data protection
We appreciate your interest in our website. Protecting your privacy is very important to us.
The following notes provide a simple overview of what happens to your personal data when you visit our website. Personal data is all data with which you can be personally identified. Detailed information on data protection can be found in our privacy policy listed below this text.
All customer data is stored and processed by les-soeurs-shop.de exclusively in compliance with the applicable data protection laws.
1. General information
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. You can find their contact details in the imprint of this website.
How do we collect your data?
Your data is collected partly because you provide it to us. Other data is automatically collected by our IT systems when you visit the website. These are mainly technical data (e.g., internet browser, operating system, or time of page access). The collection of this data takes place automatically as soon as you enter our website.
What do we use your data for?
Some of the data is collected to ensure error-free provision of the website. Other data may be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right at any time to receive free information about the origin, recipients, and purpose of your stored personal data. You also have the right to request the correction, blocking, or deletion of this data. For this and other questions regarding data protection, you can contact us at any time at the address provided in the imprint. Furthermore, you have the right to file a complaint with the competent supervisory authority.
Analysis tools and third-party tools
When visiting our website and our Shopiffy shop, your surfing behavior can be statistically evaluated. This is mainly done with cookies and so-called analysis programs. The analysis of your surfing behavior is usually anonymous; the surfing behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. We will inform you about the objection options in this privacy policy.
2. Data protection
When you use this website, various personal data are collected. Personal data are data with which you can be personally identified. This privacy policy explains which data we collect and what we use it for. It also explains how and for what purpose this happens.
We point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security vulnerabilities. Complete protection of data against access by third parties is not possible.
Note on the responsible body
The responsible body for data processing on this website is:
Les Soeurs Shop GmbH
Managing Directors: Julia Chevalley, Jasmin Moallim
Grolmanstr. 16
10623 Berlin
Phone: +49 (0)30 54 84 45 08
E-mail: service@les-soeurs-shop.de
The responsible body is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, or similar).
Revocation of your consent to data processing
Many data processing operations are only possible with your explicit consent. You can revoke a consent already given at any time. A simple notification by e-mail to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right to complain to the competent supervisory authority
In the event of data protection violations, the affected person has the right to lodge a complaint with the competent supervisory authority. The competent supervisory authority for data protection issues is the State Data Protection Officer of the federal state in which our company is based. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
Right to data portability
You have the right to receive data that we process automatically based on your consent or in fulfillment of a contract, either to yourself or to a third party, in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done as far as it is technically feasible.
Encrypted payment transactions on this website
If there is an obligation to provide us with your payment data (e.g. credit card number, etc.) after concluding a paid contract, this data is required for payment processing.
Payment transactions via common payment methods (Visa/MasterCard, direct debit procedure) are carried out exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the address line of the browser changing from “http://” to “https://” and by the lock symbol in your browser bar.
In encrypted communication, your payment data that you transmit to us cannot be read by third parties.
Information, blocking, deletion
You have the right at any time under the applicable legal provisions to free information about your stored personal data, their origin and recipients, and the purpose of data processing, and, if applicable, a right to correction, blocking, or deletion of this data. For this purpose and for further questions on the subject of personal data, you can contact us at any time at the address given in the imprint.
Objection to advertising emails
The use of contact data published within the scope of the imprint obligation for sending unsolicited advertising and informational materials is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, such as spam emails.
3. Data collection on our website
CookiesThe websites partially use so-called cookies. Cookies do not harm your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective, and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit ends. Other cookies remain stored on your device until you delete them. These cookies allow us to recognize your browser on your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies on a case-by-case basis, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may restrict the functionality of this website.
Cookies that are necessary for the execution of the electronic communication process or for providing certain functions you desire (e.g., shopping cart function) are stored based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. To the extent that other cookies (e.g., cookies for analyzing your surfing behavior) are stored, these are treated separately in this privacy policy.
Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
Browser type and browser version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of the server request
IP address
A merging of this data with other data sources does not take place.
The basis for data processing is Art. 6 para. 1 lit. f GDPR, which permits the processing of data to fulfill a contract or pre-contractual measures.
Processing of data (customer and contract data)
We collect, process, and use personal data only to the extent necessary for establishing, shaping, or changing the legal relationship (inventory data). This is based on Art. 6 para. 1 lit. b GDPR, which permits the processing of data to fulfill a contract or pre-contractual measures. We collect, process, and use personal data about the use of our websites (usage data) only to the extent necessary to enable or bill the user for using the service.
The collected customer data will be deleted after the order is completed or the business relationship ends. Statutory retention periods remain unaffected.
Data transmission upon conclusion of contract for online shops, merchants, and goods shipping
We only transmit personal data to third parties if this is necessary for contract processing, for example to companies responsible for delivering the goods or the credit institution responsible for payment processing. No further transmission of data takes place or only if you have expressly consented to the transmission. Your data will not be passed on to third parties without your explicit consent, for example for advertising purposes.
Les Soeurs Shop is hosted on Shopify Inc. Personal data is therefore sent to the United States to be stored on Shopify's servers. Shopify provides the online e-commerce platform for a fee. This enables the sale of goods to the customer. Customer data is subjected to data storage by Shopify. This concerns their database as well as the general Shopify applications. Shopify stores customer data on a secure server behind a firewall. For full transparency, les-soeurs-shop.de refers to Shopify's “Privacy Policy”: https://www.shopify.com/legal/privacy
The basis for data processing is Art. 6 para. 1 lit. b GDPR, which permits the processing of data to fulfill a contract or pre-contractual measures.
4. Social Media
Facebook Plugins (Like & Share Button)
Plugins from the social network Facebook, provider Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA, are integrated on our pages. You can recognize the Facebook plugins by the Facebook logo or the "Like-Button" ("Like") on our site. An overview of the Facebook plugins can be found here: https://developers.facebook.com/docs/plugins/.
When you visit our pages, a direct connection is established between your browser and the Facebook server via the plugin. Facebook thereby receives the information that you have visited our site with your IP address. If you click the Facebook "Like-Button" while logged into your Facebook account, you can link the content of our pages on your Facebook profile. This allows Facebook to associate your visit to our pages with your user account. We point out that as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Facebook. Further information can be found in Facebook's privacy policy at: https://de-de.facebook.com/policy.php.
If you do not want Facebook to associate your visit to our pages with your Facebook user account, please log out of your Facebook user account.
Instagram Plugin
On our site, we use social plugins from the social network Instagram, which is operated by Instagram LLC represented by Kevin Systrom and Mike Krieger, 1601 Willow Rd Menlo Park CA 94025 USA .
When you visit a page that contains such a plugin, your browser establishes a direct connection to Pinterest's servers. The plugin transmits log data to Instagram's server in the USA. This log data may include your IP address, the addresses of the websites visited that also contain Instagram functions, the type and settings of the browser, the date and time of the request, your usage of Instagram, as well as cookies.
More information about the purpose, scope, and further processing and use of data by Instagram, as well as your related rights and options to protect your privacy, can be found in Instagram's privacy policy: https://help.instagram.com/155833707900388/?helpref=hc_fnav&bc[0]=368390626577968&bc[1]=285881641526716
Pinterest Plugin
This offer uses the buttons ("Pin It") of the Pinterest service, http://pinterest.com. With the help of the buttons, users can share the provider's articles on their "Pinterest Boards".
When a user visits a website that contains a "Pin It" button, their browser establishes a direct connection with the servers of Pinterest. The content of the "Pin It" button is transmitted directly from Pinterest to the user's browser. The provider therefore has no influence on the scope of the data that Pinterest collects using the "Pin It" button and informs users according to its knowledge. According to this, only the user's IP address and the URL of the respective website are transmitted, but only for the purposes of displaying the "Pin It" button and sharing the content. Further information can be found in Pinterest's privacy policy at http://pinterest.com/about/privacy/.
5. Newsletter
Newsletter data
If the newsletter of our company is subscribed to, the data entered in the respective input form is transmitted to the person responsible for processing. The registration for our newsletter takes place in a so-called double opt-in procedure. That means you will receive an email after registration asking you to confirm your registration. This confirmation is necessary to ensure that no one can register with someone else's email address. When registering for the newsletter, the user's IP address as well as the date and time of registration are stored. This serves to prevent misuse of the services or the email address of the person concerned. The data will not be passed on to third parties. An exception exists if there is a legal obligation to pass on the data. The data is used exclusively for sending the newsletter. The subscription to the newsletter can be canceled by the person concerned at any time. Likewise, consent to the storage of personal data can be revoked at any time. For this purpose, there is a corresponding link in every newsletter. The legal basis for processing the data after registration for the newsletter by the user is, if the user has given consent, Art. 6 para. 1 lit. a) GDPR. The legal basis for sending the newsletter as a result of the sale of goods or services is § 7 para. 3 UWG.
1.1 Use of rapidmail
Description and purpose: We use rapidmail for sending newsletters. The provider is rapidmail GmbH, Wentzingerstraße 21, 79106 Freiburg, Germany. rapidmail organizes and analyzes, among other things, the sending of newsletters. The data you enter for the purpose of receiving the newsletter is stored on the servers of rapidmail in Germany. If you do not want analysis by rapidmail, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. For the purpose of analysis, the emails sent with rapidmail contain a so-called tracking pixel, which connects to the servers of rapidmail when the email is opened. This way it can be determined whether a newsletter message was opened. Furthermore, with the help of rapidmail, we can determine whether and which links in the newsletter message are clicked. Optionally, links in the email can be set as tracking links, with which your clicks can be counted.
Legal basis: The legal basis for data processing is Art. 6 para. 1 lit. a) GDPR.
Recipient: The recipient of the data is rapidmail GmbH.
Transfer to third countries: No transfer of data to third countries takes place.
Duration: The data you have stored with us within the scope of consent for the purpose of the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from both our servers and the servers of rapidmail after unsubscribing. Data stored with us for other purposes (e.g., email addresses for the member area) remain unaffected.
Right of withdrawal: You have the option to revoke your consent to data processing with effect for the future at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.
Additional privacy information: For details, please refer to the data security information from rapidmail at: https://www.rapidmail.de/datensicherheit. For more information about the analysis functions of rapidmail, please see the following link: https://www.rapidmail.de/wissen-und-hilfe
6. Plugins and Tools
Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called "cookies", text files that are stored on your computer and allow an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.
In the case of activation of IP anonymization on this website, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area beforehand. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. IP anonymization is active on this website. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity, and to provide other services related to website and internet usage to the website operator.
The IP address transmitted by your browser as part of Google Analytics is not merged with other data from Google. You can prevent the storage of cookies by adjusting the settings of your browser software; however, we point out that in this case you may not be able to use all functions of this website to their full extent. Furthermore, you can prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google as well as the processing of this data by Google by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
Les-soeurs-shop.de uses the Google Remarketing function for its website. This function allows us to show text and display ads within the Google Content Network only to those users who have previously visited the les-soeurs-shop.de website. Users can disable the use of cookies by Google by visiting the page to deactivate Google advertising.
7. Payment provider
PayPal
On our website, we offer, among other things, payment via PayPal. The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal").
If you choose to pay via PayPal, the payment data you entered will be transmitted to PayPal.
The transmission of your data to PayPal is based on Art. 6 para. 1 lit. a GDPR (consent) and Art. 6 para. 1 lit. b GDPR (processing to fulfill a contract). You have the option to revoke your consent to data processing at any time. A revocation does not affect the validity of data processing operations that took place in the past.