Privacy Policy

Dear customer!
We are glad that you are interested in data protection. We want to give you an easy-to-understand overview of our data protection process.
Our goal is to give you a fantastic customer experience which also means that you can always trust us and that you feel that we are always open and honest. Thanks to your trust in our product, we can give you this fantastic customer experience. We want to thank you for your cooperation.

Who are we?

We are foodora AB , but usually we are just called foodora . You can always contact us as follows:

foodora AB
Jakobsbergsgatan 24
111 44 ​​Stockholm
Sweden
Email: support@foodora.se

When you visit our website, use our app and platform, register as a user or place an order, it means that you agree to this privacy policy.

As the person responsible for personal data, we decide how we will process your personal data, for what purpose and in what way. We are required by law to provide you with the following information - but for us the main reason is that we believe that cooperation should always be based on honesty.

As the person responsible for personal data, it is our responsibility that all our processing of data takes place in accordance with the requirements of the law. Our processing of your personal data is based on what you can reasonably expect (link to "legitimate interests").

If you have any questions about data protection at foodora, you can always contact the person responsible for data protection with us via the following e-mail address: DPO@deliveryhero.com.

Our company also has a global data protection officer as we are part of the large Delivery Hero Group.

As a group, we make certain decisions together. Our parent company, Delivery Hero SE, Oranienburger Straße 70, 10117 Berlin, Germany, and we jointly decide how to process personal data and what purposes we consider appropriate

We are your contact point if you have any questions regarding our data protection.

You have the right to privacy and you always have a choice

As a customer, you can choose which information you want to share with us. Of course, we need some information to be able to fulfill our agreement. But it does not necessarily include all the information you can make available to us. If you want to reveal less information about yourself, you can follow these steps:

Cookies : You can install add-ons in your browser that block unnecessary cookies. That way, you'll not see any interest-based ads.

Advertising : If you do not want to receive newsletters from us, you can cancel your subscription at any time. Then we can not send you any of our fantastic offers.

No data sharing : If you do not want to share any information at all with us, it's sad. Then we will not have the opportunity to tell you how good our products are.

You can also exercise the following rights at any time:

Right of access
You have the right to know what information we store about you and how we process that information.

Right to Correction
If you find that the information we have about you is incorrect, you can always ask us to correct it.

Right to delete
You can always ask us to delete information about you that we have stored.

Right to limitation of treatment
If you do not want your data to be deleted, but do not want us to process it further, you can ask us to limit our processing of your data. In such cases, we will archive your data and only integrate it into our systems again if and when you want. In the meantime, however, you can not use our services, as this means that we need to process the data.

Right to data portability
You can ask us to send the information we store about you in a machine-readable format to yourself or to another responsible person. In this context, we will make the information available to you or the responsible person in JSON format.

Right to object to the processing of your data
You can withdraw your consent at any time or object to further processing of your data. This also includes that you can object to treatment that we perform without your consent but based on our legitimate interests. This applies, for example, to direct marketing. You can object to receiving more newsletters at any time. If you do not agree with the purposes of our treatment based on legitimate interests or if you wish to object to it, you can protest at any time due to this policy or regarding a particular situation. In that case, send an e-mail to: support@foodora.se. We will then review the processing again and either stop processing your data for the current purpose or explain our purposes for the processing and why we will continue to process the data.

Automated Decision Making
We also process your personal data based on algorithms to simplify the process. Of course, you have the right not to fall under decisions that are only made on the basis of automatic processing. If you believe that we have denied you access in an unfair manner, you can always contact us at: support@foodora.se. We will then investigate the case separately and decide on a case-by-case basis.

Right to complain
If you believe that we have made a mistake regarding your personal data or rights, you can complain to the appropriate supervisory authority at any time.

The supervisory authority responsible for us in this case is:
Integrity Protection Authority
Phone: 08-657 61 00
Email: imy@imy.se

If you want to exercise your rights, you can contact support@foodora.se at any time.

What information do we process?

In the following description of our processing, we refer in each individual case to categories of personal data. A category contains several personal data, which are usually processed together for the given purpose.
"Personal information" refers to information that can identify you or make you identifiable.
We usually process the following categories of personal data for the following reasons:

Contact information:
Name, address, telephone number, e-mail address, ID from any social media (if applicable).

Reason:
If you contact us, we collect this information because we need to know who we are talking to and what we have talked about, so that we can help you in the matter that you are contacting us about. This also applies if you leave comments on our social media pages. We do not combine this information with your profile information on our platform, but we can still identify you via your social media ID.

Location data:
Address, zip code, city, country, longitude, latitude.

Reason:
We need this information to be able to deliver your orders. We create longitude and latitude automatically to be able to process your delivery address in our interconnected systems, such as our Rider app, and to show your address to our cyclists or partner cyclists.

Profile data (main data)
Name, e-mail address, password, telephone number, delivery addresses, interests, demographic information (age, delivery address).

Reason:
This information is your main data that we absolutely need to perform our services.Without e-mail address / telephone number and password you can not create a profile This together with your name forms your main data. We need to know your age to determine that you are not a minor.

Device information and access data:
Device ID, device identification, operating system and corresponding version, access time, configuration settings, Internet connection information (IP address).

Reason:
At each access, we store this information for technical reasons. We also use parts of this information to detect suspicious behavior at an early stage and avoid injury.

Ordering information:
Order history, selected stores or restaurants, invoices, order ID, order comments, payment method information, delivery address, successful orders and canceled orders.

Reason:
Every time you place an order, this information is added to your profile. You can view all this information in your profile at any time. The information should give you an overview of your own interests and previous orders. We also use the same information to improve our services. In addition, we anonymize this information when you request deletion or when your profile becomes inactive, so that we can use the information in anonymised form to optimize our services.

Communication information:
Name, email address, phone number, device ID.

Reason:
If you want to receive our newsletter, an SMS, or a push message in the app from us, we need certain information to send the message. Instead of greeting you with "Hello you", we think it is more customer-friendly to address you by your name. This category of personal data is also used for us to be able to contact you, for example if it is not possible to deliver a certain product and we want to offer you another alternative.

Payment Information:
Payment method, pseudonymized credit / debit card information.

Reason:
We need this information to track your payments and assign them to the orders you place.

Delivery information:
Name, delivery address, telephone number, order ID.

Reason:
In accordance with the principle of data minimization, we only provide the information to our cyclists and partners that they need to prepare and deliver your order.

For what purposes do we process data?

We only process your personal data in accordance with strict legal requirements. We pay special attention to taking into account all the principles of processing personal data. Delivery Hero Group is very concerned about transparency. Therefore, we only process your data if it can be done legally and you can reasonably expect it to be processed. If during an evaluation we come to the conclusion that the treatment can not reasonably be expected, we will only continue the treatment with your express consent.

Account creation, SSO registration and administration of your profile

In order for us to be able to offer our services to you, it is necessary that we process your personal data. You send much of that information to us. Other parts of the information we collect automatically when you use our platforms. In any case, we strive to process as little information as possible. You can help us by only sharing with us information that is necessary for us to fulfill our contractual obligations.

Account creation

When you create a customer account, we ask you to enter your main data. This means information that is absolutely necessary.We can not create a customer profile without this information. Your e-mail address and telephone number are particularly important to us, as we use that information to identify you in our system the next time you want to log in. We also want to ask you to choose your password carefully. Do not use the same password on multiple websites. A password should consist of at least 12 characters, of which at least one lowercase letter, one uppercase letter, one special character (!? #,% & Etc.) and one number. We advise you not to share your password or email address with anyone else.

Categories of personal data :
Profile data (main data)
Device information and access data

Legal basis :
Article 6, paragraph 1 (b) of the GDPR: performance of an agreement

Login

If you already have a customer account, you will need to enter your email address and password to log in. If we discover discrepancies during the login, for example that the wrong password is entered several times, we will take appropriate measures to prevent damage to both ourselves and you.

Categories of personal data :
Profile data (main data)

Legal basis :
Article 6, paragraph 1 (b) of the GDPR: performance of an agreement, for registration;
Article 6, paragraph 1 (f) of the GDPR, for the security measures


Single sign-on

Facebook

If you have a Facebook profile, instead of filling in your information to create a customer account on our website, you can choose to register via the social plugin "Facebook Connect" from the social network Facebook, which is run by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA (“Facebook”), within the framework of the so-called Single sign-on technology. The social plug-in program "Facebook Connect" is displayed on our website with a blue button that has the Facebook logo and the text "Log in with Facebook" or "Register with Facebook" (in English "Log in with Facebook", "Connect with Facebook" ”Or“ Sign in with Facebook ”).

If you open a page on our website that has such a plug-in, your browser will establish a direct contact with Facebook's servers. The content of the plug-in is sent directly from Facebook to your browser and integrated on the page. Through this integration, Facebook receives information that your browser has opened the current page on our website, even if you do not have a Facebook profile or are not logged in to Facebook. This information (including your IP address) is sent directly from your browser to a Facebook server in the US and stored there. These data processing actions are performed in accordance with Article 6 (1) (f) of the GDPR, based on Facebook's legitimate interest in displaying personalized ads based on browsing behavior.

By using this "Facebook Connect" button on our website, you can thus register on our website using your Facebook user information. Only if you give your express consent in accordance with Article 6, paragraph 1 a) of the GDPR before the registration process, on the basis of the corresponding note regarding the data exchange with Facebook, we will receive the public and publicly available information stored in your profile on Facebook when you use the "Facebook Connect" button, depending on your data protection settings on Facebook. This information includes user ID, name, profile picture, age and gender.

We would like to point out that after changes have been made to Facebook's terms for data protection and use, your profile pictures, your friends' user IDs and friends list can also be transferred, if these have been marked as "public" in your Facebook privacy settings.The information transmitted by Facebook is stored and processed by us to create a user account with necessary information, if you have published the information on Facebook (title, first name, last name, address information, country, e-mail address, date of birth) Similarly, we can transfer information (such as information about your surfing behavior) to your Facebook profile, provided you agree.
You can revoke your consent at any time by sending us a message. Facebook Inc. is domiciled in the United States and complies with standard contractual clauses to ensure that a sufficient level of data protection is always complied with.

Google

If you have a Google Account, you can use this account to sign up or sign in to our platform. Google accounts for European users are provided by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland ("Google Ireland"), a subsidiary of Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043 ("Google").

By clicking the "continue with Google" button on our website, you can register or log in with your Google user information. Only if you give your express consent in accordance with Article 6, paragraph 1 a) of the GDPR before the registration process, on the basis of the corresponding note regarding the data exchange with Google, we will receive your Google ID, username and e-mail address. We will never access your Google password and will not be able to log in to your Google account. You can read more about data sharing with Google when you sign in to our Google platform by reading Google's explanation at the following link:

https://support.google.com/accounts/answer/112802 .

The data transmitted by Google is stored and processed by us only to create a user account with the necessary information. Google adheres to the standard agreement clauses to ensure that an appropriate level of protection of personal data can always be provided.

Apple

If you have an Apple account, you can use your Apple ID to register or log in to our platform. Apple ID provided by Apple Inc. One Apple Park Way, Cupertino, California, USA, 05014 ("Apple").

By clicking on "Log in with Apple" on our website, you can register or log in with your Apple ID. Only if you give your express consent in accordance with Article 6, paragraph 1 a) of the GDPR before the registration process, based on the corresponding note regarding the data exchange with Apple, we will receive your AppleID, username and e-mail address. We will never access your Apple password and will not be able to log in to your Apple account.

The data transferred by Apple is stored and processed by us only to create a user account with the necessary information. Please note that we have no visibility or influence over Apple's personal data management to create your Apple ID. To read more about Apple's work with data protection, visit https://www.apple.com/legal/privacy/.

Categories of personal data :
Profile data (main data)
Contact information
Facebook profile information

Legal basis :
Article 6, paragraph 1 (a) of the GDPR: consent

Manage your profile

You can log in to your profile at any time and change your personal information, such as name, email address and phone number. You can also view your previous orders.

Categories of personal data :
Profile data, location data
Ordering information
Device information and access data
Ordering information
Communication information
Payment Information

Legal basis :
Article 6, paragraph 1 (b) of the GDPR: performance of an agreement

Order Management

Once you have registered and decided to place an order, we store this information in your profile and process it further so that you can send your order to us. When you send your order, your personal information is transferred to our administration where they then transferred to other systems for further processing.

Categories of personal data :
Contact information
Location data
Device information and access data

Legal basis :
Article 6, paragraph 1 (b) of the GDPR: performance of an agreement


Buffering

Once you have logged in to your profile and made your choices, the products are saved on your profile. If you happen to close your browser or app by mistake, you can continue from the latest stage of your order. The latest information is stored in a cookie.

Categories of personal data :
Profile data (main data)
Device information and access data
Ordering information

Legal basis :
Article 6, paragraph 1 (f) of the GDPR: legitimate interests
The legitimate interest is to give you a better ordering experience, where you can easily continue with your order if the browser or app is accidentally shut down.

Delivery

Once you have placed a successful order, several processes run in the background to ensure that the order is delivered quickly. The following text describes how and why your data is processed.

Transfer to cyclists and partners

We use different cyclists for delivery. They can be permanent employees, freelancers or come from third parties who provide us with cyclists on the basis of an agreement on data processing when we deliver our orders. In all these cases, we send your personal information to the cyclists so that they can deliver your order quickly.

Categories of personal data :
Delivery information to the marketplace's partners (the partner's own delivery)
Names, addresses, telephone numbers of our own cyclists

Legal basis :
Article 6, paragraph 1 (b) of the GDPR: performance of an agreement

Calls from cyclists or partners

If a product of your choice is not available for delivery, or if our cyclists can not reach you at the delivery address you provided, we have instructed our partners or cyclists to call us so that the problem can be solved easily.

Categories of personal data :
Delivery information

Legal basis :
Article 6, paragraph 1 b) of the GDPR: performance of a contract, in the case of calls from the cyclist.
Article 6, paragraph 1 (f) of the GDPR: legitimate interests, in the case of calls from the restaurant or shop. Our partners have no right at all to your personal information, and they may not under any circumstances use it for their own purposes. If you are still contacted by a partner without first giving your consent, we ask that you report the incident to us via e-mail to: support@foodora.se.

Saved payment methods

To make the ordering process even smoother for you, we offer to save the payment method that you prefer. This means that you do not have to enter the payment details again the next time you place an order. In order for us to store this information, we must first obtain your consent. You can save your payment information by clicking in the consent field.You can revoke your consent for future use at any time by disabling the consent field again or informing us by email at: support @ foodorase.

Categories of personal data :
Payment Information

Legal basis :
Article 6, paragraph 1 (a) of the GDPR: consent

Advertising and marketing

Direct marketing

Newsletter

If you have given us your e-mail address when you purchased goods or services or created an account on our platform, we reserve the right to regularly send offers of similar goods or services that you have already purchased from us to you.
The content of our newsletters varies, and so do the techniques and criteria we use to design the newsletters and divide customer groups. For example, a customer group can receive a special newsletter with special offers from restaurants they ordered from. Other newsletters may apply to specific products related to a particular taste, such as sushi, Indian delicacies or pizza.
We use different information from your order history and delivery address. This profiling process means that we automatically process your information. The specific customer segmentation may have a legal effect on you or significantly affect you in other ways, if you receive certain newsletters and are not included in other campaigns.

If automatic decision-making leads to a negative result for you and you do not agree, you can contact us at: support@foodora.se . In that case, we will make an individual assessment of the circumstances of your case.

Categories of personal data :
Contact information
Location data
Ordering information

Legal basis :
Data processing in this way takes place only on the basis of our legitimate interest in personalized direct mail in accordance with Article 6, paragraph 1 f) of the GDPR. If you have initially objected to us using your e-mail for this purpose, we will not send you e-mails for marketing purposes. You have the right to object to the use of your e-mail address in the above-mentioned marketing purposes at any time with future effect by notifying the responsible person described at the beginning of this policy. Once your objection is received, the use of your email address for marketing purposes will cease immediately.

NPS (customer survey)

We are constantly striving to improve our services. Constructive feedback from you is very important to us. Therefore, we will sometimes send customer surveys to you, where we ask for your opinions. If you do not want to receive customer survey invitations, you can unsubscribe from them at any time. In all inquiries about customer surveys, you can click on "unsubscribe" (or similar wording, in English "Unsubscribe"). We will not contact you again then.

Categories of personal data :
Communication information

Legal basis :
Article 6, paragraph 1 (f) of the GDPR: legitimate interests
Our legitimate interest is the purpose described above.

The app

We are very interested in informing you about new partners or offers when you use our app. We always want to give you a fantastic customer experience. To achieve this, we negotiate very good offers for you with our store or restaurant partners. To give you information about offers, we send messages in the app or push messages. It is crucial that you have activated this in your device / devices.

Categories of personal data :
Location data
Profile data (main data)
Ordering information

Legal basis :
If processing takes place with your consent, the legal basis is Article 6, paragraph 1 a) of the GDPR, more specifically your consent. Otherwise, the processing is based on our legitimate interest in accordance with Article 6, paragraph 1 f) of the GDPR. Our legitimate interest lies in the purpose described above.

SMS

In addition to other ways, we also use SMS to inform you about new offers in your area. However, you will only receive an SMS from us if you have given your consent. You can revoke your consent at any time with future effect. In that case, send an e-mail to: support@foodora.se. It's free for you both to sign up and to cancel.

Categories of personal data :
Contact information
Ordering information

Legal basis :
Article 6, paragraph 1 (a) of the GDPR: consent

Online Marketing

Our service is largely based on informing potential customers that we offer a fantastic customer experience and that it is always worth visiting our platform. In order to reach as many potential customers as possible, we are very active in online marketing. It is also at least as important that we gain the trust of potential customers and that we strengthen the trust of existing customers. Therefore, we want to describe our process as clearly as possible.

Targeting

In principle, targeting is about switching and toning ad banners on websites that are tailored to specific audiences. The goal is to show the most attractive ads as individually as possible to users and potential customers. First we define an audience and then we hire service providers to show our ads to the defined audience. We do not process any personal data, as this is initially done anonymously. To better define the target group, we segment customer types and place different ads on different portals.

New targeting

As soon as you have visited our website and, for example, placed an order in the shopping cart, we store this information in cookies. If you continue to browse other websites, our advertising partners will help us remind you that you have not completed your order yet. We do not want you to miss out on our amazing customer experience.
You can disable the new targeting by installing appropriate add-ons in your browser. You can and should also regularly clear cookies stored in the browser you use

Categories of personal data :
Contact information

Legal basis :
Article 6, paragraph 1 (f) of the GDPR: legitimate interests
Our legitimate interest is the purpose described above.

Cookies

To make visits to our website and in our app as attractive as possible and to enable certain functions, we use so-called cookies on various pages. Cookies are small text files that are stored on your (user's) device. Some of the cookies we use are deleted at the end of a browser session, ie when you close the browser. (They are called session cookies.) Other cookies remain on your device and allow us or a company close to us to recognize your browser on your next visit. (They are called persistent cookies.) You can set your browser so that you are informed about the settings for cookies and individually decide whether you want to accept cookies or not, in special cases or in general. If you do not accept cookies, it may limit the functionality of our website and our app.

Categories of personal data :

Legal basis :
If processing takes place with your consent, the legal basis is Article 6, paragraph 1 a) of the GDPR, more specifically your consent. Otherwise, the processing is based on our legitimate interest in accordance with Article 6, paragraph 1 f) of the GDPR. Our legitimate interest lies in the purpose described above.

Bonus program

We want to reward our customers' loyalty with attractive offers and points. For that reason, we give customers the opportunity to participate in bonus programs. Participation in bonus programs requires consent. You can revoke your consent at any time with future effect. In that case, send an e-mail regarding this to: support@foodora.se.

Categories of personal data :
Contact information

Legal basis :
Article 6, paragraph 1 (a) of the GDPR: consent

Sweepstakes

Participation in the lottery requires your consent. If you have already given your consent and want to revoke it with future effect, you can do so at any time by sending an e-mail regarding this to: support@foodora.se. In that case, we will exclude you from participating in our raffles and you will not receive any more invitations to raffles.

Legal basis :
Article 6, paragraph 1 (a) of the GDPR: consent

User Experience Surveys:

We are constantly developing new products and try to adapt our services according to our customers' wishes. To measure how effective such changes are, we offer regular interviews with our user experience team. In the interviews, we register user behavior and ask about opportunities for optimization.
Participation in interviews requires your consent. If you have already given your consent and want to revoke it with future effect, you can do so at any time by sending an e-mail regarding this to: support@foodora.se. In that case, we will exclude you from participating in our interviews and you will not receive any more invitations to such interviews.

Categories of personal data :
Contact information
Ordering information

Legal basis :
Article 6, paragraph 1 (a) of the GDPR: consent

Customer Relationship Management

Your requests

That our customers will be satisfied is our main goal. Therefore, we take great care to be available to answer all your questions. To be able to answer questions and understand the overall problems, we store the content from conversations in our system for managing customer relationships when we are contacted. What information we store depends on what information is provided to us as part of the communication.

Categories of personal data :
Contact information
Ordering information

Legal basis :
Article 6, paragraph 1 (b) of the GDPR: performance of an agreement

Anti-fraud and security on our platform

To protect our customers and our platform from possible attacks, we continuously monitor the activities on our website for all visitors. Due to this, we use various technical measures to ensure that suspicious behavioral patterns are detected at an early stage and stopped in good time. In order to achieve our goal, several monitoring mechanisms are run in parallel and prevent potential attackers from gaining access to our website at all.

The decision-making process is automated and can have a legal effect on the people concerned, or affect them in a similar way . If automatic decision-making leads to a negative result for you and you do not agree, you can contact us at: support@foodora.se.In that case, we will make an individual assessment of the circumstances of your case

Categories of personal data :
Device information and access data
Contact information
Payment information
Ordering information
Discount Code Information

Legal basis :
Article 6, paragraph 1 (a) of the GDPR: consent

Mergers, acquisitions and changes of ownership

We also want to inform you that in the event of a merger with or acquisition made by another company, we will share information with that company. Of course, in that case, we will require that company to comply with data protection laws and regulations.

Categories of personal data :
Contact information
Delivery information
Location data
Profile data (main data)
Device information and access data
Ordering information
Communication information
Payment information
Discount Code Information

Legal basis :
Article 6, paragraph 1 (f) of the GDPR: legitimate interests
Our legitimate interest is the purpose described above.

Discount codes

We often offer discount codes for our platforms. We can do this for various reasons. The purpose of the discount codes is to reward our loyal customers and encourage them to continue to lead other loyal customers. In order to control the number of discount codes and their value and frequency of use, and to prevent abuse, we collect various personal data.

Categories of personal data :
Profile data (main data)
Discount Code Information

Legal basis :
Article 6, paragraph 1 (f) of the GDPR: legitimate interests
Our legitimate interest is the purpose described above.

Who we work with and where we process your data

We never disclose your information to any unauthorized third party. However, as part of our work, we procure services from selected service providers and give them limited and strictly monitored access to some of your information. However, before we pass on personal data to these partner companies for processing on our behalf, each individual company is reviewed. All data recipients must comply with the legal requirements regarding data protection and prove their level of data protection in an appropriate manner.

Delivery Hero Group

Within a group, it is sometimes necessary to use resources efficiently. We support each other within our group to optimize our processes. We also provide shared content and shared services. This includes, for example, technical support for systems.
This is a shared responsibility as set out in Article 26 of the GDPR. We are fully responsible for meeting the data protection requirements together with Delivery Hero SE, Oranienburger Straße 70, 10117 Berlin, Germany, dpo@deliveryhero.com. Within the framework of being jointly responsible for personal data, we and Delivery Hero SE have agreed that we will both guarantee your rights.
For practical reasons, we have determined that we are at your service regarding all of your questions regarding data protection regulations, and in particular, we guarantee your rights under Articles 15 to 22 of the GDPR.
Feel free to contact us regarding this at the email address: support@plattform.com

Service Providers

We use various personal data assistants (data processors) in our daily processing. They process your personal data in accordance with the requirements of Article 28 of the GDPR and only in accordance with our instructions. They have no right at all to the data. We also monitor our personal data assistants and include only those who meet our high expectations.Because we use different personal data assistants and change them from time to time, it is not appropriate for us to identify specific recipients of personal data. But if you are interested, we are happy to tell you the name of the assistant or assistants we use at the time.

Third parties

In addition to personal data assistants, we also work with third parties to whom we transfer personal data, but who are not bound by our instructions. This applies, for example, to consultants, lawyers or tax consultants who receive customers' personal data from us on the basis of an agreement and process the data for legal reasons or to protect our own interests. We do not sell or rent your personal information to any third party under any circumstances. This will never happen without your explicit consent.

Prosecutors and legal proceedings

Unfortunately, some of our customers or service providers may not behave fairly and want to harm us. In such cases, we are not only legally obliged to hand over personal data, but it is also in our own interest to prevent damages and substantiate our claims, as well as to contradict unfair claims.

Social media

We have profiles on various social media platforms where we advertise our products and have contact with customers. Because we have these profiles on third-party platforms, this means that the player collects different personal information from you every time you visit the social media channels.

Responsibility
We and the respective actors in the social media platform act as joint personal data managers. When two or more personal data controllers together decide how and why personal data is processed, they are jointly responsible.

The social media platforms Facebook and Instagram are operated by Facebook Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland.

We are responsible for all interactions on our own platforms. Those who run the social media platforms are responsible for personal data for interactions and interactions outside our profiles.
An exception applies to the processing of personal data for use analysis described below (page statistics). We are jointly responsible for this with Facebook.

The following links show exactly what information is collected by each social media player:
Facebook Privacy Policy
Instagram Privacy Policy

Data Processing

Facebook provides statistics and insights regarding pages to page administrators. This helps administrators understand what activities visitors are doing on their pages ("page statistics").
When you visit or interact with a page or its content, information such as the following can be collected and used to create page statistics:

  • That a page, post or video from a page is displayed
  • That a page is followed or followed
  • That a page or post is liked or disliked
  • That a page is recommended in a post or comment
  • That a page post is commented on, shared or responded to (including the type of reaction)
  • That the post on a page is hidden or reported as spam
  • That a link to a page is clicked on from another page on Facebook, or from another page outside Facebook
  • Hold the cursor over a page's name or profile picture to display a preview of the page's content
  • Click on the website, phone number, Get Directions button or other button on a page
  • Whether you use a computer or mobile device when you visit or interact with the page or its contents

We and Facebook are jointly responsible for processing your data for the provision of page statistics. To this end, we and Facebook have agreed on a division of our data protection obligations under Article 26 of the GDPR.

Your rights as registered
We are solely responsible for all processing of personal data on this site, in accordance with the provisions on data protection. As part of our agreement with Facebook, we have concluded that Facebook is primarily responsible for fulfilling its information obligations in connection with page statistics data and for ensuring that you can exercise your rights under the GDPR. You can find more information about your rights as a personal data registered with Facebook in Facebook's privacy policy regarding page statistics .

Data processing outside the EU

We mainly process your data within the European Union (EU) and the European Economic Area (EEA). However, some of the service providers mentioned above are based outside the EU and the EEA. GDPR sets high standards regarding the transfer of personal data to third countries. All our data recipients in third countries must live up to those requirements. Before we transfer your personal data to any service provider in a third country, the service provider is first evaluated on the basis of its level of data protection. Providers only end up on our list of current service providers if they can demonstrate adequate levels of data protection.

Regardless of whether our service providers are located within the EU / EEA or in a third country, each service provider must sign an agreement with us regarding data processing. Service providers outside the EU / EEA must meet additional requirements. According to Article 44 et seq. Of the GDPR, personal data may be transferred to service providers who meet at least one of the following requirements:

  1. The European Commission has decided that third countries ensure an adequate level of protection (for example Israel and Canada).
  2. Standard data protection clauses have been adopted:
    These are contractual clauses which are not subject to change by the Contracting Parties and which provide for an adequate level of data protection.
  3. Approved certification mechanism:
    Additional appropriate protective measures according to art. 46 GDPR has been implemented. The GDPR also allows the transfer of data in other situations, such as when a recipient has accepted a binding agreement or complies with an approved certification mechanism, or where the data subject has given consent to processing. We only transfer your information to service providers that meet at least one of these requirements.If we transfer data to third countries, it is mainly to companies based in the USA or Israel

How long do we store your information?

In general, we delete your information when the purpose has been fulfilled. The exact deletion rules are defined in our regional deletion policies. Different removal rules apply depending on the purpose of the treatment. Within our deletion principles, we have defined different task classes and assigned them rules on deletion periods. The information collected is marked with a deletion rule. Consequently, when the storage period has expired, the stored data is deleted.

We will delete your personal information if you notify us that you wish to do so or if your account has not been active for three years. In that case, we will also delete your account. Before that happens, you will receive a separate message from us to the email address you registered for your user account.

In addition to the removal rules defined by us, there are also statutory storage periods that we must follow. For example, tax data must be stored for at least between six and ten years, or in some cases even longer. Such specific storage periods vary according to local legal requirements.

Therefore, we may need to keep some of the stored information according to the law even if you request deletion. But in such cases, we will limit data for further processing.

We will also continue to store your information if we have the right to do so in accordance with Article 17, paragraph 3 of the GDPR. This is especially true if we need your personal information to be able to establish, assert or defend legal claims.

Regarding our cookie policy

Tracking cookies are used to associate your order with the original site

Right to change

We reserve the right to change this statement of data protection in accordance with statutory terms. We will inform you of significant changes, such as changes in purpose or new purposes of data processing.

Latest update: September 2019

Policy for cookies and web-tracking

To make visits to our website and in our app as attractive as possible and to enable certain functions, we use so-called cookies on various pages. Cookies are small text files that are stored in your (user's) browser. Some of the cookies we use are deleted at the end of a browser session, ie when you close the browser. Other cookies remain in your browser and allow us or a company close to us to recognize your browser on your next visit. (They are called persistent cookies.) You can set your browser so that you are informed about the settings for cookies and individually decide whether you want to accept cookies or not, in special cases or in general. If you do not accept cookies, this may limit the functionality of our website and our app.

We divide cookies into three categories:

  • Mandatory
  • Functional
  • Personal

Below you will find more information about your choices as well as a detailed list of the cookies we use.

Mandatory cookies are required to navigate our website and to use the services we provide. If these cookies are not used, the correct functionality of our website (for example, entering text) is not guaranteed when visitors browse pages on the website. These cookies also collect information about how visitors use our website, such as which pages they visit most often and whether they receive error messages from websites. These cookies collect complex, anonymous information that does not identify visitors.The cookies also make our website remember users' choices, such as language or region, to provide better features. By law, you are not required to take action to accept them. We also use these cookies to store information about whether you have given your consent to use cookies or to temporarily store information that you have entered.

Functional cookies collect anonymous information. They can not track your navigation on other websites. They can also be used to send targeted ads / offers or to measure how effective an advertising campaign has been. They can be used to determine which online marketing channels are most effective. With these cookies, we also store your login information in your browser, so that you can log in automatically the next time you visit our website. Because we want to present a website to you that is designed for optimal user-friendliness, functional cookies are usually activated when you visit our website.
To enable the described measures, we also use cookies from third parties in this category. By analyzing your anonymized usage, we can find areas where our site can be improved.

Personal cookies are used to display more targeted ads that are relevant to the user and tailored to the user's interests. These cookies help us provide customized target group lists for marketing to our marketing partners. We need your consent to enable these cookies.

Objection to the use of cookies
If you do not want us to collect and analyze information about your visit, you can object to it at any time with future effect (so-called opt-out, deregistration).

To implement the objection technically, an opt-out cookie is set in your browser. This cookie is for the sole purpose of identifying your objection. Please note that for technical reasons, an opt-out cookie can only be used for the browser for which it has been set. If you clear your cookies or use a different browser, you will need to redo the process (object again).

.