Data privacy

Data privacy statement This data privacy statement explains the nature, the scope and the purposes of the collection and use of visitor and user data (hereinafter collectively referred to as “User”) by the Tante Emma AG (hereinafter “Provider”) as the controller of the data file. Collection of access data The Provider collects data on each access to the online offer (so-called server log files). The access data include the name of the accessed website, file, date and time of the access, the amount of data transferred, the notification of a successful access, the type and version of browser, the User’s operating system, the referrer URL (i.e. the website visited before), the IP address and the requesting provider. The Provider uses the protocol data without connection to the User‘s person or any other profile creation in accordance with the statutory regulations and only for statistical analysis with the purpose of the operation, the security and the optimisation of the online offer. However, the Provider reserves the right to check the protocol data subsequently in case of reasonable suspicion of possible illegal use based on concrete data. Collection and use of personal data Personal data will only be collected and used by the Provider if this is permitted by law or if the Users have given their consent to the data collection. Generally, the User can see during the use of the service which data is being stored, such as e.g. his name, e-mail address and message when using the order form. The personal data provided for the purpose of placing an order for goods (such as name, e-mail address, postal address, payment details) is used by the seller for the fulfilment and execution of the contract. This data is treated as confidential, transmitted in encrypted form and not disclosed to third parties which are not involved in the ordering, delivery and payment process. When making contact with the Provider (by contact form or e-mail) the User information is saved for the purpose of the processing of the enquiry and in case follow-up questions arise. The Provider has taken organisational, contractual and technical precautions to ensure that the provisions of the Data Protections Act are adhered to and accidental or intentional manipulations, loss, destruction or access by unauthorised persons are prevented. Data forwarding to third parties The Users‘ data is only forwarded to third parties if this is permitted by law or if the Users have given their consent. This is the case for example when the forwarding of the data is necessary for the fulfilment of contractual obligations to the User and the postal address is forwarded to a carrier after a shopping order has been placed. This applies also if the data is required by a competent authority such as a law enforcement agency. The Users‘ personal data is never sold or forwarded to third parties for advertising purposes or for the generation of user profiles. Cookies The Provider uses ”Cookies“ for his online services. Cookies are small files, which are placed on the User’s computer and which can store information for the Provider. Transient cookies are deleted as soon as the browser is closed, permanent cookies remain for a given period of time and can provide the stored information when the online service is accessed again. Cookies are employed mainly to facilitate the use of the service. A cookie saves for example a User’s shopping basket status. The User can influence the use of cookies. Most browsers have an option which limits or prevents completely the storage of cookies. Providers attempt to design their online services in a way that makes the use of cookies unnecessary. However, it has to be pointed out that the use and especially the ease of use is limited without cookies. Use of Facebook Social Plugins This online service uses social plugins (“Plugins”) by the social network facebook.com which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). The plugins can be identified by one of the Facebook logos (white “f“ on a blue tile or a “thumbs up“-sign) or they are marked “Facebook Social Plugin”. The list and the appearance of the Facebook Social Plugins can be viewed here: https://developers.facebook.com/docs/plugins/. When a User calls up a web page of this online service which contains such a plugin, his browser establishes a direct connection with the Facebook servers. The content of the Plugin is transmitted by Facebook directly to the User’s browser and embedded in the website by the browser. The Provider has therefore no influence on the data volume which Facebook collects with the help of this plugin and informs the User according to their level of knowledge: By embedding the plugin, Facebook receives the information that a User has called up the corresponding page of the online service. If the user is logged into Facebook, Facebook can associate his visit with his Facebook account. If a User interacts with the plugins, e.g. by pressing the Like button or by leaving a comment, the corresponding information is transmitted directly to Facebook by his browser and stored there. If the User in not a member of Facebook, there is still the possibility that Facebook finds out and saves his IP address. According to Facebook, only an anonymised IP address is saved in Germany. The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as the relevant rights and setting options for the protection of the Users’ privacy can be found in the data protection information by Facebook: https://www.facebook.com/about/privacy/. If a User is a Facebook member and doesn’t want Facebook to collect data on him via this online service and connect them to his membership data stored on Facebook he has to log out of Facebook before his visit to the internet presence and delete the corresponding Facebook cookies. It is also possible to block Facebook Social Plugins for the browser by using add-ons such as the “Facebook Blocker“. +1 push button by Google+ This online service uses the buttons for the social network Google+ (e.g. “+1″- push button), which is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (“Google”). When a User calls up a website of this online service which contains such a button, the browser establishes a direct connection with the Google servers. The content of the button is transmitted by Google directly to his browser and embedded in the website. The Provider has therefore no influence on the data volume which Google collects via the buttons. According to Google, no personal data is collected without a click on the button. Such data, i.a. the IP address, is collected and processed only for members of Google+ who are actually logged in. The purpose and the scope of the data collection and the further processing and use of the data by Google as well as the relevant rights and setting options for the protection of the User’s privacy can be found in Google’s data protection information on the “+1” button: http://www.google.com/intl/de/+/policy/+1button.html und der FAQ: http://bit.ly/r3Qmer. If a User is a Google+ member and doesn’t want Google to collect data on him via this online service and connect them to his membership data stored by Google he has to log out of Google Plus before his visit to the internet presence and delete the Google cookies within the browser. Use of the Twitter button This online service uses buttons for the Twitter service. These buttons (e.g. “Twitter” or “Follow”) are provided by Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA. When a User calls up a website of this internet presence which contains such a button, his browser establishes a direct connection with the Twitter servers. The content of the Twitter buttons is transmitted directly to the User’s browser by Twitter. The Provider has therefore no influence on the data volume which Twitter collects by means of this plugin and informs the Users according to the Provider’s level of knowledge. According to this, only the User’s IP address and the URL of the corresponding webpage are transmitted when using the button. It is not used for any purposes other than the display of the button. Further information on this can be found in the data protection statement by Twitter at http://twitter.com/privacy.