Who we are

Data protection declaration

Privacy policy

Scope of application 

This privacy policy is intended to inform users of this website about the type, scope and purpose of the collection and use of personal data by the website operator [ CAINACADIE e.U. , Babenbergerring 9A/ 1, A-2700 Wiener Neustadt, Austria, Tel. +43 (0)699 13334409, info@cainacadie.com] in accordance with the Federal Data Protection Act and the Telemedia Act.

The website operator takes your data protection very seriously and treats your personal data confidentially and in accordance with the statutory provisions.

This website may contain links to websites of other providers that are not covered by this privacy policy. We have no influence on whether their operators comply with data protection regulations.

Please bear in mind that data transmission on the Internet can always be subject to security vulnerabilities. Complete protection against access by third parties is not possible.

Types of data processed

– Inventory data (e.g., personal master data, names or addresses).
– Contact data (e.g., e-mail, telephone numbers).
– Content data (e.g., text entries, photographs, videos).
– Usage data (e.g., websites visited, interest in content, access times).
– Meta/communication data (e.g., device information, IP addresses).

Purpose of the processing

– Provision of the online offering, its functions and content.
– Responding to contact requests and communicating with users.
– Security measures.
– Reach measurement/marketing

Access data

The website operator or site provider collects data about access to the site and stores it as “server log files”. The following data is logged:

·      Visited website

·      Time at the time of access

·      Amount of data sent in bytes

·      Source/reference from which you reached the page

·      Browser used

·      Operating system used

·      IP address used

The data collected is only used for statistical analysis and to improve the website. However, the website operator reserves the right to check the server log files retrospectively if there are concrete indications of unlawful use.

Handling of personal data

The website operator only collects, uses and passes on your personal data if this is permitted by law or if you consent to the collection of data.

Personal data is all information that can be used to identify you personally and that can be traced back to you – for example, your name, e-mail address and telephone number. However, data about the company, the name of your website or which websites have been viewed by someone also count as personal data. Personal data is only collected, used and passed on by the provider if this is permitted by law or if the user consents to the collection of data.

Handling contact data

If you contact the website operator using the contact options provided, your details will be stored so that they can be used to process and respond to your inquiry. This data will not be passed on to third parties without your consent.

Dealing with comments and contributions

If you leave a contribution or comment on this website, your IP address will be saved. This is for the security of the website operator: if your text violates the law, he would like to be able to trace your identity.

Integration of third-party services and content

It may happen that third-party content, such as videos from YouTube, maps from Google Maps, RSS feeds or graphics from other websites are integrated into this online offering. This always assumes that the providers of this content (hereinafter referred to as “third-party providers”) are aware of the user’s IP address. This is because without the IP address, they would not be able to send the content to the respective user’s browser. The IP address is therefore required to display this content. We endeavor to only use content whose respective providers only use the IP address to deliver the content. However, we have no influence on whether the third-party providers store the IP address, e.g. for statistical purposes. Insofar as we are aware of this, we will inform users accordingly.

Cooperation with processors, joint controllers and third parties

If we disclose data to other persons and companies (processors, joint controllers or third parties) as part of our processing, transfer it to them or otherwise grant them access to the data, this will only be done on the basis of legal permission (e.g. if the transfer of data to third parties, such as payment service providers, is necessary to fulfill the contract), users have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).

If we disclose, transfer or otherwise grant access to data to other companies in our group of companies, this is done in particular for administrative purposes as a legitimate interest and, in addition, on a basis that complies with the legal requirements.

Transfers to third countries

If we process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA) or the Swiss Confederation) or if this is done in the context of the use of third-party services or disclosure or transfer of data to other persons or companies, this will only take place if it is done to fulfill our (pre)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to express consent or contractually required transfer, we only process or have the data processed in third countries with a recognized level of data protection, including US processors certified under the “Privacy Shield” or on the basis of special guarantees, such as contractual obligations through so-called standard protection clauses of the EU Commission, the existence of certifications or binding internal data protection regulations (Art. 44 to 49 GDPR, information page of the EU Commission).

Cookies

Our website uses so-called cookies. These are small text files that are stored on your end device with the help of the browser. They do not cause any damage.

We use cookies to make our website more user-friendly. Some cookies remain stored on your device until you delete them. They enable us to recognize your browser on your next visit.

If you do not want this, you can set up your browser so that it informs you about the setting of cookies and you only allow this in individual cases.

You can make settings in your browser to be informed about the setting of cookies, allowing you to decide whether to accept or reject them. Each browser differs in the way in which cookie settings are managed.

Here is the procedure for each browser: 

Chrome: http:support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647 

Internet Explorer: http:windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies 

Firefox: https:support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen 

Safari: https:support.apple.com/kb/ph21411?locale=de_DE 

Opera: http:help.opera.com/Windows/10.20/de/cookies.html 

Google Analytics

We use Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google uses cookies. The information generated by the cookie about the use of the online offer by the user is usually transmitted to a Google server in the USA and stored there.
Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with further services associated with the use of this online offer and the use of the Internet. Pseudonymous user profiles can be created from the processed data.

We only use Google Analytics with activated IP anonymization. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.

The IP address transmitted by the user’s browser will not be merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; users can also prevent Google from collecting the data generated by the cookie and relating to their use of the online offer and from processing this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

If we ask users for their consent (e.g. as part of a cookie consent), the legal basis for this processing is Art. 6 para. 1 lit. a. GDPR. Otherwise, users’ personal data is processed on the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR. GDPR) are processed.

Insofar as data is processed in the USA, we would like to point out that Google is certified under the Privacy Shield Agreement and thereby guarantees to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

Further information on the use of data by Google, setting and objection options, can be found in Google’s privacy policy (https://policies.google.com/privacy) and in the settings for the display of advertisements by Google (https://adssettings.google.com/authenticated).

Users’ personal data is deleted or anonymized after 14 months.

Use of script libraries (Google Web Fonts)

We use script libraries and font libraries such as Google Webfonts (https://www.google.com/webfonts/) on this website to display our content correctly and graphically appealing across browsers. Google web fonts are transferred to the cache of your browser to avoid multiple loading. If the browser does not support Google web fonts or prevents access, content is displayed in a standard font.

Calling up script libraries or font libraries automatically triggers a connection to the library operator. It is theoretically possible – although it is currently unclear whether and for what purposes – that operators of such libraries collect data.

The privacy policy of the library operator Google can be found here: https://www.google.com/policies/privacy/

Use of Google Maps

This website may use Google Maps API to display geographical information visually. When Google Maps is used, Google also collects, processes and uses data about the use of the map functions by visitors. You can find more information about data processing by Google in the Google data protection information. You can also change your personal data protection settings there in the data protection center.

Detailed instructions on managing your own data in connection with Google products can be found here. finden Sie hier.

Google Universal Analytics

We use Google Analytics in the form of “Universal Analytics”. “Universal Analytics” refers to a Google Analytics process in which the user analysis is based on a pseudonymous user ID and thus a pseudonymous profile of the user is created with information from the use of different devices (so-called “cross-device tracking”).

Facebook-Pixel, Custom Audiences and Facebook-Conversion

IWithin our online offer, the so-called “Facebook pixel” of the social network Facebook, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”), is used.

With the help of the Facebook pixel, it is possible for Facebook to determine the visitors of our online offer as a target group for the display of ads (so-called “Facebook ads”). Accordingly, we use the Facebook pixel to display the Facebook ads placed by us only to those Facebook users who have also shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) that we transmit to Facebook (so-called “custom audiences”). With the help of the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interest of users and are not annoying. With the help of the Facebook pixel, we can also track the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Facebook ad (so-called “conversion”).

The processing of data by Facebook takes place within the framework of Facebook’s data usage policy. Accordingly, general information on the display of Facebook ads can be found in Facebook’s data usage policy: https://www.facebook.com/policy. Specific information and details about the Facebook pixel and how it works can be found in Facebook’s help section: https://www.facebook.com/business/help/651294705016616.

If we ask users for their consent (e.g. as part of a cookie consent), the legal basis for this processing is Art. 6 para. 1 lit. a. GDPR. Otherwise, the personal data of users are processed on the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR. GDPR) are processed.

Facebook is certified under the Privacy Shield Agreement and thereby guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

You can object to the collection by the Facebook pixel and use of your data to display Facebook ads. To set which types of ads are displayed to you within Facebook, you can go to the page set up by Facebook and follow the instructions on the settings for usage-based advertising: https://www.facebook.com/settings?tab=ads. The settings are platform-independent, i.e. they are applied to all devices, such as desktop computers or mobile devices.

You can also object to the use of cookies for reach measurement and advertising purposes via the deactivation page of the network advertising initiative (http://optout.networkadvertising.org/) and additionally the US website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).

Privacy policy for Facebook

Our website uses functions from Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA. When you access our pages with Facebook plug-ins, a connection is established between your browser and the Facebook servers. Data is already transmitted to Facebook in the process. If you have a Facebook account, this data can be linked to it. If you do not wish this data to be linked to your Facebook account, please log out of Facebook before visiting our site. Interactions, in particular the use of a comment function or clicking on a “Like” or “Share” button, are also passed on to Facebook. You can find out more at https://de-de.facebook.com/about/privacy.

Use of Facebook Remarketing

This website uses the remarketing function “Custom Audiences” of Facebook Inc (“Facebook”). This function is used to present interest-based advertisements (“Facebook ads”) to visitors to this website when they visit the social network Facebook. The Facebook remarketing tag has been implemented on this website for this purpose. This tag establishes a direct connection to the Facebook servers when you visit the website. It is transmitted to the Facebook server that you have visited this website and Facebook assigns this information to your personal Facebook user account. For more information on the collection and use of data by Facebook and your rights and options for protecting your privacy in this regard, please refer to Facebook’s privacy policy at https://www.facebook.com/about/privacy/. Alternatively, you can deactivate the remarketing function “Custom Audiences” at https://www.facebook.com/settings/?tab=ads#=. To do this, you must be logged in to Facebook.

Online presence in social media

We maintain online presences within social networks and platforms in order to communicate with the customers, interested parties and users active there and to inform them about our services.
We would like to point out that user data may be processed outside the European Union. This may result in risks for users because, for example, it could make it more difficult to enforce users’ rights. With regard to US providers that are certified under the Privacy Shield, we would like to point out that they thereby undertake to comply with the data protection standards of the EU.

Furthermore, user data is generally processed for market research and advertising purposes. For example, usage profiles can be created from the usage behavior and the resulting interests of the users. The usage profiles can in turn be used, for example, to place advertisements inside and outside the platforms that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the user’s computer, in which the user’s usage behavior and interests are stored. Furthermore, data can also be stored in the user profiles independently of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).

The processing of users’ personal data is based on our legitimate interests in effective user information and communication with users in accordance with Art. 6 para. 1 lit. f. GDPR. GDPR. If the users are asked by the respective providers of the platforms for consent to the data processing described above, the legal basis for the processing is Art. 6 para. 1 lit. a., Art. 7 GDPR.

For a detailed description of the respective processing and the possibilities of objection (opt-out), we refer to the following linked information from the providers.

In the case of requests for information and the assertion of user rights, we would also like to point out that these can be asserted most effectively with the providers. Only the providers have access to the users’ data and can take appropriate measures and provide information directly. If you still need help, you can contact us.

– Facebook, -Seiten, -Gruppen, (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland) auf Grundlage einer Vereinbarung über gemeinsame Verarbeitung personenbezogener Daten – Datenschutzerklärung: https://www.facebook.com/about/privacy/, speziell für Seiten: https://www.facebook.com/legal/terms/information_about_page_insights_data , Opt-Out: https://www.facebook.com/settings?tab=ads und http://www.youronlinechoices.com, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active.

– Google/ YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland) – Datenschutzerklärung: https://policies.google.com/privacy, Opt-Out: https://adssettings.google.com/authenticated, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.

– Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Datenschutzerklärung/ Opt-Out: http://instagram.com/about/legal/privacy/.

– Twitter (Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA) – Datenschutzerklärung: https://twitter.com/de/privacy, Opt-Out: https://twitter.com/personalization, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active.

– Pinterest (Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA) – Datenschutzerklärung/ Opt-Out: https://about.pinterest.com/de/privacy-policy.

– LinkedIn (LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Irland) – Datenschutzerklärung https://www.linkedin.com/legal/privacy-policy , Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active.

Integration of third-party services and content

On the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR. GDPR) content or service offers from third-party providers in order to integrate their content and services, such as videos or fonts (hereinafter uniformly referred to as “content”).
This always presupposes that the third-party providers of this content are aware of the IP address of the user, as they would not be able to send the content to their browser without the IP address. The IP address is therefore required to display this content. We endeavor to only use content whose respective providers only use the IP address to deliver the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. Pixel tags can be used to analyze information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user’s device and contain, among other things, technical information about the browser and operating system, referring websites, visit time and other information about the use of our online offer, as well as being linked to such information from other sources.

Youtube 

We integrate the videos of the platform “YouTube” of the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Privacy policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

Twitter

Functions and content of the Twitter service, offered by Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, may be integrated into our online offering. This may include, for example, content such as images, videos or texts and buttons with which users can share content from this online offering within Twitter.If the users are members of the Twitter platform, Twitter can assign access to the above-mentioned content and functions to the users’ profiles there. Twitter is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active). Privacy policy: https://twitter.com/de/privacy, opt-out: https://twitter.com/personalization.

Instagram

Functions and content of the Instagram service, offered by Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA, may be integrated into our online offering. This may include, for example, content such as images, videos or text and buttons with which users can share content from this online offering within Instagram. If the users are members of the Instagram platform, Instagram can assign the access to the above-mentioned content and functions to the users’ profiles there. Privacy policy ofInstagram: http://instagram.com/about/legal/privacy/.

Pinterest

Functions and content of the Pinterest service, offered by Pinterest Inc, 635 High Street, Palo Alto, CA, 94301, USA, may be integrated into our online offering. This may include, for example, content such as images, videos or texts and buttons with which users can share content from this online offering within Pinterest. If the users are members of the Pinterest platform, Pinterest can assign the access to the above-mentioned content and functions to the users’ profiles there. Privacy policy of Pinterest: https://about.pinterest.com/de/privacy-policy.

Xing

Functions and content of the Xing service, offered by XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany, may be integrated into our online offering. This may include, for example, content such as images, videos or texts and buttons with which users can express their liking of the content, subscribe to the authors of the content or subscribe to our posts. If the users are members of the Xing platform, Xing can assign access to the above-mentioned content and functions to the users’ profiles there. Privacy policy of Xing: https://www.xing.com/app/share?op=data_protection.

LinkedIn

Functions and content of the LinkedIn service, offered by LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland, may be integrated into our online offering. This may include, for example, content such as images, videos or texts and buttons with which users can share content from this online offering within LinkedIn. If the users are members of the LinkedIn platform, LinkedIn can assign the access to the above-mentioned content and functions to the users’ profiles there. LinkedIn privacy policy: https://www.linkedin.com/legal/privacy-policy.. LinkedIn is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active). Privacy policy: https://www.linkedin.com/legal/privacy-policy, Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Pictrs-Widget as iFrame

On this website, the website operator has integrated iFrames (e.g. gallery widgets) from www.pictrs.com. The website operator uses third-party services in these iFrames. Details on the data processing carried out in connection with the services can be found in Pictrs’ privacy policy. The legal basis for the integration of iFrames is Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in optimizing the user-friendliness of the website and enabling a user-friendly link between the website and the online store of pictrs.com.

Communication via WhatsApp-Messenger

We use the WhatsApp messenger for communication purposes and ask you to observe the following information on the functionality, encryption, risks of WhatsApp, use of metadata within the Facebook group of companies and your options to object.

You do not have to use WhatsApp and can contact us by alternative means, e.g. by telephone or email. Please use the contact options provided to you or use the contact options provided on our website.
WhatsApp (WhatsApp Inc. WhatsApp Legal 1601 Willow Road Menlo Park, California 94025, USA) is a US-American service, which means that the data you send via WhatsApp may first be transmitted to WhatsApp in the USA before it is sent to us.

However, WhatsApp is certified under the Privacy Shield Agreement and therefore guarantees to comply with European and Swiss data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000TSnwAAG&status=Active).
WhatsApp also ensures that the communication content (i.e. the content of your message and attached images) is encrypted end-to-end. This means that the content of the messages cannot be viewed, not even by WhatsApp itself. You should always use the latest version of WhatsApp to ensure that the message content is encrypted.
However, we would like to point out to our communication partners that although WhatsApp cannot see the content, it can find out that and when communication partners communicate with us and process technical information about the device used by the communication partners and, depending on the settings of their device, also location information (so-called metadata). With the exception of encrypted content, the data of communication partners may be transmitted within the Facebook group of companies, in particular for the purpose of optimizing the respective services and for security purposes. Communication partners should also assume, at least as long as they have not objected to this, that their data processed by WhatsApp may be used for marketing purposes or to display advertising tailored to users.

If we ask communication partners for consent before communicating with them via WhatsApp, the legal basis for our processing of their data is Art. 6 para. 1 lit. a. GDPR. Otherwise, if we do not ask for consent and you contact us, for example, on your own initiative, we use WhatsApp in relation to our contractual partners and in the context of contract initiation as a contractual measure in accordance with Art. 6 para. 1 lit. b. GDPR. GDPR and in the case of other interested parties and communication partners on the basis of our legitimate interests in fast and efficient communication and meeting the needs of our communication partners in communication via messengers in accordance with Art. 6 para. 1 lit. f. GDPR.
Further information on the purposes, types and scope of the processing of your data by WhatsApp, as well as your rights in this regard and setting options to protect your privacy, can be found in WhatsApp’s data protection information: https://www.whatsapp.com/legal.

You can object to communication with us via WhatsApp at any time. In the case of subscribing to messages (also known as “broadcasts”) via WhatsApp, you can delete our corresponding telephone number from their contacts and request us to remove your contact from our directory. In the case of ongoing individual requests or communications, you can also ask us not to continue the communication via WhatsApp and to delete the communication content.

In the case of communication via WhatsApp, we delete the WhatsApp messages as soon as we can assume that we have answered any information provided by the user, if no reference to a previous conversation is to be expected and the deletion does not conflict with any statutory retention obligations.

Furthermore, we would like to point out that we will not transmit the contact data provided to us to WhatsApp without your consent (e.g. by contacting you via WhatsApp).
Finally, we would like to point out that we reserve the right not to answer inquiries via WhatsApp for your security. This is the case if, for example, internal contractual information requires special confidentiality or a reply via Messenger does not meet the formal requirements. In such cases, we will refer you to more appropriate communication channels.

Communication via Facebook-Messenger

We use Facebook Messenger for communication purposes and ask you to observe the following information on the functionality, encryption, risks of Facebook Messenger, use of metadata within the Facebook group of companies and your options to object.
You do not have to use Facebook Messenger and can contact us by alternative means, e.g. by telephone or email. Please use the contact options provided to you or use the contact options provided on our website.

Facebook Messenger is offered by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, whereby the data entered and otherwise collected in the course of communication is processed in the USA by Facebook, 1 Hacker Way, Menlo Park, CA 94025, USA.

However, Facebook is certified under the Privacy Shield agreement and therefore guarantees to comply with European and Swiss data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

Facebook also ensures that the communication content (i.e. the content of your message and attached images) cannot be read and offers end-to-end encryption of the content. This means that the content of the messages cannot be viewed, not even by Facebook itself. However, end-to-end encryption requires activation, which you must enable in your Messenger settings under the menu item “Secret conversations”. You should always use the latest version of Facebook Messenger to ensure that message content is encrypted.

We would like to point out to our communication partners that even if encryption is activated, Facebook can find out that and when communication partners communicate with us and process technical information about the device used by the communication partners and, depending on the settings of their device, also location information (so-called metadata). With the exception of encrypted content, the data of communication partners may be transmitted within the Facebook group of companies, in particular for the purpose of optimizing the respective services and for security purposes. Communication partners should also assume, at least as long as they have not objected to this, that their data processed by Facebook Messenger can be used for marketing purposes or to display advertising tailored to users.

If we ask communication partners for their consent before communicating with them via Facebook Messenger, the legal basis for our processing of their data is Art. 6 para. 1 lit. a. GDPR. Otherwise, if we do not ask for consent and you contact us, for example, on your own initiative, we use WhatsApp in relation to our contractual partners and in the context of contract initiation as a contractual measure pursuant to Art. 6 para. 1 lit. b. GDPR and in the case of other interested parties, Art. 6 para. 1 lit. b. GDPR. GDPR and in the case of other interested parties and communication partners on the basis of our legitimate interests in fast and efficient communication and meeting the needs of our communication partners in communication via messengers in accordance with Art. 6 para. 1 lit. f. GDPR.

Further information on the purposes, types and scope of the processing of your data by Facebook, as well as your rights in this regard and setting options to protect your privacy, can be found in Facebook’s data protection information: https://www.facebook.com/about/privacy.

You can object to communication with us via Facebook Messenger at any time and ask us not to continue communication via Facebook Messenger and to delete the communication content. We delete the Facebook messages as soon as we can assume that we have answered any information provided by the user, if no reference to a previous conversation is to be expected and the deletion does not conflict with any statutory retention obligations.

Finally, we would like to point out that, for reasons of your security, we reserve the right not to answer inquiries via Facebook Messenger. This is the case if, for example, internal contractual information requires special confidentiality or a reply via Messenger does not meet the formal requirements. In such cases, we will refer you to more appropriate communication channels.

Chatbot in Facebook-Messenger

We offer a so-called “chatbot” as a communication option. The chatbot is a piece of software that answers users’ questions or informs them about messages. Our chatbot can be accessed via the “Facebook Messenger” platform.

When you talk to our chatbot, we may process your personal data. In this case, your Facebook ID is stored in our system and we can recognize which users interact with our chat bot and when. We also store the content of your conversations with the chatbot. Furthermore, Facebook automatically gives us access to your “public information” that is stored on Facebook. This includes your name, profile and cover picture, gender, networks (e.g. school or work), user name (Facebook URL) and user ID (Facebook ID) (https://www.facebook.com/help/203805466323736). We only use this information to operate our chat bot, e.g. so that it can address you personally.

If you activate the information with regular messages for the chatbot, you have the option of unsubscribing from the information for the future at any time. The chatbot will tell you how and with which terms you can unsubscribe from the messages. When you unsubscribe from the chatbot messages, your data will be deleted from the list of message recipients. Chat logs are anonymized by us, i.e. the user names and user IDs are automatically deleted or anonymized.

We use the aforementioned data to operate our chat bot, e.g. to address you personally, to answer your queries to the chat bot, to transmit any requested content, and to improve our chat bot (e.g. to “teach” it answers to frequently asked questions or to recognize unanswered queries).

On the one hand, we use the chatbot on the basis of Art. 6 para. 1 lit. a. GDPR if we obtain the user’s consent for its use (this applies to cases in which users are asked for consent, e.g. so that the chatbot sends them regular messages). If we use the chatbot to answer users’ inquiries about our services or our company, this is done in accordance with Art. 6 para. 1 lit. b. GDPR. Otherwise, we use the chatbot on the basis of our legitimate interests in optimizing the chatbot, addressing users efficiently and pleasantly for information, advertising and marketing purposes and increasing the positive user experience in accordance with Art. 6 para. 1 lit. f. GDPR. GDPR.

The use of the chatbot requires registration on the Facebook platform and use of the Facebook Messenger communication platform. Facebook Messenger is offered by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, whereby the data entered and otherwise collected in the course of communication is processed in the USA by Facebook, 1 Hacker Way, Menlo Park, CA 94025, USA.
However, Facebook is certified under the Privacy Shield Agreement and therefore guarantees to comply with European and Swiss data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

We would like to point out that Facebook can find out that and when users communicate with our chatbot and process technical information about the user’s device used and, depending on the settings of their device, also location information (so-called metadata). Furthermore, user data may be transferred within the Facebook group of companies, in particular for the purpose of optimizing the respective services and for security purposes. Users should also assume that their data processed by the chatbot may be used for marketing purposes or to display advertising tailored to users.

For more information on Facebook’s use of data, please refer to Facebook’s privacy policy: https://www.facebook.com/about/privacy.

Privacy policy for the use of Google reCAPTCHA

We use the Google reCaptcha service to determine whether a human or a computer is making a certain entry in our contact or newsletter form. Google uses the following data to check whether you are a human or a computer IP address of the end device used, the website that you visit on our site and on which the captcha is integrated, the date and duration of the visit, the identification data of the browser and operating system type used, Google account if you are logged in to Google, mouse movements on the reCaptcha areas and tasks in which you have to identify images. The legal basis for the data processing described is Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in this data processing to ensure the security of our website and to protect us from automated entries (attacks).

Newsletter

We use the newsletter to inform you about us and our offers. If you would like to receive the newsletter, we require a valid e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided or that the owner agrees to receive the newsletter. This data will only be used for sending the newsletter and will not be passed on to third parties. When you register for the newsletter, we save your IP address and the date of registration. This storage serves solely as proof in the event that a third party misuses an email address and registers to receive the newsletter without the knowledge of the authorized person. You can revoke your consent to the storage of the data, the email address and its use for sending the newsletter at any time. The revocation can be made via a link in the newsletters themselves or by sending a message to the following e-mail address: mailto:info@cainacadie.world. We will then immediately delete your data in connection with the newsletter dispatch.

Notes on the newsletter and consent

The following information explains the content of our newsletter as well as the registration, dispatch and statistical evaluation procedure and your rights of objection. By subscribing to our newsletter, you agree to receive it and to the procedures described.

Content of the newsletter

We only send newsletters, emails and other electronic notifications with advertising information (hereinafter “newsletter”) with the consent of the recipient or with legal permission. If the contents of the newsletter are specifically described when registering for the newsletter, they are decisive for the user’s consent. Otherwise, our newsletters contain information about our products and our company (this may include, in particular, information about our services, campaigns, presentations, seminars or webinars).

Double opt-in and logging

Registration for our newsletter takes place in a so-called double opt-in procedure. As soon as you have registered for the newsletter, we will send you a confirmation e-mail with a link to confirm your registration. This confirmation is necessary so that no one can register with other people’s e-mail addresses.

Subscriptions to the newsletter are logged in order to be able to prove the registration process in accordance with legal requirements. This includes storing the time of registration and confirmation as well as the IP address.

Use of the mailing service provider “Clever Reach”

The newsletter is sent by means of “CleverReach“, a newsletter dispatch platform of the German provider CleverReach GmBH &Co KG, Mühlenstr. 43, 26180 Rastede, Germany, represented by: CleverReach Verwaltungs GmbH HRB 210079 Oldenburg (Oldb.), Mühlenstr. 43 26180 Rastede/ Germany.

The email addresses of our newsletter recipients, as well as their other data described in this notice, are stored on CleverReach’s servers in Europe. CleverReach uses this information to send and analyze the newsletter on our behalf. However, CleverReach does not use the data of our newsletter recipients to write to them itself or pass the data on to third parties.

We trust in the reliability and IT and data security of CleverReach.

You can find CleverReach’s data security and privacy policy here https://www.cleverreach.com/de/datensicherheit/ and https://www.cleverreach.com/de/datenschutz/

Statistical survey and analyses

The newsletters contain a so-called “web-beacon”, i.e. a pixel-sized file that is retrieved from the CleverReach server when the newsletter is opened. As part of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and time of retrieval, is initially collected. This information is used for the technical improvement of the services based on the technical data or the target groups and their reading behavior based on their retrieval locations (which can be determined with the help of the IP address) or the access times.

The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to individual newsletter recipients. However, it is neither our intention nor that of CleverReach to observe individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

Online access and data management

There are cases in which we redirect newsletter recipients to the CleverReach website. For example, our newsletters contain a link that newsletter recipients can use to access the newsletter online (e.g. in the event of display problems in the email program). Newsletter recipients can also correct their data, such as their e-mail address, at a later date.

In this context, we would like to point out that cookies are used on the CleverReach websites and therefore personal data is processed by CleverReach, its partners and the service providers used (e.g. Google Analytics). We have no influence on this data collection. Further information can be found in CleverReach’s privacy policy at https://www.cleverreach.com/de/datenschutz/. We would also like to draw your attention to the options for objecting to the collection of data for advertising purposes on the websites https://www.aboutads.info/choices/ and https://www.youronlinechoices.com/ (for the European area).

Order processing in the online store and customer account

We process the data of our customers as part of the ordering processes in our online store to enable them to select and order the selected products and services, as well as their payment and delivery or execution.

The processed data includes inventory data, communication data, contract data, payment data and the persons affected by the processing include our customers, interested parties and other business partners. The processing is carried out for the purpose of providing contractual services in the context of operating an online store, billing, delivery and customer services. We use session cookies to store the contents of the shopping cart and permanent cookies to store the login status.

The processing is carried out to fulfill our services and carry out contractual measures (e.g. execution of order processes) and insofar as it is required by law (e.g. legally required archiving of business transactions for commercial and tax purposes). The information marked as necessary is required to justify and fulfill the contract. We only disclose the data to third parties in the context of delivery, payment or in the context of legal permissions and obligations, as well as if this is done on the basis of our legitimate interests, about which we inform you in the context of this data protection declaration (e.g. to legal and tax advisors, financial institutions, freight companies and authorities).

Users can optionally create a user account in which they can view their orders in particular. As part of the registration process, users are provided with the required mandatory information. The user accounts are not public and cannot be indexed by search engines. If users have terminated their user account, their data will be deleted with regard to the user account, unless their retention is necessary for commercial or tax law reasons. Information in the customer account remains until its deletion with subsequent archiving in the event of a legal obligation or our legitimate interests (e.g. in the event of legal disputes). It is the responsibility of users to back up their data before the end of the contract in the event of termination.

We store the IP address and the time of the respective user action as part of the registration and renewed logins as well as the use of our online services. This data is stored on the basis of our legitimate interests and those of the user to protect against misuse and other unauthorized use. This data is not passed on to third parties unless it is necessary to pursue our legal claims as a legitimate interest or there is a legal obligation to do so.

The deletion takes place after the expiry of statutory warranty and other contractual rights or obligations (e.g., payment claims or performance obligations from contracts with customers), whereby the necessity of storing the data; in the case of storage due to statutory archiving obligations, the deletion takes place after their expiry.

External payment service providers

We use external payment service providers through whose platforms users and we can carry out payment transactions. These payment service providers include, with a link to the privacy policy: Paypal(https://www.paypal.com/de/webapps/mpp/ua/privacy-full), .

As part of the fulfillment of contracts, we use the payment service provider on the basis of Art. 6 para. 1 lit. b. GDPR. In addition, we use external payment service providers on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f. GDPR. GDPR in order to offer our users effective and secure payment options.

The data processed by the payment service providers includes inventory data, such as the name and address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums, as well as contract, total and recipient-related information. The information is required to carry out the transactions. However, the data entered is only processed by the payment service providers and stored by them. This means that we do not receive any account or credit card-related information, but only information with confirmation or negative information about the payment. Under certain circumstances, the data may be transmitted by the payment service providers to credit agencies. The purpose of this transmission is to check identity and creditworthiness. Please refer to the payment service providers’ terms and conditions and data protection information.

Payment transactions are subject to the terms and conditions and the data protection notices of the respective payment service providers, which can be accessed on the respective websites or transaction applications. We also refer to these for further information and the assertion of rights of revocation, information and other rights of data subjects.

Order processing via Pictrs

Pictrs is a store system for photographers and offers anyone who wants to sell photos online their own website with a photographer’s store. Pictrs offers this service for photographers as SaaS software (Software-as-a-Service) and can therefore be used in the browser without software installation or your own server.

Pictrs’ privacy policy can be found here. https://www.pictrs.com/datenschutz-fuer-fotografen

Participation in affiliate partner programs

Within our online offer, we use industry-standard tracking measures on the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer) in accordance with Art. 6 para. 1 lit. f GDPR, insofar as these are necessary for the operation of the affiliate system. Below we explain the technical background to users.

The services offered by our contractual partners may also be advertised and linked on other websites (so-called affiliate links or after-buy systems, e.g. if links or third-party services are offered after a contract has been concluded). The operators of the respective websites receive a commission if users follow the affiliate links and subsequently take advantage of the offers.

In summary, it is necessary for our online offer that we can track whether users who are interested in affiliate links and/or the offers available from us subsequently take advantage of the offers at the instigation of the affiliate links or our online platform. For this purpose, the affiliate links and our offers are supplemented by certain values that can be set as part of the link or otherwise, e.g. in a cookie. The values include, in particular, the source website (referrer), time, an online identifier of the operator of the website on which the affiliate link was located, an online identifier of the respective offer, an online identifier of the user, as well as tracking-specific values such as advertising material ID, partner ID and categorizations.

The online identifiers we use for users are pseudonymous values. This means that the online identifiers themselves do not contain any personal data such as names or e-mail addresses. They only help us to determine whether the same user who clicked on an affiliate link or was interested in an offer via our online offer took up the offer, i.e. concluded a contract with the provider, for example. However, the online identifier is personal to the extent that the partner company and we have the online identifier together with other user data. Only in this way can the partner company inform us whether the user has taken up the offer and we can, for example, pay out the bonus.

Use of TransferXL

TransferXL is a web service that transfers and shares data over the Internet. The fast, uncomplicated and secure transfer of up to 50GB allows data such as photos to be sent by drag & drop. The sender and recipient e-mail addresses are specified, and a message can also be sent as an option. A timeline is created of all data transfers that you send or receive as a user. According to TransferXL, secure data transfer is ensured by encryption before the upload. More information about TransferXL here https://transferxl.com/de/about

You can find TransferXL’s privacy policy here  https://transferxl.com/de/legal/privacy

Children

Persons under the age of 18 should not transmit any personal data to us without the consent of their parents or legal guardians. We do not request personal data from children, do not collect it and do not pass it on to third parties.

Contract data processing

We have concluded a contract data processing agreement with the following contractual partners and implement the strict requirements of the Austrian data protection authorities: Clever Reach, Jimdo, Pictrs

Rights of the user: information, correction and deletion

Your data will be deleted if:

·      the purpose of collection ceases to apply,

·      consent is withdrawn (newsletter unsubscription),

·      an objection is made by the user (“Delete my data”) and there are no

statutory storage obligations (taxes and accounting).

The user has the right, upon request and free of charge, to receive information about the personal data that has been stored about him. In addition, the user has the right to rectification of incorrect data, blocking and erasure of their personal data, insofar as this does not conflict with any statutory retention obligation. If you believe that the processing of your data violates data protection law or that your data protection rights have been violated in any other way, you can lodge a complaint with the supervisory authority. In Austria, this is the data protection authority.

Changes and updates to the privacy policy

We ask you to inform yourself regularly about the content of our privacy policy. We will adapt the privacy policy as soon as changes to the data processing we carry out make this necessary. We will inform you as soon as the changes require an act of cooperation on your part (e.g. consent) or other individual notification.

You can reach us using the following contact details:

Katarzyna Jelenska

Babenbergerring 9A

A-2700 Wiener Neustadt

Österreich

T.: +43(0)699 13334409

E-Mail: info@cainacadie.world

Security note: We make every effort to store your personal data in such a way that it is not accessible to third parties by taking all technical and organizational measures. We cannot guarantee complete data security when communicating by e-mail, so we recommend that you send confidential information by post or in person.

 Stand: August 2023

Information on data processing in connection with Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited. If the controller responsible for data processing on this website is located outside the European Economic Area or Switzerland, Google Analytics data processing is carried out by Google LLC. Google LLC and Google Ireland Limited are hereinafter referred to as “Google”.

Google Analytics uses “cookies”, which are text files placed on the visitor’s computer, to help the website analyze how users use the site. The information generated by the cookie about the use of this website by the site visitor (including the shortened IP address) is usually transmitted to a Google server and stored there.

Google Analytics is used exclusively with the extension “_anonymizeIp()” on this website. This extension ensures anonymization of the IP address by shortening it and excludes the possibility of direct personal references. The extension shortens the IP address of Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The IP address transmitted by the relevant browser as part of Google Analytics will not be merged with other Google data.

On behalf of the website operator, Google will use the information collected to evaluate the use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator (Art. 6 para. 1 lit. f GDPR). The legitimate interest in data processing lies in the optimization of this website, the analysis of the use of the website and the adaptation of the content. The interests of users are adequately protected by pseudonymization.

Google LLC. offers a guarantee to maintain an appropriate level of data protection on the basis of the standard contractual clauses. The data sent and linked to cookies, user identifiers (e.g. user ID) or advertising IDs are automatically deleted after 50 months. Data that has reached the end of its retention period is automatically deleted once a month.

The collection by Google Analytics can be prevented by the site visitor adjusting the cookie settings for this website. The collection and storage of the IP address and the data generated by cookies can also be objected to at any time with effect for the future. The corresponding browser plugin can be downloaded and installed at the following link: https://tools.google.com/dlpage/gaoptout.

The website visitor can prevent the collection of data by Google Analytics on this website by clicking on the following link. An opt-out cookie will be set to prevent the future collection of data when visiting this website.

Further information on the use of data by Google, setting and objection options, can be found in Google’s privacy policy(https://policies.google.com/privacy) and in the settings for the display of advertisements by Google(https://adssettings.google.com/authenticated).

reCAPTCHA

We use the reCAPTCHA service from Google LLC (Google) to protect your requests via the Internet form. The query is used to distinguish whether the input is made by a human or abusively by automated, machine processing. The query includes sending the IP address and any other data required by Google for the reCAPTCHA service to Google. For this purpose, your input is transmitted to Google and used there. However, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. Google will use this information on behalf of the operator of this website to evaluate your use of this service. The IP address transmitted by your browser as part of reCaptcha will not be merged with other Google data. The deviating data protection provisions of Google apply to this data. You can find more information about Google’s privacy policy at: https://policies.google.com/privacy?hl=de

The address of our website is: https://www.cainacadie.world.

Comments

When visitors post comments on the website, we collect the data displayed in the comment form, the visitor’s IP address and the user agent string (which identifies the browser) to help detect spam.

An anonymized string (also known as a hash) can be created from your email address and sent to the Gravatar service to check whether you are using it. You can find the Gravatar service’s privacy policy here: https://automattic.com/privacy/. After your comment has been approved, your profile picture will be publicly visible in the context of your comment.

Media

If you are a registered user and upload photos to this website, you should avoid uploading photos with an EXIF GPS location. Visitors to this website could download photos stored on this website and extract their location information.

Cookies

If you write a comment on our website, this can be a consent to save your name, e-mail address and website in cookies. This is a convenience feature so that you don’t have to re-enter all this data when you write another comment. These cookies are stored for one year.

If you have an account and log in to this website, we will set a temporary cookie to determine if your browser accepts cookies. This cookie does not contain any personal data and is discarded when you close your browser.

When you sign up, we will set up some cookies to store your login information and display options. Login cookies expire after two days and cookies for display options after one year. If you select “Stay logged in” when you log in, your login will be maintained for two weeks. When you log out of your account, the login cookies are deleted.

When you edit or publish an article, an additional cookie is stored in your browser. This cookie does not contain any personal data and only refers to the post ID of the article you have just edited. The cookie expires after one day.

Embedded content from other websites

Posts on this website may contain embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves exactly as if the visitor had visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking services and record your interaction with this embedded content, including your interaction with the embedded content if you have an account and are logged in to this website.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we store your data

When you write a comment, it is saved indefinitely, including metadata. This allows us to automatically recognize and approve follow-up comments instead of holding them in a moderation queue.

For users who register on our website, we also store the personal information they provide in their user profiles. All users can view, change or delete their personal information at any time (the user name cannot be changed). Website administrators can also view and change this information.

What rights you have to your data

If you have an account on this website or have written comments, you can request an export of your personal data from us, including any data you have provided to us. In addition, you can request the deletion of all personal data that we have stored about you. This does not include data that we are required to retain for administrative, legal or security purposes.

Where your data is sent

Visitor comments could be analyzed by an automated spam detection service.

MailPoet newsletter & emails

If you have subscribed to our newsletter or if you are a member of our website (you can log in) or if you have purchased on our website, there is a good chance you will receive emails from us.

We will only send you emails which you have signed up to receive, or which pertain to the services we provided to you.

To send you emails, we use the name and email address you provide us. Our site also logs the IP address you used when you signed up for the service to prevent abuse of the system.

This website can send emails through the MailPoet Sending Service. This service allows us to track opens and clicks on our emails. We use this information to improve the content of our newsletters.

No identifiable information is otherwise tracked outside this website except for the email address.

Below is a list of cookies that may be generated by MailPoet (note that some cookies are only utilized when WooCommerce is installed and activated):

Cookie name: mailpoet_page_view
Cookie expiry: 3,650 days.
Cookie description: The purpose of this cookie is to track the last time a subscriber viewed any page on the site.

Cookie name: mailpoet_revenue_tracking
Cookie expiry: 14 days.
Cookie description: The purpose of this cookie is to track which newsletter sent from your website has acquired a click-through and a subsequent purchase in your WooCommerce store.

Cookie name: mailpoet_subscriber
Cookie expiry: 3,650 days.
Cookie description: The purpose of this cookie is to track subscriber engagement. It is used when the user logs in, signs up in a form, confirms subscription to a newsletter, or places an order through WooCommerce.
Note: User must be opted-in and a confirmed subscriber.

Cookie name: popup_form_dismissed_{$formId}
Cookie expiry: the expiration date varies and can be set per form.
Cookie description: This cookie is used to track if a user has previously dismissed a specific form, preventing the re-display of the form until the cookie’s expiration date. It is applicable for popup, slide-in, or fixed bar forms.

We collect information about you during the checkout process on our store.

What we collect and store

While you visit our site, we’ll track:

• Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
• Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
• Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!

We’ll also use cookies to keep track of basket contents while you’re browsing our site.

When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:

• Send you information about your account and order
• Respond to your requests, including refunds and complaints
• Process payments and prevent fraud
• Set up your account for our store
• Comply with any legal obligations we have, such as calculating taxes
• Improve our store offerings
• Send you marketing messages, if you choose to receive them

If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.

We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for XXX years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.

We will also store comments or reviews, if you choose to leave them.

Who on our team has access

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:

• Order information like what was purchased, when it was purchased and where it should be sent, and
• Customer information like your name, email address, and billing and shipping information.

Our team members have access to this information to help fulfill orders, process refunds and support you.

What we share with others

We share information with third parties who help us provide our orders and store services to you; for example —

Payments

We accept payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.

Please see the PayPal Privacy Policy for more details.

This website uses the Privacy Suite for WordPress by Complianz to collect and record Browser and Device-based Consent. For this functionality, your IP address is anonymized and stored in our database. This service does not process any personally identifiable information and does not share any data with the service provider. For more information, see the Complianz Privacy Statement.

What personal data we collect and why we collect it

This plugin uses Spreadshirt API to create a unique basket for each visitor. This process doesn’t use personalized data, so no IP address or browser information is transfered to Spreadshirt. The unique basket ID and checkout URL is stored in a browser cookie until the browser is closed (session). Adding an article to the basket using the “Add to basket” button, the plugin submits the desired article, color, size, basket ID and shop ID to Spreadshirt API which stores the information in the basket. If the visitor clicks on checkout, a link to the checkout process of Spreadshirt with the unique basket ID will be opened. At this point the visitor leaves this page and enters the pages of Spreadshirt and so the privacy policy of Spreadshirt. During basket creation and adding articles to the basket, no personalized data is somehow transfered to Spreadshirt or stored in this plugin.