Privacy Policy

THE PROTECTION OF YOUR
DATA IS IMPORTANT TO US

Privacy policy

This data protection information relates to the processing of your personal data within our company and our website:

shopmacher.de

In order to make this data protection information easier to read, the term “we” is used in the following.

Responsible for processing and contact person for questions:
SHOPMACHER eCommerce GmbH & Co. KG
Am Campus 5
48712 Gescher
Phone: 02542-8703-0
Fax: 02542-8703-139
[email protected]
Contact details of the data protection officer:
Types of personal data we process:

Depending on the customer relationship, we process the following categories of your personal data:

 

  • Contact information (e.g. name, address, email address, telephone number)
  • Contract data in the context of our customer relationships
  • Payment and billing data (e.g. bank details)
Purposes and legal bases of the processing
The personal data concerning you will be processed for the following purposes and on the basis of the following legal basis:
  • Fulfillment of the customer relationship (Art. 6 Para. 1 lit. b GDPR)
  • Data processing based on our legitimate interest (Art. 6 Para. 1 f GDPR)
  • Data processing based on your consent (Art. 6 Para.1 a GDPR)
Processing based on legitimate interests includes the use and analysis of your personal data for:
  • Product Information and Services
  • Measures to improve and develop services and products in order to be able to offer you an individual approach with suitable offers and products
  • Conduct market and opinion research
  • Creation of transparency and quality of our products, services and communication
In addition, to fulfill legal obligations (e.g. due to commercial or tax law requirements), we process on the basis of Art. 6 para. 1 lit.c GDPR.
Origin of your personal data

We collect your personal data directly from you, e.g. in the contact form or with direct inquiries to us.

Disclosure of personal data to third parties (recipients)
Disclosure or transmission of your personal data takes place within the scope of the aforementioned purposes. Recipients of personal data can e.g. be:
  • Billing service providers and IT service providers
  • marketing agencies
  • market research institutes
  • Service and cooperation partners
  • Printing and shipping service providers
  • Data Destruction Service Provider
  • consultants and consulting firms
If data is passed on, this usually takes place as part of order processing. Our service providers are contractually obliged to ensure secure, confidential and correct processing.
The processing of personal data takes place primarily in the territory of the European Union (EU), insofar as we are active in these countries. Data will only be transferred outside the EU (to third countries) or to international organizations if the special requirements of Art. 44 et seq. GDPR are met.

 

storage duration

Personal data is stored for the stated purposes for the duration necessary to fulfill the purposes and if there are no other statutory retention requirements (HGB, tax code) or legal reasons for storage. This means that we delete your personal data after the statutory retention requirements have expired, usually 10 years after the end of the contract.

Your rights in relation to the processing of your personal data

In particular, you have the following rights with regard to your personal data:

  • Right to information about your stored personal data (Article 15 GDPR),
  • Right to rectification if the stored data concerning you is incorrect, outdated or incorrect (Article 16 GDPR),
  • Right to erasure if the storage is inadmissible, the purpose of the processing is fulfilled and the storage is therefore no longer necessary, or you have revoked your consent to the processing of certain personal data (Article 17 GDPR),
  • Right to restriction of processing if one of the reasons listed in Art. 18 para. 1 lit. a) to d) GDPR are met (Art. 18 GDPR),
  • Right to portability of the personal data you have provided (Art. 20 GDPR),
  • Right to revoke a given consent, whereby the revocation does not affect the legality of the processing that has taken place up to that point on the basis of the consent (Art. 7 Para. 3 DSGVO) and
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR).
Responsible for us:
The State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia, Postfach 20 04 44, 40102 Düsseldorf, Tel. 0211 384 24-0, Fax: 0211 38424-10
Right to object

You can object to the processing of your personal data for direct advertising and/or market research purposes at any time without giving reasons.

After receipt of the objection, we will no longer process the personal data for the purposes of direct advertising and/or market research and will delete the data if processing is not required for other purposes (e.g. to fulfill the contract). Also other processing, which we have on a legitimate interest i. s.d. Art. 6 para. 1 lit. f) GDPR, you can object to us at any time for reasons that arise from your particular situation, stating these reasons. In the event of a justified objection, we will no longer process the personal data for the purposes in question and will delete the data unless we can demonstrate compelling reasons for the processing that outweigh your interests, rights and freedoms, or the processing serves the purpose of Assertion, exercise or defense of legal claims.
Please address the objection to the address given at the beginning.
Data protection information for further uses

The information presented also applies to the following special uses, unless otherwise agreed.

Server log files and provision of the websites
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer. The following data is collected here:
  • Information about the browser type and version used
  • The user’s operating system
  • The user’s internet service provider
  • The IP address of the user
  • Date and time of access
  • Websites from which the user’s system accesses our website
  • Websites accessed by the user’s system through our website
The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.
The legal basis for the temporary storage of the data and the system log files is Art. 6 para. 1 lit. f GDPR.
Storage in system log files is done to ensure the functionality of our website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context. The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. When storing the data in system log files, this is the case after seven days at the latest. Storage beyond this is possible. In this case, the IP addresses of the users are deleted or alienated so that it is no longer possible to assign the calling client.
application process
You can apply online for our vacancies on this website. In the course of the application, in addition to your contact details, we also process the data you submit on your CV and qualifications as well as photos. The data will only be used for the application process and will be deleted after six months. Only basic data for comparing previous applications will be deleted after 24 months.
The legal basis for the processing of the application data are contract preparation measures in accordance with Art. 6 para. 1b lit. a GDPR. The legal basis for processing the core data is our own legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR.
We collect and process the personal data of applicants for the purpose of handling the application process, which can also be done electronically. This is particularly the case if applicants send the relevant application documents electronically, for example by email or using a web form on the website. If an employment contract is concluded with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the person responsible for processing does not conclude an employment contract with the applicant, the application documents will be automatically deleted six months after notification of the rejection decision, provided that deletion does not conflict with any other legitimate interests of the person responsible for processing. Another legitimate interest in this sense is, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).
cookies
A “cookie” is a small data file that is transferred from a website to your computer’s hard drive. We use cookies when you browse our site, make a purchase, request or personalize information, or register for certain services. If you accept cookies on our site, we do not have access to your personal information, but the cookies allow us to identify your computer. Cookies are generally divided into “session” and “persistent” cookies.
“session-related” Cookies do not remain on your computer when you leave our website or close your browser. The information collected enables us to analyze usage patterns and structures of our website. This allows us to optimize our website by improving content or personalization and making it easier to use.
“permanent” Cookies are cookies that remain on your computer. They are used to facilitate shopping, personalization and registration services. For example, cookies can remember what you have chosen to buy as you continue shopping. Plus, you only have to enter your password once on websites that require a login. “permanent” Cookies can be removed manually by the user.
Most browsers accept cookies by default. However, you can usually refuse cookies or selectively accept certain cookies by adjusting your browser settings accordingly. If you turn off cookies, you may not be able to use certain features on our site and some web pages may not display properly.
Facebook pixels

(Facebook Pixel, Facebook Custom Audiences and Facebook Conversion). Within our online offer, the so-called “Facebook pixel” of the social network Facebook, which is operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or if you are resident in the EU, Facebook Ireland Ltd. , 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”).

With the help of the Facebook pixel, Facebook is on the one hand able to determine visitors to our online offer as a target group for the display of advertisements (so-called “Facebook ads”). Accordingly, we use the Facebook pixel to only display the Facebook ads we have placed to those Facebook users who have also shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products, which are based on the visited website). websites are determined), which we transmit to Facebook (so-called “Custom Audiences”). With the help of the Facebook pixel, we can further understand the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Facebook ad (so-called “conversion”).

Facebook Privacy Information
The processing of the data by Facebook takes place within the framework of Facebook’s data usage guidelines. Accordingly, general information on the display of Facebook ads in Facebook’s data usage guidelines. You can find specific information and details about the Facebook pixel and how it works in the Facebook help area .

EU-US Privacy Shield
Facebook is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law.

contradiction
Although we also register legitimate interests in using the Facebook pixel and storing “conversion cookies”, we offer opt-out options. You can object to the collection by the Facebook pixel and the use of your data to display Facebook ads.

Google Analytics
We use Google Analytics, a web analytics service provided by Google LLC (“Google”). Google Analytics uses so-called “cookies”, text files that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. If IP anonymization is activated on this website, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there.
On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. Our legitimate interest in data processing also lies in these purposes. The legal basis for the use of Google Analytics is § 15 para. 3 TMG or Art. 6 para. 1 lit. f GDPR.
The personal data of the users will be deleted or made anonymous after 14 months. Data that has reached the end of its retention period is automatically deleted once a month.
The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You can prevent the storage of cookies by setting your browser software accordingly; we would like to point out to you however that in this case you will if applicable not be able to use all functions of this website in full. You can also prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) and from processing this data by Google by clicking on the following link ( http:// tools.google.com/dlpage/gaoptout?hl=de ) and install the available browser plug-in.
Opt-out cookies prevent future collection of your data when you visit this website. To prevent Google Analytics from collecting data across different devices, you must opt out on all systems used. If you click here, the opt-out cookie will be set: Disable Google Analytics.
Further information on the terms of use and data protection can be found at www.google.com/analytics/terms/de.html or at www.google.com/intl/de/analytics/privacyoverview.html. On this website we have added the “anonymizeIp()” function to the Google Analytics code. The collection of IP addresses is thus anonymized.
SalesViewer® technology

On this website, data for marketing, market research and optimization purposes is collected and stored using SalesViewer® technology from SalesViewer® GmbH on the basis of your consent (Art. 6 Para.1 lit.a GDPR). A javascript-based code is used for this purpose, which is used to collect company-related data and use it accordingly. The data collected with this technology is encrypted using a non-recalculated one-way function (so-called hashing). The data is immediately pseudonymised and not used to personally identify the visitor to this website. The data stored in Salesviewer will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any statutory storage requirements. You can object to the collection and storage of data at any time with effect for the future by clicking this link https://www.salesviewer.com/opt-out Click to prevent future acquisition by SalesViewer® within this website. An opt-out cookie for this website will be stored on your device. If you delete your cookies in this browser, you must click this link again.

Hotjar
This website uses Hotjar, an analysis software from Hotjar Ltd. (“Hotjar”) ( http://www.hotjar.com , Level 2, St Julian’s Business Centre, 3, Elia Zammit Street, St Julian’s STJ 1000, Malta, Europe). With Hotjar it is possible to measure and evaluate usage behavior (clicks, mouse movements, scroll heights, etc.) on our website. The information generated by the “tracking code” and “cookie” about your visit to our website is transmitted to the Hotjar servers in Ireland and stored there. The tracking code collects device-dependent data.
The following information may be recorded by your device and browser:
  • Your device’s IP address (collected and stored in an anonymous format)
  • Your e-mail address, including your first and last name, if you have made this available to us via our website
  • screen size of your device
  • device type and browser information
  • Geographical point of view (only the country)
  • The preferred language to display our website
  • User interactions Mouse events (movement, position and clicks)
  • Keystrokes

The following data is automatically generated by our servers when Hotjar is used

 

  • Referring domain
  • visited pages
  • Geographical point of view (only the country)
  • The preferred language to display our website
  • Date and time when the website was accessed
Hotjar will use this information to evaluate your use of our website, to create reports on use, and other services relating to website use and internet evaluation of the website. Hotjar also uses services from third-party companies, such as Google Analytics and Optimizely, to provide services. These third-party companies can store information that your browser sends when you visit the website, such as cookies or IP requests. For more information on how Google Analytics and Optimizely store and use data, please see their respective privacy information.
If you continue to use this website, you agree to the above-mentioned processing of the data there by Hotjar and its third-party providers as part of their data protection information.
The cookies Hotjar uses have different “lifetimes”; some remain up to 365 days, some only remain valid during the current visit.
You can prevent Hotjar from collecting the data by clicking on the following link and following the instructions there: https://www.hotjar.com/legal/compliance/opt-out
contact options
There is a contact form on our website which you can use to contact us electronically. The data entered in the input mask as well as the date and time of registration and your IP address are saved. Your consent will be obtained for the processing of the data. Alternatively, you can contact us via the email address provided. In this case, your personal data transmitted with the e-mail will be saved.
The processing of the personal data from the input mask or the email serves us solely to process the contact or the conversation with you. This is also where the necessary legitimate interest in processing the data lies. The other processed personal data serves to prevent misuse of the contact form and to ensure the security of our information technology systems.
We use “SmartSupp” as external software for our online communication and for our online chat. Smartsupp is a software producer in the EU (smartsupp.com), Šumavská 31, 602 00 Brno, Czech Republic. Privacy Policy: https://www.smartsupp.com/help/privacy-policy/. The communication between the SmartSupp code on our website and the SmartSupp server is encrypted via SSL/TLS (Secure Sockets Layer/Transport Layer Security). Likewise, the transmission between the Smartsupp servers and the dashboard (interface you use to access recordings) is set up via SSL/TLS secure transmissions. The servers are located in the EU and are therefore subject to the provisions of the GDPR.
You can book an appointment on our website. We use the online calendar “Calendly” to request and select an appointment. “Calendly” is an offer from Calendly, LLC, 3423 Piedmont Road NE, Atlanta, GA 30305-1754, United States. If you press the corresponding booking button, you will be automatically connected to a Calendly appointment account. After choosing your appointment, confirming it and entering your contact details and concerns, you will receive an email from Calendly confirming your appointment. Your details from the Calendly form, including the data you provide there, will be stored by us for the purpose of processing the request and in the event of follow-up questions. This data remains with SHOPMACHER GmbH & Co. KG until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. completed appointment). Mandatory legal provisions – in particular retention periods – remain unaffected. Furthermore, we have concluded a “Data Processing Addendum” with Calendly. This is a contract in which Calendly undertakes to protect the data of our users, to process it on our behalf in accordance with their data protection regulations and, in particular, not to pass it on to third parties. You can find more information about Calendly and data protection at Calendly here: https://calendly.com/pages/privacy .
Social media
We maintain online presences within the social networks Facebook, Kununu, Xing, Instagram and LinkedIn. The aim of these presences is to communicate with the users active there and to be able to inform them about our products and services.
When accessing our profiles in the social networks, the terms and conditions and data processing guidelines of their respective operators apply. Unless otherwise stated in our data protection information, we process user data if they communicate with us within social networks and platforms, e.g. B. write posts on our online presence or send us messages. The sending of personal data on these platforms is always voluntary. The personal data in the communications that we can see or that are public can be deleted by the user at any time.
If you have any questions about data protection, please use the contact details above.

Data protection information acc. Article 13 GDPR of May 20, 2020

× Jetzt chatten!