Privacy Policy
Date: [Placeholder-Date — to be inserted before publication]
1. Responsible Party
The controller within the meaning of the General Data Protection Regulation (GDPR) is [Placeholder: Company, address, e-mail - see imprint]. [Placeholder text: Please replace with legally vetted text.]
2. Overview of processing activities
We process personal data when you visit our website, place an order with us, contact us, or subscribe to our newsletter. [Placeholder text: Summary of processing purposes according to Art. 13/14 GDPR — please have this legally reviewed.]
3. Hosting and E-commerce Platform
We operate this shop on the Shopify Inc. platform (or Shopify International Limited for customers in the EU). Shopify processes server log data, order data, and account data, among other things, as our data processor. You can find details in Shopify's privacy policy. [Placeholder text: Please have the data processing agreement/details legally reviewed.]
4. Collection of data when visiting the website
When you access our website, our hosting provider automatically collects technical information (including IP address, date and time, page viewed, browser type) in server log files. [Placeholder text: please have the exact storage period and legal basis reviewed by legal counsel.]
5. Cookies and Tracking
We use cookies to operate our shop technically (e.g. shopping cart, login) and — subject to your consent — for statistical and marketing purposes. Details on individual cookies can be found in our Cookie Policy. [Placeholder text: Please add a list of the tools/cookies actually used and have them legally reviewed.]
6. Contact and Newsletter
If you contact us via email, chat, or contact form, we process your information to handle your request. If you subscribe to our newsletter, we process your email address based on your consent until you unsubscribe. [Placeholder text: please add the newsletter tool used and the double opt-in procedure.]
7. Ordering and Contract Processing
To process your order, we pass on the necessary data to payment service providers and shipping service providers. [Placeholder text: please name specific service providers (payment provider, parcel service) and have them legally reviewed.]
8. Legal bases for processing
We process personal data on the basis of Art. 6 (1) GDPR — in particular for contract fulfillment (lit. b), due to legitimate interests (lit. f), or based on your consent (lit. a). [Placeholder text: Please have the legal basis for each processing activity reviewed.]
9. Storage duration
We only store personal data for as long as necessary for the stated purposes or as required by statutory retention periods (e.g. commercial and tax law). [Placeholder text: please add specific deadlines.]
10. Your Rights as a Data Subject
You have the right to information, rectification, erasure and restriction of the processing of your data, a right to data portability, and a right to object to the processing. You can revoke any consents given at any time with future effect. To do so, please contact [Placeholder: Email address from the imprint].
11. Right to lodge a complaint with a supervisory authority
You have the right to lodge a complaint with a data protection supervisory authority about the processing of your personal data, for example, with the supervisory authority responsible for us [Placeholder: insert competent state data protection authority].
12. Data Security
For security reasons, our website uses SSL or TLS encryption for the transmission of confidential content.
13. Changes to this Privacy Policy
We will update this Privacy Policy if our data processing practices change. The latest published version will always apply.





