Data protection
Responsible for the data processing is:
Andrea Herzinger
Brodwastlweg 6
82061
Neuried
info@hairzglut.de

We appreciate your interest in our online shop. The protection of your privacy is very important to us. Below we inform you in detail about the handling of your data.

1. Access data and hosting

You can visit our website without giving any personal information. Each time a web page is called, the web server merely automatically stores a so-called server log file, which is e.g. contains the name of the requested file, your IP address, the date and time of the retrieval, the amount of data transferred and the requesting provider (access data) and documents the retrieval.

These access data are evaluated exclusively for the purpose of ensuring a trouble-free operation of the site as well as the improvement of our offer. In accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO the preservation of our legitimate interests, which predominate in the context of a weighing up of interests, in a correct presentation of our offer. All access data will be deleted no later than seven days after the end of your page visit.

2. Data collection and use for contract execution

We collect personal information if you voluntarily provide it to us as part of your order or when contacting us (for example, by contact form or e-mail). Obligatory fields are marked as such, since in these cases we need the data for contract processing or to process your contact and you can not send the order or the contact without their specification. The data collected is shown in the respective input forms. We use the data provided by you in accordance with Art. 6 para. 1 sentence 1 lit. b DSGVO for contract handling and processing of your inquiries. Insofar as you consent to this pursuant to Art. 6 para. 1 sentence 1 lit. If you have issued a DSGVO by choosing to open a customer account, we will use your data for the purposes of customer account opening. After completion of the contract or deletion of your customer account, your data will be restricted for further processing and deleted after expiry of the tax and commercial retention periods, unless you have expressly consented to further use of your data or we reserve the right to further data use, the is legally permitted and about which we inform you in this statement. The deletion of your customer account is possible at any time and can be done either by a message to the contact option described below or via a designated function in the customer account.

3. Data transfer

For fulfillment of the contract pursuant to Art. 6 para. 1 sentence 1 lit. b DSGVO, we pass on your data to the shipping company commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods. Depending on which payment service provider you select in the order process, we will forward the payment data collected to the credit institution commissioned with the payment and any payment service providers commissioned by us to process the payments or to the selected payment service. In part, the selected payment service providers collect these data themselves, as long as you create an account there. In this case, you must log in to the payment service provider with your access data during the ordering process. In this respect, the privacy policy of the respective payment service provider applies.

For order and contract processing, we also use an external merchandise management system. The data transfer or processing taking place to this extent is based on order processing.

We use payment service providers based in a state outside the European Union. The transfer of personal data to this company takes place only in the context of the need to fulfill the contract.

Data transfer to shipping service provider
Insofar as you have given us your express consent during or after your order, we will give you consent pursuant to Art. 6 para. 1 sentence 1 lit. a DSGVO forward your e-mail address to the selected shipping service provider so that he can contact you before delivery for the purpose of delivery notification or reconciliation.

The consent can be withdrawn at any time by sending a message to the contact option described below or directly to the shipping service provider at the contact address listed below. After revocation, we will delete your data for this purpose, unless you have expressly consented to a further use of your data or we reserve the right to further data use, which is permitted by law and about which we inform you in this statement.

UPS Europa SA Data Protection Authority
Ave Ariane 5
Brussels, B-1200
Belgium

4. E-mail newsletter and mail advertising

E-mail advertising with registration for the newsletter
If you subscribe to our newsletter, we will use the data required or separately provided by you to regularly send you our e-mail newsletter based on your consent in accordance with Art. 6 para. 1 sentence 1 lit. to send a DSGVO.

The deregistration from the newsletter is possible at any time and can be done either by a message to the contact option described below or via a dedicated link in the newsletter. After unsubscribing, we will delete your e-mail address, unless you have expressly consented to a further use of your data or we reserve the right to further data use, which is permitted by law and about which we inform you in this statement.

Postal advertising and your right to object
In addition, we reserve the right to use your first and last name as well as your postal address for our own advertising purposes, e.g. for sending interesting offers and information about our products by post. This serves to safeguard our legitimate interests, which are predominantly justified in the interests of weighing up our interests, in a promotional approach to our customers in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO.

5. Integration of the Trusted Shops Trust Badge

To display our Trusted Shops quality seal and the collected reviews as well as the offer of Trusted Shops products for buyers after placing an order, the Trusted Shops Trust Badge is included on this website.

This serves to safeguard our legitimate interests, which predominate in the context of a weighing up of interests, in the optimal marketing of our offer pursuant to Art. 6 (1) sentence 1 lit. f DSGVO. The Trustbadge and the services advertised with it are offered by Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne.
When the trust badge is called, the web server automatically stores a so-called server log file, which is e.g. Your IP address, date and time of retrieval, transmitted amount of data and the requesting provider (access data) contains and documented the call. These access data will not be evaluated and automatically overwritten within seven days after the end of your page visit.
Other personal data will only be transferred to Trusted Shops, as far as you have consented to, have decided after the completion of an order for the use of Trusted Shops products or have already registered for use. In this case, the contractual agreement between you and Trusted Shops applies.

6. Cookies and web analytics

In order to make the visit of our website attractive and to allow the use of certain functions, to display suitable products or for market research, we use so-called cookies on various pages. This serves to safeguard our legitimate interests, which predominate in the context of a weighing up of interests, in an optimized presentation of our offer in accordance with Art. 6 (1) sentence 1 lit. f DSGVO. Cookies are small text files that are automatically stored on your device. Some of the cookies we use are deleted after the end of the browser session, ie after closing your browser (so-called session cookies). Other cookies remain on your device and allow us to recognize your browser on your next visit (persistent cookies). The duration of storage can be found in the overview in the cookie settings of your web browser. You can set your browser so that you are informed about the setting of cookies and individually decide on their acceptance or exclude the acceptance of cookies for specific cases or in general. Each browser differs in the way it manages the cookie settings. This is described in the Help menu of each browser, which explains how to change your cookie settings. These can be found for the respective browser under the following links:
Internet Explorer ™: https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage-cookies
Safari ™: https://support.apple.com/kb/ph21411?locale=en_US
Chrome ™: https://support.google.com/chrome/answer/95647?hl=en&hlrm=en
Firefox ™ https://support.mozilla.org/en/kb/cookies-allow-and-dispose
Opera ™: https://help.opera.com/latest/web-preferences/#cookies

Failure to accept cookies may limit the functionality of our website.

Use of etracker for web analysis
Insofar as you consent to this pursuant to Art. 6 para. 1 sentence 1 lit. a DSGVO), this website uses technologies from etracker GmbH (www.etracker.com) for the purpose of website analysis to automatically collect and store data from which usage profiles are created using pseudonyms. Cookies can be used. The pseudonymised user profiles will not be merged with personal data about the bearer of the pseudonym without a specific, explicit consent. After expediency and the end of the use of eTracker by us, the data collected in this context will be deleted. You can revoke your consent at any time with future effect by clicking this link.

After your cancellation, an opt-out cookie will be stored on your device. If you delete your cookies, you will be asked to give your consent again.

Google reCAPTCHA
For the purpose of protection against misuse of our web forms as well as against spam, we use some of the forms on this website to use the company's Google reCAPTCHA service. Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, United States (hereafter: Google) By Verification With manual input, this service prevents automated software (so-called bots) from performing abusive activity on the site. In accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO the preservation of our legitimate interests in the protection of our website from abuse as well as a trouble-free presentation of our online presence.
Google reCAPTCHA uses a code embedded in the website, a so-called JavaScript, as part of the review methods that allow an analysis of the use of the website by you, such as cookies. The automatically collected information about your use of this website, including your IP address, is usually transmitted to a Google server in the USA and stored there. In addition, other cookies stored by Google services in your browser are evaluated by Google reCAPTCHA.

A readout or storage of personal data from the input fields of the respective form does not take place.
Google is certified under the EU-US Privacy Shield. A current certificate can be viewed here. As a result of this agreement between the US and the European Commission, the latter has established an appropriate level of data protection for companies certified under the Privacy Shield.
You can prevent the collection by Google of the data generated by the JavaScript or the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google, by executing in your browser settings of JavaScripts or the setting of cookies. Please note that this may limit the functionality of our web site for your use.
More information about Google's privacy policy can be found here.

Google fonts
This website incorporates the script code "Google Fonts" of the company Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (hereafter: Google). This serves to safeguard our legitimate interests, which are predominantly in the interest of weighing up a common presentation of the content on our website in accordance with Art. 6 (1) lit. f) GDPR.
Within this framework, a connection is established between the browser you are using and Google's servers. As a result, Google learns that our website has been accessed via your IP address.
Google is certified under the EU-US Privacy Shield. A current certificate can be viewed here. As a result of this agreement between the US and the European Commission, the latter has established an appropriate level of data protection for companies certified under the Privacy Shield.
For more information about Google's data processing, please refer to Google's Privacy Policy.

Adobe Typekit
This website incorporates the "Adobe Typekit" script code from Adobe Systems Incorporated 345 Park Avenue, San Jose, CA 95110-2704, USA ("Adobe"). This serves to safeguard our legitimate interests, which are predominantly in the interest of weighing up a common presentation of the content on our website in accordance with Art. 6 (1) lit. f) GDPR.
Within this framework, a connection is established between the browser you are using and the Adobe servers. This will give Adobe notice that our website has been accessed via your IP address.
Adobe is certified under the EU-US Privacy Shield. A current certificate can be viewed here. As a result of this agreement between the US and the European Commission, the latter has established an appropriate level of data protection for companies certified under the Privacy Shield.
For more information about data processing in Adobe Typekit, see the Adobe privacy policy.

7. Social Media PlugIns

Use of social plugins from Facebook, Instagram, Google
Our website uses social plugins ("plugins") from social networks.
When you visit a page of our website that contains such a plugin, your browser connects directly to the servers of Facebook, Google, Twitter or Instagram. The content of the plugin is transmitted by the respective provider directly to your browser and integrated into the page. By integrating the plugins, the providers receive the information that your browser has accessed the corresponding page of our website, even if you do not have a profile or are currently not logged in. This information (including your IP address) is transmitted by your browser directly to a server of the respective provider (possibly in the USA) and stored there. If you are logged in to one of the services, the providers can directly assign the visit to our website to your profile in the respective social network. If you interact with the plugins, for example by clicking the "Like" or the "Share" button, the corresponding information is also transmitted directly to a server of the provider and stored there. The information will also be posted on the social network and displayed there to your contacts. This serves to safeguard our legitimate interests, which predominate in the context of a weighing up of interests, in the optimal marketing of our offer pursuant to Art. 6 (1) sentence 1 lit. f DSGVO.

Purpose and extent of the data collection and the further processing and use of the data by the provider as well as a contact option and your related rights and settings options for the protection of your privacy, please refer to the privacy policy of the provider.
https://www.facebook.com/policy.php
https://developers.google.com/+/web/buttons-policy

If you do not want the social networks to assign the data collected via our website directly to your profile in the respective service, you must log out of the corresponding service before you visit our website. You can completely prevent the loading of plugins even with add-ons for your browser, eg. Eg with the script blocker "NoScript" (https://noscript.net/).

Youtube video plugins
On this website content from third party providers are included. This content is provided by Google LLC ("Provider").
Youtube is operated by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google").

For videos from Youtube, which are included on our site, the advanced privacy setting is enabled. This means that no information is collected and stored on Youtube by website visitors, unless they are playing the video. The inclusion of the videos serves the preservation of our legitimate interests, which predominate in the context of a weighing up of interests, for an optimal marketing of our offer in accordance with Art. 6 (1) sentence 1 lit. f DSGVO.
For information on the purpose and scope of the data collection and the further processing and use of the data by the providers as well as their respective rights and setting options for protecting your privacy, please refer to the privacy policy of Google https://developers.google.com/+/web/buttons-policy ,

Our online presence on Facebook, Google, Instagram, Pinterest, Xing, LinkedIn
Our presence on social networks and platforms facilitates better, more active communication with our customers and prospects. We inform you about our products and ongoing promotions.
When you visit our online social media sites, your information may be collected and stored automatically for marketing research and promotional purposes. From these data so-called usage profiles are created using pseudonyms. These may be used to e.g. Place advertisements inside and outside the platforms that are allegedly in line with your interests. For this purpose, cookies are usually used on your device. These cookies store visitor behavior and the interests of users. This is gem. Art. 6 para. 1 lit. f. DSGVO the preservation of our legitimate interest in optimizing the representation of our offer and effective communication with customers and interested parties. If you are asked by the respective social media platform operators for consent (consent) to the data processing, e.g. with the help of a checkbox, the legal basis for data processing is Art. 6 para. 1 lit. a GDPR.
As far as the aforementioned social media platforms are headquartered in the US, the following applies: For the US, a decision on appropriateness of the European Commission is available. This goes back to the EU-US Privacy Shield. A current certificate for the respective company can be viewed here.
The detailed information on the processing and use of the data by the providers on their pages and a contact and your rights and options to protect your privacy, in particular opt-out options, please refer to the below linked privacy policy of the provider. If you still need help in this regard, you can contact us.
Facebook: https://www.facebook.com/about/privacy/

Data processing takes place on the basis of an agreement between jointly responsible persons in accordance with Art. 26 GDPR, which you can see here:
https://www.facebook.com/legal/terms/page_controller_addendum

Google / YouTube: https://policies.google.com/privacy
Instagram: https://help.instagram.com/519522125107875
Share: https://about.pinterest.com/de/privacy-policy
LinkedIn: https://www.linkedin.com/legal/privacy-policy
Xing: https://privacy.xing.com/de/datenschutzerklaerung

Opposition possibility (opt-out):
Facebook: https://www.facebook.com/settings?tab=ads
Google / YouTube: https://adssettings.google.com/authenticated
Instagram: https://help.instagram.com/519522125107875
Share: https://www.pinterest.de/?next=/settings/
LinkedIn: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
Xing: https://privacy.xing.com/de/datenschutzerklaerung/welche-rechte-koennen-sie-geltend-machen/widerspruchsrecht


8. Sending evaluation reminders by e-mail

If you give us your explicit consent in accordance with Art. 6 para. 1 sentence 1 lit. during or after your order. If you have issued a DSGVO, we will use your e-mail address as a reminder to submit an evaluation of your order via our rating system.
This consent can be revoked at any time by a message to the contact option described below.

9. Contact and your rights

As a victim, you have the following rights:

according to Art. 15 GDPR, the right to demand information on the personal data processed by us in the scope specified therein;
in accordance with Art. 16 GDPR, the right to demand immediate correction of incorrect or completed personal data stored by us;
in accordance with Art. 17 DSGVO the right to demand the deletion of your personal data stored by us, unless the further processing
- to exercise the right to freedom of expression and information;
- to fulfill a legal obligation;
- for reasons of public interest or
- to assert, exercise or defend legal claims
is required;
according to Art. 18 DSGVO the right to demand the restriction of the processing of your personal data, as far as
- the accuracy of the data is disputed by you;
- the processing is unlawful, but you reject its deletion;
- we no longer need the data, but you need it to assert, exercise or defend legal claims or
- you have lodged an objection against the processing in accordance with Art. 21 GDPR;
pursuant to Art. 20 DSGVO the right to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request transmission to another person responsible;
according to Art. 77 GDPR the right to complain to a supervisory authority. In general, you can contact the supervisory authority of your usual place of residence or work or our company headquarters.

For questions about the collection, processing or use of your personal data, information, correction, restriction or deletion of data and revocation of granted consent or objection to a particular use of data, please contact us directly via the contact details in our imprint.

************************************************** ******************
right to
To the extent that we process personal data as explained above in order to safeguard our legitimate interests, which are predominant as part of a weighing up of interests, you can object to this processing with effect for the future. If the processing is for the purpose of direct marketing, you can exercise this right at any time as described above. Insofar as the processing takes place for other purposes, you have a right of objection only if there are reasons that arise from your particular situation.

After exercising your right to object, we will not further process your personal data for these purposes, unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or if the processing of the assertion, exercise or defense of Legal claims serves.

This does not apply if the processing is for direct marketing purposes. Then we will not process your personal data for this purpose. ************************************************** ******************

Privacy policy created with the Trusted Shops lawyer in cooperation with Wilde Beuger Solmecke lawyers.