CONFIDENTIALITY DECLARATION

—-

ARTICLE 1 – PERSONAL INFORMATION COLLECTED

When you make a purchase from our store, as part of our buying and selling process, we collect the personal information you provide to us, such as your name, address and email address.

When using our website for information only, i.e. if you do not register or otherwise provide us with information, we only collect data that your browser transmits to our server (so-called “server log files”). When you visit our website, we collect the following data that is technically necessary for us to display the website to you:

– Our visited website
– Date and time at the moment of access
– Source/reference from which you came to the page
– Browser used
– Operating system used
– IP address used (if applicable: in anonymized form)
– Data processing is carried out in accordance with Art. 6 (1) point f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. The data will not be passed on or used in any other way. However, we reserve the right to check the server log files subsequently, if there are any concrete indications of illegal use.

Email Marketing (if applicable): With your permission, we may send you emails about our store, new products and other updates.

– Contacting Us

When you contact us (e.g. via contact form or e-mail), personal data is collected. Which data is collected in the case of a contact form can be seen from the respective contact form. These data are stored and used exclusively for the purpose of responding to your request or for establishing contact and for the associated technical administration. The legal basis for processing data is our legitimate interest in responding to your request in accordance with Art. 6 (1) point f GDPR. If your contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 (1) point b GDPR. Your data will be deleted after final processing of your enquiry; this is the case if it can be inferred from the circumstances that the facts in question have been finally clarified, provided that there are no legal storage obligations to the contrary.

– Data Processing When Opening a Customer Account and for Contract Processing
Pursuant to Art. 6 (1) point b GDPR, personal data will continue to be collected and processed if you provide them to us for the execution of a contract or when opening a customer account. Which data is collected can be seen from the respective input forms. It is possible to delete your customer account at any time. This can be done by sending a message to the above-mentioned address of the controller. We store and use the data provided by you for contract processing. After complete processing of the contract or deletion of your customer account, your data will be blocked in consideration of tax and commercial retention periods and deleted after expiry of these periods, unless you have expressly consented to further use of your data or a legally permitted further use of data has been reserved by our site, about which we will inform you accordingly below.

– Use of Your Data for Direct Advertising :

If you subscribe to our e-mail newsletter, we will send you regular information about our offers. The only mandatory information for sending the newsletter is your e-mail address. The indication of additional possible data is voluntary and is used to be able to address you personally. We use the so-called double opt-in procedure for sending the newsletter. This means that we will not send you an e-mail newsletter, unless you have expressly confirmed to us that you agree to the sending of the newsletter. We will then send you a confirmation e-mail asking you to confirm that you wish to receive future newsletters by clicking on an appropriate link.

– Processing of Data for the Purpose of Order Handling :
The personal data collected by us will be passed on to the transport company commissioned with the delivery within the scope of contract processing, insofar as this is necessary for the delivery of the goods. We will pass on your payment data to the commissioned credit institution within the framework of payment processing, if this is necessary for payment handling. If payment service providers are used, we explicitly inform you of this below. The legal basis for the transfer of data is Art. 6 (1) point b GDPR.

We work with external shipping partners to fulfil our contractual obligations to our customers. We pass on your name as well as your delivery address exclusively for the purpose of delivering goods to a shipping partner selected by us, pursuant to Art. 6 (1) point b GDPR.

Passing on Personal Data to Shipping Service Providers

– Online-Marketing

Facebook Ads : Facebook pixels for creating custom audiences with extended data matching feature.
Within our online offer, the so-called “Facebook pixel” of the social network Facebook in extended data matching mode is applied. It is operated by Facebook Ireland Limited, 4 Grand Canal Quare, Dublin 2, Ireland (hereinafter “Facebook”).

If a user, who has given his explicit consent, clicks on an advertisement placed by us and played on Facebook, an addition is made to the URL of our linked page by Facebook pixels. This URL parameter is then entered into the user’s browser via a cookie after it has been forwarded, which is set by our linked page itself. In addition, this cookie collects specific customer information, such as the email address that we collect on our Facebook-associated website during transactions such as purchases, account signups, or registrations (advanced data matching). The cookie is then read by Facebook Pixel and enables the data, including the specific customer data, to be forwarded to Facebook.

With the help of the Facebook pixel with extended data matching feature, Facebook is able to determine visitors of our online offer as a target group for the presentation of ads (so-called “Facebook ads”). Accordingly, the Facebook pixel with extended data matching feature to display Facebook ads placed by us will be presented only to Facebook users who have shown an interest in our online offer or who demonstrate certain characteristics (e.g. interest in certain topics or products determined by means of the websites visited) which we transmit to Facebook (so-called “custom audiences”). When using Facebook pixels, we also want to ensure that our Facebook ads match the potential interest of users and are not annoying. This allows us to evaluate the effectiveness of Facebook ads for statistical and market research purposes by tracking whether users were forwarded to our website after clicking on a Facebook ad (“conversion”). Compared to the standard variant of Facebook Pixel, the extended data matching feature helps us better measure the effectiveness of our advertising campaigns by tracking more associated conversions.

All transmitted data is stored and processed by Facebook to enable a connection to the respective user profile and to allow Facebook to use the data for its own advertising purposes in accordance with the Facebook Data Usage Guidelines (https://www.facebook.com/about/privacy/). The data may enable Facebook and its partners to place advertisements on and off Facebook.

These processes are subject to express consent in accordance with Art. 6 (1) point a GDPR.

Consent to the use of the Facebook pixel may only be given by users who are older than 13 years of age. If you are younger, please ask your parent or guardian for permission.

The information generated by Facebook is usually transferred to a Facebook server and stored there. This may also result in transmission to the servers of Facebook Inc. in the USA. Facebook Inc. based in the USA is certified for the US-European data protection agreement “Privacy Shield”, which guarantees compliance with the data protection level applicable in the EU.

You can revoke your consent at any time by disabling Facebook pixel tracking. To do this, you can set an opt-out cookie that disables Facebook pixel tracking

– Google Ads Conversion Tracking

This website uses the online advertising program “Google Ads” and the conversion tracking within the framework of Google Ads, operated by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 ESW5, Ireland (“Google”). We use the program of Google Ads to draw attention to our attractive offers with the help of advertising materials (so-called Google Adwords) on external websites. We can determine, in relation to the advertising campaigns data, how successful the individual advertising measures are. We are interested in showing you advertisements that are of interest to you. We want to make our website more interesting for you and to achieve a fair calculation of advertising costs.

The conversion tracking cookie is set on a user’s browser, if he clicks on an ad delivered by Google. Cookies are small text files that are stored on your computer system. These cookies usually lose their validity after 30 days and are not used for personal identification. If the user visits a certain page of this website and if the cookie has not yet expired, Google and we will be able to recognize that the user clicked on the ad and was forwarded to this page. Each Google Ads customer gets a different cookie. Thus, cookies cannot be traced via the website of Google Ads customers. The information collected by the conversion cookies is used to provide aggregate conversion statistics to Google Ads customers who have opted-in for conversion tracking. Customers are informed about the total number of users who clicked on the ad and were forwarded to a conversion tracking tag page. However, they do not get any information enabling them to identify users personally. If you do not want to participate in the tracking program, you can refuse the use of this program by deactivating the Google Conversion Tracking cookie via your Internet browser through the user settings. In this case, you will not be included in the conversion tracking statistics. We use Google Ads on the basis of our legitimate interest in targeted advertising in accordance with Art. 6 (1) point f GDPR. When using Google Ads, personal data may also be transmitted to the servers of Google LLC. in the USA.

In the event that personal data is transferred to Google LLC. based in the United States, Google LLC. is certified for the US-European data protection agreement “Privacy Shield”, which guarantees compliance with the data protection level applicable in the EU. An up-to-date certificate can be viewed here: https://www.privacyshield.gov/list..

For more information about Google’s privacy policy, please visit: https://privacy.google.com/intl/en-GB/take-control.html?categories_activeEl=sign-in

You can permanently deactivate cookies for advertising preferences by blocking them via a respective setting of your browser software or by downloading and installing the browser plug-in, available under the following link:
https://support.google.com/ads/answer/7395996

Please note that certain functions of this website may not be used, or may be used only to a limited extent, if you have deactivated the use of cookies.

To the extent required by law, we have obtained your consent to the processing of your data as described in accordance with Art. 6 (1) point a GDPR. You can withdraw your consent at any time with effect for the future. In order to exercise your right of withdrawal, please follow the procedure described above.

ARTICLE 2 – CONSENT

How do you get my consent?

When you provide us with your personal information to complete a transaction, verify your credit card, place an order, schedule a delivery or return a purchase, we assume that you consent to our collecting your information and using it for other purposes. this end only.

If we ask you to provide us with your personal information for another reason, for marketing purposes for example, we will ask you directly for your express consent, or we will give you the option of refusing.

How can I cancel my consent?

If after giving us your consent, you change your mind and no longer consent to us contacting you, collecting your information or disclosing it, you can notify us by contacting us at contact@ebkord.com

ARTICLE 3 – DISCLOSURE

We may disclose your personal information if we are required to do so by law or if you violate our Terms and Conditions.

Payment:

If you make your purchase through a direct payment gateway, your credit card information will store and encrypted in accordance with the data security standard established by the payment card industry (PCI-DSS). Information relating to your purchase transaction is kept for as long as necessary to complete your order. Once your order is finalized, the information relating to the purchase transaction is deleted.

All direct payment gateways adhere to the PCI-DSS standard, managed by the PCI Security Standards Council, which is the joint effort of companies such as Visa, MasterCard, American Express and Discover.

PCI-DSS requirements help ensure the secure processing of credit card data by our store and its service providers.

ARTICLE 5 – SERVICES PROVIDED BY THIRD PARTIES

In general, the third-party providers that we use will only collect, use and disclose your information to the extent necessary to be able to perform the services they provide to us.

However, some third party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies with respect to the information we are required to provide to them for your purchase transactions.

With respect to these providers, we recommend that you read their privacy policies carefully so that you can understand how they will treat your personal information.

Keep in mind that some suppliers may be located or have facilities located in a jurisdiction different from yours or ours. So if you decide to proceed with a transaction that requires the services of a third party provider, then your information may be governed by the laws of the jurisdiction in which that provider is located or those of the jurisdiction in which its facilities are located.

For example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, the information belonging to you that was used to complete the transaction could be disclosed under the laws of the United States. United States, including the Patriot Act.

Once you leave our store site or are redirected to a third party website or application, you are no longer governed by this Privacy Policy or the General Terms and Conditions of Sale and Use of our website.

Links :

You may be required to leave our website by clicking on certain links on our site. We do not assume any responsibility for the privacy practices of such other sites and recommend that you carefully read their privacy policies.

ARTICLE 6 – SECURITY

To protect your personal data, we take reasonable precautions and follow industry best practices to ensure that it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.

If you provide us with your credit card information, it will be encrypted using the SSL security protocol and stored with AES-256 type encryption. While no method of transmission over the Internet or of electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.

COOKIES

Here is a list of cookies we use. We have listed them here so that you have the option of choosing whether you want to allow them or not.

_session_id, unique session identifier, allows our website to store information about your session (referrer, landing page, etc.).

_visit, no data held, Persistent for 30 minutes from the last visit. Used by our website provider’s internal stats tracker to record the number of visits.

_uniq, no data held, expires at midnight (depending on visitor location) the next day. Calculates the number of visits to a store per unique customer.

cart, unique identifier, persists for 2 weeks, stores information about your shopping cart.

_secure_session_id, unique session identifier

storefront_digest, unique identifier, indefinite if the store has a password, it is used to find out if the current visitor has access.

ARTICLE 7 – AGE OF CONSENT

By using this site, you represent that you are at least the age of majority in your state or province of residence, and that you have given us your consent to allow any minor dependent on you to use this site. website.

ARTICLE 8 – CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon posting to the website. If we make any changes to the content of this policy, we will notify you here that it has been updated, so that you know what information we collect, how we use it, and under what circumstances we disclose it, if it should be done.

If our store is acquired by or merged with another company, your information may be transferred to the new owners so that we can continue to sell products to you.

QUESTIONS AND CONTACT DETAILS

If you would like to: access, correct, modify or delete any personal information we have about you, file a complaint, or if you simply want more information, contact our Privacy Officer at “contact@ebkord.com”