Privacy Policy

1) Information About the Collection of Personal Data and Contact Details of the Controller

1.1 We are pleased that you are visiting our website and thank you for your interest. In the following, we inform you about the handling of your personal data when using our website. Personal data is any data by which you can be personally identified.

1.2 The controller for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Mara London. The controller is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data.

1.3 For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries), this website uses SSL or TLS encryption. You can recognize an encrypted connection by the character string “https://” and the lock symbol in your browser line.

2) Data Collection When Visiting Our Website

If you use our website for informational purposes only, i.e., without registering or otherwise providing us with information, we only collect data that your browser transmits to our server (so-called “server log files”). When you access our website, we collect the following data, which is technically necessary for us to display the website:

 

  • The website visited

  • Date and time of access

  • Amount of data sent in bytes

  • Referrer source/link

  • Browser used

  • Operating system used

  • IP address used (possibly anonymized)

This data is processed in accordance with Art. 6 (1) lit. f GDPR based on our legitimate interest in improving the stability and functionality of our website. These data are not shared or otherwise used unless there are specific indications of unlawful use.

 

3) Cookies

To make visiting our website attractive and enable the use of certain functions, we use so-called cookies on various pages. These are small text files that are stored on your device. Some of the cookies we use are deleted after the browser session ends (so-called session cookies). Other cookies remain on your device and allow us or our partner companies (third-party cookies) to recognize your browser the next time you visit (persistent cookies).

If cookies are set, they collect and process specific user information such as browser and location data and IP address values, to an individual extent. Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie.

In part, cookies serve to simplify the order process by storing settings (e.g., remembering the contents of a virtual shopping cart for a later visit). Where cookies implemented by us also process personal data, processing is carried out either in accordance with Art. 6 (1) lit. b GDPR to execute the contract or in accordance with Art. 6 (1) lit. f GDPR to protect our legitimate interests in the best possible functionality of the website and a customer-friendly and effective design of the site visit.

We may work with advertising partners to make our online offering more interesting for you. In this case, cookies from partner companies may also be stored on your device when you visit our website (third-party cookies). If we cooperate with such partners, you will be informed individually and separately about the use of such cookies and the scope of the information collected in the following paragraphs.

Please note that you can configure your browser to inform you about the setting of cookies and decide individually about their acceptance or exclude the acceptance of cookies for specific cases or in general. Each browser differs in the way it manages cookie settings. You can find descriptions in the help menu of your browser, explaining how to change your cookie settings. For common browsers, use the following links:

  • Internet Explorer: https://support.microsoft.com/en/help/17442

  • Firefox: https://support.mozilla.org/en/kb/enable-and-disable-cookies

  • Chrome: https://support.google.com/chrome/answer/95647

  • Safari: https://support.apple.com/kb/ph21411

  • Opera: https://help.opera.com/en/latest/web-preferences/#cookies

Please note that disabling cookies may limit the functionality of our website.

4) Contacting Us

When contacting us (e.g., via contact form or email), personal data is collected. The data collected in the case of a contact form is visible from the respective form. This data is stored and used exclusively for the purpose of responding to your request or for contacting you and the associated technical administration.

The legal basis for processing the data is our legitimate interest in responding to your request pursuant to Art. 6 (1) lit. f GDPR. If your contact aims to conclude a contract, then the additional legal basis for processing is Art. 6 (1) lit. b GDPR.

Your data will be deleted once your inquiry has been fully processed, provided that it can be inferred from the circumstances that the relevant issue has been conclusively resolved and no statutory retention obligations apply.

 

5) Data Processing for Account Creation and Contract Fulfillment

According to Art. 6 (1) lit. b GDPR, personal data will continue to be collected and processed if you provide it to us for the purpose of fulfilling a contract or when opening a customer account. The data collected is evident from the respective input forms.

You can delete your customer account at any time by sending a message to the contact mentioned above. We store and use the data you provide for contract processing.

After the contract has been fully processed or your customer account deleted, your data will be blocked with regard to tax and commercial retention periods and deleted after these periods have expired, unless you have expressly consented to further use of your data or we reserve the right to further data use as permitted by law and as informed below.

 

6) Use of Your Data for Direct Advertising

 

6.1 Subscription to Our Email Newsletter

If you subscribe to our email newsletter, we will regularly send you information about our offers. The only mandatory data for receiving the newsletter is your email address. Providing further data is voluntary and will be used to address you personally.

For sending the newsletter, we use the so-called double opt-in procedure. This means that we will only send you an email newsletter once you have expressly confirmed that you consent to receiving newsletters. We will then send you a confirmation email asking you to confirm by clicking a link that you wish to receive the newsletter in the future.

By activating the confirmation link, you give us your consent for the use of your personal data in accordance with Art. 6 (1) lit. a GDPR. Upon registration for the newsletter, we store your IP address and the date and time of registration as provided by your internet service provider (ISP) in order to trace possible misuse of your email address at a later time.

The data collected when registering for the newsletter will be used exclusively for advertising via the newsletter. You can unsubscribe from the newsletter at any time by clicking the corresponding link in the newsletter or by sending a message to the controller mentioned at the beginning. After unsubscribing, your email address will be promptly deleted from our newsletter distribution list unless you have expressly consented to further use of your data or we reserve the right to use the data in any other way that is permitted by law.

 

6.2 Newsletter Dispatch to Existing Customers

If you have provided us with your email address in connection with the purchase of goods or services, we reserve the right to regularly send you offers for similar goods or services from our range via email. For this purpose, we do not need to obtain separate consent from you in accordance with legal regulations. Data processing in this case is based solely on our legitimate interest in personalized direct advertising pursuant to Art. 6 (1) lit. f GDPR.

If you initially objected to the use of your email address for this purpose, we will not send you any emails. You are entitled to object to the use of your email address for the above-mentioned advertising purpose at any time by notifying the controller named at the beginning. This will incur no costs other than transmission costs according to basic rates. After receiving your objection, the use of your email address for advertising purposes will be stopped immediately.

 

7) Data Processing for Order Handling

 

7.1

Personal data collected by us will be passed on to the transport company commissioned with the delivery as part of contract processing, insofar as this is necessary for the delivery of the goods. We will pass on your payment data to the commissioned credit institution if this is necessary for payment processing. If payment service providers are used, we will explicitly inform you about this below. The legal basis for the data transfer is Art. 6 (1) lit. b GDPR.


7.2 Use of Payment Service Providers (Payment Services)

 

– PayPal

If you choose to pay via PayPal, credit card via PayPal, direct debit via PayPal, or – if offered – “purchase on account” or “installment payment” via PayPal, your payment data will be transferred to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg, as part of the payment process. The transfer is made pursuant to Art. 6 (1) lit. b GDPR and only insofar as it is necessary for payment processing.

PayPal may carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal, or – if offered – “purchase on account” or “installment payment” via PayPal. For this purpose, your payment data may be passed on to credit agencies pursuant to Art. 6 (1) lit. f GDPR based on PayPal’s legitimate interest in determining your solvency. The result of the credit check in relation to the statistical probability of payment default is used by PayPal for the purpose of deciding on the provision of the respective payment method.

The credit report may contain probability values (so-called score values). If score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. Among other things, address data is included in the calculation of the score values.

Further data protection information, including information on the credit agencies used, can be found in PayPal’s privacy policy:

https://www.paypal.com/de/webapps/mpp/ua/privacy-full

You can object to the processing of your data by PayPal at any time by sending a message. However, PayPal may still be entitled to process your personal data if this is necessary for contractual payment processing.

 

– SOFORT

If you select the payment method “SOFORT,” payment will be processed via SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany (hereinafter referred to as “SOFORT”), to whom we will pass on the information you provided during the ordering process along with information about your order pursuant to Art. 6 (1) lit. b GDPR.

SOFORT is part of the Klarna Group (Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden). The transmission of your data takes place solely for the purpose of payment processing with SOFORT and only to the extent necessary.

More information about the privacy policy of SOFORT can be found here:

https://www.klarna.com/sofort/datenschutz

 

8) Contact for Review Reminders

Own Review Reminder (No Third-Party System)

We use your email address to send a one-time reminder to submit a review of your order, provided you have given us your express consent to do so during or after your order, in accordance with Art. 6 (1) lit. a GDPR.

You can revoke your consent at any time by sending a message to the controller listed above.

 

9) Use of Social Media: Social Plugins

9.1 Facebook Plugins with Shariff Solution

Social plugins (“plugins”) of the social network Facebook, operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA (“Facebook”), are used on our website.

To increase the protection of your data when visiting our website, these buttons are not integrated as unrestricted plugins but only using an HTML link. This ensures that when you visit a page on our website that contains such buttons, no connection is made to Facebook’s servers. Only when you click the button does a new browser window open and load the Facebook page where you can (if necessary, after logging in) interact with the plugins there.

Facebook Inc., based in the USA, is certified for the US-European data protection agreement “Privacy Shield,” which ensures compliance with the data protection level applicable in the EU.

For information about the purpose and scope of data collection, further processing and use of data by Facebook, and your rights and privacy settings, please see Facebook’s privacy policy: https://www.facebook.com/policy.php

9.2 Google+ Plugins with Shariff Solution

Social plugins (“plugins”) from the social network Google+ operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”), are also used.

As with Facebook, these are integrated only as HTML links to prevent immediate connection to Google’s servers when the site is loaded. Only when you click the button will you be directed to Google+, where you can interact with the plugin.

Google LLC is also certified under the “Privacy Shield” agreement.

Privacy information from Google: https://www.google.com/intl/en/policies/privacy/

 

9.3 Instagram Plugin with Shariff Solution

We also use social plugins (“plugins”) from Instagram, operated by Instagram LLC, 1601 Willow Rd, Menlo Park, CA 94025, USA (“Instagram”).

Like the other plugins, these are integrated using an HTML link to prevent an automatic connection with Instagram’s servers. Only after clicking the button will your browser open Instagram, where you can interact with the content.

Instagram LLC is certified under the “Privacy Shield” agreement.

For information on how Instagram processes your data and your rights, see:

https://help.instagram.com/155833707900388/

 

10) Online Marketing

10.1 DoubleClick by Google

This website uses the online marketing tool DoubleClick by Google, a service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“DoubleClick”).

DoubleClick uses cookies to serve ads that are relevant to users, to improve campaign performance reports, or to prevent a user from seeing the same ads multiple times. Google uses a cookie ID to record which ads are shown in which browser and can thus prevent them from being shown multiple times. The use of DoubleClick is based on our legitimate interest in optimal marketing of our website pursuant to Art. 6 (1) lit. f GDPR.

DoubleClick can also use cookie IDs to track conversions related to ad requests — for example, if a user sees a DoubleClick ad and later uses the same browser to visit the advertiser’s website and makes a purchase. According to Google, DoubleClick cookies do not contain personally identifiable information.

Due to the marketing tools used, your browser automatically establishes a direct connection to Google’s server. We have no influence on the scope and further use of the data collected by Google. According to our knowledge, the integration of DoubleClick allows Google to know that you have accessed the corresponding part of our website or clicked on an ad. If you are registered with a Google service, Google may associate the visit with your account. Even if you are not registered or logged in, it is possible that the provider may obtain and store your IP address.

If you want to opt out of this tracking process, you can disable cookies for conversion tracking by setting your browser to block cookies from the domain “www.googleadservices.com.” For more information and to adjust your ad settings, visit: https://www.google.de/settings/ads

You can also learn more about ad personalization and opt-out options at: https://www.aboutads.info

Please note that disabling cookies may limit the functionality of our website.

Google LLC is certified under the “Privacy Shield” framework.

For more information on DoubleClick’s data protection, visit: https://www.google.de/policies/privacy/

 

10.2 Use of Google AdWords Conversion Tracking

This website uses the online advertising program “Google AdWords” and the associated conversion tracking service by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).

We use Google Ads to display our offers on external websites and to determine the success of our ad campaigns. The cookie for conversion tracking is set when a user clicks on a Google-served ad. These cookies typically expire after 30 days and are not used for personal identification.

If a user visits certain pages of this website while the cookie is still active, Google and we can recognize that the user clicked the ad and was redirected to this page. Each Google AdWords customer receives a different cookie, so cookies cannot be tracked across websites of different AdWords customers.

The information obtained using the conversion cookie is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. Customers are told the total number of users who clicked their ad and were redirected to a conversion-tagged page. However, they do not receive information that personally identifies users.

You can disable participation in tracking by deactivating the Google conversion tracking cookie in your browser settings.

Further details about Google’s data policies can be found at: https://www.google.de/policies/privacy/

To permanently opt out of personalized ads, you can download and install the plugin provided here: https://www.google.com/settings/ads/plugin?hl=de

Note that some functions of this website may not work if cookies are disabled.

 

11) Web Analytics Services

Google (Universal) Analytics

 

This website uses Google Analytics, a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Analytics uses so-called “cookies,” text files stored on your device, which allow an analysis of your website usage.

The information generated by the cookie about your use of this website (including your IP address, truncated before storage) is usually transferred to a Google server in the USA and stored there.

This website uses Google Analytics exclusively with the “_anonymizeIp()” extension, which ensures anonymization of your IP address and prevents direct personal identification. Only in exceptional cases is the full IP address sent to a Google server in the USA and shortened there.

The processing is based on Art. 6 (1) lit. f GDPR and our legitimate interest in the statistical analysis of user behavior for optimization and marketing purposes.

Google will use this information to evaluate your use of the website, compile reports on website activity, and provide other services related to website usage and internet usage to us. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

You can prevent the storage of cookies by configuring your browser accordingly. However, note that doing so may prevent you from fully using all features of this website. You can also prevent the collection of cookie-generated data and its processing by Google by downloading and installing the browser plug-in available at: https://tools.google.com/dlpage/gaoptout?hl=en

As an alternative to the browser plugin, especially for mobile browsers, click the following link to set an opt-out cookie, which will prevent future data collection by Google Analytics on this website: Google Analytics Opt-Out

Google LLC is certified under the “Privacy Shield” framework.

This website also uses Google Analytics for a cross-device analysis of visitor behavior via a user ID. When you first visit, you are assigned a unique, permanent, and anonymized ID, which is used across sessions and devices. The data collected does not contain personal data and is not linked to any personal identifiers.

You can disable cross-device tracking by opting out of Google Analytics on all devices you use. Use the following browser plugin to deactivate: https://tools.google.com/dlpage/gaoptout?hl=en

Further information on Universal Analytics can be found at: https://support.google.com/analytics/answer/2838718?hl=en

 

12) Retargeting/Remarketing/Referral Advertising

 

Facebook Custom Audiences via Pixel

This website uses the “Facebook Pixel” of Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA (“Facebook”). If you have given your explicit consent, this allows tracking of users’ behavior after they click on a Facebook ad and are redirected to the provider’s website. This process is used to evaluate the effectiveness of Facebook ads for statistical and market research purposes and can help optimize future advertising efforts.

The data collected is anonymous for us, so it does not allow us to draw any conclusions about the user’s identity. However, the data is stored and processed by Facebook, allowing a connection to the respective user profile and enabling Facebook to use the data for its own advertising purposes in accordance with Facebook’s data usage policy. This may allow Facebook and its partners to display ads on and outside of Facebook. A cookie may also be stored on your device for these purposes.

These processing activities are carried out only with your explicit consent pursuant to Art. 6 (1) lit. a GDPR.

Consent to the use of the Facebook Pixel may only be given by users over the age of 13. If you are younger, we ask you to obtain permission from your legal guardian.

Facebook Inc. is certified under the US-EU data protection agreement “Privacy Shield” and thereby guarantees compliance with EU data protection laws.

To deactivate the use of cookies on your computer, you can set your internet browser to prevent future cookies from being placed or delete cookies already stored. However, disabling all cookies may result in some functions on our website no longer being available. You can also disable the use of cookies for advertising purposes by Facebook via the following Digital Advertising Alliance page: https://www.aboutads.info/choices/

 

Google AdWords Remarketing

This website uses the functions of Google AdWords Remarketing, allowing us to advertise this website in Google search results and on third-party websites. The provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).

Google places a cookie in your browser, which uses a pseudonymous cookie ID and based on the pages you have visited, enables interest-based advertising. The processing is carried out pursuant to Art. 6 (1) lit. f GDPR based on our legitimate interest in optimal marketing of our website.

Any further data processing occurs only if you have given Google consent for your browsing and app history to be linked with your Google account and used to personalize ads. If you’re logged into Google during a visit to our website, Google will use your data in combination with Google Analytics data to create and define audience lists for cross-device remarketing.

You can disable interest-based advertising by installing the browser plugin available here: https://www.google.com/settings/ads/onweb/

Alternatively, you can manage cookie usage via the Digital Advertising Alliance site: https://www.aboutads.info

Google LLC is certified under the “Privacy Shield” framework.

More information on Google advertising and data protection: https://www.google.com/policies/technologies/ads/

 

13) Rights of the Data Subject

 

13.1 Under applicable data protection law, you have the following rights with respect to the processing of your personal data:

  • Right of access (Art. 15 GDPR): You have the right to obtain information about your personal data processed by us, including the purpose of processing, the categories of data, recipients, and the planned retention period.

  • Right to rectification (Art. 16 GDPR): You have the right to request correction of inaccurate data or completion of your stored data.

  • Right to erasure (Art. 17 GDPR): You have the right to request the deletion of your personal data, provided that the processing is not necessary for exercising freedom of expression, compliance with a legal obligation, reasons of public interest, or defense of legal claims.

  • Right to restriction of processing (Art. 18 GDPR): You may request restriction of processing if (i) you dispute the accuracy of the data, (ii) processing is unlawful but you oppose deletion, (iii) we no longer need the data, or (iv) you have objected to processing under Art. 21 GDPR.

  • Right to be informed (Art. 19 GDPR): If you have asserted your right to correction, deletion, or restriction of processing, we are obliged to notify all recipients of your personal data unless this proves impossible or involves disproportionate effort.

  • Right to data portability (Art. 20 GDPR): You have the right to receive your personal data in a structured, commonly used, machine-readable format or to request transmission to another controller.

  • Right to withdraw consent (Art. 7(3) GDPR): You can withdraw your consent to data processing at any time with future effect. Processing done before withdrawal remains lawful.

  • Right to lodge a complaint (Art. 77 GDPR): If you believe that processing your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority in your country of residence, place of work, or the place of the alleged infringement.

 

13.2 Right to Object

If we process your personal data on the basis of our overriding legitimate interest under a balancing of interests (Art. 6(1)(f) GDPR), you have the right to object to this processing at any time for reasons arising from your particular situation.

If you exercise your right to object, we will stop processing the data concerned unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or if the processing serves the establishment, exercise, or defense of legal claims.

If your personal data is processed for direct marketing purposes, you have the right to object at any time to such processing. If you object, we will stop using your data for direct advertising immediately.

You can exercise your right to object at any time by contacting us via the contact details provided at the beginning of this privacy policy.

 

14) Duration of the Storage of Personal Data

The duration of the storage of personal data is determined based on the respective statutory retention period (e.g., commercial and tax retention periods). After expiration of the period, the corresponding data will be routinely deleted, provided it is no longer required for the fulfillment or initiation of a contract and/or there is no longer a legitimate interest on our part in the continued storage.