Privacy
I. Name and Address of the Data Controller
The data controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states, as well as other data protection regulations, is:
DEPICE Weiland Sports
Claude Weiland
Ulmenstr. 41
26384 Wilhelmshaven
Germany
Tel.: +49 4421 4008020
Email: shop@depice.com
Website: https://depice.com
II. General Information on Data Processing
We generally process personal data of our users only to the extent necessary for providing a functional website and our content and services. The processing of personal data of our users is regularly carried out only with the user's consent. An exception applies in cases where obtaining prior consent is not possible for practical reasons and the processing of the data is permitted by law.
Where we obtain consent from the data subject for processing personal data, Article 6(1)(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Article 6(1)(b) GDPR serves as the legal basis. This also applies to processing operations that are necessary for taking steps prior to entering into a contract.
Where processing personal data is necessary for compliance with a legal obligation to which our company is subject, Article 6(1)(c) GDPR serves as the legal basis.
In the event that processing personal data is necessary to protect the vital interests of the data subject or of another natural person, Article 6(1)(d) GDPR serves as the legal basis.
When processing personal data is necessary to protect the vital interests of the data subject or of another natural person, Article 6(1)(d) GDPR serves as the legal basis.
If processing is necessary for the purposes of the legitimate interests pursued by our company or a third party, and the interests or fundamental rights and freedoms of the data subject do not override those interests, then Article 6(1)(f) GDPR serves as the legal basis for the processing.
The personal data of the data subject will be erased or blocked as soon as the purpose of the storage no longer applies. Storage may also take place if this is provided for by European or national legislation in EU regulations, laws, or other provisions to which the controller is subject. Data will also be blocked or erased when a storage period prescribed by the aforementioned regulations expires, unless further storage of the data is necessary for the conclusion or performance of a contract.
III. Provision of the Website and Creation of Log Files
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing device.
The following data is collected:
the IP address of the requesting device,
date and time of access to our website,
time difference between the requesting host and the web server,
content of the request or the file accessed and transmitted to the user,
access status (successful transmission, error, etc.),
the amount of data transferred in bytes,
the website from which the user accessed our site,
the browser used by the user, the operating system, the interface, the browser language, and the browser software version.
This data is also stored in our system's log files. This data is not stored together with other personal data of the user.
The legal basis for the temporary storage of the data and the log files is Article 6(1)(f) GDPR.
The temporary storage of the IP address by the system is necessary to enable the delivery of the website to the user's computer. For this purpose, the user's IP address must be stored for the duration of the session.
Storage in log files is carried out to ensure the functionality of the website. The data also serves us for the technical optimization of the website and to ensure the security of our IT systems. The data is not used for marketing purposes in this context. These purposes also constitute our legitimate interest in data processing pursuant to Art. 6 para. 1 lit. f GDPR.
The data is deleted as soon as it is no longer required for the purpose for which it was collected. In the case of data collected to provide the website, this is the case when the respective session has ended.
In the case of data stored in log files, this is the case after a maximum of seven days. Further storage is possible in individual cases, e.g., in the event of an attack on our provider's IT systems.
The collection of data for the provision of the website and the storage of data in log files is essential for the operation of the website. Therefore, there is no option for the user to object.
Hosting
Our website is hosted by an external service provider. The personal data collected on this website is stored on the host's servers:
ALL-INKL.COM - Neue Medien Münnich
Owner: René Münnich
Hauptstraße 68
02742 Friedersdorf
The use of the host is for the purpose of fulfilling our contractual obligations to our customers and in the interest of a secure, fast, and efficient provision of our online services (Art. 6 para. 1 lit. b and f GDPR).
We have concluded a data processing agreement with the hosting provider in accordance with Art. 28 GDPR.
SSL Encryption
This site uses SSL/TLS encryption for security reasons.
IV. Use of Cookies
Our website uses cookies. Cookies are text files that are stored in or by the internet browser on the user's computer system. When a user visits a website, a cookie can be stored on the user's operating system. This cookie contains a characteristic string that enables the browser to be uniquely identified when the website is visited again.
We use cookies to ensure the functionality of our website. Some elements of our website require that the browser be identifiable even after a page change.
We also use cookies from third-party services on our website. Users are informed about the use of these services and their consent to the processing of the personal data used in this context is obtained. This privacy policy is also referenced in this context.
The legal basis for the processing of personal data using technically necessary cookies within the meaning of Section 25 Paragraph 2 of the German Telemedia Act (TMG) is Article 6 Paragraph 1 Letter f of the GDPR.
The purpose of using technically necessary cookies is to enable users to use websites. Some functions of our website cannot be offered without the use of cookies. For these functions, it is necessary that the browser is recognized even after a page change.
We require cookies for the following applications:
Shopping cart
Save language settings
Login information
The user data collected by technically necessary cookies is not used to create user profiles.
Our legitimate interest in the subsequent processing of personal data pursuant to Art. 6 para. 1 lit. f GDPR also lies in these purposes.
Cookies are stored on the user's computer and transmitted from there to our site. Therefore, as a user, you have full control over the use of cookies. By changing the settings in your internet browser, you can deactivate or restrict the storage of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to fully use all of the website's functions.
Consent Management Tool
We use the "JTL Consent Manager" consent management tool on our website to obtain and document users' consent for the storage of cookies and the use of certain technologies in accordance with data protection regulations.
When you visit our website, a banner will appear allowing you to grant consent for specific data processing activities (e.g., analytics and marketing tools).
You can withdraw or modify your consent at any time with effect for the future.
The legal basis for this processing is Article 6(1)(a) GDPR.
VII. Customer Account and Ordering
When you place an order, we collect and process your personal data only to the extent necessary for fulfilling and processing orders and handling inquiries. Providing this data is necessary for entering into a contract. Failure to provide this data will result in the contract not being concluded. Processing is based on Article 6 Paragraph 1 Letter b of the GDPR and is necessary for the performance of a contract with you.
Data is shared, for example, with shipping companies, payment service providers, and IT service providers. In all cases, we strictly adhere to legal requirements. The scope of data transfer is limited to the minimum necessary.
Data is blocked or deleted when it is no longer required for the performance of the contract. Even after the contract has been fulfilled, it may be necessary to store your personal data to comply with contractual or legal obligations.
You can have your stored data modified at any time. If the data is required for the fulfillment of a contract or for the implementation of pre-contractual measures, premature deletion of the data is only possible insofar as no contractual or legal obligations preclude such deletion.
IX. Contact Form and Email Contact
Our website includes a contact form that can be used for electronic communication. If a user chooses to use this form, the data entered in the input fields will be transmitted to us and stored. The following data is also stored at the time the message is sent:
The user's IP address
Date and time of registration
This privacy policy is referenced during the submission process for the processing of this data. Alternatively, you can contact us via the provided email address. In this case, the user's personal data transmitted with the email will be stored. This data will not be shared with third parties. The data will be used exclusively for processing the communication.
The legal basis for processing the data, if the user has given consent, is Article 6 Paragraph 1 Letter a GDPR. The legal basis for processing data transmitted via email is Article 6 Paragraph 1 Letter f GDPR. If the email contact aims at concluding a contract, the additional legal basis for processing is Art. 6 para. 1 lit. b GDPR.
We process the personal data from the input form solely for the purpose of handling your inquiry. In the case of contact via email, this also constitutes the necessary legitimate interest in processing the data.
The other personal data processed during the sending process serves to prevent misuse of the contact form and to ensure the security of our IT systems.
The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. For the personal data from the contact form's input fields and those transmitted via email, this is the case when the respective conversation with the user has ended. The conversation is considered ended when it is clear from the circumstances that the matter in question has been conclusively resolved. The additional personal data collected during the sending process will be deleted no later than seven days after collection.
The user has the right to withdraw their consent to the processing of their personal data at any time. If the user contacts us by email, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued. All personal data stored during the contact process will be deleted.
VIII. Advertising and Tracking
Use of Google Analytics 4
We use the web analytics service Google Analytics 4 from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
Google Analytics uses technologies such as cookies, which enable an analysis of your use of the website.
The information collected is generally transmitted to and stored on a Google server in the USA.
We have activated IP anonymization. This means that your IP address is shortened by Google within the European Union or in other contracting states of the Agreement on the European Economic Area before being transmitted.
The use of Google Analytics is based solely on your consent pursuant to Art. 6 para. 1 lit. a GDPR.
The data is generally stored for 14 months.
You can withdraw your consent at any time via our consent management tool.
The EU Commission has issued an adequacy decision for the USA (Trans-Atlantic Data Privacy Framework, TADPF). Google has been certified accordingly.
Use of Google Ads Conversion Tracking
We use the online advertising program "Google Ads" on our website and, within this framework, conversion tracking (visit action evaluation). Google Conversion Tracking is an analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; Google).
When you click on an ad placed by Google, a conversion tracking cookie is stored on your computer. These cookies have a limited lifespan, do not contain any personally identifiable information, and are therefore not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognize that you clicked on the ad and were redirected to this page. Each Google Ads customer receives a different cookie. This means that cookies cannot be tracked across the websites of different Ads customers.
The information obtained using the conversion cookie is used to generate conversion statistics. Here, we learn the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag. However, we do not receive any personally identifiable information.
Your data may be transferred to Google LLC servers in the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is therefore committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent pursuant to Section 25 Paragraph 1 Sentence 1 of the German Telemedia Act (TMG) in conjunction with Article 6 Paragraph 1 Letter a of the GDPR. The processing of your personal data is based on your consent pursuant to Article 6 Paragraph 1 Letter a of the GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
Further information and Google's privacy policy can be found at: https://www.google.de/policies/privacy/
Use of Google Tag Manager
We use Google Tag Manager from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
This application manages JavaScript and HTML tags, which are used to implement tracking and analytics tools. The data processing serves the purpose of tailoring and optimizing our website to user needs.
Google Tag Manager itself does not store any personal data, but it enables the integration and management of services that may process personal data. It also allows the triggering of other tags that may collect and process personal data. Further information on terms of use and data protection can be found here.
Use of Meta Conversion API
We use the Meta Pixel and the Conversion API from Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) on our website.
This data is processed for marketing and optimization purposes, in particular to display interest-based advertising to users and to analyze the effectiveness of our advertising campaigns.
Google Tag Manager does not store any personal data itself, but it allows the integration and management of services that may process personal data. When using the Meta Pixel, we and Meta are jointly responsible for data processing in accordance with Article 26 of the GDPR.
Data processing is based solely on your consent pursuant to Article 6(1)(a) of the GDPR.
The collected data may be transferred by Meta to the USA. The EU Commission has issued an adequacy decision for the USA (TADPF).
Further information can be found in Meta's privacy policy:
https://www.facebook.com/privacy/policy/
IX. Payment Service Providers
Use of PayPal
We use the PayPal payment service from PayPal (Europe) S.à.r.l. et Cie, S.C.A. (22-24 Boulevard Royal, L-2449 Luxembourg; "PayPal") on our website. The data processing serves the purpose of offering you the option of payment via this service. By selecting and using PayPal as your payment method, the data required for payment processing is transmitted to PayPal in order to fulfill the contract with you using the selected payment method. This processing is based on Article 6(1)(b) GDPR.
All PayPal transactions are subject to the PayPal Privacy Statement, which can be found at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.
We have concluded a data processing agreement with PayPal to the extent required by law.
Use of PayPal Express
We use the PayPal Express payment service from PayPal (Europe) S.à.r.l. on our website. et Cie, S.C.A. (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal"). The data processing serves the purpose of offering you payment via the PayPal Express payment service. To integrate this payment service, it is necessary for PayPal to collect, store, and analyze data (e.g., IP address, device type, operating system, browser type, location of your device) when you access the website. Cookies may also be used for this purpose. The cookies enable your browser to be recognized.
The processing of your personal data is based on Article 6(1)(f) GDPR, due to our overriding legitimate interest in offering a customer-oriented range of payment methods. You have the right to object to this processing of your personal data at any time on grounds relating to your particular situation.
By selecting and using PayPal Express, the data required for payment processing will be transmitted to PayPal in order to fulfill the contract with you using the selected payment method. This processing is based on Article 6(1)(b) GDPR. Further information on data processing when using the PayPal Express payment service can be found in the corresponding privacy policy at www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE#Updated_PS.
Use of PayPal Checkout
We use the PayPal Checkout payment service from PayPal (Europe) S.à.r.l. et Cie, S.C.A. (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. The data processing serves the purpose of offering you the option to pay via this payment service. By selecting and using payment via PayPal, credit card via PayPal, direct debit via PayPal, or "Pay Later" via PayPal, the data required for payment processing is transmitted to PayPal in order to fulfill the contract with you using the selected payment method. This processing is based on Article 6(1)(b) GDPR.
Cookies may be stored that enable the recognition of your browser. The resulting data processing is based on Article 6(1)(f) GDPR, due to our overriding legitimate interest in offering a customer-oriented range of payment methods. You have the right to object to this processing of your personal data at any time on grounds relating to your particular situation.
Credit card via PayPal, direct debit via PayPal & "Pay later" via PayPal
For certain payment methods, such as credit card via PayPal, direct debit via PayPal, or "Pay later" via PayPal, PayPal reserves the right to obtain a credit report based on mathematical-statistical methods using credit reference agencies. For this purpose, PayPal transmits the personal data required for a credit check to a credit reference agency and uses the information received about the statistical probability of payment default to make a balanced decision regarding the establishment, execution, or termination of the contractual relationship. The credit report may include probability values (score values) that are calculated using scientifically recognized mathematical-statistical methods and whose calculation includes, among other things, address data. Your legitimate interests are taken into account in accordance with legal regulations. The data processing serves the purpose of credit assessment for initiating a contract. The processing is based on Article 6(1)(f) GDPR, stemming from our overriding legitimate interest in protecting against payment defaults when PayPal provides advance payment.
You have the right to object, on grounds relating to your particular situation, at any time to this processing of your personal data based on Article 6(1)(f) GDPR by notifying PayPal. Providing this data is necessary for concluding the contract with your chosen payment method. Failure to provide this data will result in the contract not being concluded with your chosen payment method.
Third-party providers
When paying via a third-party payment method, the data required for payment processing is transmitted to PayPal. This processing is based on Article 6(1)(b) GDPR. To process this payment method, PayPal may then forward the data to the respective provider. This processing is also based on Article 6(1)(b) GDPR. Local third-party providers may include:
Apple Pay (Apple Distribution International Ltd., Hollyhill Industrial Estate, Hollyhill, Cork, Ireland)
Google Pay (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland)
Invoice Purchase via PayPal
When paying via invoice, the data required for payment processing is initially transmitted to PayPal. To process this payment method, PayPal then transmits the data to Ratepay GmbH (Franklinstrasse 28-29, 10587 Berlin; "Ratepay") in order to fulfill the contract with you using the selected payment method. This processing is based on Article 6 Paragraph 1 Letter b GDPR. Ratepay may conduct a credit check using mathematical-statistical methods (probability or score values) with credit agencies, following the procedure described above. The data processing serves the purpose of credit assessment for initiating a contract. This processing is based on Article 6 Paragraph 1 Letter f GDPR due to our overriding legitimate interest in protecting against payment defaults when Ratepay provides services in advance. Further information on data protection and which credit agencies Ratpay uses can be found at https://www.ratepay.com/legal-payment-dataprivacy/ and https://www.ratepay.com/legal-payment-creditagencies/.
More detailed information on data processing when using PayPal can be found in their privacy policy at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.
X. Rights of the Data Subject
If the legal requirements are met, you have the following rights under Articles 15 to 20 of the GDPR: the right to information, to rectification, to erasure, to restriction of processing, and to data portability.
Furthermore, under Article 21(1) of the GDPR, you have the right to object to processing based on Article 6(1)(f) of the GDPR, as well as to processing for direct marketing purposes.
If the processing of personal data listed here is based on our legitimate interest pursuant to Article 6(1)(f) of the GDPR, you have the right to object to this processing at any time, on grounds relating to your particular situation, with effect for the future.
After an objection has been lodged, the processing of the data in question will cease, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of establishing, exercising or defending legal claims.
If your personal data is processed for direct marketing purposes, you can object to this processing at any time by notifying us. Upon receipt of your objection, we will cease processing the data in question for direct marketing purposes.
You have the right to withdraw your consent to data processing at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work, or the place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR.
The supervisory authority with which the complaint has been lodged will inform the complainant of the progress and outcome of the complaint, including the possibility of a judicial remedy pursuant to Article 78 GDPR.