facebook directly to your browser and integrated into the page. Through this integration, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook profile or are not currently logged in to Facebook. This information (including your IP address) is transmitted by your browser directly to a Facebook server in the USA and stored there. These data processing operations are carried out pursuant to Art. 6 (1) lit. f DSGVO on the basis of Facebook's legitimate interest in displaying personalized advertising based on browsing behavior.

You can prevent Facebook from processing the above information by using our registration mask and not using Facebook Connect. The consent given can be revoked at any time by sending a message to the responsible person named at the beginning of this statement.

For more information on Facebook Connect and privacy settings, please refer to the Privacy Policy and the Terms of Use of Facebook Inc.

If you do not want Facebook to directly associate the data collected through our website with your Facebook profile, you must log out of Facebook before visiting our website. You can also completely prevent the loading of Facebook plugins with add-ons for your browser, for example with "Adblock Plus" (https://adblockplus.org/en/).

Google Sign-in

Alternatively, we use "Google Sign-in" on our website, a service provided by Google Inc. ("Google"), 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. Google Sign-in facilitates registration for services on the Internet. Instead of using a registration mask on our website, you can enter your login data for Gmail and then use our services. By using Google Sign-In, your web browser automatically establishes a direct connection with Google's server. To log in, you will be redirected to the Google Mail page. There you can log in with your usage data. This links your Google profile and our service. Through the link, we automatically receive your Google email and your first and last name from Google. Exclusively if you give your express consent in accordance with Art. 6 (1) lit. a DSGVO before the registration process on the basis of a corresponding notice about the exchange of data with Google, we receive the general and publicly accessible information stored in your profile when you use the Google- button from Google, depending on your personally made data protection settings at Google.

When you call up a page of our website that contains such a plugin, your browser establishes a direct connection to Google's servers. The content of the plugin is transmitted by Google directly to your browser and integrated into the page. Through this integration, Google receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Google profile or are not currently logged in to Google. This information (including your IP address) is transmitted by your browser directly to a Google server in the USA and stored there. These data processing operations are carried out in accordance with Art. 6 (1) lit. f DSGVO on the basis of Google's legitimate interest in displaying personalized advertising based on browsing behavior.

You can prevent Google from processing the above information by using our registration mask. The consent given can be revoked at any time by sending a message to the responsible person named at the beginning of this statement.

You can find more information about Google's privacy policy at the following internet address: www.google.de/policies/privacy

If you do not want Google to directly associate the data collected through our website with your Google profile, you must log out of Google before visiting our website. You can also completely prevent the loading of Google plugins with add-ons for your browser, e.g. with "Adblock Plus" (https://adblockplus.org/de/).

15. Completion of the user account

On our website, we offer certain services and content in a closed user account. In order to be able to use these services and contents, it is necessary to complete the user account after registration by providing personal data. The data is stored in input masks or a product configurator and transmitted to us and stored. All personal data collected are collected and stored exclusively for internal use and for our own purposes. Excluded from this are all payment information that is transmitted to external payment providers for security reasons. These third parties are legally authorized to store such sensitive personal data and are strictly controlled by the authorities. If a contract is concluded, the transfer may still be made to one or more processors who will also use the personal data exclusively for an internal use attributable to the controller - i.e. us.

The completion of the user account is necessary for the provision of certain content and services on our website (e.g. creation of individualized products) as well as for the fulfillment of a contract with the user (production of individualized products) or for the implementation of pre-contractual measures. The legal basis for the processing of the data is Art. 6 para. 1 lit. a DSGVO if the user has given his consent. If the collection of data serves the fulfillment of a contract to which the user is a party or the implementation of pre-contractual measures, the additional legal basis for the processing of the data is Art. 6 (1) lit. b DSGVO.

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. This is the case for the data specified in your user profile (including all print-specific data) when the registration on our website is cancelled or modified, provided that there are no legal retention obligations to the contrary. If individualized designs or products were sold via a user account, your account will be blocked for a period of 3 years following a request for deletion. This enables us to meet any legal claims by third parties concerning trademark and/or copyright.

As a user, you always have the option to dissolve the registration and delete or modify the personal data stored in your user account. Upon request, we will inform you at any time about which personal data is stored. Furthermore, we will correct or delete your personal data upon request, provided that there are no retention obligations. Please contact us by email at datenschutz@shirtigo.de.

16. Purchase transaction via the website

If you wish to make use of the services offered by us against payment, it is necessary for the conclusion of the contract that you provide personal data or transmit them to us via an interface. The data you provide is necessary for the execution of the contract and the provision of the contractually owed services or for the implementation of pre-contractual measures. Without this data, we cannot conclude the contract with you.

By sending the data, you agree to the processing of personal data as described in this privacy policy. In the course of the purchase process, the mandatory data required for the processing of the contract will be marked accordingly in the input mask at the conclusion of the order or specified by the connections offered by us. All other information is voluntary.

Through the manual purchase on our website, your IP address assigned by the Internet service provider (ISP), the date as well as the time of the purchase process will also be stored. The storage of this data takes place against the background that only in this way the abuse of our services can be prevented. In this respect, the storage of this data is necessary for our security. As a matter of principle, this data is not passed on to third parties unless there is a legal obligation to pass it on or the passing on serves the purpose of criminal prosecution.

The legal basis for the processing of the data is Art. 6 para. 1 lit. a DSGVO if the user has given his consent. If the processing of personal data is for the performance of a contract, the processing is further based on Art. 6 I lit. b DSGVO. We may also process the contact data you provide (e-mail and name) to inform you about important innovations or changes to our products or about other interesting products from our portfolio. The legal basis for sending the newsletter as a result of the sale of goods or services is then Section 7 (3) UWG.

In the event that a contract is concluded, all data such as address, payment and order data from the contractual relationship will be stored and blocked until the expiry of the retention period under tax law (7 years). In addition, warranty periods must be observed. The data name, address, purchased goods and purchase date are stored beyond that until the expiry of product liability (10 years). We also pass on your personal data to third parties if this is required for the processing of the contract, including the order, delivery and payment process (e.g. the shipping company commissioned with the delivery and the credit institution commissioned with the payment processing). Furthermore, we transmit this data to third parties such as our tax advisor for tax and accounting purposes. Your data will not be passed on to third parties without your express consent, for example for advertising purposes. Third parties process the personal data on our behalf and according to our instructions. The scope of the transmitted data is limited to the minimum necessary to ensure the fulfillment of the contract.

If the data is necessary for the fulfillment of a contract or for the implementation of pre-contractual measures, deletion or modification of the data is only possible if there are no contractual or legal obligations to the contrary. However, we will provide you with information at any time upon request about which personal data is stored. Please contact us by email at datenschutz@shirtigo.de.

PayPal

Purpose of processing: Processing payments through the payment service PayPal; Direct order via your PayPal account (PayPal Express Checkout).

Legal basis: Art. 6 (1) letter b GDPR.

de en Data categories: Master data, contact data, possibly contract data, payment data, usage data, connection data

Recipient of the data: PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg ("PayPal")

Intended third-country transfer: None

Storage of data on your device based on consent: No

Instant transfer

Purpose of processing: Handling payments via the payment service "Sofortüberweisung".

Legal basis: Art. 6 para. 1 letter b GDPR

de en Data categories: Master data, Contact data, possibly Contract data, Payment data, Usage data, Connection data

Recipient of the data: Sofort GmbH, Theresienhöhe 12, 80339 Munich

Intended third-country transfer: None

Storage of data on your device based on consent: No

Stripe

Purpose of processing: Processing payments via the payment service Stripe

Legal basis: Art. 6 (1) letter b GDPR.

de en Data categories: Master data, Contact data, possibly Contract data, Payment data, Usage data, Connection data

Recipient of the data: Stripe Payments Europe, Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland

Intended third-country transfer: None

Storage of data on your device based on consent: No

17. Newsletter dispatch

We use Mailchimp from The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE Suite 5000, Atlanta, GA 30308 USA (Mailchimp) to send our newsletter. This allows us to contact subscribers directly. In addition, we analyze your usage behavior in order to optimize our offer.

For this purpose, we share the following personal data with Mailchimp: email address.

Our email sends include a link that allows you to update your personal data.

Mailchimp is the recipient of your personal data and acts as a processor for us as far as the sending of our newsletter is concerned. The processing of the data provided under this section is not required by law or contract. Without your consent and the transmission of your personal data, we cannot send out a newsletter to you.

In addition, Mailchimp collects the following personal data using cookies and other tracking methods: Information about your terminal device (IP address, device information, operating system, browser ID, information about the application you use to read your emails and other information about hardware and internet connection. In addition, usage data is collected such as date and time, when you opened the email / campaign and browser activity (e.g. which emails / web pages were opened). Mailchimp needs this data to ensure the security and reliability of the systems, compliance with the terms of use and the prevention of abuse. This corresponds to the legitimate interest of Mailchimp (according to Art. 6 para. 1 lit. f DSGVO) and serves the execution of the contract (according to Art. 6 para. 1 lit. b DSGVO). Furthermore, Mailchimp evaluates performance data, such as the delivery statistics of emails and other communication data. This information is used to create usage and performance statistics of the services.

providers. We have no control over this process.

For further information on options for objecting to and removing yourself from Mailchimp, please visit: https://mailchimp.com/legal/privacy/#3._Privacy_for_Contacts.

The legal basis for these processing operations is your consent pursuant to Art. 6 (1) lit. a DSGVO. You can revoke your consent to the processing of your personal data at any time. A corresponding link can be found in all mailings. In addition, the revocation can be made via the specified contact options. By declaring the revocation, the lawfulness of the processing carried out so far is not affected.

Your data will be processed as long as a corresponding consent is available. Apart from that, they will be deleted after the termination of the contract between us and Mailchimp, unless legal requirements make further storage necessary.

Mailchimp has implemented compliance measures for international data transfers. These apply to all global activities where Stripe processes personal data of natural persons in the EU. These measures are based on the EU Standard Contractual Clauses (SCCs). For more information, please visit: https://mailchimp.com/legal/data-processing-addendum.

Purpose of processing: Subscription to our newsletter with our news and offers; Proof of your consent; Ensuring the security of our information technology systems; Measurement of click and open behavior related to our newsletter; Personalization of our newsletter.

Legal basis: Art. 6 para. 1 letter a GDPR.

Master data (optional), Contact data, Usage data, Connection data

Recipient of the data: The Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, Georgia 30308, USA

Intended third-country transfer: USA (according to the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR)

Storage of data on your device based on consent: No

18. Deployment and use of tracking tools

On this website, information about the surfing behavior of website visitors is collected and stored in anonymous form for marketing purposes. This data is stored on your computer using cookie text files and allows us to analyze the surfing behavior of site visitors in anonymous form. For example, which pages a visitor has visited on the website and which Internet browser he used for this purpose. Under no circumstances can the collected data be used to personally identify the visitor to this website. The collected data is only used to improve the website. Therefore, all IP addresses are shortened so that IP addresses are only processed in anonymous form. No other use or disclosure to third parties will take place.

This website also uses retargeting technologies, such as Facebook Pixel. These technologies make it possible to target those users on our partners' websites with online advertising who have already visited our internet offers. In retargeting, the ads are displayed on the basis of an analysis of previous user behavior. Of course, no personal or only pseudonymized data is stored in this process.

18.1 Use and application of social plugins

On these Internet pages, components of the Internet video portal YouTube are integrated. The operating company of YouTube is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

By calling up any of the individual pages of this website on which a YouTube component (YouTube video) has been integrated, the internet browser on your information technology system is automatically prompted by the respective YouTube component to download a representation of the corresponding YouTube component. Further information about YouTube can be accessed at https://www.youtube.com/yt/about/en/. As part of this technical process, YouTube and Google become aware of which specific subpage of our website you are visiting if you are simultaneously logged into YouTube as the affected person. This information is collected by YouTube and Google and assigned to the respective YouTube account. This happens regardless of whether you click on a YouTube video or not. If you do not want this information to be transmitted, you can prevent this by logging out of your YouTube account before calling up our website.

The privacy policy published by YouTube, which can be accessed at https://www.google.de/intl/de/policies/privacy/, provides information on the collection, processing, and use of personal data by YouTube and Google.

Purpose of processing: Integration of videos via the YouTube video plugin for the personal design of our website.

Legal basis: Art. 6 para. 1 letter f GDPR

Data categories: Connection data

Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland

Intended transfer to a third country: In individual cases USA (in accordance with the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR)

Storage of data on your device based on consent: No

18.2 Use and application of the Google Tag Manager

This website uses the Tag Manager of Google Inc. ("Google"), 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

This service allows website tags to be implemented and managed on websites via an interface. No cookies are used in the process and no personal data is collected. The Tool Tag Manager itself (which implements the tags) is a cookie-free domain. The Google Tool Manager merely triggers other tags, which in turn can collect data in tools. However, Google Tag Manager does not access this data, only the tracking tools listed in the privacy policy. If a deactivation has been made at the domain or cookie level, it will remain in place for all tracking tags implemented with Google Tag Manager.

Further information can be found here:

Privacy Policy: http://www.google.de/intl/en/policies/privacy
FAQ Google Tag Manager: https://www.google.com/intl/en/tagmanager/faq.html
Terms of Use Google Tag Manager: https://www.google.com/intl/en/tagmanager/use-policy.html

18.3 Use and application of Google Analytics

This website uses Google Analytics, a web analytics service provided by Google, Inc. ("Google") 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

Google Analytics is a web analytics service. Web analytics is the collection, gathering, and analysis of data about the behavior of visitors to websites. A web analytics service collects, among other things, data about from which website a person affected came to a website (so-called referrers), which subpages of the website were accessed, or how often and for what duration a subpage was viewed. Web analysis is mainly used to optimize a website and for cost-benefit analysis of online advertising. The purpose of the Google Analytics component is to analyze visitor flows on our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us that show the activities on our websites, and to provide other services related to the use of our website. We continue to use Google Analytics to evaluate data from Google AdWords for statistical purposes. If you do not wish this, you can deactivate it via the Ad Preferences Manager (http://www.google.com/settings/ads/onweb/?hl=en).

Google Analytics sets a cookie on the information technology system of you as the data subject. What cookies are has already been explained above. By setting the cookie, Google is enabled to analyze the use of our website. Each time you call up one of the individual pages of this website on which a Google Analytics component has been integrated, the Internet browser on the information technology system is automatically prompted by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. By means of the cookie, personal information, for example the access time, the location from which an access originated and the frequency of visits to our website are stored.

We use the addition "_gat._anonymizeIp" for web analysis via Google Analytics. By means of this additive, the IP address of the Internet connection of you as the data subject is shortened and anonymized by Google if access to our Internet pages is from a member state of the European Union or from another state party to the Agreement on the European Economic Area. This guarantees the masking of your IP address so that all data is collected anonymously. The anonymized IP address transmitted by your browser as part of Google Analytics is not merged with other data from Google.

The processing of users' personal data enables us to analyze the surfing behavior of our users. By evaluating the data obtained, we are able to compile information about the use of the individual components of our website. This helps us to continuously improve our website and its user-friendliness. In these purposes also lies our legitimate interest in processing the data in accordance with Art. 6 para. 1 lit. f DSGVO. By anonymizing the IP address, the interest of users in their personal data protection is sufficiently taken into account.

Each time you visit our website, this personal data, including the IP address, is transferred to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass on this personal data collected via the technical process to third parties.

The data is deleted as soon as it is no longer required for our recording purposes. In our case, this is the case after 24 months.

In order to oblige Google to process the transmitted personal data in accordance with our instructions and to comply with the applicable data protection regulations, we have concluded an order processing agreement with Google. In addition, Google has submitted to the Privacy Shield agreement concluded between the European Union and the USA and has certified itself. In this way, Google undertakes to comply with the standards and regulations of European data protection law. You can find more information in the entry linked below: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

You can prevent the setting of cookies by our website, as shown above, at any time by adjusting the settings of your internet browser accordingly and thus object to the setting of cookies permanently. Such a setting of the internet browser used would also prevent Google from setting a cookie on your information technology system - the person concerned. In addition, a cookie already set by Google Analytics can be deleted at any time via the internet browser or other software programs. Furthermore, you can prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google as well as the processing of this data by Google by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en. This browser add-on informs Google Analytics via JavaScript that no data and information about visits to websites may be transmitted to Google Analytics. The installation of the browser add-on is considered a contradiction by Google. If the information technology system is deleted, formatted, or reinstalled at a later time, the browser add-on must be reinstalled to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated, there is the option of reinstalling or reactivating the browser add-on.

Alternativ bieten wir den Nutzern auf unserer Website die Möglichkeit eines Opt-Out aus dem Analyseverfahren. To do this, you must follow this link. Es wird ein Opt-Out-Cookie mit einer Gültigkeit von 180 Tagen gesetzt, das die zukünftige Erfassung Ihrer Daten beim Besuch dieser Website verhindert. Der Opt-Out-Cookie gilt nur in diesem Browser und nur für unsere Website und wird auf Ihrem Gerät abgelegt. Löschen Sie alle Cookies in diesem Browser, müssen Sie das Opt-Out-Cookie erneut setzen.

More information about Google Analytics and the applicable Google privacy policy can be found at:

Purpose of processing: Statistical evaluation; optimization and needs-based design of our website based on your click and usage behavior.

Legal basis: Art. 6 para. 1 letter a GDPR

Data categories: Usage data, Connection data (active IP anonymization; only in exceptional cases will the full IP address be transmitted to a Google server and shortened there)

Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland

Intended transfer to a third country: In individual cases USA (in accordance with the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR)

Storage of data on your device based on consent: Yes (Details can be found in the overview at the end of this statement)

18.4 Use and application of Google AdWords conversion tracking

We have integrated Google AdWords on this website. The operating company of the Google AdWords services is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

Google AdWords is an Internet advertising service that allows advertisers to place ads both in Google's search engine results and in the Google advertising network. Google AdWords enables an advertiser to specify certain keywords in advance, by means of which an ad is displayed in Google's search engine results exclusively when the user retrieves a keyword-relevant search result using the search engine. In the Google advertising network, the ads are distributed on topic-relevant websites by means of an automatic algorithm and in compliance with the previously defined keywords. The purpose of Google AdWords is to advertise our website by displaying interest-relevant advertising on the websites of third-party companies and in the search engine results of the Google search engine.

If you, as a data subject, access our website via a Google ad, a so-called conversion cookie will be stored on your information technology system by Google. What cookies are has already been explained above. The conversion cookie loses its validity after thirty days and is not used to identify you. If the cookie has not yet expired, the conversion cookie is used to track whether certain sub-pages, for example the shopping cart from an online store system, were called up on our website. Through the conversion cookie, both we and Google can track whether a data subject who arrived at our website via an AdWords ad generated a sale, i.e. completed or cancelled a purchase of goods. The data and information collected through the use of the conversion cookie are used by Google to compile visit statistics for our website. These visit statistics are in turn used by us to determine the total number of users who were referred to us via AdWords ads, i.e. to determine the success or failure of the respective AdWords ad and to optimize our AdWords ads for the future. Neither our company nor other advertisers of Google AdWords receive information from Google by means of which the data subject could be identified.

We use the conversion tracking of Google AdWords for marketing and optimization purposes, in particular to place relevant and interesting ads for you on Google and the Google partner network and thus improve our offer. This is also our legitimate interest in processing the above data in accordance with Art. 6 (1) lit. f DSGVO.

Mittels des Conversion-Cookies werden personenbezogene Informationen, beispielsweise Ihre besuchten Internetseiten, gespeichert. Bei jedem Besuch unserer Internetseiten werden demnach personenbezogene Daten, einschließlich der IP-Adresse an Google in den Vereinigten Staaten von Amerika übertragen. Diese personenbezogenen Daten werden durch Google in den Vereinigten Staaten von Amerika gespeichert.

You can prevent the setting of cookies by our website and the domain "googleadservices.com" at any time by adjusting the settings of your internet browser accordingly and thus object to the setting of cookies permanently. Such a setting of the internet browser used would also prevent Google from setting a conversion cookie on your information technology system. In addition, a cookie already set by Google AdWords can be deleted at any time via the internet browser or other software programs. Furthermore, there is the possibility to object to interest-based advertising by Google. To do this, you must visit the link www.google.de/settings/ads and make the desired settings there.

Alternatively, we offer users on our website the option to opt out of the analysis process. To do this, you must follow this link. An opt-out cookie with a validity of 180 days will be set, preventing the future collection of your data when visiting this website. The opt-out cookie applies only in this browser and only for our website, and will be stored on your device. If you delete all cookies in this browser, you will need to set the opt-out cookie again.

Purpose of processing: Measurement of the success of our Google Ads advertising campaigns.

Legal basis: Art. 6 para. 1 letter a GDPR

de en Data categories: Usage data, Connection data

Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland

Intended transfer to a third country: In individual cases USA (in accordance with the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR)

Storage of data on your device based on consent: Yes (Details can be found in the overview at the end of this statement)

18.5 Use and application of Google Remarketing

We have integrated Google Remarketing services on this website. The operating company of the Google Remarketing services is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

Google Remarketing is a function of Google AdWords that enables a company to display advertisements to Internet users who have previously visited the company's website. The integration of Google Remarketing thus allows a company to create user-related advertising and consequently to display interest-relevant advertisements to the Internet user.

The purpose of Google Remarketing is to display interest-relevant advertising. Google Remarketing enables us to display advertisements via the Google advertising network or to have them displayed on other Internet pages that are tailored to the individual needs and interests of Internet users. To do this, Google AdWords must first form target groups based on the visitors recorded with the cookies, to whom an advertisement can then be played out in the Google advertising network. Furthermore, with the help of these target groups, "similar target groups" can be formed in Google AdWords, which have similar characteristics to the visitors.

Google Remarketing sets a cookie on the information technology system of you the data subject. What cookies are has already been explained above. By setting the cookie, Google is enabled to recognize the visitor to our website when the visitor subsequently calls up websites that are also members of the Google advertising network. Each time a website is accessed on which the Google Remarketing service has been integrated, the internet browser automatically identifies itself to Google. Within the scope of this technical procedure, Google obtains knowledge of personal data, such as the IP address or the user's surfing behavior, which Google uses, among other things, to display interest-relevant advertising.

We use Google Remarketing for marketing and optimization purposes, in particular to display relevant and interesting ads for you in the Google partner network and thus to improve our offer and make it more interesting for you. This is also our legitimate interest in processing the above data in accordance with Art. 6 (1) lit. f DSGVO.

Every time you visit our website, personal data, including your IP address, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google has submitted to and certified the Privacy Shield Agreement concluded between the European Union and the USA. Google thereby undertakes to comply with the standards and regulations of European data protection law. You can find more information in the entry linked https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

You can prevent the setting of cookies by our website at any time, as already shown above, by means of a corresponding setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from setting a cookie on the information technology system. In addition, a cookie already set by Google can be deleted at any time via the Internet browser or other software programs. If you do not want Google's Remarketing function, you can also deactivate it in principle by making the corresponding settings at http://www.google.com/settings/ads. Alternatively, you can deactivate the use of cookies for interest-based advertising via the Advertising Network Initiative by following the instructions at http://www.networkadvertising.org/managing/opt_out.asp.

Alternatively, we offer users on our website the option of opting out of the analytics process. To do this, you must follow this link. An opt-out cookie with a validity period of 180 days will be set, preventing the future collection of your data when visiting this website. The opt-out cookie only applies to this browser and only to our website, and will be stored on your device. If you delete all cookies in this browser, you will need to set the opt-out cookie again.

Purpose of processing: Serving personalized advertising in the Google ad network based on your pseudonymized recorded surfing behavior. Legal basis: Art. 6 para. 1 letter a GDPR

de en Data categories: Usage data, Connection data

Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland

Intended transfer to a third country: In individual cases USA (according to the standard data protection clauses of the EU Commission, Art. 46 para. 2 letter c GDPR)

Storage of data on your device based on consent: Yes (Details can be found in the overview at the end of this statement)

18.6 Deployment and use of Microsoft Clarity

This website uses the web analytics service Microsoft Clarity from Microsoft Corporation ("Microsoft"), One Microsoft Way, Redmond, WA 98052 USA.

Microsoft Clarity analyzes the user behavior of our website. The legal basis for this is Art. 6 para. 1 lit. f) DSGVO. We have a legitimate interest in the analysis, optimization and economic operation of our website.

As part of the analysis, usage- and user-related information such as IP address, location, time, and website visits are transmitted to and stored on a Microsoft server in the USA. However, we use the service with an anonymization function, so Microsoft shortens the IP address within the EU or EEA.

With the data collected, Microsoft provides us with an analysis of the visits and usage activities on our website. Likewise, the data can be used to provide additional services related to the use of our website and the Internet.

Purpose of processing: Statistical evaluation; optimization and needs-based design of our website.

Legal basis: Art. 6 para. 1 letter f GDPR

de en Data categories: Usage data, Connection data

Recipient of the data: T-Systems International GmbH, Hahnstr. 43, 60528 Frankfurt (Data Trustee)

Intended transfer to third countries: No

Storage of data on your device based on consent: Yes (Details can be found in the overview at the end of this statement)

18.7 Deployment and use of Facebook Tracking Pixel

We have integrated components of the company Facebook on this website. Facebook is a social network. The operating company of Facebook is Facebook, Inc, 1 Hacker Way, Menlo Park, CA 94025, USA. If you live outside the USA or Canada, the controller of personal data is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

We use a "visitor action pixel" within our website, called the "Facebook pixel". Thereby, so-called tracking pixels are integrated on our pages. With its help, we can track the actions of users after they have seen or clicked on a Facebook ad. This allows us to record the effectiveness of the Facebook ads for statistical and market research purposes. In addition, the use of the pixel makes it possible to create anonymous target groups ("Custom Audience") on Facebook, to which interest-based ads can be played as part of remarketing activities on Facebook. The pixel is used without "Advanced Matching". No CRM data is used to create Custom Audiences.

The collected data is anonymous for us as the operator of this website, we cannot draw any conclusions about the identity of the users. However, this data is stored and processed by Facebook. Facebook can link this data to your Facebook account and also use it for its own advertising purposes. They can enable Facebook as well as its partners to place advertisements on and off Facebook.

We use Facebook Pixel for marketing and optimization purposes, in particular to place relevant and interesting ads for you on Facebook and thus to improve our offer and make it more interesting for you. This is also our legitimate interest in processing the above data according to Art. 6 (1) lit. f DSGVO.

Each time you visit our website, personal data, including the IP address, is transmitted to Facebook in the United States of America. This personal data is stored by Facebook in the United States of America. In addition, Facebook has submitted to the Privacy Shield agreement concluded between the European Union and the USA and has certified itself. In this way, Facebook undertakes to comply with the standards and regulations of European data protection law. You can find more information in the entry linked https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active.

The data policy published by Facebook, which can be accessed at https://de-de.facebook.com/about/privacy/, provides information about the collection, processing, and use of personal data by Facebook. It also explains the privacy protection options that Facebook offers to individuals. Furthermore, various applications are available that allow suppressing data transmission to Facebook. Such applications can be used to prevent data transmission to Facebook. The remarketing feature "Custom Audiences" can be disabled at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. Logging in to Facebook is required for this. Facebook's interest-based advertising can also be disabled on the website of the European Interactive Digital Advertising Alliance: http://www.youronlinechoices.com/de/praferenzmanagement/

Alternatively, we offer users on our website the option to opt out of the analysis process. To do this, you must follow this link. An opt-out cookie with a validity of 180 days will be set, which prevents the future collection of your data when visiting this website. The opt-out cookie applies only in this browser and only for our website and will be stored on your device. If you delete all cookies in this browser, you will need to set the opt-out cookie again.

You can find more information about Facebook Pixel at the following link: https://www.facebook.com/business/help/651294705016616

Purpose of processing: Playing out personalized advertising inserts in the Facebook advertising network (Facebook Ads) based on your data, which we transmit to Facebook via the 'extended matching' mode (regardless of whether you have a Facebook account) and based on your pseudonymized recorded surfing behavior through the Facebook pixel technology.

Legal basis: Art. 6 para. 1 letter a GDPR

Data categories: master data, contact data, usage data, and connection data.

Recipient of the data: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland

Intended transfer to third countries: In individual cases USA (according to standard data protection clauses of the EU Commission, Art. 46 para. 2 letter c GDPR) Storage of data on your device based on consent: Yes (Details can be found in the overview at the end of this statement)

19. Data protection for applications and in application procedures

We collect and process the personal data of applicants for the purpose of handling the application process. Processing may also take place electronically. This is particularly the case if an applicant submits corresponding application documents to us electronically, for example by email. If we conclude an employment contract with an applicant, the data transmitted will be stored for the purpose of handling the employment relationship in compliance with legal regulations. If no employment contract is concluded with the applicant, the application documents will be deleted nine months after the rejection decision is announced, unless there are other legitimate interests that oppose deletion. Other legitimate interest in this sense is, for example, an obligation to provide evidence in a procedure under the General Equal Treatment Act (AGG).

Purpose of processing: Processing of your application and conducting the application process; Consideration of your application in future application procedures if an explicit consent is given for this purpose.

Legal basis: Art. 6 para. 1 lit. b GDPR, Art. 88 para. 1 GDPR in conjunction with; for storage for future application procedures Art. 6 para. 1 letter a GDPR in conjunction with Art. 7 GDPR

Data categories: Master data, contact data, content data, contract data, if applicable connection data, if applicable usage data and if applicable special categories of personal data within the meaning of Art. 9 (1) GDPR (depending on the specific job advertisement; only the data for your application that you provide to us and that we are allowed to process in the context of applications will be stored)

Recipient of the data: None

Access rights to the applicant data are restricted within an authorization concept. Only persons who decide on the hiring have access to the applicant data. Under no circumstances will the data be stored in a publicly accessible folder or forwarded via email to the persons involved in the hiring process.

Intended Third-Country Transfer: None

Storage of data on your device based on consent: No

20. External pages of Prinovia GmbH

YouTube Channel

Purpose of processing: We have set up a video channel on the platform "YouTube" of Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland ("Google"). When you access this page, Google processes personal data from you. We receive statistics about the usage of this page, which are derived from this data.

Legal basis: Art. 6 (1) (f) GDPR.

Master data, Contact data, Content data, Usage data, Connection data

Recipient of the data: Google Ireland Ltd., Gordon House, Barrow Street Dublin 4 Ireland

Intended transfer to a third country: In individual cases USA (in accordance with the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR)

Storage of data on your device based on consent: No

Facebook

Purpose of processing: We have set up a page for our company ('Facebook page') on the platform 'Facebook'. When you visit this page, Facebook processes personal data from you. We receive statistics about the use of this page, which are derived from this data.

Legal basis: Art. 6 para. 1 letter f GDPR.

Master data, Contact data, Content data, Usage data, Connection data

Recipient of the data: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook") (as joint controller, Art. 26 GDPR - the essence of the agreement can be accessed at https://www.facebook.com/legal/terms/page_controller_addendum)

Intended transfer to a third country: In individual cases USA (according to the standard data protection clauses of the EU Commission, Art. 46 para. 2 letter c GDPR)

Storage of data on your device based on consent: No

Affected rights: Facebook is responsible for the implementation of your affected rights. Facebook informs you about your affected rights at https://www.facebook.com/legal/terms/information_about_page_insights_data. You can also assert your rights towards us, we will then immediately forward your request to Facebook.

Purpose of processing: We have set up a page for our company on the platform 'LinkedIn'. When you access this page, LinkedIn processes personal data from you. We receive statistics about the use of this page, which are derived from this data.

Legal basis: Art. 6 para. 1 letter f GDPR

Master data, Contact data, Content data, Usage data, Connection data

Recipient of the data: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (as joint controller, Art.26 GDPR - the essence of the agreement can be accessed at https://legal.linkedin.com/pages-joint-controller-addendum

Intended transfer to a third country: In individual cases USA (in accordance with the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR)

Storage of data on your device based on consent: No

Data subject rights: LinkedIn is responsible for implementing your data subject rights. LinkedIn informs you about your data subject rights at https://www.linkedin.com/legal/privacy-policy. You can also assert your rights against us, and we will promptly forward your request to LinkedIn.

Instagram

Purpose of processing: We have set up a page for our company ('Instagram page') on the 'Instagram' platform of Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ('Facebook'). When you access this page, Facebook processes personal data from you.

Legal basis: Art. 6 para. 1 letter f GDPR

Master data, Contact data, Content data, Usage data, Connection data

Intended transfer to a third country: In individual cases USA (in accordance with the standard data protection clauses of the EU Commission, Art. 46 (2) (c) GDPR)

Storage of data on your device based on consent: No

Betroffenenrechte: Für die Umsetzung Ihrer Betroffenenrechte ist Facebook verantwortlich. Über Ihre Betroffenenrechte informiert Facebook Sie unter https://www.facebook.com/legal/terms/information_about_page_insights_data. Sie können Ihre Rechte auch uns gegenüber geltend machen, wir werden ihre Anfrage dann umgehend an Facebook weiterleiten.

20. Timeliness and Amendment of this Privacy Policy

This data protection declaration is currently valid and is as of May 25, 2018. Due to the further development of our Internet pages and offers or due to changed legal or official requirements, it may become necessary to adapt this data protection declaration.

Used sources:

This data protection declaration was created in cooperation with our lawyers and with the help of the following sources:

external data protection officer Nuremberg in Kooperation mit der RC GmbH und den file sharing lawyers von WBS-LAW
https://dsgvo-muster-datenschutzerklaerung.dg-datenschutz.de
https://datenschutz-generator.de translates to https://datenschutz-generator.de
https://dsgvo-gesetz.de/art-13-dsgvo/
I am unable to translate text from a URL. Please provide the text directly for translation.

Privacy Policy

1. Introduction

2. Data controller and contact

3. Definition of terms

4. Data protection compact

When and how do we collect data?

What are the personal data processed and used for?

Welche Rechte haben Sie?

How can I object to the use of data and exercise my rights?

How long will the personal data be stored and when will it be deleted?

How does Prinovia GmbH protect personal data?

5. rights of the data subject according to Art. 12 - 23 DSGVO

a) Right to confirmation

b) Right to information

c) Right to rectification

d) Right to erasure (right to be forgotten)

e) Right to restriction of processing

f) Right to data portability

g) Right of objection

h) Automated decisions in individual cases including profiling

I) Right to lodge a complaint with a supervisory authority

6. Legal basis of processing

7. Transfer of data to third parties

8. Duration for which the personal data is stored and routine deletion and blocking of personal data

9. Legal or contractual provisions for the provision of personal data; necessity for the conclusion of a contract; obligation of the data subject to provide the personal data; possible consequences of non-provision

10. Existence of automated decision-making

11. Collection, processing and use of general data and information

Provision of the website

Online shop

Customer account

Google Fonts

12. Collection, processing and use of personal data by cookies

What are cookies?

Are cookies dangerous?

What do we use cookies for?

Do you want to forgo the benefits of cookies?

13. Collection, processing and use of general data through contact options

14 Registration on our website

Facebook Connect

Google Sign-in

15. Completion of the user account

16. Purchase transaction via the website

PayPal

Instant transfer

Stripe

17. Newsletter dispatch

18. Deployment and use of tracking tools

18.1 Use and application of social plugins

18.2 Use and application of the Google Tag Manager

18.3 Use and application of Google Analytics

18.4 Use and application of Google AdWords conversion tracking

18.5 Use and application of Google Remarketing

18.6 Deployment and use of Microsoft Clarity

18.7 Deployment and use of Facebook Tracking Pixel

19. Data protection for applications and in application procedures

20. External pages of Prinovia GmbH

YouTube Channel

Facebook

LinkedIn

Instagram

20. Timeliness and Amendment of this Privacy Policy

Used sources:

Pay securely

Worldwide shipping

Shop securely

Products

Solutions

Service

company