Data protection

Privacy Policy

Data Controller:

Ascendens GmbH

Falkenstr. 10

90542 Eckental

webshop@support.intraa.eu

Phone: 0800/44 44 77 4

We are pleased that you are interested in our online shop. Protecting your privacy is very important to us. Below, we provide detailed information about how we handle your data.

1. ACCESS DATA AND HOSTING

You can visit our websites without providing any personal information. Each time a webpage is accessed, the web server only automatically stores a so-called server log file, which contains the name of the requested file, your IP address, the date and time of the request, the amount of data transferred, and the requesting provider (access data), and logs the request. This access data is evaluated exclusively for the purpose of ensuring the trouble-free operation of the site and improving our offer. This is to protect our overriding legitimate interests in a correct presentation of our offer in accordance with Art. 6 (1) (f) of the GDPR. All access data will be deleted no later than seven days after the end of your visit to the site.

2. DATA PROCESSING FOR CONTRACT EXECUTION AND CONTACTING

2.1 DATA PROCESSING FOR CONTRACT EXECUTION

For the purpose of contract execution (including inquiries and handling any warranty or performance claims, as well as any legal update obligations) in accordance with Art. 6 (1) (b) of the GDPR, we collect personal data when you voluntarily provide it to us as part of your order. Mandatory fields are marked as such, as we need these data to process the contract and cannot send the order without them. The data collected is shown in the respective input forms.

Further information on the processing of your data, particularly regarding the transfer of data to our service providers for order, payment, and shipping processing, can be found in the following sections of this privacy policy. Once the contract is fully processed, your data will be restricted for further processing and deleted after the expiration of tax and commercial retention periods unless you have expressly consented to further use of your data in accordance with Art. 6 (1) (a) of the GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this statement.

Inventory Management System

For order and contract processing, we use inventory management systems from external service providers. Our service providers act as processors for us. If you have any questions regarding our service providers and the basis of our cooperation with them, please contact the point of contact described in this privacy policy.

Our service providers are based and/or use servers in countries for which the European Commission has determined by decision that they provide an adequate level of data protection: Switzerland.

2.2 CUSTOMER ACCOUNT

If you have given your consent according to Art. 6 (1) (a) of the GDPR by deciding to open a customer account, we will use your data for the purpose of opening the customer account and storing your data for future orders on our website. You can delete your customer account at any time by sending a message to the contact option described in this privacy policy or using the function provided in the customer account. After the deletion of your customer account, your data will be deleted unless you have expressly consented to further use of your data in accordance with Art. 6 (1) (a) of the GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this statement.

2.3 CONTACTING

As part of customer communication, we collect personal data to process your inquiries in accordance with Art. 6 (1) (b) of the GDPR if you voluntarily provide them to us when contacting us (e.g., via contact form or email). Mandatory fields are marked as such because we need these data to process your inquiry. The data collected is shown in the respective input forms. After your inquiry is fully processed, your data will be deleted unless you have expressly consented to further use of your data in accordance with Art. 6 (1) (a) of the GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this statement.

3. DATA PROCESSING FOR SHIPPING PROCESSING

For the purpose of fulfilling the contract in accordance with Art. 6 (1) (b) of the GDPR, we transfer your data to the shipping service provider responsible for the delivery, as far as this is necessary for the delivery of the ordered goods.

4. DATA PROCESSING FOR PAYMENT PROCESSING

When processing payments in our online shop, we work with the following partners: technical service providers, credit institutions, and payment service providers.

4.1 DATA PROCESSING FOR TRANSACTION PROCESSING

Depending on the selected payment method, we transfer the necessary data for the payment transaction to our technical service providers, who work as processors for us, or to the commissioned credit institutions or selected payment service providers to process the payment. This is necessary to fulfill the contract according to Art. 6 (1) (b) of the GDPR. In some cases, the payment service providers collect the data required for payment processing themselves, e.g., on their own website or through technical integration in the order process. In these cases, the privacy policy of the respective payment service provider applies.

If you have any questions about our payment processing partners and the basis of our cooperation with them, please contact the contact option described in this privacy policy.

4.2 DATA PROCESSING FOR FRAUD PREVENTION AND OPTIMIZATION OF OUR PAYMENT PROCESSES

We may provide our service providers with additional data, which they use along with the data required for payment processing as processors to prevent fraud and optimize our payment processes (e.g., invoicing, handling disputed payments, support for accounting). This is done to protect our overriding legitimate interests in safeguarding against fraud or ensuring efficient payment management in accordance with Art. 6 (1) (f) of the GDPR.

4.3 IDENTITY AND CREDIT CHECK WHEN USING KLARNA PAYMENT SERVICES

If you choose Klarna payment services, we request your consent under Art. 6 (1) (a) of the GDPR to transfer the necessary data for the payment process and identity and credit check to Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter "Klarna"). In Germany, Klarna may use credit agencies for identity and credit checks as listed in Klarna’s privacy policy.

[https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy]

The information obtained on the statistical probability of a payment default is used by Klarna for a balanced decision on the establishment, implementation, or termination of the contractual relationship. You can withdraw your consent at any time by sending a message to the contact option described in this privacy policy. However, this may result in Klarna no longer offering you certain payment options.

5. EMAIL MARKETING

Email Newsletter with Subscription, Newsletter Tracking with Separate Consent

If you subscribe to our newsletter, we will use the required or separately provided data to send you our email newsletter regularly based on your consent in accordance with Art. 6 (1) (a) of the GDPR. You can unsubscribe from the newsletter at any time, either by sending a message to the contact option described below or via a link provided in the newsletter. After unsubscribing, your email address will be removed from the recipient list unless you have expressly consented to further use of your data in accordance with Art. 6 (1) (a) of the GDPR or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this statement.

If you have additionally given us your consent in accordance with Art. 6 (1) (a) of the GDPR for analyzing our newsletter, we will also analyze your interaction with our newsletter by measuring, storing, and evaluating opening rates and click rates to design future newsletter campaigns ("Newsletter Tracking").

To perform this analysis, the sent emails contain single-pixel technologies (e.g., so-called web beacons, tracking pixels), which are stored on our website. For the analysis, we particularly link the following "newsletter data":

* the page from which the page was requested (so-called referrer URL),
* the date and time of the request,
* the description of the type of web browser used,
* the IP address of the requesting computer,
* the email address,
* the date and time of subscription and confirmation.

These single-pixel technologies are linked to your email address or your IP address and possibly an individual ID. Links included in the newsletter may also contain this ID.

You can unsubscribe from newsletter tracking at any time by sending a message to the contact option described or via a link provided in the newsletter. The information will be stored for as long as you are subscribed to the newsletter.

6. COOKIES AND OTHER TECHNOLOGIES

To make your visit to our website more attractive and to enable the use of certain functions, we use technologies including cookies on various pages. Cookies are small text files that are automatically stored on your device. Some of the cookies we use are deleted at the end of your browser session (so-called session cookies). Other cookies remain on your device and allow us to recognize your browser upon your next visit (persistent cookies).

We use such technologies that are essential for the use of certain functions of our website (e.g., shopping cart functionality). Through these technologies, IP address, visit time, device and browser information, and information about your use of our website (e.g., information about the contents of the shopping cart) are collected and processed. This serves to protect our overriding legitimate interests in an optimized presentation of our offer in accordance with Art. 6 (1) (f) of the GDPR.

Cookie settings for your browser can be found in the following links: Microsoft Edge™: [https://support.microsoft.com/de-de/help/4027947/microsoft-edge-delete-cookies] Safari™: [https://support.apple.com/de-de/guide/safari/sfri11471/12.0/mac/10.14] Chrome™: [https://support.google.com/chrome/answer/95647?hl=de&hlrm=en] Firefox™: [https://support.mozilla.org/de/products/firefox/protect-your-privacy/cookies] Opera™: [https://help.opera.com/de/latest/web-preferences/#cookies]

If you have consented to the use of the technologies in accordance with Art. 6 (1) (a) of the GDPR, you can revoke your consent at any time by sending a message to the contact option described in this privacy policy.

7. SOCIAL MEDIA

OUR ONLINE PRESENCE ON FACEBOOK (BY META), INSTAGRAM (BY META), YOUTUBE

If you have given your consent in accordance with Art. 6 (1) (a) of the GDPR to the respective social media operator, your data will be automatically collected and stored for market research and advertising purposes when you visit our online presences on the platforms mentioned above. Pseudonymous user profiles are created from this data, which can be used to display advertisements within and outside the platforms that presumably correspond to your interests. Cookies are generally used for this purpose. Detailed information on data processing and usage by the respective social media operator, as well as contact details and your rights and options to protect your privacy, can be found in the linked privacy policies of the providers below. If you still need help, you can contact us.

Facebook (by Meta): [http://www.facebook.com/about/privacy/] is a service provided by Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Meta Platforms Ireland"). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Facebook (by Meta) is generally transmitted to a server of Meta Platforms, Inc., 1 Hacker Way, Menlo Park, California 94025, USA, and stored there. No adequacy decision by the European Commission exists for the USA. Our cooperation with them is based on the European Commission’s standard contractual clauses. The data processing within the visit of a Facebook (by Meta) fan page is based on an agreement between joint controllers in accordance with Art. 26 of the GDPR. More information (Page Insights Data) can be found here: [https://www.facebook.com/legal/terms/information_about_page_insights_data].

Instagram (by Meta): [http://help.instagram.com/519522125107875] is a service provided by Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Meta Platforms Ireland"). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Instagram is generally transmitted to a server of Meta Platforms, Inc., 1 Hacker Way, Menlo Park, California 94025, USA, and stored there. No adequacy decision by the European Commission exists for the USA. Our cooperation with them is based on the European Commission’s standard contractual clauses. The data processing within the visit of an Instagram (by Meta) fan page is based on an agreement between joint controllers in accordance with Art. 26 of the GDPR. More information (Page Insights Data) can be found here: [https://www.facebook.com/legal/terms/information_about_page_insights_data].

YouTube: [https://policies.google.com/privacy?hl=de] is a service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). The information automatically collected by Google about your use of our online presence on YouTube is generally transmitted to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, and stored there. No adequacy decision by the European Commission exists for the USA. Our cooperation with them is based on the European Commission’s standard contractual clauses.

8. CONTACT OPTIONS AND YOUR RIGHTS

8.1 YOUR RIGHTS

* In accordance with Art. 15 of the GDPR, you have the right to request information about your personal data processed by us to the extent described therein.
* In accordance with Art. 16 of the GDPR, you have the right to request the correction of inaccurate or incomplete personal data stored by us without delay.
* In accordance with Art. 17 of the GDPR, you have the right to request the deletion of your personal data stored by us, unless further processing is necessary
- * For the exercise of the right to freedom of expression and information;
- * For compliance with a legal obligation;
- * For reasons of public interest; or
- * For the establishment, exercise, or defense of legal claims.
* In accordance with Art. 18 of the GDPR, you have the right to request the restriction of the processing of your personal data, as far as
- * The accuracy of the data is disputed by you;
- * The processing is unlawful, but you oppose its erasure;
- * We no longer need the data, but you require them for the establishment, exercise, or defense of legal claims; or
- * You have objected to the processing in accordance with Art. 21 of the GDPR.
* In accordance with Art. 20 of the GDPR, you have the right to receive your personal data, which you have provided to us, in a structured, commonly used, and machine-readable format or to request its transmission to another controller.
* In accordance with Art. 77 of the GDPR, you have the right to lodge a complaint with a supervisory authority. You can usually contact the supervisory authority of your usual place of residence, workplace, or our company headquarters for this purpose.

Right to Object

If we process your personal data as explained above to protect our legitimate interests within the framework of a balance of interests, you can object to this processing with effect for the future. If the processing is for direct marketing purposes, you can exercise this right at any time as described above. If the processing is for other purposes, you only have the right to object on grounds relating to your particular situation.

After you exercise your right to object, we will not further process your personal data for these purposes unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing is for the establishment, exercise, or defense of legal claims.

This does not apply if the processing is for direct marketing purposes. In this case, we will not process your personal data for this purpose.

8.2 CONTACT OPTIONS

If you have any questions regarding the collection, processing, or use of your personal data, for information, correction, restriction, or deletion of data, or if you wish to revoke consent or object to a particular data use, please contact us directly using the contact details provided in our imprint.

This privacy policy was created with the help of Trusted Shops [https://legal.trustedshops.com/] legal texts in cooperation with FÖHLISCH Attorneys [https://foehlisch.com].

Address Verification

On our website, we offer the possibility to check certain input fields in address forms of our webshop for errors in real time. This helps prevent delivery issues caused by incorrect information.

Additionally, we want to ensure that your contact details are valid to send information related to your order or to request necessary follow-up information.

For these functions, we use the services of Endereco, Balthasar-Neumann-Straße 4b, 97236 Randersacker. This service provider processes data only according to our instructions. The legal basis for the transmission, processing, and temporary storage of data by the service provider is Art. 6 (1) (b) of the GDPR, as it is necessary for contract fulfillment or to carry out pre-contractual measures by ensuring that certain data you enter into the input form are correct. The following data are processed by the service provider:

Address (country, city, postal code, street, possibly house number)
Email address
Phone number

The data is processed separately and not merged by the service provider. Requests will be deleted by the service provider once the status of the entered data has been determined and storage in the webshop has been completed, but no later than 30 days.