Privacy statement

1. General information



1.1 What is personal data

Personal data is information that discloses or can disclose the identity of the user. We adhere to the principle of data avoidance. As far as possible, we do not collect personal data.

1.2 Dealing with personal data

Personal data is used solely for the purpose of establishing the contract, structuring its content, implementing or processing the contractual relationship (Art. 6 I b GDPR). In addition, personal data will only be processed if we have received your consent to do so (Art. 6 I a GDPR). In principle, they will not be passed on to third parties. The data will only be passed on to the shipping company commissioned with the delivery in order to fulfil the contract, insofar as this is necessary for the delivery of ordered goods. In order to process payments, the necessary payment data will be forwarded to the bank commissioned with the payment and, if applicable, to the commissioned and selected payment service provider. The processing of your personal data takes place exclusively within the EU.

1.3 Usage data

When you visit the website, general technical information is collected. This includes the IP address used, time of day, duration of the visit, browser type and, if applicable, the page of origin. This usage data is registered in a log file for technical reasons and can be used and stored for the purpose of statistical evaluation of this website. This usage data is not linked to your other personal data.

1.4 Duration of storage

After the end of the purpose for which the data was collected, we only store your personal data for as long as this is necessary due to legal (in particular tax) regulations.

2. Your rights

2.1 Information

You can request information from us as to whether we process your personal data and, if so, you have a right to information about this personal data and the further information specified in Art. 15 GDPR.

2.2 Right to rectification

You have the right to rectify any inaccurate personal data concerning you and may request the completion of incomplete personal data in accordance with Art. 16 GDPR.

2.3 Right to deletion

You have the right to demand immediately that we delete the personal data concerning you. We are obliged to delete them immediately, in particular if one of the following reasons applies:

  • Your personal data is no longer necessary for the purposes for which it was collected or otherwise processed.
  • You revoke your consent on which the processing of your data was based and there is no other legal basis for the processing.
  • Your data have been processed unlawfully.

The right to deletion does not exist insofar as your personal data is required for the assertion, exercise or defence of our legal claims.

2.4 Right to limitation of processing

You have the right to request from us to restrict the processing of your personal data if you dispute the accuracy of the data and we therefore verify the accuracy, the processing is unlawful and you refuse to delete the data and instead request the restriction of use we no longer need the data, but you need it to assert, exercise or defend legal claims, you have objected to the processing of your data, and it is not yet clear whether our legitimate reasons outweigh your reasons.

2.5 Right to data transferability

You have the right to receive the personal data relating to you that you have provided to us in a structured, common and machine-readable format and you have the right to communicate this data to another responsible person without our interference, provided that the processing is based on a consent or a contract and the processing is carried out by us using automated procedures.

2.6 Right of withdrawal

If the processing of your personal data is based on consent, you have the right to revoke this consent at any time.

2.7 General and right of appeal

The exercise of your aforementioned rights is generally free of charge for you. If you have any complaints, you have the right to contact the supervisory authority responsible, and the state data protection officer, directly.

3. Data security

3.1 Data security

All data on our website is protected by technical and organisational measures against loss, destruction, access, alteration and distribution.

3.2 Sessions and Cookies

We may use cookies or server-side sessions in which data can be stored to operate the website. Cookies can also be used, for example, to greet you personally with your member name. Cookies are files that are stored by a website on your hard drive in order to automatically recognise this computer the next time you visit the website and thus adapt the use of the website to you. Some of the cookies used are deleted at the end of the browser session. These are so-called session cookies. Other cookies remain on your end device and enable the browser to be recognised during a subsequent visit to our website (permanent cookies). You can set your browser so that you are informed about the setting of cookies and decide individually whether to accept them or whether to exclude the acceptance of cookies in certain cases or in general. Please note that you may not be able to use some functions of this website if the cookies are deactivated. We ensure that no personal data from sessions or through cookies is transferred and that cookies are only used if this is necessary for the website. Thus, the assessment shows that there are no overriding interests on your part (Art. 6 I f GDPR).

4. Google Analytics

We use Google Analytics, a web analysis service from Google. Google Analytics uses cookies, which enable an analysis of the use of the website by users. The information generated by the cookie about your use of the website (including your IP address) will generally be transmitted to and stored by Google on servers in the United States. However, if IP anonymisation is activated on this website, your IP address will be shortened by Google in advance within Member States of the European Union or in other Contracting States to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. Google will use this information on our behalf to evaluate your use of the website, compile reports on website activity and provide other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf. You can view Google's data protection information at: http://www.google.de/intl/de/policies/privacy/.

5. Contact

If you wish to contact us regarding data protection, please feel free to use the following contact options. Person responsible for GDPR:

Topfpflanzen Hils
Matthias Hils
Azaleenweg 43
47608 Geldern-Lüllingen
Germany

Contact:
Tel.: +49 (0)2832-1353
E-Mail: