data protection

Thank you for your interest in our company. We take data protection seriously.

In principle, you can use our website without providing any personal data. If a data subject wishes to use our company's services via our website, processing of personal data may become necessary. If the processing of personal data is necessary and there is no legal basis for such processing, we always obtain the consent of the data subject.

The processing of personal data (e.g. name, address, email address or telephone number of a data subject) is always carried out in accordance with the General Data Protection Regulation (GDPR) and in accordance with the country-specific data protection regulations that apply to us.

With the following data protection declaration we would like to inform the public about the type, scope and purpose of the personal data we collect, use and process. Data subjects are also informed about the rights to which they are entitled through this data protection declaration.

As the person responsible for processing, we have implemented numerous technical and organizational measures to ensure the most complete protection possible for the personal data processed via our website. However, data transmissions over the Internet can fundamentally contain security gaps. Therefore, 100% protection cannot be guaranteed. Therefore, every data subject can of course also provide us with personal data, for example by telephone.

1. DEFINITIONS

This data protection declaration is based on the definitions used by the European legislator for directives and regulations when issuing the GDPR (Article 4 GDPR). This data protection declaration should be easy to read and understand for every person. To ensure this, we would first like to explain the terms used. The following definitions are used in this data protection declaration:

  • personal data ” means any information relating to an identified or identifiable natural person (hereinafter “data subject”); An identifiable natural person is a natural person who can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more special features that express the physical , physiological, genetic, psychological, economic, cultural or social identity of that natural person;
  • data subject ” means any identified or identifiable natural person whose personal data are processed by the data controller.
  • Processing ” means any operation or series of operations carried out on personal data, whether or not by automated means, such as the collection, recording, organisation, structuring, storage, adaptation or modification, reading, consultation, use , disclosure by transmission, distribution or other form of making available, alignment or combination, restriction, deletion or destruction;
  • restriction of processing ” the marking of stored personal data with the aim of restricting their future processing;
  • Profiling ” any type of automated processing of personal data, which consists in using that personal data to evaluate certain personal aspects relating to a natural person, in particular aspects relating to work performance, economic situation, health, personal Analyze or predict that natural person's preferences, interests, reliability, behavior, location or movements;
  • Controller ” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, decides on the purposes and means of processing personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
  • Recipient ” means a natural or legal person, public authority, agency or other body to which personal data is disclosed, whether or not it is a third party. However, public authorities which may receive personal data in the context of a specific investigative task under Union or Member State law shall not be deemed to be recipients; the processing of these data by the said authorities will be carried out in accordance with the applicable data protection rules in accordance with the purposes of the processing;
  • third party ” means a natural or legal person, public authority, agency or other body, other than the data subject, the controller, the processor and the persons authorized to process the personal data under the direct responsibility of the controller or the processor;
  • Consent ” of the data subject means any voluntary, specific, informed and unambiguous expression of the wishes of the data subject in the form of a statement or other unequivocal affirmative action by which the data subject indicates that he or she consents to the processing of personal data concerning him or her agrees.

2. NAME AND CONTACT DETAILS OF THE PERSON RESPONSIBLE FOR PROCESSING

This data protection notice applies to data processing by:
Responsible person: Moreno Pisano, email: info@moreno-pisano.de, telephone: +49 (0)177 3622562

3. COLLECTION AND STORAGE OF PERSONAL DATA AS WELL AS THE NATURE AND PURPOSE OF THEIR USE

a) When visiting the website
In principle, you can use our website without disclosing your identity. When you access our website, the browser used on your device automatically sends information to our website server. This information is temporarily stored in a so-called log file. The following information is recorded without your intervention and stored until it is automatically deleted:

  • IP address of the requesting computer,
  • Date and time of access,
  • Name and URL of the retrieved file,
  • Website from which access is made (referrer URL),
  • browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

The data mentioned will be processed by us for the following purposes:

  • Ensuring a smooth connection to the website,
  • Ensuring comfortable use of our website,
  • Evaluation of system security and stability as well as for other administrative purposes.

The legal basis for data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. Our legitimate interest follows from the data collection purposes listed above. Under no circumstances do we use the data collected for the purpose of drawing conclusions about you personally.

We also use cookies and analysis services when you visit my website. Further explanations can be found in sections 5 and 7 of this data protection declaration.

b) When using our contact form

If you have any questions, we offer you the opportunity to contact us using a form provided on our website. It is necessary to provide a valid email address so that we know who the request came from and in order to be able to answer it. Further information can be provided voluntarily. It is up to you to decide whether you would like to enter this data into the contact form.

Data processing for the purpose of contacting us is carried out in accordance with Article 6 Paragraph 1 Sentence 1 Letter a GDPR based on your voluntarily given consent.

The personal data we collect when using the contact form will be automatically deleted after the request you have submitted has been completed.

c) When ordering via our website

You can either place orders on our website as a guest without registering, or register as a customer in our shop for future orders. Registering has the advantage that, in the event of a future order, you can log in to our shop directly with your email address and password without having to re-enter your contact details.

Your personal data will be entered into an input mask and transmitted to us and stored. If you place an order via our website, we first collect the following data, both in the case of a guest order and in the case of registration in the shop:

  • Salutation, first name, last name,
  • a valid email address,
  • Address,
  • Telephone number (landline and/or mobile phone)

This data is collected

  • to identify you as our customer;
  • to process, fulfill and fulfill your order;
  • to correspond with you;
  • for invoicing;
  • to handle any liability claims that may exist and to assert any claims against you;
  • to ensure the technical administration of our website;
  • to manage our customer data.

As part of the ordering process, your consent to the processing of this data will be obtained.

Data processing is carried out in response to your order and/or registration and is required in accordance with Article 6 Paragraph 1 Sentence 1 Letter b of the GDPR for the purposes mentioned for the appropriate processing of your order and for the mutual fulfillment of obligations arising from the purchase contract.

The personal data we collect to process your order will be stored until the statutory retention period expires and then deleted, unless we do so in accordance with Article 6 Paragraph 1 Sentence 1 Letter c GDPR due to tax and commercial retention requirements. and documentation obligations (from HGB, StGB or AO) you are obliged to store it for a longer period of time or you have consented to further storage in accordance with Article 6 Paragraph 1 Sentence 1 Letter a GDPR.

4. SHARING OF DATA

We will pass on your personal data to third parties exclusively to the service partners involved in the contract processing, such as the logistics company responsible for delivery and the credit institution responsible for payment matters. However, in cases where your personal data is passed on to third parties, the scope of the data transmitted is limited to the necessary minimum. When paying via PayPal, credit card via PayPal, direct debit via PayPal or “purchase on account” via PayPal, we pass on your payment details to PayPal (Europe) S.à rl et Cie, SCA, 22-24 Boulevard Royal, L as part of payment processing -2449 Luxembourg (hereinafter “PayPal”), further. PayPal reserves the right to carry out a credit check for payment methods such as credit card via PayPal, direct debit via PayPal or “purchase on account” via PayPal. PayPal uses the result of the credit check with regard to the statistical probability of payment default for the purpose of deciding whether to provide the respective payment method. The credit report can contain probability values ​​(so-called score values). To the extent that score values ​​are included in the results of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. Address data, among other things, is included in the calculation of the score values. Further data protection information can be found in the PayPal data protection principles: https://www.paypal.com/de/webapps/mpp/ua/privacy-full . Your personal data will not be transferred to third parties for purposes other than those mentioned above. We will only pass on your personal data to third parties if:

  • you have given your express consent in accordance with Article 6 Paragraph 1 Sentence 1 Letter a GDPR,
  • the disclosure in accordance with Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR is necessary to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data,
  • in the event that there is a legal obligation for the transfer in accordance with Article 6 Paragraph 1 Sentence 1 Letter c GDPR, as well as
  • This is legally permissible and is necessary for the processing of contractual relationships with you in accordance with Article 6 Paragraph 1 Sentence 1 Letter b of the GDPR.

As part of the ordering process, you will obtain your consent to pass on your data to third parties.

5. USE OF COOKIES

We use cookies on our site. These are small files that your browser creates automatically and that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your device and do not contain any viruses, Trojans or other malware. The cookie stores information that is related to the specific device used. However, this does not mean that we gain direct knowledge of your identity. On the one hand, the use of cookies serves to make the use of our offer more pleasant for you. We use so-called session cookies to recognize that you have already visited individual pages on our website. These are automatically deleted after you leave our site. In addition, to optimize user-friendliness, we also use temporary cookies that are stored on your device for a specific period of time. If you visit our site again to use our services, it will automatically be recognized that you have already been with us and what entries and settings you have made so that you do not have to enter them again.

On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offering for you (see section 7). These cookies enable us to automatically recognize that you have already been with us when you visit our site again. These cookies are automatically deleted after a defined period of time.

The data processed by cookies is necessary for the purposes mentioned to protect our legitimate interests and those of third parties in accordance with Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR.

Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or that a message always appears before a new cookie is created. However, completely deactivating cookies may mean that you cannot use all functions of our website.

6. LINKS TO THIRD PARTY SITES

The links published on our website are researched and compiled by us with the greatest possible care. However, we have no influence on the current and future design and content of the linked pages. We are not responsible for the content of the linked pages and expressly do not adopt the content of these pages as our own. The provider of the website to which reference is made is solely liable for illegal, incorrect or incomplete content as well as for damage resulting from the use or non-use of the information. The liability of anyone who merely refers to the publication via a link is excluded. We are only responsible for third-party information if we have positive knowledge of it, i.e. also of any illegal or criminal content, and it is technically possible and reasonable for us to prevent its use.

7. ANALYSIS AND TRACKING TOOLS

The tracking measures listed below and used by us are carried out on the basis of Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR. With the tracking measures we use, we want to ensure a needs-based design and the ongoing optimization of our website. On the other hand, we use tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimizing our offering for you. These interests are to be viewed as legitimate within the meaning of the aforementioned regulation. The respective data processing purposes and data categories can be found in the corresponding tracking tools.

a) Google Analytics 1

For the purpose of needs-based design and continuous optimization of our pages, we use Google Analytics, a web analysis service from Google Inc. (https://www.google.de/intl/de/about/) (1600 Amphitheater Parkway, Mountain View, CA 94043, USA; hereinafter “Google”). In this context, pseudonymized usage profiles are created and cookies (see section 5) are used. The information generated by the cookie about your use of this website such as

  • Browser type/version,
  • operating system used,
  • Referrer URL (the previously visited page),
  • Host name of the accessing computer (IP address),
  • time of server request,

are transferred to a Google server in the USA and stored there. The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services related to website and internet use for the purposes of market research and the needs-based design of these websites. This information may also be transferred to third parties if this is required by law or if third parties process this data on behalf of you. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymized so that assignment is not possible (IP masking).

You can prevent the installation of cookies by setting the browser software accordingly; However, we would like to point out that in this case not all functions of our website may be able to be used to their full extent.

You can also prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (https: //tools.google.com/dlpage/gaoptout?hl=de).

As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent data collection by Google Analytics by clicking on the aforementioned link. An opt-out cookie is set to prevent future collection of your data when you visit our website. The opt-out cookie only applies in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you will have to set the opt-out cookie again.

Further information on data protection in connection with Google Analytics can be found under the following link in the Google Analytics help: https://support.google.com/analytics/answer/6004245?hl=de

b) Google Adwords Conversion Tracking

In order to statistically record the use of our website and evaluate it for the purpose of optimizing our website for you, we also use Google Conversion Tracking. Google Adwords sets a cookie (see section 5) on your computer if you came to our website via a Google ad.

These cookies expire after 30 days and are not used for personal identification. If the user visits certain pages on the Adwords customer's website and the cookie has not yet expired, Google and the customer can recognize that the user clicked on the ad and was redirected to this page.

Every Adwords customer receives a different cookie. Cookies cannot therefore be tracked via the websites of Adwords customers. The information collected using the conversion cookie is used to create conversion statistics for Adwords customers who have opted for conversion tracking. Adwords customers find out the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, you will not receive any information that can be used to personally identify users.

If you do not want to take part in the tracking process, you can also refuse the necessary setting of a cookie - for example by using a browser setting that generally deactivates the automatic setting of cookies. You can also deactivate cookies for conversion tracking by setting your browser to block cookies from the domain “www.googleadservices.com”. Google's data protection policy on conversion tracking can be found at the following link: https://services.google.com/sitestats/de.html

8. SOCIAL MEDIA PLUGINS

We use social plugins from social networks (e.g. Facebook, Twitter, Google+) on our website based on Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR in order to make our company better known. The underlying advertising purpose is to be viewed as a legitimate interest within the meaning of the GDPR. The responsibility for data protection-compliant operation must be ensured by the respective provider. We integrate these plugins using the so-called two-click method in order to best protect visitors to our website.

a) Facebook

Our website uses social media plugins from Facebook to make their use more personal. For this we use the “LIKE” or “SHARE” button. This is an offer from Facebook. If you access a page on our website that contains such a plugin, your browser establishes a direct connection with the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser and integrated into the website by it. By integrating the plugins, Facebook receives the information that your browser has accessed the corresponding page on our website, even if you do not have a Facebook account are not currently logged in to Facebook. This information (including your IP address) is transmitted from your browser directly to a Facebook server in the USA and stored there.

If you are logged in to Facebook, Facebook can assign your visit to our website directly to your Facebook account. If you interact with the plugins, for example by clicking the “LIKE” or “SHARE” button, the corresponding information is also transmitted directly to a Facebook server and stored there. The information will also be published on Facebook for everyone to see.

Facebook can use this information for the purposes of advertising, market research and needs-based design of the Facebook pages. For this purpose, Facebook creates usage, interest and relationship profiles, e.g. B. to evaluate your use of our website with regard to the advertisements shown to you on Facebook, to inform other Facebook users about your activities on our website and to provide other services related to the use of Facebook.

If you do not want Facebook to assign the data collected via our website to your Facebook account, you must log out of Facebook before visiting my website.

The purpose and scope of data collection and the further processing and use of the data by Facebook as well as your related rights and setting options to protect your privacy can be found in the data protection information, in particular Facebook's data policy, which you can view under the following link: https:// www.facebook.com/about/privacy/

b) Twitter

Plugins from the short message network of Twitter Inc. (Twitter) are integrated into our website. You can recognize the Twitter plugins (tweet button) by the Twitter logo on our site. You can find an overview of tweet buttons under this link on Twitter: https://dev.twitter.com/web/tweet-button

When you access a page on our website that contains such a plugin, a direct connection is established between your browser and the Twitter server. Twitter thereby receives the information that you have visited our site with your IP address. If you click the Twitter “tweet button” while logged into your Twitter account, you can link the content of our pages to your Twitter profile. This allows Twitter to assign your visit to our pages to your user account. We would like to point out that as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Twitter.

If you do not want Twitter to be able to assign your visit to our pages, please log out of your Twitter user account.

Further information can be found in Twitter's privacy policy, which you can view here: https://twitter.com/de/privacy

9. RIGHTS OF SUBJECTS

You have the right:

  • in accordance with Art. 15 GDPR, to request information about your personal data processed by us. In particular, you can obtain information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, deletion, restriction of processing or objection, the existence of a Right to complain, the origin of your data, if it was not collected from me, as well as the existence of automated decision-making including profiling and, if necessary, meaningful information about its details;
  • in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or complete personal data stored by us;
  • in accordance with Art. 17 GDPR, to request the deletion of your personal data stored by us, unless the processing is carried out to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims is required;
  • in accordance with Art. 18 GDPR, to request the restriction of the processing of your personal data if you dispute the accuracy of the data, the processing is unlawful but you refuse its deletion and we no longer need the data but you use it to assert or exercise your rights or need to defend legal claims or you have objected to the processing in accordance with Art. 21 GDPR;
  • in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transmitted to another person responsible;
  • In accordance with Art. 7 Para. 3 GDPR, you can revoke your consent to us at any time. This means that we are no longer allowed to continue the data processing based on this consent in the future
  • to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority at your usual place of residence or work or at our company headquarters.

10. RIGHT TO OBJECT

If your personal data is processed on the basis of legitimate interests in accordance with Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR, you have the right to object to the processing of your personal data in accordance with Article 21 of the GDPR, provided there are reasons for doing so. which arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right to object, which we will implement without specifying a special situation. If you would like to exercise your right of withdrawal or objection, simply send an email to: info@moreno-pisano.de

11. DATA SECURITY

When visiting our website, we use the common SSL procedure (Secure Socket Layer) in conjunction with the highest level of encryption supported by your browser. This is usually 256 bit encryption. If your browser does not support 256-bit encryption, we will use 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the bottom status bar of your browser. We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation. partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

12. UPDATE AND CHANGES TO THIS PRIVACY POLICY

This data protection declaration is currently valid and is dated March 2018. Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration. The current data protection declaration can be accessed and printed out at any time on our website using the following link: https://www.morenopisano.de/datenschutzerklaerung

1 Data protection authorities require the conclusion of a data processing agreement for the permitted use of Google Analytics. A corresponding template is offered by Google at http://www.google.com/analytics/terms/de.pdf.

Source : Sample data protection declaration created by lawyer Andreas Gerstel ( http://www.anwaltblog24.de/ )