Privacy policy

Responsible for data processing:

Liwela GmbH

Hansastraße 49

81373 Munich

Germany

 

info@liwela.com

Thank you for your interest in our online shop. The protection of your privacy is very important to us. Below we inform you in detail about the handling of your data.

 

  1. access data and hosting

You can visit our websites without giving any personal information. Whenever you call up a website, the web server merely automatically saves a so-called server log file, which contains e.g. the name of the requested file, your IP address, date and time of the call, transferred data volume and the requesting provider (access data) and documents the call.

This access data is evaluated exclusively for the purpose of ensuring the trouble-free operation of the site and improving our offer. In accordance with Art. 6 Para. 1 S. 1 lit. f DSGVO, this serves to protect our legitimate interests in the correct presentation of our offer, which are predominant in the context of a weighing of interests. All access data will be deleted at the latest seven days after the end of your visit to our website.

Hosting services through a third-party provider

In the context of processing on our behalf, a third party provider provides us with the services for hosting and displaying the website. All data collected in the course of using this website or in forms provided for this purpose in the online shop as described below are processed on its servers. Processing on other servers only takes place within the framework described here.

This service provider is located within a country of the European Union or the European Economic Area.

  1. data collection and use for contract processing, contacting and opening a customer account

We collect personal data when you voluntarily provide us with this information as part of your order or when contacting us (e.g. via contact form or e-mail). Mandatory fields are marked as such, because in these cases we need the data for the processing of the contract or for the processing of your contact and you cannot send the order or contact without their indication. Which data is collected can be seen from the respective input forms. We use the data you provide us with in accordance with Art. 6 Para. 1 S. 1 lit. b DSGVO for contract processing and processing your enquiries.

Insofar as you have given your consent in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO by deciding to open a customer account, we will use your data for the purpose of opening a customer account.

After complete processing of the contract or deletion of your customer account, your data will be restricted for further processing and deleted after the expiry of the tax and commercial law retention periods, unless you have expressly consented to further use of your data or we reserve the right to use your data for other purposes that are legally permitted and about which we inform you in this declaration. The deletion of your customer account is possible at any time and can be done either by sending a message to the contact option described below or by using a function in the customer account intended for this purpose.

  1. data transfer

In order to fulfil the contract in accordance with Art. 6 Para. 1 S. 1 lit. b DSGVO, we pass on your data to the shipping company commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods. Depending on which payment service provider you select in the ordering process, we will pass on the payment data collected for this purpose to the credit institution commissioned with the payment and, if applicable, to the payment service provider commissioned by us or to the selected payment service for the processing of payments. In some cases, the selected payment service providers also collect this data themselves if you open an account there. In this case you must log in to the payment service provider with your access data during the ordering process. In this respect the data protection declaration of the respective payment service provider applies.

We use a payment service provider that is based in a country outside the European Union. The transmission of personal data to this company is only carried out within the scope of the necessity to fulfil the contract.

Data transfer to debt collection agencies

In order to fulfil the contract in accordance with Art. 6 Para. 1 S. 1 lit. b DSGVO, we will pass on your data to a commissioned collection agency if our payment claim has not been settled despite a previous reminder. In this case, the claim will be collected directly by the collection company. In addition, the passing on of data serves to protect our legitimate interests, which predominate in the context of weighing up interests, in an effective assertion or enforcement of our payment claim in accordance with Art. 6 Para. 1 S. 1 lit. f DSGVO.

  1. cookies and web analysis

In order to make visiting our website attractive and to enable the use of certain functions, to display suitable products or for market research, we use so-called cookies on various pages, provided that you have given your consent to do so in accordance with Art. 6 Para. 1 S. 1 lit. a DSGVO. In addition, we use cookies insofar as this is necessary for the fulfilment of a legal obligation to which we are subject, in accordance with Art. 6 Para. 1 S. 1 lit. c DSGVO, as well as to safeguard our predominant legitimate interests in an optimised presentation of our offer in accordance with Art. 6 Para. 1 S. 1 lit. f DSGVO. Further information on individual cookies and the respective legal basis can be found in the following sections of this privacy policy.

Cookies are small text files that are automatically stored on your end device. Some of the cookies we use are deleted after the end of the browser session, i.e. after closing your browser (so-called session cookies). Other cookies remain on your end device and enable us to recognize your browser the next time you visit us (persistent cookies). You can see the duration of storage in the cookie settings of your web browser. You can set your browser so that you are informed about the setting of cookies and decide individually whether to accept them or to exclude the acceptance of cookies for certain cases or in general. If cookies are not accepted, the functionality of our website may be limited. Every browser differs in the way it manages the cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. You can find these for each browser under the following links:

Microsoft Edge™ [https://support.microsoft.com/en-us/help/4027947/microsoft-edge-delete-cookies] / Safari™ [https://support.apple.com/guide/safari/manage-cookies-and-website-data-sfri11471/mac] / Chrome™ [https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=en] / Firefox™ [https://support.mozilla.org/en-US/kb/clear-cookies-and-site-data-firefox] / Opera™ [https://help.opera.com/en/latest/web-preferences/#cookies]

If you have given your consent in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO, you can also revoke your consent at any time by sending a message to the contact option described in the data protection declaration.

Cookiebot Consent Management Plattform

On our website we use Cookiebot to inform you about the technologies we use on our website and to obtain, manage and document your consent to the processing of your personal data by these technologies. This is required under Art. 6 para. 1 sentence 1 lit. c DSGVO to fulfil our legal obligation under Art. 7 para. 1 DSGVO to be able to prove your consent to the processing of your personal data, to which we are subject. The consent management service Cookiebot is an offer from Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark, which processes your data on our behalf.

After submitting your cookie declaration on our website, Cookiebot’s web server stores your anonymised IP address, the date and time of your declaration, browser information, the URL from which the declaration was sent, information on your consent behaviour and an anonymous random key. In addition, a “CookieConsent” cookie is used, which contains information about your consent behaviour and the key. Your data will be deleted after twelve months, unless you have expressly consented to further use of your data in accordance with Art. 6 Para. 1 S. 1 lit. a DSGVO or we reserve the right to use data beyond this which is legally permitted and about which we inform you in this declaration.

Use of Google (Universal) Analytics for web analysis

If you have given your consent in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO, this website uses Google (Universal) Analytics for the purpose of website analysis. The web analysis service is an offer of Google Ireland Limited, a company registered and operated under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland. (www.google.com [http://www.google.com]). Google (Universal) Analytics uses methods that enable an analysis of your use of the website, such as cookies. The automatically collected information about your use of this website is usually transferred to a Google server in the USA and stored there. By activating IP anonymisation on this website, the IP address is shortened before transmission within the member states of the European Union or in other states that are party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there. The anonymised IP address transmitted by your browser within the framework of Google Analytics is not combined with other Google data. The data collected in this context will be deleted after the end of the purpose and use of Google Analytics by us.

As far as information is transferred to and stored on Google servers in the USA, the American company Google LLC is certified under the EU-US Privacy Shield. A current certificate can be viewed here [https://www.privacyshield.gov/list]. On the basis of this agreement between the USA and the European Commission, the latter has established an appropriate level of data protection for companies certified under the Privacy Shield.

You can withdraw your consent at any time with effect for the future by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en. This prevents the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google.

As an alternative to the browser plugin, you can click <a href=””javascript:gaOptout()””>this link</a> to prevent Google Analytics from recording data on this website in the future. An opt-out cookie will be placed on your end device. If you delete your cookies, you will be asked again to give your consent.

  1. Online-Marketing

Google Fonts

On this website the script code “Google Fonts” is integrated. Google Fonts is an offer of Google Ireland Limited, a company registered and operated under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland. (www.google.com [http://www.google.com]). This serves to safeguard our legitimate interests, which outweigh our own interests, in a uniform presentation of the content on our website in accordance with Art. 6 para. 1 lit. f) DSGVO. Within this framework, a connection is established between the browser you use and the Google servers. This enables Google to know that our website has been accessed via your IP address.

As far as information is transferred to and stored on Google servers in the USA, the American company Google LLC is certified under the EU-US Privacy Shield. A current certificate can be viewed here [https://www.privacyshield.gov/list]. On the basis of this agreement between the USA and the European Commission, the latter has established an appropriate level of data protection for companies certified under the Privacy Shield. Further information about data processing by Google can be found in Google’s data protection information [https://policies.google.com/privacy].

  1. Social Media

Use of social plugins from Facebook, Instagram, using the Shariff solution.

Social buttons from social networks are used on our website.

This serves to safeguard our legitimate interests, which outweigh the interests of the parties concerned, in the best possible marketing of our products and services in accordance with Art. 6 Para. 1 sentence 1 letter f DSGVO. In order to increase the protection of your data when visiting our website, these buttons are not unrestrictedly integrated into the page as plug-ins, but only by using an HTML link. This integration ensures that when a page of our website containing such buttons is called up, no connection is yet established with the servers of the provider of the respective social network.

Click on one of the buttons, a new window of your browser opens and calls up the page of the respective service provider, where you can (possibly after entering your login data) press the Like or Share button, for example.

The purpose and scope of data collection and the further processing and use of the data by the providers on their sites as well as a contact option and your rights and setting options to protect your privacy can be found in the data protection notices of the providers:

https://www.facebook.com/policy.php

https://help.instagram.com/155833707900388

Our online presence on Facebook, Instagram, LinkedIn

Our presence on social networks and platforms serves to improve active communication with our customers and interested parties. There we inform about our products and current special offers.

When you visit our online presence in social media, your data may be automatically collected and stored for market research and advertising purposes. So-called user profiles are created from this data using pseudonyms. These can be used, for example, to place advertisements within and outside the platforms that presumably correspond to your interests. For this purpose, cookies are usually used on your end device. The visitor behaviour and interests of the users are stored in these cookies. This serves according to Art. 6 Para. 1 lit. f. DSGVO, this serves to safeguard our legitimate interests, which predominate in the context of weighing up interests, in an optimised presentation of our offer and effective communication with customers and interested parties. If you are asked by the respective social media platform operators for consent (permission) to data processing, e.g. with the help of a checkbox, the legal basis for data processing is Art. 6 para. 1 lit. a DSGVO.

Insofar as the aforementioned social media platforms have their headquarters in the USA, the following applies: The European Commission has issued an adequacy finding for the USA. This goes back to the EU-US Privacy Shield. A current certificate for the respective company can be viewed here [https://www.privacyshield.gov/list].

For detailed information on the processing and use of data by the providers on their sites as well as a contact option and your rights and settings options for the protection of your privacy, in particular the possibility to object (opt-out), please refer to the providers’ data protection information linked below. Should you nevertheless require assistance in this regard, you can contact us.

Facebook: https://www.facebook.com/about/privacy/

The data processing is carried out on the basis of an agreement between jointly responsible parties in accordance with Art. 26 DSGVO, which you can download here

[https://www.facebook.com/legal/terms/page_controller_addendum]

You can find further information on data processing when visiting a Facebook fan page (information on Insights data) here

[https://www.facebook.com/legal/terms/information_about_page_insights_data].

Instagram: https://help.instagram.com/519522125107875

 

LinkedIn: https://www.linkedin.com/legal/privacy-policy

Possibility of opposition (opt-out):

Facebook: https://www.facebook.com/settings?tab=ads

Instagram: https://help.instagram.com/519522125107875

LinkedIn: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Super Socializer – Social Login (Facebook Login)

We collect your public profile data only from your consent that you grant before initiating Social Login, from the social network used to login at our website. This data includes your first name, last name, email address, link to your social media profile, unique identifier, link to social profile avatar. This data is used to create your user profile at our website. You can revoke this consent at any time by sending us an email.

Facebook Comments

We embed Facebook Comments plugin to allow you to leave comment at our website using your Facebook account. This plugin may collect your IP address, your web browser User Agent, store and retrieve cookies on your browser, embed additional tracking, and monitor your interaction with the commenting interface, including correlating your Facebook account with whatever action you take within the interface (such as “liking” someone’s comment, replying to other comments), if you are logged into Facebook. For more information about how this data may be used, please see Facebook’s data privacy policy: https://www.facebook.com/about/privacy/update

 

  1. contact details and your rights

As a data subject, you have the following rights:

* pursuant to Art. 15 DSGVO the right to request information about your personal data processed by us to the extent specified therein;

 * in accordance with Art. 16 DSGVO the right to demand the immediate correction of incorrect or completion of your personal data stored by us;

 * pursuant to Art. 17 DSGVO the right to demand the deletion of your personal data stored by us, unless further processing * for the exercise of the right to freedom of expression and information;

* to fulfil a legal obligation;

* for reasons of public interest; or

* is necessary for the assertion, exercise or defence of legal claims;

* in accordance with Art. 18 DSGVO, the right to demand the restriction of the processing of your personal data, if * the accuracy of the data is disputed by you;

    * the processing is unlawful, but you refuse to have it deleted;

    * we no longer require the data, but you require it for the assertion, exercise or defence of legal claims or

    * you have lodged an objection to the processing in accordance with Art. 21 DSGVO

* in accordance with Art. 20 DSGVO, the right to receive your personal data that you have provided us with in a structured, common and machine-readable format or to request that it be transferred to another responsible party;

 * pursuant to Art. 77 DSGVO the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters for this purpose.

If you have any questions regarding the collection, processing or use of your personal data, for information, correction, restriction or deletion of data as well as revocation of consents granted or objection to a specific use of data, please contact us directly via the contact data in our imprint.

Right of objection

Insofar as we process personal data as explained above in order to safeguard our legitimate interests, which are predominant when weighing up the interests, you can object to this processing with effect for the future. If the processing is for direct marketing purposes, you may exercise this right at any time as described above. If processing is carried out for other purposes, you only have the right to object if there are reasons arising from your particular situation.

After exercising your right of objection, we will not process your personal data further for these purposes, unless we can prove compelling reasons for processing worthy of protection that outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims

This does not apply if the processing is for direct marketing purposes. In this case we will not process your personal data further for this purpose.